| zzciti.net/statica/public/images/home/default.png | 172.67.197.61 | 200 OK | 7.4 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/default.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 140 x 140, 8-bit/color RGBA, non-interlaced Hashd16adea5284dcf04bb0ca8593f019586 d3a720ba397eb71279a5bda71d941792c454627b ae998f42fcf4fd8a01f9e48478f665a59fe7e66e7555f52c73169607899705bc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/default.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/png
content-length: 7448
last-modified: Fri, 24 Mar 2023 16:15:44 GMT
etag: "641dccb0-1d18"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BO6v8%2BlDtPZ84zKdQoEj6B%2BHQyMKETKMPaTQsSD0cFbvNK43ETs%2BTrzQDZU4puhVI3AEw17kEMZyL6fSvT4DyZW%2BT%2FZ5XCd7oEoeGo5vbyuGOu%2BjyRSEq16Msq%2F3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6432caf56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/logo.png | 172.67.197.61 | 200 OK | 6.6 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/logo.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 314 x 44, 8-bit/color RGBA, non-interlaced Hashefa2989ab3f0981796743a96498aa344 46293e262e0378a6c23ba1fa0be3569a71417b12 9bc0771f13ea7c5ebaad1a5d5c83829219919e386ab8b1ce0abffc61ad6aec1c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/logo.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/png
content-length: 6555
last-modified: Fri, 24 Mar 2023 16:21:04 GMT
etag: "641dcdf0-199b"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pj8al%2BREwiSyhnOUw6BA2SLbHq7aupioe7I1GkA1S0JnbpYXggwljcJvHQYLKwbNv9P4xU0DaQFgRihfs0T90%2F9mH4xcFEtpw2ZbOczYDTgnIB%2Fd2PzA%2B%2FSgd5dM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6432cb656ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/icon-english.png | 172.67.197.61 | 200 OK | 22 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/icon-english.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 625 x 477, 8-bit/color RGBA, non-interlaced Hash0a5fa7a90d2cab61129513c1d07fdf8f 7a4d0504d67d66820a3f3a2ba3a47e88fd28a08e 29e8ad619e1fdd9a72f65689657f64ee2793d983c69579b655b1e6be9a5f66a0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/icon-english.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/png
content-length: 21970
last-modified: Fri, 26 Jun 2020 07:49:22 GMT
etag: "5ef5a882-55d2"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aoF9PJ4y4ndYzkSsMupHxylDpKAf%2Bke7kQg9tSozFwNXUDB%2FkJUMqCPfrIHaInsHUp0eejjkvhZv%2FKw14%2FsLJ23GNzp7CqbPDEG4uXLBJ5lvSIevQwQ1HyMlrnyc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6433cbf56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/icon-hid.png | 172.67.197.61 | 200 OK | 18 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/icon-hid.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 536 x 357, 8-bit/color RGBA, non-interlaced Hash642ca6859d649a9cd1aa70d26c0ed220 b808519975a30b3d1428de4437f5aac774bedc45 f5c19e6152c782dd20b8e78499c59db0b76c43a2d611300d8c87cb32ffc3c7e9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/icon-hid.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/png
content-length: 18130
last-modified: Fri, 24 Mar 2023 15:33:06 GMT
etag: "641dc2b2-46d2"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cxS1PqkU9U30uebvawBw8XV94CsQEgB1mctYvfTPl8hvRCOV%2FC0X1dtee8he328Q2M0nyr7SFRV%2B0gEWFLIn2Z%2BQavNLQ%2B7bVpn6cWsGZom%2FhHL0GHfbGujMKAHm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6433ccf56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/icon-china.png | 172.67.197.61 | 200 OK | 1.3 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/icon-china.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 64 x 64, 8-bit colormap, non-interlaced Hash3cc2d6b712882dc337bd037fbe901a0c ee784f54dc6505b379d8c199c242529e602d3ac8 6f903e0952991b1fd5d817470eba6002ece76016c2dc3d7d0e58340f35c83555
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/icon-china.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/png
content-length: 1285
last-modified: Fri, 26 Jun 2020 07:49:04 GMT
etag: "5ef5a870-505"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4lPa8Rd%2FyO09dxRZlM3R6g9jHVg1v8Zac%2FpFs42cLSrffPQqcL2oYeMbIe5d5U3qNDvuILCdbAF6bKbidE8HwbpbKSqZSD%2BV8F%2FDakIItyY76hvVcRLemtYDg7OR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6433cba56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/1.jpg | 172.67.197.61 | 200 OK | 132 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/1.jpg IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 750 x 395, 8-bit/color RGBA, non-interlaced Size132 kB (131752 bytes) Hash41a3ad31b3c459bcaa46ae3dc222ef46 34e686d183bd461040e178937187f51e1ca45504 9d6237ac489bd57a8b8d9b5b5218dd74dd16869022fe4608f6966b3fabedbba8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/1.jpg HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/jpeg
content-length: 131752
last-modified: Thu, 14 Apr 2022 20:26:22 GMT
etag: "6258836e-202a8"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Eoi%2Fk5LhzC%2F2rgjCF26wl2arDGpkpKQiDtfhbEC6InCoVzZdAjEC%2FtW61Q3SoxuS44ksqh1BdpAK63kxpGp6aYhwr%2B5gcRD2aNfl%2FxpruhirvBnWHP2Bil9726zU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6433cd356ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/2.jpg | 172.67.197.61 | 200 OK | 188 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/2.jpg IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 750 x 400, 8-bit/color RGBA, non-interlaced Size188 kB (188216 bytes) Hashdccaa115fe2abb3f1866600ebe10dad1 bcc94edee515be7632f8e1a092e1298b124491e9 16592f95165a03487f26d081fba7bb7539bf345dc7883717e70f75d538d03042
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/2.jpg HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/jpeg
content-length: 188216
last-modified: Thu, 14 Apr 2022 20:26:24 GMT
etag: "62588370-2df38"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=blxXT2KuUukGDe%2BDzZoKOV2EsdNCdO8mQv1stVsMOKWZHO%2BJakZVQYxHPF2K8A1boZMdwj2aVrK00SZbG2V3q04cVqLbZ1ifMbBGoxqxhBSmKaMXP7yn5eHIosv9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6433cd556ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/3.jpg | 172.67.197.61 | 200 OK | 366 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/3.jpg IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 750 x 400, 8-bit/color RGBA, non-interlaced Size366 kB (366126 bytes) Hashe2e5c121c8abac8406e605368436efef bf9fa548cf1665002cdf942af5469069fece28bf 55c15dffcaadcdc7314d8dbc0b8812b341613bad4a9a32cc6e8560d2d65d532c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/3.jpg HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/jpeg
content-length: 366126
last-modified: Thu, 14 Apr 2022 20:26:30 GMT
etag: "62588376-5962e"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FKRhqCIyuKFbgacDgmTYLBaC5zCccr2cD8rG%2BfIy1%2FjcQXfxpIECUc0LOGzKK0tPWNV6ThXX6pEF00JlwAG3DlvHaFYrFowRAC0J8HCLoj4RFZOId4%2Fp5UguAVV7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6433cd756ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/ico-notice.png | 172.67.197.61 | 200 OK | 2.8 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/ico-notice.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 31 x 31, 8-bit/color RGBA, non-interlaced Hash998e0fa9d2d325fcb32967f2a6f7e18e c6b79bcf8057944e8c4372728df6cb63086add2a b5ba1ff9d695cd27d973f94c99ceb23881104aeda8d29845dcc4b5a93a74d69f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/ico-notice.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/png
content-length: 2846
last-modified: Fri, 26 Jun 2020 07:54:20 GMT
etag: "5ef5a9ac-b1e"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mA1eC7zRrgDEIRr2%2FqIh1P7s%2FvDdbdXkSIwiraXxz8%2FJlTeLDIhe2vqE0iB1mMRNJGe0%2BSvZerreqSPW0tfhRkE5QgEIbOFjIAYoX82LnebwvDCMf3%2B6S4%2BSiCmj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6433cd856ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/ico-pay.png | 172.67.197.61 | 200 OK | 3.6 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/ico-pay.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 100 x 77, 8-bit/color RGBA, non-interlaced Hashdc5c5ef1ed04b3547563fb87b04e071b b06904c5dd8a276d1de99f92c2a17a28adc61ad1 33ab657d3951cf30513d739794db93480937d83825e12869a812626b9f5c0cf1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/ico-pay.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/png
content-length: 3562
last-modified: Mon, 27 Mar 2023 13:49:13 GMT
etag: "64219ed9-dea"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ch2dKN8yqR2t1%2F%2F8xNPnH1Ri58u32R4Y1wA8y7D5QhEva7fr%2FQr5GUvd3R%2B%2B2i317cTtfjRT8XXd2mTqhbDRYEC3%2Bns96MnbwKsaJSfQ4KTJrMhKoPmwS0BOzCmI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6433cdb56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/ico-position.png | 172.67.197.61 | 200 OK | 3.2 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/ico-position.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced Hash16873a239f423aa094ceb8751e00577e 4ebb0c783cc2c8651988a22b6d2166f1194fa3d4 399635981f5752b2eff2d254a195f01272ca2a2a84b45addbf9b67fece241009
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/ico-position.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/png
content-length: 3203
last-modified: Fri, 26 Jun 2020 08:03:22 GMT
etag: "5ef5abca-c83"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bPKebt8hgQ3YGRsbqivkkZuOr5gMpmNFwkMfCqLj9FTNGOWZ4o2xJ65mrd76KM6rHdcdVnldj8an9rcUwFWlWMe8MAqKSD%2FA8HlczEQl0EX4Nntk0UAYuAM83oO7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6434cde56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/ico-help.png | 172.67.197.61 | 200 OK | 3.9 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/ico-help.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced Hashbf260baf2f6cd4ca222c1f68d0a13a82 ea8f59ab7a7051d7de09fb9809641ae24f08e6dc e222ff8efa1b55307e3689b9401ad8b4d940d846a9d515ece97f268ce8754010
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/ico-help.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/png
content-length: 3941
last-modified: Fri, 26 Jun 2020 08:05:14 GMT
etag: "5ef5ac3a-f65"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uqx8OG2nVDvTU8GdR5dI4HglVFjLEoUYBW4b8TYzQ4L%2FJFuX6dtM59EZhVFgKZstCjRpm%2BLgA52gouRG7LHKVy74PpJWmhYeEuPgwbi3s%2FLdxCe7ED1I5ikkfdMO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6434ce256ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/show.png | 172.67.197.61 | 200 OK | 78 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/show.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:05:24 11:21:37], baseline, precision 8, 720x131, components 3 Hashf12fea6e9fec94cc9bd05608de1a6635 f7110df5642071b88c8656195aef7cd89567c3b5 72839af68544edc1d4f5bddcb02c798702cfd0d278a5804ba93e43602496b2ec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/show.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: image/png
content-length: 78145
last-modified: Thu, 14 Apr 2022 20:31:34 GMT
etag: "625884a6-13141"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74136
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aMtTH7eQw9bOtl%2Br%2F%2F29Zug4ULhsyj8NnuIt7uEXWiV%2FDPCfZtEBSqs9l7zN%2BPE%2FocToTbdH8K3N0QrqVqxz9hAbRRkE9d0%2BOH9StAyXcXb6zzx81hk1qWnIHHy0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6434ce756ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/fonts/iconfont.woff?t=1483603041633 | 172.67.197.61 | 200 OK | 34 kB |
URL GET HTTP/3zzciti.net/statica/index/fonts/iconfont.woff?t=1483603041633 IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeWeb Open Font Format, TrueType, length 34380, version 1.0 Hashec49b2f9f09efd73abcde3ffc2831c55 eaeddc97e2cc6674d977ac2c0b2b316ce26d8bb3 89ff3803cf8dc907b95175946ab385f91933741cbc3334be5485eaacf05d1efb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/fonts/iconfont.woff?t=1483603041633 HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/iconfont.css
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: font/woff
content-length: 34380
last-modified: Mon, 23 Dec 2019 07:45:56 GMT
etag: "5e0070b4-864c"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=60Wjpvlt%2F0tO4u0LAfkdV7VP93cUH8%2BkUOFXtf%2Bak0E22Zw9SWlXXq15EbEaZLoWZ8IeqcrYrGEVoQnlY9lJEyGnRd66dIhLt3gsEjBvXREJ5%2BBp4dLDFxjN5l5C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6467adc56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/favicon.ico | 172.67.197.61 | 404 Not Found | 18 kB |
IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (365) Hash382bb3007135bb71a1fda2baef3f9508 ec074b7a7cf03b3b6c4a81f5304584bf4c408282 f9da5cd7b6bbf8246e7e377154443b83e7e584b16dda4e5903e1764370cab76d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
cf-cache-status: BYPASS
set-cookie: think_var=hin-di; expires=Tue, 07-May-2024 21:07:34 GMT; Max-Age=3600; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tVOcsdYGHGn0kJyaj7LvtYCtkDOFWpfsnSE4DqmyIU8eG5f3p%2BlsDUPNjwaemPWP6a5TJ9fnNTx4tqddJQcmcpO42WRae9vYla5u0PiCDtD7A5wEGMiiZNx32PbE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6476cba56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/user.css | 172.67.197.61 | 200 OK | 8.7 kB |
URL GET HTTP/3zzciti.net/statica/index/css/user.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hash869bead148f0182ea81c86c8ec5fbba3 bee9352fe0296fed06a8b599cd9588d814d2733c 77764c07d0efbc6ec0f51186e5820db32ddae24ffafca2dc8dbaca8d13955782
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/user.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/css
last-modified: Wed, 02 Jun 2021 19:27:16 GMT
vary: Accept-Encoding
etag: W/"60b7db94-1bd8"
expires: Wed, 08 May 2024 05:00:07 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J5xkJr%2FE33%2BkRFDo00ebs7EwLatb8vNsOU5dd7a%2BeOqjCqM8U5%2Fp0n3p4iEpUe2Gymy1NItA7CvXdR23TwoCGD2BYetBez9bMn1mY6CTDhizsQdWstqMRnpD%2B0ue"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6431c9456ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/swiper.min.css | 172.67.197.61 | 200 OK | 9.8 kB |
URL GET HTTP/3zzciti.net/statica/index/css/swiper.min.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (13353) Hash7e29eec1f366019442c2e0b4979cb161 7644bbdcbc0f8cf275cd7d6c7b0aa8b9b2bf932f 58bbd6a241262127ddef359bd0d40bcbb1d84b1218f35164bc8d0348b5e8ec20
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/swiper.min.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:27:58 GMT
vary: Accept-Encoding
etag: W/"5ef5a37e-3528"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5RDVbhr3a%2FwAGuPgA1IyqIaq0Cjsm1cE9Yu82eNxSmZ09NW0RaORy4dr2Wea2Bd7uYXVqESZVlZvjxv%2FIPqZfB5hmFnh41554NFvGSCspO7ry6llFACNR%2FzwSAMW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6431c9a56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/index/index/ajaxindexpro | 172.67.197.61 | | 11 kB |
URL GET zzciti.net/index/index/ajaxindexpro IP172.67.197.61:0
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashff431eb32073910e8dfc4b5933121b15 4e484989d976a443d7b45edae75e84842bff9e5c 70fcf7cb72b5b34d32fe28f51b5ae4a01823938bc71c5cbd88dbeb51eb596100
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /index/index/ajaxindexpro HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di; pid65=56970.87; pid11=2884.43; pid63=24.6049; pid62=0.50055; pid70=400.96; pid64=76.71; pid80=27.351; pid79=119.59; pid54=0.7424; pid78=0.04; pid77=-0.006; pid76=0.005
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:37 GMT
content-type: application/json; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: think_var=hin-di; expires=Tue, 07-May-2024 21:07:37 GMT; Max-Age=3600; path=/
pid65=56970.76; path=/
pid11=2884.63; path=/
pid63=24.5749; path=/
pid62=0.50135; path=/
pid70=401.03; path=/
pid64=76.11; path=/
pid80=27.35; path=/
pid79=119.57; path=/
pid54=0.7514; path=/
pid78=-0.03; path=/
pid77=0.002; path=/
pid76=0.003; path=/
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M%2BaExjc5DYyHSWVPzlnR8AmHi73YMx2an6y%2FTJN72bFqEri1uD8ugrz4KczeHx4eVwwT%2BWttMl1%2F%2FFIVQBUA%2Bv85dVTtlMxXjyTpFytzlgsP3SmhU23RBFL1Dh3q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6596ea356ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/index/index/ajaxindexpro | 172.67.197.61 | | 6.8 kB |
URL GET zzciti.net/index/index/ajaxindexpro IP172.67.197.61:0
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hash73f043241a290a550ee6b0175d49aab2 e414a4ba616d65a2affe2f3e5c5d7c448c042595 1713ae1806b73c761c3e3009b7fabb657a3f2b9c2ce50a8a24253a125b100db0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /index/index/ajaxindexpro HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:35 GMT
content-type: application/json; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: think_var=hin-di; expires=Tue, 07-May-2024 21:07:35 GMT; Max-Age=3600; path=/
pid65=56970.9; path=/
pid11=2884.43; path=/
pid63=24.5349; path=/
pid62=0.50075; path=/
pid70=400.99; path=/
pid64=77.51; path=/
pid80=27.357; path=/
pid79=119.67; path=/
pid54=0.7454; path=/
pid78=0; path=/
pid77=-0.009; path=/
pid76=0; path=/
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kVFoXIhcnfal9uR0uTH1A7E%2F%2F28jj9GmJIAj7ctTGFY8sYeDpjS3deiSOb%2BkhcesssOj9PUrf%2BMVar4eUf%2FXv6gbqWIBHiqOgtaD5v8ZpwQC%2BVHhhgPliXKE4vyZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d64cee0e56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/common.css | 172.67.197.61 | 200 OK | 1.9 kB |
URL GET HTTP/3zzciti.net/statica/index/css/common.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (1928), with no line terminators Hash0a6774d16fd1474ebf71013869d087e3 3cdfe3362e233b482794120eb72a8a9816b43e35 5e055b1d21aa0a65f69300add1293ad01f9b2a3ba2f0354de391435b3ebdee22
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/common.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:27:02 GMT
vary: Accept-Encoding
etag: W/"5ef5a346-78b"
expires: Wed, 08 May 2024 02:35:32 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19921
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GePbfwPXxqO%2BZWNssfVS%2BFhAAgxw7%2F44JanJeubgAjCyc4XKeNzFmOp7iDNsvwuyMELbIXgLA2%2BVYbLe%2F3EWtTQjg%2B1JS3BejmCYU%2BfqxSUxST4frY48DendhAig"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6431c8b56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/js/swiper.min.js | 172.67.197.61 | 200 OK | 96 kB |
URL GET HTTP/3zzciti.net/statica/index/js/swiper.min.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, ASCII text, with very long lines (31999), with CRLF line terminators Hash287fddcfd4fafa535460d88594a6bffb dd1e62384e01fc6b853918629dacee717e17cc9f 8ea4ea3e5514608153c01ec00cc8a9daf4b5cd944ec6d3096fb97a1b3b57487b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/js/swiper.min.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: application/javascript
last-modified: Fri, 26 Jun 2020 08:04:40 GMT
vary: Accept-Encoding
etag: W/"5ef5ac18-178b4"
expires: Wed, 08 May 2024 05:00:08 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11245
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BRWlQFdaMDUyd%2FMz3Sz0Rr4vplDBU45yU4%2B8EuZfskoO8882Do%2F3Ip6qnwX1WqJosKXmJ2eI7OyYVp01LEoHN%2FS2ptzrGb%2BUxY5dKu7kyC6znQiD09zeErjg9Le0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6434cf556ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/style.css?323213 | 172.67.197.61 | 200 OK | 42 kB |
URL GET HTTP/3zzciti.net/statica/index/css/style.css?323213 IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/style.css?323213 HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/css
last-modified: Sun, 17 Apr 2022 11:53:04 GMT
vary: Accept-Encoding
etag: W/"625bffa0-a537"
expires: Wed, 08 May 2024 02:35:32 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19921
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=99nM6u%2BTpucneoSbHL48KXpPzQPFWzoLnj5tl4pgGrQxtWz0%2Bimrs6XDjJP0nE2gjMlIi0mo0iXP856VUpCXhGzANBGa93eyqb5WeLhnfro5WWorLzt5HENzaJgn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6431c8256ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/personal.css | 172.67.197.61 | 200 OK | 16 kB |
URL GET HTTP/3zzciti.net/statica/index/css/personal.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/personal.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/style.css?323213
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/css
last-modified: Mon, 26 Jul 2021 08:05:20 GMT
vary: Accept-Encoding
etag: W/"60fe6cc0-4047"
expires: Wed, 08 May 2024 05:00:07 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ExvuqEjUpIUgwypPMcqMTyXBm1YFxdg5Pa6lIvDFNqWScwnfRgQaxoey4QEWi3fTaT4FBk8BdnSTOlJLpxnY3IFe%2FdgkTVsQBh00Gogs6WA%2FZqAngB0rUzSuT%2BWU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d644dfe556ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/trade-history.css | 172.67.197.61 | 200 OK | 3.5 kB |
URL GET HTTP/3zzciti.net/statica/index/css/trade-history.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (3734), with no line terminators Hash8785319d94b490c27e96c284aef0620f 0d7e0de01adb9d4d51e2bdc8cae70ef969612bf6 b2ebab53ba4573ebd413526d90271e5948b010bc48eabbe4f71d7b1441b6bdc9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/trade-history.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/style.css?323213
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:36:58 GMT
vary: Accept-Encoding
etag: W/"5ef5a59a-d9b"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sy4dfSaXM3ueZxbDwC9f1ENCx1npwPSgV5xUJDayj9okMr%2BOrlRZ04cKRTs5vB6EDePIMjlnyGwLGr6uQQBMG9bfN3PJqUjXjows62%2FdBhTRtKdEmQxVx1atZJCD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d644dfe656ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/static/index/js/lk/order.js | 172.67.197.61 | 200 OK | 3.3 kB |
URL GET HTTP/3zzciti.net/static/index/js/lk/order.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (3461), with no line terminators Hash042b6e33e1769241a3448640a386bbe8 538fa37d7ced395955f0d7e8c3b64fcc01d0544e d745774f7bfffe9d5a61197428636d38e8c006184f0e9f5d954a21e249d28d74
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/index/js/lk/order.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: application/javascript
last-modified: Thu, 03 Jun 2021 17:47:30 GMT
vary: Accept-Encoding
etag: W/"60b915b2-cb5"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bvE0N8pci9hj4RmDDYbXxw%2Fni2KZyQVAr2Ujjp2cNGqUWQRVsD5Fid2MMDIkp%2FoAS1O9aaUhM%2F4QIym1JKDwiXjf7cPApHT2YsoN0AENIRYIkohProxIdCCeF0Sv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6432ca056ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/js/base64.js | 172.67.197.61 | 200 OK | 3.1 kB |
URL GET HTTP/3zzciti.net/statica/public/js/base64.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (3546), with no line terminators Hash7e9c832c9db5ef26104a985632664dc6 830d135d33b9194054d67f3603d1d7adcc7d8d18 ea55eda109112834a1461a08f8d8b2b07435e28691cc279b092bfe3a999b59c4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/js/base64.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: application/javascript
last-modified: Fri, 26 Jun 2020 07:29:52 GMT
vary: Accept-Encoding
etag: W/"5ef5a3f0-beb"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GMUfBIFFWrf52%2FuGyCFavKEEawk4hunnd%2F%2BVYOBfwRITkL0wQPFv0BMtb5U5hEK53jWvvgoRuJNrp6KwR2UWS6BVpU8bClXym%2BMXEP3RcWlMmmwLE35ee%2FY7w0Gu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6432cad56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/sign.css | 172.67.197.61 | 200 OK | 8.6 kB |
URL GET HTTP/3zzciti.net/statica/index/css/sign.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (9305), with no line terminators Hashb39670f94265eeccce929adc603b6a23 68522c215f7b2b790c1e8a6b412a97f37cf5318b 0708bb449d38455ef978a24a040ac8d94d8206a617ca2178a3bd594aad9ea5c6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/sign.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/style.css?323213
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:37:02 GMT
vary: Accept-Encoding
etag: W/"5ef5a59e-21c0"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eIlUNYBaIUkhOk444xMlAfzNr2jnjwPMUJzNSYDwSZD%2BM576WhKR2XGh1CLb99FJMVSoGAhupObgtN8Id%2B9x4Fq71pMW5krrl3%2FGlmijeOFUM%2FOl5McDzb1xy7%2B3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d644dfeb56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/layer/skin/default/layer.css?v=3.0.11110 | 172.67.197.61 | 200 OK | 14 kB |
URL GET HTTP/3zzciti.net/statica/layer/skin/default/layer.css?v=3.0.11110 IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (14296), with no line terminators Hash01ad21d46e656bb2c8e162c5305e754f 6bc931ea5cce8cf7ff2bc205f115af1da5a2df7a b4ed5d24c92f99371c49023c1f7da9597cac7f23d3c9efe7c07025bc4a5d7386
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/layer/skin/default/layer.css?v=3.0.11110 HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:37:32 GMT
vary: Accept-Encoding
etag: W/"5ef5a5bc-37d8"
expires: Wed, 08 May 2024 05:00:08 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9JIJBDL6%2Ba%2Bxb6O63jorzF5Bq1lW%2B9hblxWRvMQao1lVgc5Dz%2Bxv4wz5N%2BxnDR9sF%2BGbFUwtlgdR50sjZy5bydlKV1iu0r27iST6ml2AJH1r9b0YGtoGt6%2B4EpiU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d645d9ac56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/js/home.js | 172.67.197.61 | 200 OK | 1.5 kB |
URL GET HTTP/3zzciti.net/statica/index/js/home.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1541), with no line terminators Hash93d784d3c23b43fa345f4454592fffdd 46c2ff4c7b8fa74da390cc3995040a8d26e8446b eb405a96f7e66e933bf0c7551277d039f3d7bc439e195d12593f231cd7b30b82
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/js/home.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: application/javascript
last-modified: Fri, 26 Jun 2020 08:04:18 GMT
vary: Accept-Encoding
etag: W/"5ef5ac02-5cd"
expires: Wed, 08 May 2024 05:00:08 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11245
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9%2BDvFtOA5LGF8j2nqkZIRb5YiVtIrV3VvzpEvLFK5bI%2Fa1mUpD6u%2FnwXB%2BsE8KReuJB6v32bQWKiXaxrPG5omaKn5Qo%2Fq%2BqitSQTUtUl144dSXs3%2FlVO61Y9LCyW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6434cfc56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/js/jquery-1.9.1.min.js | 172.67.197.61 | 200 OK | 94 kB |
URL GET HTTP/3zzciti.net/statica/js/jquery-1.9.1.min.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/js/jquery-1.9.1.min.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: application/javascript
last-modified: Wed, 02 Jun 2021 19:04:52 GMT
vary: Accept-Encoding
etag: W/"60b7d654-16ed1"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tng3W5nKOxBoq55dsJReaUSdCiQdNQYpjIerjBpsWxiMDvNXFXdKRqG6dEIeVrRESkH8A%2Fp1dCnZF%2FRzPdxwXRUtv593d3DumqfXnVMKfmPgFvOn0vPzqVIpUyxd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6431c9d56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/layer/layer.js | 172.67.197.61 | 200 OK | 21 kB |
URL GET HTTP/3zzciti.net/statica/layer/layer.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/layer/layer.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: application/javascript
last-modified: Mon, 23 Dec 2019 07:45:56 GMT
vary: Accept-Encoding
etag: W/"5e0070b4-535e"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jgb2DvuYZnmOljSohVyaJ4d9JICFbKPECaTn9drpYuonDQaAQF%2Fj0mcipBzMVmg5QFAYxtjNc5onl1%2FUrekT8v76AbrfnkiDvLxx75LX9Jy%2FQmjPuFxHy9fR2GoV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6432ca356ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/js/function.js | 172.67.197.61 | 200 OK | 1.6 kB |
URL GET HTTP/3zzciti.net/statica/public/js/function.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (1759), with no line terminators Hash3d4de0c954f9f61aa92ce6c44a5cacc6 aba635c2328ac93e615a710486e89f932d224fcd 7ae150e34f3c5820dd8905d2e7fc776316cfddec4f4c54da971aa7a82f1d6ebd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/js/function.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: application/javascript
last-modified: Fri, 24 Jul 2020 07:56:36 GMT
vary: Accept-Encoding
etag: W/"5f1a9434-64e"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=An9z46IYZ7pvQB13I9lflSxa63swMSO07nXoFvokYf8pEVT6S%2BZFxQ7HUYUghCS8Xdz3Neol79BSIUks%2BVgb2MzQxg6DtTi5Irh%2FJRAvUZcofdty6Hg78sEtjmRu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6432ca856ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/iconfont.css | 172.67.197.61 | 200 OK | 3.5 kB |
URL GET HTTP/3zzciti.net/statica/index/css/iconfont.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (3854), with no line terminators Hash4a2e08ea8dd2dfd11efb9b58665f591b 13e88cd4f93bab769f449543affd88f168b2fcf2 6e13934f3b320f42cafbe7aa5be366bbdcd737d8e4cf0ae3f03f42dc97ade8b9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/iconfont.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/style.css?323213
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:37:12 GMT
vary: Accept-Encoding
etag: W/"5ef5a5a8-dc9"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zJfAerTw5MF5X1H5080q%2BUU1j85uPndcvwYtvPJMEnz%2FLnGXler5tc9ePTUDnfMlRhzQOH%2F%2Bq4K4hCkZyARAmpczgXKGAXXELO3BcHB7tmeEJKKnv%2Bv3oiy4lZ7i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d644dff056ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/js/lk/index.js?2323 | 172.67.197.61 | 200 OK | 5.5 kB |
URL GET HTTP/3zzciti.net/statica/index/js/lk/index.js?2323 IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, ASCII text, with very long lines (5682), with no line terminators Hashdd79b529c5a3e612b8e423ec904c6253 f1269ac2efd98206cc3e8d74837b7510c0082ac3 6211391450e803b26c448ad614de07c397c7050b87847f089252f3a5b47db9be
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/js/lk/index.js?2323 HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: application/javascript
last-modified: Wed, 19 Apr 2023 11:31:34 GMT
vary: Accept-Encoding
etag: W/"643fd116-156d"
expires: Wed, 08 May 2024 05:00:08 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11245
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pKhv0BfgWqFC2LBg6wauhBmQi7NC5bhPs%2B2mKfff9kxoOmTLhWQOqB7wKtu0%2Bos0NrYoUmd8QlA05tqgvEVq0FFpX%2BN1a228Xu9i8Ggk2hRXsDCIRIBYE%2BkyWbxc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6434cf756ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/trade.css | 172.67.197.61 | 200 OK | 3.2 kB |
URL GET HTTP/3zzciti.net/statica/index/css/trade.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (3481), with no line terminators Hasha20ee2a26535c8ce7f61ab957f9ed529 26689b68851e9595bb4aa91c20f853c08f610d70 75a1d9066710b5b5b67332025456442265e290a50abe200cd746ff61101bab2b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/trade.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/style.css?323213
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:37:08 GMT
vary: Accept-Encoding
etag: W/"5ef5a5a4-c8e"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FEkx2%2B3IH%2BP6CxnuPEmpb3Dc2fVibG5WXZGRrgwuB203NXDcfXpQ7ceemnKpeyCaNSUJeUyegwmp%2FeA2YWxnUZ4IIl%2F89TpkvhucQHHOpc2otuxZBxbM8ULl8xqU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d644dfee56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html | 172.67.197.61 | 200 OK | 34 kB |
URL User Request GET HTTP/2zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html IP172.67.197.61:443
CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: think_var=hin-di; expires=Tue, 07-May-2024 21:07:33 GMT; Max-Age=3600; path=/
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SeLPWdpuRwF%2FT56oQo%2F3Z1ulzRHu91VCePpg6xNFQmNH5Xa%2BSIy2%2FaUf4aEbIPPvlz2uPPz9xMDg7ZqJ6P5s6IoUa4ABH%2FAwZioteAU6bCdAE4TaVr%2F4BVr%2FhB5g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d64069d45684-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| zzciti.net/static/index/css/ionic.css | 172.67.197.61 | 200 OK | 253 kB |
URL GET HTTP/3zzciti.net/static/index/css/ionic.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Size253 kB (252658 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/index/css/ionic.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/css
last-modified: Wed, 02 Jun 2021 21:04:56 GMT
vary: Accept-Encoding
etag: W/"60b7f278-3daf2"
expires: Wed, 08 May 2024 02:35:32 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19921
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z%2FFLUm8FQ1j5QO%2FDoRPe3P6A9xiv6Sp0XytWTYIZW84BiuebEW%2BqsJ30t1aqgBrr5VKjRXrePE51KOfnKHpUz6wsfnNi6mVH6Nyl2rUMOJdEIT3G9lrvwWSWWAuE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6431c7f56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/index?lang=en-us/index/index/index/token/46e9ce9c3bd6b57c0acdefa41fe6261e.html/index/index/index/token/463eea3681d92af8e1c766ad428cdf19.html/index/index/index/token/a725b0d24e1a64ebe7efbf2984917c0e.html/index/index/index/token/23e0fbb02e94aa89c33fa78d0c67989d.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/9c2a9df531d0aa6bc6f92228a80a2fee.html/index/index/index/token/65c7847ec95bc4b466b784e5567a24a8.html/index/index/index/token/6f98c0a5483aa061b99d517e3abd44d9.html/index/index/index/token/b68fbdcc0ca544aed754cb76746857e2.html/index/index/index/token/8137f795a150b9bf6175ab37b5bdfbe2.html/index/index/index/token/8e71c231d97621654adbc87d648e5a14.html/index/index/index/token/a63db08cd84b68e056ab257cf5e6e5a1.html/index/index/index/token/58785a02e80fd09f4d5c660976515871.html/index/index/index/token/57e488211af23245025b68a20aea2183.html/index/index/index/token/57e488211af23245025b68a20aea2183.html/index/index/index/token/57e488211af23245025b68a20aea2183.html/index/index/index/token/3f1bbbd81fe674534c3faedfdf04b6aa.html/index/index/index/token/3f1bbbd81fe674534c3faedfdf04b6aa.html/index/index/index/token/ffa31f9ce0bb74b8fc3bc80b7fa3afae.html/index/index/index/token/ffa31f9ce0bb74b8fc3bc80b7fa3afae.html/index/index/index/token/97faded83a28a5911f7925420197bc24.html/index/index/index/token/c75b6cc7fd955df6f9cda2f2124fc8cb.html/index/index/index/token/3bf60dc233104f380921bfd1ae4529f3.html/index/index/index/token/c00d80fb543ae93f5093b95553a98ea3.html/index/index/index/token/d72da89c5f63387ae22bfbbb5f8a0be4.html/index/index/index/token/d72da89c5f63387ae22bfbbb5f8a0be4.html/index/index/index/token/735fd941d38d8af0015120de42866e1f.html/index/index/index/token/5ac6ab4e55c9ca410e693163a623b09f.html/index/index/index/token/42efe0f5fbce4d4b80c205a78f3391c3.html/index/index/index/token/4e1ab7d11d3a | 172.67.197.61 | 302 Found | 34 kB |
URL User Request GET HTTP/2zzciti.net/index?lang=en-us/index/index/index/token/46e9ce9c3bd6b57c0acdefa41fe6261e.html/index/index/index/token/463eea3681d92af8e1c766ad428cdf19.html/index/index/index/token/a725b0d24e1a64ebe7efbf2984917c0e.html/index/index/index/token/23e0fbb02e94aa89c33fa78d0c67989d.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/9c2a9df531d0aa6bc6f92228a80a2fee.html/index/index/index/token/65c7847ec95bc4b466b784e5567a24a8.html/index/index/index/token/6f98c0a5483aa061b99d517e3abd44d9.html/index/index/index/token/b68fbdcc0ca544aed754cb76746857e2.html/index/index/index/token/8137f795a150b9bf6175ab37b5bdfbe2.html/index/index/index/token/8e71c231d97621654adbc87d648e5a14.html/index/index/index/token/a63db08cd84b68e056ab257cf5e6e5a1.html/index/index/index/token/58785a02e80fd09f4d5c660976515871.html/index/index/index/token/57e488211af23245025b68a20aea2183.html/index/index/index/token/57e488211af23245025b68a20aea2183.html/index/index/index/token/57e488211af23245025b68a20aea2183.html/index/index/index/token/3f1bbbd81fe674534c3faedfdf04b6aa.html/index/index/index/token/3f1bbbd81fe674534c3faedfdf04b6aa.html/index/index/index/token/ffa31f9ce0bb74b8fc3bc80b7fa3afae.html/index/index/index/token/ffa31f9ce0bb74b8fc3bc80b7fa3afae.html/index/index/index/token/97faded83a28a5911f7925420197bc24.html/index/index/index/token/c75b6cc7fd955df6f9cda2f2124fc8cb.html/index/index/index/token/3bf60dc233104f380921bfd1ae4529f3.html/index/index/index/token/c00d80fb543ae93f5093b95553a98ea3.html/index/index/index/token/d72da89c5f63387ae22bfbbb5f8a0be4.html/index/index/index/token/d72da89c5f63387ae22bfbbb5f8a0be4.html/index/index/index/token/735fd941d38d8af0015120de42866e1f.html/index/index/index/token/5ac6ab4e55c9ca410e693163a623b09f.html/index/index/index/token/42efe0f5fbce4d4b80c205a78f3391c3.html/index/index/index/token/4e1ab7d11d3a IP172.67.197.61:443
CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /index?lang=en-us/index/index/index/token/46e9ce9c3bd6b57c0acdefa41fe6261e.html/index/index/index/token/463eea3681d92af8e1c766ad428cdf19.html/index/index/index/token/a725b0d24e1a64ebe7efbf2984917c0e.html/index/index/index/token/23e0fbb02e94aa89c33fa78d0c67989d.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/9c2a9df531d0aa6bc6f92228a80a2fee.html/index/index/index/token/65c7847ec95bc4b466b784e5567a24a8.html/index/index/index/token/6f98c0a5483aa061b99d517e3abd44d9.html/index/index/index/token/b68fbdcc0ca544aed754cb76746857e2.html/index/index/index/token/8137f795a150b9bf6175ab37b5bdfbe2.html/index/index/index/token/8e71c231d97621654adbc87d648e5a14.html/index/index/index/token/a63db08cd84b68e056ab257cf5e6e5a1.html/index/index/index/token/58785a02e80fd09f4d5c660976515871.html/index/index/index/token/57e488211af23245025b68a20aea2183.html/index/index/index/token/57e488211af23245025b68a20aea2183.html/index/index/index/token/57e488211af23245025b68a20aea2183.html/index/index/index/token/3f1bbbd81fe674534c3faedfdf04b6aa.html/index/index/index/token/3f1bbbd81fe674534c3faedfdf04b6aa.html/index/index/index/token/ffa31f9ce0bb74b8fc3bc80b7fa3afae.html/index/index/index/token/ffa31f9ce0bb74b8fc3bc80b7fa3afae.html/index/index/index/token/97faded83a28a5911f7925420197bc24.html/index/index/index/token/c75b6cc7fd955df6f9cda2f2124fc8cb.html/index/index/index/token/3bf60dc233104f380921bfd1ae4529f3.html/index/index/index/token/c00d80fb543ae93f5093b95553a98ea3.html/index/index/index/token/d72da89c5f63387ae22bfbbb5f8a0be4.html/index/index/index/token/d72da89c5f63387ae22bfbbb5f8a0be4.html/index/index/index/token/735fd941d38d8af0015120de42866e1f.html/index/index/index/token/5ac6ab4e55c9ca410e693163a623b09f.html/index/index/index/token/42efe0f5fbce4d4b80c205a78f3391c3.html/index/index/index/token/4e1ab7d11d3a HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/html; charset=utf-8
set-cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; path=/
think_var=hin-di; expires=Tue, 07-May-2024 21:07:33 GMT; Max-Age=3600; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-cache,must-revalidate
location: /index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=po1JMO2LVmqZciIgJIbQzUB7peDaghFZ%2BYndEJ4W65VIF6ucGLsdQA3g%2Bs3ADhDxeoBy%2FHnK6vkkpWYTPl153QaK42MHDnFCh79HIQYVomYXhwHd5xW06aQgAD9t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d63f1f135684-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| zzciti.net/statica/index/css/reset.css | 172.67.197.61 | 200 OK | 1.7 kB |
URL GET HTTP/3zzciti.net/statica/index/css/reset.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (1540), with no line terminators Hash46e740d018729e7d284a5dd03f7da32c 28eb0d7da502e460abf1530a671acad67fd326e3 94d54ce470138fe94a033fceb2f3b3c479badc68644529912f6e7ee8c1134bfc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/reset.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:28:18 GMT
vary: Accept-Encoding
etag: W/"5ef5a392-6a1"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HXkhmrqYc5p8bypKtVRQo8l54a9Fabq85mz%2BVYmhX3y0OAUc0HsFgLU69q4pjwLNQSzE6p5j%2Foq1y7AJkzkCX1qHtuShgoCv1jRBPB9j%2FvD6WnCTqzh5WC%2FioJVS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6431c8e56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/home.css | 172.67.197.61 | 200 OK | 8.8 kB |
URL GET HTTP/3zzciti.net/statica/index/css/home.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (9289), with no line terminators Hash9cadb4416f14af7fbae8261ef00f7943 b1d2a3f45e4eab0d683ff9b8beee6143cc612d29 a9f663717a4420d4a46e65c356a9b933cbb3d75f8b9c74b1b1a2192f0ab58fcd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/home.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:28:12 GMT
vary: Accept-Encoding
etag: W/"5ef5a38c-228f"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mZXLMPlQZDJbfWc3kjQn9uZtdsGXD86Km956MXX6R3TMdSYESOq4oJSkxrooqq7GI6MmBltQ15EDTFBlKEtWmUoOZyZCfrAeD%2Bslm0%2By1l9NgoAqoWa99a1H%2BneQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6431c9156ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/js/flexible.js | 172.67.197.61 | 200 OK | 3.4 kB |
URL GET HTTP/3zzciti.net/statica/index/js/flexible.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3429), with no line terminators Hash376beb0ce109195b660edba7110598d5 ea0d82163d593239bc8d99956a35cc8ccc1ca466 78790d5123971046e364a49fc1e9f68bd0e511f2f0c07dc9596800b82aba5e9f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/js/flexible.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: application/javascript
last-modified: Fri, 26 Jun 2020 08:03:50 GMT
vary: Accept-Encoding
etag: W/"5ef5abe6-d46"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FTIXE0UDwo9YbkKrH9rlt3rJD%2B%2BYzAT468JtDrS5TSVHRXMBCSoi%2Bu%2B%2FXqORSUJM7AMywAbXDxrcEvbgkmzfPeWdjD3%2FFSc%2FZ6mv%2BrAVWz6SUoqduvXHnWq%2FdfEZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6434cf056ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/js/zepto.min.js | 172.67.197.61 | 200 OK | 26 kB |
URL GET HTTP/3zzciti.net/statica/index/js/zepto.min.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, ASCII text, with very long lines (26318) Hash50a4556b0089cfa1cb61e88ea23bbcce 6865443a258954fa19b8aa682e1f4c77d42493d1 beb9f5e32ed61fbce010497242a9b6b8219242b5ffc636038e7891510c773725
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/js/zepto.min.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=6g046cbgbmb4td5mo8p4bf4tm3; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: application/javascript
last-modified: Fri, 26 Jun 2020 08:04:02 GMT
vary: Accept-Encoding
etag: W/"5ef5abf2-6712"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QleB92NM%2B0CwYJ21lNJufiTjlfxFj3KmjOCwz3nHHOLC0Bfs%2BiSZ6Nt%2BILHQteSKRFV6Wd35oh%2FEdjb70B3SR7ubShZlw0Z54oC353uQn1FaozgtRxOhib8YDhjB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6434cf256ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|