Report - netcine.zip

Report Overview

Visited public
2025-05-08 03:41:22
Tags
URL
netcine.zip
Finishing URL
netcinez.ch/
IP / ASN
62.182.85.232
#30860 Virtual Systems LLC
Title
NetCine: Filmes e Séries Online Grátis

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.bcdn.zip	unknown	2024-08-02	2024-08-13	2025-04-25	3.9 kB	149 kB	89.187.169.47
netcinez.ch	unknown	unknown	2025-04-26	2025-04-26	976 B	9.2 kB	62.182.85.232
my.rtmark.net	9054	2014-10-29	2015-02-04	2025-05-08	469 B	834 B	104.18.41.22
0019x.com	unknown	2020-03-19	2025-04-26	2025-04-26	1.1 kB	3.4 kB	139.45.197.247
ccg90.com	unknown	2021-03-14	2025-04-24	2025-05-01	2.2 kB	110 kB	139.45.197.106
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-05-07	432 B	383 kB	142.250.74.168
edns.ip-api.com	467468	2012-04-24	2014-10-06	2025-04-26	429 B	314 B	85.10.196.124
wvsmqbprnofvdku.com	unknown	2025-05-07	2025-05-08	2025-05-08	959 B	1.2 kB	139.45.197.111
v2e2oldcbfbpo1kn1pg2z44iyqa4unty.edns.ip-api.com	unknown	2012-04-24	2025-05-08	2025-05-08	447 B	270 B	85.10.196.124
netcine.zip	unknown	2024-06-02	2024-12-04	2025-04-26	876 B	8.8 kB	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-05-08 03:40:49	low	Client IP	62.182.85.232	ET INFO HTTP Request to a *.zip Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	netcinez.ch/	Function	37 B	2023-04-11	2025-05-25
Pretty URL netcinez.ch/ IP 62.182.85.232 ASN #30860 Virtual Systems LLC Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31 Last Seen2025-05-25 02:18 Times Seen266317 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	cdn.bcdn.zip/scripts/rmobi2.js	ScriptElement	961 B	2024-09-27	2025-05-21
Pretty URL cdn.bcdn.zip/scripts/rmobi2.js IP 89.187.169.47 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-27 21:30 Last Seen2025-05-21 17:39 Times Seen35 Hash 33b92ab151fe1191a10a2928b889f1ee ee812568e0447f6cf6400af06787e752411237d5 b8ef43b047d9fb243995974715d2dcd916082ccee77804567d575b9c0ea97626 Loading...

	netcinez.ch/	Eval	38 kB	2025-04-26	2025-05-12
Pretty URL netcinez.ch/ IP 62.182.85.232 ASN #30860 Virtual Systems LLC Introduced by eval Embedded in HTML false Observations First Seen2025-04-26 17:00 Last Seen2025-05-12 13:37 Times Seen8 Hash c67c25e00d61be2f33709a1e5d884ba6 ad0167f2d57ba7cfa56602f25cffa5aff0648dfb 78d6c9328829077c3d375a49696c2683920474d9f299af1348ae0e07f82ca94a Loading...

	cdn.bcdn.zip/scripts/blankw.js	ScriptElement	52 kB	2025-04-26	2025-05-12
Pretty URL cdn.bcdn.zip/scripts/blankw.js IP 89.187.169.47 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-26 17:00 Last Seen2025-05-12 13:37 Times Seen8 Hash 67eabdfde6a77f6eac397ecaeaec88bf 108173a19c5376ac6ad1d3c1978bb77e5e325316 b9816b360dde5093303dc4ff6c2481968c67eeb7b2875ead2a3217a57ccc1a52 Loading...

	netcinez.ch/	ScriptElement	172 B	2025-05-08	2025-05-08
Pretty URL netcinez.ch/ IP 62.182.85.232 ASN #30860 Virtual Systems LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 03:41 Last Seen2025-05-08 03:41 Times Seen1 Hash d6405e0207d19c143eaf6dada7f505a3 23c8f809ecf23bac3133ff90931051129317a477 a0c0c679e9c63417c7658f7dfea3db42d60d06738cf7c9b284735667e1286d62 Loading...

	ccg90.com/5/8858321	ScriptElement	108 kB	2025-05-08	2025-05-08
Pretty URL ccg90.com/5/8858321 IP 139.45.197.106 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 03:41 Last Seen2025-05-08 03:41 Times Seen1 Hash bd338d60052a79b6810de38e9c7469bc c1ad2962383b668185ecc37d85a9a56e6f651f0e 284e631d3cff1f8b176a4ed6353786f9bc78561d541707f995c6c489113104f9 Loading...

	netcinez.ch/	ScriptElement	180 B	2024-12-04	2025-05-21
Pretty URL netcinez.ch/ IP 62.182.85.232 ASN #30860 Virtual Systems LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-04 14:52 Last Seen2025-05-21 17:39 Times Seen22 Hash 5ecdf986f06e20b0df929d422bcc9475 b74b14fc6bb099328dce3ffb67ab5122da8b5f54 35389540780906440d2566317c3a753b114d3d60fbb2cd15311cf8eec574beeb Loading...

	cdn.bcdn.zip/scripts/scriptmenu7.js	ScriptElement	974 B	2024-10-12	2025-05-21
Pretty URL cdn.bcdn.zip/scripts/scriptmenu7.js IP 89.187.169.47 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-12 22:58 Last Seen2025-05-21 17:39 Times Seen26 Hash e600be19ee46a37afe487f78801e17c0 57b64eddd07f22e6bc7e113e09002120efdde413 0fd6a39cb7d662168afd79264396616d58a80dd2e699a2944ee047b19ba74812 Loading...

	www.googletagmanager.com/gtag/js?id=G-NZDPYDPLE0	ScriptElement	382 kB	2025-05-08	2025-05-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-NZDPYDPLE0 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 03:41 Last Seen2025-05-08 03:41 Times Seen1 Hash 0959af64a41a07775d216a3ed18c3b03 f8caab36ba5dda822448223e85b43271991d25ca 8835e72b4d85fa32e28b6e1c91d861bbced01d9db4168f4d5d66953c5ae284e9 Loading...

	netcinez.ch/	Eval	18 kB	2025-04-26	2025-05-12
Pretty URL netcinez.ch/ IP 62.182.85.232 ASN #30860 Virtual Systems LLC Introduced by eval Embedded in HTML false Observations First Seen2025-04-26 17:00 Last Seen2025-05-12 13:37 Times Seen8 Hash f8a2a35bb492701e3fa3540ae967a42d 327a1b0561f3817a87cac4ede08b95a497720ddb 3d1db3a81b9febec50a4f4d8735a1512ce329832214a693be1fcacf8d7b81565 Loading...

	cdn.bcdn.zip/scripts/mmoneaa.min.js	ScriptElement	28 kB	2025-03-05	2025-05-12
Pretty URL cdn.bcdn.zip/scripts/mmoneaa.min.js IP 89.187.169.47 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-05 19:39 Last Seen2025-05-12 13:37 Times Seen18 Hash 289f3f8e3d39978bea10e110941b4680 0408cc3c49f37fad24a94b0dc91043f3e9e93682 bdefc40030caf62225eed7eebc7ecf2c793b2fe4b1c70939eefd68fda8a23432 Loading...

HTTP Transactions (23)

URL IP Response Size

ccg90.com/wrr?z=8858321&p_rid=8f6e776c-cf47-4b34-941b-e3e8917a1982&rb=JXoXWILvMf-4GuWOYznfOc7W1RLPdJqYESVp35lw8u8z71vKBUvjM5x9TjNOrLqytdXDUGX1HT1CXhdZ30YtW7F2vMhpKIq9Ymdc_Qjc0oYfu0t5e76LvsQfOx_5YP1rcR-qpWMIBobA46xqG0u0rVO1tQ3nGpOs8eg8y4BChoV0X-WlOZANvlyeqT6bDjBW0Ua6j2SdK022AYjto5l2Xokl7OdpUrZcnfULh7w3g-vhBBK8Gq0Jo8TB7fLVNX9oRBoUxT0eS297u7ReMenoRRe5qtgX4F86&dmn=ccg90.com&userId=0081c3148d2440cde006e97751616330

139.45.197.106

204 No Content

0 B

URL POST
ccg90.com/wrr?z=8858321&p_rid=8f6e776c-cf47-4b34-941b-e3e8917a1982&rb=JXoXWILvMf-4GuWOYznfOc7W1RLPdJqYESVp35lw8u8z71vKBUvjM5x9TjNOrLqytdXDUGX1HT1CXhdZ30YtW7F2vMhpKIq9Ymdc_Qjc0oYfu0t5e76LvsQfOx_5YP1rcR-qpWMIBobA46xqG0u0rVO1tQ3nGpOs8eg8y4BChoV0X-WlOZANvlyeqT6bDjBW0Ua6j2SdK022AYjto5l2Xokl7OdpUrZcnfULh7w3g-vhBBK8Gq0Jo8TB7fLVNX9oRBoUxT0eS297u7ReMenoRRe5qtgX4F86&dmn=ccg90.com&userId=0081c3148d2440cde006e97751616330
IP
139.45.197.106:443
ASN
#9002 RETN Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectccg90.com
Fingerprint56:09:8B:A2:B0:CC:2D:94:BB:34:A2:E9:A2:FD:C7:53:D9:F4:20:83
ValidityWed, 23 Apr 2025 09:55:55 GMT - Tue, 22 Jul 2025 09:55:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /wrr?z=8858321&p_rid=8f6e776c-cf47-4b34-941b-e3e8917a1982&rb=JXoXWILvMf-4GuWOYznfOc7W1RLPdJqYESVp35lw8u8z71vKBUvjM5x9TjNOrLqytdXDUGX1HT1CXhdZ30YtW7F2vMhpKIq9Ymdc_Qjc0oYfu0t5e76LvsQfOx_5YP1rcR-qpWMIBobA46xqG0u0rVO1tQ3nGpOs8eg8y4BChoV0X-WlOZANvlyeqT6bDjBW0Ua6j2SdK022AYjto5l2Xokl7OdpUrZcnfULh7w3g-vhBBK8Gq0Jo8TB7fLVNX9oRBoUxT0eS297u7ReMenoRRe5qtgX4F86&dmn=ccg90.com&userId=0081c3148d2440cde006e97751616330 HTTP/1.1
Host: ccg90.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://netcinez.ch/
content-type: application/json
Content-Length: 2516
Origin: https://netcinez.ch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Thu, 08 May 2025 03:40:52 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://netcinez.ch
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

netcine.zip/

0.0.0.0

0 B

URL User Request GET
netcine.zip/
IP
0.0.0.0:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	low	ET INFO HTTP Request to a *.zip Domain

HTTP Headers

GET / HTTP/1.1
Host: netcine.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

www.googletagmanager.com/gtag/js?id=G-NZDPYDPLE0

142.250.74.168

200 OK

382 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-NZDPYDPLE0
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://netcinez.ch/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintB7:82:F3:C7:93:B0:60:B0:83:49:F8:74:0D:49:78:23:65:0B:37:01
ValidityMon, 31 Mar 2025 08:54:29 GMT - Mon, 23 Jun 2025 08:54:28 GMT

File type
JavaScript source, ASCII text, with very long lines (6125)
Size
382 kB (382426 bytes)
Hash
0959af64a41a07775d216a3ed18c3b03
f8caab36ba5dda822448223e85b43271991d25ca
8835e72b4d85fa32e28b6e1c91d861bbced01d9db4168f4d5d66953c5ae284e9

HTTP Headers

GET /gtag/js?id=G-NZDPYDPLE0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 May 2025 03:40:50 GMT
expires: Thu, 08 May 2025 03:40:50 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1075:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1075:0
report-to: {"group":"ascgcycc:1075:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1075:0"}],}
server: Google Tag Manager
content-length: 127919
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.bcdn.zip/scripts/mmoneint9.min.js

89.187.169.47

200 OK

52 kB

URL GET
cdn.bcdn.zip/scripts/mmoneint9.min.js
IP
89.187.169.47:443
ASN
#60068 Datacamp Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectcdn.bcdn.zip
Fingerprint6F:7E:67:99:13:85:0A:05:44:E3:36:7A:4B:0B:D1:5B:45:F6:34:02
ValidityThu, 24 Apr 2025 04:13:59 GMT - Wed, 23 Jul 2025 04:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (52178), with CRLF line terminators
Size
52 kB (52203 bytes)
Hash
67eabdfde6a77f6eac397ecaeaec88bf
108173a19c5376ac6ad1d3c1978bb77e5e325316
b9816b360dde5093303dc4ff6c2481968c67eeb7b2875ead2a3217a57ccc1a52

HTTP Headers

GET /scripts/mmoneint9.min.js HTTP/1.1
Host: cdn.bcdn.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://netcinez.ch/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 03:40:51 GMT
content-type: application/javascript
server: BunnyCDN-DE1-756
cdn-pullzone: 1552782
cdn-uid: 5e612068-3bb9-4e40-a899-ea27c6001df7
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=1200
content-encoding: br
last-modified: Tue, 22 Apr 2025 02:25:46 GMT
perma-cache: MISS
x-bo-server: DE-138
x-downloadsize: 52203
x-bo-origindownloadtime: 160
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/22/2025 02:25:46
cdn-edgestorageid: 722
cdn-requestid: 3ced592e9e42ab08564495e476f68047
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

netcinez.ch/

62.182.85.232

200 OK

0 B

URL HEAD
netcinez.ch/
IP
62.182.85.232:443
ASN
#30860 Virtual Systems LLC

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectnetcinez.ch
Fingerprint1F:A6:12:EB:88:DC:45:72:AD:AC:CC:E0:61:0A:B9:F6:3F:EE:B3:0A
ValidityFri, 18 Apr 2025 06:36:10 GMT - Thu, 17 Jul 2025 06:36:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: netcinez.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Cookie: _ga_NZDPYDPLE0=GS2.1.s1746675650$o1$g0$t1746675651$j0$l0$h0; _ga=GA1.1.1537231184.1746675651
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 08 May 2025 03:38:26 GMT
content-type: text/html; charset=UTF-8
m-cache: HIT
content-security-policy: frame-ancestors 'self' *.netcinez.ch netcinez.ch
link: <https://netcinez.ch/>; rel="canonical"
content-encoding: gzip
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=0081c3148d2440cde006e97751616330

104.18.41.22

200 OK

65 B

URL GET
my.rtmark.net/gid.js?userId=0081c3148d2440cde006e97751616330
IP
104.18.41.22:443
ASN
#13335 CLOUDFLARENET

Requested by
https://netcinez.ch/
Certificate
IssuerGoogle Trust Services
Subjectmy.rtmark.net
Fingerprint61:93:FB:BF:25:C3:CE:7B:CB:69:5D:87:04:AA:ED:1B:35:8D:44:82
ValidityFri, 02 May 2025 11:10:51 GMT - Thu, 31 Jul 2025 12:10:47 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
80dba98991680f9890d7842f8ebeccca
f96b15b041cd5a25979a3062d2256fb7b74f1c04
a9aad1c2d21edb38655cddbf80955ae85f1a944d96f0a157a35528af6dc392ef

HTTP Headers

GET /gid.js?userId=0081c3148d2440cde006e97751616330 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netcinez.ch
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 03:40:52 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://netcinez.ch
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0081c3148d2440cde006e97751616330; expires=Fri, 08 May 2026 03:40:52 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 93c5f02a1cc15696-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

0019x.com/?rb=JXoXWILvMf-4GuWOYznfOc7W1RLPdJqYESVp35lw8u8z71vKBUvjM5x9TjNOrLqytdXDUGX1HT1CXhdZ30YtW7F2vMhpKIq9Ymdc_Qjc0oYfu0t5e76LvsQfOx_5YP1rcR-qpWMIBobA46xqG0u0rVO1tQ3nGpOs8eg8y4BChoV0X-WlOZANvlyeqT6bDjBW0Ua6j2SdK022AYjto5l2Xokl7OdpUrZcnfULh7w3g-vhBBK8Gq0Jo8TB7fLVNX9oRBoUxT0eS297u7ReMenoRRe5qtgX4F86&request_ab2=0&zoneid=8858321&js_build=iclick-v1.1133.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Fnetcinez.ch%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=4&wgl=llvmpipe&js_build=iclick-v1.1133.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&wasm=-1&bs=8f6e776c-cf47-4b34-941b-e3e8917a1982&userId=0081c3148d2440cde006e97751616330&m=link

139.45.197.247

200 OK

2.3 kB

URL GET
0019x.com/?rb=JXoXWILvMf-4GuWOYznfOc7W1RLPdJqYESVp35lw8u8z71vKBUvjM5x9TjNOrLqytdXDUGX1HT1CXhdZ30YtW7F2vMhpKIq9Ymdc_Qjc0oYfu0t5e76LvsQfOx_5YP1rcR-qpWMIBobA46xqG0u0rVO1tQ3nGpOs8eg8y4BChoV0X-WlOZANvlyeqT6bDjBW0Ua6j2SdK022AYjto5l2Xokl7OdpUrZcnfULh7w3g-vhBBK8Gq0Jo8TB7fLVNX9oRBoUxT0eS297u7ReMenoRRe5qtgX4F86&request_ab2=0&zoneid=8858321&js_build=iclick-v1.1133.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Fnetcinez.ch%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=4&wgl=llvmpipe&js_build=iclick-v1.1133.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&wasm=-1&bs=8f6e776c-cf47-4b34-941b-e3e8917a1982&userId=0081c3148d2440cde006e97751616330&m=link
IP
139.45.197.247:443
ASN
#9002 RETN Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subject0019x.com
Fingerprint1A:74:70:52:50:28:3C:32:E8:00:D5:10:3B:27:73:E4:1B:54:93:CE
ValidityTue, 22 Apr 2025 13:50:28 GMT - Mon, 21 Jul 2025 13:50:27 GMT

File type
JSON text data
Size
2.3 kB (2256 bytes)
Hash
40fc95393c8af516ece0200e9ef814d8
c96a3159861fda9db6f12d7212bcb6664c6dc347
f5290a86db3bc4bfb5d33a6483c48cd20a20f52529114251c665cd1ec5d5dd33

HTTP Headers

GET /?rb=JXoXWILvMf-4GuWOYznfOc7W1RLPdJqYESVp35lw8u8z71vKBUvjM5x9TjNOrLqytdXDUGX1HT1CXhdZ30YtW7F2vMhpKIq9Ymdc_Qjc0oYfu0t5e76LvsQfOx_5YP1rcR-qpWMIBobA46xqG0u0rVO1tQ3nGpOs8eg8y4BChoV0X-WlOZANvlyeqT6bDjBW0Ua6j2SdK022AYjto5l2Xokl7OdpUrZcnfULh7w3g-vhBBK8Gq0Jo8TB7fLVNX9oRBoUxT0eS297u7ReMenoRRe5qtgX4F86&request_ab2=0&zoneid=8858321&js_build=iclick-v1.1133.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Fnetcinez.ch%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=4&wgl=llvmpipe&js_build=iclick-v1.1133.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&wasm=-1&bs=8f6e776c-cf47-4b34-941b-e3e8917a1982&userId=0081c3148d2440cde006e97751616330&m=link HTTP/1.1
Host: 0019x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://netcinez.ch/
Origin: https://netcinez.ch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 08 May 2025 03:40:52 GMT
content-type: application/json
x-trace-id: 2f213c961066bd011e926d8cd6c5f87a
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://netcinez.ch
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0081c3148d2440cde006e97751616330; expires=Fri, 08 May 2026 03:40:52 GMT; path=/; secure; SameSite=None
oaidts=1746675652; expires=Fri, 08 May 2026 03:40:52 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Thu, 15 May 2025 03:40:52 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

139.45.197.106

204 No Content

0 B

URL OPTIONS
ccg90.com/wrr?z=8858321&p_rid=8f6e776c-cf47-4b34-941b-e3e8917a1982&rb=JXoXWILvMf-4GuWOYznfOc7W1RLPdJqYESVp35lw8u8z71vKBUvjM5x9TjNOrLqytdXDUGX1HT1CXhdZ30YtW7F2vMhpKIq9Ymdc_Qjc0oYfu0t5e76LvsQfOx_5YP1rcR-qpWMIBobA46xqG0u0rVO1tQ3nGpOs8eg8y4BChoV0X-WlOZANvlyeqT6bDjBW0Ua6j2SdK022AYjto5l2Xokl7OdpUrZcnfULh7w3g-vhBBK8Gq0Jo8TB7fLVNX9oRBoUxT0eS297u7ReMenoRRe5qtgX4F86&dmn=ccg90.com&userId=0081c3148d2440cde006e97751616330
IP
139.45.197.106:443
ASN
#9002 RETN Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectccg90.com
Fingerprint56:09:8B:A2:B0:CC:2D:94:BB:34:A2:E9:A2:FD:C7:53:D9:F4:20:83
ValidityWed, 23 Apr 2025 09:55:55 GMT - Tue, 22 Jul 2025 09:55:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /wrr?z=8858321&p_rid=8f6e776c-cf47-4b34-941b-e3e8917a1982&rb=JXoXWILvMf-4GuWOYznfOc7W1RLPdJqYESVp35lw8u8z71vKBUvjM5x9TjNOrLqytdXDUGX1HT1CXhdZ30YtW7F2vMhpKIq9Ymdc_Qjc0oYfu0t5e76LvsQfOx_5YP1rcR-qpWMIBobA46xqG0u0rVO1tQ3nGpOs8eg8y4BChoV0X-WlOZANvlyeqT6bDjBW0Ua6j2SdK022AYjto5l2Xokl7OdpUrZcnfULh7w3g-vhBBK8Gq0Jo8TB7fLVNX9oRBoUxT0eS297u7ReMenoRRe5qtgX4F86&dmn=ccg90.com&userId=0081c3148d2440cde006e97751616330 HTTP/1.1
Host: ccg90.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://netcinez.ch/
Origin: https://netcinez.ch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Thu, 08 May 2025 03:40:52 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://netcinez.ch
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

cdn.bcdn.zip/scripts/menuu2.css

89.187.169.47

200 OK

3.3 kB

URL GET
cdn.bcdn.zip/scripts/menuu2.css
IP
89.187.169.47:443
ASN
#60068 Datacamp Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectcdn.bcdn.zip
Fingerprint6F:7E:67:99:13:85:0A:05:44:E3:36:7A:4B:0B:D1:5B:45:F6:34:02
ValidityThu, 24 Apr 2025 04:13:59 GMT - Wed, 23 Jul 2025 04:13:58 GMT

File type
ASCII text, with very long lines (3321), with no line terminators
Size
3.3 kB (3321 bytes)
Hash
b39e4224722e258051ada136b0f816e7
c0f54e986e5b2963ac02b8612aade79229247e5f
0938d3c50285e35bf38c87cd923e5338ff295b801aa8879521c024b262e2b22b

HTTP Headers

GET /scripts/menuu2.css HTTP/1.1
Host: cdn.bcdn.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 03:40:50 GMT
content-type: text/css
server: BunnyCDN-DE1-756
cdn-pullzone: 1552782
cdn-uid: 5e612068-3bb9-4e40-a899-ea27c6001df7
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=1200
content-encoding: br
etag: "66a56e02-cf9"
last-modified: Sat, 27 Jul 2024 22:00:34 GMT
cdn-storageserver: DE-676
cdn-requestpullsuccess: True
cdn-fileserver: 818
perma-cache: HIT
cdn-proxyver: 1.22
cdn-requestpullcode: 200
cdn-cachedat: 03/29/2025 18:25:15
cdn-edgestorageid: 1047
cdn-requestid: d037d158cb9a5577dad2e7799cdf4a88
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

cdn.bcdn.zip/scripts/tttttttttttttttttttttttttttttt3.js

89.187.169.47

403 Forbidden

0 B

URL GET
cdn.bcdn.zip/scripts/tttttttttttttttttttttttttttttt3.js
IP
89.187.169.47:443
ASN
#60068 Datacamp Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectcdn.bcdn.zip
Fingerprint6F:7E:67:99:13:85:0A:05:44:E3:36:7A:4B:0B:D1:5B:45:F6:34:02
ValidityThu, 24 Apr 2025 04:13:59 GMT - Wed, 23 Jul 2025 04:13:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /scripts/tttttttttttttttttttttttttttttt3.js HTTP/1.1
Host: cdn.bcdn.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Thu, 08 May 2025 03:40:50 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-756
cdn-pullzone: 1552782
cdn-uid: 5e612068-3bb9-4e40-a899-ea27c6001df7
cdn-requestcountrycode: NO
cdn-requestid: eb420ddbe91984d50d130d69d8bf5bbf
cache-control: no-cache, no-store, max-age=0
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.bcdn.zip/scripts/scriptmenu7.js

89.187.169.47

200 OK

974 B

URL GET
cdn.bcdn.zip/scripts/scriptmenu7.js
IP
89.187.169.47:443
ASN
#60068 Datacamp Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectcdn.bcdn.zip
Fingerprint6F:7E:67:99:13:85:0A:05:44:E3:36:7A:4B:0B:D1:5B:45:F6:34:02
ValidityThu, 24 Apr 2025 04:13:59 GMT - Wed, 23 Jul 2025 04:13:58 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (972), with no line terminators
Size
974 B (974 bytes)
Hash
e600be19ee46a37afe487f78801e17c0
57b64eddd07f22e6bc7e113e09002120efdde413
0fd6a39cb7d662168afd79264396616d58a80dd2e699a2944ee047b19ba74812

HTTP Headers

GET /scripts/scriptmenu7.js HTTP/1.1
Host: cdn.bcdn.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 03:40:50 GMT
content-type: application/javascript
server: BunnyCDN-DE1-756
cdn-pullzone: 1552782
cdn-uid: 5e612068-3bb9-4e40-a899-ea27c6001df7
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=1200
content-encoding: br
etag: "66c691cf-3ce"
last-modified: Thu, 22 Aug 2024 01:18:07 GMT
cdn-storageserver: DE-1023
cdn-requestpullsuccess: True
cdn-fileserver: 728
perma-cache: HIT
cdn-proxyver: 1.27
cdn-requestpullcode: 200
cdn-cachedat: 05/04/2025 16:27:36
cdn-edgestorageid: 874
cdn-requestid: f7d52fc0b1ffd790617e15e96c0ee855
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

edns.ip-api.com/json

85.10.196.124

302 Found

90 B

URL GET
edns.ip-api.com/json
IP
85.10.196.124:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://netcinez.ch/
Certificate
IssuerDigiCert Inc
Subject*.edns.ip-api.com
Fingerprint0F:51:59:A3:93:CA:D5:9F:6C:58:CD:98:A2:80:51:1C:67:52:E8:52
ValidityTue, 13 Aug 2024 00:00:00 GMT - Tue, 15 Jul 2025 23:59:59 GMT

File type

Size
90 B (90 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /json HTTP/1.1
Host: edns.ip-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://netcinez.ch/
Origin: https://netcinez.ch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Access-Control-Allow-Origin: *
Content-Type: text/html; charset=utf-8
Location: https://v2e2oldcbfbpo1kn1pg2z44iyqa4unty.edns.ip-api.com/json
Date: Thu, 08 May 2025 03:40:51 GMT
Content-Length: 84

wvsmqbprnofvdku.com/

139.45.197.111

200 OK

0 B

URL HEAD
wvsmqbprnofvdku.com/
IP
139.45.197.111:443
ASN
#9002 RETN Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectwvsmqbprnofvdku.com
FingerprintC3:08:B6:9A:4F:A9:08:C1:C4:44:57:2C:8E:E7:7C:DA:D9:73:5F:DB
ValidityWed, 07 May 2025 11:24:19 GMT - Tue, 05 Aug 2025 11:24:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: wvsmqbprnofvdku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: text/html
Origin: https://netcinez.ch
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 08 May 2025 03:40:51 GMT
content-type: text/html
x-t70r56a71c61e32-96i70d16: 00000000000000000000000000000000
vary: Accept-Encoding, Origin
access-control-allow-origin: https://netcinez.ch
access-control-expose-headers: Link, X-Application-Token, X-Application-Key, X-Tag, X-Auth-Token, X-DirectionPartner-Id, X-ZoneType-Id, X-Hostname
access-control-allow-credentials: true
pragma: no-cache
timing-allow-origin: *
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
x-application-key: 3ksb1R3wyIq69ywri9t1s
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2

ccg90.com/5/8858321

139.45.197.106

200 OK

108 kB

URL GET
ccg90.com/5/8858321
IP
139.45.197.106:443
ASN
#9002 RETN Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectccg90.com
Fingerprint56:09:8B:A2:B0:CC:2D:94:BB:34:A2:E9:A2:FD:C7:53:D9:F4:20:83
ValidityWed, 23 Apr 2025 09:55:55 GMT - Tue, 22 Jul 2025 09:55:54 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
108 kB (107708 bytes)
Hash
bd338d60052a79b6810de38e9c7469bc
c1ad2962383b668185ecc37d85a9a56e6f651f0e
284e631d3cff1f8b176a4ed6353786f9bc78561d541707f995c6c489113104f9

HTTP Headers

GET /5/8858321 HTTP/1.1
Host: ccg90.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 08 May 2025 03:40:51 GMT
content-type: application/javascript
x-trace-id: ca6779dc7ddbbc2644ab3e9f9408f16c
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=0081c3148d2440cde006e97751616330; expires=Fri, 08 May 2026 03:40:51 GMT; path=/; secure; SameSite=None
oaidts=1746675651; expires=Fri, 08 May 2026 03:40:51 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.bcdn.zip/wp-content/uploads/2017/04/netcine-header-ALT-1.png

89.187.169.47

200 OK

5.0 kB

URL GET
cdn.bcdn.zip/wp-content/uploads/2017/04/netcine-header-ALT-1.png
IP
89.187.169.47:443
ASN
#60068 Datacamp Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectcdn.bcdn.zip
Fingerprint6F:7E:67:99:13:85:0A:05:44:E3:36:7A:4B:0B:D1:5B:45:F6:34:02
ValidityThu, 24 Apr 2025 04:13:59 GMT - Wed, 23 Jul 2025 04:13:58 GMT

File type
RIFF (little-endian) data, Web/P image
Size
5.0 kB (4974 bytes)
Hash
62dccf400e806f4bfd5d60ae8cecc5fd
b23c77b429479bd0856f37913d054e54c76214a0
12a74639eb0fa4c163d8c047fb267a2f552df7fd444e1c9998bcc9237667b7dd

HTTP Headers

GET /wp-content/uploads/2017/04/netcine-header-ALT-1.png HTTP/1.1
Host: cdn.bcdn.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 03:40:50 GMT
content-type: image/webp
content-length: 4974
server: BunnyCDN-DE1-756
cdn-pullzone: 1552782
cdn-uid: 5e612068-3bb9-4e40-a899-ea27c6001df7
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=1200
etag: "65cf8307-136e"
last-modified: Fri, 16 Feb 2024 15:45:11 GMT
cdn-storageserver: DE-1020
cdn-requestpullsuccess: True
cdn-fileserver: 728
perma-cache: HIT
cdn-proxyver: 1.22
cdn-requestpullcode: 200
cdn-cachedat: 04/03/2025 22:54:52
cdn-edgestorageid: 723
cdn-requestid: 61db445aea40b039007ec22d994f8c4c
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.bcdn.zip/scripts/rmobi2.js

89.187.169.47

200 OK

961 B

URL GET
cdn.bcdn.zip/scripts/rmobi2.js
IP
89.187.169.47:443
ASN
#60068 Datacamp Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectcdn.bcdn.zip
Fingerprint6F:7E:67:99:13:85:0A:05:44:E3:36:7A:4B:0B:D1:5B:45:F6:34:02
ValidityThu, 24 Apr 2025 04:13:59 GMT - Wed, 23 Jul 2025 04:13:58 GMT

File type
ASCII text, with very long lines (961), with no line terminators
Size
961 B (961 bytes)
Hash
33b92ab151fe1191a10a2928b889f1ee
ee812568e0447f6cf6400af06787e752411237d5
b8ef43b047d9fb243995974715d2dcd916082ccee77804567d575b9c0ea97626

HTTP Headers

GET /scripts/rmobi2.js HTTP/1.1
Host: cdn.bcdn.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 03:40:50 GMT
content-type: application/javascript
server: BunnyCDN-DE1-756
cdn-pullzone: 1552782
cdn-uid: 5e612068-3bb9-4e40-a899-ea27c6001df7
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=1200
content-encoding: br
etag: "66a55384-3c1"
last-modified: Sat, 27 Jul 2024 20:07:32 GMT
cdn-storageserver: DE-51
cdn-requestpullsuccess: True
cdn-fileserver: 587
perma-cache: HIT
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-cachedat: 04/26/2025 10:20:32
cdn-edgestorageid: 1053
cdn-requestid: 23da62ea726019ca65f6adb2d3363256
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

cdn.bcdn.zip/wp-content/uploads/2016/09/favicon-nc-1.png

89.187.169.47

200 OK

274 B

URL GET
cdn.bcdn.zip/wp-content/uploads/2016/09/favicon-nc-1.png
IP
89.187.169.47:443
ASN
#60068 Datacamp Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectcdn.bcdn.zip
Fingerprint6F:7E:67:99:13:85:0A:05:44:E3:36:7A:4B:0B:D1:5B:45:F6:34:02
ValidityThu, 24 Apr 2025 04:13:59 GMT - Wed, 23 Jul 2025 04:13:58 GMT

File type
RIFF (little-endian) data, Web/P image
Size
274 B (274 bytes)
Hash
499981dc9aa6ac6ae5ce8c5330e9cb52
501fca0bffb07f4cc4d07ffccd7c5f8e359b3b7b
d30ab4860c3fdf31e1891bf957fb4cf162d158cd3e5231b3168d2556175c0878

HTTP Headers

GET /wp-content/uploads/2016/09/favicon-nc-1.png HTTP/1.1
Host: cdn.bcdn.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 03:40:51 GMT
content-type: image/webp
content-length: 274
server: BunnyCDN-DE1-756
cdn-pullzone: 1552782
cdn-uid: 5e612068-3bb9-4e40-a899-ea27c6001df7
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=1200
etag: "65cf830f-112"
last-modified: Fri, 16 Feb 2024 15:45:19 GMT
cdn-storageserver: DE-635
cdn-requestpullsuccess: True
cdn-fileserver: 383
perma-cache: HIT
cdn-proxyver: 1.22
cdn-requestpullcode: 200
cdn-cachedat: 03/21/2025 23:45:08
cdn-edgestorageid: 1075
cdn-requestid: e8894c39d6e0a6b12ebcbeab1e43b6d9
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
accept-ranges: bytes
X-Firefox-Spdy: h2

wvsmqbprnofvdku.com/

139.45.197.111

200 OK

0 B

URL OPTIONS
wvsmqbprnofvdku.com/
IP
139.45.197.111:443
ASN
#9002 RETN Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectwvsmqbprnofvdku.com
FingerprintC3:08:B6:9A:4F:A9:08:C1:C4:44:57:2C:8E:E7:7C:DA:D9:73:5F:DB
ValidityWed, 07 May 2025 11:24:19 GMT - Tue, 05 Aug 2025 11:24:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS / HTTP/1.1
Host: wvsmqbprnofvdku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: HEAD
Access-Control-Request-Headers: content-type
Referer: https://netcinez.ch/
Origin: https://netcinez.ch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 08 May 2025 03:40:51 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://netcinez.ch
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

netcine.zip/

62.182.85.232

301 Moved Permanently

8.6 kB

URL User Request GET
netcine.zip/
IP
62.182.85.232:80
ASN
#30860 Virtual Systems LLC

File type

Size
8.6 kB (8647 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	low	ET INFO HTTP Request to a *.zip Domain

HTTP Headers

GET / HTTP/1.1
Host: netcine.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 08 May 2025 03:38:24 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://netcinez.ch/

netcinez.ch/

62.182.85.232

200 OK

8.6 kB

URL User Request GET
netcinez.ch/
IP
62.182.85.232:443
ASN
#30860 Virtual Systems LLC

Certificate
IssuerLet's Encrypt
Subjectnetcinez.ch
Fingerprint1F:A6:12:EB:88:DC:45:72:AD:AC:CC:E0:61:0A:B9:F6:3F:EE:B3:0A
ValidityFri, 18 Apr 2025 06:36:10 GMT - Thu, 17 Jul 2025 06:36:09 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (567), with CRLF line terminators
Size
8.6 kB (8647 bytes)
Hash
5b1579c59583242ee2c95d7a2fc476eb
74bf0bfa7a93b5cee2fe38d0e0c2cb40c61a0f44
8d116a3b1a5543406108546f0cb0b0de2453fb3e1c4cc33f920f4aa9f57fcaed

HTTP Headers

GET / HTTP/1.1
Host: netcinez.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 08 May 2025 03:38:25 GMT
content-type: text/html; charset=UTF-8
m-cache: HIT
content-security-policy: frame-ancestors 'self' *.netcinez.ch netcinez.ch
link: <https://netcinez.ch/>; rel="canonical"
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.bcdn.zip/scripts/blankw.js

89.187.169.47

301 Moved Permanently

52 kB

URL GET
cdn.bcdn.zip/scripts/blankw.js
IP
89.187.169.47:443
ASN
#60068 Datacamp Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectcdn.bcdn.zip
Fingerprint6F:7E:67:99:13:85:0A:05:44:E3:36:7A:4B:0B:D1:5B:45:F6:34:02
ValidityThu, 24 Apr 2025 04:13:59 GMT - Wed, 23 Jul 2025 04:13:58 GMT

File type

Size
52 kB (52203 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /scripts/blankw.js HTTP/1.1
Host: cdn.bcdn.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Thu, 08 May 2025 03:40:50 GMT
content-type: text/html
content-length: 166
location: https://cdn.bcdn.zip/scripts/mmoneint9.min.js
server: BunnyCDN-DE1-756
cdn-pullzone: 1552782
cdn-uid: 5e612068-3bb9-4e40-a899-ea27c6001df7
cdn-requestcountrycode: NO
vary: Accept-Encoding
cache-control: no-cache
cdn-requestid: cbc6ed8f8a4b2368bf547da49eb2db2d
access-control-allow-origin: *
cdn-requesttime: 1
X-Firefox-Spdy: h2

cdn.bcdn.zip/scripts/mmoneaa.min.js

89.187.169.47

200 OK

28 kB

URL GET
cdn.bcdn.zip/scripts/mmoneaa.min.js
IP
89.187.169.47:443
ASN
#60068 Datacamp Limited

Requested by
https://netcinez.ch/
Certificate
IssuerLet's Encrypt
Subjectcdn.bcdn.zip
Fingerprint6F:7E:67:99:13:85:0A:05:44:E3:36:7A:4B:0B:D1:5B:45:F6:34:02
ValidityThu, 24 Apr 2025 04:13:59 GMT - Wed, 23 Jul 2025 04:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (27953), with no line terminators
Size
28 kB (27953 bytes)
Hash
289f3f8e3d39978bea10e110941b4680
0408cc3c49f37fad24a94b0dc91043f3e9e93682
bdefc40030caf62225eed7eebc7ecf2c793b2fe4b1c70939eefd68fda8a23432

HTTP Headers

GET /scripts/mmoneaa.min.js HTTP/1.1
Host: cdn.bcdn.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://netcinez.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 03:40:51 GMT
content-type: application/javascript
server: BunnyCDN-DE1-756
cdn-pullzone: 1552782
cdn-uid: 5e612068-3bb9-4e40-a899-ea27c6001df7
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=1200
content-encoding: br
etag: "67bf740a-6d31"
last-modified: Wed, 26 Feb 2025 20:05:30 GMT
cdn-storageserver: UK-428
cdn-requestpullsuccess: True
cdn-fileserver: 965
perma-cache: HIT
cdn-proxyver: 1.22
cdn-requestpullcode: 200
cdn-cachedat: 04/05/2025 16:37:00
cdn-edgestorageid: 1221
cdn-requestid: f3c2c1cc41cefe32f3d3bd6970574757
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

v2e2oldcbfbpo1kn1pg2z44iyqa4unty.edns.ip-api.com/json

85.10.196.124

200 OK

90 B

URL GET
v2e2oldcbfbpo1kn1pg2z44iyqa4unty.edns.ip-api.com/json
IP
85.10.196.124:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://netcinez.ch/
Certificate
IssuerDigiCert Inc
Subject*.edns.ip-api.com
Fingerprint0F:51:59:A3:93:CA:D5:9F:6C:58:CD:98:A2:80:51:1C:67:52:E8:52
ValidityTue, 13 Aug 2024 00:00:00 GMT - Tue, 15 Jul 2025 23:59:59 GMT

File type
JSON text data
Size
90 B (90 bytes)
Hash
4e6d349b7e83e4db5d725686c36175b5
2119dfd69fd59626e03c778bfde601202754faef
aebe0d81b829e1fb583ac7f8f768db17d581d2e544cf972ed27c1792ec9f3f98

HTTP Headers

GET /json HTTP/1.1
Host: v2e2oldcbfbpo1kn1pg2z44iyqa4unty.edns.ip-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://netcinez.ch/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-store
Content-Type: application/json; charset=utf-8
Date: Thu, 08 May 2025 03:40:51 GMT
Content-Length: 90

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML