Report - zalanta.vercel.app/

Report Overview

Visited public
2023-11-30 12:17:19
Tags
fake_software scam
URL
zalanta.vercel.app/
Finishing URL
zalanta.vercel.app/
IP / ASN
76.76.21.142
#16509 AMAZON-02
Title
Computer Err00r Code #B87BsA100d847
Scam - Fake AntiVirus / Security software

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
zalanta.vercel.app	unknown	2020-01-28	2023-11-03 23:41:36	2023-11-12 18:16:41	17 kB	818 kB	76.76.21.93
ocsp.usertrust.com	899	1997-12-05	2012-05-21 17:43:18	2023-11-30 05:13:56	342 B	826 B	172.64.149.23
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-11-30 05:09:14	767 B	449 B	216.239.32.36
d1l6p2sc9645hc.cloudfront.net	unknown	2008-04-25	2012-10-24 12:41:05	2023-11-29 09:20:14	433 B	10 kB	143.204.55.52
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-11-30 06:00:14	1.4 kB	1.3 kB	142.250.74.163
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-11-30 05:10:36	424 B	28 kB	151.101.66.137
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-11-30 08:05:45	903 B	176 kB	142.250.74.168
ipwho.is	unknown	2022-01-29	2020-06-08 13:52:47	2023-11-28 06:35:19	438 B	926 B	195.201.57.90
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-11-19 18:48:38	828 B	1.2 kB	142.250.74.100

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-30 12:17:05	medium	Client IP	Internal IP	ET INFO External IP Lookup Domain in DNS Lookup (ipwho .is)
2023-11-30 12:17:05	medium	Client IP	Internal IP	ET INFO External IP Lookup Domain in DNS Lookup (ipwho .is)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (30)

	URL	From	Size	First Seen	Last Seen
	zalanta.vercel.app/	ScriptElement	120 B	2023-03-07	2025-05-09
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:11 Last Seen2025-05-09 00:49 Times Seen1781 Hash fb5ce230a20baf9bce84978701f34a28 bc1166d544f12f34e387980cd8c8e9abd111f579 1e1dc4934ec57af1a5653b1b8564edffc6e887db27ea7b1064d3c3f0e5a788f7 Loading...

	zalanta.vercel.app/	ScriptElement	349 B	2023-11-01	2024-08-20
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-01 21:16 Last Seen2024-08-20 21:28 Times Seen29 Hash 9dc23ff86f36500bb252150e749c6025 bbce9e42db1476ad16ed64c702ea8d48e6d68670 9f69b467094f0e3b38acf4404808eabfbe849c92acb7ada7d2a57689307f1ee8 Loading...

	zalanta.vercel.app/	ScriptElement	321 B	2023-11-01	2024-08-20
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-01 21:16 Last Seen2024-08-20 21:28 Times Seen29 Hash 9fcf3cbab310ab02b9b1e8233632c560 7b00d3bf26b365d5ea8e6e7c14fe72a542a6363f 18c68ed2614e4b96c1c36c3e067b09121a4791f06fc7606114d14903ab2f32a7 Loading...

	zalanta.vercel.app/	ScriptElement	754 B	2023-09-18	2025-04-20
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-18 07:32 Last Seen2025-04-20 18:15 Times Seen299 Hash e42b87ae89fe64c57effc81f8965c425 f67c4d828d430eae46439b94418630d711dc8737 6cefa7023595e9e14daf3fe20e0af9d67737c3c95d8d277542062a6896549017 Loading...

	zalanta.vercel.app/jupiter.js	ScriptElement	474 B	2023-11-01	2024-08-29
Pretty URL zalanta.vercel.app/jupiter.js IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 03:47 Last Seen2024-08-29 18:10 Times Seen38 Hash 0425e8de1caf6ddc67f6e9e221b603c1 6ea7b40ffb51cf19213171c53ccb990c2eb1dd65 af11314fad4862986a0ca5b60547ccc9af00ac22c19b40ee062c9b5fcca8f03a Loading...

	zalanta.vercel.app/	ScriptElement	271 B	2023-08-26	2025-05-07
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-07 22:24 Times Seen392 Hash d93ca50849be01ed445da65b43acab48 48d660eb9e1cdd74e8fa66c4ae9f43251c576115 0ea2b77bfbfefca95b806b8027b1a2b8cae74a97b71baf016d82883f28309226 Loading...

	zalanta.vercel.app/	ScriptElement	2.0 kB	2023-08-26	2025-05-07
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-07 22:24 Times Seen476 Hash 26cfe07eb2a41d56de3cea428f409e37 4cbd1f05b65cfc7f247da284f1c02264ab526364 f4d6d67bfeda397cd7790aa0a80750cd642a100ea48bbd9e5580c34cce8ec14e Loading...

	zalanta.vercel.app/	ScriptElement	246 B	2023-08-26	2025-05-07
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-07 22:24 Times Seen1079 Hash 9ec45c98de528138d873351ee3004c1c be9c6a2c15144063bf95641ec4215a06199b4f5d 28bcb0154baedf9de9f39772f0e45b0c4d88d2e4a951fbd8b4234ea31bd9872a Loading...

	zalanta.vercel.app/	ScriptElement	353 B	2023-08-26	2025-04-20
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-04-20 18:15 Times Seen443 Hash 97346bfec286f5dbe3f8b0f08b0552bb 55416a8294f4affa372afbe0af079e41f1a09aa7 24d5ac94396789fb6d5f38f802fb52d60af036eea51f95abae15c8c649c80012 Loading...

	zalanta.vercel.app/	ScriptElement	100 B	2023-08-26	2025-05-06
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-06 15:00 Times Seen953 Hash c9fa9cae563e0645b0e97ec4f1d0b9e8 60226580a1ebd8763c9df7e4ed67983dcaf1daee 37070777330ae75d3b9b744e7c90a6c85cde07b6a19fd9400683249cb8643fae Loading...

	code.jquery.com/jquery-1.4.4.min.js	ScriptElement	79 kB	2023-03-07	2025-05-09
Pretty URL code.jquery.com/jquery-1.4.4.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-09 00:49 Times Seen4839 Hash 73a9c334c5ca71d70d092b42064f6476 b75990598ee8d3895448ed9d08726af63109f842 517364f2d45162fb5037437b5b6cb953d00d9b2b3b79ba87d9fe57ea6ee6070c Loading...

	zalanta.vercel.app/	ScriptElement	207 B	2023-08-26	2025-05-06
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-06 15:00 Times Seen870 Hash 1a5ece9807f619d0e109d520f6bc7fe9 47a78a3511304d5cea6209952cdd29f0ea86c175 a8e9a05883f511545b89f51a0a2d9d7bbca4eeaf717abfdf372e14c28b2d53b5 Loading...

	zalanta.vercel.app/	ScriptElement	139 B	2023-08-26	2025-05-09
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-09 00:49 Times Seen1470 Hash d2687cc9c448d021f4d514857c263b44 9798b6831b702be05805b9b371f3dfb711f26992 73217c33bfb86ea09cd92cba325bef2fc5fe3ea6f1c80b6423e736dac412217c Loading...

	zalanta.vercel.app/	ScriptElement	330 B	2023-10-21	2024-11-18
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 22:58 Last Seen2024-11-18 12:27 Times Seen78 Hash 8502c011d4635b7f8950ab2bc3567624 ed55468abd92d36ec3b38fda42454c81dd8be399 2cef5964fba9ff763fd212cf16e39ad47fb54b6ea84d2a2c22d989d3a81a540d Loading...

	zalanta.vercel.app/	ScriptElement	260 B	2023-10-21	2024-11-18
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 22:58 Last Seen2024-11-18 12:27 Times Seen78 Hash 583b38fccf9385ad208e506d7e14c18f ca9360df9017a992b5282868bfda2ccddea86730 091a277ef26e52233a6d1835da0e9201c35bae96b59a6b3a4b38962ff8740414 Loading...

	zalanta.vercel.app/	ScriptElement	133 B	2023-10-21	2024-11-18
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 22:58 Last Seen2024-11-18 12:27 Times Seen78 Hash a3c987bdefddd2eb9245fcf470c7811e 89e0fe7e6956a4c680ead545f0c67ba36dbbce14 7058feed1a96df05c8a5057e0f0968d50e2beafce54e63a0afff1b4ef6c73805 Loading...

	zalanta.vercel.app/	ScriptElement	499 B	2023-08-26	2025-05-09
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-09 00:49 Times Seen984 Hash ce537a44db51b0cae35ab7dfa6ed4644 dfb27cd6622a51999753392a6689f8b67cd0c3b2 7be28397b0fbed39828c70251b4fb256ddfc1a091a2066e61351e1d9681d7629 Loading...

	zalanta.vercel.app/	ScriptElement	73 B	2023-08-26	2025-05-09
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-09 00:49 Times Seen1544 Hash cd05d2ea6e1e26930fe1232ce0f4709f 1e411c92606c409da1deff96d681bc7c03c3ad35 1515e9dededc6a4e090e8e60a43d98dcc6a44b5f6a8f146244c4e49b5f73f945 Loading...

	zalanta.vercel.app/	ScriptElement	341 B	2023-08-26	2025-05-07
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-07 22:24 Times Seen822 Hash 1e17fbd37b252bb0f58d6b5395193e23 7a9e03e23171b13a5777a98473fe28a2ad3a946b 831f5dd5cf7871e2cb27909e9babee14485a3c06a2698dbbdd897391f763dfb8 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-WT5HFLV	ScriptElement	222 kB	2023-11-30	2023-11-30
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-WT5HFLV IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 13:17 Last Seen2023-11-30 13:17 Times Seen1 Hash 1a408bf3bf667af66de2f7ec42eb04b7 62ebe044ab83fe18f8c7b1999ab37cbb12b07fde b7f98b94d1b72ed8d1eb9b657cfc82a33a9f98556c02fa59a17972a00f9c9d1a Loading...

	unknown	ScriptElement	29 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 17:21 Last Seen2024-08-20 17:21 Times Seen1 Hash 91b39a8a33aca7b7abf95725f70190f9 1db551d701ef805659e1f705fb992f4253e0d84e 98949448bb7ca32c26e62b78ed0a80f61c24c7e0dad27f90d6aa39a5712848cf Loading...

	zalanta.vercel.app/	ScriptElement	141 B	2023-08-26	2025-05-09
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-09 00:49 Times Seen736 Hash 39dd3d7103fc91da89611e596fd42a2c 168f5f97010b42b0ccb2765bc73f156c4b163a9b b722373934d378dcb69cefac605ecc95f847c803accff3a64f791eb5910b12a0 Loading...

	zalanta.vercel.app/	ScriptElement	94 B	2023-08-26	2025-05-09
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 22:45 Last Seen2025-05-09 00:49 Times Seen1086 Hash e118dc8196693ba5829b64d3900a44d1 c1af9a5738e8fd92300b16a10c072c91c8188098 74fd362e8ed5cd59129d7d3cfbde3ce0f2fffd815d04d34037d70932f229a8c4 Loading...

	www.googletagmanager.com/gtag/js?id=G-CGHB19R1YM&l=dataLayer&cx=c	ScriptElement	291 kB	2023-11-30	2023-11-30
Pretty URL www.googletagmanager.com/gtag/js?id=G-CGHB19R1YM&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 13:17 Last Seen2023-11-30 13:17 Times Seen1 Hash de59d3adcd65fc509135e20a50fb86e8 3f16195a5044bc8f797056384129e943bdc6b65d d5fbabd95d03985da82abc4721c3620ba2eefc9d577868c498e7ef82f215db6d Loading...

	zalanta.vercel.app/	ScriptElement	90 B	2023-05-13	2025-04-29
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-13 00:31 Last Seen2025-04-29 17:22 Times Seen1047 Hash e549f355ec9b013498cee4479b6c1734 ee702e014a1491972cf45f03d601a4cb1d722e2d 70fcad8ae74a4d5b135d85561562a134705ee5f42437d6a82dde5c1e6eb7f9d4 Loading...

	zalanta.vercel.app/nvidia.js	ScriptElement	2.0 kB	2023-10-21	2025-05-03
Pretty URL zalanta.vercel.app/nvidia.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-21 22:58 Last Seen2025-05-03 17:00 Times Seen129 Hash f1392454d2e2f4c7741711cf1ed3e620 661462b98df42dfe2653ce1192101d7c9cbd92a9 6f78b0c9e5d7661f43db1f95f29e1f29c853c1bc3c81aa5e2c28a5bed0e314ea Loading...

	zalanta.vercel.app/	ScriptElement	539 B	2023-10-21	2024-11-18
Pretty URL zalanta.vercel.app/ IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 22:58 Last Seen2024-11-18 12:27 Times Seen75 Hash 80ed688172db2809e05a6d6fd849a990 a433ca5a638929b3c5de5ae9622cc95334dcd562 dbbac57197aa5ff1706aeb4e0b82a0d348c52b8cc40a4686a2af61d54bbf1bf1 Loading...

	d1l6p2sc9645hc.cloudfront.net/gosquared.js	ScriptElement	9.9 kB	2023-11-29	2024-08-20
Pretty URL d1l6p2sc9645hc.cloudfront.net/gosquared.js IP 143.204.55.52 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-29 05:23 Last Seen2024-08-20 17:30 Times Seen36 Hash 4c428f6e61b7c494241fc820f580f70e 0062dab81af865a1f73c28632763806bd7e6ba2f 2f9b39d4685187f53d059fa79097782292ba1954f9e29d518adee023e86d90c1 Loading...

	www.google.com/pagead/1p-conversion/332083515/?random=1701346625784&cv=11&fst=1701346625784&bg=ffffff&guid=ON&async=1&gtm=45He3b60v9132973882&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fzalanta.vercel.app%2F&label=NWwFCIDwxa4YELvirJ4B&hn=www.google.com&frm=0&tiba=Computer%20Err00r%20Code%20%23B87BsA100d847&value=0&bttype=purchase&rdp=1&auid=1226766438.1701346626&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4	ScriptElement	43 B	2023-03-07	2025-04-22
Pretty URL www.google.com/pagead/1p-conversion/332083515/?random=1701346625784&cv=11&fst=1701346625784&bg=ffffff&guid=ON&async=1&gtm=45He3b60v9132973882&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fzalanta.vercel.app%2F&label=NWwFCIDwxa4YELvirJ4B&hn=www.google.com&frm=0&tiba=Computer%20Err00r%20Code%20%23B87BsA100d847&value=0&bttype=purchase&rdp=1&auid=1226766438.1701346626&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP 142.250.74.100 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-22 05:33 Times Seen9724 Hash ad8b6f08655797587cdec719a94efe59 182adf5a140796f81e930649d05654dbf22fd5b7 77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6 Loading...

	unknown	EventHandler	19 B	2023-04-10	2025-05-09
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 16:23 Last Seen2025-05-09 00:49 Times Seen7862 Hash 57381d43f260aa3b8c47820ca38655a3 8d087b53d91f8e3ff0def7d1d94a6dada72fac79 35b90e4b54b87ed6cd2b439eac195f9eb59e731e17248c95fb1e26e15d61f943 Loading...

HTTP Transactions (41)

URL IP Response Size

zalanta.vercel.app/

76.76.21.93

7.0 kB

URL
zalanta.vercel.app/
IP
76.76.21.93:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (522)
Size
7.0 kB (7019 bytes)
Hash
4c5441a5edfe9a02b433cca125d35d11
dc66f3a34e7ba1373e04c80b84df94768e6a2efc
7372b3daf4d2ec64eadad2ee13c35204109622e2358b35107b11ddfa10bde3c0

HTTP Headers

GET / HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline
content-encoding: br
content-type: text/html; charset=utf-8
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: W/"4c5441a5edfe9a02b433cca125d35d11"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::bvsvz-1701346620435-efa255c0ab5c
X-Firefox-Spdy: h2

zalanta.vercel.app/vsc.png

76.76.21.93

200 OK

722 B

URL GET HTTP/2
zalanta.vercel.app/vsc.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
PNG image data, 128 x 128, 1-bit colormap, non-interlaced\012- data
Size
722 B (722 bytes)
Hash
42d8f2cc1ae5759c2369f255f36ebc03
8e592162eec14e72d0a751d714a641dbece91f6b
31c6dbe9d867436244f38566adad57e3870f4c8489c6804280eb564bfac5c1bd

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /vsc.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="vsc.png"
content-type: image/png
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: "42d8f2cc1ae5759c2369f255f36ebc03"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::qjrhn-1701346620829-d36638cf2dc7
content-length: 722
X-Firefox-Spdy: h2

zalanta.vercel.app/mnc.png

76.76.21.93

200 OK

187 B

URL GET HTTP/2
zalanta.vercel.app/mnc.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
PNG image data, 140 x 30, 1-bit colormap, non-interlaced\012- data
Size
187 B (187 bytes)
Hash
271021cfa45940978184be0489841fd3
201030af9b1bc5d3c8d453efbfdf89b68d6c1be5
c5a324f181af16879b6c4c52b731b23392f2816def159b157c4de620cff1cd41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /mnc.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="mnc.png"
content-type: image/png
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: "271021cfa45940978184be0489841fd3"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::q7lgz-1701346620827-0025195416f7
content-length: 187
X-Firefox-Spdy: h2

zalanta.vercel.app/bel.png

76.76.21.93

200 OK

276 B

URL GET HTTP/2
zalanta.vercel.app/bel.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
PNG image data, 13 x 13, 8-bit colormap, non-interlaced\012- data
Size
276 B (276 bytes)
Hash
7616d96c388301e391653647e1f5f057
b1868c8f0f46309a8e26f584ac82000d54c06ecd
4c1606563842cce5f1788329d4417ae3618b33c6365c56a7122439b6ab45c977

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /bel.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="bel.png"
content-type: image/png
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: "7616d96c388301e391653647e1f5f057"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::msq4m-1701346620830-5af683c7151c
content-length: 276
X-Firefox-Spdy: h2

zalanta.vercel.app/set.png

76.76.21.93

200 OK

364 B

URL GET HTTP/2
zalanta.vercel.app/set.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
364 B (364 bytes)
Hash
e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /set.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="set.png"
content-type: image/png
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: "e144c3378090087c8ce129a30cb6cb4e"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::57spx-1701346620829-252a6e40d16c
content-length: 364
X-Firefox-Spdy: h2

zalanta.vercel.app/bx1.png

76.76.21.93

99 kB

URL
zalanta.vercel.app/bx1.png
IP
76.76.21.93:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1056 x 908, 8-bit/color RGBA, non-interlaced\012- data
Size
99 kB (99389 bytes)
Hash
6b11ad15da74888bea9095007a9f7dd6
e0bc4a256c552041a88fdaf1a33e8f6494fcfd78
93ab9ddc223156f5f4ba7ff8fc14a885e9b5946fc10917571022d7c2d9a08886

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /bx1.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="bx1.png"
content-type: image/png
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: "6b11ad15da74888bea9095007a9f7dd6"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::7qxd6-1701346620833-4cac70471b30
content-length: 99389
X-Firefox-Spdy: h2

code.jquery.com/jquery-1.4.4.min.js

151.101.66.137

200 OK

27 kB

URL GET HTTP/2
code.jquery.com/jquery-1.4.4.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://zalanta.vercel.app/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (820)
Size
27 kB (27078 bytes)
Hash
73a9c334c5ca71d70d092b42064f6476
b75990598ee8d3895448ed9d08726af63109f842
517364f2d45162fb5037437b5b6cb953d00d9b2b3b79ba87d9fe57ea6ee6070c

HTTP Headers

GET /jquery-1.4.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-13309"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 30 Nov 2023 12:17:00 GMT
age: 3219237
x-served-by: cache-lga21980-LGA, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 8715, 4
x-timer: S1701346621.854534,VS0,VE0
vary: Accept-Encoding
content-length: 27078
X-Firefox-Spdy: h2

zalanta.vercel.app/pcm.png

76.76.21.93

200 OK

1.3 kB

URL GET HTTP/2
zalanta.vercel.app/pcm.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
PNG image data, 166 x 92, 4-bit colormap, non-interlaced\012- data
Size
1.3 kB (1270 bytes)
Hash
05cdf1a2c2fc8f07bea0a8f4f9356637
b7bbd626d1d6c832509e820cae1d971b34f625e6
afe332157f4efe355f3181284e99f4331c4d19703ed1678b5316d2933f95e98e

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /pcm.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="pcm.png"
content-type: image/png
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: "05cdf1a2c2fc8f07bea0a8f4f9356637"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::4hcvc-1701346620833-71e9a5bcf2ab
content-length: 1270
X-Firefox-Spdy: h2

zalanta.vercel.app/re.gif

76.76.21.93

200 OK

15 kB

URL GET HTTP/2
zalanta.vercel.app/re.gif
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
GIF image data, version 89a, 193 x 71\012- data
Size
15 kB (14751 bytes)
Hash
6fcb78e0cd7933a70eea2cf071f82118
70364bffd62fe33360abe70ecc7f7c0541b3b54c
4b436b0b6a47db85c88f83dc3fe3fd9a96c0a4018b28832165df929dffe0bc86

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /re.gif HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="re.gif"
content-type: image/gif
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: "6fcb78e0cd7933a70eea2cf071f82118"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::7qxd6-1701346620865-8e5225d1fee6
content-length: 14751
X-Firefox-Spdy: h2

zalanta.vercel.app/jupiter.js

76.76.21.93

200 OK

474 B

URL GET HTTP/2
zalanta.vercel.app/jupiter.js
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
474 B (474 bytes)
Hash
0425e8de1caf6ddc67f6e9e221b603c1
6ea7b40ffb51cf19213171c53ccb990c2eb1dd65
af11314fad4862986a0ca5b60547ccc9af00ac22c19b40ee062c9b5fcca8f03a

HTTP Headers

GET /jupiter.js HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="jupiter.js"
content-type: application/javascript; charset=utf-8
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: "0425e8de1caf6ddc67f6e9e221b603c1"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::zfscs-1701346620877-15210b9afe65
content-length: 474
X-Firefox-Spdy: h2

zalanta.vercel.app/cs.png

76.76.21.93

2.7 kB

URL
zalanta.vercel.app/cs.png
IP
76.76.21.93:0
ASN
#16509 AMAZON-02

File type
PNG image data, 520 x 520, 8-bit colormap, non-interlaced\012- data
Size
2.7 kB (2681 bytes)
Hash
b01a30d354bfcf51edf33e0b0ea07402
c421359518d1ae258237bf501c563b7f059f8b9b
b67a7c07a045d7cb0f2e216a557aec0d99405e17c36d1a6b1ff3e2733aa35348

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /cs.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="cs.png"
content-type: image/png
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: "b01a30d354bfcf51edf33e0b0ea07402"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::4hcvc-1701346620895-ac7cb68f4886
content-length: 2681
X-Firefox-Spdy: h2

zalanta.vercel.app/dm.png

76.76.21.93

200 OK

332 B

URL GET HTTP/2
zalanta.vercel.app/dm.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
PNG image data, 100 x 100, 1-bit colormap, non-interlaced\012- data
Size
332 B (332 bytes)
Hash
9d8a90a63d20f05d27e5d6abb35e0cd0
5873b4007e9d55b4d891a4c427b3735ed23dbfe8
7df9f467d23ee1887edb2123cca10a1a9c4624cdcf7199c64e78a8430031f9f5

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /dm.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="dm.png"
content-type: image/png
date: Thu, 30 Nov 2023 12:17:01 GMT
etag: "9d8a90a63d20f05d27e5d6abb35e0cd0"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::msq4m-1701346620832-7a74ac924462
content-length: 332
X-Firefox-Spdy: h2

zalanta.vercel.app/bg.png

76.76.21.93

200 OK

463 kB

URL GET HTTP/2
zalanta.vercel.app/bg.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
PNG image data, 1920 x 4340, 8-bit colormap, non-interlaced\012- data
Size
463 kB (462770 bytes)
Hash
ab996ed3b126f2b5f0c1f214b96afe7a
77223f12976d20e06058fe40040e261bd5688f39
4eaf7b7f53ea1a27a22bae168f560d9dc78dc2e2185162be9ee4db59e1e1065a

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /bg.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="bg.png"
content-type: image/png
date: Thu, 30 Nov 2023 12:17:01 GMT
etag: "ab996ed3b126f2b5f0c1f214b96afe7a"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::4hcvc-1701346620825-23f6999b056e
content-length: 462770
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-WT5HFLV

142.250.74.168

200 OK

79 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-WT5HFLV
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://zalanta.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (3026)
Size
79 kB (79158 bytes)
Hash
1a408bf3bf667af66de2f7ec42eb04b7
62ebe044ab83fe18f8c7b1999ab37cbb12b07fde
b7f98b94d1b72ed8d1eb9b657cfc82a33a9f98556c02fa59a17972a00f9c9d1a

HTTP Headers

GET /gtm.js?id=GTM-WT5HFLV HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 30 Nov 2023 12:17:01 GMT
expires: Thu, 30 Nov 2023 12:17:01 GMT
cache-control: private, max-age=900
last-modified: Thu, 30 Nov 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79158
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

zalanta.vercel.app/webs.mp4

76.76.21.93

206 Partial Content

8.4 kB

URL GET HTTP/2
zalanta.vercel.app/webs.mp4
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural\012- data
Size
8.4 kB (8405 bytes)
Hash
8618fbb0911e3b8fc96725dee8bfd81f
1bbcb78922946d0cf18fbf3a9e092e36453eb767
0589be7715d2320e559eae6bd26f3528e97450c70293da2e1e8ce45f77f99ab1

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /webs.mp4 HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="webs.mp4"
content-range: bytes 0-8404/8405
content-type: video/mp4
date: Thu, 30 Nov 2023 12:17:01 GMT
etag: "8618fbb0911e3b8fc96725dee8bfd81f"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::qjrhn-1701346621224-9328ebb6e9c8
content-length: 8405
X-Firefox-Spdy: h2

ocsp.usertrust.com/

172.64.149.23

283 B

URL
ocsp.usertrust.com/
IP
172.64.149.23:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
283 B (283 bytes)
Hash
3b938fbed3d94989082d504b3d927948
0edb6ea0c17b6931a3a2b9738951b295b472f36e
34b507704988d1985ab5e68e33c94aa1b5d23ef975938e646b10cb740d4a8636

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 30 Nov 2023 12:17:01 GMT
Content-Type: application/ocsp-response
Content-Length: 283
Connection: keep-alive
Last-Modified: Tue, 28 Nov 2023 01:02:32 GMT
Expires: Tue, 05 Dec 2023 01:02:31 GMT
Etag: "0edb6ea0c17b6931a3a2b9738951b295b472f36e"
Cache-Control: max-age=601420,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 436
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 82e3065eb9fcb527-OSL

zalanta.vercel.app/ai2.mp3

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/ai2.mp3
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /ai2.mp3 HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:01 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::msq4m-1701346621276-b483dc22b65c
content-length: 39
X-Firefox-Spdy: h2

ipwho.is/?lang=en

195.201.57.90

200 OK

668 B

URL GET HTTP/1.1
ipwho.is/?lang=en
IP
195.201.57.90:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://zalanta.vercel.app/
Certificate
IssuerGoGetSSL
Subjectipwho.is
FingerprintCF:72:15:7E:2B:59:F6:B9:88:69:73:70:91:60:90:87:80:67:B9:A4
ValidityWed, 05 Apr 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (668), with no line terminators
Size
668 B (668 bytes)
Hash
5283c3ba0fcfc39e2b2e2c0a3f6051e9
c5ffcee65c9813fdcac0ffa53682e4f240434987
dc0d23d28a4edd5f6110629980c3e43dd3065bf3cdc41c6f749f3f5a0424a3e3

HTTP Headers

GET /?lang=en HTTP/1.1
Host: ipwho.is
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zalanta.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 30 Nov 2023 12:17:01 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: ipwhois
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
X-Robots-Tag: noindex

www.googletagmanager.com/gtag/js?id=G-CGHB19R1YM&l=dataLayer&cx=c

142.250.74.168

95 kB

URL
www.googletagmanager.com/gtag/js?id=G-CGHB19R1YM&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (7711)
Size
95 kB (95128 bytes)
Hash
de59d3adcd65fc509135e20a50fb86e8
3f16195a5044bc8f797056384129e943bdc6b65d
d5fbabd95d03985da82abc4721c3620ba2eefc9d577868c498e7ef82f215db6d

HTTP Headers

GET /gtag/js?id=G-CGHB19R1YM&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 30 Nov 2023 12:17:01 GMT
expires: Thu, 30 Nov 2023 12:17:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95128
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

zalanta.vercel.app/_Fm7-alert.mp3

76.76.21.93

206 Partial Content

201 kB

URL GET HTTP/2
zalanta.vercel.app/_Fm7-alert.mp3
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
Audio file with ID3 version 2.3.0, contains:\012- MPEG ADTS, layer III, v2, 64 kbps, 22.05 kHz, Monaural\012- data
Size
201 kB (200832 bytes)
Hash
0116152611dd51432e852781f8cc7e82
2408d3d281b25649894f78a4e19f7f8a8ac735f9
fc59bbb18f923747b9cd3f3b23537ff09c5ad2fdfc1505a4800a3f269a234e65

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /_Fm7-alert.mp3 HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="_Fm7-alert.mp3"
content-range: bytes 0-200831/200832
content-type: audio/mpeg
date: Thu, 30 Nov 2023 12:17:01 GMT
etag: "0116152611dd51432e852781f8cc7e82"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::7qxd6-1701346621206-81b7fce5f204
content-length: 200832
X-Firefox-Spdy: h2

zalanta.vercel.app/msmm.png

76.76.21.93

200 OK

168 B

URL GET HTTP/2
zalanta.vercel.app/msmm.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
PNG image data, 31 x 30, 4-bit colormap, non-interlaced\012- data
Size
168 B (168 bytes)
Hash
acb05ebcd5f488fc99169cff02b6dd04
dca893a7b514503e947a57aa072482a0e0cba912
1ab5ef4e7e196cb1ff39df44e1a0a39f6880b906ef6fd6da3cfdbb92ffd33115

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /msmm.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="msmm.png"
content-type: image/png
date: Thu, 30 Nov 2023 12:17:01 GMT
etag: "acb05ebcd5f488fc99169cff02b6dd04"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::4hcvc-1701346621464-fa56552d96a9
content-length: 168
X-Firefox-Spdy: h2

www.google.com/pagead/1p-conversion/332083515/?random=1701346625784&cv=11&fst=1701346625784&bg=ffffff&guid=ON&async=1&gtm=45He3b60v9132973882&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fzalanta.vercel.app%2F&label=NWwFCIDwxa4YELvirJ4B&hn=www.google.com&frm=0&tiba=Computer%20Err00r%20Code%20%23B87BsA100d847&value=0&bttype=purchase&rdp=1&auid=1226766438.1701346626&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4

142.250.74.100

302 Found

63 B

URL GET HTTP/2
www.google.com/pagead/1p-conversion/332083515/?random=1701346625784&cv=11&fst=1701346625784&bg=ffffff&guid=ON&async=1&gtm=45He3b60v9132973882&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fzalanta.vercel.app%2F&label=NWwFCIDwxa4YELvirJ4B&hn=www.google.com&frm=0&tiba=Computer%20Err00r%20Code%20%23B87BsA100d847&value=0&bttype=purchase&rdp=1&auid=1226766438.1701346626&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
142.250.74.100:443
ASN
#15169 GOOGLE

Requested by
https://zalanta.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
ad8b6f08655797587cdec719a94efe59
182adf5a140796f81e930649d05654dbf22fd5b7
77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6

HTTP Headers

GET /pagead/1p-conversion/332083515/?random=1701346625784&cv=11&fst=1701346625784&bg=ffffff&guid=ON&async=1&gtm=45He3b60v9132973882&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fzalanta.vercel.app%2F&label=NWwFCIDwxa4YELvirJ4B&hn=www.google.com&frm=0&tiba=Computer%20Err00r%20Code%20%23B87BsA100d847&value=0&bttype=purchase&rdp=1&auid=1226766438.1701346626&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 30 Nov 2023 12:17:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/332083515/?random=1701346625784&cv=11&fst=1701346625784&bg=ffffff&guid=ON&async=1&gtm=45He3b60v9132973882&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fzalanta.vercel.app%2F&label=NWwFCIDwxa4YELvirJ4B&hn=www.google.com&frm=0&tiba=Computer%20Err00r%20Code%20%23B87BsA100d847&value=0&bttype=purchase&rdp=1&auid=1226766438.1701346626&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-CGHB19R1YM&cid=947710233.1701346626&gtm=45je3b60v9132996991z89132973882&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1571667963

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-CGHB19R1YM&cid=947710233.1701346626&gtm=45je3b60v9132996991z89132973882&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1571667963
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://zalanta.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-CGHB19R1YM&cid=947710233.1701346626&gtm=45je3b60v9132996991z89132973882&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1571667963 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 30 Nov 2023 12:17:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.no/pagead/1p-conversion/332083515/?random=1701346625784&cv=11&fst=1701346625784&bg=ffffff&guid=ON&async=1&gtm=45He3b60v9132973882&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fzalanta.vercel.app%2F&label=NWwFCIDwxa4YELvirJ4B&hn=www.google.com&frm=0&tiba=Computer%20Err00r%20Code%20%23B87BsA100d847&value=0&bttype=purchase&rdp=1&auid=1226766438.1701346626&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y

142.250.74.163

200 OK

63 B

URL GET HTTP/2
www.google.no/pagead/1p-conversion/332083515/?random=1701346625784&cv=11&fst=1701346625784&bg=ffffff&guid=ON&async=1&gtm=45He3b60v9132973882&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fzalanta.vercel.app%2F&label=NWwFCIDwxa4YELvirJ4B&hn=www.google.com&frm=0&tiba=Computer%20Err00r%20Code%20%23B87BsA100d847&value=0&bttype=purchase&rdp=1&auid=1226766438.1701346626&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://zalanta.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
ad8b6f08655797587cdec719a94efe59
182adf5a140796f81e930649d05654dbf22fd5b7
77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6

HTTP Headers

GET /pagead/1p-conversion/332083515/?random=1701346625784&cv=11&fst=1701346625784&bg=ffffff&guid=ON&async=1&gtm=45He3b60v9132973882&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fzalanta.vercel.app%2F&label=NWwFCIDwxa4YELvirJ4B&hn=www.google.com&frm=0&tiba=Computer%20Err00r%20Code%20%23B87BsA100d847&value=0&bttype=purchase&rdp=1&auid=1226766438.1701346626&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zalanta.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 30 Nov 2023 12:17:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-CGHB19R1YM&gtm=45je3b60v9132996991z89132973882&_p=1701346625469&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=947710233.1701346626&ul=en-us&sr=1280x1024&_s=1&sid=1701346625&sct=1&seg=0&dl=https%3A%2F%2Fzalanta.vercel.app%2F&dt=Computer%20Err00r%20Code%20%23B87BsA100d847&en=page_view&_fv=1&_nsi=1&_ss=1&_c=1&tfd=1121

216.239.32.36

0 B

URL
region1.analytics.google.com/g/collect?v=2&tid=G-CGHB19R1YM&gtm=45je3b60v9132996991z89132973882&_p=1701346625469&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=947710233.1701346626&ul=en-us&sr=1280x1024&_s=1&sid=1701346625&sct=1&seg=0&dl=https%3A%2F%2Fzalanta.vercel.app%2F&dt=Computer%20Err00r%20Code%20%23B87BsA100d847&en=page_view&_fv=1&_nsi=1&_ss=1&_c=1&tfd=1121
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-CGHB19R1YM&gtm=45je3b60v9132996991z89132973882&_p=1701346625469&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=947710233.1701346626&ul=en-us&sr=1280x1024&_s=1&sid=1701346625&sct=1&seg=0&dl=https%3A%2F%2Fzalanta.vercel.app%2F&dt=Computer%20Err00r%20Code%20%23B87BsA100d847&en=page_view&_fv=1&_nsi=1&_ss=1&_c=1&tfd=1121 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zalanta.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://zalanta.vercel.app
date: Thu, 30 Nov 2023 12:17:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

zalanta.vercel.app/w3.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w3.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w3.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:02 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::msq4m-1701346622238-164f972981fd
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w1.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w1.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w1.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:03 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::bl7gm-1701346623297-5b885a8fcfaa
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w3.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w3.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w3.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:04 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::bl7gm-1701346624237-cf600c35bc38
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w1.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w1.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w1.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:05 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::bl7gm-1701346625236-7820e8b6be35
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w3.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w3.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w3.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:06 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::msq4m-1701346626235-5354eaa387c5
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w1.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w1.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w1.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:07 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::msq4m-1701346627235-3313d385aa80
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w3.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w3.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w3.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:08 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::bl7gm-1701346628234-5224745491c3
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w1.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w1.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w1.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:09 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::zfscs-1701346629254-cfb55ee85b58
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w3.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w3.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w3.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:10 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::8g4c7-1701346630243-87f7c8f96c95
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w1.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w1.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w1.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:11 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::zfscs-1701346631253-e3feca7d0623
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w3.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w3.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w3.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:12 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::zfscs-1701346632244-beb9a991d529
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w1.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w1.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w1.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:13 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::8g4c7-1701346633246-6b911aec2aae
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/w3.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w3.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w3.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:14 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::nvkvn-1701346634244-b48d8c58bb74
content-length: 39
X-Firefox-Spdy: h2

zalanta.vercel.app/tapa.css

76.76.21.93

200 OK

4.5 kB

URL GET HTTP/2
zalanta.vercel.app/tapa.css
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
assembler source, ASCII text, with very long lines (324)
Size
4.5 kB (4495 bytes)
Hash
40fc1411e971458ae2a4625512ad4250
a72907e7057fb20982e2553313b78da2bcd8271b
0ee746956a1d0b11b9dbfa452144e7ad6eed1760509a09114ebcecb889838425

HTTP Headers

GET /tapa.css HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 660289
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="tapa.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Thu, 30 Nov 2023 12:17:00 GMT
etag: W/"40fc1411e971458ae2a4625512ad4250"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::zfscs-1701346620826-2537d831f013
X-Firefox-Spdy: h2

zalanta.vercel.app/w3.png

76.76.21.93

404 Not Found

39 B

URL GET HTTP/2
zalanta.vercel.app/w3.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text
Size
39 B (39 bytes)
Hash
d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774

HTTP Headers

GET /w3.png HTTP/1.1
Host: zalanta.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Cookie: _gcl_au=1.1.1226766438.1701346626; _ga_CGHB19R1YM=GS1.1.1701346625.1.0.1701346625.60.0.0; _ga=GA1.1.947710233.1701346626; gs_v_GSN-761844-V=; gs_u_GSN-761844-V=17f3d3755c728559fde2c3221e1bea12:2567:5000:1701346626057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Thu, 30 Nov 2023 12:17:16 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::nwzrv-1701346636257-86b5241a1c91
content-length: 39
X-Firefox-Spdy: h2

d1l6p2sc9645hc.cloudfront.net/gosquared.js

143.204.55.52

200 OK

9.9 kB

URL GET HTTP/2
d1l6p2sc9645hc.cloudfront.net/gosquared.js
IP
143.204.55.52:443
ASN
#16509 AMAZON-02

Requested by
https://zalanta.vercel.app/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (10280), with no line terminators
Size
9.9 kB (9948 bytes)
Hash
fd9f94a8f7610d0af2315580b8d427c5
2911e4f32ee99c99c1f29a2aa29531c380135881
f95d2de82acb54aea7c8e5ffc63be6de4b264e644f2ca454622ccd5a605f18ad

HTTP Headers

GET /gosquared.js HTTP/1.1
Host: d1l6p2sc9645hc.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zalanta.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
last-modified: Tue, 28 Nov 2023 23:22:39 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Thu, 30 Nov 2023 11:22:54 GMT
cache-control: max-age=43200, public
etag: W/"4c428f6e61b7c494241fc820f580f70e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 5HLLuDF7jXIm7YPtLrDOy8cBVEjpkdBxTZOObBqfOK6U5MfC7cIaHA==
age: 3261
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by