Report - sync-backup-data.vercel.app/

Report Overview

Visited public
2025-07-19 16:24:09
Tags
meta facebook phishing social
Submit Tags
openphish
URL
sync-backup-data.vercel.app/
Finishing URL
sync-backup-data.vercel.app/
IP / ASN
216.198.79.67
#16509 AMAZON-02
Title
Meta for Business - Page Appeal
Phishing - Facebook

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sync-backup-data.vercel.app	unknown	2020-01-28	2025-07-19	2025-07-19	7.5 kB	960 kB	64.29.17.131
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2025-07-16	2.0 kB	310 kB	151.101.193.229
code.jquery.com	634	2005-12-10	2012-05-21	2025-07-16	491 B	70 kB	151.101.2.137
get.geojs.io	17418	2017-02-18	2017-03-30	2025-07-17	507 B	1.2 kB	172.67.70.233
kit.fontawesome.com	1868	2012-10-18	2019-03-29	2025-07-16	484 B	500 B	172.64.147.188

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-07-19 16:23:33	medium	Client IP	172.67.70.233	ET INFO External IP Address Lookup Domain (get .geojs .io) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2025-07-19	medium	sync-backup-data.vercel.app/	Facebook, Inc.

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (8)

	URL	From	Size	First Seen	Last Seen
	cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js	ScriptElement	79 kB	2023-03-07	2025-07-24
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-24 23:57 Times Seen13118 Hash 0aa8d64e726c4a57adb5c88f9115996b 901169527507ff9e662cf64d8e361f359308970d 7e1f1503df765cca5e099891b94e318a2ef95081ba2af1eb6d417cc884bfdbfe Loading...

	sync-backup-data.vercel.app/polyfills.03900724de710737.js	ScriptElement	34 kB	2024-05-23	2025-07-24
Pretty URL sync-backup-data.vercel.app/polyfills.03900724de710737.js IP 64.29.17.131 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-23 19:23 Last Seen2025-07-24 17:31 Times Seen512 Hash 2031e3db9964479b8b85b462b0f37b10 04d51282c73fe528f68e4a66d371f87b42e20535 9826270889945e938aef3dd0ac779c14f6951b4dc672e65dc637e670009be019 Loading...

	sync-backup-data.vercel.app/main.93119151c3d77464.js	ScriptElement	279 kB	2025-01-07	2025-07-24
Pretty URL sync-backup-data.vercel.app/main.93119151c3d77464.js IP 64.29.17.131 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-07 18:30 Last Seen2025-07-24 17:31 Times Seen358 Hash b03742349b9497680e31b24466f5eb31 b13728689f3227b318a14577658aa39672c2dc74 0b298fee52b2ae5a54bc10f97b4866cecd9a87e80b73103e9603e2a3fedf44c3 Loading...

	sync-backup-data.vercel.app/	EventHandler	16 B	2023-04-10	2025-07-25
Pretty URL sync-backup-data.vercel.app/ IP 64.29.17.131 ASN #16509 AMAZON-02 Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:57 Last Seen2025-07-25 04:06 Times Seen75715 Hash 7c3c3ddeb80438dcbb3d081d2d00e152 5a4016732ee72ec77b4f6ab17047bcea6d2ea34d 321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187 Loading...

	sync-backup-data.vercel.app/runtime.cfe25d2ca08aad2f.js	ScriptElement	896 B	2024-09-24	2025-07-24
Pretty URL sync-backup-data.vercel.app/runtime.cfe25d2ca08aad2f.js IP 64.29.17.131 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-24 14:50 Last Seen2025-07-24 17:31 Times Seen442 Hash 6ad90f5c307b99dd30558facadde4478 95e40d938e8e45f085e9132b2ed0ab7effde9f8f ed6f7a5b7b440274ecf15d9d1e575e94e2a40f7f1f01d7eb76b661293df0e7ae Loading...

	code.jquery.com/jquery-3.2.1.slim.min.js	ScriptElement	70 kB	2023-03-07	2025-07-25
Pretty URL code.jquery.com/jquery-3.2.1.slim.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 03:45 Times Seen65284 Hash 5f48fc77cac90c4778fa24ec9c57f37d 9e89d1515bc4c371b86f4cb1002fd8e377c1829f 9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398 Loading...

	cdn.jsdelivr.net/npm/popper.js@1.12.9/dist/umd/popper.min.js	ScriptElement	19 kB	2023-03-07	2025-07-25
Pretty URL cdn.jsdelivr.net/npm/popper.js@1.12.9/dist/umd/popper.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 03:45 Times Seen83807 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

	cdn.jsdelivr.net/npm/bootstrap@4.0.0/dist/js/bootstrap.min.js	ScriptElement	49 kB	2023-03-07	2025-07-25
Pretty URL cdn.jsdelivr.net/npm/bootstrap@4.0.0/dist/js/bootstrap.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 03:45 Times Seen84620 Hash 14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b Loading...

HTTP Transactions (22)

URL IP Response Size

GET sync-backup-data.vercel.app/static/themes/altum/assets/css/animate.min.css?v=930

64.29.17.131

200 OK

72 kB

URL GET
sync-backup-data.vercel.app/static/themes/altum/assets/css/animate.min.css?v=930
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
ASCII text, with very long lines (65348)
Size
72 kB (71750 bytes)
Hash
c0be8e53226ac34833fd9b5dbc01ebc5
b81ef1b22de26af8a7a4656f565fbc91a69d7518
5fbaeb9f8e25d7e0143bae61d4b1802c16ce7390b96ceb2d498b0d96ff4c853f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /static/themes/altum/assets/css/animate.min.css?v=930 HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20112
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="animate.min.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Sat, 19 Jul 2025 16:23:32 GMT
etag: "c0be8e53226ac34833fd9b5dbc01ebc5"
last-modified: Sat, 19 Jul 2025 10:48:20 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::kkqnb-1752942212825-0d190b3e8bfb
content-length: 5656
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/static/uploads/img/meta.svg

64.29.17.131

200 OK

12 kB

URL GET
sync-backup-data.vercel.app/static/uploads/img/meta.svg
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
SVG Scalable Vector Graphics image
Size
12 kB (12365 bytes)
Hash
1f409a28abf39a2f1e8a1d07e7fdac67
4151a28ca709c054bb24f16802e1c66302716eb6
1bce6bcd554cf223149803a9902378f6d66dd914e5d6c3943182348535711d27

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /static/uploads/img/meta.svg HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20111
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="meta.svg"
content-encoding: br
content-type: image/svg+xml
date: Sat, 19 Jul 2025 16:23:33 GMT
etag: "1f409a28abf39a2f1e8a1d07e7fdac67"
last-modified: Sat, 19 Jul 2025 10:48:22 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::s2r82-1752942213263-7f512c1bbef7
content-length: 4126
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/static/uploads/img/278052525_813944336231788_2126819975299864928_n.2ca221b227e5e50b2861f74e67923f35.svg

64.29.17.131

200 OK

3.8 kB

URL GET
sync-backup-data.vercel.app/static/uploads/img/278052525_813944336231788_2126819975299864928_n.2ca221b227e5e50b2861f74e67923f35.svg
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
SVG Scalable Vector Graphics image
Size
3.8 kB (3770 bytes)
Hash
59dbe6b338ea85c1702f53c2817e1c18
bde9f8645a0bf981c1dff316f5c22ad0916d889c
0c038058600a811b8a96de485a224bcc30eb673972fe39954075bcf70ce74e04

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /static/uploads/img/278052525_813944336231788_2126819975299864928_n.2ca221b227e5e50b2861f74e67923f35.svg HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20111
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="278052525_813944336231788_2126819975299864928_n.2ca221b227e5e50b2861f74e67923f35.svg"
content-encoding: br
content-type: image/svg+xml
date: Sat, 19 Jul 2025 16:23:33 GMT
etag: "59dbe6b338ea85c1702f53c2817e1c18"
last-modified: Sat, 19 Jul 2025 10:48:22 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::blmzc-1752942213270-4465e5fefe1a
content-length: 1732
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/static/uploads/block_images/30175859_1847141705586364_4634876909090504704_n.1a04d13ed075a5eb588b.jpg

64.29.17.131

200 OK

81 kB

URL GET
sync-backup-data.vercel.app/static/uploads/block_images/30175859_1847141705586364_4634876909090504704_n.1a04d13ed075a5eb588b.jpg
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
JPEG image data, baseline, precision 8, 1920x175, components 3
Size
81 kB (80630 bytes)
Hash
49a366b72644f04ea8efccf9550fb0a5
54492aa337fc8ee34297a04fd789d202fba78d58
289d99b21fae145c868238c0c499dcf8e84bea445b63e47e3406acfe98e20a34

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /static/uploads/block_images/30175859_1847141705586364_4634876909090504704_n.1a04d13ed075a5eb588b.jpg HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20111
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="30175859_1847141705586364_4634876909090504704_n.1a04d13ed075a5eb588b.jpg"
content-type: image/jpeg
date: Sat, 19 Jul 2025 16:23:33 GMT
etag: "49a366b72644f04ea8efccf9550fb0a5"
last-modified: Sat, 19 Jul 2025 10:48:22 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::blmzc-1752942213275-6b8c0d7baab5
content-length: 80630
X-Firefox-Spdy: h2

GET cdn.jsdelivr.net/npm/bootstrap@4.4.1/dist/css/bootstrap.min.css

151.101.193.229

200 OK

160 kB

URL GET
cdn.jsdelivr.net/npm/bootstrap@4.4.1/dist/css/bootstrap.min.css
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4
ValidityMon, 02 Jun 2025 15:43:52 GMT - Sat, 04 Jul 2026 15:43:51 GMT

File type
ASCII text, with very long lines (65324)
Size
160 kB (159515 bytes)
Hash
7cc40c199d128af6b01e74a28c5900b0
d305110fb79113a961394b433d851a3410342b8c
2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6

HTTP Headers

GET /npm/bootstrap@4.4.1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-length: 24808
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.4.1
x-jsd-version-type: version
etag: W/"26f1b-0wURD7eRE6lhOUtDPYUaNBA0K4w"
content-encoding: br
accept-ranges: bytes
date: Sat, 19 Jul 2025 16:23:33 GMT
age: 2005010
x-served-by: cache-fra-etou8220054-FRA, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

GET sync-backup-data.vercel.app/

64.29.17.131

200 OK

3.0 kB

URL User Request GET
sync-backup-data.vercel.app/
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
HTML document, ASCII text, with very long lines (552)
Size
3.0 kB (3031 bytes)
Hash
36c64a6734544549fb3e9a5a3d4647ba
9f25d6309f1a5979db5a9cc0683427679e864d3c
a47ccad37687e6778cc0e4ed25492f538bb08f5870f9f5dbbc019894dc7a28fb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 32346
cache-control: public, max-age=0, must-revalidate
content-disposition: inline
content-encoding: br
content-type: text/html; charset=utf-8
date: Sat, 19 Jul 2025 16:23:32 GMT
etag: "36c64a6734544549fb3e9a5a3d4647ba"
last-modified: Sat, 19 Jul 2025 07:24:25 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::qkssk-1752942212591-70912d7352c6
content-length: 1198
X-Firefox-Spdy: h2

GET cdn.jsdelivr.net/npm/bootstrap@4.0.0/dist/js/bootstrap.min.js

151.101.193.229

200 OK

49 kB

URL GET
cdn.jsdelivr.net/npm/bootstrap@4.0.0/dist/js/bootstrap.min.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4
ValidityMon, 02 Jun 2025 15:43:52 GMT - Sat, 04 Jul 2026 15:43:51 GMT

File type
JavaScript source, ASCII text, with very long lines (48664)
Size
49 kB (48944 bytes)
Hash
14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b

HTTP Headers

GET /npm/bootstrap@4.0.0/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sync-backup-data.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.0.0
x-jsd-version-type: version
etag: W/"bf30-qVRYMYA7E1nP7tR+O01rrmjkDpk"
content-encoding: br
accept-ranges: bytes
date: Sat, 19 Jul 2025 16:23:32 GMT
age: 3316030
x-served-by: cache-fra-eddf8230045-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13987
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/main.93119151c3d77464.js

64.29.17.131

200 OK

279 kB

URL GET
sync-backup-data.vercel.app/main.93119151c3d77464.js
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
279 kB (279294 bytes)
Hash
b03742349b9497680e31b24466f5eb31
b13728689f3227b318a14577658aa39672c2dc74
0b298fee52b2ae5a54bc10f97b4866cecd9a87e80b73103e9603e2a3fedf44c3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /main.93119151c3d77464.js HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20112
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="main.93119151c3d77464.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Sat, 19 Jul 2025 16:23:32 GMT
etag: "b03742349b9497680e31b24466f5eb31"
last-modified: Sat, 19 Jul 2025 10:48:20 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::kkqnb-1752942212837-9406bf96444a
content-length: 85356
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/polyfills.03900724de710737.js

64.29.17.131

200 OK

34 kB

URL GET
sync-backup-data.vercel.app/polyfills.03900724de710737.js
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
JavaScript source, ASCII text, with very long lines (33807), with no line terminators
Size
34 kB (33807 bytes)
Hash
2031e3db9964479b8b85b462b0f37b10
04d51282c73fe528f68e4a66d371f87b42e20535
9826270889945e938aef3dd0ac779c14f6951b4dc672e65dc637e670009be019

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /polyfills.03900724de710737.js HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20112
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="polyfills.03900724de710737.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Sat, 19 Jul 2025 16:23:32 GMT
etag: "2031e3db9964479b8b85b462b0f37b10"
last-modified: Sat, 19 Jul 2025 10:48:20 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::kkqnb-1752942212834-e6ba317a63c4
content-length: 12638
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/static/uploads/img/ref.png

64.29.17.131

200 OK

26 kB

URL GET
sync-backup-data.vercel.app/static/uploads/img/ref.png
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
PNG image data, 509 x 508, 8-bit/color RGBA, non-interlaced
Size
26 kB (25771 bytes)
Hash
05f894ee67dbc89349ad3e283c31bb23
c1e0405da01e41a82ed3e55cb931a7b07e503380
6f8213d2e8073eccc067eef5422416c7528f3e9bd3594f3ed8c0ec52b46018c0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /static/uploads/img/ref.png HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20111
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="ref.png"
content-type: image/png
date: Sat, 19 Jul 2025 16:23:33 GMT
etag: "05f894ee67dbc89349ad3e283c31bb23"
last-modified: Sat, 19 Jul 2025 10:48:22 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::blmzc-1752942213278-5ae45a0a880f
content-length: 25771
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/static/themes/altum/assets/css/bootstrap.min.css?v=930

64.29.17.131

200 OK

220 kB

URL GET
sync-backup-data.vercel.app/static/themes/altum/assets/css/bootstrap.min.css?v=930
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
Unicode text, UTF-8 text, with very long lines (65321)
Size
220 kB (220490 bytes)
Hash
e46c18746961c5d284cf490153651ff8
4a44e5bd939180d30090b0efd7b9279d1aedbc53
513eab46f3bbeb7c4dd7729dfe5ab117a23d11356f6dd3da11ed9e7b8e4047e4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /static/themes/altum/assets/css/bootstrap.min.css?v=930 HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20112
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="bootstrap.min.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Sat, 19 Jul 2025 16:23:32 GMT
etag: "e46c18746961c5d284cf490153651ff8"
last-modified: Sat, 19 Jul 2025 10:48:20 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::h5vkb-1752942212821-f5275add58bf
content-length: 34129
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/static/themes/altum/assets/css/custom.css?v=930

64.29.17.131

200 OK

16 kB

URL GET
sync-backup-data.vercel.app/static/themes/altum/assets/css/custom.css?v=930
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
ASCII text, with very long lines (738)
Size
16 kB (15947 bytes)
Hash
70c8cda9911f0a29b8fb395a31623bf4
d9e0addf747dedd8184244dd0e92c54a4468f62e
971911d0cc82296a858f795a0946cb86428b1c361b1e5f03d7154af5c71eaed0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /static/themes/altum/assets/css/custom.css?v=930 HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20112
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="custom.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Sat, 19 Jul 2025 16:23:32 GMT
etag: "70c8cda9911f0a29b8fb395a31623bf4"
last-modified: Sat, 19 Jul 2025 10:48:20 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::9r5lb-1752942212821-81e7973c04f2
content-length: 4769
X-Firefox-Spdy: h2

GET code.jquery.com/jquery-3.2.1.slim.min.js

151.101.2.137

200 OK

70 kB

URL GET
code.jquery.com/jquery-3.2.1.slim.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
Fingerprint56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE
ValidityThu, 12 Jun 2025 00:00:00 GMT - Fri, 26 Jun 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32012)
Size
70 kB (69597 bytes)
Hash
5f48fc77cac90c4778fa24ec9c57f37d
9e89d1515bc4c371b86f4cb1002fd8e377c1829f
9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398

HTTP Headers

GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sync-backup-data.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-10fdd"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 19 Jul 2025 16:23:32 GMT
age: 3393630
x-served-by: cache-lga21963-LGA, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 38, 44056
x-timer: S1752942213.917757,VS0,VE0
vary: Accept-Encoding
content-length: 23856
X-Firefox-Spdy: h2

GET get.geojs.io/v1/ip/geo.json

172.67.70.233

200 OK

335 B

URL GET
get.geojs.io/v1/ip/geo.json
IP
172.67.70.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerGoogle Trust Services
Subjectgeojs.io
FingerprintA3:C6:58:F9:E8:49:67:61:59:AC:B4:7D:C8:2F:CB:C3:EC:B2:82:9B
ValidityThu, 26 Jun 2025 06:15:54 GMT - Wed, 24 Sep 2025 07:15:44 GMT

File type
JSON text data
Size
335 B (335 bytes)
Hash
0453f521ff46b6dff2420c41033c1ff0
1444581c4b31a91500a988b93073c3342abe1d50
65cdec2934287a5ab375da37e657cd310bcb8ec554aab86e8fd5634ffbe0cb6d

HTTP Headers

GET /v1/ip/geo.json HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sync-backup-data.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Jul 2025 16:23:33 GMT
content-type: application/json
server: cloudflare
x-request-id: 9937fbb55c946a07ad24427dc205559d-ASH
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
geojs-backend: ash-01
cf-cache-status: DYNAMIC
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-content-type-options: nosniff
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=KMv3IgYCXGpTzSQIi5Icr7JSUjWOD5A9uxUMVGo%2BJEzMlzAuylmNlkgnNzMxe8MTy%2B8vw0bLOlvWC6ZiyucTMw%2B7AEEs0WU%3D"}]}
content-encoding: br
cf-ray: 961b90615ac67131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/static/uploads/favicon/logo.png

64.29.17.131

200 OK

1.1 kB

URL GET
sync-backup-data.vercel.app/static/uploads/favicon/logo.png
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1059 bytes)
Hash
2a2b3dccda589896e35cc3c75f3b5998
dd0b5969d6826938da808650e2fa08cb359bef3b
ab50a5d6c1adaab85fbf6c44df694a3a0686a0bbe30ec0f67766de676a370dc7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /static/uploads/favicon/logo.png HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 6590
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="logo.png"
content-type: image/png
date: Sat, 19 Jul 2025 16:23:33 GMT
etag: "2a2b3dccda589896e35cc3c75f3b5998"
last-modified: Sat, 19 Jul 2025 14:33:42 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::bk5kv-1752942213485-710c91001c54
content-length: 1059
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/styles.01936927f2dc52ef.css

64.29.17.131

200 OK

198 kB

URL GET
sync-backup-data.vercel.app/styles.01936927f2dc52ef.css
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
ASCII text, with very long lines (37946)
Size
198 kB (197549 bytes)
Hash
af9c38a3b8f8ce8546dca1db416339a2
406a5ad5b3f1e5fd48215c699ef40345385d345f
6b59b8d849009bdfe8b0fed087dcc6a680e143debc4cea808003868fe0aeb56d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /styles.01936927f2dc52ef.css HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20112
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="styles.01936927f2dc52ef.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Sat, 19 Jul 2025 16:23:33 GMT
etag: "af9c38a3b8f8ce8546dca1db416339a2"
last-modified: Sat, 19 Jul 2025 10:48:20 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::48l5b-1752942213126-46f896647cf6
content-length: 32718
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/static/uploads/img/423619488_703005315241772_7337317129912768654_n.png

64.29.17.131

200 OK

2.5 kB

URL GET
sync-backup-data.vercel.app/static/uploads/img/423619488_703005315241772_7337317129912768654_n.png
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
PNG image data, 128 x 128, 8-bit gray+alpha, non-interlaced
Size
2.5 kB (2547 bytes)
Hash
b10226f7f988de8623ca7df861013f79
1c862f48cb7c28601c861add90e3b63f15b67016
05f0356d537b742768f4381c00964ad3d423d5010acfc895f761da54f4a44f42

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /static/uploads/img/423619488_703005315241772_7337317129912768654_n.png HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20111
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="423619488_703005315241772_7337317129912768654_n.png"
content-type: image/png
date: Sat, 19 Jul 2025 16:23:33 GMT
etag: "b10226f7f988de8623ca7df861013f79"
last-modified: Sat, 19 Jul 2025 10:48:22 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::blmzc-1752942213264-ef9604f64a63
content-length: 2547
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/static/themes/altum/assets/css/link-custom.css?v=930

64.29.17.131

200 OK

2.6 kB

URL GET
sync-backup-data.vercel.app/static/themes/altum/assets/css/link-custom.css?v=930
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
ASCII text
Size
2.6 kB (2574 bytes)
Hash
b698881fd87cbbcc0b7c6237ee405a2b
d09c749257654cab682ab99341838120bdf607f7
936f0ea05ab0eba8514c48ab7550344fd3edf91f3e9b5125c832e5402bf42120

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /static/themes/altum/assets/css/link-custom.css?v=930 HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20112
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="link-custom.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Sat, 19 Jul 2025 16:23:32 GMT
etag: "b698881fd87cbbcc0b7c6237ee405a2b"
last-modified: Sat, 19 Jul 2025 10:48:20 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::t8pck-1752942212823-d488dd0fff26
content-length: 905
X-Firefox-Spdy: h2

GET kit.fontawesome.com/83fd8385f7.js

172.64.147.188

403 Forbidden

9 B

URL GET
kit.fontawesome.com/83fd8385f7.js
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerGoogle Trust Services
Subjectfontawesome.com
Fingerprint58:07:BB:90:43:B8:FF:88:FA:51:6D:25:62:12:3F:F1:6D:EA:C6:64
ValidityThu, 26 Jun 2025 16:08:07 GMT - Wed, 24 Sep 2025 17:08:04 GMT

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3

HTTP Headers

GET /83fd8385f7.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sync-backup-data.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Sat, 19 Jul 2025 16:23:33 GMT
content-length: 9
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=0, private, must-revalidate
x-request-id: GFOzp7pfw8XlBBBW4TzB
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 961b905e582e569c-OSL
X-Firefox-Spdy: h2

GET cdn.jsdelivr.net/npm/popper.js@1.12.9/dist/umd/popper.min.js

151.101.193.229

200 OK

19 kB

URL GET
cdn.jsdelivr.net/npm/popper.js@1.12.9/dist/umd/popper.min.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4
ValidityMon, 02 Jun 2025 15:43:52 GMT - Sat, 04 Jul 2026 15:43:51 GMT

File type
JavaScript source, ASCII text, with very long lines (19015)
Size
19 kB (19188 bytes)
Hash
70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

HTTP Headers

GET /npm/popper.js@1.12.9/dist/umd/popper.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sync-backup-data.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.12.9
x-jsd-version-type: version
etag: W/"4af4-w7l3qkuN+2nWUeBwFQMdOF3tlks"
content-encoding: br
accept-ranges: bytes
date: Sat, 19 Jul 2025 16:23:32 GMT
age: 5810997
x-served-by: cache-fra-eddf8230041-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7217
X-Firefox-Spdy: h2

GET cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js

151.101.193.229

200 OK

79 kB

URL GET
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4
ValidityMon, 02 Jun 2025 15:43:52 GMT - Sat, 04 Jul 2026 15:43:51 GMT

File type
JavaScript source, ASCII text, with very long lines (65299)
Size
79 kB (78743 bytes)
Hash
0aa8d64e726c4a57adb5c88f9115996b
901169527507ff9e662cf64d8e361f359308970d
7e1f1503df765cca5e099891b94e318a2ef95081ba2af1eb6d417cc884bfdbfe

HTTP Headers

GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sync-backup-data.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"13397-kBFpUnUH/55mLPZNjjYfNZMIlw0"
content-encoding: br
accept-ranges: bytes
date: Sat, 19 Jul 2025 16:23:32 GMT
age: 3391299
x-served-by: cache-fra-eddf8230080-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 21528
X-Firefox-Spdy: h2

GET sync-backup-data.vercel.app/runtime.cfe25d2ca08aad2f.js

64.29.17.131

200 OK

896 B

URL GET
sync-backup-data.vercel.app/runtime.cfe25d2ca08aad2f.js
IP
64.29.17.131:443
ASN
#16509 AMAZON-02

Requested by
https://sync-backup-data.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint81:D3:FA:22:93:E5:25:70:85:9A:59:F7:5D:92:C4:FE:CF:35:0D:C7
ValidityTue, 24 Jun 2025 04:57:32 GMT - Mon, 22 Sep 2025 04:57:31 GMT

File type
JavaScript source, ASCII text, with very long lines (896), with no line terminators
Size
896 B (896 bytes)
Hash
6ad90f5c307b99dd30558facadde4478
95e40d938e8e45f085e9132b2ed0ab7effde9f8f
ed6f7a5b7b440274ecf15d9d1e575e94e2a40f7f1f01d7eb76b661293df0e7ae

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /runtime.cfe25d2ca08aad2f.js HTTP/1.1
Host: sync-backup-data.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sync-backup-data.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20112
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="runtime.cfe25d2ca08aad2f.js"
content-type: application/javascript; charset=utf-8
date: Sat, 19 Jul 2025 16:23:32 GMT
etag: "6ad90f5c307b99dd30558facadde4478"
last-modified: Sat, 19 Jul 2025 10:48:20 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::9r5lb-1752942212833-1cd34143f00d
content-length: 896
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (22)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET