Report - zmaflab.com/

Report Overview

Submitted URL
zmaflab.com/
IP
162.215.254.164
ASN
#394695 PUBLIC-DOMAIN-REGISTRY
Submitted
2023-01-09 03:37:51
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
96

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	21 kB	142.250.74.110
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	599 B	703 B	108.177.14.154
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
zmaflab.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	38 kB	3.0 MB	162.215.254.164
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.89.3.63
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	142.250.74.131
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	387 B	1.7 kB	142.250.74.74
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	41 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	46 kB	142.250.74.40

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-09	medium	zmaflab.com/	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.9.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/uploads/elementor/css/post-5126.css?ver=1671654087	Phishing
2023-01-09	medium	zmaflab.com/wp-content/uploads/elementor/css/post-1212.css?ver=1671654741	Phishing
2023-01-09	medium	zmaflab.com/wp-content/themes/gerialife/style.css?ver=6.0.3	Phishing
2023-01-09	medium	zmaflab.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.9.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/themes/gerialife/assets/css/carousel.css?ver=6.0.3	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5	Phishing
2023-01-09	medium	zmaflab.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/modernizr.custom.js?ver=5.1.6	Phishing
2023-01-09	medium	zmaflab.com/wp-content/uploads/elementor/css/post-4744.css?ver=1671654086	Phishing
2023-01-09	medium	zmaflab.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/auros-core/assets/js/carousel.js?ver=6.0.3	Phishing
2023-01-09	medium	zmaflab.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/themes/gerialife/assets/js/sticky-layout.js?ver=6.0.3	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/mlpushmenu.js?ver=5.1.6	Phishing
2023-01-09	medium	zmaflab.com/wp-content/themes/gerialife/assets/js/theme.js?ver=1.0	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/jquery.magnific-popup.min.js?ver=5.1.6	Phishing
2023-01-09	medium	zmaflab.com/wp-content/uploads/elementor/css/post-362.css?ver=1671654087	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/classie.js?ver=5.1.6	Phishing
2023-01-09	medium	zmaflab.com/wp-content/uploads/elementor/css/global.css?ver=1671654087	Phishing
2023-01-09	medium	zmaflab.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/jquery.smartmenus.min.js?ver=5.1.6	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3	Phishing
2023-01-09	medium	zmaflab.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.9.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/auros-core/assets/js/elementor/frontend.js?ver=6.0.3	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.9.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/themes/gerialife/assets/fonts/Eina03-Bold.woff	Phishing
2023-01-09	medium	zmaflab.com/wp-content/themes/gerialife/assets/fonts/Eina03-Regular.woff	Phishing
2023-01-09	medium	zmaflab.com/wp-content/themes/gerialife/assets/fonts/Eina03-SemiBold.woff	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2	Phishing
2023-01-09	medium	zmaflab.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	Phishing
2023-01-09	medium	zmaflab.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0	Phishing
2023-01-09	medium	zmaflab.com/wp-content/themes/gerialife/assets/js/libs/owl.carousel.js?ver=2.2.1	Phishing
2023-01-09	medium	zmaflab.com/wp-content/uploads/2021/11/GERIA-LIFE-ZMAF-original.mp4	Phishing
2023-01-09	medium	zmaflab.com/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (47)

	URL	Size	First Seen	Last Seen
	zmaflab.com/	5.6 kB	2023-03-12	2023-03-12
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:46:40 Last Seen2023-03-12 18:46:40 Times Seen1 Hash 2adb9c2cad3f1ebd679fd71b8ab39459 9ed8a9fe9d36dd386421bf4db4a965ee8393bf73 c4258dc7335a3b9fcfb52b1055f2f65ac229dff1369fdde7b35ed90948760c16 Loading...

	zmaflab.com/wp-content/themes/gerialife/assets/js/sticky-layout.js?ver=6.0.3	5.4 kB	2023-03-10	2023-10-23
Pretty URL zmaflab.com/wp-content/themes/gerialife/assets/js/sticky-layout.js?ver=6.0.3 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:09:02 Last Seen2023-10-23 11:14:40 Times Seen13 Hash 5cf17804b7c2c95227dfb37ef3bea903 173398be9f7fe6607ed7e2cdf87319ba4d8bccd2 a0086fa0e6429d44e9e43f5a8e28be78dfe3c4cd16ac7f07d7858b082ffb9a74 Loading...

	zmaflab.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-05-05
Pretty URL zmaflab.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-05 00:00:18 Times Seen53389 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/classie.js?ver=5.1.6	1.8 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/classie.js?ver=5.1.6 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2024-05-04 19:42:19 Times Seen5050 Hash a9df1cfb76ce492afd9d13f3320272fd 782b9564f015a2ec7bdf9c89e238fab9b44bd587 717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144 Loading...

	zmaflab.com/	96 B	2023-03-07	2024-05-05
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-05-05 00:00:16 Times Seen10710 Hash eb3a538fd2a39c22198e72c3b9f498a7 c966ebdbd2701a0980a85671126664f3892d4f1e ac233233e7bcaf806041b243578fab081dced8a045d9a82756410da9ea2382a1 Loading...

	zmaflab.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3	1.2 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-05-04 18:15:53 Times Seen9290 Hash 51300497928562f8c86c7aaba99237cd e5826832b85c6afc6502b74cbb8ac5394b04c363 6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f Loading...

	zmaflab.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-05-02
Pretty URL zmaflab.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-02 17:23:54 Times Seen3671 Hash 6aaf0a4e8eac131defea126f5b1b5fbf 24da0326af36303e5a1e9799a3c26f7a1077928c 240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5 Loading...

	zmaflab.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.16	6.5 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.16 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:29 Last Seen2024-05-04 17:44:02 Times Seen1356 Hash 170687433986a4a559fa4f16b1d7c70e 84349b5fb0fcb057ae1768667f480fd607a1da49 722a90d42ef2bd0ea38f0fdac6b4c0523aa4a027e9ffe889972100746e165582 Loading...

	zmaflab.com/wp-content/themes/gerialife/assets/js/libs/owl.carousel.js?ver=2.2.1	104 kB	2023-03-07	2024-01-28
Pretty URL zmaflab.com/wp-content/themes/gerialife/assets/js/libs/owl.carousel.js?ver=2.2.1 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:21 Last Seen2024-01-28 12:04:55 Times Seen145 Hash 5931613d57f6ac2f00829eefd39a8b15 66304d3e2e5ae465ea3df42d582dd1ebcdf5aa6a 6e60e269abacf471d9157534945925d27747a831d86b5e55b0efc0bcfb152799 Loading...

	zmaflab.com/	1.5 kB	2023-03-07	2024-05-02
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-05-02 19:03:48 Times Seen696 Hash 0f34278c49ba25db1ef359dd2641dc9a 916c0b1bc083867813188c84bb055cfce331c44c 44134cbf94a69a4a21b2805d17b869ad1d5ce8ad563f96b6cd218e71fab9d07e Loading...

	zmaflab.com/wp-includes/js/wp-util.min.js?ver=6.0.3	1.3 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-includes/js/wp-util.min.js?ver=6.0.3 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-05-04 17:23:58 Times Seen2744 Hash 8637362089372427b52fa10a43d8109c 6009bed674718329dce6055ab09fa95181162d81 b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35 Loading...

	zmaflab.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3	906 B	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:59 Last Seen2024-05-04 17:23:58 Times Seen3889 Hash 2c6d3b562a48e0df5474999dd47e58fb 945220e990eb176c14e53cc663fb01e04e31b59f 3e6131330963c472b950b8aaf544ba3829735b8ccb103d614ba7793e3a786550 Loading...

	zmaflab.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2	5.0 kB	2023-03-10	2024-05-02
Pretty URL zmaflab.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:48:32 Last Seen2024-05-02 06:59:52 Times Seen499 Hash 830cac1ec36685cc6054d87bc1c5a021 8a016c59bd31fab553ecd47bb9bbf00edc6101af 8e6eff98ff6c13a3724e93e342adc61569fad0849034249632e3dd3433395986 Loading...

	www.googletagmanager.com/gtag/js?id=UA-211573629-1	115 kB	2023-03-12	2023-03-12
Pretty URL www.googletagmanager.com/gtag/js?id=UA-211573629-1 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:46:40 Last Seen2023-03-12 18:46:40 Times Seen1 Hash 4a786c36b3e212eb6a85b10dab3f5958 441ee9545ce8bdd02af3d798db0607983a09132d 149f59a9efc76ed61e13946abccd617b4cef4dc2302cc666a2b4e1f03253bba0 Loading...

	zmaflab.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3	19 kB	2023-03-07	2024-05-05
Pretty URL zmaflab.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-05 01:25:14 Times Seen38183 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	zmaflab.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0	151 kB	2023-03-07	2024-04-29
Pretty URL zmaflab.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:48 Last Seen2024-04-29 02:06:47 Times Seen929 Hash c15dcd71fd8c45d9e9b4d6ddb498ac14 1c8553e2770a6708586d6f3da58cf3416d4b3beb 0a79ae4b9e359eb359db5e9c4ee6abd91a0cd514eabdeac0c44b2f1c2bac1c40 Loading...

	zmaflab.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5	276 kB	2023-03-07	2024-04-26
Pretty URL zmaflab.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:46 Last Seen2024-04-26 10:14:43 Times Seen530 Hash 5efebdb40e01d8a77e12293f7c1072e1 a0c545bffa4255510308c0eebc8843cfe4c6f123 31a95672d187364df635a94aa331ce84f8b2f8a18f7f1547aca21b1b34277b21 Loading...

	zmaflab.com/	365 B	2023-03-12	2023-03-12
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:46:40 Last Seen2023-03-12 18:46:40 Times Seen1 Hash a39912a5613539b621bba945773bb814 08f0f637306bfaef1f31afb31c1a7fad069cfa9c 09419e1ef786d314b719017d61fc90603c298024bf14005d2e8667dd51a5f364 Loading...

	zmaflab.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16	158 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-05-04 17:23:58 Times Seen2418 Hash 6de31d697a1b1b2b0e2a3b29b1fb458b c9b6c996a66918f7c4d49c9b60134ce282c47143 443ba0af7a7ed827223c7fb3c008c02b9ff1d651b6492e9c270378b07d9f6008 Loading...

	zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.2	15 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.2 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-05-04 18:29:43 Times Seen16463 Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6 678bc6f750f13adb29bbc158eb0d9cd813b736fa 97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264 Loading...

	zmaflab.com/wp-content/plugins/auros-core/assets/js/elementor/frontend.js?ver=6.0.3	23 kB	2023-03-10	2023-10-23
Pretty URL zmaflab.com/wp-content/plugins/auros-core/assets/js/elementor/frontend.js?ver=6.0.3 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:14:19 Last Seen2023-10-23 11:14:41 Times Seen10 Hash a5b2fd1060823a23633409c00781c84b 2e883b9e952ca3830504cd92a132b11e07aee22b a20bce6b884cfa4506e9587d5eddc42c6f02362d19694fd580b0aaae1e6828b4 Loading...

	zmaflab.com/	125 B	2023-03-12	2023-03-12
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:46:40 Last Seen2023-03-12 18:46:40 Times Seen1 Hash d6cba950f3a391cd1187652db7b34c95 4a949fc7391d6dcdb1c88c088408c346013ad1cb a2ed19e163bcf3f3d1755b3bca2d7b220b68c608748e49e905a0fe6459479447 Loading...

	zmaflab.com/	1.9 kB	2023-03-12	2023-03-12
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:46:40 Last Seen2023-03-12 18:46:40 Times Seen1 Hash be21f8ae9fb81071ce376fbce7fc327c a582cc6f5e014bdde64ddd160f2046d2dba53a94 639971f14a74e8b7188e3a7f37b909e469336d8915392a7c15d4e69acc002e34 Loading...

	www.google-analytics.com/plugins/ua/linkid.js	1.6 kB	2023-03-07	2024-04-28
Pretty URL www.google-analytics.com/plugins/ua/linkid.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-28 08:13:43 Times Seen1991 Hash 0cc3a63fe10060af4a349e5df666eefe 3e8d3925b550345123f2cab26568221fd4154f9c 92fca55833f48b4289ac8f1cedd48752b580fce4ec4b5d81670b8193d6e51b54 Loading...

	zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/mlpushmenu.js?ver=5.1.6	10 kB	2023-03-10	2023-10-23
Pretty URL zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/mlpushmenu.js?ver=5.1.6 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:14:19 Last Seen2023-10-23 11:14:41 Times Seen11 Hash 1800b5f56ebd243a5f861af115d4a9e0 0867b1ad09daa3dd2458df4887ee209b7285123f fb36aafb61f8d35fa28008b8f4dc4cb5facbf84962fe128169cee7db6617ff5a Loading...

	zmaflab.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.2	2.6 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.2 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-05-04 18:29:43 Times Seen11341 Hash 020e87460ce58802842e34a3aac97d83 d2eed5f7573c0bd640fb9f125b6bfedf43ebf9b9 138154c0deed3326477b9b4909175101070a5a3a95342291b53d8cc9879a5f47 Loading...

	zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/modernizr.custom.js?ver=5.1.6	9.0 kB	2023-03-07	2024-03-12
Pretty URL zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/modernizr.custom.js?ver=5.1.6 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:59 Last Seen2024-03-12 09:54:32 Times Seen256 Hash 7a9ad736fcbd8d99ac7cb282e48f492d bc9582612f11bf96bc56f75347cf54138339778a 8bf0280a5588514ef4978f8099d859364ba6d44dcfb9ee8c59d90486e3ec1267 Loading...

	zmaflab.com/wp-includes/js/underscore.min.js?ver=1.13.3	19 kB	2023-03-07	2024-05-02
Pretty URL zmaflab.com/wp-includes/js/underscore.min.js?ver=1.13.3 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-05-02 20:26:45 Times Seen2366 Hash 42aa17e1f850a414638ee4a32a3aa807 2e42d03a5e042701191650c041eae1cfb2d6c7b9 0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4 Loading...

	zmaflab.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-05-05
Pretty URL zmaflab.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-05 01:25:14 Times Seen32021 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	zmaflab.com/	980 B	2023-03-12	2023-03-12
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:46:40 Last Seen2023-03-12 18:46:40 Times Seen1 Hash 31d3bce1c67f873971e9cd2c985283cc 06e5deb3b3131958261466343527bb22a12ccaac 99b65f054540ee60fb46f37da020c5412a5d49e442e305828414dafaa0d027d0 Loading...

	zmaflab.com/wp-content/themes/gerialife/assets/js/theme.js?ver=1.0	21 kB	2023-03-10	2023-10-23
Pretty URL zmaflab.com/wp-content/themes/gerialife/assets/js/theme.js?ver=1.0 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:14:19 Last Seen2023-10-23 11:14:42 Times Seen26 Hash 14017939a528c15d537000d294333514 ab372c9e0ff0bf5ab217704072db67af9e0fb5bf fdeaefd557af3b586b5408e261748973fba546913be355862dd339c9b49ebd6c Loading...

	zmaflab.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-05-05
Pretty URL zmaflab.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-05 01:25:14 Times Seen68971 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/jquery.magnific-popup.min.js?ver=5.1.6	20 kB	2023-03-07	2024-05-05
Pretty URL zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/jquery.magnific-popup.min.js?ver=5.1.6 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-05 00:03:21 Times Seen19827 Hash ba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Loading...

	zmaflab.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.11.0	12 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.11.0 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:48 Last Seen2024-05-04 08:56:20 Times Seen5607 Hash a76f61318af036823b08d73536486be6 31ff9b215dcef9151b9f4fc50ea91a9df1962102 abc9faa4970e07db7d506d6b2a98e4c86223be305c7541ced54ea2e15f99a76e Loading...

	zmaflab.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2	32 kB	2023-03-10	2024-05-02
Pretty URL zmaflab.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:48:32 Last Seen2024-05-02 06:59:51 Times Seen514 Hash f8345cf99b3245538698c358c15f7fca 05405bd9fa67559e27759e45145b4d1857474a5c 71c853d2f2a1dc0393f6ceba3441c8e5bf7fb84a13ffc1dc95bdf72d98dd453c Loading...

	zmaflab.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.9.2	43 kB	2023-03-10	2024-05-02
Pretty URL zmaflab.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.9.2 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:23:28 Last Seen2024-05-02 06:59:52 Times Seen309 Hash c37d6c5ed717c1a52c123d1f40d7b2e1 1ae8311dc2ae948a631cdf5eb6646b69c7af0172 079734cc101ea53c45c597aa18ca7315ba2eb33e2d80ffbcb7dadf451cf2e373 Loading...

	zmaflab.com/wp-content/plugins/auros-core/assets/js/carousel.js?ver=6.0.3	4.4 kB	2023-03-07	2024-03-12
Pretty URL zmaflab.com/wp-content/plugins/auros-core/assets/js/carousel.js?ver=6.0.3 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:20 Last Seen2024-03-12 09:54:32 Times Seen116 Hash 7950b78be956eabcb0420c8832cc33bf 14ac6ba5b8a96c8ca7e7b4bec37b90d9997476d0 9cbbcbb1f4d510721683b8ecfbecdf20af2a397cbecd76cbeebb09e48a4e9ff3 Loading...

	zmaflab.com/	2.6 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:36 Last Seen2024-05-04 11:09:03 Times Seen494 Hash 40af01f2be4fc0d09d623af783133445 ec61e33c199ac59d88dfc2e2233d056b36dd7f5c c013bc4179a38c63dac1ef2bdb513e7feb5dfe98186ee73b980733c4ffd1fd70 Loading...

	zmaflab.com/	2.2 kB	2023-03-12	2023-03-12
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:46:40 Last Seen2023-03-12 18:46:40 Times Seen1 Hash 9d3ab0c467a3b25d91ab1514adfb204e 107f5e48741fb9f2b3d5ea03d9a8ea7ed453cd01 4bf1eeab95dd9358a732de03bd64980cc81da47d268a19c9f4dde7a42c263e34 Loading...

	zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/jquery.smartmenus.min.js?ver=5.1.6	24 kB	2023-03-07	2024-05-03
Pretty URL zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/jquery.smartmenus.min.js?ver=5.1.6 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:08 Last Seen2024-05-03 18:25:22 Times Seen410 Hash f37878df1d94bbea0dfb7e85612888ec 19df702835ff55ce5a9b76b9974f8597cc528c6a 2fe668f50e1b19f758d3a06ac0c60b0e869c6b31fa1ab43190b6af3dd4f46b8e Loading...

	zmaflab.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0	11 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-04 13:19:52 Times Seen5389 Hash 4eee50ac6f4f364ba3a284d0753ddae3 a8e7e824e6824ae0b370ff36e2c07ca07276fae0 b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe Loading...

	zmaflab.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2	41 kB	2023-03-10	2024-05-02
Pretty URL zmaflab.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:48:32 Last Seen2024-05-02 06:59:52 Times Seen611 Hash 47b4ae21c29544a41724c6d095d07a61 db18cdb7385735d4ea545ebc99e7b65194bd37ae a9c399a3695f864f52665163ff94626e3b77b44747e1519b03e5f82597b004d7 Loading...

	zmaflab.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	139 kB	2023-03-07	2024-05-04
Pretty URL zmaflab.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-04 19:06:44 Times Seen23288 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	zmaflab.com/	745 B	2023-03-07	2024-05-04
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-05-04 18:49:01 Times Seen422 Hash 6afac012eb0bf975a3eee4154b96689a 056225e48650a144fea0c8a0df1f73f243a83cd6 61228535a01cc999ada8fe9ec450b1e8da147da2ed7eb769d899a782226d7349 Loading...

	zmaflab.com/	184 B	2023-03-12	2023-03-12
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:46:40 Last Seen2023-03-12 18:46:40 Times Seen1 Hash 8aadd8fe928da85f8eb1196eae046316 c9eb0585f74597709db5a0378181d8ae9dc41cc5 9f788492adbd71b418f7cc662008bb07ebdf61acdc342c4787b858683f0c12f1 Loading...

	zmaflab.com/	149 B	2023-03-07	2024-05-04
Pretty URL zmaflab.com/ IP 162.215.254.164 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-05-04 17:23:57 Times Seen2869 Hash 931deb2e7bef82d78d1c1b0a3fe4fe32 2a468d77a19124c4bcd1745b7f51eff01b269ade afb2b21f29cd5d7fc5b63a8ea02ece9649603b9e63a2afa55927c508345e1ee7 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-04
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-04 19:13:00 Times Seen1637 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

HTTP Transactions (114)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15040
Expires: Mon, 09 Jan 2023 07:48:20 GMT
Date: Mon, 09 Jan 2023 03:37:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
516b9d6951b09439a51d5284994ed92f
5c78edb38bae36caa8e2db8ed6635a32e46c91dd
eaaf4ebc59d2a06d02b552154c5adb7c713ffc4a7f5caabcff1c2b4cd6ec5c7b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EAAF4EBC59D2A06D02B552154C5ADB7C713FFC4A7F5CAABCFF1C2B4CD6EC5C7B"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5774
Expires: Mon, 09 Jan 2023 05:13:54 GMT
Date: Mon, 09 Jan 2023 03:37:40 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 09 Jan 2023 02:48:20 GMT
content-type: application/json
age: 2960
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89a058935fd04697c87e9441fbb466a9
59b5b08119374b1da34cff7e43a7c6dc80103f6e
3a3261f495323ff0f60067b2930b8d0e5e4e5cd6ae9b14929a88047587b735da

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A3261F495323FF0F60067B2930B8D0E5E4E5CD6AE9B14929A88047587B735DA"
Last-Modified: Sat, 07 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15943
Expires: Mon, 09 Jan 2023 08:03:23 GMT
Date: Mon, 09 Jan 2023 03:37:40 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: mf0e+j2PfH9WhckmClVXmrXhvpPZKYeW1Fire8awmSonve23esCabV1/Mtv0cGaAZN3DTpq5evxtK7DU6RVlfQ==
x-amz-request-id: C1F5VSB88GB2QRZK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 09 Jan 2023 03:16:02 GMT
age: 1298
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 09 Jan 2023 03:37:40 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

zmaflab.com/

162.215.254.164

301 Moved Permanently

0 B

URL HTTP/1.1
zmaflab.com/
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 09 Jan 2023 03:37:38 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=UTF-8
Content-Length: 0
X-Redirect-By: WordPress
Location: https://zmaflab.com/
X-Server-Cache: true
X-Proxy-Cache: HIT

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 09 Jan 2023 03:17:21 GMT
age: 1219
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
54ac41a005cad66e958c904071ea1d4f
66932889be57eb15ab99237a69d292b12090c68d
52545e144a7ca5c37c5369d5f5b566b4e5e820b1920ab7fe8e413e7fe022e21b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1416
Cache-Control: max-age=107566
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 03:37:40 GMT
Etag: "63ba87aa-1d7"
Expires: Tue, 10 Jan 2023 09:30:26 GMT
Last-Modified: Sun, 08 Jan 2023 09:06:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ff13bd10e8fde80375de8a7b7b71df8
1f60e164e407dc7028d235c36d3e54ff30b81751
21bf6e75a32aca9a65fe8d65895077b80dc3508aa6dfcc961f8f295bfd6c9ff8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21BF6E75A32ACA9A65FE8D65895077B80DC3508AA6DFCC961F8F295BFD6C9FF8"
Last-Modified: Mon, 09 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 09 Jan 2023 09:37:41 GMT
Date: Mon, 09 Jan 2023 03:37:41 GMT
Connection: keep-alive

push.services.mozilla.com/

52.89.3.63

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.89.3.63:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JDwcAJRC39Cey80YNc2TFw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: I9xqYz0WFVMfCzlnIqEeVCsEItA=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
315edeafe1715f46de7d38be371473a8
25e357166d0ddfff3e60f9042d56f37c1ab7163a
9869582721de4f610dca5030b9a703863d2eae2667061b2f722aebdaf60468e4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 03:37:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-211573629-1

142.250.74.40

200 OK

45 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-211573629-1
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
45 kB (45342 bytes)
Hash
04db3bd36daebd5605bbb6bec236c5fd
9d4b913cc527f982d84114e251bb03fbe434d9a3
73629fb848e097c0ba49848a6dd3165150b54cec0f1925d1364f339b96d9079e

HTTP Headers

GET /gtag/js?id=UA-211573629-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jan 2023 03:37:41 GMT
expires: Mon, 09 Jan 2023 03:37:41 GMT
cache-control: private, max-age=900
last-modified: Mon, 09 Jan 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45342
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
67efa309cd1a12359fd7a5f70e366655
85ee5c0f2d9deeacbfe1a38bd18eb724138f066c
6872e796d42a65959b21ea56670a5c11643aa3bc06d51275b68dd3b23b0e1844

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 03:37:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

zmaflab.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.9.2

162.215.254.164

200 OK

1.1 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (9895)
Size
1.1 kB (1059 bytes)
Hash
851eb184534339cbb96cad19b05d72fd
04d59ad49cfb023625ab73aa0110fc42bbeb9f6d
7e013405141cd44bce2ae5be9ff1857ce9aaaad92276e4b6966fee3b6909999e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1059
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd1d39135eb079c9842a1696f1c3bacf
ee41d3b22fed5948c20a6d1639b6955a4252fc11
c1f219c13b6c6e622515b78d1549a1dacdc6fab1a2109d540e30d07a52990db5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 03:37:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Roboto:400

142.250.74.74

200 OK

983 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:400
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
data
Size
983 B (983 bytes)
Hash
d70ca77935105814168dae616b7c8855
e2bee7522f49bfff763c34425d6fb401f4403eea
ee3c1728336572eacb4b1335e6cf4c4fd997612684093036dcec38dd6af07c72

HTTP Headers

GET /css?family=Roboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 09 Jan 2023 03:37:41 GMT
date: Mon, 09 Jan 2023 03:37:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3

162.215.254.164

200 OK

5.3 kB

URL HTTP/2
zmaflab.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (15660)
Size
5.3 kB (5321 bytes)
Hash
710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 20:39:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

162.215.254.164

200 OK

308 B

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (489)
Size
308 B (308 bytes)
Hash
0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/elementor/css/post-5126.css?ver=1671654087

162.215.254.164

200 OK

370 B

URL HTTP/2
zmaflab.com/wp-content/uploads/elementor/css/post-5126.css?ver=1671654087
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (1058), with no line terminators
Size
370 B (370 bytes)
Hash
4f9c3077e5197e6b49e91d3913cf8975
ebbb358aad466aa58a1cd36590d649a106518553
42c8f0f5cbf794fbf50296db2e15de8f2f4f92e2ef2717d368c2dd6ae43dfbeb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-5126.css?ver=1671654087 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:21:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 370
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/auros-core/assets/css/auros-plugin.css

162.215.254.164

200 OK

296 B

URL HTTP/2
zmaflab.com/wp-content/plugins/auros-core/assets/css/auros-plugin.css
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
296 B (296 bytes)
Hash
888cdfa78a55b802900036c47462ab6b
68cc7dd0a4ec1499e298240fb8ccbcad167b6092
7d7cc7805548300723c2170e863b364e0190b505fa86226c27089943a7baba04

HTTP Headers

GET /wp-content/plugins/auros-core/assets/css/auros-plugin.css HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 12:10:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 296
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/elementor/css/post-1212.css?ver=1671654741

162.215.254.164

200 OK

979 B

URL HTTP/2
zmaflab.com/wp-content/uploads/elementor/css/post-1212.css?ver=1671654741
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (4850), with no line terminators
Size
979 B (979 bytes)
Hash
32431de49d5fae06afc28d6fae661f90
9ad413333ed4bd3c1a5cccc0bc629dfb1c2bca0c
ffa38db0fbd369ce0745c4bef3c023addfc225025cd6d7436fd983cb784b451a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-1212.css?ver=1671654741 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:32:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 979
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17650
Expires: Mon, 09 Jan 2023 08:31:52 GMT
Date: Mon, 09 Jan 2023 03:37:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17650
Expires: Mon, 09 Jan 2023 08:31:52 GMT
Date: Mon, 09 Jan 2023 03:37:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17650
Expires: Mon, 09 Jan 2023 08:31:52 GMT
Date: Mon, 09 Jan 2023 03:37:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17650
Expires: Mon, 09 Jan 2023 08:31:52 GMT
Date: Mon, 09 Jan 2023 03:37:42 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca7956cf-b613-4307-88cb-8cc1a3fda11c.jpeg

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca7956cf-b613-4307-88cb-8cc1a3fda11c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9594 bytes)
Hash
aa9ed964b2f5f08ec571b525992f1566
9de0dfe9d1018726f1504b26964629f419700a49
d75747ac8726cbbe7583c48c2522cecc0c3ed6a0fa3694513c694876847b5944

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca7956cf-b613-4307-88cb-8cc1a3fda11c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9594
x-amzn-requestid: 7844d69e-b683-47ed-8ad8-a26f67916de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eJ4BbFjnIAMFhSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b3d3a2-6da6fede0b33969b774aab38;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 07:05:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1h_UiB89mG6qQdHyosgLG4MYT3KBOyDxLsBCuKuK7smmTWAiEsncxw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 08 Jan 2023 08:43:20 GMT
age: 68062
etag: "9de0dfe9d1018726f1504b26964629f419700a49"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e2e4caa-f18f-43f7-bbce-461d21b07be2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8929 bytes)
Hash
2afe6c3864f4dd4661cdf28d845e8a95
431f560fc40b5de4881e5e4692672c977915afd1
040f2289b10935f9c7fc054092153a02e5cb132cbe72f6a53802eab9a2415c4d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e2e4caa-f18f-43f7-bbce-461d21b07be2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8929
x-amzn-requestid: b13a1539-130b-4a12-94e8-3e624eb12e8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eJ4FdHNkIAMFlnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b3d3bc-43ec5dcf3921d6247324f994;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 07:05:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSEl29JtaoxSMIoqxodoFcSbo1muCHaYN-j0HzVCs9a-XgFYHdA6GQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sun, 08 Jan 2023 11:30:46 GMT
age: 58016
etag: "431f560fc40b5de4881e5e4692672c977915afd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.9.2

162.215.254.164

200 OK

36 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
data
Size
36 kB (36378 bytes)
Hash
9c16f6cf61b99cc56c5667d63cf0e762
03742cd788e67c30abcda166d2a3829e8b618972
b258ddd3f5131f993c3d451a205839b174fbfd3b7c82711c9873f59c8c31931f

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/themes/gerialife/style.css?ver=6.0.3

162.215.254.164

200 OK

54 kB

URL HTTP/2
zmaflab.com/wp-content/themes/gerialife/style.css?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
data
Size
54 kB (54148 bytes)
Hash
2e5e69df131d901c08b4c91bd3982bde
4a55f15bbccb77a6d67be86245fcd8cb2fa5c8b0
e6eeeda6bea3a8f0de682770d42d25d37572d327c08b8406381922b41a0909f8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/gerialife/style.css?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 16 Nov 2021 17:10:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f2b50a0-7eb4-4513-84d9-bef528bd99f3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8284 bytes)
Hash
23b87f42d40f3cc7bc9f46964e83d787
400474fb7b7d241935f5a5745281e6d95902581c
5a2818d70f4304bb2ed26ad0fe1658bc130aff43e11c60e0abac8be6e51836c7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f2b50a0-7eb4-4513-84d9-bef528bd99f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8284
x-amzn-requestid: 63848f4b-7540-4a5f-bfe4-f4d7d19f6450
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ecZPxFWUoAMF3hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb3bfe-11b47e784b3d329e4d698137;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 21:56:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ruMyNWcLKGt-fDCBxTx5ofenbzXNBv48Y0U1GPwhDWDrwm-njm1lGA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 03:36:09 GMT
age: 93
etag: "400474fb7b7d241935f5a5745281e6d95902581c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71367d17-5f39-4d68-acc2-9e84cc70b6ee.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10157 bytes)
Hash
958d699fe0e01f8f1e6002637f87ab63
9feb324f4c37992e68e04762494841d532b3da2b
a20dce10643f6cb9aed206ca177c54538076e61568528e5fdc2744d8cc25846a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71367d17-5f39-4d68-acc2-9e84cc70b6ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10157
x-amzn-requestid: cc023618-8a3b-452e-84cc-04c8b5f48a3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWhZ8Es5IAMFYtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8e2a5-6d9f330a4b3df85c661c1bd6;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 03:10:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: yaahmIYHAzMWPmbF_6RRTXc-boEiyV4AgS6BLMUTxVhSOos78xvtYQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 08 Jan 2023 03:38:38 GMT
age: 86344
etag: "9feb324f4c37992e68e04762494841d532b3da2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16

162.215.254.164

200 OK

3.2 kB

URL HTTP/2
zmaflab.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (11256), with no line terminators
Size
3.2 kB (3239 bytes)
Hash
1054d0d53548e8bae51665b11acc6413
2eea6a05fe18db61fff58c431d34a86b3e0b7ade
cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 19 Oct 2021 15:06:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3239
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.9.2

162.215.254.164

200 OK

4.4 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (26516)
Size
4.4 kB (4436 bytes)
Hash
fdd462f58aee3f9349eabdefb5ca0b57
bb6e017d5537630516ccb98952593690a8c69864
ca51806fcedbe90dd613c4c28673af8693381806a5cb3b43dce2ea4f43e8b314

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4436
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/themes/gerialife/assets/css/carousel.css?ver=6.0.3

162.215.254.164

200 OK

4.3 kB

URL HTTP/2
zmaflab.com/wp-content/themes/gerialife/assets/css/carousel.css?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
4.3 kB (4262 bytes)
Hash
a3c8374ccd666df39cac6bafa9af1859
8950aaf1ece7e00c553d4f3360ff165c8264f936
74b5597cdb6e6bdd972df42eb68d6f64fe4f5c94ee2f7c4d7f04075a8dec9f86

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/gerialife/assets/css/carousel.css?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Nov 2019 07:53:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4262
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/themes/gerialife/assets/css/opal-icons.css?ver=6.0.3

162.215.254.164

200 OK

9.0 kB

URL HTTP/2
zmaflab.com/wp-content/themes/gerialife/assets/css/opal-icons.css?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
troff or preprocessor input, Unicode text, UTF-8 text
Size
9.0 kB (8998 bytes)
Hash
a349d2e26a081d3a05af97425d883de3
0d9b5eaff99997ca7e074309e1708df6184b8ed5
3446bec27348f037d07e1b1826a6590789b7e55e2cc05d1c544373f34e9c05e2

HTTP Headers

GET /wp-content/themes/gerialife/assets/css/opal-icons.css?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Nov 2019 07:53:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8998
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.9.2

162.215.254.164

200 OK

13 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (59158)
Size
13 kB (12862 bytes)
Hash
e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12862
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5

162.215.254.164

200 OK

16 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size
16 kB (16038 bytes)
Hash
9c59cb4faeac5a6ca077df679e4c2f7a
60e0e7e52f16112702c52b7903071b91f774ae5f
427cab6b0083b8d4ed6c3d9c8442a9b493a491998b0255439a7de7a5c25262b7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 19 Feb 2020 04:20:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16038
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3

162.215.254.164

200 OK

1.3 kB

URL HTTP/2
zmaflab.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (4186), with no line terminators
Size
1.3 kB (1298 bytes)
Hash
91bab39b98d7e5c1632717b9ebe349e4
e639a447d06fc7827be5b5b35d603ff16b5f7bb1
47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1298
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/modernizr.custom.js?ver=5.1.6

162.215.254.164

200 OK

4.4 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/modernizr.custom.js?ver=5.1.6
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document text\012- HTML document, ASCII text, with very long lines (8820)
Size
4.4 kB (4386 bytes)
Hash
be47ce6041f7a1b5a05ddfcadea4f68b
26c7485c73b43e47419305962f2bab710d5ccad5
88e01b995eab21008c0c068cbe30d60f3fbedf8d3d1b3f8ebfe475391ec19307

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/auros-core/assets/js/libs/modernizr.custom.js?ver=5.1.6 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 12:10:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4386
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/elementor/css/post-4744.css?ver=1671654086

162.215.254.164

200 OK

744 B

URL HTTP/2
zmaflab.com/wp-content/uploads/elementor/css/post-4744.css?ver=1671654086
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (3150)
Size
744 B (744 bytes)
Hash
a8dc99749024f8236315f7ab3638afe5
dd206fd2ce53b86dd60108db54402d9e70dc8943
9217e5c96a6829e901b1c17836c4d3bda8b22e48938c575bba6b9c328d1adca8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-4744.css?ver=1671654086 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:21:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 744
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3

162.215.254.164

200 OK

540 B

URL HTTP/2
zmaflab.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (1191), with no line terminators
Size
540 B (540 bytes)
Hash
cea5e0013ee4b14895dc0f6c424a03e8
b21c776891ff57c003b385a1aa62ba613b292a21
1cfe89d6aa36aea0e986e379590ab23877257e8416764d18105d1176dfcd64d9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 20:39:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 540
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/auros-core/assets/css/magnific-popup.css?ver=6.0.3

162.215.254.164

200 OK

2.2 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/auros-core/assets/css/magnific-popup.css?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
2.2 kB (2236 bytes)
Hash
aba5a8797f716a64bfd6cb515777c8dc
c8d72d1a987379addeea2113fcbc140742bfa5a8
409a62374ce43ae4789d45969437f24634c6f0270849a8804297a10f01cc7aa5

HTTP Headers

GET /wp-content/plugins/auros-core/assets/css/magnific-popup.css?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 12:10:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2236
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/auros-core/assets/js/carousel.js?ver=6.0.3

162.215.254.164

200 OK

1.8 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/auros-core/assets/js/carousel.js?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (4375)
Size
1.8 kB (1759 bytes)
Hash
9bb759b86d46bc7776962ea75efe9709
11ee54db8bc4de7f42017403d57d3ba7ac8aaa2a
e0c810b8d965c394803dc59127fe88c968e94aad9fab42d849333bcd46f72caa

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/auros-core/assets/js/carousel.js?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 12:10:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1759
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

162.215.254.164

200 OK

4.0 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (19233)
Size
4.0 kB (4008 bytes)
Hash
2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4008
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

162.215.254.164

200 OK

4.6 kB

URL HTTP/2
zmaflab.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (11126)
Size
4.6 kB (4618 bytes)
Hash
acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 19 Oct 2021 15:06:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/themes/gerialife/assets/js/sticky-layout.js?ver=6.0.3

162.215.254.164

200 OK

2.2 kB

URL HTTP/2
zmaflab.com/wp-content/themes/gerialife/assets/js/sticky-layout.js?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (5413), with no line terminators
Size
2.2 kB (2150 bytes)
Hash
ad80bc44db23ff011f960eab76b40131
1a06130d176e4aa4342f20b52c2ad84bd7c561fa
a6e4f1904969159abf46e534d4f22072b2b5c226c974b6c562cb8b0c217a7e28

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/gerialife/assets/js/sticky-layout.js?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Nov 2019 07:53:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2150
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/mlpushmenu.js?ver=5.1.6

162.215.254.164

200 OK

4.5 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/mlpushmenu.js?ver=5.1.6
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (2051)
Size
4.5 kB (4463 bytes)
Hash
5ba4bb02da11d40cea7215ede6f4486a
5e20a62d528e6dc9e559595b70955a965e753325
aafc6b18e98500c1665f5a6a8856dd68cee67caa7800dfdad201337b3d67d3ea

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/auros-core/assets/js/libs/mlpushmenu.js?ver=5.1.6 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 12:10:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4463
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/themes/gerialife/assets/js/theme.js?ver=1.0

162.215.254.164

200 OK

5.5 kB

URL HTTP/2
zmaflab.com/wp-content/themes/gerialife/assets/js/theme.js?ver=1.0
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (564)
Size
5.5 kB (5450 bytes)
Hash
a03f04e38afdec37c362c7e0bbed442f
ae08520a430d08e18ffeb33869970f30bfbb3e6b
9fe22b678b7ad7d0f4093253ce1826b57ac0da41a523576d59bed2f9517e44f1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/gerialife/assets/js/theme.js?ver=1.0 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Nov 2019 07:53:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5450
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/underscore.min.js?ver=1.13.3

162.215.254.164

200 OK

8.3 kB

URL HTTP/2
zmaflab.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (18876)
Size
8.3 kB (8313 bytes)
Hash
61a4a3c276f704185a925bfa0f4d8b1b
0176eb701bb114d9cb170193f6208ec4fbb35f71
f0875cbb46e9eeb5e497dd52d8c33725509228193c2dbe9ab464f62a15c2f0e2

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 20:39:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8313
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/jquery.magnific-popup.min.js?ver=5.1.6

162.215.254.164

200 OK

9.2 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/jquery.magnific-popup.min.js?ver=5.1.6
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (20087)
Size
9.2 kB (9204 bytes)
Hash
7a10ae63b238729dc4da7f7bd8986219
654c47168dca0ec7080f6c57e8c4482b57f879d4
b782185399b361358f7c409d6f23f22d45f695dcbb63876c35752c7b1de72db3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/auros-core/assets/js/libs/jquery.magnific-popup.min.js?ver=5.1.6 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 12:10:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9204
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/elementor/css/post-362.css?ver=1671654087

162.215.254.164

200 OK

1.1 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/elementor/css/post-362.css?ver=1671654087
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (5024), with no line terminators
Size
1.1 kB (1061 bytes)
Hash
cc85b131c5f61d30d1ed11c42ea3fccc
8a30a44c955f3fd27935ee5b23ddf4c32e7450f8
5af40bc7044dc4ae58497252962f725761dd5d5ce8e4a2bb6f467065acef6fa2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-362.css?ver=1671654087 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:21:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1061
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/wp-util.min.js?ver=6.0.3

162.215.254.164

200 OK

709 B

URL HTTP/2
zmaflab.com/wp-includes/js/wp-util.min.js?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (1305)
Size
709 B (709 bytes)
Hash
e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 19 Oct 2021 15:06:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 709
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3

162.215.254.164

200 OK

483 B

URL HTTP/2
zmaflab.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with very long lines (906), with no line terminators
Size
483 B (483 bytes)
Hash
961b384bf5b28ac673051be024563f79
606ebba9fa8aec74cf413098b084500c8b16b85c
a9c17b0e5a9c12428c6ed8d0c4622ddbae112a9ac19bccf451f125972cd91935

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 19 Oct 2021 15:06:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 483
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/classie.js?ver=5.1.6

162.215.254.164

200 OK

689 B

URL HTTP/2
zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/classie.js?ver=5.1.6
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
689 B (689 bytes)
Hash
69a0f20176ddcf3b5aed9a9b7976da00
bec4a0e017d81faf99828da8b69f59e0c1224129
8f02803be353b5a1f8c66ce94d1522c6f8e1caef2347c000b77bbc4b7cbf6e75

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/auros-core/assets/js/libs/classie.js?ver=5.1.6 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 12:10:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 689
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.11.0

162.215.254.164

200 OK

3.9 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.11.0
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (1577)
Size
3.9 kB (3861 bytes)
Hash
0de3f234bf5adf709c64d6a81701e107
ec76e30709d2ac94c86121529768c54b84943872
c67075988b28f06061348cebb275f465c608e141f9a00b50c5e4824f57ed10f3

HTTP Headers

GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.11.0 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 12 Dec 2022 20:12:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3861
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/elementor/css/global.css?ver=1671654087

162.215.254.164

200 OK

2.8 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/elementor/css/global.css?ver=1671654087
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (6684)
Size
2.8 kB (2822 bytes)
Hash
10904d300758303d7a084dfd93b0c231
1be5a2adbbcbb5b1969a4a5301f24b616e3bbaa7
10ea91c3de76f22f521de660a4c074ca398c3fcac26f444abca6d6380b9b0fc5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1671654087 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:21:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2822
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.2

162.215.254.164

200 OK

4.4 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (14869)
Size
4.4 kB (4359 bytes)
Hash
7bab7ad64ffbd7846dd6819250b93e2e
c924918d540389aff62220088b6761f38a5da272
045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4359
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

162.215.254.164

200 OK

8.2 kB

URL HTTP/2
zmaflab.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
8.2 kB (8169 bytes)
Hash
a0a1c8194f131320e1798f90a7b1262a
3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 20:39:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8169
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/jquery.smartmenus.min.js?ver=5.1.6

162.215.254.164

200 OK

9.5 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/auros-core/assets/js/libs/jquery.smartmenus.min.js?ver=5.1.6
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (24459)
Size
9.5 kB (9451 bytes)
Hash
29338e6cf12326c3254c251de91d5a71
f1aeb510f7c652a1eaae9b18e10d20b9412b04c7
4eaffa5519b64853e3c395c78bef4b42d48ca4912f5e18b17e6085835221161a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/auros-core/assets/js/libs/jquery.smartmenus.min.js?ver=5.1.6 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 12:10:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9451
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2

162.215.254.164

200 OK

13 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (31482)
Size
13 kB (12649 bytes)
Hash
d285e3e15c9f24a0bd499537b2c4e948
734936bbd450b3484b541074bf564a8f53ce6ad4
11219b5c74968517696790bddae0cc6339b13ff80e32a0d56f94c793de5dc6ad

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12649
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

162.215.254.164

200 OK

13 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (57726)
Size
13 kB (12577 bytes)
Hash
dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3

162.215.254.164

200 OK

17 kB

URL HTTP/2
zmaflab.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (43771)
Size
17 kB (16594 bytes)
Hash
2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 22:16:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16594
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.16

162.215.254.164

200 OK

2.5 kB

URL HTTP/2
zmaflab.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.16
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (6194)
Size
2.5 kB (2528 bytes)
Hash
d77a0126770eafbb316b8ea63c2bed62
f58933f1067cb63a0ba8d06e307359f4f7e872db
a590f58cb484c440b3b5835b7f4cc5d0ed4dd9af0805053cf318044e375766b8

HTTP Headers

GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.16 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 19 Oct 2021 15:06:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2528
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2

162.215.254.164

200 OK

2.3 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (4918)
Size
2.3 kB (2313 bytes)
Hash
e376d94911e13415384650c5d7272a88
f6c03b37022c0968ddf2da1c3acb2eec1e877ad7
42252b1276c2cd50b0e834476c99b0930c1eab1ebe38eeb8111db81ba933b397

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2313
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.2

162.215.254.164

200 OK

1.2 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (2620), with no line terminators
Size
1.2 kB (1187 bytes)
Hash
55936584085d0d310919b755eda1ab3f
be317c3b2ed5143669375295b3107e591bf708da
aad2265c39cafa6e01b791b1ef5025a2d237ee91346ef446beb722fdcd578d58

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1187
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.9.2

162.215.254.164

200 OK

3.0 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (10019)
Size
3.0 kB (2997 bytes)
Hash
c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2997
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

162.215.254.164

200 OK

3.7 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (12198), with no line terminators
Size
3.7 kB (3747 bytes)
Hash
e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0

162.215.254.164

200 OK

4.2 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (10544)
Size
4.2 kB (4200 bytes)
Hash
552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4200
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/auros-core/assets/js/elementor/frontend.js?ver=6.0.3

162.215.254.164

200 OK

7.6 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/auros-core/assets/js/elementor/frontend.js?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (22619)
Size
7.6 kB (7646 bytes)
Hash
6b2597913e1cf6224a642ff10b3cc4fc
52e82e483564e32befbc93c0b9ee4255cf453a21
365523b5c2c9f0e6eae9d44940795e52daca38d284952bb96d58d2275eefeb2b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/auros-core/assets/js/elementor/frontend.js?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 12:10:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7646
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2

162.215.254.164

200 OK

16 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (40657)
Size
16 kB (16214 bytes)
Hash
4056713a0652e87961a8615916ba3d18
761013724b9132eeb58103ceb5c29009edab6820
bec066cb6686f260688cb4345609d69295229fc450bd69aa6007dc8918bfa9c2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16214
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.9.2

162.215.254.164

200 OK

17 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.9.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (43073)
Size
17 kB (16877 bytes)
Hash
dff6a1ea7143ffe7c8641c0df1a73a43
20b5b7dd29468754a50aeefe1e666f8db782e260
2e375a151b965c992a52cd24e919e795e59417a6e71f814f5619d5c5e88ee046

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.9.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16877
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2

162.215.254.164

409 Conflict

83 B

URL HTTP/2
zmaflab.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2

162.215.254.164

409 Conflict

83 B

URL HTTP/2
zmaflab.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2

162.215.254.164

409 Conflict

83 B

URL HTTP/2
zmaflab.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/pulmolife-premium1.jpg

162.215.254.164

200 OK

90 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/pulmolife-premium1.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
90 kB (90289 bytes)
Hash
ac4dce571bf86ba3602311d9aca3ea7e
367c0274510399c8d07ca6deeab7b6e1ddf93d8c
fae33fe2bd86c6ea5bd0f74d1503b4a53b2f9d7af39fe4168372132208de96c4

HTTP Headers

GET /wp-content/uploads/2021/11/pulmolife-premium1.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:49:30 GMT
accept-ranges: bytes
content-length: 90289
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/pulmolife-premium.jpg

162.215.254.164

200 OK

98 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/pulmolife-premium.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
98 kB (97545 bytes)
Hash
0029c86f3fc3f2ed29ff1b746994b8d8
d0f5ba5e4e08e7981f3bea2bb500d384e04d3017
5a7aaf403319b87e3f9e518d35466619f37894cbe5436c5934fede5f27f0e8c3

HTTP Headers

GET /wp-content/uploads/2021/11/pulmolife-premium.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:49:16 GMT
accept-ranges: bytes
content-length: 97545
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2

162.215.254.164

409 Conflict

83 B

URL HTTP/2
zmaflab.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Mon, 09 Jan 2023 03:37:43 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/collagen-life-mandarina.jpg

162.215.254.164

200 OK

108 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/collagen-life-mandarina.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
108 kB (108039 bytes)
Hash
8d6b360167be15ec2db9b13940e26a7c
826b7f57528b1b44e8afe92658ac84a0646f6006
76befe36dd0b02df5035765148d859ab7ad34cb706a6fa92302518054083a270

HTTP Headers

GET /wp-content/uploads/2021/11/collagen-life-mandarina.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:50:41 GMT
accept-ranges: bytes
content-length: 108039
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/collagen-life-yacon.jpg

162.215.254.164

200 OK

103 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/collagen-life-yacon.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
103 kB (103101 bytes)
Hash
bc73ffc110f333bcc2554053a1d20e92
60f3698e5161efaa1486714dfa1225f61e8e9491
8caf37af7eb6e9eafc25809be544dc7c528218e01b39bea07c0e9929b8057405

HTTP Headers

GET /wp-content/uploads/2021/11/collagen-life-yacon.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:50:02 GMT
accept-ranges: bytes
content-length: 103101
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/geria-life-vainilla-db-500g.jpg

162.215.254.164

200 OK

95 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/geria-life-vainilla-db-500g.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
95 kB (95064 bytes)
Hash
f00efb447c9838828c2a57b2f668ca42
6e8ee3ed20622815a01b97062b509fae547ef694
5a60b8b45da699135eae1ee31cf1f6f3ec88ea365de8a3d94fea20fa777286d8

HTTP Headers

GET /wp-content/uploads/2021/11/geria-life-vainilla-db-500g.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:52:01 GMT
accept-ranges: bytes
content-length: 95064
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/themes/gerialife/assets/fonts/Eina03-Bold.woff

162.215.254.164

200 OK

48 kB

URL HTTP/2
zmaflab.com/wp-content/themes/gerialife/assets/fonts/Eina03-Bold.woff
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Web Open Font Format, TrueType, length 47708, version 0.0\012- data
Size
48 kB (47708 bytes)
Hash
a9eb8b9e4b51dde48614e3516bb6c713
a1e8f00903c20c5f8c6630d15138153b5f79cbde
f7b96f1f7aa4c30874f20ab27e8f1d1892305c621b586ef29b6c148ff7b7e7b4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/gerialife/assets/fonts/Eina03-Bold.woff HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://zmaflab.com/wp-content/themes/gerialife/style.css?ver=6.0.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Nov 2019 07:53:48 GMT
accept-ranges: bytes
content-length: 47708
content-type: font/woff
date: Mon, 09 Jan 2023 03:37:43 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/geria-life-vainilla-500g.jpg

162.215.254.164

200 OK

113 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/geria-life-vainilla-500g.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
113 kB (112618 bytes)
Hash
4613f1ba30f6a7f51e26998696ebe734
1bcdfcd26f1917acca8e3156330400755ff88bac
a4caa31c96b5876e816e78911165001f7f95a7337921c815cc580cc96f617e7f

HTTP Headers

GET /wp-content/uploads/2021/11/geria-life-vainilla-500g.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:52:47 GMT
accept-ranges: bytes
content-length: 112618
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/geria-life-chocolate-500g.jpg

162.215.254.164

200 OK

113 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/geria-life-chocolate-500g.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
113 kB (112690 bytes)
Hash
952264a79877d3296ef22729f6dbf1cd
2161e14c812571979a4abd28ceef890b1d7cc02e
12545341d7aa1ba1a9c759d9adbf3e93c07e3dd167a8029961e8a3442e788d43

HTTP Headers

GET /wp-content/uploads/2021/11/geria-life-chocolate-500g.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:52:30 GMT
accept-ranges: bytes
content-length: 112690
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/vita-c-powder-orange.jpg

162.215.254.164

200 OK

122 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/vita-c-powder-orange.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
122 kB (122043 bytes)
Hash
53276ea142b152741d80f60d93393c96
af5a8538cc220bf1512a220f77571eda036a0fa2
cf7065832e02f7d538bb121c744020b2a59d0803fdf2d7f5ec8c0607e0019995

HTTP Headers

GET /wp-content/uploads/2021/11/vita-c-powder-orange.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:49:43 GMT
accept-ranges: bytes
content-length: 122043
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/collagen-life-fresa.jpg

162.215.254.164

200 OK

122 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/collagen-life-fresa.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
122 kB (121963 bytes)
Hash
45820290cdf5cfc3aeb5670d569fe544
031022bdc7a747846419d05276ec3bc69221ee77
effdb335e51e3dd5174c8303789911298af2cc9de0022803414d1991d6eaff51

HTTP Headers

GET /wp-content/uploads/2021/11/collagen-life-fresa.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:50:27 GMT
accept-ranges: bytes
content-length: 121963
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/themes/gerialife/assets/fonts/Eina03-Regular.woff

162.215.254.164

200 OK

52 kB

URL HTTP/2
zmaflab.com/wp-content/themes/gerialife/assets/fonts/Eina03-Regular.woff
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Web Open Font Format, TrueType, length 52324, version 0.0\012- data
Size
52 kB (52324 bytes)
Hash
4b7b7be18a591bb6ca20b66162c0bac6
8b34cce55700baddb7817e6033645896dfb591a0
e615fd548f3eb3a19873bb6fda986904aff3f5ae216ef87e0c8a664f1b9044c2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/gerialife/assets/fonts/Eina03-Regular.woff HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://zmaflab.com/wp-content/themes/gerialife/style.css?ver=6.0.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Nov 2019 07:53:48 GMT
accept-ranges: bytes
content-length: 52324
content-type: font/woff
date: Mon, 09 Jan 2023 03:37:43 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/themes/gerialife/assets/fonts/Eina03-SemiBold.woff

162.215.254.164

200 OK

51 kB

URL HTTP/2
zmaflab.com/wp-content/themes/gerialife/assets/fonts/Eina03-SemiBold.woff
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Web Open Font Format, TrueType, length 51388, version 0.0\012- data
Size
51 kB (51388 bytes)
Hash
5bf037a8172d58e6fe9f6e49f4bd2df0
c69de88d232c80d617240b800a6246e12a4f18b1
e520d7542519cec2314212589f6ca803c164e84aa6107e60a672223ca31b2aae

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/gerialife/assets/fonts/Eina03-SemiBold.woff HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://zmaflab.com/wp-content/themes/gerialife/style.css?ver=6.0.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Nov 2019 07:53:48 GMT
accept-ranges: bytes
content-length: 51388
content-type: font/woff
date: Mon, 09 Jan 2023 03:37:43 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/geria-life-chocolate-1-kg.jpg

162.215.254.164

200 OK

128 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/geria-life-chocolate-1-kg.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
128 kB (128384 bytes)
Hash
52a0b62f75d850e3c37d4c780c609767
6824088a620a7d1a85945ead8fc979321a1bbf53
4c32f84aa50115c0f29ebf38a618fa27455b4f67cab4b3d569b0dba3d830be88

HTTP Headers

GET /wp-content/uploads/2021/11/geria-life-chocolate-1-kg.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:52:58 GMT
accept-ranges: bytes
content-length: 128384
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2018/09/banner-zmaf-web.png

162.215.254.164

200 OK

12 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2018/09/banner-zmaf-web.png
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 230 x 148, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12099 bytes)
Hash
2d0177ea4cdeb6f33f19f5ec53519d30
355986200a00cb82fe5e252c26bc471f05cb0695
d79df1b2e57077f401790f7f22a84e70faf9185fca44e9c0a0c3f1c1ef28ae97

HTTP Headers

GET /wp-content/uploads/2018/09/banner-zmaf-web.png HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 13 May 2022 21:50:29 GMT
accept-ranges: bytes
content-length: 12099
content-type: image/png
date: Mon, 09 Jan 2023 03:37:43 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/geria-life-vainilla-1-kg.jpg

162.215.254.164

200 OK

127 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/geria-life-vainilla-1-kg.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
127 kB (126954 bytes)
Hash
7f75a0f9a28f824040afc5a611d670ce
233f2c76ac01fb730348ac622c0551ffcd818edc
9762594fc35a540fd2bcfd994cf173606bd78bba56e21f8d5c1b78acb9496d31

HTTP Headers

GET /wp-content/uploads/2021/11/geria-life-vainilla-1-kg.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:52:18 GMT
accept-ranges: bytes
content-length: 126954
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/geria-life-vainilla-db.jpg

162.215.254.164

200 OK

126 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/geria-life-vainilla-db.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
126 kB (126226 bytes)
Hash
264228549e162c9c9454f43f38abfec3
b1e6f794e1345af6550a9d0cec850fcd55bb9edc
458ce775715c13ae6fd024a0355209c6d80125ceedb0cde7eb0014cbe4e3a1be

HTTP Headers

GET /wp-content/uploads/2021/11/geria-life-vainilla-db.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:51:11 GMT
accept-ranges: bytes
content-length: 126226
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/caja-de-Geria-life-sachet.jpg

162.215.254.164

200 OK

145 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/caja-de-Geria-life-sachet.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
145 kB (145060 bytes)
Hash
1d27d09fee0dd64cf6771c446ba21539
cbbd50c4788dc98102cb29a021abc22139e98e1f
c385b19e02fc8dd6c0b36859c3561a49dad2e7b69ddf879d3446cb37e2b5c394

HTTP Headers

GET /wp-content/uploads/2021/11/caja-de-Geria-life-sachet.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Nov 2021 05:51:41 GMT
accept-ranges: bytes
content-length: 145060
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

162.215.254.164

200 OK

77 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size
77 kB (76764 bytes)
Hash
f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://zmaflab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
content-length: 76764
content-type: font/woff2
date: Mon, 09 Jan 2023 03:37:43 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/zmaf-lab-geria-life.jpg

162.215.254.164

200 OK

263 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/zmaf-lab-geria-life.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1980x780, components 3\012- data
Size
263 kB (262862 bytes)
Hash
510c3f779059729287e9eca87a8c7586
03440673073d7430c833121408e2a429e76da156
46058366031904010fe399fc1299f0ce2c32a6980defeab365fc2d8d12047ef4

HTTP Headers

GET /wp-content/uploads/2021/11/zmaf-lab-geria-life.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 22 Nov 2021 22:41:50 GMT
accept-ranges: bytes
content-length: 262862
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2

162.215.254.164

409 Conflict

83 B

URL HTTP/2
zmaflab.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Mon, 09 Jan 2023 03:37:44 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 09 Jan 2023 02:41:08 GMT
expires: Mon, 09 Jan 2023 04:41:08 GMT
cache-control: public, max-age=7200
age: 3397
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/revslider/public/assets/assets/loader.gif

162.215.254.164

200 OK

2.5 kB

URL HTTP/2
zmaflab.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
GIF image data, version 89a, 24 x 24\012- data
Size
2.5 kB (2545 bytes)
Hash
4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 19 Feb 2020 04:20:03 GMT
accept-ranges: bytes
content-length: 2545
content-type: image/gif
date: Mon, 09 Jan 2023 03:37:45 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27d78738a9609be605b9885f7a5f90e1
cc0794b5d6eff980221081c785662ffa3f770f13
388060a0450ea600c005936f51fbb7e7779ab49eb33044141926cfdb2cf01be3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 03:37:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-211573629-1&cid=1438485480.1673235453&jid=1229387821&gjid=1390040352&_gid=548735266.1673235453&_u=aGBAAUIgAAAAACAAI~&z=1953044653

108.177.14.154

200 OK

1 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-211573629-1&cid=1438485480.1673235453&jid=1229387821&gjid=1390040352&_gid=548735266.1673235453&_u=aGBAAUIgAAAAACAAI~&z=1953044653
IP
108.177.14.154:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-211573629-1&cid=1438485480.1673235453&jid=1229387821&gjid=1390040352&_gid=548735266.1673235453&_u=aGBAAUIgAAAAACAAI~&z=1953044653 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://zmaflab.com
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://zmaflab.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 09 Jan 2023 03:37:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27d78738a9609be605b9885f7a5f90e1
cc0794b5d6eff980221081c785662ffa3f770f13
388060a0450ea600c005936f51fbb7e7779ab49eb33044141926cfdb2cf01be3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 03:37:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

zmaflab.com/wp-content/uploads/2021/11/cropped-logo-zmaf-header-192x192.jpg

162.215.254.164

200 OK

6.5 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/cropped-logo-zmaf-header-192x192.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 192x192, components 3\012- data
Size
6.5 kB (6539 bytes)
Hash
75c250b0dbf43b3f67fd54ca4a288795
7c5017905261ee497ffaa22f8895f5b5c6cdd714
66afe719160a29eefbf2c12eb9c3305adfe130f59853046c762700c9074ffe6e

HTTP Headers

GET /wp-content/uploads/2021/11/cropped-logo-zmaf-header-192x192.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 24 Nov 2021 20:59:06 GMT
accept-ranges: bytes
content-length: 6539
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:46 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16

162.215.254.164

200 OK

59 kB

URL HTTP/2
zmaflab.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
data
Size
59 kB (58567 bytes)
Hash
40abf2389d3b559531e5de827012a51c
8dcca0ba39bc7d19013974e68c2a674bb49e7636
9882c83c9317a550f395eccf8bd8c1e9bb115762efa1025e1bc07b0c30f2f605

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 19 Oct 2021 15:06:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/collagen-life-zmaf-lab.jpg

162.215.254.164

200 OK

179 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/collagen-life-zmaf-lab.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1980x780, components 3\012- data
Size
179 kB (179038 bytes)
Hash
6eaacb4e254fccc13be8d20b362a0b6e
bb2d0b9ae8b75d7d51eeaa3f6b4d45599b016725
405f75c79c86fd31124aec759266174bcd16324c10fe0e7d8a86ee13099fb424

HTTP Headers

GET /wp-content/uploads/2021/11/collagen-life-zmaf-lab.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 22 Nov 2021 22:41:34 GMT
accept-ranges: bytes
content-length: 179038
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:45 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/pulmolife-zmaflab.jpg

162.215.254.164

200 OK

186 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/pulmolife-zmaflab.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1980x780, components 3\012- data
Size
186 kB (186048 bytes)
Hash
5021357d5563cb40554f32f3d00ad4da
3c559f28964afba04f2878a39c29929c897487be
1976c70474cd055b74ef6c7d3a837de0fb07921bc1bd8c2080e3eb8cc238e017

HTTP Headers

GET /wp-content/uploads/2021/11/pulmolife-zmaflab.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 22 Nov 2021 22:41:44 GMT
accept-ranges: bytes
content-length: 186048
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:45 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/geria-life-zmaf-lab.jpg

162.215.254.164

200 OK

231 kB

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/geria-life-zmaf-lab.jpg
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1980x780, components 3\012- data
Size
231 kB (230814 bytes)
Hash
76038a9c6f986beee62260424d6392bd
16e2a8fc9c19459e3f1729fa861fd5ebefe0ef50
2858425df1fc92da610de4df907c0e981430958baa46ae97ead1b6cd11ed7b44

HTTP Headers

GET /wp-content/uploads/2021/11/geria-life-zmaf-lab.jpg HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 22 Nov 2021 22:41:39 GMT
accept-ranges: bytes
content-length: 230814
content-type: image/jpeg
date: Mon, 09 Jan 2023 03:37:45 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

162.215.254.164

200 OK

0 B

URL HTTP/2
zmaflab.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 20:10:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/themes/gerialife/assets/css/opal-boostrap.css?ver=6.0.3

162.215.254.164

200 OK

0 B

URL HTTP/2
zmaflab.com/wp-content/themes/gerialife/assets/css/opal-boostrap.css?ver=6.0.3
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/gerialife/assets/css/opal-boostrap.css?ver=6.0.3 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Nov 2019 07:53:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5

162.215.254.164

200 OK

0 B

URL HTTP/2
zmaflab.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 19 Feb 2020 04:20:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0

162.215.254.164

200 OK

0 B

URL HTTP/2
zmaflab.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 19 Feb 2020 04:20:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/themes/gerialife/assets/js/libs/owl.carousel.js?ver=2.2.1

162.215.254.164

200 OK

0 B

URL HTTP/2
zmaflab.com/wp-content/themes/gerialife/assets/js/libs/owl.carousel.js?ver=2.2.1
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/gerialife/assets/js/libs/owl.carousel.js?ver=2.2.1 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Nov 2019 07:53:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/wp-content/uploads/2021/11/GERIA-LIFE-ZMAF-original.mp4

162.215.254.164

206 Partial Content

0 B

URL HTTP/2
zmaflab.com/wp-content/uploads/2021/11/GERIA-LIFE-ZMAF-original.mp4
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2021/11/GERIA-LIFE-ZMAF-original.mp4 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 206 Partial Content
last-modified: Tue, 23 Nov 2021 05:25:46 GMT
accept-ranges: bytes
content-length: 55287132
content-range: bytes 0-55287131/55287132
content-type: video/mp4
date: Mon, 09 Jan 2023 03:37:43 GMT
server: Apache
X-Firefox-Spdy: h2

zmaflab.com/

162.215.254.164

200 OK

0 B

URL HTTP/2
zmaflab.com/
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
content-type: text/html; charset=UTF-8
link: <https://zmaflab.com/wp-json/>; rel="https://api.w.org/", <https://zmaflab.com/wp-json/wp/v2/pages/1212>; rel="alternate"; type="application/json", <https://zmaflab.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
x-server-cache: true
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2

zmaflab.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

162.215.254.164

200 OK

0 B

URL HTTP/2
zmaflab.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
162.215.254.164:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: zmaflab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zmaflab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 19 Oct 2021 15:06:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 09 Jan 2023 03:37:41 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (47)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations