managerads.d2bgzedfwytyy5.amplifyapp.com/icons/Icon-192.png
54.230.111.22200 OK 5.3 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/icons/Icon-192.png
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced
Hash ac9a721a12bbc803b44f645561ecb1e1
293b2825c89d2abd4b17e2f5ac30c30f5ba3724f
3dce99077602f70421c1c6b2a240bc9b83d64d86681d45f2154143310c980be3
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /icons/Icon-192.png HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
content-length: 5292
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:34 GMT
server: AmazonS3
accept-ranges: bytes
etag: "ac9a721a12bbc803b44f645561ecb1e1"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 95waihBoQ0BIxH-88yHljsp8P17ustVhWMJTm6FidZg_lXiy7RHE_Q==
managerads.d2bgzedfwytyy5.amplifyapp.com/favicon.png
54.230.111.22200 OK 14 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/favicon.png
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type PNG image data, 480 x 480, 8-bit/color RGBA, non-interlaced
Hash 7a2dbfdec08b3a38d668b605d78df964
87dba0baa4bffbb072a921c7c6a5199c26f83aba
c770ce547af85df31198c63f7eba9cba64ff3a48f8eb127d4ea12181453036c8
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /favicon.png HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
content-length: 14026
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:34 GMT
server: AmazonS3
accept-ranges: bytes
etag: "7a2dbfdec08b3a38d668b605d78df964"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cr-8pk-FBQhaYpV83GQAZNofB5rB4MiO59zK4MdcTtQweK8QMbGGOg==
www.gstatic.com/flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.js
142.250.74.99200 OK 26 kB URL GET HTTP/2 www.gstatic.com/flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.js
IP 142.250.74.99:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type JavaScript source, ASCII text, with very long lines (545)
Hash 76f7d822f42397160c5dfc69cbc9b2de
a7739ae575812316ab0924225becfa3941f5b3da
86c5d12e43e93359933fbe2f8575d2bfd1ee595aa581b6111943de2d77975e31
GET /flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/flutter-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="flutter-team"
report-to: {"group":"flutter-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/flutter-team"}]}
content-length: 26292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 03:39:12 GMT
expires: Sat, 10 May 2025 03:39:12 GMT
cache-control: public, max-age=31536000
age: 44304
last-modified: Tue, 13 Jun 2023 20:54:33 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.wasm
142.250.74.99200 OK 2.1 MB URL GET HTTP/3 www.gstatic.com/flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.wasm
IP 142.250.74.99:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type WebAssembly (wasm) binary module version 0x1 (MVP)
Size 2.1 MB (2142317 bytes)
Hash f48eaf57cada79163ec6dec7929486ea
9c2e3dfd5ea427fc42c8358fcec9be13b47534d0
65d6b549c3d21e2d9dc4f0504fc9462936a1e511fd538a8ce4a5d45a8e0c95cf
GET /flutter-canvaskit/45f6e009110df4f34ec2cf99f63cf73b71b7a420/canvaskit.wasm HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: br
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/flutter-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="flutter-team"
report-to: {"group":"flutter-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/flutter-team"}]}
content-length: 2142317
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:50:33 GMT
expires: Fri, 09 May 2025 02:50:33 GMT
cache-control: public, max-age=31536000
age: 133623
last-modified: Tue, 13 Jun 2023 20:54:55 GMT
content-type: application/wasm
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/FontManifest.json
54.230.111.22200 OK 670 B URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/FontManifest.json
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
Hash 5a32d4310a6f5d9a6b651e75ba0d7372
1eea93fdd82fad31ce32e9b9428e415dfc737da3
2cd9411b540e5c6e15ac65523a3601bee668aeca9104e1de136fc34b3a912771
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/FontManifest.json HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json
content-length: 670
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:36 GMT
server: AmazonS3
accept-ranges: bytes
etag: "5a32d4310a6f5d9a6b651e75ba0d7372"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J2FNaVXC3GjLfgLcdY_uPW5fi6k76Ra5Ertn00KX6d8md5R1OFvmfA==
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf
216.58.207.227200 OK 91 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf
IP 216.58.207.227:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-RegularRob
Hash 11eabca2251325cfc5589c9c6fb57b46
096c9245b6a192d1403a82848e104a65f578a8ec
017c0be9aaa6d0359737e1fa762ad304c0e0107927faff5a6c1f415c7f5244ed
GET /s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 91230
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 03:28:39 GMT
expires: Sat, 10 May 2025 03:28:39 GMT
cache-control: public, max-age=31536000
age: 44938
last-modified: Wed, 24 Jul 2019 01:18:48 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/AssetManifest.bin
54.230.111.22200 OK 1.3 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/AssetManifest.bin
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
Hash 8b1cf21a141e282cc9fcc19ad6b2028b
c7efbc9d05f7e18d34d946a736e5487e1e1c550e
65597af2671c420356b08d5cdbbefb567b1bda6b6613b32908c970b9342631fb
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/AssetManifest.bin HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/octet-stream
content-length: 1287
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:39 GMT
server: AmazonS3
accept-ranges: bytes
etag: "8b1cf21a141e282cc9fcc19ad6b2028b"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wLVLCGHp1MX1IhzdjGccaBnnhAB6vhjTU4yQB_HGGoWFC7VHHmDJag==
fonts.gstatic.com/s/a/9ecfd020e9cc0b676025df8390c0dc8cc2062523540887dd04bec0ef4d5a449c.ttf
216.58.207.227200 OK 69 kB URL GET HTTP/2 fonts.gstatic.com/s/a/9ecfd020e9cc0b676025df8390c0dc8cc2062523540887dd04bec0ef4d5a449c.ttf
IP 216.58.207.227:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type TrueType Font data, 13 tables, 1st "GDEF", 8 names, Microsoft, language 0x409
Hash c67db2ad4a5ca29b517da8eabafd2459
c54a0034e60d6445caee8533684b3cea13420c81
9ecfd020e9cc0b676025df8390c0dc8cc2062523540887dd04bec0ef4d5a449c
GET /s/a/9ecfd020e9cc0b676025df8390c0dc8cc2062523540887dd04bec0ef4d5a449c.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 68574
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 May 2024 16:32:01 GMT
expires: Thu, 08 May 2025 16:32:01 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:10:30 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 170738
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/a/a24a61e9a408f85504dcdcd11edc4995adceb4ab585c0011f39cfbe193248b71.ttf
216.58.207.227200 OK 69 kB URL GET HTTP/2 fonts.gstatic.com/s/a/a24a61e9a408f85504dcdcd11edc4995adceb4ab585c0011f39cfbe193248b71.ttf
IP 216.58.207.227:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type TrueType Font data, 13 tables, 1st "GDEF", 8 names, Microsoft, language 0x409
Hash 8360fdd61fd8609ef10e61c40c0eca11
c80e173f72d4f31827d75c4ec934ede660d35b16
a24a61e9a408f85504dcdcd11edc4995adceb4ab585c0011f39cfbe193248b71
GET /s/a/a24a61e9a408f85504dcdcd11edc4995adceb4ab585c0011f39cfbe193248b71.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 69233
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:21:37 GMT
expires: Fri, 09 May 2025 02:21:37 GMT
cache-control: public, max-age=31536000
age: 135362
last-modified: Wed, 27 Apr 2022 16:12:33 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ipapi.co/json
104.26.8.44200 OK 70 kB IP 104.26.8.44:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerLet's Encrypt
Subjectipapi.co
Fingerprint00:84:39:1A:E6:F9:D4:22:11:8B:2A:D1:2F:B1:91:03:18:BB:9E:3D
ValidityTue, 07 May 2024 17:57:49 GMT - Mon, 05 Aug 2024 17:57:48 GMT
Hash 3ea894357e15788b101c2525a13d7ced
e75b69db5ebe486b46035f39fc9c8c4374aec970
1f97c1464ed28eaafaf0cdfe7bff7aa3ede2a10054dbd8c2d3c98fcd3281c035
GET /json HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 15:57:39 GMT
content-type: application/json
allow: HEAD, OPTIONS, OPTIONS, POST, GET
x-frame-options: DENY
vary: Host, origin
access-control-allow-origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ji4PgybYFeHf5ux%2BKAbj417WRAGlnNSog1VVl3Ttbly%2FhK6M3n7WTYFGN3GQpBefVSt8qpmFdI51K1NQFqWRPuNj%2FSdo9E%2BQKFZ0uJTFxR51yozjKLHNZ9O9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b20503e8b5694-OSL
content-encoding: br
X-Firefox-Spdy: h2
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/metav2.png
54.230.111.22200 OK 651 B URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/metav2.png
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type PNG image data, 54 x 12, 8-bit gray+alpha, non-interlaced
Hash 82f724aa56db0da424f206b9991fd62e
c0334262e1a6720efb47fa3334e8dd6437377836
d96115050f54fd0c168f20fb496755ce4a6857a57446dbdad9310bfc1d79fcb8
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/assets/images/metav2.png HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
content-length: 651
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:39 GMT
server: AmazonS3
accept-ranges: bytes
etag: "82f724aa56db0da424f206b9991fd62e"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EL1X9bh8hhghWYZ-Oqn5lP1vVw0gbNv9EOPTRYcroo4KVdwVV8oPnw==
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/meta.png
54.230.111.22200 OK 651 B URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/meta.png
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type PNG image data, 54 x 12, 8-bit gray+alpha, non-interlaced
Hash 82f724aa56db0da424f206b9991fd62e
c0334262e1a6720efb47fa3334e8dd6437377836
d96115050f54fd0c168f20fb496755ce4a6857a57446dbdad9310bfc1d79fcb8
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/assets/images/meta.png HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
content-length: 651
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:39 GMT
server: AmazonS3
accept-ranges: bytes
etag: "82f724aa56db0da424f206b9991fd62e"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LFzWaPO5W_gLFoLXy8Ialfr8FLCFmY2KIcnLXmhI8f3oXjI1eSvyfA==
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/fbv2.jpg
54.230.111.22200 OK 3.1 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/fbv2.jpg
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 236x236, segment length 16, progressive, precision 8, 236x236, components 3
Hash e165af495d51ef5b46cad3d602a2a5f8
e3d73bf45f360750678f666b4fa51553aad7090d
171f1b3ac7b11ef605b96f91537ed2cc32ab21d7233733114a923d21d552b021
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/assets/images/fbv2.jpg HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
content-length: 3053
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:40 GMT
server: AmazonS3
accept-ranges: bytes
etag: "e165af495d51ef5b46cad3d602a2a5f8"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wxss4691i-Xp2VILIyrQDDtWi-Z3TLH3TEIf3rahjnL6Ej9Mg8zoIw==
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/avatar.png
54.230.111.22200 OK 58 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/avatar.png
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type PNG image data, 662 x 664, 8-bit/color RGBA, non-interlaced
Hash 02fb04256d936e0d83a6340a1d1f3af4
b8bfe3b59f0dc0d7841d17f4352ac2ce0feb2238
0734468737b7eaf71a997b518a6b70a4ec17d136f41bf3bb562429bbea1de8cb
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/assets/images/avatar.png HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
content-length: 58407
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:40 GMT
server: AmazonS3
accept-ranges: bytes
etag: "02fb04256d936e0d83a6340a1d1f3af4"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RfvhyH86kwv4v95hQ37bo3d2eLeJ0euryyo4YsrIIrHuvZ1-px7pTg==
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/bg.jpg
54.230.111.22200 OK 81 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/assets/images/bg.jpg
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 1920x175, components 3
Hash 49a366b72644f04ea8efccf9550fb0a5
54492aa337fc8ee34297a04fd789d202fba78d58
289d99b21fae145c868238c0c499dcf8e84bea445b63e47e3406acfe98e20a34
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/assets/images/bg.jpg HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
content-length: 80630
alt-svc: h3=":443"; ma=86400
date: Fri, 10 May 2024 15:57:40 GMT
server: AmazonS3
accept-ranges: bytes
etag: "49a366b72644f04ea8efccf9550fb0a5"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MwJENpUQ1Y4dEjnX-DAkHHvx8djL-T9-IytRWD3mwr7P_gSb7SAFcA==
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/fonts/MaterialIcons-Regular.otf
54.230.111.22200 OK 11 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/fonts/MaterialIcons-Regular.otf
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type gzip compressed data, from Unix
Hash 5e7669d36c3e22508a02c5aa709d73b5
aac25644208cd65c51699b4a429ad3b037760159
2e9f72e36e2d0abc9e4dc824992508d80fc961d4803e460e3bed1f9869f92c7a
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/fonts/MaterialIcons-Regular.otf HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: font/otf
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:37 GMT
server: AmazonS3
etag: W/"0f341cb48f96334dfc114136d18a1db6"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: LsRZv_zYEmcf7BHI7rVUp7il0uDb1LCp9EKZ_Y-f4hWMhur7JJRw1g==
managerads.d2bgzedfwytyy5.amplifyapp.com/main.dart.js
54.230.111.22200 OK 2.4 MB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/main.dart.js
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
Size 2.4 MB (2363277 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /main.dart.js HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:34 GMT
server: AmazonS3
etag: W/"c172314993ba4b35b9ccc8a10926082d"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: 8i8qPWPNYBnBYQLc34f_-YH8RU8NWBfPG_IKw6gPyoIgRA09k0979A==
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/AssetManifest.json
54.230.111.22200 OK 1.2 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/AssetManifest.json
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1235), with no line terminators
Hash 0a2516d2ead7350939600c65cd9b6f04
ab2715847814fbf494aea3e3b32b1705628b57b3
6121bf070bf6818b81d81bf457c688ca53e21ae083fca3a927ec3422d7ba678e
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/AssetManifest.json HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:39 GMT
server: AmazonS3
etag: W/"ffcce918f60617fed6fdd5c787356cc5"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: ZglGcYXlLeGsnCCOCTLr3YqgGfOaQliZfIEpbsrgke8gyLmXh77bXw==
fonts.gstatic.com/s/a/705290b12f58c6d70aafcaaf461dbc3d2f7f19d0f4362af1843b107d95d4960a.ttf
216.58.207.227200 OK 155 kB URL GET HTTP/2 fonts.gstatic.com/s/a/705290b12f58c6d70aafcaaf461dbc3d2f7f19d0f4362af1843b107d95d4960a.ttf
IP 216.58.207.227:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type TrueType Font data, 13 tables, 1st "GDEF", 8 names, Microsoft, language 0x409
Size 155 kB (154584 bytes)
Hash 9ba5c294b162c2688a1541ea64f36fb3
257c4afc8725d026f06e0208e2ae7bfe079f1452
705290b12f58c6d70aafcaaf461dbc3d2f7f19d0f4362af1843b107d95d4960a
GET /s/a/705290b12f58c6d70aafcaaf461dbc3d2f7f19d0f4362af1843b107d95d4960a.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://managerads.d2bgzedfwytyy5.amplifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 69504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 01:56:47 GMT
expires: Sat, 10 May 2025 01:56:47 GMT
cache-control: public, max-age=31536000
age: 50452
last-modified: Wed, 27 Apr 2022 16:07:02 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
managerads.d2bgzedfwytyy5.amplifyapp.com/
54.230.111.22200 OK 1.9 kB URL User Request GET HTTP/2 managerads.d2bgzedfwytyy5.amplifyapp.com/
IP 54.230.111.22:443
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (2045), with no line terminators
Hash 4811e277f2f6ecced03ffcfe84fa3ec1
719ad9a955e6d9ddaf596f539c0950e03025329a
368dd13626846230eea38dc5f2b1936082df614197d131bec5a5eae901d2053f
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET / HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
date: Fri, 10 May 2024 15:57:32 GMT
server: AmazonS3
etag: W/"9105159675b17008fb69291e2b40d322"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 2vhExguImVX6wF0IDpMD_4iWhguRjkmqhx3SDXVdwFzkK07Tbkjs8g==
X-Firefox-Spdy: h2
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf
54.230.111.22200 OK 169 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type TrueType Font data, 10 tables, 1st "OS/2", 7 names, Microsoft, language 0x409
Size 169 kB (169196 bytes)
Hash d7791ef376c159f302b8ad90a748d2ab
8484ebfc7efecdb9abe12f03f94014a32b6781cc
e68cb27bed42fe434be64d0d6296d8dc5b81686a725fe31d4293509f8598636e
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: font/ttf
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:37 GMT
server: AmazonS3
etag: W/"d7791ef376c159f302b8ad90a748d2ab"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: cpcgieWDT8TdVxHdWTCKL-bQK_Tc_WDdX2029zSs4x27vbzMVFfnHQ==
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/cupertino_icons/assets/CupertinoIcons.ttf
54.230.111.22200 OK 1.2 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/cupertino_icons/assets/CupertinoIcons.ttf
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type TrueType Font data, 12 tables, 1st "OS/2", 7 names, Microsoft, language 0x409
Hash 57d849d738900cfd590e9adc7e208250
41985b8972e5289666d6054b2242f562f1d6e11a
7faebfc34fcf9aeed5ed14c8d859995da91d26ee4d515a5d5a632a14cc6b3d98
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/packages/cupertino_icons/assets/CupertinoIcons.ttf HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: font/ttf
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:37 GMT
server: AmazonS3
etag: W/"57d849d738900cfd590e9adc7e208250"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: HgKXULjQc9YwrEER9SfvN4GWN4duNDMvKzfqri2K7g22SJwQwVpCgg==
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf
54.230.111.22200 OK 49 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type TrueType Font data, 10 tables, 1st "OS/2", 7 names, Microsoft, language 0x409
Hash 5070443340d1d8cceb516d02c3d6dee7
2edcbf8f12c01ef48617b87fd497c07fbe85087c
6b04ad8cd0e6be09eb285526cc0e4f66f84ae231d7eeffa4569f65b9fc3d511d
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: font/ttf
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:37 GMT
server: AmazonS3
etag: W/"5070443340d1d8cceb516d02c3d6dee7"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: EGalXaxrWsqi3HGB2CInTCDuNv-wuAi7Li5nLd3Vy9SWDdawUPMbMQ==
managerads.d2bgzedfwytyy5.amplifyapp.com/flutter.js
54.230.111.22200 OK 15 kB URL GET HTTP/2 managerads.d2bgzedfwytyy5.amplifyapp.com/flutter.js
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 6b515e434cea20006b3ef1726d2c8894
65e782370bc35a4f5e37922f12debfae61eff946
ebef4683c7634467e3e792e993cd8e28d44940d4299dd8f3f8ce8ea3c1f20b67
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /flutter.js HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 10 May 2024 15:57:33 GMT
server: AmazonS3
etag: W/"6b515e434cea20006b3ef1726d2c8894"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 1smRv4hb3LUbduLi1vhuSqwsVXEfSPFKnKcrWne25pplS67hExbR6Q==
X-Firefox-Spdy: h2
managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf
54.230.111.22200 OK 357 kB URL GET HTTP/3 managerads.d2bgzedfwytyy5.amplifyapp.com/assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf
IP 54.230.111.22:443
Requested by https://managerads.d2bgzedfwytyy5.amplifyapp.com/
Certificate IssuerAmazon
Subject*.d2bgzedfwytyy5.amplifyapp.com
FingerprintFC:F6:CD:5F:74:72:3A:FC:E4:A7:EC:B5:8D:84:E6:60:08:F3:89:9C
ValidityFri, 10 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT
File type TrueType Font data, 10 tables, 1st "OS/2", 7 names, Microsoft, language 0x409
Size 357 kB (357256 bytes)
Hash 658b490c9da97710b01bd0f8825fce94
0c454d0b88ea5736402cdd5a19ae767765dcba6d
2395721ec2a7ba59d9ea05e0567339ca73d280e8768fb3f7eceb6fd2c1824913
Analyzer Verdict Alert urlquery phishing Phishing - Facebook
GET /assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf HTTP/1.1
Host: managerads.d2bgzedfwytyy5.amplifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managerads.d2bgzedfwytyy5.amplifyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: font/ttf
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 15:57:37 GMT
server: AmazonS3
etag: W/"658b490c9da97710b01bd0f8825fce94"
last-modified: Fri, 10 May 2024 15:07:48 GMT
cache-control: public, max-age=0, s-maxage=2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: MxOUzMDRi0ULqlPdjGNQNEU2K1UQdbMQQUXVkaz3E_yw-5whmyCNSA==