| GET xn--e-e-uqac.faceboolk.com/apple-touch-icon.png |  139.162.174.209 | 404 Not Found | 159 B |
URL GET xn--e-e-uqac.faceboolk.com/apple-touch-icon.png IP139.162.174.209:443 ASN#63949 Akamai Connected Cloud
Requested byhttps://xn--e-e-uqac.faceboolk.com/ CertificateIssuerLet's Encrypt Subjectfaceboolk.com Fingerprint61:59:5E:81:90:35:00:2E:20:81:E5:02:1F:1D:41:61:73:28:84:FB ValidityFri, 09 May 2025 23:49:08 GMT - Thu, 07 Aug 2025 23:49:07 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash1620e905665c273e91a8cb2a00df1509 e0ea169369ad349affad0f6d41987a73fea0280f 5a41c6b1c3d5061adbd15744312c919ee4a639abc0572a2927b06838bec1a6ed
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /apple-touch-icon.png HTTP/1.1
Host: xn--e-e-uqac.faceboolk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--e-e-uqac.faceboolk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: openresty/1.27.1.2
date: Fri, 13 Jun 2025 02:52:09 GMT
content-type: text/html
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| POST xn--e-e-uqac.faceboolk.com/_d | 139.162.174.209 | 200 OK | 1.1 kB |
URL POST xn--e-e-uqac.faceboolk.com/_d IP139.162.174.209:443 ASN#63949 Akamai Connected Cloud
Requested byhttps://xn--e-e-uqac.faceboolk.com/ CertificateIssuerLet's Encrypt Subjectfaceboolk.com Fingerprint61:59:5E:81:90:35:00:2E:20:81:E5:02:1F:1D:41:61:73:28:84:FB ValidityFri, 09 May 2025 23:49:08 GMT - Thu, 07 Aug 2025 23:49:07 GMT
Hashda5de58b27912897a1056f25c205ba55 b818fd6ac04e6add7efddf65be623d1bfb11c0e1 41ca5c028c7a47102ec595b30279a9e5d6493f6a722095d403d7eb31831da6ae
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /_d HTTP/1.1
Host: xn--e-e-uqac.faceboolk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xn--e-e-uqac.faceboolk.com/
Content-Type: application/json
Content-Length: 303
Origin: https://xn--e-e-uqac.faceboolk.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.27.1.2
date: Fri, 13 Jun 2025 02:52:09 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
set-cookie: session_id=da39685cf8df57713251921605143db9; Max-Age=86400; Path=/; HttpOnly; SameSite=Lax
strict-transport-security: max-age=0; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| GET www.google.com/adsense/domains/caf.js?abp=1&abpgo=true |  142.250.178.36 | 200 OK | 144 kB |
URL GET www.google.com/adsense/domains/caf.js?abp=1&abpgo=true IP142.250.178.36:443
Requested byhttps://xn--e-e-uqac.faceboolk.com/ CertificateIssuerGoogle Trust Services Subjectwww.google.com Fingerprint84:BD:0D:9A:51:CC:86:3E:E9:2F:6E:7C:2D:58:AC:4C:FB:B5:3D:8C ValidityMon, 12 May 2025 08:44:44 GMT - Mon, 04 Aug 2025 08:44:43 GMT
File typeJavaScript source, ASCII text, with very long lines (1839) Size144 kB (143480 bytes) Hash64b944916e8e3d668be41989a381d6df 6bac58e5f81c843f1740005d78129cc155bb9b6e 478587bb647dcebcb800c66b0c39e5ccd0500d5845785b412e21f164a94ce585
GET /adsense/domains/caf.js?abp=1&abpgo=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--e-e-uqac.faceboolk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Fri, 13 Jun 2025 02:52:09 GMT
expires: Fri, 13 Jun 2025 02:52:09 GMT
cache-control: private, max-age=3600
etag: "11988113309987400486"
x-content-type-options: nosniff
link: <https://syndicatedsearch.goog>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET xn--e-e-uqac.faceboolk.com/ | 139.162.174.209 | 200 OK | 4.2 kB |
URL User Request GET xn--e-e-uqac.faceboolk.com/ IP139.162.174.209:443 ASN#63949 Akamai Connected Cloud
CertificateIssuerLet's Encrypt Subjectfaceboolk.com Fingerprint61:59:5E:81:90:35:00:2E:20:81:E5:02:1F:1D:41:61:73:28:84:FB ValidityFri, 09 May 2025 23:49:08 GMT - Thu, 07 Aug 2025 23:49:07 GMT
File typeHTML document, ASCII text Hashced59597e1ef9343f451a0e631e8f147 869fa4ccde1d53b97ad3e2c5707f100069658d65 97f934b8237a2f4866ed520ff14a8b649b00e72f8ca1ef7313be7c4a1a678eed
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: xn--e-e-uqac.faceboolk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.27.1.2
date: Fri, 13 Jun 2025 02:52:09 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| GET xn--e-e-uqac.faceboolk.com/_static/deliver.js?nonce=3498571 | 139.162.174.209 | 200 OK | 29 kB |
URL GET xn--e-e-uqac.faceboolk.com/_static/deliver.js?nonce=3498571 IP139.162.174.209:443 ASN#63949 Akamai Connected Cloud
Requested byhttps://xn--e-e-uqac.faceboolk.com/ CertificateIssuerLet's Encrypt Subjectfaceboolk.com Fingerprint61:59:5E:81:90:35:00:2E:20:81:E5:02:1F:1D:41:61:73:28:84:FB ValidityFri, 09 May 2025 23:49:08 GMT - Thu, 07 Aug 2025 23:49:07 GMT
Hash5c750872528a334ceaa36e7e56603df1 0843e4c6c8e5b6e6c411825e7d2029ce179d5b20 c8b54c39fa6af43da2de93cd5dc824f341c8f5974e37402c0177bde27f31917d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /_static/deliver.js?nonce=3498571 HTTP/1.1
Host: xn--e-e-uqac.faceboolk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--e-e-uqac.faceboolk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.27.1.2
date: Fri, 13 Jun 2025 02:52:09 GMT
content-type: application/javascript
last-modified: Mon, 09 Jun 2025 21:46:45 GMT
vary: Accept-Encoding
etag: W/"68475645-7186"
strict-transport-security: max-age=0; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|