Report - fb-restriction-case-4ca62.web.app/

Report Overview

Submitted URL
fb-restriction-case-4ca62.web.app/
IP
199.36.158.100
ASN
#54113 FASTLY
Submitted
2023-06-02 01:28:26
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
unpkg.com	11693	2016-01-06	2016-01-08	2023-06-01	935 B	7.3 MB	104.16.126.175
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-02	502 B	92 kB	142.250.74.35
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-06-01	2.6 kB	144 kB	142.250.74.35
firestore.googleapis.com	1961	2005-01-25	2017-10-10	2023-06-02	1.4 kB	1.1 kB	216.58.207.202
fb-restriction-case-4ca62.web.app	unknown	2019-01-08	2023-05-19	2023-06-02	7.2 kB	2.8 MB	199.36.158.100
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-01	1.7 kB	3.5 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/
2023-06-01	medium	fb-restriction-case-4ca62.web.app/

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	fb-restriction-case-4ca62.web.app/	0 B	2023-03-07	2024-05-10
Pretty URL fb-restriction-case-4ca62.web.app/ IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-10 15:00:57 Times Seen37508615 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	fb-restriction-case-4ca62.web.app/main.dart.js	2.5 MB	2023-04-29	2023-06-09
Pretty URL fb-restriction-case-4ca62.web.app/main.dart.js IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 20:06:22 Last Seen2023-06-09 01:16:07 Times Seen189 Hash 259899c47fcfa8ca91ae611a44832180 df3ff6c4260fc1d2641fb8799e53fa017cc221cc fd5c131a78ccdb086dbcce96724a384583fe5f71474bd63625122defff3cbc84 Loading...

	unknown	179 B	2023-03-13	2023-08-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:49:01 Last Seen2023-08-25 12:15:55 Times Seen334 Hash a4891a96c38f943113e45ab2780cf7a0 7d43b567d7f2cfd3f2518abfd480a9f9aeccd270 a7cae511bfa006963b125f1fbf981ac2427711a68286902c1a893e3f8d3c427b Loading...

	www.gstatic.com/firebasejs/9.15.0/firebase-app-check.js	21 kB	2023-03-13	2024-02-22
Pretty URL www.gstatic.com/firebasejs/9.15.0/firebase-app-check.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:49:01 Last Seen2024-02-22 18:56:36 Times Seen1040 Hash a783a2a016b9fbc2d3920f723e4c1b99 19ee62ec6ef82396a3a827ae6e255c4aa0a36af8 4a924c5e3329928bb0467fd44e7cec51d98d4dc48ac3f890455921ad0db3f118 Loading...

	www.gstatic.com/firebasejs/9.15.0/firebase-analytics.js	25 kB	2023-03-13	2024-02-22
Pretty URL www.gstatic.com/firebasejs/9.15.0/firebase-analytics.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:36:31 Last Seen2024-02-22 18:56:36 Times Seen576 Hash 15939ad40e603075c6c481abb7ea652e 5165fc3d95f881d0aaa975b267b7a5ba07542b03 596727133350275a1e8d7fa466ad1aae69224e2a5d7f636fb2a83bcafedba90e Loading...

	www.gstatic.com/firebasejs/9.15.0/firebase-firestore.js	321 kB	2023-03-10	2024-01-27
Pretty URL www.gstatic.com/firebasejs/9.15.0/firebase-firestore.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:25:53 Last Seen2024-01-27 14:39:55 Times Seen1019 Hash 8cfdc6e50b9c4ef9566db037dfa5b7ed bbfb29ac8912188162b83b07945eddfbc178d999 708a47a11545acf01e373c52570067fd9ae04ce7a96d5662a97800243a2cc0f7 Loading...

	fb-restriction-case-4ca62.web.app/flutter.js	14 kB	2023-03-14	2024-04-27
Pretty URL fb-restriction-case-4ca62.web.app/flutter.js IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 16:07:19 Last Seen2024-04-27 14:29:02 Times Seen783 Hash a85fcf6324d3c4d3ae3be1ae4931e9c5 ac1d5af84f0baa65ee952fc9c98c3e635568a5ea 92c29df06c9f4208703db4ce40660f012152dd62e0e52b9661bcfb0337bac8dd Loading...

	unpkg.com/canvaskit-wasm@0.37.1/bin/canvaskit.js	127 kB	2023-03-13	2024-04-27
Pretty URL unpkg.com/canvaskit-wasm@0.37.1/bin/canvaskit.js IP 104.16.126.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:19:11 Last Seen2024-04-27 14:29:04 Times Seen559 Hash 97937cb4c2c2073c968525a3e08c86a3 94a6c2b75d172363ad9a6b9d225e6e87b0c9673d c4de5e9fe0f6bff1f36eed04e68c6f65c12cc5af9b4b5e9cb4cd2d48dbcb6a66 Loading...

	unknown	179 B	2023-03-13	2023-11-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:49:01 Last Seen2023-11-21 07:48:47 Times Seen339 Hash 9a2f5aabc1ea096d57980f06e21637cc be5b922755ff9e4ddc82b0f5c9ea1ac59b2f7913 dae74f66505d8d19076a13078d4eeb04422d90fd034dbeb8dd79874c6995f433 Loading...

	www.gstatic.com/firebasejs/9.15.0/firebase-remote-config.js	26 kB	2023-03-13	2024-02-22
Pretty URL www.gstatic.com/firebasejs/9.15.0/firebase-remote-config.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:49:01 Last Seen2024-02-22 18:56:36 Times Seen1044 Hash 634d5b943a5fd10fe791a4be51e93c67 1f123035febb26bc00ce8fb04593e92d99165c1a c9234584fd7920bb08a09199511d8bccf162a7c8d2c90832075437550fa6dbde Loading...

	fb-restriction-case-4ca62.web.app/	0 B	2023-03-07	2024-05-10
Pretty URL fb-restriction-case-4ca62.web.app/ IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-10 15:00:57 Times Seen37508615 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	168 B	2023-03-13	2023-11-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:49:01 Last Seen2023-11-21 07:48:46 Times Seen339 Hash 94efc63a6134507f242d7b96dd42f116 4b68640dfa40a66a59e1fa874b4541368a7b0029 f37b15c1d10b871c6498686f72ea9c9b5ad9f116421a0e3f962be1280c7c77bc Loading...

	unknown	187 B	2023-03-13	2023-11-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:49:01 Last Seen2023-11-21 07:48:46 Times Seen339 Hash 2c1c4508077e20f7ecb6ff02dd29f8b4 771bc4ed13afbf179c251877a5010895616bddf6 faa4f0617e6c3da25101615afaf59168c6252af6b1153978fd57e90cb6c0c2ab Loading...

	unknown	179 B	2023-03-13	2023-11-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:19:11 Last Seen2023-11-21 07:48:46 Times Seen338 Hash e0eb1829aa1deedd6c9a0f07fad57fed d52f2c1df99b7d965b34c0774129ea0947d81f71 96592a28a553383dc09aff9dac7756cd20d23bd1d609d6bee873069527836a0f Loading...

	www.gstatic.com/firebasejs/9.15.0/firebase-app.js	92 kB	2023-03-10	2024-02-22
Pretty URL www.gstatic.com/firebasejs/9.15.0/firebase-app.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:25:53 Last Seen2024-02-22 18:56:36 Times Seen1044 Hash f8d04c77a0b3e189fe3f2e7feb3f3a2a 803b406e6ed8f5d96d91d1afd524f75fa09e65be 578e98ba3ccd976fdefa671f860d4b27a944cbc80e5c2b0e6ae3d8239af5b121 Loading...

HTTP Transactions (30)

URL IP Response Size

fb-restriction-case-4ca62.web.app/

199.36.158.100

200 OK

655 B

URL User Request GET HTTP/2
fb-restriction-case-4ca62.web.app/
IP
199.36.158.100:443
ASN
#54113 FASTLY

Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
655 B (655 bytes)
Hash
b08459e4433e636f50d00b1a3ef75b58
8783c5aee4a060a1a28d9aa9501ce7315f05fc72
c8338bac3e67970d3129ae5fe9cf0803db7da25f7b6b7382bae112a5c71c0285

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "b2d2053048846c0ab8718d7f506e9900e1aa6c9e593ee32faf01db93955830df-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:06 GMT
x-served-by: cache-bma1661-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669286.354662,VS0,VE51
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 655
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8

142.250.74.131

472 B

URL
ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c71533c4704c778fa30223cb4a41e7a6
b53f269f4dc4ed742c7b38be79958d37e8482f97
37988e16d2de6ebd0c9ed907a98806ddb4632296be5b9b6407fe4c72aa6eca2f

HTTP Headers

POST /s/gts1d4int/wrllXI_-LL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 01:28:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fb-restriction-case-4ca62.web.app/flutter.js

199.36.158.100

200 OK

3.4 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/flutter.js
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
C++ source, ASCII text
Size
3.4 kB (3373 bytes)
Hash
a85fcf6324d3c4d3ae3be1ae4931e9c5
ac1d5af84f0baa65ee952fc9c98c3e635568a5ea
92c29df06c9f4208703db4ce40660f012152dd62e0e52b9661bcfb0337bac8dd

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /flutter.js HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3373
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "4ac95ce2f44eacd0bda65849a413c7f16fac0f00d2cbc60b9b07709129ea6c17-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:06 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669287.774979,VS0,VE49
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fb-restriction-case-4ca62.web.app/icons/Icon-192.png

199.36.158.100

200 OK

5.2 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/icons/Icon-192.png
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Size
5.2 kB (5172 bytes)
Hash
ac9a721a12bbc803b44f645561ecb1e1
293b2825c89d2abd4b17e2f5ac30c30f5ba3724f
3dce99077602f70421c1c6b2a240bc9b83d64d86681d45f2154143310c980be3

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /icons/Icon-192.png HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 5172
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "eaf2464bfb1d192fdd192a616f7b858dee456d573c6ec619648a1dcf2bdddfa6-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:06 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669287.920788,VS0,VE47
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fb-restriction-case-4ca62.web.app/favicon.png

199.36.158.100

200 OK

14 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/favicon.png
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
PNG image data, 480 x 480, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13908 bytes)
Hash
7a2dbfdec08b3a38d668b605d78df964
87dba0baa4bffbb072a921c7c6a5199c26f83aba
c770ce547af85df31198c63f7eba9cba64ff3a48f8eb127d4ea12181453036c8

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /favicon.png HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 13908
cache-control: max-age=3600
content-encoding: gzip
content-type: image/png
etag: "38f8cfe11288e15850f38a0cf14b45059f10318fc9f1f9d539949a23252f2f1f"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:07 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669287.921108,VS0,VE91
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fb-restriction-case-4ca62.web.app/main.dart.js

199.36.158.100

200 OK

524 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/main.dart.js
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
ASCII text, with very long lines (727)
Size
524 kB (524032 bytes)
Hash
259899c47fcfa8ca91ae611a44832180
df3ff6c4260fc1d2641fb8799e53fa017cc221cc
fd5c131a78ccdb086dbcce96724a384583fe5f71474bd63625122defff3cbc84

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /main.dart.js HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 524032
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "ecf16ff261a98a4696e9876f6d495d4b89da38f4d502aa3920f7339c1b5c5305-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:07 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669287.940783,VS0,VE204
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fb-restriction-case-4ca62.web.app/assets/FontManifest.json

199.36.158.100

200 OK

190 B

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/assets/FontManifest.json
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
JSON data\012- , ASCII text, with very long lines (670), with no line terminators
Size
190 B (190 bytes)
Hash
5a32d4310a6f5d9a6b651e75ba0d7372
1eea93fdd82fad31ce32e9b9428e415dfc737da3
2cd9411b540e5c6e15ac65523a3601bee668aeca9104e1de136fc34b3a912771

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /assets/FontManifest.json HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 190
cache-control: max-age=3600
content-encoding: br
content-type: application/json
etag: "513648b64710d048971e49c5969e91a20ae1a4636f93ba888a67fe9a15cd61bf-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:07 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669288.865954,VS0,VE50
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fb-restriction-case-4ca62.web.app/assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf

199.36.158.100

200 OK

24 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
TrueType Font data, 10 tables, 1st "OS/2", 22 names, Macintosh\012- data
Size
24 kB (24298 bytes)
Hash
48ce1bb8a42776caa951cb782d277730
0e60059f9281c1dcd06cad991c6bc4eca83330a4
82fc7013f40a658884a7b03ca753bca98c2adfa4ebaa4c9fe60493410b5f2709

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /assets/packages/font_awesome_flutter/lib/fonts/fa-regular-400.ttf HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fb-restriction-case-4ca62.web.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 24298
cache-control: max-age=3600
content-encoding: br
content-type: font/ttf
etag: "b13c51c29a19535be82eaeed3a0251bfdd9c1c26574affa986ffe35b659735f6-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:08 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669288.986980,VS0,VE73
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fb-restriction-case-4ca62.web.app/assets/packages/cupertino_icons/assets/CupertinoIcons.ttf

199.36.158.100

200 OK

110 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/assets/packages/cupertino_icons/assets/CupertinoIcons.ttf
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
TrueType Font data, 16 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size
110 kB (110144 bytes)
Hash
6d342eb68f170c97609e9da345464e5e
3fb6dbfe8477121c2a0881f533a2f24ee0485985
c7a357fad8f2102890b72cdb6e3c98f14db3a19ec60db26d13e4fe93f773808d

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /assets/packages/cupertino_icons/assets/CupertinoIcons.ttf HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fb-restriction-case-4ca62.web.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 110144
cache-control: max-age=3600
content-encoding: br
content-type: font/ttf
etag: "007720e2ea8128f223e5f1a08073b8f40df49b41dac35727107ab73dc4488ae0-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:08 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669288.975737,VS0,VE133
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fb-restriction-case-4ca62.web.app/assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf

199.36.158.100

200 OK

101 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
TrueType Font data, 10 tables, 1st "OS/2", 22 names, Macintosh\012- data
Size
101 kB (100975 bytes)
Hash
99f29024aee8f4672a47cc3a81b9b84a
9e4730b178adbb7e21267aca55f40347d131e025
d8246551a38d3e971897cdc70854e1665ccab5314acb1d21078479336b5ee740

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /assets/packages/font_awesome_flutter/lib/fonts/fa-brands-400.ttf HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fb-restriction-case-4ca62.web.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 100975
cache-control: max-age=3600
content-encoding: br
content-type: font/ttf
etag: "67fbbf79bc60341b19bf15fd73031bf6401dcedbdd7d9a1f809daa7c110648b7-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:08 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669288.981170,VS0,VE123
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

unpkg.com/canvaskit-wasm@0.37.1/bin/canvaskit.js

104.16.126.175

200 OK

472 kB

URL GET HTTP/2
unpkg.com/canvaskit-wasm@0.37.1/bin/canvaskit.js
IP
104.16.126.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (566)
Size
472 kB (471652 bytes)
Hash
97937cb4c2c2073c968525a3e08c86a3
94a6c2b75d172363ad9a6b9d225e6e87b0c9673d
c4de5e9fe0f6bff1f36eed04e68c6f65c12cc5af9b4b5e9cb4cd2d48dbcb6a66

HTTP Headers

GET /canvaskit-wasm@0.37.1/bin/canvaskit.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 01:28:07 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1f086-lKbCt10XI2OtmmudIl5uh7DJZz0"
via: 1.1 fly.io
fly-request-id: 01GQ4AD0NESWTKAANT5QND9116-fra
cf-cache-status: HIT
age: 11560653
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0beaf93848b523-OSL
content-encoding: br
X-Firefox-Spdy: h2

fb-restriction-case-4ca62.web.app/assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf

199.36.158.100

200 OK

142 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
TrueType Font data, 10 tables, 1st "OS/2", 22 names, Macintosh\012- data
Size
142 kB (142296 bytes)
Hash
d8e9b6203ce2657c991f0b339ccb3a6d
5bfb828653d1a9e4fba6255d7a6e4ef1e29ca0ed
69d2ed3d257f5732c99ddc9705b8b2fe458c2f1d93bfe428366843842ea6abe9

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /assets/packages/font_awesome_flutter/lib/fonts/fa-solid-900.ttf HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fb-restriction-case-4ca62.web.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 142296
cache-control: max-age=3600
content-encoding: br
content-type: font/ttf
etag: "441e760a320b7d12c5d9001f23708a431069d50865aeb7e4f9ec5585de28e7a3-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:08 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669288.988037,VS0,VE142
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 01:28:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf

142.250.74.35

200 OK

91 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-RegularRob\012- data
Size
91 kB (91230 bytes)
Hash
11eabca2251325cfc5589c9c6fb57b46
096c9245b6a192d1403a82848e104a65f578a8ec
017c0be9aaa6d0359737e1fa762ad304c0e0107927faff5a6c1f415c7f5244ed

HTTP Headers

GET /s/roboto/v20/KFOmCnqEu92Fr1Me5WZLCzYlKw.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fb-restriction-case-4ca62.web.app/
Origin: https://fb-restriction-case-4ca62.web.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 91230
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 00:20:03 GMT
expires: Thu, 30 May 2024 00:20:03 GMT
cache-control: public, max-age=31536000
age: 176885
last-modified: Wed, 24 Jul 2019 01:18:48 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 01:28:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/firebasejs/9.15.0/firebase-app.js

142.250.74.35

200 OK

20 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/9.15.0/firebase-app.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Algol 68 source text\012- Pascal source, ASCII text, with CRLF, LF line terminators
Size
20 kB (20536 bytes)
Hash
f8d04c77a0b3e189fe3f2e7feb3f3a2a
803b406e6ed8f5d96d91d1afd524f75fa09e65be
578e98ba3ccd976fdefa671f860d4b27a944cbc80e5c2b0e6ae3d8239af5b121

HTTP Headers

GET /firebasejs/9.15.0/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fb-restriction-case-4ca62.web.app
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 20536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 09:54:02 GMT
expires: Sun, 26 May 2024 09:54:02 GMT
cache-control: public, max-age=31536000
age: 488046
last-modified: Thu, 08 Dec 2022 23:22:43 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/9.15.0/firebase-analytics.js

142.250.74.35

200 OK

8.4 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/9.15.0/firebase-analytics.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (24860)
Size
8.4 kB (8369 bytes)
Hash
15939ad40e603075c6c481abb7ea652e
5165fc3d95f881d0aaa975b267b7a5ba07542b03
596727133350275a1e8d7fa466ad1aae69224e2a5d7f636fb2a83bcafedba90e

HTTP Headers

GET /firebasejs/9.15.0/firebase-analytics.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fb-restriction-case-4ca62.web.app
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 02:42:59 GMT
expires: Fri, 31 May 2024 02:42:59 GMT
cache-control: public, max-age=31536000
age: 81909
last-modified: Thu, 08 Dec 2022 23:22:31 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/9.15.0/firebase-app-check.js

142.250.74.35

200 OK

7.2 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/9.15.0/firebase-app-check.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (21305)
Size
7.2 kB (7156 bytes)
Hash
a783a2a016b9fbc2d3920f723e4c1b99
19ee62ec6ef82396a3a827ae6e255c4aa0a36af8
4a924c5e3329928bb0467fd44e7cec51d98d4dc48ac3f890455921ad0db3f118

HTTP Headers

GET /firebasejs/9.15.0/firebase-app-check.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fb-restriction-case-4ca62.web.app
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 7156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 17:21:53 GMT
expires: Wed, 29 May 2024 17:21:53 GMT
cache-control: public, max-age=31536000
age: 201975
last-modified: Thu, 08 Dec 2022 23:22:40 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/9.15.0/firebase-remote-config.js

142.250.74.35

200 OK

8.4 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/9.15.0/firebase-remote-config.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (26234)
Size
8.4 kB (8449 bytes)
Hash
634d5b943a5fd10fe791a4be51e93c67
1f123035febb26bc00ce8fb04593e92d99165c1a
c9234584fd7920bb08a09199511d8bccf162a7c8d2c90832075437550fa6dbde

HTTP Headers

GET /firebasejs/9.15.0/firebase-remote-config.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fb-restriction-case-4ca62.web.app
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 03:06:40 GMT
expires: Fri, 31 May 2024 03:06:40 GMT
cache-control: public, max-age=31536000
age: 80488
last-modified: Thu, 08 Dec 2022 23:22:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/9.15.0/firebase-firestore.js

142.250.74.35

200 OK

95 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/9.15.0/firebase-firestore.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
95 kB (94654 bytes)
Hash
8cfdc6e50b9c4ef9566db037dfa5b7ed
bbfb29ac8912188162b83b07945eddfbc178d999
708a47a11545acf01e373c52570067fd9ae04ce7a96d5662a97800243a2cc0f7

HTTP Headers

GET /firebasejs/9.15.0/firebase-firestore.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fb-restriction-case-4ca62.web.app
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 94654
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 18:56:07 GMT
expires: Wed, 29 May 2024 18:56:07 GMT
cache-control: public, max-age=31536000
age: 196321
last-modified: Thu, 08 Dec 2022 23:22:53 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fb-restriction-case-4ca62.web.app/assets/AssetManifest.json

199.36.158.100

200 OK

227 B

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/assets/AssetManifest.json
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
JSON data\012- , ASCII text, with very long lines (1127), with no line terminators
Size
227 B (227 bytes)
Hash
86201cf800d5f875d4d40e5e0ed41b63
8d88a98184e7cab14c8a466f0fcb71fd83174870
b03cef99961883d00987f687e5133ab01039aabb67d7ca1755e8558bd268ac9d

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /assets/AssetManifest.json HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 227
cache-control: max-age=3600
content-encoding: br
content-type: application/json
etag: "18b3000913735a128c670ace4b604de55b3b5307929285bdf86a5c0681a6b5a4-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:08 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669289.919457,VS0,VE78
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fb-restriction-case-4ca62.web.app/assets/assets/images/meta.png

199.36.158.100

200 OK

23 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/assets/assets/images/meta.png
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
PNG image data, 926 x 74, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (23319 bytes)
Hash
6d6f4c6f0bd514b0c99ae499ced76f36
3114649d07339ebf5c820d7466add95798baaee6
e3e514d17c64355d43a5165d98441852cbbc765e11e61fdab740e7d77af039cf

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /assets/assets/images/meta.png HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 23319
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "774622b0fa651ac1dede600a836ef81a6be3c702542899d58329204929e4036c-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:09 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669289.102999,VS0,VE96
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fb-restriction-case-4ca62.web.app/assets/assets/images/hcaptcha2.png

199.36.158.100

200 OK

74 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/assets/assets/images/hcaptcha2.png
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
PNG image data, 2500 x 2500, 8-bit/color RGBA, non-interlaced\012- data
Size
74 kB (74156 bytes)
Hash
0cb9e79e34bc8124b7926395dc9211b2
d7597160b8092a20a33fbeed4732e66f79c99f9c
1b48fca21bb7aeca6d9912afcb21b341f6ca43b29ea36b3032eada3433c68fac

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /assets/assets/images/hcaptcha2.png HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 74156
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "921f831fb5971d45224e79df3c9113e61d6ac83243ad57fd3827d7b2e717164f-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:09 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669289.105634,VS0,VE258
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a3b43eb0eb523be028c2684b4551688b
a0061051fed8f1a3e4709241cc5001f8fc980ad8
fe5b4192366cb4972d90a509112579db577a449cb3a972e75c53154cc0a9da8e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 01:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fb-restriction-case-4ca62.web.app/assets/assets/images/captcha.png

199.36.158.100

200 OK

90 kB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/assets/assets/images/captcha.png
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type
PNG image data, 788 x 486, 8-bit/color RGBA, non-interlaced\012- data
Size
90 kB (90018 bytes)
Hash
763a3035391b1865c821d24a2faf9cd7
6b2db6b9c23985007047a7946578a0b6df8aa6d4
ce5ebd1fe95b6f56cb4fd0b96903a340d2f8a9a3870abee3cd5cac8e8cb69f26

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /assets/assets/images/captcha.png HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fb-restriction-case-4ca62.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 90018
cache-control: max-age=3600
content-encoding: gzip
content-type: image/png
etag: "4190ba563a10f3846e1ae31c576fd043130fee58d534a9447dff652e8ce7de2b"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:09 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669289.098948,VS0,VE490
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Ffb-business-appeal-b96b2%2Fdatabases%2F(default)&RID=12723&CVER=22&X-HTTP-Session-Id=gsessionid&zx=xm1fg2eukwl8&t=1

216.58.207.202

200 OK

71 B

URL POST HTTP/2
firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Ffb-business-appeal-b96b2%2Fdatabases%2F(default)&RID=12723&CVER=22&X-HTTP-Session-Id=gsessionid&zx=xm1fg2eukwl8&t=1
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint2F:6E:B4:76:65:BC:C6:F5:20:35:32:3E:CE:7A:FC:E1:A8:F1:BC:96
ValidityMon, 08 May 2023 08:27:30 GMT - Mon, 31 Jul 2023 08:27:29 GMT

File type
ASCII text
Size
71 B (71 bytes)
Hash
5035685f4c4aded7f48f6bf3a5c8d995
104f6b80128750b0b672f1396634ec7c6b282b58
9124a6554be8308327a4911e4a15d10776c8c8f7df188c5b5ad6d6344c7fc9dc

HTTP Headers

POST /google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Ffb-business-appeal-b96b2%2Fdatabases%2F(default)&RID=12723&CVER=22&X-HTTP-Session-Id=gsessionid&zx=xm1fg2eukwl8&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fb-restriction-case-4ca62.web.app/
content-type: application/x-www-form-urlencoded
Content-Length: 795
Origin: https://fb-restriction-case-4ca62.web.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-client-wire-protocol: h2
x-http-session-id: Y95qBv3n15GTwPdB4b8YHq0YxKn4Y_TkB9oRmzjeY0s
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Fri, 02 Jun 2023 01:28:09 GMT
server: ESF
cache-control: private
content-length: 71
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://fb-restriction-case-4ca62.web.app
vary: origin
access-control-allow-credentials: true
access-control-expose-headers: x-client-wire-protocol,x-http-session-id
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a3b43eb0eb523be028c2684b4551688b
a0061051fed8f1a3e4709241cc5001f8fc980ad8
fe5b4192366cb4972d90a509112579db577a449cb3a972e75c53154cc0a9da8e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 01:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fb-restriction-case-4ca62.web.app/assets/fonts/MaterialIcons-Regular.otf

199.36.158.100

200 OK

1.6 MB

URL GET HTTP/3
fb-restriction-case-4ca62.web.app/assets/fonts/MaterialIcons-Regular.otf
IP
199.36.158.100:443
ASN
#54113 FASTLY

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT

File type

Size
1.6 MB (1645184 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /assets/fonts/MaterialIcons-Regular.otf HTTP/1.1
Host: fb-restriction-case-4ca62.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fb-restriction-case-4ca62.web.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-length: 431445
cache-control: max-age=3600
content-encoding: br
content-type: font/otf
etag: "26ccc86b05c476a6b792d6abae012d693ce5e7effabb62ca623c44b7ca264aae-br"
last-modified: Mon, 15 May 2023 18:20:50 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 01:28:08 GMT
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685669288.973488,VS0,VE181
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?gsessionid=Y95qBv3n15GTwPdB4b8YHq0YxKn4Y_TkB9oRmzjeY0s&VER=8&database=projects%2Ffb-business-appeal-b96b2%2Fdatabases%2F(default)&RID=rpc&SID=JrSvqb2pQ5u9gt4KTRccYw&CI=0&AID=0&TYPE=xmlhttp&zx=5y92ndbfy5hd&t=1

0.0.0.0

0 B

URL GET
firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?gsessionid=Y95qBv3n15GTwPdB4b8YHq0YxKn4Y_TkB9oRmzjeY0s&VER=8&database=projects%2Ffb-business-appeal-b96b2%2Fdatabases%2F(default)&RID=rpc&SID=JrSvqb2pQ5u9gt4KTRccYw&CI=0&AID=0&TYPE=xmlhttp&zx=5y92ndbfy5hd&t=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint2F:6E:B4:76:65:BC:C6:F5:20:35:32:3E:CE:7A:FC:E1:A8:F1:BC:96
ValidityMon, 08 May 2023 08:27:30 GMT - Mon, 31 Jul 2023 08:27:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /google.firestore.v1.Firestore/Listen/channel?gsessionid=Y95qBv3n15GTwPdB4b8YHq0YxKn4Y_TkB9oRmzjeY0s&VER=8&database=projects%2Ffb-business-appeal-b96b2%2Fdatabases%2F(default)&RID=rpc&SID=JrSvqb2pQ5u9gt4KTRccYw&CI=0&AID=0&TYPE=xmlhttp&zx=5y92ndbfy5hd&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fb-restriction-case-4ca62.web.app/
Origin: https://fb-restriction-case-4ca62.web.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
vary: Referer, origin
cache-control: private, max-age=0
x-content-type-options: nosniff
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Fri, 02 Jun 2023 01:28:11 GMT
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://fb-restriction-case-4ca62.web.app
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

unpkg.com/canvaskit-wasm@0.37.1/bin/canvaskit.wasm

104.16.126.175

200 OK

6.8 MB

URL GET HTTP/2
unpkg.com/canvaskit-wasm@0.37.1/bin/canvaskit.wasm
IP
104.16.126.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fb-restriction-case-4ca62.web.app/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type

Size
6.8 MB (6845886 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /canvaskit-wasm@0.37.1/bin/canvaskit.wasm HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fb-restriction-case-4ca62.web.app/
Origin: https://fb-restriction-case-4ca62.web.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 01:28:08 GMT
content-type: application/wasm
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"6875be-UuWeKwHe5cKudbp4w+ZO19OAnrA"
via: 1.1 fly.io
fly-request-id: 01GJVMAGFGVZXCSG73VD0A6CVD-fra
cf-cache-status: HIT
age: 16147207
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0beafa0e72b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by