| aadcdn.msauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg | 13.107.213.53 | 200 OK | 621 B |
URL GET HTTP/2aadcdn.msauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/ CertificateIssuerDigiCert Inc Subjectaadcdn.msauth.net FingerprintEB:7C:D1:4E:EF:B5:D4:72:25:0B:1A:AF:5F:10:3D:EA:13:80:5A:47 ValidityMon, 29 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash4e48046ce74f4b89d45037c90576bfac 4a41b3b51ed787f7b33294202da72220c7cd2c32 8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93
GET /shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 05:53:59 GMT
content-type: image/svg+xml
content-length: 621
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Tue, 10 Nov 2020 03:41:24 GMT
etag: 0x8D8852A7FA6B761
x-ms-request-id: 62b6b4bf-e01e-0078-507f-904f8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240419T055359Z-17f9dd4c48bx6bhdff1ha5qv9s0000000370000000006avm
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg | 13.107.213.53 | 200 OK | 1.4 kB |
URL GET HTTP/2aadcdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/ CertificateIssuerDigiCert Inc Subjectaadcdn.msauth.net FingerprintEB:7C:D1:4E:EF:B5:D4:72:25:0B:1A:AF:5F:10:3D:EA:13:80:5A:47 ValidityMon, 29 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashee5c8d9fb6248c938fd0dc19370e90bd d01a22720918b781338b5bbf9202b241a5f99ee4 04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a
GET /shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 05:53:59 GMT
content-type: image/svg+xml
content-length: 1435
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Fri, 17 Jan 2020 19:28:38 GMT
etag: 0x8D79B8373CB2849
x-ms-request-id: b3f4385c-101e-003b-10d5-90e198000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240419T055359Z-17f9dd4c48bx6bhdff1ha5qv9s0000000370000000006avn
x-fd-int-roxy-purgeid: 4554691
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/favicon.ico | 104.21.55.4 | 200 OK | 8.9 kB |
URL GET HTTP/3hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/favicon.ico IP104.21.55.4:443
Requested byhttps://hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectfyfyvfytvghv.workers.dev Fingerprint3C:87:4D:E8:88:5E:A1:75:C0:30:7E:16:A8:3F:92:4F:30:E2:91:6F ValidityFri, 15 Mar 2024 21:30:55 GMT - Thu, 13 Jun 2024 21:30:54 GMT
File typeHTML document, ASCII text, with very long lines (9336) Hash4fe3cd1598e9f7ff578171c6fa2ba5c2 6d73389f20e124d69cd661021867a174da8634ef 47ef4b22784a62b03932bda2c42f37bf003f57460b3abbc544067e641de780a9
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 | PhishTank | phishing | Microsoft |
GET /favicon.ico HTTP/1.1
Host: hbgdhjbsgdssd.fyfyvfytvghv.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 05:53:59 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EyuHwOi8wvM027mPjWXJ3QkvKI2u%2BKj%2BtfAnBfaDFAdcoZZs2AzW59mpgPTRfumd%2Fg9Wsb5OyOSTuL53qb2PGu76zvFbH3VkSzZIUHlxHS4uQQUn5%2BvCNi%2B3AHdAY9CDZQNYHu8KAViAMqhxdsmqHAVgdKeeLWavaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876aa328d85556cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/style.css | 104.21.55.4 | 200 OK | 9.4 kB |
URL GET HTTP/3hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/style.css IP104.21.55.4:443
Requested byhttps://hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectfyfyvfytvghv.workers.dev Fingerprint3C:87:4D:E8:88:5E:A1:75:C0:30:7E:16:A8:3F:92:4F:30:E2:91:6F ValidityFri, 15 Mar 2024 21:30:55 GMT - Thu, 13 Jun 2024 21:30:54 GMT
File typeHTML document, ASCII text, with very long lines (9381), with no line terminators Hashb8d1acc427b9f0f0a16d311e38df0db6 478c0be934451fe14798853fbac7b4e48df10917 ddec7d40a85cae277a0f3e507f7cdab383d69eb024c629f68531cf8713ffe98c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 | PhishTank | phishing | Microsoft |
GET /style.css HTTP/1.1
Host: hbgdhjbsgdssd.fyfyvfytvghv.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 05:53:58 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pPnh4nNArBejaoFCulft4BSv8k1KJ5Dqt7sMIwBizeuuWZrLcdRwoufDMbe71COKF06S1F5Kh2xp6nmYdnk2%2Bdys6wUm1tWw7Qj9GzfyFaW8ZrIfTnjpEAySU3BZhtKQUz1C5PFQX2998DGkxuzb1zqrpJfPJRAVyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876aa3277f5a56cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.linkpicture.com/q/Screen-Shot-2022-01-30-at-10.27.21-PM.png | 104.21.235.181 | 404 Not Found | 0 B |
URL GET HTTP/2www.linkpicture.com/q/Screen-Shot-2022-01-30-at-10.27.21-PM.png IP104.21.235.181:443
Requested byhttps://hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/ CertificateIssuerLet's Encrypt Subjectlinkpicture.com Fingerprint62:4F:48:67:0C:99:84:78:DC:20:04:F2:01:27:01:D2:59:AB:35:94 ValidityFri, 05 Apr 2024 08:24:47 GMT - Thu, 04 Jul 2024 08:24:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /q/Screen-Shot-2022-01-30-at-10.27.21-PM.png HTTP/1.1
Host: www.linkpicture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 19 Apr 2024 05:53:59 GMT
content-type: text/html
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 43255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P8Z8d35UH1KIafhKJhWcRDpydsX%2B1rCw5ju%2FTgLM6%2FTbSVtXbAZlhYWntVb%2FAXXXPZjMN03r5gJFVo08PjAEBLJ6h69SFaJUehU6qRPAf2Ra1ZB4DARvw%2BbsHjHwj4wE4XWbA4t9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876aa32819d4d95b-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/ | 104.21.55.4 | 200 OK | 9.4 kB |
URL User Request GET HTTP/2hbgdhjbsgdssd.fyfyvfytvghv.workers.dev/ IP104.21.55.4:443
CertificateIssuerGoogle Trust Services LLC Subjectfyfyvfytvghv.workers.dev Fingerprint3C:87:4D:E8:88:5E:A1:75:C0:30:7E:16:A8:3F:92:4F:30:E2:91:6F ValidityFri, 15 Mar 2024 21:30:55 GMT - Thu, 13 Jun 2024 21:30:54 GMT
File typeHTML document, ASCII text, with very long lines (9381), with no line terminators Hashb8d1acc427b9f0f0a16d311e38df0db6 478c0be934451fe14798853fbac7b4e48df10917 ddec7d40a85cae277a0f3e507f7cdab383d69eb024c629f68531cf8713ffe98c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 | PhishTank | phishing | Microsoft |
GET / HTTP/1.1
Host: hbgdhjbsgdssd.fyfyvfytvghv.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 05:53:58 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5vLolh6zcpT1ZjD4%2FLbqXHO83Yk6%2FuMvocn2AR%2FBnHLBCl3iJM%2BkuW3PRApNnVZ76LnIw2QOAmZGNceH5DM4L0i9MAljF4B4Re9%2BnLAZ2hT7VEmPUrBrraknH8rP7FRgX2slkwBQGYOvXYz2eD6P97halbcf56waZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876aa32559b15687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|