| aadcdn.msauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg | 13.107.246.53 | | 621 B |
URL aadcdn.msauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg IP13.107.246.53:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
File typeSVG Scalable Vector Graphics image Hash4e48046ce74f4b89d45037c90576bfac 4a41b3b51ed787f7b33294202da72220c7cd2c32 8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93
GET /shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjjnnnnnnj.bjjjl.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 04:41:42 GMT
content-type: image/svg+xml
content-length: 621
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Tue, 10 Nov 2020 03:41:24 GMT
etag: 0x8D8852A7FA6B761
x-ms-request-id: 1a991770-f01e-0061-2381-928cbe000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240426T044142Z-16c4f695cc54rz7xga6xfvddx000000009x0000000001e9b
x-fd-int-roxy-purgeid: 4554691
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.linkpicture.com/q/Screen-Shot-2022-01-30-at-10.27.21-PM.png | 104.21.235.182 | 404 Not Found | 12 kB |
URL GET HTTP/2www.linkpicture.com/q/Screen-Shot-2022-01-30-at-10.27.21-PM.png IP104.21.235.182:443
Requested byhttps://bjjnnnnnnj.bjjjl.workers.dev/ CertificateIssuerLet's Encrypt Subjectlinkpicture.com Fingerprint62:4F:48:67:0C:99:84:78:DC:20:04:F2:01:27:01:D2:59:AB:35:94 ValidityFri, 05 Apr 2024 08:24:47 GMT - Thu, 04 Jul 2024 08:24:46 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4070) Hash42205687d237bcca9d46274f62aba06d b3018a1a59fa2a4d3f90abc10d11cf0921ca5339 ffb2a31657b636bfa32db1827971d36c79dcdd04ab5a42c26471ca1a0016aafa
GET /q/Screen-Shot-2022-01-30-at-10.27.21-PM.png HTTP/1.1
Host: www.linkpicture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjjnnnnnnj.bjjjl.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 26 Apr 2024 04:41:42 GMT
content-type: text/html
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=31536000
cf-cache-status: HIT
age: 138300
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rVbJeguFMaeNxNOwYmNFO8vHXiJumX%2Fy%2FzfG3cYpdywtJPl7dkExi7fXJTExASfaF%2BFhvTR805aYFPOh%2B4DbPxM4%2BbFK8IJpDHS8Gr1quOUCtlWg%2F51p1xDzKzrcZOK7hN1qhQJk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a3e6e98caa7786-LHR
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bjjnnnnnnj.bjjjl.workers.dev/ | 172.67.169.22 | | 5.4 kB |
URL bjjnnnnnnj.bjjjl.workers.dev/ IP172.67.169.22:0
File typeHTML document, ASCII text, with very long lines (9820) Hashc4a0b3a9ea5109eed934bb8bbea64c5a 79fb812499140f793dc52da30897a5eea10febe6 0b86262b765c9cb5c2bf9adae74fd06c54390d738e652cc7aba2c769efdbebcf
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 |
GET / HTTP/1.1
Host: bjjnnnnnnj.bjjjl.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 04:41:42 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pQC3PEJ2PxFmAjSF7M4n9ztS2yZWYnm9KCzgLsmmuvQMOFWmqF8QBcFQ0DM2yETD3RXjWxM1LnEhsQDCZECxx1sFwIo%2BrAkm7g4gxOhcNhtHIZY8UZjQhzOw7vT%2Btl5luwPTRaDCXdX8xEEiASaC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a3e6e79f0fb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bjjnnnnnnj.bjjjl.workers.dev/style.css | 172.67.169.22 | | 12 kB |
URL bjjnnnnnnj.bjjjl.workers.dev/style.css IP172.67.169.22:0
File typeHTML document, ASCII text, with very long lines (9820) Hashc4a0b3a9ea5109eed934bb8bbea64c5a 79fb812499140f793dc52da30897a5eea10febe6 0b86262b765c9cb5c2bf9adae74fd06c54390d738e652cc7aba2c769efdbebcf
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 |
GET /style.css HTTP/1.1
Host: bjjnnnnnnj.bjjjl.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjjnnnnnnj.bjjjl.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 04:41:42 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V6xsAVDpJFluD0dNjMTMjDpHST5gpJI0ZYPY3xv3OpIYJMeUqOc0atRbMxT5bWBHZbPZtO1Dkz3QzSvKZjGsUJyt2RfJRwJXzbmYgH1gYbac91IGmVgLpYC89nOGjXRoyohG2Sc7cBI8v2%2BLWm8w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a3e6e8faf3b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bjjnnnnnnj.bjjjl.workers.dev/favicon.ico | 172.67.169.22 | 200 OK | 9.9 kB |
URL GET HTTP/3bjjnnnnnnj.bjjjl.workers.dev/favicon.ico IP172.67.169.22:443
Requested byhttps://bjjnnnnnnj.bjjjl.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectbjjjl.workers.dev FingerprintF0:B0:F7:69:4A:75:68:E9:90:04:D7:27:A9:B6:2F:E8:47:14:87:A4 ValiditySat, 16 Mar 2024 04:15:28 GMT - Fri, 14 Jun 2024 04:15:27 GMT
File typeHTML document, ASCII text, with very long lines (9865), with no line terminators Hash09dddc7eeb784b9060d271bfb3cfbdab 2306b949da34462afbfda518ad941c32bd972e39 f85f64243337e69c6745d9349b1d582129a0e05b93f11756e40b1fa087b22595
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 |
GET /favicon.ico HTTP/1.1
Host: bjjnnnnnnj.bjjjl.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjjnnnnnnj.bjjjl.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 04:41:42 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gZePNNDqAGtvJ13mybVkPRwGMFiKupeNenthJ0UEOWnl63DcO%2FgGzYbK86FV3I2EaZmZxDdBPyhtPKFHYaArJPpz78w0Me0WoH2%2FG3N8AGB8hoi5WgKiywkfXUF9Op%2F6USNHoBXmkq69KU7jCLX%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a3e6ea3b74b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|