| cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js | 104.17.25.14 | 200 OK | 6.2 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP104.17.25.14:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (19015) Hash70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home-bold-office-07eb.sebidoy177.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 05:12:35 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2948439
expires: Wed, 09 Apr 2025 05:12:35 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lrt8fdEUTANHKpjzwGloJ%2FBOF4PK8UHF9DpSD81J6mNymSaFOTZWk6lVuZJrCkj1MUbwvYQ%2BgJTTFn%2BCDZvVU9P4s1cwHQYyAjucGh6uPxTvm1UN0sOZf%2F%2BKd4wckEZAQtKjxVaD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876a6684ed72569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.3.1.js | 151.101.130.137 | 200 OK | 80 kB |
URL GET HTTP/2code.jquery.com/jquery-3.3.1.js IP151.101.130.137:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash6a07da9fae934baf3f749e876bbfdd96 46a436eba01c79acdb225757ed80bf54bad6416b d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad
GET /jquery-3.3.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home-bold-office-07eb.sebidoy177.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-42587"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 19 Apr 2024 05:12:35 GMT
age: 18702905
x-served-by: cache-lga21980-LGA, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 99, 26188
x-timer: S1713503555.374282,VS0,VE0
vary: Accept-Encoding
content-length: 80268
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.2.1.slim.min.js | 151.101.130.137 | 200 OK | 24 kB |
URL GET HTTP/2code.jquery.com/jquery-3.2.1.slim.min.js IP151.101.130.137:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32012) Hash5f48fc77cac90c4778fa24ec9c57f37d 9e89d1515bc4c371b86f4cb1002fd8e377c1829f 9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home-bold-office-07eb.sebidoy177.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-10fdd"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 19 Apr 2024 05:12:35 GMT
age: 973688
x-served-by: cache-lga21963-LGA, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 40, 95652
x-timer: S1713503555.388649,VS0,VE0
vary: Accept-Encoding
content-length: 23856
X-Firefox-Spdy: h2
|
|
| i.ibb.co/YyJg0Bd/microsoft-logo.png | 162.19.58.156 | 200 OK | 20 kB |
URL GET HTTP/2i.ibb.co/YyJg0Bd/microsoft-logo.png IP162.19.58.156:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62 ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hash3f1c61b2f11cbe18dfc40d485d21914e 6c29cbcf3d575809b971b28660d2893ff7569b89 d8b28d21ce5b3c837d7349aa071ff524fec50edae9e80768a514b9bb96d7696c
GET /YyJg0Bd/microsoft-logo.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 05:12:35 GMT
content-type: image/png
content-length: 19808
last-modified: Thu, 01 Jun 2023 06:58:09 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.1.1.min.js | 151.101.130.137 | 200 OK | 30 kB |
URL GET HTTP/2code.jquery.com/jquery-3.1.1.min.js IP151.101.130.137:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32030) Hashe071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf
GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-152b5"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 19 Apr 2024 05:12:35 GMT
age: 18702956
x-served-by: cache-lga21947-LGA, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 118, 19014
x-timer: S1713503555.403346,VS0,VE0
vary: Accept-Encoding
content-length: 30070
X-Firefox-Spdy: h2
|
|
| i.imgur.com/xrWLEV8.png | 151.101.244.193 | 200 OK | 7.9 kB |
IP151.101.244.193:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerSectigo Limited Subject*.imgur.com Fingerprint39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42 ValidityThu, 15 Feb 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typePNG image data, 272 x 354, 8-bit/color RGBA, non-interlaced Hashc0e51183d28d89c07586743b29385ebe 84319c4300de3e13a10dcccfb1939cb22855c175 7a5138c73e8f29f66e6866304fa5c579caaa1a0945c436edb13f4d7080ca0b13
GET /xrWLEV8.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 14 Sep 2021 06:21:57 GMT
etag: "c0e51183d28d89c07586743b29385ebe"
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: AH2DAiWu656lvnfI8FmaTfDYHBNxXBVmwiJOLQtUhPrCcQJrtzZEoQ==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 1032305
date: Fri, 19 Apr 2024 05:12:35 GMT
x-served-by: cache-iad-kcgs7200169-IAD, cache-hel1410025-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 260, 0
x-timer: S1713503556.503968,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 7900
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 216.58.211.10 | 200 OK | 30 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP216.58.211.10:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 13:58:13 GMT
expires: Sun, 13 Apr 2025 13:58:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 486862
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 15 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (48664) Hash14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home-bold-office-07eb.sebidoy177.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 05:12:35 GMT
content-type: application/javascript; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/18/2024 12:46:36
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: d2b1d1f98e77164790422131c55f241a
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 876a6684eb5456c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.7.0/webfonts/fa-solid-900.woff2 | 172.67.142.245 | 200 OK | 74 kB |
URL GET HTTP/2use.fontawesome.com/releases/v5.7.0/webfonts/fa-solid-900.woff2 IP172.67.142.245:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 74316, version 329.30932 Hash52134b924fd61958f88323845deffc64 cfccdf2c8be593220ea949989a5abc0b380ea2ac 658cf43db24e9d4c57890e958aa74656a13139754de24f19e706f0a355279e4d
GET /releases/v5.7.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://home-bold-office-07eb.sebidoy177.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 05:12:35 GMT
content-type: font/woff2
content-length: 74316
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "52134b924fd61958f88323845deffc64"
last-modified: Fri, 22 Sep 2023 01:45:49 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 17710
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RH9hj%2BUoG%2FlB1Gb7zIgu0qPn80ngrhzMnYDJ6O2haNTV%2BTKB7XnaUl5Z5NdYBbHe%2FXWpwzxtVySF6FB6EX7waqXqxPitLVwYPSoVUB1SUqbIq1FFaB3k0ZOgUFQbgpG66ZP2pzOl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876a668778945694-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.7.0/css/all.css | 172.67.142.245 | 200 OK | 17 kB |
URL GET HTTP/2use.fontawesome.com/releases/v5.7.0/css/all.css IP172.67.142.245:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeASCII text, with very long lines (54456) Hash251d28bd755f5269a4531df8a81d5664 c0f035b41b23c6e8fab735f618aa3cff0897b4f9 afdc6bf2de981ffd7d370b76f44e7580572f197efbe214b9cfa4005d189d8eae
GET /releases/v5.7.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home-bold-office-07eb.sebidoy177.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 05:12:35 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"251d28bd755f5269a4531df8a81d5664"
last-modified: Fri, 22 Sep 2023 01:45:47 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 17711
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w1hquqGT6e%2BFcyjpQPV2%2Bnths%2FpY%2BJX0a5zFbHbDZ3zWCa16QsdFk0bmfiPKKxUhYyNo3nwIbHcPymHVOZB9WIdnoFjqnQa%2Bzjm5eqM%2FYwHEpFMU9Toe1VDDcRzr%2BgIDxxzSVB5l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876a66851e065694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 216.58.211.10 | 200 OK | 30 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP216.58.211.10:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 13:58:13 GMT
expires: Sun, 13 Apr 2025 13:58:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 486862
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/s2/favicons?domain=office.com | 142.250.74.100 | 301 Moved Permanently | 330 B |
URL GET HTTP/2www.google.com/s2/favicons?domain=office.com IP142.250.74.100:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hashee854e9a848df0e10b0fd12c7fb5cca9 c3dfc6e6a7cd1417fb562029ae51c6b7cf574d49 f62fe9b8069cce870cba77fde996af909593b346d66f52a58f7364f24e54f042
GET /s2/favicons?domain=office.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 19 Apr 2024 05:12:35 GMT
expires: Fri, 19 Apr 2024 05:42:35 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 330
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/s2/favicons?domain=office.com | 142.250.74.100 | 301 Moved Permanently | 330 B |
URL GET HTTP/2www.google.com/s2/favicons?domain=office.com IP142.250.74.100:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hashee854e9a848df0e10b0fd12c7fb5cca9 c3dfc6e6a7cd1417fb562029ae51c6b7cf574d49 f62fe9b8069cce870cba77fde996af909593b346d66f52a58f7364f24e54f042
GET /s2/favicons?domain=office.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16
x-content-type-options: nosniff
server: sffe
content-length: 330
x-xss-protection: 0
date: Fri, 19 Apr 2024 05:12:35 GMT
expires: Fri, 19 Apr 2024 05:42:35 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 | 142.250.74.132 | | 727 B |
URL t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 IP142.250.74.132:0
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash1fd663deefed65deba553da8649f1b12 40405f8f2581cb25c9ef461f9edf7b7e2747260b 405595c0af9dba9c99f9962f1b92bc3ef89d49e3343568d35438fa8202e1dd76
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://res.cdn.office.net/officehub/images/content/images/favicon_m365-31d62b976c.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 727
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 04:39:49 GMT
expires: Thu, 25 Apr 2024 04:39:49 GMT
cache-control: public, max-age=604800
last-modified: Tue, 23 Apr 2024 21:47:53 GMT
content-type: image/png
age: 88367
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 | 142.250.74.132 | | 727 B |
URL t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 IP142.250.74.132:0
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash1fd663deefed65deba553da8649f1b12 40405f8f2581cb25c9ef461f9edf7b7e2747260b 405595c0af9dba9c99f9962f1b92bc3ef89d49e3343568d35438fa8202e1dd76
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://res.cdn.office.net/officehub/images/content/images/favicon_m365-31d62b976c.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 727
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 04:39:49 GMT
expires: Thu, 25 Apr 2024 04:39:49 GMT
cache-control: public, max-age=604800
last-modified: Tue, 23 Apr 2024 21:47:53 GMT
content-type: image/png
age: 88367
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| home-bold-office-07eb.sebidoy177.workers.dev/cdn-cgi/challenge-platform/scripts/invisible.js | 172.67.160.231 | 404 Not Found | 20 kB |
URL GET HTTP/3home-bold-office-07eb.sebidoy177.workers.dev/cdn-cgi/challenge-platform/scripts/invisible.js IP172.67.160.231:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectsebidoy177.workers.dev FingerprintDE:43:2F:C0:32:09:85:87:88:80:27:E1:07:95:F6:12:B5:B3:4F:2C ValidityThu, 14 Mar 2024 18:43:39 GMT - Wed, 12 Jun 2024 18:43:38 GMT
File typeHTML document, ASCII text, with very long lines (13068) Hash9b16cb59710fd34b0f3c8865c942b56d 6a123d880ba89c787a3de8a598979fe59d7a4378 fdb257504c764d8e98827091b47e3735f5d01c1bfad23b940b043c50a228c50b
Analyzer | Verdict | Alert | OpenPhish | phishing | Office365 | PhishTank | phishing | Microsoft |
GET /cdn-cgi/challenge-platform/scripts/invisible.js HTTP/1.1
Host: home-bold-office-07eb.sebidoy177.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 19 Apr 2024 05:12:35 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cjqdCsmGsTM6x0LdjcVxOQO8afOW%2FUm8L2kZtoGPvB5uO5XP8JttwMaBur3k1RpGU7dnLc23S1xSuVj%2F%2FfzPNhg5tNqxtAyvgV869Ei20IJVQA3T%2Fwup0vMg61j26THcFOwPQv2q3lgbB5uREpEzrsIMizYtztBEFlstw5IQMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a66887b1756c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css | 104.18.11.207 | 200 OK | 145 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css IP104.18.11.207:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (65325) Size145 kB (144877 bytes) Hash450fc463b8b1a349df717056fbb3e078 895125a4522a3b10ee7ada06ee6503587cbf95c5 2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home-bold-office-07eb.sebidoy177.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 05:12:35 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/18/2024 12:51:41
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 527006ea68eaef2d23817d7b9a731dde
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 876a6684db3f56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| i.ibb.co/mBsKKZ3/b2-download-file-by-id.jpg | 162.19.58.156 | 200 OK | 4.9 kB |
URL GET HTTP/2i.ibb.co/mBsKKZ3/b2-download-file-by-id.jpg IP162.19.58.156:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62 ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 180x180, components 3 Hash27e4de603ebafb973fc306f7862d8dd4 b29c862f2fc7b0879a2eb6827757b4781f0b2410 2b2b5619c85119721bf52b0dfc1e45bffebcdb42c271da33fdfba28cd2de4d32
GET /mBsKKZ3/b2-download-file-by-id.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 05:12:35 GMT
content-type: image/jpeg
content-length: 4859
last-modified: Thu, 01 Jun 2023 06:56:54 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 | 142.250.74.132 | 200 OK | 727 B |
URL GET HTTP/2t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 IP142.250.74.132:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash1fd663deefed65deba553da8649f1b12 40405f8f2581cb25c9ef461f9edf7b7e2747260b 405595c0af9dba9c99f9962f1b92bc3ef89d49e3343568d35438fa8202e1dd76
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://res.cdn.office.net/officehub/images/content/images/favicon_m365-31d62b976c.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 727
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 04:39:49 GMT
expires: Thu, 25 Apr 2024 04:39:49 GMT
cache-control: public, max-age=604800
last-modified: Tue, 23 Apr 2024 21:47:53 GMT
content-type: image/png
age: 88367
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| home-bold-office-07eb.sebidoy177.workers.dev/ | 172.67.160.231 | 200 OK | 145 kB |
URL User Request GET HTTP/2home-bold-office-07eb.sebidoy177.workers.dev/ IP172.67.160.231:443
CertificateIssuerGoogle Trust Services LLC Subjectsebidoy177.workers.dev FingerprintDE:43:2F:C0:32:09:85:87:88:80:27:E1:07:95:F6:12:B5:B3:4F:2C ValidityThu, 14 Mar 2024 18:43:39 GMT - Wed, 12 Jun 2024 18:43:38 GMT
File typeHTML document, ASCII text, with very long lines (65520) Size145 kB (145001 bytes) Hash160f2971074d66e27b295631cc7f24a0 6331cb6b34b8193c5b8b8aa04e4980a6da05e689 1f23eb3a215fcf2ac6e2dcc87068fe989c03abf0c7e378cab0d7938a73e0b415
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Suspicious Javascript code | OpenPhish | phishing | Office365 | PhishTank | phishing | Microsoft |
GET / HTTP/1.1
Host: home-bold-office-07eb.sebidoy177.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 05:12:35 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B4bExgxzhD0Agp62htNgl9oC%2BhmLHa4WvDK0mLlRiyv5dkWOlt4LfOXgV4CilqG8H6iovDX4jUBvDTVJ%2FwrPONebWWRSOI3P0E6gyOCE09X4XmcQ6rQ4fSILDULLCptX73Waxyfmxb7UoqycxNKu318nr%2FroGn0Cj2LHKjUTOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a6682f8e1b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Archivo+Narrow&display=swap | 142.250.74.106 | 200 OK | 1.3 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Archivo+Narrow&display=swap IP142.250.74.106:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (1320), with no line terminators Hashe36325252bfeb23fa9155394b983a4c9 3a239d2a0c431d689f4c90af0be0b93b139b927f bdcdb817ce32418726c3a3f01dc27daa4a4c4b77bb30e5acebda35b2c967f31d
GET /css?family=Archivo+Narrow&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 05:12:35 GMT
date: Fri, 19 Apr 2024 05:12:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 | 142.250.74.132 | 200 OK | 727 B |
URL GET HTTP/2t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 IP142.250.74.132:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash1fd663deefed65deba553da8649f1b12 40405f8f2581cb25c9ef461f9edf7b7e2747260b 405595c0af9dba9c99f9962f1b92bc3ef89d49e3343568d35438fa8202e1dd76
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://office.com&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://res.cdn.office.net/officehub/images/content/images/favicon_m365-31d62b976c.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 727
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 04:39:49 GMT
expires: Thu, 25 Apr 2024 04:39:49 GMT
cache-control: public, max-age=604800
last-modified: Tue, 23 Apr 2024 21:47:53 GMT
content-type: image/png
age: 88367
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| home-bold-office-07eb.sebidoy177.workers.dev/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 172.67.160.231 | 200 OK | 1.2 kB |
URL GET HTTP/3home-bold-office-07eb.sebidoy177.workers.dev/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP172.67.160.231:443
Requested byhttps://home-bold-office-07eb.sebidoy177.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectsebidoy177.workers.dev FingerprintDE:43:2F:C0:32:09:85:87:88:80:27:E1:07:95:F6:12:B5:B3:4F:2C ValidityThu, 14 Mar 2024 18:43:39 GMT - Wed, 12 Jun 2024 18:43:38 GMT
File typeHTML document, ASCII text, with very long lines (1271), with no line terminators Hash40d981045a7516cdadd00e8dccc9c58d 8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3 71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
Analyzer | Verdict | Alert | OpenPhish | phishing | Office365 | PhishTank | phishing | Microsoft |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: home-bold-office-07eb.sebidoy177.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home-bold-office-07eb.sebidoy177.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 05:12:35 GMT
content-type: application/javascript
last-modified: Tue, 16 Apr 2024 15:45:04 GMT
etag: W/"661e9d00-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AKcLq8Lvu%2B5ck3JV1uLienFby1sacbenQpfQDxSOlvVoTIqqgFbBZDJ2PXPWXRBQMgvoCKyBItKTW1SB5ez9a9UZw7b%2Fc4I0eIzCxvmo8ZdoFM%2F6h2UKnzQeeAA1%2Fgwg6mhv7fxLzwZbzJrhiYv6i%2BkswjUP5H2jM2fqQfQ9ug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a6684988056c7-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 21 Apr 2024 05:12:35 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|