| cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.1/css/all.min.css | 104.17.24.14 | 200 OK | 10 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.1/css/all.min.css IP104.17.24.14:443
Requested byhttps://worker-autumn-math-onlineforum.bdocare.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (59158) Hashb227b1617a1763c8bc056772f05482b4 c508528feb9fd540454f838653cd4863b290df2e af1e6edc875a382b338bb25bd7c5c3f474a7f1b36212002a5896dd06f2186325
GET /ajax/libs/font-awesome/5.15.1/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://worker-autumn-math-onlineforum.bdocare.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:59:41 GMT
content-type: text/css; charset=utf-8
content-length: 10491
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f7b5b5f-e7d0"
last-modified: Mon, 05 Oct 2020 17:43:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 576573
expires: Mon, 07 Apr 2025 15:59:41 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g%2F5lNCOl1UgUp3mHhgDXqgWPOg5ow5ru30WB11lp11%2FQqRJKRFkuNktcKwkzMDWAp5wpzR3RRENzeSS7RbG8W2ua2SOcCLaMRbg1XuZ%2F9BcfjjkLyt9iius6Uu%2FCCD7jsSxdg0GJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875d9fab0d77930e-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| content.powerapps.com/resource/powerappsportal/dist/preform.bundle-ed52eff176.css | 13.107.246.67 | 200 OK | 16 kB |
URL GET HTTP/2content.powerapps.com/resource/powerappsportal/dist/preform.bundle-ed52eff176.css IP13.107.246.67:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://worker-autumn-math-onlineforum.bdocare.workers.dev/ CertificateIssuerMicrosoft Corporation Subjectcontent.powerapps.com Fingerprint27:39:07:EE:F6:22:21:2A:2E:DC:A1:E3:57:DA:6B:5D:5C:1A:38:A2 ValidityWed, 31 Jan 2024 12:31:53 GMT - Sat, 25 Jan 2025 12:31:53 GMT
File typeASCII text, with very long lines (64632), with CRLF line terminators Hashed52eff1768b73e5b94343ef482c7065 db924aa33531181ac6f676a63710e4b891e0e062 7a8ca9343fc9beced71378ec2104a721f3b59eefca694da3c75c47f24ba50984
GET /resource/powerappsportal/dist/preform.bundle-ed52eff176.css HTTP/1.1
Host: content.powerapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://worker-autumn-math-onlineforum.bdocare.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:59:41 GMT
content-type: text/css
content-length: 16433
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-ms-islandgateway: GA000006G
x-ms-static-content: ZE000000C
timing-allow-origin: *
x-servicefabric: NoRetry
x-ms-service-request-id: 6316abb3-c927-40f5-a407-711bdda4867c
x-ms-correlation-id: 939545bd-efdc-46b2-9e95-15e9a253763d
x-ms-activity-vector: 00.01.00
server-timing: x-ms-igw-upstream-headers;dur=340.7,x-ms-igw-req-overhead;dur=0.2
x-content-type-options: nosniff
x-azure-ref: 20240417T155941Z-17f9dd4c48bt4v25ygc2qn5xds00000000q000000000et4y
x-cache: TCP_HIT
x-fd-int-roxy-purgeid: 67510084
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| content.powerapps.com/resource/powerappsportal/dist/pwa-style.bundle-2739c60227.css | 13.107.246.67 | 200 OK | 193 B |
URL GET HTTP/2content.powerapps.com/resource/powerappsportal/dist/pwa-style.bundle-2739c60227.css IP13.107.246.67:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://worker-autumn-math-onlineforum.bdocare.workers.dev/ CertificateIssuerMicrosoft Corporation Subjectcontent.powerapps.com Fingerprint27:39:07:EE:F6:22:21:2A:2E:DC:A1:E3:57:DA:6B:5D:5C:1A:38:A2 ValidityWed, 31 Jan 2024 12:31:53 GMT - Sat, 25 Jan 2025 12:31:53 GMT
File typeASCII text, with very long lines (540), with no line terminators Hash2739c60227f87d19f5c784bffb5991f8 42dbac51553d7778a176e710d3ce1009884de167 974fecbebcf2f295348c3631fe069966eab4b4b57cd4fcbe15fb70d0acab47c6
GET /resource/powerappsportal/dist/pwa-style.bundle-2739c60227.css HTTP/1.1
Host: content.powerapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://worker-autumn-math-onlineforum.bdocare.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:59:41 GMT
content-type: text/css
content-length: 193
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-ms-islandgateway: GA000006E
x-ms-static-content: pi0000002
timing-allow-origin: *
x-servicefabric: NoRetry
x-ms-service-request-id: 0babf45a-0b77-4247-a5d1-c3dbe49745c9
x-ms-correlation-id: b420c3f6-1aeb-48ed-8d04-4aa27938da5d
x-ms-activity-vector: 00.01.00
server-timing: x-ms-igw-upstream-headers;dur=356.3,x-ms-igw-req-overhead;dur=0.2
x-content-type-options: nosniff
x-azure-ref: 20240417T155941Z-17f9dd4c48bt4v25ygc2qn5xds00000000q000000000et4z
x-fd-int-roxy-purgeid: 67510084
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v7x6s5a.com/bdo-logo.png | 172.207.210.201 | 200 OK | 17 kB |
IP172.207.210.201:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://worker-autumn-math-onlineforum.bdocare.workers.dev/ CertificateIssuerLet's Encrypt Subjectcpcalendars.v7x6s5a.com Fingerprint6C:E7:05:F4:DF:E0:90:B6:30:62:4B:DB:ED:F9:20:88:18:23:F5:3D ValidityThu, 11 Apr 2024 12:19:40 GMT - Wed, 10 Jul 2024 12:19:39 GMT
File typePNG image data, 1181 x 410, 8-bit/color RGBA, non-interlaced Hash0e2068066103629fc8892148f5131c50 a9d312a06e8033f84cff2255c7e6f9e88f2c9597 5c6731b032fabee6090d6ac9e6ba8c3533d074c03b21f2f09064b979d1331025
GET /bdo-logo.png HTTP/1.1
Host: v7x6s5a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://worker-autumn-math-onlineforum.bdocare.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 15:59:41 GMT
Server: Apache
Last-Modified: Sat, 13 Apr 2024 14:39:49 GMT
Accept-Ranges: bytes
Content-Length: 17244
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| v7x6s5a.com/favicon.ico | 172.207.210.201 | 200 OK | 9.7 kB |
IP172.207.210.201:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://worker-autumn-math-onlineforum.bdocare.workers.dev/ CertificateIssuerLet's Encrypt Subjectcpcalendars.v7x6s5a.com Fingerprint6C:E7:05:F4:DF:E0:90:B6:30:62:4B:DB:ED:F9:20:88:18:23:F5:3D ValidityThu, 11 Apr 2024 12:19:40 GMT - Wed, 10 Jul 2024 12:19:39 GMT
File typeMS Windows icon resource - 1 icon, 48x48, 32 bits/pixel Hashdf6c308d76b08bc7a05617774be0f26f ca447fd18e378b08417886c95015a6660e00da9c b2230868139f53f2d58fa08dce9f75fcb3b00f33d8a06de2e194e501142dafb7
GET /favicon.ico HTTP/1.1
Host: v7x6s5a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://worker-autumn-math-onlineforum.bdocare.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 15:59:42 GMT
Server: Apache
Last-Modified: Sat, 13 Apr 2024 14:39:36 GMT
Accept-Ranges: bytes
Content-Length: 9662
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/x-icon
|
|
| worker-autumn-math-onlineforum.bdocare.workers.dev/ | 104.21.83.151 | 200 OK | 15 kB |
URL User Request GET HTTP/2worker-autumn-math-onlineforum.bdocare.workers.dev/ IP104.21.83.151:443
CertificateIssuerGoogle Trust Services LLC Subjectbdocare.workers.dev FingerprintBA:55:15:9D:B4:F1:35:F0:0B:5F:B7:7B:6F:8D:F0:F0:95:16:52:28 ValiditySun, 24 Mar 2024 19:07:32 GMT - Sat, 22 Jun 2024 19:07:31 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (13180) Hash43ba558c2bdc7a5eb02f03b2fa5158e1 2618d80de4ff8f72014727a5a362181146f3aedc 056c0d5de81d45242334302ce4d4e046ad678ffff41ed84f17ab80e654b42afc
Analyzer | Verdict | Alert | OpenPhish | phishing | BDO Unibank |
GET / HTTP/1.1
Host: worker-autumn-math-onlineforum.bdocare.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:59:40 GMT
content-type: text/html
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7KSnccflP6c5wVSZMB%2F4Hy39bGDB%2FjJh4Yo9RN2osfvKQOmDXpuYm61YNdTCPxmpDyJj8%2BmbV%2B8CpqMkKlm2v4zocy2Ulv4Es3uRQpy8SMCg8mila%2BAS9uOoCGYiktE1ViEk4ciZC%2FaJFyX%2BEVXrw1eL6fgof4y%2BF3keBtCrBm3swg%2FmdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d9fa858ce92d9-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| worker-autumn-math-onlineforum.bdocare.workers.dev/assets/close.png | 104.21.83.151 | 200 OK | 25 kB |
URL GET HTTP/3worker-autumn-math-onlineforum.bdocare.workers.dev/assets/close.png IP104.21.83.151:443
Requested byhttps://worker-autumn-math-onlineforum.bdocare.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectbdocare.workers.dev FingerprintBA:55:15:9D:B4:F1:35:F0:0B:5F:B7:7B:6F:8D:F0:F0:95:16:52:28 ValiditySun, 24 Mar 2024 19:07:32 GMT - Sat, 22 Jun 2024 19:07:31 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (13180) Hash43ba558c2bdc7a5eb02f03b2fa5158e1 2618d80de4ff8f72014727a5a362181146f3aedc 056c0d5de81d45242334302ce4d4e046ad678ffff41ed84f17ab80e654b42afc
Analyzer | Verdict | Alert | OpenPhish | phishing | BDO Unibank |
GET /assets/close.png HTTP/1.1
Host: worker-autumn-math-onlineforum.bdocare.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://worker-autumn-math-onlineforum.bdocare.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:59:41 GMT
content-type: text/html
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7hetErg7fOIknk06bsiXTRwZj9H4pfVnG1oJFd8NvFhaLvUcrNOjmaGFMOFg5JWGYwQIZa2eiWGX6lbCbDo33rg46feFO4QF3tCmvVQiynHod4W5mntfHc6Nek8NtYk5H%2FWVDCo6T9k446YFP89H2k%2FDnT550DkkGevxsm7BQYgrFVoNvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d9fab0ed11d22-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| raw.githack.com/Dashblack69/configuresme/main/login.css | 104.21.234.230 | 200 OK | 1.4 MB |
URL GET HTTP/2raw.githack.com/Dashblack69/configuresme/main/login.css IP104.21.234.230:443
Requested byhttps://worker-autumn-math-onlineforum.bdocare.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
Size1.4 MB (1397618 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Dashblack69/configuresme/main/login.css HTTP/1.1
Host: raw.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://worker-autumn-math-onlineforum.bdocare.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:59:41 GMT
content-type: text/css; charset=utf-8
etag: W/"e393469f2eecef9250922f7165686b0a1e3112a88e13ab8d2864b9383461daf6"
x-github-request-id: 445E:2B2B57:2D8112:2F51ED:661EA2C9
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713283785.469320,VS0,VE295
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: b6e29613121b4bafe2bd796e8834432ad05d1669
source-age: 0
cache-control: max-age=60, public
x-robots-tag: none
access-control-allow-origin: *
x-githack-cache-status: HIT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vCFHAnxqp%2BGqJItG0qEGkyLNxopdMX%2F1AcWoG8i9Wd46Jlsiwx92bvuAPfKHWhZypOQkF6mAIu8i10N20oB4S8qTI5Lo3uLIkE7ApbJT7dlXgAd%2F4tRCyLoAn39O%2FNzQWls%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d9fab99c99545-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|