| url.us.m.mimecastprotect.com/s/ax2YCqxZ4PI8rDNVMFZ5MX_?domain=aka.ms | 207.211.31.106 | 307 Temporary Redirect | 0 B |
URL User Request GET HTTP/1.1url.us.m.mimecastprotect.com/s/ax2YCqxZ4PI8rDNVMFZ5MX_?domain=aka.ms IP207.211.31.106:443 ASN#14135 NAVISITE-EAST-2
CertificateIssuerDigiCert Inc Subjecturl.uk.m.mimecastprotect.com Fingerprint9C:13:8A:77:0B:87:B2:46:CB:92:40:47:21:EE:1F:A5:7E:80:30:9D ValidityWed, 18 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/ax2YCqxZ4PI8rDNVMFZ5MX_?domain=aka.ms HTTP/1.1
Host: url.us.m.mimecastprotect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Date: Fri, 10 May 2024 14:05:01 GMT
Content-Length: 0
Connection: keep-alive
Location: https://url.us.m.mimecastprotect.com/r/owhfI2bVNmN4s-hN_wqtjZN8-y3ii5xnSmU4Fx00to0kh6Wb_QO28oWB_QRuwpnvmeEB8JyFbTMNKPfm3ReKAxFMna1fq1TNcA-bqmvy1-W_JaiDkgKWtF4yHOj_0NK2e38MB7PJx39W1DejIwIHoHdI1oJM_21GVuSloBRN9AcoJ7Ui3Ruol_iSFwdaz_Q2_oqDADk39kpv3muGpslvM8V6KqL2NCSF3JHxAascLsWchGJ9wZb-JI4rKki1GL61ZzlB4Fq6FeHXgLrVhJ-7cdQXKUrKYKPTFEVsuIG8x4DwuOn9s3isMLfXRW0k0QbDeJSnGdMH8X0L0jURGnPyUJkKZnE_CnI5mvlN2HBzkAUkVcv2jBIHRpNQRkq0UvtSOzwhcjI7Tm39oQqxcq_0p6rAxEiRCJUmOKLh95JbZ6_fFsBicY0Z5nP_4WVdz5_hGUeD6PjzDRrr0jZOGkFpOnbV5pR5D7DSeEC408Ukuw_VFZyJlsmirX-Pca6_yNpLmhswR4QL_BnfpZipzo1_pG6RWY8Pi2MizZiBYjUrsf1Vqf19M3pts5j0K_5_Nz49G1I4-V1dOuQAjMzaanxHe-88Dla2BEGoQdH-z6zhgEiP1Bd4ugjTUyg3-TWAQzjLGkoF1DMS3ramKTIV8ADS7fxCXL3edIQgb58fwr0GyANyqt7HQFQEG4PV0sOxabDfL6ivK2i1VQ_1KGJmN63k5ISG2ma6SvhQqQ1kF0ypsneaMiPJpPAj2PK7ta-SZlQUSBFJj3fNaljGt61ncW7UzI50PKAaMa6XrxyapkctTAIyOx4XWcaCyDpJSQyopHGmAQ09mNO_HIK2tCjgjceUgbGT9AkDTH1Ni4503TwqqcoMwTPAAvMlVeomZgSBB2kuHi9TJbzrf-CbjC8EHA3UfB_lHuxnCmZXU1wKZf7sucqANTCxorzEmi3SNWC6YhHsbTS7RURTJTanPZFtYAxRO-Y-Dx2FpacYTdUeYN3PCy2iI1IZh-PDytCzDB9ZiuQQ1fhX-WxL80NMA_PkLc04KI_QsQoGbX9_-MT3YkMtiZaqSkORvu5ZjmAfmHnVD21Q1hGZQcqfKdW3yJQn_bRqLCCEoQOBpLC5MQ7MlETbNlo3brdwuvXQmjfIBjvhf39SRtKA-7GkQe68XxULVceq3fFfjcy6b7Men52ZRDnrr8-_jOjMN-0UQMWDbNiWcGhmka9l3bwrYgSozbJBydRxs0jSQCrVP5QkNEbyaGIjXZ3TfQ01Zln3po6wTmqY6Tp56WSku6PrnWr_fmrg6F0hC-UusM1rOmi5TIYewET8Ly9uFA97en2jDctqCNk28RYUzHS-j8BLBON7WS-dZAAXSVM44GrED8E2ue5jmWfMRW3CrI6PxIGCwb7vuWpO1b0S8B-Ul3ZyyYE1_z-AyXzgmXqqY5tJ1czkt1ynVWuxzTRcnFQVZVPRmcHwVlMeJ4C1kptmxV9ngAjl4--HHfzeTcO9CZMFHMdf6MhiFoCTNvo4B4PW8obTlqV9R7uc2tzYcy90ntC-OEETYRflz5AF_hOgYTIgnCz1X7N-XM9afVUtKbB-OGqNKanO3t-Hj2vY8VumaMMEOQ51vPM2ckNwna9woO05-2Q0_Wv_2bHAv0YiiTW9cNBmIunwRFX3vlPvF0lK3hTdSzVMrvUyAMH3BkciCJ4j5BFdcjCm8-5O6oyVovJZfyioU3XeH4I1uzpqUz5IZmZ0OPqIh3xIquRtxCx_8f7_aKjx-uhwDab3mhi_rWG5teWxiPfVd9DddzRBXYp7sZq4FrgvcyYpGWeKrA3L9DW510FOltdp04DxAwQRelU4UChd9auS0ZkWWtZZ0YcmFMsrNuKZKZoEFlA7pkNUdFY8wXuPdFO_yRVWoLIAmT84NrxSbFGRYwIJCyM61F-VXLps9L2O0_uAkybTJoIfnQ-umJMfoFgUVwU8RnnQo7uL7Z_rGNzbq7d8kqBisE3_QzqDEPVhbLA-RzgZqQ
Cache-control: no-store
Pragma: no-cache
X-Robots-Tag: noindex, nofollow
|
|
| url.us.m.mimecastprotect.com/r/owhfI2bVNmN4s-hN_wqtjZN8-y3ii5xnSmU4Fx00to0kh6Wb_QO28oWB_QRuwpnvmeEB8JyFbTMNKPfm3ReKAxFMna1fq1TNcA-bqmvy1-W_JaiDkgKWtF4yHOj_0NK2e38MB7PJx39W1DejIwIHoHdI1oJM_21GVuSloBRN9AcoJ7Ui3Ruol_iSFwdaz_Q2_oqDADk39kpv3muGpslvM8V6KqL2NCSF3JHxAascLsWchGJ9wZb-JI4rKki1GL61ZzlB4Fq6FeHXgLrVhJ-7cdQXKUrKYKPTFEVsuIG8x4DwuOn9s3isMLfXRW0k0QbDeJSnGdMH8X0L0jURGnPyUJkKZnE_CnI5mvlN2HBzkAUkVcv2jBIHRpNQRkq0UvtSOzwhcjI7Tm39oQqxcq_0p6rAxEiRCJUmOKLh95JbZ6_fFsBicY0Z5nP_4WVdz5_hGUeD6PjzDRrr0jZOGkFpOnbV5pR5D7DSeEC408Ukuw_VFZyJlsmirX-Pca6_yNpLmhswR4QL_BnfpZipzo1_pG6RWY8Pi2MizZiBYjUrsf1Vqf19M3pts5j0K_5_Nz49G1I4-V1dOuQAjMzaanxHe-88Dla2BEGoQdH-z6zhgEiP1Bd4ugjTUyg3-TWAQzjLGkoF1DMS3ramKTIV8ADS7fxCXL3edIQgb58fwr0GyANyqt7HQFQEG4PV0sOxabDfL6ivK2i1VQ_1KGJmN63k5ISG2ma6SvhQqQ1kF0ypsneaMiPJpPAj2PK7ta-SZlQUSBFJj3fNaljGt61ncW7UzI50PKAaMa6XrxyapkctTAIyOx4XWcaCyDpJSQyopHGmAQ09mNO_HIK2tCjgjceUgbGT9AkDTH1Ni4503TwqqcoMwTPAAvMlVeomZgSBB2kuHi9TJbzrf-CbjC8EHA3UfB_lHuxnCmZXU1wKZf7sucqANTCxorzEmi3SNWC6YhHsbTS7RURTJTanPZFtYAxRO-Y-Dx2FpacYTdUeYN3PCy2iI1IZh-PDytCzDB9ZiuQQ1fhX-WxL80NMA_PkLc04KI_QsQoGbX9_-MT3YkMtiZaqSkORvu5ZjmAfmHnVD21Q1hGZQcqfKdW3yJQn_bRqLCCEoQOBpLC5MQ7MlETbNlo3brdwuvXQmjfIBjvhf39SRtKA-7GkQe68XxULVceq3fFfjcy6b7Men52ZRDnrr8-_jOjMN-0UQMWDbNiWcGhmka9l3bwrYgSozbJBydRxs0jSQCrVP5QkNEbyaGIjXZ3TfQ01Zln3po6wTmqY6Tp56WSku6PrnWr_fmrg6F0hC-UusM1rOmi5TIYewET8Ly9uFA97en2jDctqCNk28RYUzHS-j8BLBON7WS-dZAAXSVM44GrED8E2ue5jmWfMRW3CrI6PxIGCwb7vuWpO1b0S8B-Ul3ZyyYE1_z-AyXzgmXqqY5tJ1czkt1ynVWuxzTRcnFQVZVPRmcHwVlMeJ4C1kptmxV9ngAjl4--HHfzeTcO9CZMFHMdf6MhiFoCTNvo4B4PW8obTlqV9R7uc2tzYcy90ntC-OEETYRflz5AF_hOgYTIgnCz1X7N-XM9afVUtKbB-OGqNKanO3t-Hj2vY8VumaMMEOQ51vPM2ckNwna9woO05-2Q0_Wv_2bHAv0YiiTW9cNBmIunwRFX3vlPvF0lK3hTdSzVMrvUyAMH3BkciCJ4j5BFdcjCm8-5O6oyVovJZfyioU3XeH4I1uzpqUz5IZmZ0OPqIh3xIquRtxCx_8f7_aKjx-uhwDab3mhi_rWG5teWxiPfVd9DddzRBXYp7sZq4FrgvcyYpGWeKrA3L9DW510FOltdp04DxAwQRelU4UChd9auS0ZkWWtZZ0YcmFMsrNuKZKZoEFlA7pkNUdFY8wXuPdFO_yRVWoLIAmT84NrxSbFGRYwIJCyM61F-VXLps9L2O0_uAkybTJoIfnQ-umJMfoFgUVwU8RnnQo7uL7Z_rGNzbq7d8kqBisE3_QzqDEPVhbLA-RzgZqQ | 207.211.31.106 | 307 Temporary Redirect | 0 B |
URL User Request GET HTTP/1.1url.us.m.mimecastprotect.com/r/owhfI2bVNmN4s-hN_wqtjZN8-y3ii5xnSmU4Fx00to0kh6Wb_QO28oWB_QRuwpnvmeEB8JyFbTMNKPfm3ReKAxFMna1fq1TNcA-bqmvy1-W_JaiDkgKWtF4yHOj_0NK2e38MB7PJx39W1DejIwIHoHdI1oJM_21GVuSloBRN9AcoJ7Ui3Ruol_iSFwdaz_Q2_oqDADk39kpv3muGpslvM8V6KqL2NCSF3JHxAascLsWchGJ9wZb-JI4rKki1GL61ZzlB4Fq6FeHXgLrVhJ-7cdQXKUrKYKPTFEVsuIG8x4DwuOn9s3isMLfXRW0k0QbDeJSnGdMH8X0L0jURGnPyUJkKZnE_CnI5mvlN2HBzkAUkVcv2jBIHRpNQRkq0UvtSOzwhcjI7Tm39oQqxcq_0p6rAxEiRCJUmOKLh95JbZ6_fFsBicY0Z5nP_4WVdz5_hGUeD6PjzDRrr0jZOGkFpOnbV5pR5D7DSeEC408Ukuw_VFZyJlsmirX-Pca6_yNpLmhswR4QL_BnfpZipzo1_pG6RWY8Pi2MizZiBYjUrsf1Vqf19M3pts5j0K_5_Nz49G1I4-V1dOuQAjMzaanxHe-88Dla2BEGoQdH-z6zhgEiP1Bd4ugjTUyg3-TWAQzjLGkoF1DMS3ramKTIV8ADS7fxCXL3edIQgb58fwr0GyANyqt7HQFQEG4PV0sOxabDfL6ivK2i1VQ_1KGJmN63k5ISG2ma6SvhQqQ1kF0ypsneaMiPJpPAj2PK7ta-SZlQUSBFJj3fNaljGt61ncW7UzI50PKAaMa6XrxyapkctTAIyOx4XWcaCyDpJSQyopHGmAQ09mNO_HIK2tCjgjceUgbGT9AkDTH1Ni4503TwqqcoMwTPAAvMlVeomZgSBB2kuHi9TJbzrf-CbjC8EHA3UfB_lHuxnCmZXU1wKZf7sucqANTCxorzEmi3SNWC6YhHsbTS7RURTJTanPZFtYAxRO-Y-Dx2FpacYTdUeYN3PCy2iI1IZh-PDytCzDB9ZiuQQ1fhX-WxL80NMA_PkLc04KI_QsQoGbX9_-MT3YkMtiZaqSkORvu5ZjmAfmHnVD21Q1hGZQcqfKdW3yJQn_bRqLCCEoQOBpLC5MQ7MlETbNlo3brdwuvXQmjfIBjvhf39SRtKA-7GkQe68XxULVceq3fFfjcy6b7Men52ZRDnrr8-_jOjMN-0UQMWDbNiWcGhmka9l3bwrYgSozbJBydRxs0jSQCrVP5QkNEbyaGIjXZ3TfQ01Zln3po6wTmqY6Tp56WSku6PrnWr_fmrg6F0hC-UusM1rOmi5TIYewET8Ly9uFA97en2jDctqCNk28RYUzHS-j8BLBON7WS-dZAAXSVM44GrED8E2ue5jmWfMRW3CrI6PxIGCwb7vuWpO1b0S8B-Ul3ZyyYE1_z-AyXzgmXqqY5tJ1czkt1ynVWuxzTRcnFQVZVPRmcHwVlMeJ4C1kptmxV9ngAjl4--HHfzeTcO9CZMFHMdf6MhiFoCTNvo4B4PW8obTlqV9R7uc2tzYcy90ntC-OEETYRflz5AF_hOgYTIgnCz1X7N-XM9afVUtKbB-OGqNKanO3t-Hj2vY8VumaMMEOQ51vPM2ckNwna9woO05-2Q0_Wv_2bHAv0YiiTW9cNBmIunwRFX3vlPvF0lK3hTdSzVMrvUyAMH3BkciCJ4j5BFdcjCm8-5O6oyVovJZfyioU3XeH4I1uzpqUz5IZmZ0OPqIh3xIquRtxCx_8f7_aKjx-uhwDab3mhi_rWG5teWxiPfVd9DddzRBXYp7sZq4FrgvcyYpGWeKrA3L9DW510FOltdp04DxAwQRelU4UChd9auS0ZkWWtZZ0YcmFMsrNuKZKZoEFlA7pkNUdFY8wXuPdFO_yRVWoLIAmT84NrxSbFGRYwIJCyM61F-VXLps9L2O0_uAkybTJoIfnQ-umJMfoFgUVwU8RnnQo7uL7Z_rGNzbq7d8kqBisE3_QzqDEPVhbLA-RzgZqQ IP207.211.31.106:443 ASN#14135 NAVISITE-EAST-2
CertificateIssuerDigiCert Inc Subjecturl.uk.m.mimecastprotect.com Fingerprint9C:13:8A:77:0B:87:B2:46:CB:92:40:47:21:EE:1F:A5:7E:80:30:9D ValidityWed, 18 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/owhfI2bVNmN4s-hN_wqtjZN8-y3ii5xnSmU4Fx00to0kh6Wb_QO28oWB_QRuwpnvmeEB8JyFbTMNKPfm3ReKAxFMna1fq1TNcA-bqmvy1-W_JaiDkgKWtF4yHOj_0NK2e38MB7PJx39W1DejIwIHoHdI1oJM_21GVuSloBRN9AcoJ7Ui3Ruol_iSFwdaz_Q2_oqDADk39kpv3muGpslvM8V6KqL2NCSF3JHxAascLsWchGJ9wZb-JI4rKki1GL61ZzlB4Fq6FeHXgLrVhJ-7cdQXKUrKYKPTFEVsuIG8x4DwuOn9s3isMLfXRW0k0QbDeJSnGdMH8X0L0jURGnPyUJkKZnE_CnI5mvlN2HBzkAUkVcv2jBIHRpNQRkq0UvtSOzwhcjI7Tm39oQqxcq_0p6rAxEiRCJUmOKLh95JbZ6_fFsBicY0Z5nP_4WVdz5_hGUeD6PjzDRrr0jZOGkFpOnbV5pR5D7DSeEC408Ukuw_VFZyJlsmirX-Pca6_yNpLmhswR4QL_BnfpZipzo1_pG6RWY8Pi2MizZiBYjUrsf1Vqf19M3pts5j0K_5_Nz49G1I4-V1dOuQAjMzaanxHe-88Dla2BEGoQdH-z6zhgEiP1Bd4ugjTUyg3-TWAQzjLGkoF1DMS3ramKTIV8ADS7fxCXL3edIQgb58fwr0GyANyqt7HQFQEG4PV0sOxabDfL6ivK2i1VQ_1KGJmN63k5ISG2ma6SvhQqQ1kF0ypsneaMiPJpPAj2PK7ta-SZlQUSBFJj3fNaljGt61ncW7UzI50PKAaMa6XrxyapkctTAIyOx4XWcaCyDpJSQyopHGmAQ09mNO_HIK2tCjgjceUgbGT9AkDTH1Ni4503TwqqcoMwTPAAvMlVeomZgSBB2kuHi9TJbzrf-CbjC8EHA3UfB_lHuxnCmZXU1wKZf7sucqANTCxorzEmi3SNWC6YhHsbTS7RURTJTanPZFtYAxRO-Y-Dx2FpacYTdUeYN3PCy2iI1IZh-PDytCzDB9ZiuQQ1fhX-WxL80NMA_PkLc04KI_QsQoGbX9_-MT3YkMtiZaqSkORvu5ZjmAfmHnVD21Q1hGZQcqfKdW3yJQn_bRqLCCEoQOBpLC5MQ7MlETbNlo3brdwuvXQmjfIBjvhf39SRtKA-7GkQe68XxULVceq3fFfjcy6b7Men52ZRDnrr8-_jOjMN-0UQMWDbNiWcGhmka9l3bwrYgSozbJBydRxs0jSQCrVP5QkNEbyaGIjXZ3TfQ01Zln3po6wTmqY6Tp56WSku6PrnWr_fmrg6F0hC-UusM1rOmi5TIYewET8Ly9uFA97en2jDctqCNk28RYUzHS-j8BLBON7WS-dZAAXSVM44GrED8E2ue5jmWfMRW3CrI6PxIGCwb7vuWpO1b0S8B-Ul3ZyyYE1_z-AyXzgmXqqY5tJ1czkt1ynVWuxzTRcnFQVZVPRmcHwVlMeJ4C1kptmxV9ngAjl4--HHfzeTcO9CZMFHMdf6MhiFoCTNvo4B4PW8obTlqV9R7uc2tzYcy90ntC-OEETYRflz5AF_hOgYTIgnCz1X7N-XM9afVUtKbB-OGqNKanO3t-Hj2vY8VumaMMEOQ51vPM2ckNwna9woO05-2Q0_Wv_2bHAv0YiiTW9cNBmIunwRFX3vlPvF0lK3hTdSzVMrvUyAMH3BkciCJ4j5BFdcjCm8-5O6oyVovJZfyioU3XeH4I1uzpqUz5IZmZ0OPqIh3xIquRtxCx_8f7_aKjx-uhwDab3mhi_rWG5teWxiPfVd9DddzRBXYp7sZq4FrgvcyYpGWeKrA3L9DW510FOltdp04DxAwQRelU4UChd9auS0ZkWWtZZ0YcmFMsrNuKZKZoEFlA7pkNUdFY8wXuPdFO_yRVWoLIAmT84NrxSbFGRYwIJCyM61F-VXLps9L2O0_uAkybTJoIfnQ-umJMfoFgUVwU8RnnQo7uL7Z_rGNzbq7d8kqBisE3_QzqDEPVhbLA-RzgZqQ HTTP/1.1
Host: url.us.m.mimecastprotect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Date: Fri, 10 May 2024 14:05:02 GMT
Content-Length: 0
Connection: keep-alive
Location: https://aka.ms/o0ukef
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Cache-control: no-store
Pragma: no-cache
X-Robots-Tag: noindex, nofollow
|
|
| | 2.22.34.124 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/1.1IP2.22.34.124:443
CertificateIssuerMicrosoft Corporation Subjectgo.microsoft.com Fingerprint77:01:70:50:0D:52:1B:1E:66:47:DF:09:49:BD:C0:48:06:13:ED:80 ValidityMon, 25 Sep 2023 16:26:11 GMT - Thu, 19 Sep 2024 16:26:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /o0ukef HTTP/1.1
Host: aka.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Server: Kestrel
Location: https://aka.ms/krs?id=-crYd9Lj
Request-Context: appId=cid-v1:26ef1154-5995-4d24-ad78-ef0b04f11587
X-Response-Cache-Status: True
Expires: Fri, 10 May 2024 14:05:02 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 10 May 2024 14:05:02 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
|
|
| | 2.22.34.124 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/1.1IP2.22.34.124:443
CertificateIssuerMicrosoft Corporation Subjectgo.microsoft.com Fingerprint77:01:70:50:0D:52:1B:1E:66:47:DF:09:49:BD:C0:48:06:13:ED:80 ValidityMon, 25 Sep 2023 16:26:11 GMT - Thu, 19 Sep 2024 16:26:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /krs?id=-crYd9Lj HTTP/1.1
Host: aka.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Server: Kestrel
Location: https://krs.microsoft.com/redirect?id=-crYd9Lj
Request-Context: appId=cid-v1:9b037ab9-fa5a-4c09-81bd-41ffa859f01e
X-Response-Cache-Status: True
Expires: Fri, 10 May 2024 14:05:02 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 10 May 2024 14:05:02 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
|
|
| www.microsoft.com/mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff2 | 2.18.173.151 | 200 OK | 23 kB |
URL GET HTTP/2www.microsoft.com/mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff2 IP2.18.173.151:443
Requested byhttps://krs.microsoft.com/redirect?id=-crYd9Lj CertificateIssuerMicrosoft Corporation Subjectwww.microsoft.com FingerprintE1:57:9B:A5:51:25:CE:C3:A7:8E:39:F5:5C:F8:1D:A8:BF:A9:4F:88 ValidityThu, 14 Sep 2023 17:24:20 GMT - Sun, 08 Sep 2024 17:24:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22904, version 0.0 Hashc654a623ad90bb3dcd769dbbac34d863 8719de38f17d8e4d73e2a5e4e867d63dd3965baa deec787cca1b9436e080478742a0299e0db1a9712543a72d2cdc8373fc45a432
GET /mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff2 HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://krs.microsoft.com/
Origin: https://krs.microsoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/font-woff2
last-modified: Thu, 18 Jan 2024 19:15:17 GMT
x-activity-id: bf71db71-aa56-4c5e-bcd4-8a13d2dd3083
x-appversion: 1.0.8745.29656
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2023-12-12T00:28:32.0000000Z}
ms-operation-id: 60d113c2025d7b4fb5b518c9bcd147d8
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-length: 22904
cache-control: public, max-age=21791366
expires: Fri, 17 Jan 2025 19:14:29 GMT
date: Fri, 10 May 2024 14:05:03 GMT
tls_version: tls1.3
strict-transport-security: max-age=31536000
ms-cv: CASMicrosoftCV12ff7633.0
ms-cv-esi: CASMicrosoftCV12ff7633.0
x-rtag: RT
X-Firefox-Spdy: h2
|
|
| play-lh.googleusercontent.com/Zk9elS0eGXDr0L4W6-Ey7YwHbRNjkyezHC8iCc8rWp64lNIjlByS8TDF9qDSZbiEWY4=w240-h480-rw | 142.250.74.150 | 200 OK | 9.0 kB |
URL GET HTTP/2play-lh.googleusercontent.com/Zk9elS0eGXDr0L4W6-Ey7YwHbRNjkyezHC8iCc8rWp64lNIjlByS8TDF9qDSZbiEWY4=w240-h480-rw IP142.250.74.150:443
Requested byhttps://krs.microsoft.com/redirect?id=-crYd9Lj CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com FingerprintD2:2C:3D:05:38:12:27:20:C9:64:22:58:3A:99:D5:43:6E:BD:3B:D2 ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeRIFF (little-endian) data, Web/P image Hash8c0c4f1cb19ba85dc552e09ccd6aa425 18cdedae37fc9e0ef58b5ef6a0581cd6da471128 2d32afbf853d6af8b144e0f8717ba98e28f01ded3998d5b94e3481af5abd3651
GET /Zk9elS0eGXDr0L4W6-Ey7YwHbRNjkyezHC8iCc8rWp64lNIjlByS8TDF9qDSZbiEWY4=w240-h480-rw HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krs.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.webp"
x-content-type-options: nosniff
server: fife
content-length: 9002
x-xss-protection: 0
date: Fri, 10 May 2024 12:28:43 GMT
expires: Sat, 11 May 2024 12:28:43 GMT
cache-control: public, max-age=86400, no-transform
age: 5780
etag: "v1"
content-type: image/webp
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| c.s-microsoft.com/favicon.ico?v2 | 2.18.173.151 | | 540 B |
URL GET c.s-microsoft.com/favicon.ico?v2 IP2.18.173.151:0
Requested byhttps://krs.microsoft.com/redirect?id=-crYd9Lj CertificateIssuerMicrosoft Corporation Subjectwww.microsoft.com FingerprintE1:57:9B:A5:51:25:CE:C3:A7:8E:39:F5:5C:F8:1D:A8:BF:A9:4F:88 ValidityThu, 14 Sep 2023 17:24:20 GMT - Sun, 08 Sep 2024 17:24:20 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /favicon.ico?v2 HTTP/1.1
Host: c.s-microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krs.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
last-modified: Wed, 21 Feb 2024 17:15:40 GMT
etag: "1DA64E997EE8600"
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-credentials: true
x-frame-options: SAMEORIGIN
x-sitemuse-origin: Azure
x-azure-ref: 20240226T081051Z-gr12wku8891gx0ccg3avvkf8t800000001s0000000002bn5
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 540
cache-control: public, max-age=364923
expires: Tue, 14 May 2024 19:27:06 GMT
date: Fri, 10 May 2024 14:05:03 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| krs.microsoft.com/images/AppleAppStoreBadge.png | 13.107.246.53 | 200 OK | 6.8 kB |
URL GET HTTP/2krs.microsoft.com/images/AppleAppStoreBadge.png IP13.107.246.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://krs.microsoft.com/redirect?id=-crYd9Lj CertificateIssuerDigiCert Inc Subjectkrs.microsoft.com Fingerprint88:FC:F2:E9:6E:1F:57:EE:B9:9A:65:E8:8A:24:C6:F4:17:98:AB:F9 ValidityThu, 29 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typePNG image data, 480 x 160, 8-bit colormap, non-interlaced Hashbaea015a2869c38653a857d46d227854 54d9f20ebe2369f3de5ff260e5660f54a550a247 b504dd0577136856d78114d514a13139f2d1fb8b05712787019a5d750c811a50
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /images/AppleAppStoreBadge.png HTTP/1.1
Host: krs.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krs.microsoft.com/redirect?id=-crYd9Lj
Cookie: TiPMix=57.924326766456524; x-ms-routing-name=self
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 14:05:03 GMT
content-type: image/png
content-encoding: br
etag: "1daa0abd1c42ff7"
last-modified: Tue, 07 May 2024 18:24:38 GMT
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:21c5cddf-c4b1-44ff-854e-6e2d0ac6af45
x-azure-ref: 20240510T140503Z-er15bb998b7psfbs9y06ynress000000071g000000003fff
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2
|
|
| krs.microsoft.com/css/styles.css | 13.107.246.53 | 200 OK | 10 kB |
URL GET HTTP/2krs.microsoft.com/css/styles.css IP13.107.246.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://krs.microsoft.com/redirect?id=-crYd9Lj CertificateIssuerDigiCert Inc Subjectkrs.microsoft.com Fingerprint88:FC:F2:E9:6E:1F:57:EE:B9:9A:65:E8:8A:24:C6:F4:17:98:AB:F9 ValidityThu, 29 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash7a2561667dd16c7736d021be44f7c74a 7d4e6d8c7fb356b619568e8301885f0e232730b9 4bcb3795daeb9400a7f3e6b01e2f10cfc9e13908af7c936b803eb9d91918f41e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /css/styles.css HTTP/1.1
Host: krs.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krs.microsoft.com/redirect?id=-crYd9Lj
Cookie: TiPMix=57.924326766456524; x-ms-routing-name=self
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 14:05:03 GMT
content-type: text/css
content-encoding: br
etag: "1daa0abccff812b"
last-modified: Tue, 07 May 2024 18:24:30 GMT
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:21c5cddf-c4b1-44ff-854e-6e2d0ac6af45
x-azure-ref: 20240510T140503Z-er15bb998b7psfbs9y06ynress000000071g000000003ffd
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2
|
|
| krs.microsoft.com/redirect?id=-crYd9Lj | 13.107.246.53 | 200 OK | 1.8 kB |
URL User Request GET HTTP/2krs.microsoft.com/redirect?id=-crYd9Lj IP13.107.246.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerDigiCert Inc Subjectkrs.microsoft.com Fingerprint88:FC:F2:E9:6E:1F:57:EE:B9:9A:65:E8:8A:24:C6:F4:17:98:AB:F9 ValidityThu, 29 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1876), with no line terminators Hash13366efee105ec255c5527e2a9f054cb fed213d672a4f0db615602d666ccb4fe21baf5ab 2eba28f4c9773f91f7997e66e02f7a392f09f146b9f2f481813b6734de8b35de
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /redirect?id=-crYd9Lj HTTP/1.1
Host: krs.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:05:03 GMT
content-type: text/html; charset=utf-8
content-encoding: br
set-cookie: TiPMix=57.924326766456524; path=/; HttpOnly; Domain=krs.microsoft.com; Max-Age=3600; Secure; SameSite=None
x-ms-routing-name=self; path=/; HttpOnly; Domain=krs.microsoft.com; Max-Age=3600; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:21c5cddf-c4b1-44ff-854e-6e2d0ac6af45
x-azure-ref: 20240510T140502Z-er15bb998b7psfbs9y06ynress000000071g000000003fep
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2
|
|
| krs.microsoft.com/images/GooglePlayStoreBadge.png | 13.107.246.53 | 200 OK | 9.4 kB |
URL GET HTTP/2krs.microsoft.com/images/GooglePlayStoreBadge.png IP13.107.246.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://krs.microsoft.com/redirect?id=-crYd9Lj CertificateIssuerDigiCert Inc Subjectkrs.microsoft.com Fingerprint88:FC:F2:E9:6E:1F:57:EE:B9:9A:65:E8:8A:24:C6:F4:17:98:AB:F9 ValidityThu, 29 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typePNG image data, 564 x 168, 8-bit colormap, non-interlaced Hash96e7da23073d7ffeb2b90fcef2570b2c 6aefac48244653fe982489338e70c5fb0d900fc2 89514515ca490c1e66e3298d91d74eaf1f760c0d4b21e4e9f18fdaf3996554f3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /images/GooglePlayStoreBadge.png HTTP/1.1
Host: krs.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krs.microsoft.com/redirect?id=-crYd9Lj
Cookie: TiPMix=57.924326766456524; x-ms-routing-name=self
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:05:03 GMT
content-type: image/png
content-encoding: br
etag: "1daa0abccffa79b"
last-modified: Tue, 07 May 2024 18:24:30 GMT
vary: Accept-Encoding
strict-transport-security: max-age=2592000
request-context: appId=cid-v1:21c5cddf-c4b1-44ff-854e-6e2d0ac6af45
x-azure-ref: 20240510T140503Z-er15bb998b7psfbs9y06ynress000000071g000000003ffe
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2
|
|