| cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/css/bootstrap.min.css | 104.17.24.14 | 200 OK | 18 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/css/bootstrap.min.css IP104.17.24.14:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65324) Hash3afe15e976734d9daac26310110c4594 4f14a09a606c99a11f8fda15564ef66f70402826 680af6669abc319f9803f0fa26d443df1b6bc29133d88a8e4bea560ffed7288c
GET /ajax/libs/twitter-bootstrap/4.5.0/css/bootstrap.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: text/css; charset=utf-8
content-length: 17522
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ebae359-27293"
last-modified: Tue, 12 May 2020 17:56:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 125659
expires: Wed, 30 Apr 2025 04:24:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jv18xOk%2BYXuSDwXHnIMK%2FIa7WHr5vaNaCXGajxp1VhGj510KfM7%2BqCHXHYUAqJvVJcPQFlAQpVNiO8B0oo%2BlB%2BRXBl%2FGyqMt6K87rX6D3UjVwTr54gqVe9pAz8lhnzHuZ%2B1WcCap"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8817296ecbe556be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/js/bootstrap.bundle.min.js | 104.17.24.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/js/bootstrap.bundle.min.js IP104.17.24.14:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65297) Hash7fd2f04e75bd7ab1a79d80cdd4c33085 e02a14457b25e6df2568b772feab4387c00a4934 5edf297381b409d711bc8d27676951a59e151e783412850332519c05243d1e24
GET /ajax/libs/twitter-bootstrap/4.5.0/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 19084
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ebae359-13cbc"
last-modified: Tue, 12 May 2020 17:56:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 14394
expires: Wed, 30 Apr 2025 04:24:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vqalcRF4UuKXz2vPuB9PyKleJkmNHE2PSV%2B%2Fr4L3sQ%2BdzjZ4n5sHjnla6RLxVRzVb7Ag%2BenBnCJQo3QRk128ThmgK2PgwXzoMPeME%2BXvm5tlIsgAbvk2ejperHTyh%2FeNNj%2Bakl8S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8817296ecbea56be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js | 104.17.24.14 | 200 OK | 28 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 182210
expires: Wed, 30 Apr 2025 04:24:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S0GEKEQz8SRiAdcO7GTvklhRkzReH5B7mKJ08SRAtDiJyysyjoCm%2BDcw%2BiC89CopV8iJeqrWXzppbSSBkGxuOcE28CHre7h%2F3xr%2Fs0H7FFpYcXXXBa1SoeSivFyZFXmiMy%2BHNoIV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8817296ecbeb56be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| maxcdn.icons8.com/fonts/line-awesome/1.1/css/line-awesome.min.css | 185.76.9.23 | 200 OK | 20 kB |
URL GET HTTP/2maxcdn.icons8.com/fonts/line-awesome/1.1/css/line-awesome.min.css IP185.76.9.23:443 ASN#60068 Datacamp Limited
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerLet's Encrypt Subject1220595937.rsc.cdn77.org Fingerprint2E:82:38:27:C2:FE:73:2D:3E:E1:E4:EE:34:1B:18:C3:25:F7:EA:F3 ValidityWed, 06 Mar 2024 18:32:30 GMT - Tue, 04 Jun 2024 18:32:29 GMT
File typegzip compressed data, from Unix Hash130851104d91fb824b925eaf9272e828 bbcb996d3f231abc0b7aa98ae3e59e2e3bdd5ce6 fb32d305287f4af10deb1d91c78cc3635cb29eea8bb8cf4413994204fd919103
GET /fonts/line-awesome/1.1/css/line-awesome.min.css HTTP/1.1
Host: maxcdn.icons8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: text/css; charset=utf-8
x-amz-id-2: n12pniSGO2oXIlyBlS5WX0szppUwvLonX5N5nOd7pjMz6gaSIEj8mO8Gl22GGhcaV8XfatKzymo=
x-amz-request-id: 22E18N767CJ1P6MA
last-modified: Mon, 06 Jun 2022 09:58:54 GMT
etag: W/"4334c8c70998d81bde3e6765828811a6"
x-amz-meta-mtime: 1654507817.389231056
server: CDN77-Turbo
access-control-allow-origin: *
x-77-nzt: EQwBuUwJFAH3iYUKAA
x-77-nzt-ray: af5856307601b53691a13d668490ec30
x-accel-expires: @1715650508
x-accel-date: 1714625544
x-cache: HIT
x-age: 689545
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 689545
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| maxcdn.icons8.com/fonts/line-awesome/1.1/fonts/line-awesome.woff2?v=1.1. | 185.76.9.23 | 200 OK | 45 kB |
URL GET HTTP/2maxcdn.icons8.com/fonts/line-awesome/1.1/fonts/line-awesome.woff2?v=1.1. IP185.76.9.23:443 ASN#60068 Datacamp Limited
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerLet's Encrypt Subject1220595937.rsc.cdn77.org Fingerprint2E:82:38:27:C2:FE:73:2D:3E:E1:E4:EE:34:1B:18:C3:25:F7:EA:F3 ValidityWed, 06 Mar 2024 18:32:30 GMT - Tue, 04 Jun 2024 18:32:29 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 45108, version 1.0 Hash452a5b42cb4819f09d35bcf6cbdb24c1 4344bf7fdb2b5e538fb4859df945fc1a21d2a83c 063a952901506e6cbcc2abdd1995ea387e4ae9138993f5517834a75faee165d0
GET /fonts/line-awesome/1.1/fonts/line-awesome.woff2?v=1.1. HTTP/1.1
Host: maxcdn.icons8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://login-microsoft-online.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.icons8.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: font/woff2
content-length: 45108
x-amz-id-2: tne9Dfpc7MOkp8LF1CoMnvV0g0cpwlcYcyTQi8tna76YPj07D2B9vlM3s8Qee8hyi3MflRswV1c=
x-amz-request-id: GH1VX01H3Z92CJZS
last-modified: Mon, 06 Jun 2022 09:58:53 GMT
etag: "452a5b42cb4819f09d35bcf6cbdb24c1"
x-amz-meta-mtime: 1654507811.164297687
server: CDN77-Turbo
access-control-allow-origin: *
x-77-nzt: EQwBuUwJFAH3ABsCAA
x-77-nzt-ray: af585630300c833891a13d66749a8138
x-accel-expires: @1716213805
x-accel-date: 1715177105
x-cache: HIT
x-age: 137984
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 137984
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| login-microsoft-online.pages.dev/assets/img/background.png | 172.66.47.22 | 200 OK | 1.3 MB |
URL GET HTTP/3login-microsoft-online.pages.dev/assets/img/background.png IP172.66.47.22:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerLet's Encrypt Subjectlogin-microsoft-online.pages.dev FingerprintD0:6A:66:EE:99:D0:33:DA:3D:D7:F8:3C:ED:97:56:33:A0:81:5D:D6 ValidityWed, 20 Mar 2024 13:41:13 GMT - Tue, 18 Jun 2024 13:41:12 GMT
File typePNG image data, 3840 x 2158, 8-bit/color RGBA, non-interlaced Size1.3 MB (1294919 bytes) Hashe812c68fa007098ded6dd384b2c22fd7 c25647def1a2bc089043a1d4eba8b524f9d7edfb 24c68a968e99d841f446d6953d3eb15109b286de77fbbaf60a0577375d0d9a16
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 | Quad9 DNS | malicious | Sinkholed |
GET /assets/img/background.png HTTP/1.1
Host: login-microsoft-online.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/assets/css/styles.min.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 04:24:50 GMT
content-type: image/png
content-length: 1294919
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "865850cb4df89b8b6d4ccdb6b3bb58d9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uS7GacmoPRHLKX3%2BdY%2BmtUqjTKBhiZ53y0YjlWrA0AKZy3Plkfcv7b0845P7KASRrhuWaXV5Kw9RNYOWAwZ8OIPVEXJTGqEKXQbkAc54ugC%2Fm7lBpoww08rp5PqPf%2FBXjmKH5gM9XUBA5j6np%2BRpMQm5hQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817296fdc01569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| login-microsoft-online.pages.dev/ | 172.66.47.22 | 200 OK | 6.4 kB |
URL User Request GET HTTP/2login-microsoft-online.pages.dev/ IP172.66.47.22:443
CertificateIssuerLet's Encrypt Subjectlogin-microsoft-online.pages.dev FingerprintD0:6A:66:EE:99:D0:33:DA:3D:D7:F8:3C:ED:97:56:33:A0:81:5D:D6 ValidityWed, 20 Mar 2024 13:41:13 GMT - Tue, 18 Jun 2024 13:41:12 GMT
File typeHTML document, ASCII text, with very long lines (11545) Hash746ade550b2f9d88367478d51fc540ae e0c539a74cd5ca13e97f3f8d73089409d650993a 3cc99121e7e4a87ae838b37c6a9d245ae40ee5200116346088f6ba7576266fed
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: login-microsoft-online.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6810751028146dabfeb1de5dae6a227c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KzLSEXae88bGP85wnAfGs3V9YBaTZIpUojpyPyr%2FowTOylZxx2Mn2V10mm2UeYOI6m8A8OOkJW7SdNa5zilzJyes8V%2B7LxpVjUO0b9a5BvFYP%2F601i4AmYNFJk%2FZOO%2BGBvBwv2IpZwZYa8JhSP0zDffB7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817296c8b170b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| login-microsoft-online.pages.dev/assets/js/script.min.js | 172.66.47.22 | 200 OK | 8.7 kB |
URL GET HTTP/3login-microsoft-online.pages.dev/assets/js/script.min.js IP172.66.47.22:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerLet's Encrypt Subjectlogin-microsoft-online.pages.dev FingerprintD0:6A:66:EE:99:D0:33:DA:3D:D7:F8:3C:ED:97:56:33:A0:81:5D:D6 ValidityWed, 20 Mar 2024 13:41:13 GMT - Tue, 18 Jun 2024 13:41:12 GMT
File typeJavaScript source, ASCII text, with very long lines (5627) Hashfe6ebbda66d0e13a307b7d4d80140d7f 4466f4e94062615bddaa54c9bc15712606614f8a 8ebb31f794aa7b9104d4f0b4dd9cceb84e3e942e0ac2bc6468462dd9280f89e5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 | Quad9 DNS | malicious | Sinkholed |
GET /assets/js/script.min.js HTTP/1.1
Host: login-microsoft-online.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"c964eaeb14f86336f4e22828db007cb5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PZw4VRV5L%2F7uNABaXKK8S2zaa%2By2MTvikxAfE7Deak194oYPjDrlYY3QmzS8Zd3hWZEuWeJD31cklppyTpVtTSMgAk%2B%2FnDuqPE7jaVrrx9QSxK%2FrU4S5wZCBRWpaXrF4aiZMzeYa4SHmrVqHm6nt05oEmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817296eab43569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| login-microsoft-online.pages.dev/assets/css/styles.min.css | 172.66.47.22 | 200 OK | 3.0 kB |
URL GET HTTP/3login-microsoft-online.pages.dev/assets/css/styles.min.css IP172.66.47.22:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerLet's Encrypt Subjectlogin-microsoft-online.pages.dev FingerprintD0:6A:66:EE:99:D0:33:DA:3D:D7:F8:3C:ED:97:56:33:A0:81:5D:D6 ValidityWed, 20 Mar 2024 13:41:13 GMT - Tue, 18 Jun 2024 13:41:12 GMT
File typeASCII text, with very long lines (3216), with no line terminators Hashe13c25b73fb079cdab22b66868172686 6eb69ede7344a996164d917129812856605c2ca8 1b4da430ebe4e72bea435a53cd442d4918a411ba15fcd25cc5fe401a5e11a5ed
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 | Quad9 DNS | malicious | Sinkholed |
GET /assets/css/styles.min.css HTTP/1.1
Host: login-microsoft-online.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"46ed1b806347a3f48cbfd07447398857"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aZQ4C9VJZFfeklDGkwkUx0hWm7Tqhrxy0y4C9IXegPnFyWiOeI4w9%2F8zCJV5WQ1AmTORE18T%2FLJt20AmFJrekGfJ14n1r7BS7vQnV5Tb9Ma3z4kYIdxdBD9sOrOgqupNqYLkPVJ9W2qKLXQ6%2FajjTxV%2Fpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817296eab3f569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| login-microsoft-online.pages.dev/assets/img/favicon%20180.svg | 172.66.47.22 | 200 OK | 979 B |
URL GET HTTP/3login-microsoft-online.pages.dev/assets/img/favicon%20180.svg IP172.66.47.22:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerLet's Encrypt Subjectlogin-microsoft-online.pages.dev FingerprintD0:6A:66:EE:99:D0:33:DA:3D:D7:F8:3C:ED:97:56:33:A0:81:5D:D6 ValidityWed, 20 Mar 2024 13:41:13 GMT - Tue, 18 Jun 2024 13:41:12 GMT
File typeSVG Scalable Vector Graphics image Hash168b13b3cf2c41516f89fe8e5015b131 92dc37e85763f289a01d49ac89d058ee1ab1c830 39994499e7fa659d03833b300c4e967a82846a6c71b33dc30907c15a15649005
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 | Quad9 DNS | malicious | Sinkholed |
GET /assets/img/favicon%20180.svg HTTP/1.1
Host: login-microsoft-online.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 04:24:50 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"691a86d9d6489d648998fb5cc67a73e6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bFOm0ho9EyS2%2BLgV01%2BhId4fkD63I82R9X12UFFT5b%2BT6FaTGDOGMxbXA3Gw88hJwFC%2B4M%2BWM7H6UN%2F6%2F3QbK9zy5PKT7U55QyS9WyVjwFWVZelhqXlozAkFCuvIDbmFa3EYpTvU5HNKDNfm4kM8sKo7sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88172970fcc4569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| use.fontawesome.com/releases/v5.12.0/css/all.css | 172.67.142.245 | 200 OK | 57 kB |
URL GET HTTP/2use.fontawesome.com/releases/v5.12.0/css/all.css IP172.67.142.245:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeASCII text, with very long lines (56994) Hash500d1a92f875b1d96d37a3a3f8f0438c 703603273f5d5d52eb456d6385e1a68294fbd568 c9b46437d7418e1712daaad6d73fa17c2c6afb5681770c90339c25428415b7fd
GET /releases/v5.12.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: text/css
cache-control: max-age=31556926
etag: W/"500d1a92f875b1d96d37a3a3f8f0438c"
last-modified: Fri, 22 Sep 2023 01:45:03 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 812741
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xbS2OCytSx1XOrT1ljWdynMqp9HCxal3VaZHOecy4b6hZymN4Q8f1RBDnHQkFCY%2BMoemZjIu8iDTJ%2F5%2BPd3VGbBtUihdfjWbmcRELYpWlIuwEnWeJjL%2BJnf%2BliGV2XBB1DuKeJ4A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817296ecbf356b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| login-microsoft-online.pages.dev/assets/img/microsoft_logo.svg | 172.66.47.22 | 200 OK | 3.7 kB |
URL GET HTTP/3login-microsoft-online.pages.dev/assets/img/microsoft_logo.svg IP172.66.47.22:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerLet's Encrypt Subjectlogin-microsoft-online.pages.dev FingerprintD0:6A:66:EE:99:D0:33:DA:3D:D7:F8:3C:ED:97:56:33:A0:81:5D:D6 ValidityWed, 20 Mar 2024 13:41:13 GMT - Tue, 18 Jun 2024 13:41:12 GMT
File typeSVG Scalable Vector Graphics image Hashd633a913e6f3b1f45774b9874dfc85e0 5ba1344048578062c93cfddfdf8458477eaca476 c1fbfbd9a81fc4d9c9539a65bdfb4c6738926b8d4681b0346706196413e92714
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 | Quad9 DNS | malicious | Sinkholed |
GET /assets/img/microsoft_logo.svg HTTP/1.1
Host: login-microsoft-online.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"b4d7a556445aa167d4959571a81c93db"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z9fVnpnT0w9ybZb2fvWRHFD4KzfYCCt8DDmASSLaECnUmHncZVzPqemkWSeBQul2REpNRKA3xBO1W23cC6E%2B9n0DJVJw%2FEmyKm4ddE5xyj223tOPjhIw4rJg4EO88agSBhpxgsVN6fHnwMqLvqZQWYd0uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817296eab42569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| use.fontawesome.com/releases/v5.12.0/webfonts/fa-regular-400.woff2 | 172.67.142.245 | 200 OK | 14 kB |
URL GET HTTP/2use.fontawesome.com/releases/v5.12.0/webfonts/fa-regular-400.woff2 IP172.67.142.245:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 13576, version 330.-16253 Hash9efb86976bd53e159166c12365f61e25 830f8653e5f4a5331ac0b47c5701f65fe9f1bb32 86e496b536b26ba60cdb68df9dd9143b19a63b65e30e373b0321833aab1295d6
GET /releases/v5.12.0/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://login-microsoft-online.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:24:49 GMT
content-type: font/woff2
content-length: 13576
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "9efb86976bd53e159166c12365f61e25"
last-modified: Fri, 22 Sep 2023 01:45:05 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 15218
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cl8SgqVsBg%2BhPd%2F9ar0aZv2d5isoWlH9s9zaDwTVo1d12xapDtjK1NP279RocVIT3NZIf9u1bpLdld%2FRjtF3cP8yNKakzI3xas3BsYpcSMo7meitos3G%2F0FhJGd0N5JtvC86kBtv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881729700e570b55-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| login-microsoft-online.pages.dev/assets/img/favicon%20180.svg | 172.66.47.22 | 200 OK | 979 B |
URL GET HTTP/3login-microsoft-online.pages.dev/assets/img/favicon%20180.svg IP172.66.47.22:443
Requested byhttps://login-microsoft-online.pages.dev/ CertificateIssuerLet's Encrypt Subjectlogin-microsoft-online.pages.dev FingerprintD0:6A:66:EE:99:D0:33:DA:3D:D7:F8:3C:ED:97:56:33:A0:81:5D:D6 ValidityWed, 20 Mar 2024 13:41:13 GMT - Tue, 18 Jun 2024 13:41:12 GMT
File typeSVG Scalable Vector Graphics image Hash168b13b3cf2c41516f89fe8e5015b131 92dc37e85763f289a01d49ac89d058ee1ab1c830 39994499e7fa659d03833b300c4e967a82846a6c71b33dc30907c15a15649005
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft | OpenPhish | phishing | Office365 | Quad9 DNS | malicious | Sinkholed |
GET /assets/img/favicon%20180.svg HTTP/1.1
Host: login-microsoft-online.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login-microsoft-online.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 04:24:50 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"691a86d9d6489d648998fb5cc67a73e6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CUg2gw42cwxmwOqX%2FCQnUzLY8c8Ph0bwaL4wi55lafNi7HN2nalZbjn56RefsPJnr9vZjwsLR0rMCr%2BYrjzVOCbnErg35u9nOuqWh4M7K2li4G8d58g9WyVEeBGYyf1ZyoW3vwahzFPQ90SXgs%2F%2B2sNMtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88172970fcc3569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|