Report - email.wantyourfeedback.com/ls/click?upn=u001.PD4nPnyJUo8oiEzSkSGLgaBNAMtLp9U5nstWElDmnpXtySPOXSs4GxXhEZNYegDWlOpy_1gt1aDjd5mPVItYgazWgABkVm-2FZUH6kt1lIvkdtkRWsfoyQV18ixDvOX-2B0tU4ZH6SMN7PC0YJjM3gcvFPvh6CbZuFXlOBXf3FWLiJkpKJ7Hjba3S4-2FzhpmkR8VdprfK8GO3qSu-2BzqpIaLLC-2Bva9kOn7HY5B7OIgz5EOl88o1lnRSRpayTzqRzTSFhtg2Bi-2BI4dAZ7qHRbJ3vb9lcrxBKqAk13I-2BCAvndhSK1Vi4ubCjlp2xQlrXIHfzqmLiSPjl7tEmTsLYr99h3esBOPv8ASLIpf873P512I7xYEOjogT1gQCerfZNqh6K2IdWU6lDJ2r3wpU6ug02vU9Zslw4DYpuNNZQNVtap5mqv9Xf8D1PYQxYI5BK4owXOV2wEXeRIjST24XAw6EO9D1tdiGoHDRaxW2QofayefCuiW9Z191aML90svJWojHiQp1Fq-2BXFLiyEx8V1eLa7dixfJ23RRWtHvg1jOrHp7lqvXRA7dobs-3D

Report Overview

Submitted URL
email.wantyourfeedback.com/ls/click?upn=u001.PD4nPnyJUo8oiEzSkSGLgaBNAMtLp9U5nstWElDmnpXtySPOXSs4GxXhEZNYegDWlOpy_1gt1aDjd5mPVItYgazWgABkVm-2FZUH6kt1lIvkdtkRWsfoyQV18ixDvOX-2B0tU4ZH6SMN7PC0YJjM3gcvFPvh6CbZuFXlOBXf3FWLiJkpKJ7Hjba3S4-2FzhpmkR8VdprfK8GO3qSu-2BzqpIaLLC-2Bva9kOn7HY5B7OIgz5EOl88o1lnRSRpayTzqRzTSFhtg2Bi-2BI4dAZ7qHRbJ3vb9lcrxBKqAk13I-2BCAvndhSK1Vi4ubCjlp2xQlrXIHfzqmLiSPjl7tEmTsLYr99h3esBOPv8ASLIpf873P512I7xYEOjogT1gQCerfZNqh6K2IdWU6lDJ2r3wpU6ug02vU9Zslw4DYpuNNZQNVtap5mqv9Xf8D1PYQxYI5BK4owXOV2wEXeRIjST24XAw6EO9D1tdiGoHDRaxW2QofayefCuiW9Z191aML90svJWojHiQp1Fq-2BXFLiyEx8V1eLa7dixfJ23RRWtHvg1jOrHp7lqvXRA7dobs-3D
IP
172.67.205.177
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-25 12:58:32
Access
public
Website Title
dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Final URL
dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Tags
microsoft phishing
urlquery detections
Phishing - Microsoft

Detections

urlquery
6
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
email.wantyourfeedback.com	unknown	unknown	No data	No data	1.1 kB	1.2 kB	172.67.205.177
dyjt.pivitai.net	unknown	unknown	No data	No data	479 B	871 B	172.67.223.170
dfgrt.pivitai.net	unknown	unknown	No data	No data	1.2 kB	314 kB	172.67.223.170
r4.res.office365.com	180	2005-06-20	2017-03-03	2024-04-23	3.4 kB	1.2 MB	95.101.10.90
yukrtg.pivitai.net	unknown	unknown	No data	No data	6.3 kB	790 kB	172.67.223.170
bdfdbdf.pivitai.net	unknown	unknown	No data	No data	1.4 kB	49 kB	172.67.223.170

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (167)

	URL	Size	First Seen	Last Seen
	unknown	191 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen43997 Hash 98601b963f89735a2605f2c0d28a189b 6575bc2d650404b85a133634f0882a18c57d5d0d c9b0e84d8063cde36b8b3ea51c2e60d5f1c47551ab370e5035c3dd349d28445e Loading...

	unknown	125 B	2023-04-14	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 06:12:39 Last Seen2024-05-05 01:38:58 Times Seen12754 Hash a53d5bf308050076c38bde1849eb1b73 cfc4df929af2c3f83b938284ef3c888477c1188b 38f7fb26b19847fcc475a291371c9c83b35d66d24f3543a727291abe71b2d2e3 Loading...

	dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM	794 B	2024-04-25	2024-04-25
Pretty URL dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 14:58:39 Last Seen2024-04-25 14:58:39 Times Seen1 Hash 340c843d2014ccfc553a55a1b33dd6c5 3d65ab6dfbe91b96acab3b6cc49aea0c475c53a4 ccb010cf8af886fc554a6c9f403dcfd8389de28ac780c19a8349b7416752a65d Loading...

	unknown	121 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49305 Hash 19506c1c96e778f589c98e0afb2a0957 3b5fddea496404ee8efc5f9d401706ceaa0592be 57e7a14a93cf4c6104be5f1ac6f42432ab011e3e56f8bffe072cea16ed66d60f Loading...

	unknown	211 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen49275 Hash 8ce09ce6cb6a1803068d993b5eb1a256 feccf195a5e855865077a0ce9b3fe218154e08e5 f44c625d181e762758284002b5f80bbb12234cee5ba7be2ca164716dfab442cf Loading...

	unknown	142 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49204 Hash 7423a65b4400095d8c52496aaec31bc6 d9eadd0b713e980b914e114529067866108d560d e16178b0c3704b0f442f9fa0296e8835ebf8fd479d64f00445c524b77db81ec4 Loading...

	unknown	760 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48295 Hash 580ce0d079b5c6610bd2624dd8a136e7 ebcd7984729581ad6a2e955542fb6fe34b5504e0 3b520f3f84ad888788c22aa75a8ab4748b2b95bad406287c21f05321293f4e21 Loading...

	unknown	134 B	2024-03-07	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-03-07 22:04:29 Last Seen2024-05-05 01:38:58 Times Seen752 Hash e0618cdb8c4df6f7abe42f01b1049ec2 ca40ed7a5d242324d076aa9d20886a39aa150cc2 50f88590c69671c326d3c6e023968950587d40e3b4a3de78cb6c8eb20f866b72 Loading...

	unknown	391 B	2023-04-13	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 19:21:16 Last Seen2024-05-05 01:38:58 Times Seen11105 Hash e966e73c1b56d42e63c13d344bc81950 cab66363c6ee5b4680da8b4f06f7025bca1afe63 ff91838a59166c8743c126a4b7b4334a57ed4c809d2c84434a6dd2c7e53532e4 Loading...

	unknown	144 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12760 Hash 7dab033050fffda11c061ca81c05ab01 b8effdfe5d6f364db66e7157ec738c223243e2a4 08a8e78e85d06c2701d36c355358b18d379f4b319a82330720f23545d77d6a88 Loading...

	unknown	341 B	2024-02-06	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-02-06 15:28:25 Last Seen2024-05-05 01:38:58 Times Seen1114 Hash 70188bba998b87f6e28e2c68867246f1 421ef5c3656f88e93cac354a86d6bfbef97fc8b9 b21ea1c7bb94037e291cfc71196b428d5118d612921a485c141bf36125fafc30 Loading...

	unknown	188 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen49319 Hash f7341b3fe436f3eccb5e7e60ee2903a1 1e24078d568406df14ba6bbae5bd4ae5a0c8d24a 3188abdd120b9d444fefa2e332a7f79f6af01b6a3dd2c051d8da9c34499070dd Loading...

	unknown	123 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen49299 Hash 10cbf9eccef9d6c0139853e219767196 99a754915f7cb6f742f81156eed4d0c012e8b7f0 ea229696c5ddc9be2386bfd68d3841d5f5bc8cc78e6381332b860b1386f7ac11 Loading...

	unknown	228 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen49233 Hash 1ec3a5ff232012347a09bc00c4187c9d 90d94e36373837c19e5ca1534fa4f6567516e404 b3d9f8630abe8f73f2be31bf887235810787400b275a1b9157fb625956459fd5 Loading...

	unknown	220 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48490 Hash fb0646e086ac130058d1d79126d75048 76c8f27d7a8d790da30de056d7cdce49ba8a6240 8ee918cb88edc1a9a1974e51d34fabd62230d97616c6c8d90878d0f731563769 Loading...

	unknown	147 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12755 Hash 81d14f1b6ded058d108c7e221bf8a9dd 7fc9648053d6618a58f8b6479be034ebeadc56cd bcb14f0f58c0b3088d864b4cd46aeed4a11ec05da0920f85cf6812a3b219358f Loading...

	unknown	928 B	2024-01-04	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-01-04 18:13:46 Last Seen2024-05-05 01:38:58 Times Seen1911 Hash 1eccf0aeb18e244241aa9e9579b16058 58dd82a793f466f9729c3790794d73bc9ad7bb7c 0cdd0096c580ca37b1d2719e8241c97a3894f7c6494f1c20cfaab81143cce38b Loading...

	unknown	119 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48416 Hash 79a4840e646d0491c274cc21ee16adad 50141ae0043f07d0e731e31cfcaa5d4f77ee5d5d aecf241916988367c666bdb24812eb372726ecff4571e16db8001c81c9c3358e Loading...

	unknown	139 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49279 Hash 28951b6e3fc3fccffa38b5171acf1768 9a96e94e9055d143cc556229e95ac356c0ae8539 711bc9a1df6effa2a23d549e70004c721630c02cc98a0e3af144d0ca17af0092 Loading...

	unknown	165 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen44727 Hash 38ca75c3515b61a28bb936600519825d 65056471911dfdb6bbf1c94bb211f43a3b5e107b be3288fce46ed610bef722824730dea63106194d6967d0c52cbf6425ebf4cb8b Loading...

	unknown	137 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49220 Hash 3faef566268fa68754db993580507870 2f9f8517e46bfa7b3093ff291011fd262932d240 505304506e1796fa3c56485ef13c302d1eac8f5f6d227c49a26813c8e4e8072e Loading...

	unknown	135 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49222 Hash 2ddcab70153357153fbabe13a3b62de5 bcbd0b4dd055da40b7df910d435e21fa1a0ce344 308b8ca2a9402fe5e0b42f87ba969feaf006a1ae059810e492a623fe66c47962 Loading...

	unknown	149 B	2023-04-13	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 19:21:16 Last Seen2024-05-05 01:38:58 Times Seen34883 Hash 5692e2d6bd998bc0ba205258815d9bf4 dc9652a209a86463785a6037ecb861a6e5fda15a cb6001a3b3bf5229236650c25435ce62abc61fa6f0f380fee6e661510140e9f8 Loading...

	unknown	152 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen44704 Hash aa18ed7062ff2d52282886d591d38b9a 7cd63bc6d484e762745613ec81a06557427dd04c 0390bde4edee205789c63c74ce9796e25130b179dce9fad6ba6265c85d126300 Loading...

	unknown	169 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen48434 Hash 52dc6719cfc396f222165e2f588eb05f b2461f33fee2371219569cc4703a3b31ba375b49 840de20ceebb074d8ec7e9b04ca3d29d6a47bfe260afea14593de5f3afc1d504 Loading...

	unknown	148 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen18073 Hash 826d1fa6a8999e92457002efe528ad94 a50f37cb8f4f9c8feb0175105e1059be35ffd655 13cd89e56267197c3f92a67918e269004e6a041882d51878ba8c5cff6f8ff075 Loading...

	data:text/javascript;base64,ZnVuY3Rpb24gYygpe2lmKCFkb2N1bWVudC5xdWVyeVNlbGVjdG9yKCIuYiIpIHx8ICFkb2N1bWVudC5xdWVyeVNlbGVjdG9yKCIuZyIpKXtkb2N1bWVudC5oZWFkLmFwcGVuZENoaWxkKE9iamVjdC5hc3NpZ24oZG9jdW1lbnQuY3JlYXRlRWxlbWVudCgiZGl2Iikse2NsYXNzTGlzdDpbImIiXX0pKTtkb2N1bWVudC5kb2N1bWVudEVsZW1lbnQuc3R5bGUuZmlsdGVyPSJodWUtcm90YXRlKDRkZWcpIjtkb2N1bWVudC5oZWFkLmFwcGVuZENoaWxkKE9iamVjdC5hc3NpZ24oZG9jdW1lbnQuY3JlYXRlRWxlbWVudCgiZGl2Iikse2NsYXNzTGlzdDpbImciXX0pKTtzZXRUaW1lb3V0KGMsMWUzKX19YygpOwo=	341 B	2023-10-02	2024-05-04
Pretty URL data:text/javascript;base64,ZnVuY3Rpb24gYygpe2lmKCFkb2N1bWVudC5xdWVyeVNlbGVjdG9yKCIuYiIpIHx8ICFkb2N1bWVudC5xdWVyeVNlbGVjdG9yKCIuZyIpKXtkb2N1bWVudC5oZWFkLmFwcGVuZENoaWxkKE9iamVjdC5hc3NpZ24oZG9jdW1lbnQuY3JlYXRlRWxlbWVudCgiZGl2Iikse2NsYXNzTGlzdDpbImIiXX0pKTtkb2N1bWVudC5kb2N1bWVudEVsZW1lbnQuc3R5bGUuZmlsdGVyPSJodWUtcm90YXRlKDRkZWcpIjtkb2N1bWVudC5oZWFkLmFwcGVuZENoaWxkKE9iamVjdC5hc3NpZ24oZG9jdW1lbnQuY3JlYXRlRWxlbWVudCgiZGl2Iikse2NsYXNzTGlzdDpbImciXX0pKTtzZXRUaW1lb3V0KGMsMWUzKX19YygpOwo= IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-02 01:17:43 Last Seen2024-05-04 21:32:35 Times Seen33207 Hash d6f18bfe02b31db3664d5d27f03ea142 aae6f850e8ea4ff74dcd6213ad6a4565cbd6802e 90682803943448f3acffc81014c87fdd71f30d8cf97335fcea451fac1e568221 Loading...

	unknown	130 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48515 Hash 2fb5fcccb4ddd1eb8b6a416fe8897786 00319ed57aa712e1d204c98425b50b6caa8a6d90 f17fc6363191635279e796e1b255b639e5182ca5902573a4efd8595aa21c0baf Loading...

	unknown	222 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:59 Times Seen48488 Hash 661d8f967d847cbe4fdd1475ec8e0737 f742b61261f8b0af72b792f9727097c310e755fa 68680c4537ca023efd89f2cfc61f3a2c70e2ecdf15b1aa8d36d97f733c57f412 Loading...

	unknown	161 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen8643 Hash 48fdb7213d733c19d77e4864bdd25c9b e0d1c2c5b9460e7ae0691b27f0c1b331af6227d0 d52f041ae249516e565f351bd9539196ba057e59a1ff7ad9c11a1cc5a67bc236 Loading...

	unknown	157 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen32517 Hash 38dcbd5bac0175137fbd95f724473bb7 56c48436b7751475c8ff7df898729a84c6fc3542 998c8e99112aa0bf7661fdd796ab755e4ec8b0edde59ea0d01689bf08da11877 Loading...

	unknown	246 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49229 Hash c724f2a429612a8e22d142b8ab5063d9 d99e218f25465f8628a3f517bc017015e264bd89 ff8323315dab398b8dc8a5d19e60abccdb7cfb9f92e122c4398a196149c1c1f4 Loading...

	unknown	187 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49195 Hash c8296155fb4576b5a97bdf03071bf214 39bedf1fcf93119df1defa162e96866281316f9f c51b001103b5bfdd7e4caca8c71f73a8ea3a7b1446b9bd506b4fb69e765b67a8 Loading...

	unknown	137 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen29182 Hash 85429ff1598d77332b93b50bc1a35c76 2e96d2584a8862fb214260ec749630b53577ff8d 3c8c390c6ac4c33f44eecc7d44a7dd724c5ca87baad919d7a386c4ef4cc6b13f Loading...

	unknown	151 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen47679 Hash 98a8844d14966e4ad74c9c732207a4d9 582ad1e5bc777fb5cbdb82d29372dbf5b0bc7abe 73675dbab4672c428f6cc9b6085f37a4e46ad5bb05eab04e8e216cc1cfc043f4 Loading...

	unknown	37 B	2023-04-11	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-05-05 01:41:41 Times Seen234291 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	unknown	131 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48583 Hash 5db1583038dd524d0c8e4e3163995ab7 8c74013009f5289af8eec27b3a4b11a95e792b6e ac0de6293f79a413a9c9925980a3014cf1c868ebcc995eae99938be5d0cad684 Loading...

	unknown	198 B	2023-04-17	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-17 16:07:33 Last Seen2024-05-05 01:38:58 Times Seen8975 Hash 373a12d661d684255b7b8fef1d8569ec 21ba286bc0d369e6a7b4be06e614a9b509fe7a53 d13cf0c262e0ce0977870849ed3683cddbf7346b150e970ac300b9eba13e9915 Loading...

	unknown	176 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12769 Hash 0d658cbf6225ff3677345b29a903855d fbc29cc964f6200258f624ccfc6600b969270d36 d12b26d0f8e04f3aa6362246aeaf109861814e07837dc915e260af9adb224e19 Loading...

	unknown	246 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12763 Hash 112e587dd18f0c4485eb3e00344e217e c8c1de8878a755a8121c0562aa31882426d90a02 98424fa3460d1291fb60ec4016f976588fbe6811da7ff63f8a1486e03e35f7e8 Loading...

	unknown	137 B	2024-03-07	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-03-07 22:04:29 Last Seen2024-05-05 01:38:58 Times Seen644 Hash 18719d485561402200a188596c3ba124 77786954985fd5bce74bc84004d05fa8db818fd5 2df9f2077e76d867c27cf07c0de0ea5ded420eca21556560222d445cb1ac2341 Loading...

	unknown	434 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48172 Hash ab3ae16bd52bb8c3541a00ae3e4e61ec 10162c3cb59d271c32e64d2fcd1bf8e2450cedb3 6d8c0ded4df960b8859bd62a391068d8df156292f460fd7f35fd1958e17bbb49 Loading...

	unknown	538 B	2023-08-30	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-08-30 00:11:27 Last Seen2024-05-05 01:38:58 Times Seen4457 Hash 8b903f2561f102edaebf8a22be395713 c14b3f4de96ef5f4c461b5ba5d9dfe0dc2d81a49 6b3cdf314aab76b579a20b58cd93556ed4d8e4b9ef8450594ec1bb95315f2b81 Loading...

	unknown	300 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48382 Hash bde64528b12a0e60d11e0a9f9197b947 0e7ef3569eb9a48199674f9bf86185f1b67743d9 3a6bc66721dab55cbe93859175fc632bddd9fea4ed9a2327698ab9110cd66d11 Loading...

	unknown	158 B	2023-08-30	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-08-30 00:11:27 Last Seen2024-05-05 01:38:58 Times Seen5198 Hash 7339bc829a8e4fd0e2694953bbb13d30 3726491226898ba7c393d07412d7c3bf6d4339d9 c1c212dde3ff7a3401f834eceaff8528ccc03c2d6ed053ff1b81da285ecbbfd7 Loading...

	unknown	254 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48288 Hash 3a6a594b6fd5bed6bdfeb1aac714ecde ceafb2215036cc35c594087d8634a3bb425abc67 8be7e5ad94d0874f30196b6978eaf93d8807dba1e493d4ed663d9f2b802aacc7 Loading...

	unknown	142 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen13024 Hash 6f2f5cedd72cd6766a18f75bb8a69af5 2980ac495e9427b2d1ab782a58c101ca969e5395 cf43e9d08f936d37b4ca88e6bbacff2b76e06e485959e587dbbc0689842b041c Loading...

	unknown	145 B	2023-04-18	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 11:29:10 Last Seen2024-05-05 01:38:58 Times Seen7475 Hash a8ac79a4cc3f3c77d0e1e09e3e47b236 b116c951eb7b9d4ec19d11e6c346d9eb74bb9f81 00cf8be33d830efb25b1502e69e7523d627181b3185331c5a36696b6bec079f2 Loading...

	unknown	177 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49302 Hash 484c3b29115a86b85c5399b161b87425 ef311e6d565b6a0bb088c56e6732de6c8fac59f2 f3b94bcc411762fcde2914ca65e973d44c9c687f7d19ab64cf6ed4ff5e8dd700 Loading...

	unknown	123 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49235 Hash 499ece7ab960f801738ae83aee9883b2 2e9692446d108051a14343fc322deeb1f232dd23 669dff2f9000cb05db46945d240475b575367b922026dc4ec1ea18dcd78ca569 Loading...

	unknown	254 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49233 Hash bbfb6a2d7aaacf2f98f04b5818e308fe 3eeb87c789657bbc7dee746b50def800dcaf5df8 892a9587d95c3e4d8ba7cd5ead1464867ec5ed9b9a433070fb16b87ca8a30fba Loading...

	unknown	133 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49214 Hash 69607766e6e4172743836f9968d8f6ae 55d6db662fe5898700983eae92dcbc9457790ea2 f2310b78bbdf47751fd51b051fecb7e15f06dd0a3f42880c8f7f8e3c5f129ed9 Loading...

	unknown	121 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen48243 Hash 6ca6e019e34a5974ef261ee6e5865680 a2f84e617d2a28857bfd5843114f8ec67f51dde0 053a13b525b99301fdecb414494498ad25fa42190742117f19ba5ac32242ba65 Loading...

	dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM	21 kB	2024-04-25	2024-04-25
Pretty URL dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 14:58:39 Last Seen2024-04-25 14:58:39 Times Seen1 Hash 01e5bb4f04d45294bcdaa6e4c53ae457 ec90e464d15374595bca81b8edc987492ff483b0 6c9b685f9eeb62130494dee3278d046783255d6f5523824122307f7033b4d990 Loading...

	unknown	125 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49216 Hash 8b46fcc5c7ea11e780a0e044bf1eed2b 825ebce10d9bcbd86358dffad1dcee5d3cf4e960 d1d135761432d0292d92341afa53e3872b8f454dfce71d8f511b23020a0abb21 Loading...

	unknown	141 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen29146 Hash 173eaeb7942d4ae673747634056a51ce d7498e543ec1b22beb7a043323b0c03db08036f4 0f71118f9121bb1a22c61234fd37d03499a57ed20ea7bab312f544dfd533c783 Loading...

	unknown	158 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen8653 Hash e1aa7c9d0f4926cd4beff198db450032 f22007022191f17dddaf860e0486099363d009f8 555a184c9b5f634b33fd35c948675eab29804f9737bcbc681dc0f0ddf921e916 Loading...

	unknown	132 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen33546 Hash 5073d37c0e13c73274c36f3d6baad373 38b15cb2c4dc491fb0ad3909a688567e4768130b aa58660e67dac3ee4eca49ee20d3c7b49bbb5941db3a006241d5fd59f4b4ef10 Loading...

	unknown	151 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12575 Hash 7eda2ef4e95762b1ed7742787256c86d 5fb0d18ed69c75527e94e653ed8e61cb030bd486 cb48bcd263fb4ea36da06278a5119e123b186f8f8ae90d57c4bd2424db5a22a1 Loading...

	unknown	178 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen12708 Hash a49175ecff91ba9afc385536873968dd fb1fb51262c5c69f77af6fbcafd9769f60dc35df ee4823ef878bb383269729a29aa7fac7fc7848911863a237240c1c084b3ef4e4 Loading...

	unknown	141 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49263 Hash 15280134fdcef4fbfee660092f3144f6 d19887ba79a8472d4889acea3e13faa8472a0095 d107bc8e7aee8b252ba40b51b410c8b24f855b75c57655cb27c3ab1bdf9b26cc Loading...

	unknown	145 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen12942 Hash df1f315e29fde234553d5b9a06e0b984 2b56a4cbee99c4bd0af58ffd66f69cf0a1b0fbf2 56a372981a3c25e06844ded641083cd3ed0d3e4abc2a691db139f3f7a4278e7d Loading...

	unknown	256 B	2023-08-30	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-08-30 00:11:27 Last Seen2024-05-05 01:38:58 Times Seen5203 Hash b05f2b50005eb7c926834dad4c1d2066 3702a641def4c83c2aab95b0d55f47a910c17116 1908cbdc0c4705cef5c50e1526319ddb86dfaee160549a74d254e2ac8233e51e Loading...

	unknown	125 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen48158 Hash a7b042fce2504df507ce2bac5acab786 0c38daef0d9b4319bfdf568543d2e6114d35e558 81bedc11452e950d2038d1cd71159289c8f9c8d38dffaf978909355c76f9c94c Loading...

	unknown	314 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12623 Hash d06df1863df6fc7df8f8351f19beb285 8a66f9eda183d0943c7d43cbde66f922a79b7c6b f05bf851589e6f3bf0fcc5db9f9e2bb4ced6546082d898db8bb9967f1abd21d2 Loading...

	yukrtg.pivitai.net/shared/1.0/content/js/ConvergedLogin_PCore_jHSrlUosdD1xxbmcR_lMNA2.js	444 kB	2024-04-25	2024-04-25
Pretty URL yukrtg.pivitai.net/shared/1.0/content/js/ConvergedLogin_PCore_jHSrlUosdD1xxbmcR_lMNA2.js IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 14:58:39 Last Seen2024-04-25 14:58:40 Times Seen2 Hash b83d2a085da6f86ffa1e079ae0dc9480 c2032df50e93ba51f1e926710739b8c796aa4e75 f2a6aec6bd796879be1868adc44ca6e22bf7bbac484e6a2a896f09b08463d41c Loading...

	unknown	139 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48476 Hash 86b3be1ccbce8adfb2854a01389327c6 bd8054464a4f0fc2cf65d3bd934644d4e8952171 a50c47bfbbacd7da7ae6253c89128ecf495226f6e658c92c253d2bf8fcbf7a8e Loading...

	unknown	212 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen44719 Hash 69eeb355d4194f762d4c3ca3cc2f2834 7fc71773dcdc53396710bbfff15d539475009883 3e4cbc63fa24fb66207e8427d9450beb1b33a9ae25d06f0283b4139681548cd1 Loading...

	unknown	156 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49277 Hash cabd071203d30f3908d60d542c3e609e 65ed9c597be50d564f1b158e48c0709add140631 bfbad18f09a9ead87d6d13bfbd531f2870671056f778ab6ef2f4f48a941a97a3 Loading...

	unknown	373 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen12721 Hash 27c3d23c86df5d1a52f7c97cb5843ae6 8c01b2bcae010ee9290166a8e8f79bc460e9a9db 67bdd59ebe9a537352ddd2f4f6acc36220f6b65a516f39ed56956cc7e3cb8e6a Loading...

	unknown	129 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen49317 Hash 925f6727adcc10a6b7eb99c68aeff854 a0958cf5b79b770ccf509885101635b18d6c4519 bcddb4e8065f34320c4ec41402ee7159f637c399e7b43af70db4144460d77253 Loading...

	unknown	141 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49291 Hash 6dfacc36aa0f022b10c8854a92f136ad d1a1e6317b765ce9c16ac7ad408865dba5513cb6 1160494e76579afa81c93f8307c8ff01549fb71b9046298d87767eb201a6a5a6 Loading...

	unknown	129 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49241 Hash 6d4aa4d49083a0b39365a07ba6cdba54 a70500a11d7b7b1f12134d9f0b8a7e6df88084d6 897df64b3ffe15ce162ba7db9d42b305722903a3c81429d89ee0385e17b1f6bb Loading...

	unknown	130 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen12940 Hash 462356126e613bff4b6593b0d7dbf302 dd0e2d281922b907ca6e5ddd226f17d75b2462f9 ac899b3bfad1bed547ec8c0c74f6d90708cbfde6acd009e08ac586f9add918c6 Loading...

	unknown	145 B	2023-04-13	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 19:21:16 Last Seen2024-05-05 01:38:58 Times Seen11107 Hash b490f3feb060fbb86b2c2d59297d3103 b8d851ebf5860a703b805f32afbe1170b32029ea 6697667ebfd3926f932400da10fff8405c3cc4a90d9a3eb5426aa46608bae6c1 Loading...

	unknown	134 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen12949 Hash 9e7deec7507569695a11bc8044cee814 bb4d30df38c19e233c9f876a6e87dd1e743a95f8 9cad29c7e9f7d0943bffe0903384675e65ad7586b81401525f84d84c8e6d1a55 Loading...

	unknown	142 B	2023-04-13	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 19:21:16 Last Seen2024-05-05 01:38:58 Times Seen11108 Hash a9afc26ecbc88784c05a48fc4aaf3332 573f0e41db773c774c745120356db19c2f9ebd46 c8a0ef432fbc7ae4085522db6ff4c04320b2b9f7fa4d0b5b2104d8b00ca9d871 Loading...

	yukrtg.pivitai.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_7f0a8c2a247460fad87f.js	224 kB	2024-03-07	2024-05-01
Pretty URL yukrtg.pivitai.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_7f0a8c2a247460fad87f.js IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-07 22:04:29 Last Seen2024-05-01 19:22:40 Times Seen1114 Hash 5252837ffa272234e1cbf2d3d83ef32c caa4e48a54a2b1ca09327e42f24f6031fdf21cda df2e852c347ecf82f70a0c8a4b91713fbb0914d58f2cbab01316bfe646abee7c Loading...

	dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM	12 kB	2024-04-25	2024-04-25
Pretty URL dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 14:58:39 Last Seen2024-04-25 14:58:39 Times Seen1 Hash ebfcf968f46dc80b53af799b86963d01 bc5e00307d2d73973c405c9aaf9bebba442740a0 e905a2c5c1cb62fb9fdc821da055509154849ca8bea8757eb85cdf4e78d839f9 Loading...

	unknown	295 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48589 Hash 56a087187e45047e79a3808d1dec731b 946fe70f161d0864a12426488ec3c12cce49ac32 a8f7dbf249fe4aa3bb01ede5e5d8e14f305aa72673b716969d1ef3356c4fb905 Loading...

	unknown	156 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49281 Hash 58dc4aa5073f5558e0d53f83721d7d4f ba49484b5ea9a1f1f31bded1369f9b038992d66e 953874a62d66840ba68a6459c31dfc9d8a6efbbdfaeedcd9f5aa71f55e3f6062 Loading...

	unknown	132 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48471 Hash 4136202eafde06eaac5ab30f64c7b6d3 ab0c6bdbbbf20bb433a8717ed4974ab0d7b4b8f2 45808df8f6562e9dbd4558c8a2fbd8985c2bba45d8f48fb209fe8d3ba2291d27 Loading...

	unknown	429 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48529 Hash 9b658e67a0a945ad1dd9821aa6ffc3c2 158fa6f5e7a7c184112f60c571a37a5740a4daa2 1aa36676e0d78f0a2261b5e90a4be2d61ae5e94ae7aa109fdd436f930898fe05 Loading...

	unknown	138 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49327 Hash d805556782412c58dc921ae3feb3a808 d56796d34db29683859c7c9517b7a6bb27dff483 aebfa3e8315395020bc6cc9a1e50ac4408b712c09ac4f11d2fbd3d31f13fe7bb Loading...

	unknown	131 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49280 Hash ccefa1711e89f3a4731e5d98699833b8 3eee1420723c48d0a9bd75ae304e1971edb84a63 e6efb827ac720ab17864dec0909c9fd680206287ea998906ce3582bf03f87854 Loading...

	unknown	145 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen49203 Hash f598c49d93b389b760deb45fffb4a0ee 7666fe099b8f08ac030d82be27c57e8bf0e24e6c 83b9230e8a955aee9248eb4b133de25db10868c16a9f2c90c0b25aea74acfe1c Loading...

	unknown	160 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen32513 Hash 5e7a284c75ac11ca51a67d2046ed52ae b392d0c6ed6beabd1644186e3e61900a0994832e 13e46f980d858893f5c9d4ffadefef3de158dc252bffa046edaf71223d9d52a5 Loading...

	unknown	123 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12754 Hash 49c53fc5060b2cefa86a9fc8eac105a1 e79b6a6bb9c7120456bbc774ee6e44d511d315f2 2b0ce0f5a0817e34673ede4672961a462c98b1f7b0389f6556c791ec63f83599 Loading...

	unknown	648 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48294 Hash 02599824f170a285500c55bdfb8a5435 d428d6d3dea44f30c266c16c3b00c3aee662bfa9 5ee3d9f18889730de137972248d0223976d894a7ca2a66fb2e100e52d7e78626 Loading...

	unknown	238 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49228 Hash 8917e210b14946766e12b32b5e46bbcc 7a08433ee5b0807e79aacb4d93740d4ba46c0307 b468677948f4b9f4d2de6120e6c5d11bb3c52d3d17812c706e7ba63c3f66c865 Loading...

	unknown	268 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48690 Hash 1a1b55231850e3f161715f779cd47ede 3dcfb726d7d1c0f6fe41c7ae1aa8fd7ddd24e4dd b9809b8ff5a5bf421610ecc630a903c14d6f736e9c1a3633ff74058c6a4a10f8 Loading...

	unknown	249 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48489 Hash 0f63124899cc9ec1e97f6c5849c5bb40 969c972b38e13c1517eb82a6bfbd00efae59a1ba a919341902d80bdc051295cbb92d26ea310519e458b203efd78a2b5927da8b1d Loading...

	unknown	184 B	2024-01-23	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-01-23 09:39:41 Last Seen2024-05-05 01:38:58 Times Seen1198 Hash da91769c024ccdf21fa1cda4acf15b08 c5dc7f9585e2498ab3fb74a8b5d925c6bbb82487 0b0bab4d8a317d8b35b7652577e6da9cf74c425a1c558970fc66028ca58610ad Loading...

	unknown	218 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49346 Hash 24298d4e415794be6d38915294246e55 c9f48b5d108a9cf5edddbe39e67c5f66551054d4 4db734f2d95c9beb2133c971c8f5292484bde470da7895c7b986d3841b15b433 Loading...

	bdfdbdf.pivitai.net/owa/prefetch.aspx	0 B	2023-03-07	2024-05-05
Pretty URL bdfdbdf.pivitai.net/owa/prefetch.aspx IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 01:49:38 Times Seen37351782 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	122 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen48512 Hash 9ce1dbf25379a0abd5dbdd6f9309086b ef0b5d9121af12e5aec12e691c8fe9256a96ff42 b5fd5e6068ab9edd7a59eb852975a6e3ac971b251b3f9049d808edfc96ca63cf Loading...

	unknown	365 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48101 Hash 78112192de7731947de26f1336c843c6 d0ce117f0e1c4ac71a86d0372cab1d121d84ec8a 57c26228dfe253c3587a4ebccd3c8f066fdfa4ac7aea9450b24e10102c7f3bb8 Loading...

	unknown	510 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48407 Hash 1dd434f328b40a9b2d0a353a64a94503 153bef6dca8b0f9df359e36aef9da4c0f4d76ef2 2faaf27bd2fc96afc717b9b86e687f7f7e28b9682e59be10d8c966831d681d9e Loading...

	dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM	402 B	2023-03-26	2024-05-05
Pretty URL dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 06:26:29 Last Seen2024-05-05 01:38:58 Times Seen48712 Hash 87efd6715519349131af142156db73f5 c97a4e521b65745b007efc70d310bc3d881592e7 03bde50da68e75d14367644f9f52809af9b55dbba6c171ce2c7b93523cdc5578 Loading...

	unknown	322 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48582 Hash 2a49902851ee999306d13f30c275bc70 ec17e09ae3cfba2815da328f42fe1228c48482c6 30d7b9f803b2410e995b9a2169df21faeeca2f927e9ad98ee037ef54137ac933 Loading...

	unknown	268 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12993 Hash 918e01b24a84a89b5ebbb1b92bfed007 7d516f6e052210cc9963b30cc3a02dfd88d641a9 fd22892cbabe3af05fbc09ec8b0ed642f4585a040e8ef10c0bed39f2e21bfaf3 Loading...

	unknown	147 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12804 Hash d48ade5e9a37e3ff625427d14e308218 a69b5055c7c6a12e9731be0facd85eacc5d5459c d0b067cf3b40b2dd88090967118f0ae556cbce7a461129429cd658756933e71e Loading...

	unknown	371 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48134 Hash 5c2cccd4303ced4840994c0595776dd1 04313a1a2fbf13beacf18432a3fdc441a91bdb4c f8ca848d66a82cc95d024d16827997ef686566d466a6a137bdac0f3b8e480cf4 Loading...

	unknown	135 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen32546 Hash 5646a822a38db31a3e2d67c699a570ce 693d6e5cad482e0d0a66b360ef2bb9cfeec52ee5 793e8f651afbbfecf536a00214f6140679c793c08da79b08b2d71d7a5be38714 Loading...

	unknown	123 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen48159 Hash 974d1c0e6daa09b56d9b985e2d994d27 376c91b8eceeb4074131bda9f9d805cc5a2568ed 480fcf23f48afbf0e1e6442f4ba3d4d6464d27f5c77096b5d88ff92852addafa Loading...

	unknown	158 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49305 Hash 33d2114a25b6d94b7ca8c026679d4f8c 5c6bf3e6a687899e3b500a0bd01f0ec230f96d13 fea91015a0cd88279986e66bf35013e84fa122c610ca20b1337aa582324e2014 Loading...

	unknown	219 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48466 Hash a0aac9a36e32b76d443890a54f50f871 e867900187230080c3c7c3666cd7e7e665b39080 6c6e5cdefef8b696190ae8df547f038705a3b6bb2ddee464cb01ece3d8c97e66 Loading...

	unknown	144 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48519 Hash 176148a522a29bb81811e03d4013bf3a c105527f20e442d082a763f3c2c9da024703aab5 189bd38fbf3a8cafa3ca1da1f812bdfe2f499a4b8958dc73080a38fe2545d2e5 Loading...

	unknown	1.3 kB	2024-03-30	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-03-30 17:37:40 Last Seen2024-05-05 01:38:58 Times Seen385 Hash a36b9e4966d8c08c8246a9f1ea640cdc 4766f7689069bdee4b99fb4acf085b774ccc7894 626101a5cf64a7fda5bb48c10fb3ac46c020f9ccd337f143aab52d8128719b42 Loading...

	unknown	839 B	2024-01-23	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-01-23 09:39:42 Last Seen2024-05-05 01:38:58 Times Seen1176 Hash 02f2427c33d8c01c4f181ba904a74d35 ac90abe819aff698213492f4a8237d753a08f323 1d4ee2e5bc0148c0be737f20b18b374855b9ca2bc4b7ff57f92d38aae978d092 Loading...

	unknown	130 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49341 Hash 02eb3531f01d0322b284da627c8ce70e 68cff9a5bacfe18566e40e4a87e1358a3ca6fc27 f38b7602a7b78d9ff0d8f1c1b50dea7fddad38e3b4c51d6a391167791d7f6f33 Loading...

	unknown	166 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48626 Hash 4aacc25ba6edbf0e15ed61a0dbd0e704 fb8d758cf238f88b3a46d574bff1675cd88d25db ce3b2634b7c86e88b2048f67b775eeb9055e2399d992cc8998bfba48338f52e9 Loading...

	unknown	126 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen13946 Hash 97501b077488102a8e978d1a70a3fb48 23920dc1a85f0f4fdad1488c5907a4b270014057 186554d636c6d7ca195fe650d2e681fc76af8f1c3b23a3916426452193f50f8a Loading...

	unknown	137 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen12916 Hash fb2ab7121d3400f75d58430cd59fa127 22c90348c51c757db6180212314e07fccf17b76c 3070374ee32ee4871281ae0a7b71e4a45e88a542dac5e226159b9fee8ec7883b Loading...

	unknown	525 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12754 Hash de543247a23b941e31f3cbec2584fff7 d58bb3edca08011d75387ebb60913a71b28804d8 d9697425a936227a1b751f68e1a831e652df7b1c9b786fab4f53033afa88b2e4 Loading...

	dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM	35 B	2023-03-07	2024-05-05
Pretty URL dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:22 Last Seen2024-05-05 01:38:58 Times Seen47859 Hash 2badc56bc4d494e70d476b2e4efd31da 384c5f0842cd2f786b0acc4cb159b75ad3620d46 8684cc6fc8b42cd798a7e1416fda8af6cea601dca2ecd3a253acfd9649f58fcb Loading...

	yukrtg.pivitai.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_l2bvdjfwt697xziuhxpwsg2.js	55 kB	2024-04-15	2024-05-01
Pretty URL yukrtg.pivitai.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_l2bvdjfwt697xziuhxpwsg2.js IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 23:14:10 Last Seen2024-05-01 19:47:07 Times Seen485 Hash 6b667ea57e3230e848bb7f8ae8e74000 bc19baf672b22189d6a57036c951739de311a6a3 db36ffa0650873fb548f84f76bd756aa0b374ba6c2e3c33b3e0d5a7c8046c527 Loading...

	unknown	146 B	2024-03-30	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-03-30 17:37:40 Last Seen2024-05-05 01:38:58 Times Seen410 Hash e32b06fa1d17142a9745af73ea4d939a 5fccc81c276fe9d54c1e716d85211455ab6871a6 852c9a47464d3ec638675202e7786933ec8d360dcc2b70446fe3de36b80ceaa8 Loading...

	unknown	138 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12755 Hash 80a0e9c3d0c4034e7c84c0ae3aa20186 9d13031d666946064fc05d9da42572bb7cc6c04e fb09ec901d9fb5675b0d33fbbf951d52e6c20de18239e22ef5dff46689c3f61f Loading...

	unknown	122 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen48172 Hash 2a14b9a579dedd1a8b93bdb76b82149e 5d69418b62f251f661716ecb4ff26a490ea6782a 435e7f43b667a67a7ce0065a33699ab6079736d1b0c6b1d46cd1e24af4eed355 Loading...

	unknown	182 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48507 Hash d72b84a29ba8d12e32de650e5a6787f7 659b8210feaa6d71f1ca267973a45cb6b551a58a 4d0ecd75b1eec2592e0d6056e737a1d1195c5335969eda9812382cfacacd403b Loading...

	unknown	157 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49197 Hash 294acac958bdc9b774a425945f220aa6 dcf29e084399e4843cd942a8366ad49ef7038b72 4b51787828659a3752ba6840b975c237f10761bae41f0c80c212037129397bb1 Loading...

	unknown	142 B	2023-04-18	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 11:29:09 Last Seen2024-05-05 01:38:58 Times Seen7483 Hash 1ab8be474fe11cd5da88ffac7ec8e7f0 ca0fa8056e2e60db8ccea7b503661ecd37b8579d b6852bf7f35e9287491799f16f748f1280d28f7ff6f441d7a6ad93eb9e898ea8 Loading...

	unknown	189 B	2023-08-30	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-08-30 00:11:26 Last Seen2024-05-05 01:38:58 Times Seen5203 Hash 3f2bf8cd413908a88f4aae7fb045e2e4 388e614924d5594292ce9eff0ac04a569f1f1327 a777ef41148a348f0446c6ec542f26ebe8806641062a71aa7cab7577db62c197 Loading...

	unknown	343 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12570 Hash 69527d77aac96f7071d2d9d6610a4758 3b055e2e25a4f6c315354f4c89473b1b3b80b02d 67747c16b0be05d18d63d4845f0744db860a5bd9d2f267fc3b279baaa2d08122 Loading...

	unknown	122 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49310 Hash 7e0728987fb35ea99a16d93b1fb8517b 60b47b12296ca861b395fa199d7747b96f799f54 69a537ca412b027fd6d54cd39043603ab0872782fb5c4a4698ead6a7fe0a6f41 Loading...

	unknown	127 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49304 Hash 7745872e26a4d1e4481804ca08d6b388 0cf480c0f0a8c89ce5b2f1e9417bfd14f0ef3de0 f2943961acb24fbc6852af37d7ee5fdf786d6f1ae924d4f82ee53e88f82fce12 Loading...

	unknown	243 B	2023-05-14	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-14 02:04:42 Last Seen2024-05-05 01:38:58 Times Seen8725 Hash d57215b4284f17c59ecc5889df6216fa 76459464702073b753d0fa68957d4a02b7db156d eb4cafa2546ab0fbc90245c809792b5d721db8d04fc6c60985447d13d5caa8c0 Loading...

	unknown	132 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen49216 Hash 8af140adc1d49b5989704f08b54fe4fd 452349aead145f4cb3290c08e2a86df6cca6c81a 352f6d08bb356a0b163e3157416fc8bfb6790c1c3925b8bed46821ab545bd51a Loading...

	unknown	178 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48201 Hash 8bcd9b271978e46c47db0971c76821fc 985f2ef54aba93a739fb8baab1929a7b89260f01 6eae6340cbfcbc09c22161b19bbb400d1b9c325e99a2b88f90afb4d73d3d4443 Loading...

	unknown	139 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48413 Hash 60613d37aad65c1af305ceb79af46a71 8463c16c00524c42700bd12f64a33dd8c4d1d0fc f39e9bcdc0db09cf6080a0e47bce1a4a5e46d17e462fe0e355aefd2e3d0252ed Loading...

	unknown	119 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:59 Times Seen49283 Hash 50765ede5366444c4a96d8c5712ee230 8386fd95d0468ec3bd472ce6d0668068b97144fe 1c79401934ba060d3f18bb13e8af3484876040d7657d790af52dd9bf7b679d14 Loading...

	unknown	163 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49289 Hash a8ebc9ce5b236e7452a23e16310d2340 10fa2b74d19fbcaf4fe56d0393d9254bb26219cd ce978ec09b08fb8d63152cfc7ac907add72c84ff8171ba98c051507efde89546 Loading...

	unknown	139 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49220 Hash 9f2eb28b5339f977ef9e820c98e04925 7f0c2dd4c34b934bdbe568d27b94eb4b466fa44f 705d568a9d6400951a07997310a1da3b5aa923b09ebc0dc8a1ae9674c0e12350 Loading...

	unknown	270 B	2023-04-18	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 11:29:09 Last Seen2024-05-05 01:38:58 Times Seen8530 Hash 58fc918387435c06d1d489b041b6b6ac 8ba345109a1091ac25f25e030d7bf58ea3a2c54d 476c4bcd92bcfd3fd98d41d83db2c1f06bdd68cc3e16766e7c05539c11593172 Loading...

	unknown	116 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen14048 Hash b61d4aaa0ea88249495796ae2a6ce25a aa0d2827b912c5c19dd8a10c6a6ed604ad03b1dc 0e65a31e1b857b431f7b35104dc47271fa82999a6b775363669164d97f23e196 Loading...

	unknown	153 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen12609 Hash d8a8c8bda3797d9b3d998bcd02031cc5 a586faaf4887bec7febbbfdde2ef55a8f461b898 7213a51f9bc816838ecc495f3130bf64021469ef431413c64b173610719c3e2a Loading...

	dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM	350 B	2023-03-12	2024-05-05
Pretty URL dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:51:44 Last Seen2024-05-05 01:38:58 Times Seen6068 Hash f214f641e53deb39688a8c9c37553b0d 7f31b9a2a7cf087f1baba56936c559438c38ba7a 551efbe7ce8a2c64cef043808f9367c3e4d382615601e03a1791c57183f5784a Loading...

	unknown	164 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49288 Hash ebcc83ae6a0f5c082a1020c32d20a117 8eb19226ddb7d743095338b91de50ab06d94fafb f4a17f9209db717ca992f22f747eccf52a419bec4f07b58e48115583c986c25e Loading...

	unknown	166 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48635 Hash 27ddbf5b552d07dd31383812c8a8b921 bfdf72fc59b58d0226c6271b54372efbb9a05753 7951cfa7c79101bd18273fc112f283b989a0b87b7dd762c983ec4b6b59acb281 Loading...

	unknown	146 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48986 Hash afe6662c871a1046e0625038afbb4909 be441e7e1f5101aee5ff5e237b41b75395bd7eff 19d6a0a97a9c490e1f1424d8da698c74f9ce8a3007882ba796d01f4dab15fb2e Loading...

	unknown	204 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen48365 Hash bb0a83f5beb0e2c64d41c222133bd3ba 8012324a7cb2767933e46c4bc6b736bab161ed69 d91e3488b91b72401bc63c62b07d454665c47a6efd5d96911e0d4788ea93b8f6 Loading...

	unknown	393 B	2023-08-30	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-08-30 00:11:27 Last Seen2024-05-05 01:38:58 Times Seen4448 Hash a35dc642698550f2297698f6a47409af 489acb0063ac20169c35566993b3a4d2846e5cb5 977ccdb554c5712e6c34a69ec6d32e86880f697f7ff9db4f1891b99e9bd88c23 Loading...

	unknown	133 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:59 Times Seen48382 Hash cd2b808764b9d804b56b33ebf1ca68be 0cc03444a7367105a24de9762e80016ef3e5be32 8ab58e5a5036fd467aa6e387ad926d0f60678fcb41bb0607d0659daad7ad8a5a Loading...

	data:text/javascript;base64,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	875 B	2024-04-25	2024-04-25
Pretty URL data:text/javascript;base64,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 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 14:58:40 Last Seen2024-04-25 14:58:40 Times Seen1 Hash 19dfc3c42d68459498d9ed19acf1c5ff ea5ebbf8ea2cd6c86a1b71a19628a0b84b28b33a 663053ef895163d7525641d5b675f92e1a3eeb361b6a2ae766bd04a0ac1549c9 Loading...

	unknown	127 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen49347 Hash fdecf61193250e9c0e37f3e64b1af8c1 c3b5f08d1047f8db26875db6ecc33e99c3432b47 e8adb8b4ab71be5e920e578c0f2c3b4874f4d286f226e71d79abcf5a9ab7364f Loading...

	unknown	134 B	2024-03-30	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-03-30 17:37:40 Last Seen2024-05-05 01:38:58 Times Seen410 Hash db2132db30b74b68f83a4506593122cf 57608cb83b3cefddee0369133d8d0929de32f2b4 60ab03147afb6a2bbe769be362542c6958c1a024b04f05cb5c0ad1c35f7cf22f Loading...

	unknown	215 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen44711 Hash 01d56260dedb02027ea806e4eb1a7322 a148282760374167595f339cc3203e3d074aac5c e50c68086aa41b85bc504198d1cba07fe71fa0c2f161a36fa4cc38cf8f074f22 Loading...

	unknown	137 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen12952 Hash 876f2af2845629c28d0b9c3b777a0fc6 4419e83994232f7f75d6e3197befb2af70a39164 0a4e075a29245c65bb8b28a6235a8f92fc3619769da86ca9b1aa6ce027e971b3 Loading...

	unknown	190 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen49220 Hash 7bac1f31c00530202136bb78e1c07f02 d25ee8056ed2fd6ed63ba6845b9bf48376abb51c 264d4e690b08decb7d00e45eac02601b703544c7cd50b471cfafbf674fe69a46 Loading...

	unknown	135 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49402 Hash 8b196f1db4dde2500db87181807a6cf9 db14400ab1f3aeaf42d92486461a69f6c5ff25b3 9aee824af9dcf82139a3622c3419fe8cfef5a05555e57c2c2cf820b8a9a28b54 Loading...

	unknown	126 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen13953 Hash b457bf71c1e57aaeb4b11b1d74cdc0fb b538428bb556ebdec1c3e67bfaa441ac943a9e26 bac10f6d659dbe94c3af3e61d32a32b01621a4972a5b2a6f3f20af323848ea31 Loading...

	unknown	117 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48176 Hash 4b979c56620fb9d7cdd017c5231928f6 00f08cfaa27f75f0fe47e379c510c343cdb0f440 10017a646623e0e0bf161f8983bc7e3ea46e3a9e3755e36bc423530276d849a8 Loading...

	unknown	282 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen12932 Hash f06a226cc7a12159aab7f6fe67bb9e6f abc3100550653649545ad9bea0ac0680df564a17 2cb5fd030b4f5e2b5bdd7dacf76ce41a9e56947a811eb6e63f43e9146dae5a3c Loading...

	yukrtg.pivitai.net/shared/1.0/content/js/asyncchunk/convergedlogin_pstringcustomizationhelper_eb638da25d4055fbbb57.js	114 kB	2024-03-07	2024-05-01
Pretty URL yukrtg.pivitai.net/shared/1.0/content/js/asyncchunk/convergedlogin_pstringcustomizationhelper_eb638da25d4055fbbb57.js IP 172.67.223.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-07 22:04:29 Last Seen2024-05-01 19:22:40 Times Seen1048 Hash 5b0e3778c74235b06da49808dd8df90a ad25897b0870b81568412f55b19898e406cc11b3 7530b843a86f3155ce07cda787a40da87052664b09c22f3d4db5e9238664dbe0 Loading...

	unknown	133 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49286 Hash 7fbb63178e292527295680630021ccd9 9c28a9e481bf2abddf6e2604908d3682a6c53419 0ef25cfbad60cc37f131e96680775ee4a86aa4f4164ebd394d65a73cbc7e5968 Loading...

	unknown	761 B	2023-05-14	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-14 02:04:42 Last Seen2024-05-05 01:38:58 Times Seen8726 Hash 8ab827fcea0821b966c2e6e56cac0f03 e8aaac5845e43137f36bceccb5ad374319dcae56 3793817975ed6cb302556f46498339fe0ce24a72efba81212dd21e2665367aea Loading...

	unknown	139 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48494 Hash 7ca500820bb75bd3f0a7deb4ae11235a 21f0a213c723d704c9f2bdb043e5a9deeec1c0d2 d900040a3b1083c0d0bce88e6f7e9fbe3e3c49ea8de858a943291a1e2da49fae Loading...

	unknown	119 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48885 Hash 7f7c829d73a5499392cec1a69d4b2501 537e4e672ddb2e9077522987cce4800ab4611bff 52224fd61cf68b05c387cb03866d3e5dd792c1adc574b00b4c71340b22889843 Loading...

	unknown	148 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:46 Last Seen2024-05-05 01:38:58 Times Seen48884 Hash 0957fbe41aadc1662a1d005f31c75cf1 bfe3488c6d4cff301804f63aa595884e3f416ea5 1030ba215f678ac1bcb2a611eb8616f48c075f1cc833be242a7f2b47fd2e5051 Loading...

	unknown	121 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen48177 Hash 8ed22a79ae73c8b85fe5d0bc6dcdf1cd 00695c7cfa3509706c2e8c3641a348a1d8c832e5 68bf13946b656feb2c26b4132541bfbd587f59cd86ce9ec6e68696ac53022fa6 Loading...

	unknown	206 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen12744 Hash fb667518f3345f3b15c9e8b4613cfc52 5ec7348b75464395bd77bc8e2adc46c9ed09b63e f9059557827ba5ba68456d100b7398d6f062d790c02a94bbca0867cf25dec9cf Loading...

	unknown	175 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49364 Hash e945a8c1ff6358f315cdb91fb4d9ae9a a1ba1ac3d3e78a4edddab0c3c74b0ae10a9abf0c 3d9c657e8ccb6a4661233b99072765426dc9626ed4cbbd6701b7f1cf8896209b Loading...

	unknown	139 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49303 Hash 313d69474753aa56bd413a460d339ccd a6f1f5622536afa7f8c9e994dc1ac3f17aabe2e2 fc972e5d95cba022532561e257047f0181dff6ca8efe088c4a8e16784c6dab27 Loading...

	unknown	179 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 17:36:44 Last Seen2024-05-05 01:38:58 Times Seen48510 Hash fbc3bab0eec0a01618e2e136ecc68711 ed8f9b10792dc9fb73a205d8e5354873418a0033 d43b9d101f3059c2089746dcd11f9094695abb4408767f9f1835475c9b328864 Loading...

	unknown	204 B	2023-04-12	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:45:47 Last Seen2024-05-05 01:38:58 Times Seen49279 Hash a03a0267bd7c725b846d8564c8b2a968 8dd481043c4f69fe476db72f0e1caf6efe83f477 9ca7bb02fe730da393bcc4fb89dcb9c355056d3fc7704ab6c3410c8df3b3980e Loading...

	unknown	176 B	2023-08-30	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-08-30 00:11:26 Last Seen2024-05-05 01:38:58 Times Seen5199 Hash 5879457bc4d0d4dc193a5eb964c218f2 2555bab575ac0dff04aaa08de202a836816f95ad fbeaecb588b2950b183cfec6e015d6942637472f23f1f7850bda5fe2fe14a810 Loading...

HTTP Transactions (23)

URL IP Response Size

email.wantyourfeedback.com/ls/click?upn=u001.PD4nPnyJUo8oiEzSkSGLgaBNAMtLp9U5nstWElDmnpXtySPOXSs4GxXhEZNYegDWlOpy_1gt1aDjd5mPVItYgazWgABkVm-2FZUH6kt1lIvkdtkRWsfoyQV18ixDvOX-2B0tU4ZH6SMN7PC0YJjM3gcvFPvh6CbZuFXlOBXf3FWLiJkpKJ7Hjba3S4-2FzhpmkR8VdprfK8GO3qSu-2BzqpIaLLC-2Bva9kOn7HY5B7OIgz5EOl88o1lnRSRpayTzqRzTSFhtg2Bi-2BI4dAZ7qHRbJ3vb9lcrxBKqAk13I-2BCAvndhSK1Vi4ubCjlp2xQlrXIHfzqmLiSPjl7tEmTsLYr99h3esBOPv8ASLIpf873P512I7xYEOjogT1gQCerfZNqh6K2IdWU6lDJ2r3wpU6ug02vU9Zslw4DYpuNNZQNVtap5mqv9Xf8D1PYQxYI5BK4owXOV2wEXeRIjST24XAw6EO9D1tdiGoHDRaxW2QofayefCuiW9Z191aML90svJWojHiQp1Fq-2BXFLiyEx8V1eLa7dixfJ23RRWtHvg1jOrHp7lqvXRA7dobs-3D

172.67.205.177

302 Found

559 B

URL User Request GET HTTP/2
email.wantyourfeedback.com/ls/click?upn=u001.PD4nPnyJUo8oiEzSkSGLgaBNAMtLp9U5nstWElDmnpXtySPOXSs4GxXhEZNYegDWlOpy_1gt1aDjd5mPVItYgazWgABkVm-2FZUH6kt1lIvkdtkRWsfoyQV18ixDvOX-2B0tU4ZH6SMN7PC0YJjM3gcvFPvh6CbZuFXlOBXf3FWLiJkpKJ7Hjba3S4-2FzhpmkR8VdprfK8GO3qSu-2BzqpIaLLC-2Bva9kOn7HY5B7OIgz5EOl88o1lnRSRpayTzqRzTSFhtg2Bi-2BI4dAZ7qHRbJ3vb9lcrxBKqAk13I-2BCAvndhSK1Vi4ubCjlp2xQlrXIHfzqmLiSPjl7tEmTsLYr99h3esBOPv8ASLIpf873P512I7xYEOjogT1gQCerfZNqh6K2IdWU6lDJ2r3wpU6ug02vU9Zslw4DYpuNNZQNVtap5mqv9Xf8D1PYQxYI5BK4owXOV2wEXeRIjST24XAw6EO9D1tdiGoHDRaxW2QofayefCuiW9Z191aML90svJWojHiQp1Fq-2BXFLiyEx8V1eLa7dixfJ23RRWtHvg1jOrHp7lqvXRA7dobs-3D
IP
172.67.205.177:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectwantyourfeedback.com
FingerprintC6:B5:30:BE:B4:E6:35:8A:35:C0:0D:77:09:A0:98:EA:91:44:23:7F
ValidityWed, 03 Apr 2024 10:18:37 GMT - Tue, 02 Jul 2024 10:18:36 GMT

File type
data
Size
559 B (559 bytes)
Hash
15fc3325d892ece7fe04d8ed95ce7100
65d86b46b2cbac8d760f2f0ac33bcfebd180c04c
f12342433c01ad743a071a40312a71c3bb399a5119a3b0574a2d6dd3b780c1d3

HTTP Headers

GET /ls/click?upn=u001.PD4nPnyJUo8oiEzSkSGLgaBNAMtLp9U5nstWElDmnpXtySPOXSs4GxXhEZNYegDWlOpy_1gt1aDjd5mPVItYgazWgABkVm-2FZUH6kt1lIvkdtkRWsfoyQV18ixDvOX-2B0tU4ZH6SMN7PC0YJjM3gcvFPvh6CbZuFXlOBXf3FWLiJkpKJ7Hjba3S4-2FzhpmkR8VdprfK8GO3qSu-2BzqpIaLLC-2Bva9kOn7HY5B7OIgz5EOl88o1lnRSRpayTzqRzTSFhtg2Bi-2BI4dAZ7qHRbJ3vb9lcrxBKqAk13I-2BCAvndhSK1Vi4ubCjlp2xQlrXIHfzqmLiSPjl7tEmTsLYr99h3esBOPv8ASLIpf873P512I7xYEOjogT1gQCerfZNqh6K2IdWU6lDJ2r3wpU6ug02vU9Zslw4DYpuNNZQNVtap5mqv9Xf8D1PYQxYI5BK4owXOV2wEXeRIjST24XAw6EO9D1tdiGoHDRaxW2QofayefCuiW9Z191aML90svJWojHiQp1Fq-2BXFLiyEx8V1eLa7dixfJ23RRWtHvg1jOrHp7lqvXRA7dobs-3D HTTP/1.1
Host: email.wantyourfeedback.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 25 Apr 2024 12:58:05 GMT
content-type: text/html; charset=utf-8
location: https://dyjt.pivitai.net/wlFGCNZO
x-robots-tag: noindex, nofollow
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H6RlpQHOsOnlW1UTQUnZ6HU%2BGu1WhH%2F7Kuk3kAQu7inrpDhbnaKvijq8iAiw52XH8Ww%2Buz0ImvyqotEYMgXapEhcY9gSvyTaWdcIiTeNuIBOpU25xEKkkNJyAT4xHtr%2FARfYIscZ2bDhHJMljQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e80a469a7569c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dyjt.pivitai.net/wlFGCNZO

172.67.223.170

302 Found

126 B

URL User Request GET HTTP/2
dyjt.pivitai.net/wlFGCNZO
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
gzip compressed data, from Unix
Size
126 B (126 bytes)
Hash
716ea1d918594c53bc58f31c3ee1cd72
0ab9eed839e65716163282f70464eab08bcf735c
032b3ed267b9b68d81fba8c53fb1c5423f35914aee0e6190e2ee002e1178a2bd

HTTP Headers

GET /wlFGCNZO HTTP/1.1
Host: dyjt.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 25 Apr 2024 12:58:06 GMT
content-type: text/html
location: https://bdfdbdf.pivitai.net/owa/
set-cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875; Path=/; Domain=pivitai.net; Expires=Thu, 25 Apr 2024 13:58:06 GMT; Max-Age=3600
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2B3mt%2FFQImv1UJ%2BLJDXzLm0os0ECZlM4%2B9g3O3l2AkSNVL%2ByYCxkdwUa1ma9Yd1HWqh%2BrZMf9I2XCSiHlspbMKax2VYUKCAyjCqFtRRc6UHtNX%2B5X4xXmoiUIPrscX4btwfp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e80a79c92b509-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM

172.67.223.170

200 OK

312 kB

URL User Request GET HTTP/3
dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (20673), with CRLF, LF line terminators
Size
312 kB (312254 bytes)
Hash
c4f7f8f018f6681e285eb87c317bbcab
3b7f6229e38e9b279a7750a735ab80eca827daa2
0db0209b275ff793f54c2426f0735d315352ba464fcde1584577f75d70a7671d

HTTP Headers

GET /common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM HTTP/1.1
Host: dfgrt.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:08 GMT
content-type: text/html; charset=utf-8
cache-control: no-store, no-cache
expires: -1
link: <https://aadcdn.msftauth.net>; rel=preconnect; crossorigin,<https://aadcdn.msftauth.net>; rel=dns-prefetch,<https://aadcdn.msauth.net>; rel=dns-prefetch
p3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
set-cookie: buid=0.AVQAMe_N-B6jSkuT5F9XHpElWgIAAAAAAPEPzgAAAAAAAAABAAA.AQABGgEAAADnfolhJpSnRYB1SVj-Hgd8-xeGKJJEzWmFF1ZI8D8xlisnhkUUmMxu4z5n9awaSmArO5PxfRRSEQtdshomPh75mJxkifaeFXB00O9GPs5iAUa-8veAMNsNjjeOlpbymLIgAA; Path=/; Expires=Sat, 25 May 2024 12:58:08 GMT; HttpOnly; Secure; SameSite=None
esctx=PAQABBwEAAADnfolhJpSnRYB1SVj-Hgd8XQBoU37lqgN2VOQOB0AXJHGUcSa3CMeDBTYnQAqeUjmHA4qlE_1fXWqtXdOlRK1veP88ZYUjOBRkIjLzgJ5BmT07CXp957r9CUfG3Aow-6K_mp9QfEYmHBSgnNVGE6xv2b11aidf3PbfmF0_xyZ75apeBA3POY5sWn5MrWvNQXYgAA; Path=/; Domain=dfgrt.pivitai.net; HttpOnly; Secure; SameSite=None
esctx-wKihhuC13x4=AQABCQEAAADnfolhJpSnRYB1SVj-Hgd8aRL6FFYJw1Ci-zVeE59E2hAfJGEYYFqSMQqeVBb70Y1EA13i8Y2bnI26JxWOAV1u0bmwmVMHavK9WJYjBB_nafRLjaYfZc6Nos7y0enNkAkolfdwu3xNhXxFQ1Oho1_scm_4VktC8WR5cHFmh0bO2SAA; Path=/; Domain=dfgrt.pivitai.net; HttpOnly; Secure; SameSite=None
fpc=Arvo1MBNppZDlqvdjsgdXyWerOTJAQAAAGBKvN0OAAAA; Path=/; Expires=Sat, 25 May 2024 12:58:08 GMT; HttpOnly; Secure; SameSite=None
x-ms-gateway-slice=estsfd; Path=/; HttpOnly; Secure; SameSite=None
stsservicecookie=estsfd; Path=/; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
x-dns-prefetch-control: on
x-ms-ests-server: 2.1.17846.6 - KRC ProdSlices
x-ms-request-id: 66b3aa88-deca-4f80-8b1b-78f4fe3adb00
x-ms-srs: 1.P
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K%2FMz0Yjoo56CEU8DBeGDgs5Z9%2F56eHMbIA4EnspE2xR4CI8gvgtrhOOfZyvBlrMdl1qqeTwK5bQRA6ycUxghvZFNsuOLTuzIAkIwDxfVpcI2CXhPQEoIENCeT2cE5FjkOucT3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e80b68fbc5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

r4.res.office365.com/owa/prem/15.20.7519.25/scripts/boot.worldwide.1.mouse.js

95.101.10.90

200 OK

163 kB

URL GET HTTP/2
r4.res.office365.com/owa/prem/15.20.7519.25/scripts/boot.worldwide.1.mouse.js
IP
95.101.10.90:443
ASN
#20940 Akamai International B.V.

Requested by
https://bdfdbdf.pivitai.net/owa/prefetch.aspx
Certificate
IssuerDigiCert Inc
Subject*.res.outlook.com
Fingerprint21:55:DF:8C:D8:DA:80:F2:04:7A:B9:66:BA:AC:C0:DC:D7:DB:46:D5
ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 20 Feb 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size
163 kB (163064 bytes)
Hash
9786d38346567e5e93c7d03b06e3ea2d
23ef8c59c5c9aa5290865933b29c9c56ab62e3b0
263307e3fe285c85cb77cf5ba69092531ce07b7641bf316ef496dcb5733af76c

HTTP Headers

GET /owa/prem/15.20.7519.25/scripts/boot.worldwide.1.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bdfdbdf.pivitai.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Wed, 24 Apr 2024 01:19:41 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 163064
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 25 Apr 2024 12:58:13 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.7519.25/scripts/boot.worldwide.2.mouse.js

95.101.10.90

200 OK

170 kB

URL GET HTTP/2
r4.res.office365.com/owa/prem/15.20.7519.25/scripts/boot.worldwide.2.mouse.js
IP
95.101.10.90:443
ASN
#20940 Akamai International B.V.

Requested by
https://bdfdbdf.pivitai.net/owa/prefetch.aspx
Certificate
IssuerDigiCert Inc
Subject*.res.outlook.com
Fingerprint21:55:DF:8C:D8:DA:80:F2:04:7A:B9:66:BA:AC:C0:DC:D7:DB:46:D5
ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 20 Feb 2025 23:59:59 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size
170 kB (169666 bytes)
Hash
12204899d75fc019689a92ed57559b94
ccf6271c6565495b18c1ced2f7273d5875dbfb1f
39dafd5aca286717d9515f24cf9be0c594dfd1ddf746e6973b1ce5de8b2dd21b

HTTP Headers

GET /owa/prem/15.20.7519.25/scripts/boot.worldwide.2.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bdfdbdf.pivitai.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Wed, 24 Apr 2024 01:19:53 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 169666
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 25 Apr 2024 12:58:13 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.7519.25/scripts/boot.worldwide.3.mouse.js

95.101.10.90

200 OK

146 kB

URL GET HTTP/2
r4.res.office365.com/owa/prem/15.20.7519.25/scripts/boot.worldwide.3.mouse.js
IP
95.101.10.90:443
ASN
#20940 Akamai International B.V.

Requested by
https://bdfdbdf.pivitai.net/owa/prefetch.aspx
Certificate
IssuerDigiCert Inc
Subject*.res.outlook.com
Fingerprint21:55:DF:8C:D8:DA:80:F2:04:7A:B9:66:BA:AC:C0:DC:D7:DB:46:D5
ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 20 Feb 2025 23:59:59 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size
146 kB (145599 bytes)
Hash
d9e3d2ce0228d2a5079478aae5759698
412f45951c6aeda5f3df2c52533171fc7bdd5961
7041d585609800051e4f451792aec2b8bd06a4f2d29ed6f5ad8841aae5107502

HTTP Headers

GET /owa/prem/15.20.7519.25/scripts/boot.worldwide.3.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bdfdbdf.pivitai.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Wed, 24 Apr 2024 01:19:42 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 145599
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 25 Apr 2024 12:58:13 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.7519.25/resources/images/0/sprite1.mouse.png

95.101.10.90

200 OK

132 B

URL GET HTTP/2
r4.res.office365.com/owa/prem/15.20.7519.25/resources/images/0/sprite1.mouse.png
IP
95.101.10.90:443
ASN
#20940 Akamai International B.V.

Requested by
https://bdfdbdf.pivitai.net/owa/prefetch.aspx
Certificate
IssuerDigiCert Inc
Subject*.res.outlook.com
Fingerprint21:55:DF:8C:D8:DA:80:F2:04:7A:B9:66:BA:AC:C0:DC:D7:DB:46:D5
ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 20 Feb 2025 23:59:59 GMT

File type
PNG image data, 600 x 1, 8-bit/color RGBA, non-interlaced
Size
132 B (132 bytes)
Hash
3eda15637afeac6078f56c9dcc9bbdb8
97b900884183cb8cf99ba069eedc280c599c1b74
68c66d144855ba2bc8b8bee88bb266047367708c1e281a21b9d729b1fbd23429

HTTP Headers

GET /owa/prem/15.20.7519.25/resources/images/0/sprite1.mouse.png HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bdfdbdf.pivitai.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-length: 132
content-type: image/png
last-modified: Wed, 24 Apr 2024 01:30:10 GMT
server: AkamaiNetStorage
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 25 Apr 2024 12:58:13 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.7519.25/resources/images/0/sprite1.mouse.css

95.101.10.90

200 OK

288 B

URL GET HTTP/2
r4.res.office365.com/owa/prem/15.20.7519.25/resources/images/0/sprite1.mouse.css
IP
95.101.10.90:443
ASN
#20940 Akamai International B.V.

Requested by
https://bdfdbdf.pivitai.net/owa/prefetch.aspx
Certificate
IssuerDigiCert Inc
Subject*.res.outlook.com
Fingerprint21:55:DF:8C:D8:DA:80:F2:04:7A:B9:66:BA:AC:C0:DC:D7:DB:46:D5
ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 20 Feb 2025 23:59:59 GMT

File type
ASCII text, with very long lines (994), with no line terminators
Size
288 B (288 bytes)
Hash
e2110b813f02736a4726197271108119
d7ac10cc425a7b67bf16dda0aaef1feb00a79857
6d1be7ed96dd494447f348986317faf64728ccf788be551f2a621b31ddc929ac

HTTP Headers

GET /owa/prem/15.20.7519.25/resources/images/0/sprite1.mouse.css HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bdfdbdf.pivitai.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: text/css
last-modified: Wed, 24 Apr 2024 01:30:08 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 288
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 25 Apr 2024 12:58:13 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.7519.25/resources/styles/0/boot.worldwide.mouse.css

95.101.10.90

200 OK

44 kB

URL GET HTTP/2
r4.res.office365.com/owa/prem/15.20.7519.25/resources/styles/0/boot.worldwide.mouse.css
IP
95.101.10.90:443
ASN
#20940 Akamai International B.V.

Requested by
https://bdfdbdf.pivitai.net/owa/prefetch.aspx
Certificate
IssuerDigiCert Inc
Subject*.res.outlook.com
Fingerprint21:55:DF:8C:D8:DA:80:F2:04:7A:B9:66:BA:AC:C0:DC:D7:DB:46:D5
ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 20 Feb 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
44 kB (44144 bytes)
Hash
af8d946b64d139a380cf3a1c27bdbeb0
c76845b6ffeaf14450795c550260eb618abd60ab
37619b16288166cc76403f0b7df6586349b2d5628de00d5850c815d019b17904

HTTP Headers

GET /owa/prem/15.20.7519.25/resources/styles/0/boot.worldwide.mouse.css HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bdfdbdf.pivitai.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: text/css
last-modified: Wed, 24 Apr 2024 01:30:41 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 44144
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 25 Apr 2024 12:58:13 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

yukrtg.pivitai.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_7f0a8c2a247460fad87f.js

172.67.223.170

200 OK

64 kB

URL GET HTTP/3
yukrtg.pivitai.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_7f0a8c2a247460fad87f.js
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
JavaScript source, ASCII text, with very long lines (43896)
Size
64 kB (63704 bytes)
Hash
5252837ffa272234e1cbf2d3d83ef32c
caa4e48a54a2b1ca09327e42f24f6031fdf21cda
df2e852c347ecf82f70a0c8a4b91713fbb0914d58f2cbab01316bfe646abee7c

HTTP Headers

GET /shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_7f0a8c2a247460fad87f.js HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:13 GMT
content-type: application/x-javascript
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=31536000
content-md5: eZ+IAUPxfkfE79uz/zWlTA==
last-modified: Thu, 15 Feb 2024 19:13:46 GMT
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 38c5bf87-501e-00d2-45d1-7e3844000000
x-ms-version: 2009-09-19
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s1%2FaZNBwwT9aOFnMVSrJoC1mc5vW2AtnniqTprDNLBB%2FlWwWpBwT39UyM3muh1HCtLue2DOtbX3dQLRNk52qXPNmSu%2BniuZH2uXpJmO2l7E9Mo8ua7t6VXoVCG03QJyciRAwbXw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e80cff8f55689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

yukrtg.pivitai.net/ests/2.1/content/cdnbundles/converged.v2.login.min_1ito3russhq-9gioj-zd4w2.css

172.67.223.170

200 OK

64 kB

URL GET HTTP/3
yukrtg.pivitai.net/ests/2.1/content/cdnbundles/converged.v2.login.min_1ito3russhq-9gioj-zd4w2.css
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
ASCII text, with very long lines (61177)
Size
64 kB (63679 bytes)
Hash
d62b4edeb512b07abef4688e27ecdde3
981a7825da5e29938ab6fe0cbfe2db622f7b8333
4b01a0a34ce8ed4bc8a8713be0442d49da6a756236b7b4424622ca3dee820f41

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /ests/2.1/content/cdnbundles/converged.v2.login.min_1ito3russhq-9gioj-zd4w2.css HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:11 GMT
content-type: text/css
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=31536000
content-md5: kqhA3D0Xczna4D/t8ioitQ==
last-modified: Wed, 27 Dec 2023 18:19:21 GMT
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 7dcedb98-301e-0090-3ed1-7ebd51000000
x-ms-version: 2009-09-19
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CGIOo3Qv0aDZYgime9BIFC0wv47mjuVH4hq%2F3X0IbV%2B361rcWB%2BXdeDHRpPGFyK8WfZaj3foIEN9vSQHzz60hEzgEE4CXotHn3onakGpdVMvP4mOohXVSjI2a5YbW8hIuu3Uni4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e80bfb91f5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

yukrtg.pivitai.net/shared/1.0/content/images/applogos/53_7a3c80bf9694448bac31a9589d2e9e92.png

172.67.223.170

200 OK

14 kB

URL GET HTTP/3
yukrtg.pivitai.net/shared/1.0/content/images/applogos/53_7a3c80bf9694448bac31a9589d2e9e92.png
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
PNG image data, 342 x 72, 8-bit/color RGBA, non-interlaced
Size
14 kB (13734 bytes)
Hash
59c620f8907b72389f5ed6ce0dfc38f4
09b0e9729f45b8f40c38034ba8330cadd3a5c79a
ec61a6b0da079b15bbe26ca61e0d574f5fea00e55edb9333856dd76c8a222c56

HTTP Headers

GET /shared/1.0/content/images/applogos/53_7a3c80bf9694448bac31a9589d2e9e92.png HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:15 GMT
content-type: image/png
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=31536000
content-md5: izYzcDfP+Iw98gO7c9WOQQ==
etag: 0x8DB5C3F457C234F
last-modified: Wed, 24 May 2023 10:11:42 GMT
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 599bacf0-101e-007e-19d4-7e0a3b000000
x-ms-version: 2009-09-19
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S5fYLKVwEqzfSOwpZJgzE8TDXvxxGDZofTICbbl7P7KJSM8rzdLF1ZUiCyJp37n1e9hCiLtTi4Bcp%2Fvttwkxb8UvQojFU9TB5eV9wSREQOJjxmi7tEGjhxZtDbQT%2FPUIh0KmvQo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879e80de5b175689-OSL
alt-svc: h3=":443"; ma=86400

yukrtg.pivitai.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_l2bvdjfwt697xziuhxpwsg2.js

172.67.223.170

200 OK

55 kB

URL GET HTTP/3
yukrtg.pivitai.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_l2bvdjfwt697xziuhxpwsg2.js
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type

Size
55 kB (55071 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_l2bvdjfwt697xziuhxpwsg2.js HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:09 GMT
content-type: application/x-javascript
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 13692
cache-control: public, max-age=31536000
content-md5: l4psGqk05bHFMg1RX9JWYg==
last-modified: Thu, 28 Mar 2024 02:26:05 GMT
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 17d7789a-601e-0009-3f04-822935000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kk6aTMnGsy6YbO4AJW4VEDyjgrfuFcVRNevh%2Bg5VtyYGpFTXm9mW2GF9hdt2Clwp2nYPVkR2zOPKSRXuEb%2BFIvx2vJ3lbvry9m%2Bg8E355ca1foBOvnQIrRmqj4Tlyf6y3pBwUMQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e80bfb9215689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bdfdbdf.pivitai.net/owa/prefetch.aspx

172.67.223.170

200 OK

3.3 kB

URL GET HTTP/3
bdfdbdf.pivitai.net/owa/prefetch.aspx
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
JavaScript source, ASCII text, with very long lines (3362), with no line terminators
Size
3.3 kB (3256 bytes)
Hash
7bc21ad9f2ae01f144b476a2e78eb9ec
4d1f23f6ebe39500bbe62606c142d24bab2cf8b8
e850cea28125de4c1ab7b00530379e36cc9e147dace688ef0ba79977de67c6b0

HTTP Headers

GET /owa/prefetch.aspx HTTP/1.1
Host: bdfdbdf.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875; ClientId=02066480136A4BF08097DACCC9D655C3; OIDC=1; OpenIdConnect.nonce.v3.gfgYRhloU7abj-EZCYnyESLGH9z_5Do1AsYbADXbE0o=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418; X-OWA-RedirectHistory=ArLym14BhPtXWidl3Ag
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:13 GMT
content-type: text/html; charset=utf-8
alt-svc: h3=":443"; ma=86400
cache-control: private, no-store
nel: {"report_to":"NelOfficeUpload1","max_age":7200,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelOfficeUpload1","max_age":7200,"endpoints":[{"url":"https://exo.nel.measure.office.net/api/report?TenantId=&FrontEnd=Cafe&DestinationEndpoint=SIN&RemoteIP=2403:cfc0:1114::"}],"include_subdomains":true}
request-id: f70eb9f2-8523-6858-ca69-db539500fb58
set-cookie: OWAPF=v:15.20.7519.25&l:mouse; Path=/; HttpOnly; Secure
x-backend-begin: 2024-04-25T12:58:12.630
x-backend-end: 2024-04-25T12:58:12.630
x-backendhttpstatus: 200
x-beserver: SGXP274MB0111
x-besku: WCS5
x-calculatedbetarget: SGXP274MB0111.SGPP274.PROD.OUTLOOK.COM
x-diaginfo: SGXP274MB0111
x-feefzinfo: SIN
x-feproxyinfo: SG3P274CA0022.SGPP274.PROD.OUTLOOK.COM
x-feserver: SG3P274CA0022
x-firsthopcafeefz: SIN
x-iids: 0
x-owa-diagnosticsinfo: 2;0;0
x-owa-version: 15.20.7519.25
x-proxy-backendserverstatus: 200
x-proxy-routingcorrectness: 1
x-rum-notupdatequerieddbcopy: 1
x-rum-notupdatequeriedpath: 1
x-rum-validated: 1
x-ua-compatible: IE=EmulateIE7
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879e80d059645689-OSL
content-encoding: br

yukrtg.pivitai.net/shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg

172.67.223.170

200 OK

1.6 kB

URL GET HTTP/3
yukrtg.pivitai.net/shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
SVG Scalable Vector Graphics image
Size
1.6 kB (1592 bytes)
Hash
5f537bdaf0abffdf68cd724aecbff862
8e7374588d8d6e040d895c8f9544a03a2607624a
95c3344a39214720e9ae58b0e03ae17b01bb476ae76e90eb32b5f85b1f3e6e8c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:15 GMT
content-type: image/svg+xml
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=31536000
content-md5: R2FAVxfpONfnQAuxVxXbHg==
last-modified: Wed, 24 May 2023 10:11:52 GMT
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 3f57a61e-d01e-001a-4fd1-7ee411000000
x-ms-version: 2009-09-19
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DdU%2FfU9%2FE7V44Irh1Snj6niDOGT4DdFnKQtC61Il3a4WZGWnGy9zrA7XXT8zs%2BzyPBL7zsFRKTJAxKV1FVPo2LbXdH1HNwE0RTAHzhSkUe3KPRK7%2BtYh%2BePE00IrlHSIHMv8y48%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e80e04d915689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

r4.res.office365.com/owa/prem/15.20.7519.25/scripts/boot.worldwide.0.mouse.js

95.101.10.90

200 OK

664 kB

URL GET HTTP/2
r4.res.office365.com/owa/prem/15.20.7519.25/scripts/boot.worldwide.0.mouse.js
IP
95.101.10.90:443
ASN
#20940 Akamai International B.V.

Requested by
https://bdfdbdf.pivitai.net/owa/prefetch.aspx
Certificate
IssuerDigiCert Inc
Subject*.res.outlook.com
Fingerprint21:55:DF:8C:D8:DA:80:F2:04:7A:B9:66:BA:AC:C0:DC:D7:DB:46:D5
ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 20 Feb 2025 23:59:59 GMT

File type

Size
664 kB (663451 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /owa/prem/15.20.7519.25/scripts/boot.worldwide.0.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bdfdbdf.pivitai.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Wed, 24 Apr 2024 01:19:53 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 179692
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 25 Apr 2024 12:58:13 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

yukrtg.pivitai.net/shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg

172.67.223.170

200 OK

3.7 kB

URL GET HTTP/3
yukrtg.pivitai.net/shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
SVG Scalable Vector Graphics image
Size
3.7 kB (3651 bytes)
Hash
d633a913e6f3b1f45774b9874dfc85e0
5ba1344048578062c93cfddfdf8458477eaca476
c1fbfbd9a81fc4d9c9539a65bdfb4c6738926b8d4681b0346706196413e92714

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:15 GMT
content-type: image/svg+xml
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=31536000
content-md5: nzaLxFgP7ZB3dfMcaybWzw==
last-modified: Wed, 24 May 2023 10:11:48 GMT
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 938dd70e-b01e-001c-61d1-7e1e1d000000
x-ms-version: 2009-09-19
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ODwMOd6b%2BD0GAQPFluT%2Bkb44F3PbmiqdfZmvEdJ0xpwClOdzFJEh8vqXv0Uoh%2FhmqH%2BLi3arMzXUiKIrqUgYN8%2BOkF6MLBUh2XVCQAwTMZOMc%2FfIkHfpJfUDtzjXrfGQlC0mHPU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e80de5b205689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

yukrtg.pivitai.net/shared/1.0/content/js/asyncchunk/convergedlogin_pstringcustomizationhelper_eb638da25d4055fbbb57.js

172.67.223.170

200 OK

114 kB

URL GET HTTP/3
yukrtg.pivitai.net/shared/1.0/content/js/asyncchunk/convergedlogin_pstringcustomizationhelper_eb638da25d4055fbbb57.js
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
JavaScript source, ASCII text, with very long lines (64612)
Size
114 kB (113657 bytes)
Hash
5b0e3778c74235b06da49808dd8df90a
ad25897b0870b81568412f55b19898e406cc11b3
7530b843a86f3155ce07cda787a40da87052664b09c22f3d4db5e9238664dbe0

HTTP Headers

GET /shared/1.0/content/js/asyncchunk/convergedlogin_pstringcustomizationhelper_eb638da25d4055fbbb57.js HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:16 GMT
content-type: application/x-javascript
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=31536000
content-md5: V5EQEHVskNWHVMke8e4nZQ==
last-modified: Thu, 15 Feb 2024 19:13:48 GMT
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: ea206f3b-d01e-00da-32d1-7e6055000000
x-ms-version: 2009-09-19
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LBXFPVFPj4lQ0qPOEDGJkq%2FBndPCkWJkhm5KOe8jq1btAR0qKckpAfdVl3YqUq5%2B7WGJZmS59HV%2BAr8RYoR%2Bg4lluGnSbBd4AxOOU8v2RtE%2BA92ppSwK6jQQ%2BhaHNkKUQG7TpBs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e80de6b3b5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bdfdbdf.pivitai.net/owa/

172.67.223.170

302 Found

39 kB

URL User Request GET HTTP/2
bdfdbdf.pivitai.net/owa/
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type

Size
39 kB (38843 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /owa/ HTTP/1.1
Host: bdfdbdf.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 25 Apr 2024 12:58:07 GMT
content-type: text/html; charset=utf-8
location: https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
alt-svc: h3=":443"; ma=86400
nel: {"report_to":"NelOfficeUpload1","max_age":7200,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
report-to: {"group":"NelOfficeUpload1","max_age":7200,"endpoints":[{"url":"https://exo.nel.measure.office.net/api/report?TenantId=&FrontEnd=Cafe&DestinationEndpoint=SIN&RemoteIP=2403:cfc0:1114::"}],"include_subdomains":true}
request-id: ecc10fd5-3841-8875-92e6-5a97fe6bad9e
set-cookie: ClientId=02066480136A4BF08097DACCC9D655C3; Path=/; Expires=Fri, 25 Apr 2025 12:58:07 GMT; Secure; SameSite=None
ClientId=02066480136A4BF08097DACCC9D655C3; Path=/; Expires=Fri, 25 Apr 2025 12:58:07 GMT; Secure; SameSite=None
OIDC=1; Path=/; Expires=Fri, 25 Oct 2024 12:58:07 GMT; HttpOnly; Secure; SameSite=None
RoutingKeyCookie=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.token.v1=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.token.v1=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.id_token.v1=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.code.v1=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.idp_nonce.v1=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.idp_correlation_id=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.tokenPostPath=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.id_token.v1=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.code.v1=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.idp_nonce.v1=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.idp_correlation_id=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.tokenPostPath=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.nonce.v3.gfgYRhloU7abj-EZCYnyESLGH9z_5Do1AsYbADXbE0o=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418; Path=/; Expires=Thu, 25 Apr 2024 13:58:07 GMT; HttpOnly; Secure; SameSite=None
HostSwitchPrg=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OptInPrg=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
SuiteServiceProxyKey=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
ClientId=02066480136A4BF08097DACCC9D655C3; Path=/; Expires=Fri, 25 Apr 2025 12:58:07 GMT; Secure; SameSite=None
OIDC=1; Path=/; Expires=Fri, 25 Oct 2024 12:58:07 GMT; HttpOnly; Secure; SameSite=None
RoutingKeyCookie=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.token.v1=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.token.v1=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.id_token.v1=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.code.v1=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.idp_nonce.v1=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.idp_correlation_id=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.tokenPostPath=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.id_token.v1=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.code.v1=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.idp_nonce.v1=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.idp_correlation_id=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.tokenPostPath=; Path=/; Domain=bdfdbdf.pivitai.net; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OpenIdConnect.nonce.v3.gfgYRhloU7abj-EZCYnyESLGH9z_5Do1AsYbADXbE0o=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418; Path=/; Expires=Thu, 25 Apr 2024 13:58:07 GMT; HttpOnly; Secure; SameSite=None
HostSwitchPrg=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
OptInPrg=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
SuiteServiceProxyKey=; Path=/; Expires=Mon, 25 Apr 1994 12:58:07 GMT; Secure
X-OWA-RedirectHistory=ArLym14BhPtXWidl3Ag; Path=/; Expires=Thu, 25 Apr 2024 19:00:07 GMT; HttpOnly; Secure; SameSite=None
x-backend-begin: 2024-04-25T12:58:07.361
x-backend-end: 2024-04-25T12:58:07.361
x-backendhttpstatus: 302
x-beserver: SIYP274MB0342
x-besku: WCS7
x-calculatedbetarget: SIYP274MB0342.SGPP274.PROD.OUTLOOK.COM
x-diaginfo: SIYP274MB0342
x-feefzinfo: SIN
x-feproxyinfo: SG3P274CA0022.SGPP274.PROD.OUTLOOK.COM
x-feserver: SG3P274CA0022
x-firsthopcafeefz: SIN
x-iids: 0
x-owa-diagnosticsinfo: 1;0;0
x-proxy-backendserverstatus: 302
x-proxy-routingcorrectness: 1
x-rum-notupdatequerieddbcopy: 1
x-rum-notupdatequeriedpath: 1
x-rum-validated: 1
x-ua-compatible: IE=EmulateIE7
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879e80af8c38b509-OSL
X-Firefox-Spdy: h2

yukrtg.pivitai.net/shared/1.0/content/js/ConvergedLogin_PCore_jHSrlUosdD1xxbmcR_lMNA2.js

172.67.223.170

200 OK

444 kB

URL GET HTTP/3
yukrtg.pivitai.net/shared/1.0/content/js/ConvergedLogin_PCore_jHSrlUosdD1xxbmcR_lMNA2.js
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
JavaScript source, ASCII text, with very long lines (64616)
Size
444 kB (444219 bytes)
Hash
b83d2a085da6f86ffa1e079ae0dc9480
c2032df50e93ba51f1e926710739b8c796aa4e75
f2a6aec6bd796879be1868adc44ca6e22bf7bbac484e6a2a896f09b08463d41c

HTTP Headers

GET /shared/1.0/content/js/ConvergedLogin_PCore_jHSrlUosdD1xxbmcR_lMNA2.js HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:11 GMT
content-type: application/x-javascript
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=31536000
content-md5: CGjaLdXv/tkpBAR0OeSdSA==
last-modified: Wed, 27 Mar 2024 20:04:47 GMT
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: dd605e80-001e-0067-0c04-82c90a000000
x-ms-version: 2009-09-19
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CijUHeB5%2F%2FFQde6qvubqbUgrxSFIt0Tqx9VsUTA4KzB%2FFzUQCm%2Bzr2D0429Qr7%2FT7phkMzBLpsdWLHRkLPuBVKb64YJNq7R2i%2BIp7Am7Vhfvg50rYIPBMrfgRJkAvX8NLTYao0k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e80bfb9205689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

yukrtg.pivitai.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico

0.0.0.0

0 B

URL GET
yukrtg.pivitai.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:13 GMT
content-type: image/x-icon
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=31536000
content-md5: EuPayFgGHQiAI7K9SOL6lg==
last-modified: Sun, 18 Oct 2020 03:02:30 GMT
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 76171af5-801e-00d7-3bd1-7ebf4e000000
x-ms-version: 2009-09-19
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xoW6YZE2cyqZpY89Y7D%2BjbQtxzfmWQooDLM1qnV7H97BNsIjRVAzBrYJ8SIj640c7VlUsegXOKDwK3bHH7nzqmhwQQ9YR%2BRJFQKK%2FevbOkJJEJ%2BEtrwy2XEdxK%2FMMf6CZ6q5704%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879e80cfd8cc5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

yukrtg.pivitai.net/shared/1.0/content/images/appbackgrounds/49-small_2055002f2daae2ed8f69f03944c0e5d9.jpg

172.67.223.170

200 OK

987 B

URL GET HTTP/3
yukrtg.pivitai.net/shared/1.0/content/images/appbackgrounds/49-small_2055002f2daae2ed8f69f03944c0e5d9.jpg
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.2.9], baseline, precision 8, 50x28, components 3
Size
987 B (987 bytes)
Hash
e58aafc980614a9cd7796bea7b5ea8f0
d4cac92dcde0caf7c571e6d791101da94fdbd2ca
8b34a475187302935336bf43a2bf2a4e0adb9a1e87953ea51f6fcf0ef52a4a1d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /shared/1.0/content/images/appbackgrounds/49-small_2055002f2daae2ed8f69f03944c0e5d9.jpg HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:15 GMT
content-type: image/jpeg
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=31536000
content-md5: 5YqvyYBhSpzXeWvqe16o8A==
etag: 0x8DB5C3F41C14038
last-modified: Wed, 24 May 2023 10:11:35 GMT
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 7d813ca0-701e-00d0-620f-7e6e40000000
x-ms-version: 2009-09-19
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JkY098NtRWxJzyvI%2BRBLgjIWOI0J8CXPKrKaEabw3lOZ9Uik6Pdv6Vyh5cnyTQdeB9xI4%2BqBrOCOewZueYB5IzDByheJOuSX%2BWIeGn%2B7uX07%2B%2FoAMe5GJsOr1gm1XM7%2FUpH%2Fwm0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879e80de4b0c5689-OSL
alt-svc: h3=":443"; ma=86400

yukrtg.pivitai.net/shared/1.0/content/images/appbackgrounds/49_6ffe0a92d779c878835b40171ffc2e13.jpg

172.67.223.170

200 OK

18 kB

URL GET HTTP/3
yukrtg.pivitai.net/shared/1.0/content/images/appbackgrounds/49_6ffe0a92d779c878835b40171ffc2e13.jpg
IP
172.67.223.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dfgrt.pivitai.net/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=ecc10fd5-3841-8875-92e6-5a97fe6bad9e&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&nonce=638496466873613188.35aaa93d-7d41-49a5-984f-6fba43f1a418&state=DctBDoAwCAVRqvE4WAlI4TjfNN269PqyeLObRkR72Uq7KjRcw9LNPYa6qEScegNInTymCVvi5gxb7OuB6RKYRKv36O-H_gM
Certificate
IssuerGoogle Trust Services LLC
Subjectpivitai.net
Fingerprint56:D2:93:79:FF:DB:3D:C1:EB:8C:66:A5:9A:38:55:D9:73:B8:EB:06
ValidityThu, 25 Apr 2024 00:03:27 GMT - Wed, 24 Jul 2024 00:03:26 GMT

File type
JPEG image data, baseline, precision 8, 1920x1080, components 3
Size
18 kB (17453 bytes)
Hash
7916a894ebde7d29c2cc29b267f1299f
78345ca08f9e2c3c2cc9b318950791b349211296
d8f5ab3e00202fd3b45be1acd95d677b137064001e171bc79b06826d98f1e1d3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft

HTTP Headers

GET /shared/1.0/content/images/appbackgrounds/49_6ffe0a92d779c878835b40171ffc2e13.jpg HTTP/1.1
Host: yukrtg.pivitai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dfgrt.pivitai.net/
DNT: 1
Connection: keep-alive
Cookie: FAro=5533b0c952c9257a4afa9ece72e7f1221c7b1f217a1060c3f925c79b0b935875
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:58:15 GMT
content-type: image/jpeg
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=31536000
content-md5: eRaolOvefSnCzCmyZ/Epnw==
etag: 0x8DB5C3F41AC335E
last-modified: Wed, 24 May 2023 10:11:35 GMT
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: e25186fb-501e-0056-15d4-7ec319000000
x-ms-version: 2009-09-19
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZYyo6pxOWmbfBlmJEtHahHjtwSaSVeG8UzmOK90LC3B1wGmUiJUrVwommU6yTQnRPfpwQyFb%2Bi2USrH2RyEgYeJC7JnoQY9pQ6vFmGP3vciK7VmV1WMnUO3c4xKI13Fqn4o7K%2B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879e80de4b125689-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (167)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations