Report - isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/

Report Overview

Submitted URL
isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
IP
142.250.74.20
ASN
#15169 GOOGLE
Submitted
2023-06-05 23:04:21
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
res-1.cdn.office.net	1093	1994-11-14	2020-12-08	2023-06-05	475 B	83 kB	95.101.10.160
webshell.suite.office.com	540	1999-04-20	2017-10-09	2023-06-05	627 B	990 B	52.111.209.6
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-05	666 B	1.4 kB	142.250.74.131
isotechdesign-dot-msfiles24explorer.uk.r.appspot.com	unknown	2005-03-10	2023-05-16	2023-05-17	509 B	15 kB	142.250.74.20
aadcdn.msftauth.net	1455	2018-10-25	2018-11-19	2023-06-05	2.3 kB	123 kB	152.199.23.37
logincdn.msauth.net	2330	2018-10-25	2019-04-23	2023-06-05	531 B	2.1 kB	192.229.221.185
outlook.office365.com	51	2005-06-20	2013-04-11	2021-03-15	638 B	2.7 kB	40.99.215.2
www.office.com	2755	1999-04-20	2014-02-12	2023-06-05	590 B	2.4 kB	13.107.6.156
outlook.office.com	77	1999-04-20	2018-12-21	2019-01-03	651 B	2.5 kB	40.99.215.2
www.microsoft365.com	unknown	2010-04-08	2017-04-27	2023-06-05	570 B	2.3 kB	13.107.6.156

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-06-05	medium	isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/

PhishTank

Scan Date	Severity	Indicator	Alert
2023-05-19	medium	isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-06-05	medium	isotechdesign-dot-msfiles24explorer.uk.r.appspot.com

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	unknown	379 B	2023-05-05	2024-01-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 10:08:21 Last Seen2024-01-27 05:00:29 Times Seen12 Hash b1d59cad25909bbc35d65a3935266e2d f72051503034ad36788ca25afce484d228dd4989 d1474b00916164edbaee0d95e0117465edd403276b71a2898e6d55ded74bd3b1 Loading...

	www.microsoft365.com/logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363&from=logout	1.2 kB	2023-04-05	2024-01-27
Pretty URL www.microsoft365.com/logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363&from=logout IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 05:00:35 Last Seen2024-01-27 05:00:29 Times Seen78 Hash 6776c44f9f595b43a1cf328a04de3028 5d3b9d19e70175a47d1bccf124238356076c8733 9e75159906d57996885dfed0a11bb1c8a192d1e3e5e6233ced66b4409fa48b6a Loading...

	isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/	53 kB	2023-05-15	2023-06-06
Pretty URL isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/ IP 142.250.74.20 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-15 02:06:40 Last Seen2023-06-06 02:38:41 Times Seen7 Hash f4e58894e4ccf06f75c41a86896d9749 f5b11af50e28c1c83477c430ab4e74f7e1b7ba26 930d21532c879ee34d664c1020b9102183a94704f3ff72768892a7fbd81c65d4 Loading...

	aadcdn.msftauth.net/ests/2.1/content/cdnbundles/jquery.1.11.min__yok_chwseypwbmuffnnaa2.js	112 kB	2023-03-07	2024-01-27
Pretty URL aadcdn.msftauth.net/ests/2.1/content/cdnbundles/jquery.1.11.min__yok_chwseypwbmuffnnaa2.js IP 152.199.23.37 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:03 Last Seen2024-01-27 05:00:29 Times Seen71 Hash e7a346c4c18ebb88c3b495bc26be0248 de09298fdb7b4f0279a93a887dae1480fb9796b5 f82a57ff1a575f8b34eb69a1fdc4df48d3da854088ba75ec828cf5e672fbde5a Loading...

	unknown	461 B	2023-05-05	2024-01-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 10:08:21 Last Seen2024-01-27 05:00:29 Times Seen12 Hash b0f6bf0bce4386c9dd8486f709eb6079 a12dd662db3035beb7c7570616ee9cc50413c652 0cc272d74378eaf427488184d46d7c087118974e07cc0049b962dd7e165e129d Loading...

	res-1.cdn.office.net/shellux/suiteux.shell.msaltokenfactoryiframe.d6ea79b4a0c6c339b320.js	425 kB	2023-05-31	2023-07-20
Pretty URL res-1.cdn.office.net/shellux/suiteux.shell.msaltokenfactoryiframe.d6ea79b4a0c6c339b320.js IP 95.101.10.160 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-31 03:07:24 Last Seen2023-07-20 17:36:53 Times Seen68 Hash ace07f50cf4c83c4bebc4ae897ac3063 22c3e721bec55a3f99ac56111e325ee362127c94 ce5b8449dc78b1eb450e37153118e41cfc5abd9bfe3ed92042cb71f7c97b3ffe Loading...

	unknown	16 B	2023-04-10	2024-04-25
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 21:05:25 Last Seen2024-04-25 06:13:50 Times Seen1494 Hash 35cbe67c28f248a0eda182fcd963bb07 d8ab6c8b6cbd09e6f35cdd9cf423590155fce997 749c737310ca23809bb32db69b1bfb5125b2b695b01814e0ef1d0025fe239d77 Loading...

	aadcdn.msftauth.net/ests/2.1/content/cdnbundles/aad.login.min_ynywyfekfmsp3ljup2epra2.js	180 kB	2023-03-07	2024-04-04
Pretty URL aadcdn.msftauth.net/ests/2.1/content/cdnbundles/aad.login.min_ynywyfekfmsp3ljup2epra2.js IP 152.199.23.37 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:06:17 Last Seen2024-04-04 19:22:34 Times Seen170 Hash 6276306057a47e6b29dcb8d4a7612944 79388d53786849c4e522f423a47cf1e3f519ec89 4a3c3d489ffcf962a1279ebe7e1ba3582e4debffdde6ef9a0ff2b4bd839a53b9 Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/injections/js/bug1731825-office365-email-handling-prompt-autohide.js	995 B	2023-04-11	2024-04-25
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/injections/js/bug1731825-office365-email-handling-prompt-autohide.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 22:15:44 Last Seen2024-04-25 08:00:00 Times Seen44452 Hash 7c873167b5d35fd9f6690071701d4669 f897afe9818a00a80e98bdbc67e7f67343f89378 014e00e9c71f02f5892cda29da8fd08058817ebd57a12cfee75236874f4e889a Loading...

	webshell.suite.office.com/iframe/TokenFactoryIframe/Logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363	0 B	2023-03-07	2024-04-25
Pretty URL webshell.suite.office.com/iframe/TokenFactoryIframe/Logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363 IP 52.111.209.6 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 08:24:15 Times Seen37057951 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Write - d099235db3ca57ca96d0cd5432b1d9a8	34 kB	2023-05-15	2023-06-06
Pretty Observations First Seen2023-05-15 02:06:40 Last Seen2023-06-06 02:38:41 Times Seen7 Hash d099235db3ca57ca96d0cd5432b1d9a8 0fcbdf51f1f1e39fdea8224b1058d3c327629e93 458c2f7de5d4421196e8767f319b7cf092a2ade149205c24866f00c47e05e4da Loading...

HTTP Transactions (14)

URL IP Response Size

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
99be36469955be1b23dd757524db523d
9ce0d601875bbb04d9021e0e8d548e4fb07d785b
79349d39dc9ff8ecaa6e681e0bede01bb0e831c0d866ac9b7c8d08b97a9ad9f9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Jun 2023 23:04:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/

142.250.74.20

200 OK

15 kB

URL User Request GET HTTP/2
isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
IP
142.250.74.20:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.appspot.com
Fingerprint27:1A:CB:7B:B5:5A:99:64:39:A5:79:37:19:2C:A7:38:24:41:31:C9
ValidityFri, 19 May 2023 12:52:44 GMT - Fri, 11 Aug 2023 12:52:43 GMT

File type
HTML document, ASCII text, with very long lines (52815)
Size
15 kB (14573 bytes)
Hash
2341eaad64b046a8eac177fd23d9ac25
e2467b72db746fc00b1c6946e7dad9df4db17ddb
4f5d68683c45712e70c0cb1425f9851332ec49e2cea2ae7da0a09719c9b83ade

Detections

Analyzer	Verdict	Alert
openphish	Outlook
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: isotechdesign-dot-msfiles24explorer.uk.r.appspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
content-encoding: gzip
x-cloud-trace-context: 05ed1bf7beb90982584f277a0110f169;o=1
vary: Accept-Encoding
date: Mon, 05 Jun 2023 23:04:03 GMT
server: Google Frontend
cache-control: private
content-length: 14573
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
99be36469955be1b23dd757524db523d
9ce0d601875bbb04d9021e0e8d548e4fb07d785b
79349d39dc9ff8ecaa6e681e0bede01bb0e831c0d866ac9b7c8d08b97a9ad9f9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Jun 2023 23:04:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aadcdn.msftauth.net/ests/2.1/content/cdnbundles/aad.login.min_ynywyfekfmsp3ljup2epra2.js

152.199.23.37

200 OK

44 kB

URL GET HTTP/2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/aad.login.min_ynywyfekfmsp3ljup2epra2.js
IP
152.199.23.37:443
ASN
#15133 EDGECAST

Requested by
https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Certificate
IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (778)
Size
44 kB (44333 bytes)
Hash
6276306057a47e6b29dcb8d4a7612944
79388d53786849c4e522f423a47cf1e3f519ec89
4a3c3d489ffcf962a1279ebe7e1ba3582e4debffdde6ef9a0ff2b4bd839a53b9

HTTP Headers

GET /ests/2.1/content/cdnbundles/aad.login.min_ynywyfekfmsp3ljup2epra2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com
DNT: 1
Connection: keep-alive
Referer: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 9832601
cache-control: public, max-age=31536000
content-md5: 7Zr/RHMNzHhijIc1jDYQ/w==
content-type: application/x-javascript
date: Mon, 05 Jun 2023 23:04:04 GMT
etag: 0x8D876CB187B0320
last-modified: Thu, 22 Oct 2020 20:43:13 GMT
server: ECAcc (ska/F773)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: e86a3238-a01e-005f-6d94-3ea2ec000000
x-ms-version: 2009-09-19
content-length: 44333
X-Firefox-Spdy: h2

aadcdn.msftauth.net/ests/2.1/content/cdnbundles/jquery.1.11.min__yok_chwseypwbmuffnnaa2.js

152.199.23.37

200 OK

39 kB

URL GET HTTP/2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/jquery.1.11.min__yok_chwseypwbmuffnnaa2.js
IP
152.199.23.37:443
ASN
#15133 EDGECAST

Requested by
https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Certificate
IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (733)
Size
39 kB (38927 bytes)
Hash
fd838afc285649ec8fc013147df9cd00
3e5dfe6ab069c30d5e849e86d617f6d2cf748cd5
35cceb3348d8d50cb9d46478114cc11727f9b3e78b08fc7f07101aea4bad7d1c

HTTP Headers

GET /ests/2.1/content/cdnbundles/jquery.1.11.min__yok_chwseypwbmuffnnaa2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com
DNT: 1
Connection: keep-alive
Referer: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 28881923
cache-control: public, max-age=31536000
content-md5: rh/aFGJ6VR89aDdTZ7hodQ==
content-type: application/x-javascript
date: Mon, 05 Jun 2023 23:04:04 GMT
etag: 0x8D876CB2080AB77
last-modified: Thu, 22 Oct 2020 20:43:26 GMT
server: ECAcc (ska/F7B9)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 36fc386b-b01e-0072-3e54-91ee33000000
x-ms-version: 2009-09-19
content-length: 38927
X-Firefox-Spdy: h2

aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_59_uuouser7hrkmvbaz1jw2.css

152.199.23.37

200 OK

20 kB

URL GET HTTP/2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_59_uuouser7hrkmvbaz1jw2.css
IP
152.199.23.37:443
ASN
#15133 EDGECAST

Requested by
https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Certificate
IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (61177)
Size
20 kB (19771 bytes)
Hash
e7dfd450e52c7abec7aca315040cf58f
6b1d636313e0c81e39bf1ae840e4fa02c657166f
1e3dceb93e7c252036cfcded7e108e7e2473dae923a2401a84dd7925f5a9f0ad

HTTP Headers

GET /ests/2.1/content/cdnbundles/converged.v2.login.min_59_uuouser7hrkmvbaz1jw2.css HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com
DNT: 1
Connection: keep-alive
Referer: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 27809916
cache-control: public, max-age=31536000
content-md5: bjqCIB9rMEZAA8TrOKRGgQ==
content-type: text/css
date: Mon, 05 Jun 2023 23:04:04 GMT
etag: 0x8D872D16C711C33
last-modified: Sat, 17 Oct 2020 19:18:26 GMT
server: ECAcc (ska/F6B6)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: ab49b811-201e-0093-2914-9b6a88000000
x-ms-version: 2009-09-19
content-length: 19771
X-Firefox-Spdy: h2

logincdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg

192.229.221.185

200 OK

1.4 kB

URL GET HTTP/2
logincdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
IP
192.229.221.185:443
ASN
#15133 EDGECAST

Requested by
https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Certificate
IssuerMicrosoft Corporation
Subjectidentitycdn.msauth.net
FingerprintEE:40:2D:5A:6D:D7:45:A2:7B:73:AC:5A:A3:0A:9C:D7:D5:BB:5A:E4
ValidityTue, 23 Aug 2022 22:36:46 GMT - Fri, 18 Aug 2023 22:36:46 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators
Size
1.4 kB (1435 bytes)
Hash
ee5c8d9fb6248c938fd0dc19370e90bd
d01a22720918b781338b5bbf9202b241a5f99ee4
04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a

HTTP Headers

GET /shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 12278401
cache-control: public, max-age=31536000
content-md5: nzaLxFgP7ZB3dfMcaybWzw==
content-type: image/svg+xml
date: Mon, 05 Jun 2023 23:04:04 GMT
etag: 0x8D79ED29CF0C29A
last-modified: Wed, 22 Jan 2020 00:32:50 GMT
server: ECAcc (ska/F7B5)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: fd0c0cdd-301e-0034-1256-28f450000000
x-ms-version: 2009-09-19
content-length: 1435
X-Firefox-Spdy: h2

outlook.office365.com/owa/auth/logoff.aspx?cmd=logoff&exlive=1&lgtype=1&sid=494fe386-9fa1-4fbf-885f-5038fa243363

40.99.215.2

302 Found

264 B

URL GET HTTP/1.1
outlook.office365.com/owa/auth/logoff.aspx?cmd=logoff&exlive=1&lgtype=1&sid=494fe386-9fa1-4fbf-885f-5038fa243363
IP
40.99.215.2:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Certificate
IssuerDigiCert Inc
Subjectoutlook.com
FingerprintAB:21:82:47:32:03:3E:C2:D0:F7:2A:88:50:E9:67:39:90:49:C0:FE
ValidityThu, 27 Apr 2023 00:00:00 GMT - Fri, 26 Apr 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
264 B (264 bytes)
Hash
52bcded6ad060df3b7f25c411ea490d4
98bae55e192c1cc5b6bea81d6450136dbacf66e2
dcf760270ec58313134c7b9d11b4def7a1e3a840e6a294700736ea622c8b10e7

HTTP Headers

GET /owa/auth/logoff.aspx?cmd=logoff&exlive=1&lgtype=1&sid=494fe386-9fa1-4fbf-885f-5038fa243363 HTTP/1.1
Host: outlook.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Location: https://outlook.office.com/owa/auth/logoff.aspx?cmd=logoff&exlive=1&lgtype=1&sid=494fe386-9fa1-4fbf-885f-5038fa243363&pngSites=none
Server: Microsoft-IIS/10.0
request-id: 4ddf09f0-0f4e-462a-e41a-36563cdd7587
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Alt-Svc: h3=":443",h3-29=":443"
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Set-Cookie: UserContext=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
SuiteServiceProxyKey=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
DefaultAnchorMailbox=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
O365Consumer=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
HostSwitchPrg=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
SdfV2LDomain=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
OptInPrg=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
LI=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
UserContext=; domain=outlook.office365.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
SuiteServiceProxyKey=; domain=outlook.office365.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
DefaultAnchorMailbox=; domain=outlook.office365.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
O365Consumer=; domain=outlook.office365.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
HostSwitchPrg=; domain=outlook.office365.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
SdfV2LDomain=; domain=outlook.office365.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
OptInPrg=; domain=outlook.office365.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
LI=; domain=outlook.office365.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
RPSAuth=; domain=outlook.office365.com; expires=Thu, 30-Oct-1980 16:00:00 GMT; path=/;SameSite=None
RPSSecAuth=; domain=outlook.office365.com; expires=Thu, 30-Oct-1980 16:00:00 GMT; path=/;SameSite=None; secure
RPSClearCT=; domain=outlook.office365.com; expires=Thu, 30-Oct-1980 16:00:00 GMT; path=/;SameSite=None; secure
X-FirstHopCafeEFZ: OSL
X-FEProxyInfo: OS6P279CA0175.NORP279.PROD.OUTLOOK.COM
X-FEEFZInfo: OSL
X-Powered-By: ASP.NET
Date: Mon, 05 Jun 2023 23:04:04 GMT
Content-Length: 264

aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico

152.199.23.37

200 OK

17 kB

URL GET HTTP/2
aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
IP
152.199.23.37:443
ASN
#15133 EDGECAST

Requested by
https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Certificate
IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Size
17 kB (17174 bytes)
Hash
12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21

HTTP Headers

GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 505736
cache-control: public, max-age=31536000
content-md5: EuPayFgGHQiAI7K9SOL6lg==
content-type: image/x-icon
date: Mon, 05 Jun 2023 23:04:04 GMT
etag: 0x8D8731240E548EB
last-modified: Sun, 18 Oct 2020 03:02:30 GMT
server: ECAcc (ska/F738)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 003b7cc6-501e-0067-4768-9344ba000000
x-ms-version: 2009-09-19
content-length: 17174
X-Firefox-Spdy: h2

res-1.cdn.office.net/shellux/suiteux.shell.msaltokenfactoryiframe.d6ea79b4a0c6c339b320.js

95.101.10.160

200 OK

82 kB

URL GET HTTP/2
res-1.cdn.office.net/shellux/suiteux.shell.msaltokenfactoryiframe.d6ea79b4a0c6c339b320.js
IP
95.101.10.160:443
ASN
#20940 Akamai International B.V.

Requested by
https://webshell.suite.office.com/iframe/TokenFactoryIframe/Logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363
Certificate
IssuerDigiCert Inc
Subject*.res.outlook.com
Fingerprint54:11:4B:DB:98:01:CA:17:06:66:6C:42:F4:E9:9A:41:CB:F1:8A:DE
ValidityMon, 17 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (28007)
Size
82 kB (82348 bytes)
Hash
ace07f50cf4c83c4bebc4ae897ac3063
22c3e721bec55a3f99ac56111e325ee362127c94
ce5b8449dc78b1eb450e37153118e41cfc5abd9bfe3ed92042cb71f7c97b3ffe

HTTP Headers

GET /shellux/suiteux.shell.msaltokenfactoryiframe.d6ea79b4a0c6c339b320.js HTTP/1.1
Host: res-1.cdn.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webshell.suite.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 82348
last-modified: Wed, 24 May 2023 13:45:16 GMT
x-ms-request-id: e9478d40-e01e-0059-4841-937814000000
content-encoding: br
cache-control: max-age=630720000
date: Mon, 05 Jun 2023 23:04:04 GMT
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=AkamaiCDNWorldWide&DestinationEndpoint=OSLO&ASN=20940&Country=NO&Region=&RequestIdentifier=0.9c0a655f.1686006244.7650c6c9"}],"include_subdomains ":true}
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2

www.office.com/logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363

13.107.6.156

200 OK

1.4 kB

URL GET HTTP/2
www.office.com/logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363
IP
13.107.6.156:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Certificate
IssuerMicrosoft Corporation
Subjectportal.office.com
FingerprintFD:5E:6C:0F:B5:92:68:8A:B2:0C:23:EB:0C:6B:F7:A0:88:FC:0E:EB
ValidityMon, 01 May 2023 18:46:35 GMT - Thu, 25 Apr 2024 18:46:35 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1488), with no line terminators
Size
1.4 kB (1436 bytes)
Hash
ad70fdf02456876a483bff03f0310b14
a505fd21ca90856be98014260f55842f3e08ef28
99ce8446ea4a73a14e27943c727cd31ddd7b23e66c4b142e00b0ec92aea14803

HTTP Headers

GET /logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363 HTTP/1.1
Host: www.office.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: OH.SID=ac6871a7-a415-4f01-81b5-934864dbb8ae; path=/; secure; samesite=none; httponly
OH.DCAffinity=OH-noe; expires=Tue, 06 Jun 2023 07:04:04 GMT; path=/; secure; samesite=none; httponly
OH.FLID=37fc1a94-0811-4218-9b91-fdca94b12279; expires=Wed, 05 Jun 2024 23:04:04 GMT; path=/; secure; samesite=none; httponly
UserIndex=; expires=Sun, 04 Jun 2023 23:04:04 GMT; path=/; secure; samesite=none; httponly
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-ua-compatible: IE=edge,chrome=1
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 95D5EA1B1B30413FADDF87BC046BBB6F Ref B: SVG20EDGE0117 Ref C: 2023-06-05T23:04:04Z
date: Mon, 05 Jun 2023 23:04:03 GMT
X-Firefox-Spdy: h2

webshell.suite.office.com/iframe/TokenFactoryIframe/Logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363

52.111.209.6

200 OK

416 B

URL GET HTTP/2
webshell.suite.office.com/iframe/TokenFactoryIframe/Logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363
IP
52.111.209.6:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Certificate
IssuerMicrosoft Corporation
Subjectwebshell.suite.office.com
Fingerprint86:2E:E0:71:4B:63:12:8D:25:42:B2:B3:D0:C2:15:BA:DC:9B:2C:4C
ValidityThu, 29 Sep 2022 18:52:32 GMT - Sun, 24 Sep 2023 18:52:32 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (450), with no line terminators
Size
416 B (416 bytes)
Hash
69341fcd891a80ad9343c7d8b1d5e369
42961be8a49c0b0dbb5fb06949fa0883502881e7
624e95c661672a505239e84e1c5c43328c64c2e8a643b6c40898eda5750f54e8

HTTP Headers

GET /iframe/TokenFactoryIframe/Logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363 HTTP/1.1
Host: webshell.suite.office.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Mon, 05 Jun 2023 23:04:04 GMT
server: Kestrel
cache-control: private,max-age=3600
x-content-type-options: nosniff
strict-transport-security: max-age=2592000
content-security-policy: default-src 'none'; frame-src *; script-src https://res-1.cdn.office.net https://shell.cdn.office.net 'nonce-Kng89gVOy/nmqgcR0RLSIzo7u24fMF7B0cOIOozRsbw=' 'unsafe-inline'; connect-src *;
cross-origin-resource-policy: cross-origin
x-o365suiteuxshell-correlationid: 2fbd1fd7-421b-4de6-9f99-72a4a88302a1
X-Firefox-Spdy: h2

outlook.office.com/owa/auth/logoff.aspx?cmd=logoff&exlive=1&lgtype=1&sid=494fe386-9fa1-4fbf-885f-5038fa243363&pngSites=none

40.99.215.2

200 OK

263 B

URL GET HTTP/2
outlook.office.com/owa/auth/logoff.aspx?cmd=logoff&exlive=1&lgtype=1&sid=494fe386-9fa1-4fbf-885f-5038fa243363&pngSites=none
IP
40.99.215.2:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
Certificate
IssuerDigiCert Inc
Subjectoutlook.com
FingerprintAB:21:82:47:32:03:3E:C2:D0:F7:2A:88:50:E9:67:39:90:49:C0:FE
ValidityThu, 27 Apr 2023 00:00:00 GMT - Fri, 26 Apr 2024 23:59:59 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
263 B (263 bytes)
Hash
fd94bdd0265787e0b23ba9369dc3f6a9
2475af677f59831a62fa28c655147a9f81a01c44
7ad1ad65fa56e4154d943099b98bcf6d8dd59df30f637f1088b2c228bb5a5c79

HTTP Headers

GET /owa/auth/logoff.aspx?cmd=logoff&exlive=1&lgtype=1&sid=494fe386-9fa1-4fbf-885f-5038fa243363&pngSites=none HTTP/1.1
Host: outlook.office.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://isotechdesign-dot-msfiles24explorer.uk.r.appspot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private
content-type: image/gif
server: Microsoft-IIS/10.0
request-id: e5ce503b-040a-22ce-d056-a59588233d67
strict-transport-security: max-age=31536000; includeSubDomains; preload
alt-svc: h3=":443",h3-29=":443"
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
x-aspnet-version: 4.0.30319
set-cookie: UserContext=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
SuiteServiceProxyKey=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
DefaultAnchorMailbox=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
O365Consumer=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
HostSwitchPrg=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
SdfV2LDomain=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
OptInPrg=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
LI=; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
UserContext=; domain=outlook.office.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
SuiteServiceProxyKey=; domain=outlook.office.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
DefaultAnchorMailbox=; domain=outlook.office.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
O365Consumer=; domain=outlook.office.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
HostSwitchPrg=; domain=outlook.office.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
SdfV2LDomain=; domain=outlook.office.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
OptInPrg=; domain=outlook.office.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
LI=; domain=outlook.office.com; expires=Sat, 05-Jun-1993 23:04:04 GMT; path=/; secure
RPSAuth=; domain=outlook.office.com; expires=Thu, 30-Oct-1980 16:00:00 GMT; path=/;SameSite=None
RPSSecAuth=; domain=outlook.office.com; expires=Thu, 30-Oct-1980 16:00:00 GMT; path=/;SameSite=None; secure
RPSClearCT=; domain=outlook.office.com; expires=Thu, 30-Oct-1980 16:00:00 GMT; path=/;SameSite=None; secure
x-firsthopcafeefz: OSL
x-feproxyinfo: OS6P279CA0180.NORP279.PROD.OUTLOOK.COM
x-feefzinfo: OSL
x-powered-by: ASP.NET
date: Mon, 05 Jun 2023 23:04:04 GMT
X-Firefox-Spdy: h2

www.microsoft365.com/logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363&from=logout

13.107.6.156

200 OK

1.3 kB

URL GET HTTP/2
www.microsoft365.com/logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363&from=logout
IP
13.107.6.156:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363
Certificate
IssuerMicrosoft Corporation
Subjectportal.office.com
FingerprintFD:5E:6C:0F:B5:92:68:8A:B2:0C:23:EB:0C:6B:F7:A0:88:FC:0E:EB
ValidityMon, 01 May 2023 18:46:35 GMT - Thu, 25 Apr 2024 18:46:35 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1350), with no line terminators
Size
1.3 kB (1302 bytes)
Hash
dc2a8ea855b0fe9e5c53c9f28504b5ee
bf8ffc1ced8678ebc190ed20ee8338bad6d3df77
f417c784a978c2253205528353e9eca1a69b8e7f4e613583854c35e4ce7a15b4

HTTP Headers

GET /logout?sid=494fe386-9fa1-4fbf-885f-5038fa243363&from=logout HTTP/1.1
Host: www.microsoft365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: OH.SID=7d313f19-8c78-45bc-9dc5-93332b46313b; path=/; secure; samesite=none; httponly
OH.DCAffinity=OH-noe; expires=Tue, 06 Jun 2023 07:04:04 GMT; path=/; secure; samesite=none; httponly
OH.FLID=f490f01a-4d85-49fa-bdc6-af0a6092fbd4; expires=Wed, 05 Jun 2024 23:04:04 GMT; path=/; secure; samesite=none; httponly
UserIndex=; expires=Sun, 04 Jun 2023 23:04:04 GMT; path=/; secure; samesite=none; httponly
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-ua-compatible: IE=edge,chrome=1
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: ADD7F9FB51244456BCEA12A653FE1409 Ref B: SVG20EDGE0117 Ref C: 2023-06-05T23:04:04Z
date: Mon, 05 Jun 2023 23:04:04 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash