| aadcdn.msauth.net/shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg | 13.107.246.53 | 200 OK | 621 B |
URL GET HTTP/2aadcdn.msauth.net/shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg IP13.107.246.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerDigiCert Inc Subjectaadcdn.msauth.net FingerprintEB:7C:D1:4E:EF:B5:D4:72:25:0B:1A:AF:5F:10:3D:EA:13:80:5A:47 ValidityMon, 29 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash4e48046ce74f4b89d45037c90576bfac 4a41b3b51ed787f7b33294202da72220c7cd2c32 8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93
GET /shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 04:00:35 GMT
content-type: image/svg+xml
content-length: 621
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Wed, 24 May 2023 10:11:49 GMT
etag: 0x8DB5C3F49ED96E0
x-ms-request-id: 19f27aab-d01e-0027-1a7d-92a5a3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240425T040035Z-16c4f695cc5rxgpmkm3trftbw80000000890000000000hzm
x-fd-int-roxy-purgeid: 4554691
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| logincdn.msauth.net/16.000.28230.00/images/ellipsis_grey.svg?x=2b5d393db04a5e6e1f739cb266e65b4c | 13.107.213.53 | 200 OK | 263 B |
URL GET HTTP/2logincdn.msauth.net/16.000.28230.00/images/ellipsis_grey.svg?x=2b5d393db04a5e6e1f739cb266e65b4c IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerMicrosoft Corporation Subjectidentitycdn.msauth.net Fingerprint15:1B:3E:26:F4:4A:EE:1C:C2:40:74:BB:BD:AE:20:E4:35:B0:40:40 ValidityWed, 17 Jan 2024 06:03:21 GMT - Sat, 11 Jan 2025 06:03:21 GMT
File typeSVG Scalable Vector Graphics image Hash2b5d393db04a5e6e1f739cb266e65b4c 6a435df5cac3d58ccad655fe022ccf3dd4b9b721 16c3f6531d0fa5b4d16e82abf066233b2a9f284c068c663699313c09f5e8d6e6
GET /16.000.28230.00/images/ellipsis_grey.svg?x=2b5d393db04a5e6e1f739cb266e65b4c HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 04:00:35 GMT
content-type: image/svg+xml
content-length: 263
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Thu, 06 Jun 2019 03:52:30 GMT
etag: 0x8D6EA326627BB66
x-ms-request-id: d3314f7d-701e-0045-4b9e-96b185000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240425T040035Z-16c4f695cc52kgbr6wws0buzps000000087g000000004erq
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| logincdn.msauth.net/16.000.28230.00/images/ellipsis_white.svg?x=5ac590ee72bfe06a7cecfd75b588ad73 | 13.107.213.53 | 200 OK | 263 B |
URL GET HTTP/2logincdn.msauth.net/16.000.28230.00/images/ellipsis_white.svg?x=5ac590ee72bfe06a7cecfd75b588ad73 IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerMicrosoft Corporation Subjectidentitycdn.msauth.net Fingerprint15:1B:3E:26:F4:4A:EE:1C:C2:40:74:BB:BD:AE:20:E4:35:B0:40:40 ValidityWed, 17 Jan 2024 06:03:21 GMT - Sat, 11 Jan 2025 06:03:21 GMT
File typeSVG Scalable Vector Graphics image Hash5ac590ee72bfe06a7cecfd75b588ad73 dda2cb89a241bc424746d8cf2a22a35535094611 6075736ea9c281d69c4a3d78ff97bb61b9416a5809919babe5a0c5596f99aaea
GET /16.000.28230.00/images/ellipsis_white.svg?x=5ac590ee72bfe06a7cecfd75b588ad73 HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 04:00:35 GMT
content-type: image/svg+xml
content-length: 263
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Thu, 06 Jun 2019 03:52:30 GMT
etag: 0x8D6EA3266567513
x-ms-request-id: a9423ed5-601e-0060-0fbe-96a7bc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240425T040035Z-16c4f695cc52kgbr6wws0buzps000000087g000000004err
x-fd-int-roxy-purgeid: 0
x-cache-info: L1_T2
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| logincdn.msauth.net/16.000.28230.00/Converged_v21033.css | 13.107.213.53 | 200 OK | 18 kB |
URL GET HTTP/2logincdn.msauth.net/16.000.28230.00/Converged_v21033.css IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerMicrosoft Corporation Subjectidentitycdn.msauth.net Fingerprint15:1B:3E:26:F4:4A:EE:1C:C2:40:74:BB:BD:AE:20:E4:35:B0:40:40 ValidityWed, 17 Jan 2024 06:03:21 GMT - Sat, 11 Jan 2025 06:03:21 GMT
File typeASCII text, with very long lines (61112) Hash66ed59170bade4b3d3f78e1c655b0b31 fe2a919fe4019d9599d5ab918bde2968a53fe7b3 1c87372ebae47bf26d36ab71e87f596f4e0b3c98472873bbfa7dcbbd48e9e7bb
GET /16.000.28230.00/Converged_v21033.css HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
Origin: https://wert-e8j.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 04:00:35 GMT
content-type: text/css
content-length: 18545
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Thu, 06 Jun 2019 03:50:33 GMT
etag: 0x8D6EA3220C8F6D5
x-ms-request-id: c3335ce1-201e-0074-02be-96bb96000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240425T040035Z-16c4f695cc5q9fbs95emahg43s00000002w0000000003ans
x-fd-int-roxy-purgeid: 0
x-cache-info: L1_T2
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| logincdn.msauth.net/16.000.28230.00/images/microsoft_logo.svg?x=ee5c8d9fb6248c938fd0dc19370e90bd | 13.107.213.53 | 200 OK | 1.4 kB |
URL GET HTTP/2logincdn.msauth.net/16.000.28230.00/images/microsoft_logo.svg?x=ee5c8d9fb6248c938fd0dc19370e90bd IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerMicrosoft Corporation Subjectidentitycdn.msauth.net Fingerprint15:1B:3E:26:F4:4A:EE:1C:C2:40:74:BB:BD:AE:20:E4:35:B0:40:40 ValidityWed, 17 Jan 2024 06:03:21 GMT - Sat, 11 Jan 2025 06:03:21 GMT
File typeSVG Scalable Vector Graphics image Hashee5c8d9fb6248c938fd0dc19370e90bd d01a22720918b781338b5bbf9202b241a5f99ee4 04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a
GET /16.000.28230.00/images/microsoft_logo.svg?x=ee5c8d9fb6248c938fd0dc19370e90bd HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 04:00:36 GMT
content-type: image/svg+xml
content-length: 1435
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Thu, 06 Jun 2019 03:52:31 GMT
etag: 0x8D6EA3266D27268
x-ms-request-id: b5faced6-c01e-0002-30c5-96b39a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240425T040035Z-16c4f695cc52kgbr6wws0buzps000000087g000000004ers
x-fd-int-roxy-purgeid: 67912908
x-cache: TCP_MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| logincdn.msauth.net/16.000.28230.00/ConvergedLogin_PCore | 13.107.213.53 | 404 Not Found | 215 B |
URL GET HTTP/2logincdn.msauth.net/16.000.28230.00/ConvergedLogin_PCore IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerMicrosoft Corporation Subjectidentitycdn.msauth.net Fingerprint15:1B:3E:26:F4:4A:EE:1C:C2:40:74:BB:BD:AE:20:E4:35:B0:40:40 ValidityWed, 17 Jan 2024 06:03:21 GMT - Sat, 11 Jan 2025 06:03:21 GMT
File typeXML 1.0 document, Unicode text, UTF-8 (with BOM) text Hash1ba60f370c43e31dd9bc30ab12de560e fd784ae236ca37c2f41346be836ed7fb8193cf32 7c85bcce3c9a04a01291e5bf80cf08268c8512bbf6fc344f48eaf06c8264ac72
GET /16.000.28230.00/ConvergedLogin_PCore HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
Origin: https://wert-e8j.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 25 Apr 2024 04:00:36 GMT
content-type: application/xml
content-length: 215
x-ms-request-id: 69d51861-201e-0048-4dc5-966e9e000000
x-ms-version: 2009-09-19
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240425T040035Z-16c4f695cc5q9fbs95emahg43s00000002w0000000003ant
x-fd-int-roxy-purgeid: 0
x-cache: TCP_MISS
X-Firefox-Spdy: h2
|
|
| logincdn.msauth.net/16.000.28230.00/ConvergedLoginPaginatedStrings.en | 13.107.213.53 | 404 Not Found | 215 B |
URL GET HTTP/2logincdn.msauth.net/16.000.28230.00/ConvergedLoginPaginatedStrings.en IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerMicrosoft Corporation Subjectidentitycdn.msauth.net Fingerprint15:1B:3E:26:F4:4A:EE:1C:C2:40:74:BB:BD:AE:20:E4:35:B0:40:40 ValidityWed, 17 Jan 2024 06:03:21 GMT - Sat, 11 Jan 2025 06:03:21 GMT
File typeXML 1.0 document, Unicode text, UTF-8 (with BOM) text Hash884c996c55b4e97776e012ffdd4677cc 9154268317fd370b8a141e952fdfd551cd0598e8 7701ed3ab5510c4c5d24b14b0207a6796f0d87d35a6deac4a3656c4f14152f58
GET /16.000.28230.00/ConvergedLoginPaginatedStrings.en HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
Origin: https://wert-e8j.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 25 Apr 2024 04:00:36 GMT
content-type: application/xml
content-length: 215
x-ms-request-id: 1d991bd5-601e-0060-1bc5-96a7bc000000
x-ms-version: 2009-09-19
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240425T040035Z-16c4f695cc5q9fbs95emahg43s00000002w0000000003anu
x-fd-int-roxy-purgeid: 67912908
x-cache: TCP_MISS
X-Firefox-Spdy: h2
|
|
| logincdn.msauth.net/16.000.28230.00/ConvergedLoginPaginatedStrings.en | 13.107.213.53 | 404 Not Found | 215 B |
URL GET HTTP/2logincdn.msauth.net/16.000.28230.00/ConvergedLoginPaginatedStrings.en IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerMicrosoft Corporation Subjectidentitycdn.msauth.net Fingerprint15:1B:3E:26:F4:4A:EE:1C:C2:40:74:BB:BD:AE:20:E4:35:B0:40:40 ValidityWed, 17 Jan 2024 06:03:21 GMT - Sat, 11 Jan 2025 06:03:21 GMT
File typeXML 1.0 document, Unicode text, UTF-8 (with BOM) text Hash135cd37453fe3ea5ada3365e565c68a1 136d06d22b4564fbd1ad4e64e7470e0c0f73acff f06899b35f0af9df59c8667ad8de100c0b9bb6f6d53d035c9cdf6436ecaad818
GET /16.000.28230.00/ConvergedLoginPaginatedStrings.en HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
Origin: https://wert-e8j.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Thu, 25 Apr 2024 04:00:36 GMT
content-type: application/xml
content-length: 215
x-ms-request-id: 2458ee29-801e-002a-77c5-967ab8000000
x-ms-version: 2009-09-19
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240425T040035Z-16c4f695cc5q9fbs95emahg43s00000002w0000000003anv
x-fd-int-roxy-purgeid: 67912908
x-cache: TCP_MISS
X-Firefox-Spdy: h2
|
|
| logincdn.msauth.net/16.000.28230.00/ConvergedLogin_PCore | 13.107.213.53 | 404 Not Found | 215 B |
URL GET HTTP/2logincdn.msauth.net/16.000.28230.00/ConvergedLogin_PCore IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerMicrosoft Corporation Subjectidentitycdn.msauth.net Fingerprint15:1B:3E:26:F4:4A:EE:1C:C2:40:74:BB:BD:AE:20:E4:35:B0:40:40 ValidityWed, 17 Jan 2024 06:03:21 GMT - Sat, 11 Jan 2025 06:03:21 GMT
File typeXML 1.0 document, Unicode text, UTF-8 (with BOM) text Hashf349d8e5809a142283a3cb2759133796 a52f78d3e52d14d842d34bbdfd45a2b797970907 44414ee4c81ad57c1f70635d9eece808080abf41e67877be1582ebcaf4198fbe
GET /16.000.28230.00/ConvergedLogin_PCore HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
Origin: https://wert-e8j.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Thu, 25 Apr 2024 04:00:37 GMT
content-type: application/xml
content-length: 215
x-ms-request-id: 0f5ea227-b01e-000d-4cc5-963a85000000
x-ms-version: 2009-09-19
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240425T040036Z-16c4f695cc5q9fbs95emahg43s00000002w0000000003anz
x-fd-int-roxy-purgeid: 0
x-cache: TCP_MISS
X-Firefox-Spdy: h2
|
|
| i.imgur.com/ft8SNJh.png;); | 151.101.244.193 | 200 OK | 993 kB |
URL GET HTTP/2i.imgur.com/ft8SNJh.png;); IP151.101.244.193:443
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerSectigo Limited Subject*.imgur.com Fingerprint39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42 ValidityThu, 15 Feb 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typePNG image data, 2526 x 1568, 8-bit/color RGBA, non-interlaced Size993 kB (993346 bytes) Hashc36b5485440273dd2700122de36dd714 b4a143b18b43749ca32f46141cc6538bc4d73c49 9aa26a99bd29c503bebb46b37639019e12a361ee81b94446f58fe71de7029e18
GET /ft8SNJh.png;); HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
last-modified: Sat, 25 Nov 2023 17:10:05 GMT
etag: "c36b5485440273dd2700122de36dd714"
x-amz-storage-class: STANDARD_IA
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: B6Diykj2u7VIbGJ_OIynOg9MbQX0oYNJWdbJRt1q-UNm9PqXSi5aSw==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 1660817
date: Thu, 25 Apr 2024 04:00:37 GMT
x-served-by: cache-iad-kjyo7100032-IAD, cache-hel1410026-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 206, 0
x-timer: S1714017637.319034,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 993346
X-Firefox-Spdy: h2
|
|
| login.live.com/Me.htm?v=1&uaid=e52f753aa5184927ab11e578045c61f0 | 20.190.181.2 | 200 OK | 1.1 kB |
URL GET HTTP/1.1login.live.com/Me.htm?v=1&uaid=e52f753aa5184927ab11e578045c61f0 IP20.190.181.2:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerDigiCert Inc Subjectlogin.live.com Fingerprint82:2F:20:E4:BD:99:37:36:52:F8:AF:FC:4D:86:73:BA:3A:7A:65:3E ValidityFri, 29 Mar 2024 00:00:00 GMT - Sat, 29 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (2345), with CRLF line terminators Hashe86ef8b6111e5fb1d1665bcdc90888c9 994bf7651cb967cd9053056af2d69acb74db7f29 3410242720de50b090d07a23aee2dad879b31d36f2615732962ec4cfa8a9d458
GET /Me.htm?v=1&uaid=e52f753aa5184927ab11e578045c61f0 HTTP/1.1
Host: login.live.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=315360000
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 23 Apr 2034 04:00:37 GMT
Vary: Accept-Encoding
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Referrer-Policy: strict-origin-when-cross-origin
x-ms-route-info: C535_BL2
x-ms-request-id: e64ad751-2808-4314-9762-001fde70adca
PPServer: PPV: 30 H: BL02EPF0001D8D9 V: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Set-Cookie: uaid=e52f753aa5184927ab11e578045c61f0; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
MSPRequ=id=N<=1714017637&co=1; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
Date: Thu, 25 Apr 2024 04:00:37 GMT
Content-Length: 1132
|
|
| logincdn.msauth.net/16.000.28230.00/images/favicon.ico | 13.107.213.53 | 200 OK | 17 kB |
URL GET HTTP/2logincdn.msauth.net/16.000.28230.00/images/favicon.ico IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerMicrosoft Corporation Subjectidentitycdn.msauth.net Fingerprint15:1B:3E:26:F4:4A:EE:1C:C2:40:74:BB:BD:AE:20:E4:35:B0:40:40 ValidityWed, 17 Jan 2024 06:03:21 GMT - Sat, 11 Jan 2025 06:03:21 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /16.000.28230.00/images/favicon.ico HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 04:00:37 GMT
content-type: image/x-icon
content-length: 17174
cache-control: public, max-age=31536000
last-modified: Thu, 06 Jun 2019 03:52:30 GMT
etag: 0x8D6EA3266553C55
x-ms-request-id: 5e26d086-201e-001c-1f9f-96a1a5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240425T040037Z-16c4f695cc52kgbr6wws0buzps000000087g000000004etv
x-fd-int-roxy-purgeid: 0
x-cache-info: L1_T2
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| | 172.66.44.103 | 200 OK | 85 kB |
URL User Request GET HTTP/2IP172.66.44.103:443
CertificateIssuerLet's Encrypt Subjectwert-e8j.pages.dev Fingerprint96:9E:37:13:D2:3C:E5:3D:4E:0E:26:FF:55:58:DF:40:10:B7:98:52 ValidityFri, 29 Mar 2024 20:02:48 GMT - Thu, 27 Jun 2024 20:02:47 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: wert-e8j.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 04:00:35 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e4c3cf358407aacf5c9fa62a5806e687"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RF0EiwQvzJtACQID6RgeRibkQupuGB0xYGl0OtxDzE8Te030OcJ3ZmSuCzx7n9imsfamB%2B%2BMR6W0AqKpf5UnzdBTEwZr7hJPk9t32aEi35OwKfWgKZsPVLwCrkmQbnFvyGcQxo4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879b6d4bdc49b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| wert-e8j.pages.dev/ip2.php | 172.66.44.103 | 200 OK | 85 kB |
URL GET HTTP/3wert-e8j.pages.dev/ip2.php IP172.66.44.103:443
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerLet's Encrypt Subjectwert-e8j.pages.dev Fingerprint96:9E:37:13:D2:3C:E5:3D:4E:0E:26:FF:55:58:DF:40:10:B7:98:52 ValidityFri, 29 Mar 2024 20:02:48 GMT - Thu, 27 Jun 2024 20:02:47 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook | Quad9 DNS | malicious | Sinkholed |
GET /ip2.php HTTP/1.1
Host: wert-e8j.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 04:00:37 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e4c3cf358407aacf5c9fa62a5806e687"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FaT8shjipMBL3yMbPYSARW7ZCDs37qppT7mErk6vJZW7cVP3XkH%2FBykaiSbBTt%2Fh6KsAwaPggEt04FVQmhewhBq6BIkT80t2DAnKcQ6zILmozXqzo3CdrCREbMqwSWOkj3dHCa4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879b6d588b9356c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lgincdnvzeuno.azureedge.net16.000.28230.00/ConvergedLoginPaginatedStrings.en | 0.0.0.0 | | 0 B |
URL GET lgincdnvzeuno.azureedge.net16.000.28230.00/ConvergedLoginPaginatedStrings.en IP0.0.0.0:0
Requested byhttps://wert-e8j.pages.dev/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ConvergedLoginPaginatedStrings.en HTTP/1.1
Host: lgincdnvzeuno.azureedge.net16.000.28230.00
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
Origin: https://wert-e8j.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| lgincdnmsftuswe2.azureedge.net16.000.28230.00/ConvergedLoginPaginatedStrings.en | 0.0.0.0 | | 0 B |
URL GET lgincdnmsftuswe2.azureedge.net16.000.28230.00/ConvergedLoginPaginatedStrings.en IP0.0.0.0:0
Requested byhttps://wert-e8j.pages.dev/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ConvergedLoginPaginatedStrings.en HTTP/1.1
Host: lgincdnmsftuswe2.azureedge.net16.000.28230.00
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
Origin: https://wert-e8j.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| wert-e8j.pages.dev/ip2.php | 172.66.44.103 | 200 OK | 85 kB |
URL GET HTTP/3wert-e8j.pages.dev/ip2.php IP172.66.44.103:443
Requested byhttps://wert-e8j.pages.dev/ CertificateIssuerLet's Encrypt Subjectwert-e8j.pages.dev Fingerprint96:9E:37:13:D2:3C:E5:3D:4E:0E:26:FF:55:58:DF:40:10:B7:98:52 ValidityFri, 29 Mar 2024 20:02:48 GMT - Thu, 27 Jun 2024 20:02:47 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook | Quad9 DNS | malicious | Sinkholed |
GET /ip2.php HTTP/1.1
Host: wert-e8j.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wert-e8j.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 04:00:35 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e4c3cf358407aacf5c9fa62a5806e687"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TdQer7s7VZpR7oQktPFnXKGFzKUZOL3Ixm%2BnUXuQ386yBb1FxCUGui1qEp0rOgqVVhmlOQVWnkUmu%2FTWTxCXXhh2DpwP5I07KA1xctpqlhFZ70f1TVXRXrh1d%2F79%2FfvKTpCL%2BJA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879b6d4dce6756c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|