urlscan.io logo urlscan.io
SecurityTrails logo

login.microsoftonline.com Open in urlscan Pro
40.126.32.138  Public Scan

Go To Rescan Add Verdict Report
Submitted URL: http://autodiscover.wwdfeorder.pmi.com/
Effective URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%...
Submission: On May 16 via api from IT — Scanned from IT
 Behaviour Indicators
Similar DOM Content API
Verdicts

Summary

This website contacted 6 IPs in 4 countries across 7 domains to perform 20 HTTP transactions. The main IP is 40.126.32.138, located in Amsterdam, Netherlands and belongs to MICROSOFT-CORP-MSN-AS-BLOCK, US. The main domain is login.microsoftonline.com. The Cisco Umbrella rank of the primary domain is 10.
TLS certificate: Issued by DigiCert SHA2 Secure Server CA on February 21st 2024. Valid for: a year.
This is the only time login.microsoftonline.com was scanned on urlscan.io!

urlscan.io Verdict: No classification

Domain & IP information

IP Address AS Autonomous System
1 1 40.99.150.88 8075 (MICROSOFT...)
1 1 40.99.214.34 8075 (MICROSOFT...)
4 40.126.32.138 8075 (MICROSOFT...)
11 13.107.226.45 8075 (MICROSOFT...)
1 40.126.31.67 8075 (MICROSOFT...)
1 52.98.171.242 8075 (MICROSOFT...)
2 152.199.21.175 15133 (EDGECAST)
1 20.190.159.0 8075 (MICROSOFT...)
20 6
1    40.99.150.88 (Frankfurt am Main, Germany)

ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US)
autodiscover.wwdfeorder.pmi.com
1    40.99.214.34 (Frankfurt am Main, Germany)

ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US)
outlook.office365.com
4    40.126.32.138 (Amsterdam, Netherlands)

ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US)
login.microsoftonline.com
11    13.107.226.45 (United States)

ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US)
aadcdn.msauth.net
1    40.126.31.67 (Dublin, Ireland)

ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US)
login.live.com
1    52.98.171.242 (Frankfurt am Main, Germany)

ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US)
outlook.office365.com
2    152.199.21.175 (Germany)

ASN15133 (EDGECAST, US)
aadcdn.msauthimages.net
1    20.190.159.0 (Dublin, Ireland)

ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US)
autologon.microsoftazuread-sso.com
Apex Domain
Subdomains		 Transfer
11 msauth.net
aadcdn.msauth.net — Cisco Umbrella Rank: 892
326 KB
4 microsoftonline.com
login.microsoftonline.com — Cisco Umbrella Rank: 10
26 KB
2 msauthimages.net
aadcdn.msauthimages.net — Cisco Umbrella Rank: 3609
409 KB
2 office365.com
outlook.office365.com — Cisco Umbrella Rank: 43
3 KB
1 microsoftazuread-sso.com
autologon.microsoftazuread-sso.com — Cisco Umbrella Rank: 1303
1 KB
1 live.com
login.live.com — Cisco Umbrella Rank: 80
1 pmi.com
autodiscover.wwdfeorder.pmi.com
551 B
20 7
Domain Requested by
11 aadcdn.msauth.net login.microsoftonline.com
aadcdn.msauth.net
4 login.microsoftonline.com aadcdn.msauth.net
2 aadcdn.msauthimages.net
2 outlook.office365.com 1 redirects aadcdn.msauth.net
1 autologon.microsoftazuread-sso.com
1 login.live.com login.microsoftonline.com
1 autodiscover.wwdfeorder.pmi.com 1 redirects
20 7

This site contains links to these domains. Also see Links.

Domain
outlook.office365.com
web.dsfbp.aws.pmicloud.biz
www.microsoft.com
privacy.microsoft.com
Subject Issuer Validity Valid
stamp2.login.microsoftonline.com
DigiCert SHA2 Secure Server CA		 2024-02-21 -
2025-02-21		 a year crt.sh
aadcdn.msauth.net
DigiCert SHA2 Secure Server CA		 2024-04-30 -
2025-04-30		 a year crt.sh
login.live.com
DigiCert SHA2 Secure Server CA		 2024-05-09 -
2025-05-09		 a year crt.sh
outlook.com
DigiCert Cloud Services CA-1		 2024-01-22 -
2025-01-21		 a year crt.sh
aadcdn.msauthimages.net
Microsoft Azure RSA TLS Issuing CA 08		 2024-01-11 -
2025-01-05		 a year crt.sh
autologon.microsoftazuread-sso.com
DigiCert SHA2 Secure Server CA		 2024-05-09 -
2025-05-09		 a year crt.sh

This page contains 2 frames:

Primary Page: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Frame ID: C7993E9C9E946F849732C140CF0F83BD
Requests: 19 HTTP requests in this frame

Frame: https://outlook.office365.com/owa/prefetch.aspx
Frame ID: E37D37986E81F2A3EB507EC724E2DB83
Requests: 1 HTTP requests in this frame

Screenshot
Live screenshot
Full Image

Page Title

Accedi a Outlook

Page URL History Show full URLs

  1. http://autodiscover.wwdfeorder.pmi.com/ HTTP 307
    https://autodiscover.wwdfeorder.pmi.com/ HTTP 307
    http://autodiscover.wwdfeorder.pmi.com/ HTTP 301
    https://outlook.office365.com/owa/?realm=wwdfeorder.pmi.com&vd=autodiscover HTTP 302
    https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redir... Page URL
  2. https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redir... Page URL

Page Statistics

20
Requests

100 %
HTTPS

0 %
IPv6

7
Domains

7
Subdomains

6
IPs

4
Countries

763 kB
Transfer

1578 kB
Size

20
Cookies

Page URL History

This captures the URL locations of the websites, including HTTP redirects and client-side redirects via JavaScript or Meta fields.

  1. http://autodiscover.wwdfeorder.pmi.com/ HTTP 307
    https://autodiscover.wwdfeorder.pmi.com/ HTTP 307
    http://autodiscover.wwdfeorder.pmi.com/ HTTP 301
    https://outlook.office365.com/owa/?realm=wwdfeorder.pmi.com&vd=autodiscover HTTP 302
    https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg Page URL
  2. https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true Page URL

Redirected requests

There were HTTP redirect chains for the following requests:

Request Chain 0
  • http://autodiscover.wwdfeorder.pmi.com/ HTTP 307
  • https://autodiscover.wwdfeorder.pmi.com/ HTTP 307
  • http://autodiscover.wwdfeorder.pmi.com/ HTTP 301
  • https://outlook.office365.com/owa/?realm=wwdfeorder.pmi.com&vd=autodiscover HTTP 302
  • https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg

20 HTTP transactions

Resource
Path		 Size
x-fer		 Type
MIME-Type
authorize
login.microsoftonline.com/common/oauth2/
Redirect Chain
  • http://autodiscover.wwdfeorder.pmi.com/
  • https://autodiscover.wwdfeorder.pmi.com/
  • http://autodiscover.wwdfeorder.pmi.com/
  • https://outlook.office365.com/owa/?realm=wwdfeorder.pmi.com&vd=autodiscover
  • https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-0...
20 KB
9 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
40.126.32.138 Amsterdam, Netherlands, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
ec82852d0c39ba8791f118931ce30e83e4d4e44fc7b7f1db33d5e4c81fa5e689
Security Headers
Name Value
Strict-Transport-Security max-age=31536000; includeSubDomains
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Accept-Language
it-IT,it;q=0.9;q=0.9
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36

Response headers

cache-control
no-store, no-cache
content-encoding
gzip
content-length
8421
content-type
text/html; charset=utf-8
date
Thu, 16 May 2024 07:39:15 GMT
expires
-1
nel
{"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
p3p
CP="DSP CUR OTPi IND OTRi ONL FIN"
pragma
no-cache
referrer-policy
strict-origin-when-cross-origin
report-to
{"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+ams2"}]}
strict-transport-security
max-age=31536000; includeSubDomains
vary
Accept-Encoding
x-content-type-options
nosniff
x-ms-ests-server
2.1.18077.3 - NEULR1 ProdSlices
x-ms-request-id
544b7806-902e-4380-bdd0-0f83eb47aa00
x-ms-srs
1.P
x-xss-protection
0

Redirect headers

alt-svc
h3=":443";ma=2592000,h3-29=":443";ma=2592000
content-length
871
content-type
text/html; charset=utf-8
date
Thu, 16 May 2024 07:39:15 GMT
location
https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg
nel
{"report_to":"NelOfficeUpload1","max_age":7200,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
p3p
CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
report-to
{"group":"NelOfficeUpload1","max_age":7200,"endpoints":[{"url":"https://exo.nel.measure.office.net/api/report?TenantId=&FrontEnd=Cafe&DestinationEndpoint=HHN&RemoteIP=178.249.211.0&Environment="}],"include_subdomains":true}
request-id
8341b2c1-879c-ca36-c154-e6f110a66e93
server
Microsoft-IIS/10.0
strict-transport-security
max-age=31536000; includeSubDomains; preload
x-backend-begin
2024-05-16T07:39:15.905
x-backend-end
2024-05-16T07:39:15.905
x-backendhttpstatus
302 302
x-beserver
BEZP281MB2455
x-besku
WCS6
x-calculatedbetarget
BEZP281MB2455.DEUP281.PROD.OUTLOOK.COM
x-calculatedfetarget
BE1P281CU011.internal.outlook.com
x-content-type-options
nosniff
x-diaginfo
BEZP281MB2455
x-feefzinfo
HHN
x-feproxyinfo
FR3P281CA0109.DEUP281.PROD.OUTLOOK.COM
x-feserver
BE1P281CA0113 FR3P281CA0109
x-firsthopcafeefz
HHN
x-iids
0
x-owa-diagnosticsinfo
1;0;0
x-proxy-backendserverstatus
302
x-proxy-routingcorrectness
1
x-rum-notupdatequerieddbcopy
1
x-rum-notupdatequeriedpath
1
x-rum-validated
1
x-ua-compatible
IE=EmulateIE7
BssoInterrupt_Core_RY3pVDLvjU_KKLtTKxjDFA2.js
aadcdn.msauth.net/shared/1.0/content/js/ 		138 KB
49 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://aadcdn.msauth.net/shared/1.0/content/js/BssoInterrupt_Core_RY3pVDLvjU_KKLtTKxjDFA2.js
Requested by
Host: login.microsoftonline.com
URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
3332d913029f564f91b3ee85abb4fa444d8db0f97b346804088fa4b9da643f66

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Origin
https://login.microsoftonline.com
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
content-encoding
gzip
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
4554691
content-length
49700
x-ms-lease-status
unlocked
last-modified
Mon, 29 Apr 2024 17:13:55 GMT
etag
0x8DC686FC03AF5D0
x-azure-ref
20240516T073916Z-17685cdbdc7vch96b1c1gdpmqw00000000tg000000001akx
content-type
application/x-javascript
access-control-allow-origin
*
x-ms-request-id
98f803a5-c01e-0012-0598-a503b8000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes
Primary Request authorize
login.microsoftonline.com/common/oauth2/ 		39 KB
16 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Requested by
Host: aadcdn.msauth.net
URL: https://aadcdn.msauth.net/shared/1.0/content/js/BssoInterrupt_Core_RY3pVDLvjU_KKLtTKxjDFA2.js
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
40.126.32.138 Amsterdam, Netherlands, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
642a2f7f59a435360a46c8789e2736beb36238740c6d064aafc4072bc45004f3
Security Headers
Name Value
Strict-Transport-Security max-age=31536000; includeSubDomains
X-Content-Type-Options nosniff
X-Frame-Options DENY
X-Xss-Protection 0

Request headers

Accept-Language
it-IT,it;q=0.9;q=0.9
Referer
https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
sec-ch-ua-mobile
?0
sec-ch-ua-platform
"Win32"

Response headers

cache-control
no-store, no-cache
content-encoding
gzip
content-length
15473
content-type
text/html; charset=utf-8
date
Thu, 16 May 2024 07:39:15 GMT
expires
-1
link
<https://aadcdn.msauth.net>; rel=preconnect; crossorigin,<https://aadcdn.msauth.net>; rel=dns-prefetch,<https://aadcdn.msftauth.net>; rel=dns-prefetch
nel
{"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
p3p
CP="DSP CUR OTPi IND OTRi ONL FIN"
pragma
no-cache
referrer-policy
strict-origin-when-cross-origin
report-to
{"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+ams2"}]}
strict-transport-security
max-age=31536000; includeSubDomains
vary
Accept-Encoding
x-content-type-options
nosniff
x-dns-prefetch-control
on
x-frame-options
DENY
x-ms-ests-server
2.1.18077.3 - WEULR1 ProdSlices
x-ms-request-id
b0127b53-368a-4dbd-ac7d-28ef2e2f3d00
x-ms-srs
1.P
x-xss-protection
0
favicon.ico
login.microsoftonline.com/ 		0
119 B 		Other
General
Check archive.org
Download Go to
Full URL
https://login.microsoftonline.com/favicon.ico
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
40.126.32.138 Amsterdam, Netherlands, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
Security Headers
Name Value
Strict-Transport-Security max-age=31536000; includeSubDomains
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

strict-transport-security
max-age=31536000; includeSubDomains
date
Thu, 16 May 2024 07:39:15 GMT
x-content-type-options
nosniff
x-ms-srs
1.P
nel
{"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
referrer-policy
strict-origin-when-cross-origin
report-to
{"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+ams2"}]}
p3p
CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id
94b7dc79-4ab6-46eb-9760-82302d28c100
cache-control
private
content-length
0
x-ms-ests-server
2.1.18077.3 - WEULR1 ProdSlices
x-xss-protection
0
converged.v2.login.min_1ito3russhq-9gioj-zd4w2.css
aadcdn.msauth.net/ests/2.1/content/cdnbundles/ 		110 KB
20 KB 		Stylesheet
General
Check archive.org
Download Go to
Full URL
https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_1ito3russhq-9gioj-zd4w2.css
Requested by
Host: login.microsoftonline.com
URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
4b01a0a34ce8ed4bc8a8713be0442d49da6a756236b7b4424622ca3dee820f41

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Origin
https://login.microsoftonline.com
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
content-encoding
gzip
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
4554691
content-length
20314
x-ms-lease-status
unlocked
last-modified
Wed, 27 Dec 2023 18:18:12 GMT
etag
0x8DC07082FBB8D2B
x-azure-ref
20240516T073916Z-17685cdbdc7vch96b1c1gdpmqw00000000tg000000001am3
content-type
text/css
access-control-allow-origin
*
x-ms-request-id
f7e6f584-601e-004c-6615-a7c296000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes
ConvergedLogin_PCore_9i90DmN8HbFiIvCSmsAz-Q2.js
aadcdn.msauth.net/shared/1.0/content/js/ 		434 KB
119 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_9i90DmN8HbFiIvCSmsAz-Q2.js
Requested by
Host: login.microsoftonline.com
URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
1167250413495e062f6067eb03cec615121d7fc6b0fbd0a39fcc655cadd1a01e

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Origin
https://login.microsoftonline.com
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
content-encoding
gzip
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
4554691
content-length
121438
x-ms-lease-status
unlocked
last-modified
Mon, 29 Apr 2024 17:13:57 GMT
etag
0x8DC686FC1A7BA6D
x-azure-ref
20240516T073916Z-17685cdbdc7vch96b1c1gdpmqw00000000tg000000001am4
content-type
application/x-javascript
access-control-allow-origin
*
x-ms-request-id
f49e8d60-f01e-0071-1b83-a63c9c000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes
ux.converged.login.strings-it.min_5rnikua62clygw1qyml_sw2.js
aadcdn.msauth.net/ests/2.1/content/cdnbundles/ 		58 KB
17 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-it.min_5rnikua62clygw1qyml_sw2.js
Requested by
Host: login.microsoftonline.com
URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
0002e05f795fa7e09812aa1291103270efb1801575db07a98749e3ee324e2424

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Origin
https://login.microsoftonline.com
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
content-encoding
gzip
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
4554691
content-length
16783
x-ms-lease-status
unlocked
last-modified
Wed, 24 Apr 2024 05:49:08 GMT
etag
0x8DC642242AA7770
x-azure-ref
20240516T073916Z-17685cdbdc7vch96b1c1gdpmqw00000000tg000000001am5
content-type
application/x-javascript
access-control-allow-origin
*
x-ms-request-id
82208cb5-101e-006f-5c7d-a62ea3000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes
Me.htm
login.live.com/ 		0
0 		Other
General
Check archive.org
Download Go to
Full URL
https://login.live.com/Me.htm?v=3
Requested by
Host: login.microsoftonline.com
URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Protocol
HTTP/1.1
Security
TLS 1.2, ECDHE_RSA, AES_256_GCM
Server
40.126.31.67 Dublin, Ireland, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers
convergedlogin_pcustomizationloader_8e14dcf0e3ff5580d170.js
aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/ 		219 KB
54 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_8e14dcf0e3ff5580d170.js
Requested by
Host: aadcdn.msauth.net
URL: https://aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_9i90DmN8HbFiIvCSmsAz-Q2.js
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
474ce0790ceb18a100cebaf1ac0915a51389fcae0830c3b44bfa1e365d40b2b4

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
content-encoding
gzip
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
4554691
content-length
54318
x-ms-lease-status
unlocked
last-modified
Thu, 28 Mar 2024 21:22:21 GMT
etag
0x8DC4F6D2782F92A
x-azure-ref
20240516T073916Z-17dc7cb7864v2z9tsnhbfayhk800000003q000000000034m
content-type
application/x-javascript
access-control-allow-origin
*
x-ms-request-id
6b59091d-001e-0022-5f5b-9e22a9000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes
prefetch.aspx
outlook.office365.com/owa/ Frame E37D 		0
0 		Document
General
Check archive.org
Download Go to
Full URL
https://outlook.office365.com/owa/prefetch.aspx
Requested by
Host: aadcdn.msauth.net
URL: https://aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_9i90DmN8HbFiIvCSmsAz-Q2.js
Protocol
H2
Security
TLS 1.2, ECDHE_RSA, AES_256_GCM
Server
52.98.171.242 Frankfurt am Main, Germany, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
Microsoft-IIS/10.0 /
Resource Hash
Security Headers
Name Value
Strict-Transport-Security max-age=31536000; includeSubDomains; preload
X-Content-Type-Options nosniff

Request headers

Accept-Language
it-IT,it;q=0.9;q=0.9
Referer
https://login.microsoftonline.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
sec-ch-ua-mobile
?0
sec-ch-ua-platform
"Win32"

Response headers

alt-svc
h3=":443";ma=2592000,h3-29=":443";ma=2592000
cache-control
private, no-store
content-length
2745
content-type
text/html; charset=utf-8
date
Thu, 16 May 2024 07:39:15 GMT
nel
{"report_to":"NelOfficeUpload1","max_age":7200,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to
{"group":"NelOfficeUpload1","max_age":7200,"endpoints":[{"url":"https://exo.nel.measure.office.net/api/report?TenantId=&FrontEnd=Cafe&DestinationEndpoint=HHN&RemoteIP=178.249.211.0&Environment="}],"include_subdomains":true}
request-id
f85033b6-2c1f-ca07-4471-2bc8418fa9ed
server
Microsoft-IIS/10.0
strict-transport-security
max-age=31536000; includeSubDomains; preload
x-backend-begin
2024-05-16T07:39:16.608
x-backend-end
2024-05-16T07:39:16.608
x-backendhttpstatus
200 200
x-beserver
BEXP281MB0199
x-besku
WCS6
x-calculatedbetarget
BEXP281MB0199.DEUP281.PROD.OUTLOOK.COM
x-calculatedfetarget
BE1P281CU010.internal.outlook.com
x-content-type-options
nosniff
x-diaginfo
BEXP281MB0199
x-feefzinfo
HHN
x-feproxyinfo
FR0P281CA0070.DEUP281.PROD.OUTLOOK.COM
x-feserver
BE1P281CA0091 FR0P281CA0070
x-firsthopcafeefz
HHN
x-iids
0
x-owa-diagnosticsinfo
2;0;0
x-owa-version
15.20.7587.26
x-proxy-backendserverstatus
200
x-proxy-routingcorrectness
1
x-rum-notupdatequerieddbcopy
1
x-rum-notupdatequeriedpath
1
x-rum-validated
1
x-ua-compatible
IE=EmulateIE7
convergedlogin_pfetchsessionsprogress_7c1aa7609345f99e4914.js
aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/ 		15 KB
6 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_7c1aa7609345f99e4914.js
Requested by
Host: aadcdn.msauth.net
URL: https://aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_9i90DmN8HbFiIvCSmsAz-Q2.js
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
35afb11dab6edcbc989a25fe5cf19f5d8289499232b7ec775f318d8b8a5bbf78

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
content-encoding
gzip
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
4554691
content-length
5515
x-ms-lease-status
unlocked
last-modified
Thu, 28 Mar 2024 21:22:21 GMT
etag
0x8DC4F6D27C66D37
x-azure-ref
20240516T073916Z-17dc7cb7864v2z9tsnhbfayhk800000003q000000000034q
content-type
application/x-javascript
access-control-allow-origin
*
x-ms-request-id
3964e327-e01e-0000-7d68-9ee59e000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes
marching_ants_white_8257b0707cbe1d0bd2661b80068676fe.gif
aadcdn.msauth.net/shared/1.0/content/images/ 		3 KB
3 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://aadcdn.msauth.net/shared/1.0/content/images/marching_ants_white_8257b0707cbe1d0bd2661b80068676fe.gif
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
a46201581a7c7c667fd42787cd1e9adf2f6bf809efb7596e61a03e8dba9ada13

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
4554691
content-length
2672
x-ms-lease-status
unlocked
last-modified
Wed, 24 May 2023 10:11:47 GMT
etag
0x8DB5C3F48EC4154
x-azure-ref
20240516T073916Z-17dc7cb7864v2z9tsnhbfayhk800000003q000000000034r
content-type
image/gif
access-control-allow-origin
*
x-ms-request-id
8feffbc6-a01e-0038-2798-a59c9e000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes
marching_ants_986f40b5a9dc7d39ef8396797f61b323.gif
aadcdn.msauth.net/shared/1.0/content/images/ 		4 KB
4 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://aadcdn.msauth.net/shared/1.0/content/images/marching_ants_986f40b5a9dc7d39ef8396797f61b323.gif
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
8737d721808655f37b333f08a90185699e7e8b9bdaaa15cdb63c8448b426f95d

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
4554691
content-length
3620
x-ms-lease-status
unlocked
last-modified
Wed, 24 May 2023 10:11:48 GMT
etag
0x8DB5C3F4904824B
x-azure-ref
20240516T073916Z-17dc7cb7864v2z9tsnhbfayhk800000003q000000000034s
content-type
image/gif
access-control-allow-origin
*
x-ms-request-id
75d97a3f-a01e-0028-63a8-9d2cbc000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes
illustration
aadcdn.msauthimages.net/c1c6b6c8-ilzzekaicbb2dey8lfje0qwxcp56ljf2lld77iimldc/logintenantbranding/0/ 		400 KB
400 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://aadcdn.msauthimages.net/c1c6b6c8-ilzzekaicbb2dey8lfje0qwxcp56ljf2lld77iimldc/logintenantbranding/0/illustration?ts=636120328119354010
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
152.199.21.175 , Germany, ASN15133 (EDGECAST, US),
Reverse DNS
Software
ECAcc (mil/6C29) /
Resource Hash
0dbaab64aa31723ca0cecba047a91191524c85dfa843a32bdcc3989bc376a410

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
content-md5
7L4AqIHtpW+55wyl2vOd7g==
age
13148
x-cache
HIT
content-length
409277
x-ms-lease-status
unlocked
last-modified
Fri, 14 Oct 2016 09:06:53 GMT
server
ECAcc (mil/6C29)
etag
0x8D3F41170A87DEE
content-type
image/*
access-control-allow-origin
*
x-ms-request-id
8cee6486-e01e-002c-5745-a7ae0f000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=86400
x-ms-version
2009-09-19
accept-ranges
bytes
bannerlogo
aadcdn.msauthimages.net/c1c6b6c8-ilzzekaicbb2dey8lfje0qwxcp56ljf2lld77iimldc/logintenantbranding/0/ 		9 KB
9 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://aadcdn.msauthimages.net/c1c6b6c8-ilzzekaicbb2dey8lfje0qwxcp56ljf2lld77iimldc/logintenantbranding/0/bannerlogo?ts=636120328171082153
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
152.199.21.175 , Germany, ASN15133 (EDGECAST, US),
Reverse DNS
Software
ECAcc (mil/6C2D) /
Resource Hash
50b86581deed9c986d1531e6f4aa9443c1fd937aa69603ac673e7e45114adeab

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
content-md5
9jqVy9AbP7Wpfyu1hyss0Q==
age
13148
x-cache
HIT
content-length
9007
x-ms-lease-status
unlocked
last-modified
Fri, 14 Oct 2016 09:06:57 GMT
server
ECAcc (mil/6C2D)
etag
0x8D3F41173259103
content-type
image/*
access-control-allow-origin
*
x-ms-request-id
ebe681fd-201e-0057-4045-a7c5bf000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=86400
x-ms-version
2009-09-19
accept-ranges
bytes
favicon_a_eupayfgghqiai7k9sol6lg2.ico
aadcdn.msauth.net/shared/1.0/content/images/ 		17 KB
17 KB 		Other
General
Check archive.org
Download Go to
Full URL
https://aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:16 GMT
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
0
content-length
17174
x-ms-lease-status
unlocked
last-modified
Sun, 18 Oct 2020 03:02:03 GMT
etag
0x8D8731230C851A6
x-azure-ref
20240516T073916Z-17dc7cb7864v2z9tsnhbfayhk800000003q000000000034w
content-type
image/x-icon
access-control-allow-origin
*
x-ms-request-id
2188d69f-301e-006d-473e-9e78a7000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes
ssoprobe
autologon.microsoftazuread-sso.com/wwdfeorder.pmi.com/winauth/ 		12 B
1 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://autologon.microsoftazuread-sso.com/wwdfeorder.pmi.com/winauth/ssoprobe?client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&_=1715845156727
Protocol
HTTP/1.1
Security
TLS 1.3, , AES_256_GCM
Server
20.190.159.0 Dublin, Ireland, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
d089c8a9fc28e4e50223eb38c9409e362521be9380a37341304fbac7a4cd9e5f
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

Date
Thu, 16 May 2024 07:39:16 GMT
X-Content-Type-Options
nosniff
WWW-Authenticate
Negotiate
nel
{"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
P3P
CP="DSP CUR OTPi IND OTRi ONL FIN"
Content-Length
12
X-XSS-Protection
0
Pragma
no-cache
Referrer-Policy
strict-origin-when-cross-origin
Vary
Origin
Access-Control-Allow-Methods
GET, OPTIONS
Content-Type
image/png; charset=utf-8
Access-Control-Allow-Origin
https://login.microsoftonline.com
x-ms-request-id
1bea4cf5-5a1c-4e45-a1e8-bf27a8b32b00
Cache-Control
no-store, no-cache
Access-Control-Allow-Credentials
true
report-to
{"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+dub2"}]}
x-ms-ests-server
2.1.18077.3 - NEULR1 ProdSlices
Expires
-1
dssostatus
login.microsoftonline.com/common/instrumentation/ 		265 B
549 B 		XHR
General
Check archive.org
Download Go to
Full URL
https://login.microsoftonline.com/common/instrumentation/dssostatus
Requested by
Host: aadcdn.msauth.net
URL: https://aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_9i90DmN8HbFiIvCSmsAz-Q2.js
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
40.126.32.138 Amsterdam, Netherlands, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
f11a910e40c0ccd47f776d12f194d6552e127bfc9c15c0fb27a4b9a609a0ed0c
Security Headers
Name Value
Strict-Transport-Security max-age=31536000; includeSubDomains
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
hpgrequestid
b0127b53-368a-4dbd-ac7d-28ef2e2f3d00
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
client-request-id
8341b2c1-879c-ca36-c154-e6f110a66e93
canary
PAQABDgEAAADnfolhJpSnRYB1SVj-Hgd81Dz7DtApepyGvRRgimf_uSH_ujkCaEQfWzgNDeqlQTwrk_B6qCS5MO618HkVixn6BsmL9ycOKY9d0U60jihlgda_KCgWu6qww6e5G-e1R56sn6ek-8blXCV18GERXXDrMN4Mb6NGGjvZjis3Dx8ixrpJ7mLJ9dkn6QW5mer7gWgdES0MxbL6dacwBoOvm2CLwj0gtDvoTTGOiwPKoq8qhCAA
Content-type
application/json; charset=UTF-8
hpgid
1104
Accept
application/json
Referer
https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
hpgact
1800
sec-ch-ua-platform
"Win32"

Response headers

strict-transport-security
max-age=31536000; includeSubDomains
date
Thu, 16 May 2024 07:39:16 GMT
x-content-type-options
nosniff
nel
{"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
client-request-id
8341b2c1-879c-ca36-c154-e6f110a66e93
p3p
CP="DSP CUR OTPi IND OTRi ONL FIN"
content-length
265
x-xss-protection
0
pragma
no-cache
x-ms-srs
1.P
referrer-policy
strict-origin-when-cross-origin
access-control-allow-methods
POST, OPTIONS
content-type
application/json; charset=utf-8
access-control-allow-origin
https://autologon.microsoftazuread-sso.com/
x-ms-request-id
74dec5fe-e22e-47ea-8b20-3a16d7a24800
cache-control
no-store, no-cache
access-control-allow-credentials
true
report-to
{"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+ams2"}]}
x-ms-ests-server
2.1.18077.3 - SEC ProdSlices
expires
-1
convergedlogin_pstringcustomizationhelper_ea3e62a2bdfb2b2ee8c8.js
aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/ 		111 KB
36 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pstringcustomizationhelper_ea3e62a2bdfb2b2ee8c8.js
Requested by
Host: aadcdn.msauth.net
URL: https://aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_9i90DmN8HbFiIvCSmsAz-Q2.js
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
4be11c075187615adaf493d54cb7b05556e76806aed2b3b082d72952d0025be5

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:17 GMT
content-encoding
gzip
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
4554691
content-length
35807
x-ms-lease-status
unlocked
last-modified
Thu, 28 Mar 2024 21:22:22 GMT
etag
0x8DC4F6D2855897D
x-azure-ref
20240516T073917Z-17dc7cb7864v2z9tsnhbfayhk800000003q0000000000359
content-type
application/x-javascript
access-control-allow-origin
*
x-ms-request-id
8826a709-201e-0074-0750-9ebb96000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes
signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg
aadcdn.msauth.net/shared/1.0/content/images/ 		2 KB
1 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://aadcdn.msauth.net/shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
13.107.226.45 , United States, ASN8075 (MICROSOFT-CORP-MSN-AS-BLOCK, US),
Reverse DNS
Software
/
Resource Hash
8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://login.microsoftonline.com/
Accept-Language
it-IT,it;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

x-ms-blob-type
BlockBlob
date
Thu, 16 May 2024 07:39:17 GMT
content-encoding
gzip
x-cache
TCP_HIT
x-fd-int-roxy-purgeid
0
content-length
621
x-ms-lease-status
unlocked
last-modified
Wed, 24 May 2023 10:11:49 GMT
etag
0x8DB5C3F49ED96E0
x-azure-ref
20240516T073917Z-17dc7cb7864v2z9tsnhbfayhk800000003q000000000035a
content-type
image/svg+xml
access-control-allow-origin
*
x-ms-request-id
df55d39c-301e-0015-5f85-a5d2b6000000
access-control-expose-headers
x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control
public, max-age=31536000
x-ms-version
2009-09-19
accept-ranges
bytes

Verdicts & Comments Add Verdict or Comment

22 JavaScript Global Variables

These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.

object| 0 object| $Config object| $Debug object| $Do function| $Loader object| $WebWatson function| GetString function| GetErrorString function| GetUrl object| $B object| ServerData object| webpackJsonp object| ko object| PROOF object| StringRepository object| Telemetry object| telemetry_webpackJsonp boolean| __ConvergedLogin_PCore boolean| __ boolean| __convergedlogin_pcustomizationloader_8e14dcf0e3ff5580d170 boolean| __convergedlogin_pfetchsessionsprogress_7c1aa7609345f99e4914 boolean| __convergedlogin_pstringcustomizationhelper_ea3e62a2bdfb2b2ee8c8

20 Cookies

Domain/Path Name / Value
outlook.office365.com/ Name: ClientId
Value: 46F07631A2B7469F9BACAC528B232573
outlook.office365.com/ Name: OIDC
Value: 1
outlook.office365.com/ Name: domainName
Value: wwdfeorder.pmi.com
outlook.office365.com/ Name: OpenIdConnect.nonce.v3.fk8g7LMLP2-UU-3t4AZObPsflc2Y_GoaWrvJH5pnoqI
Value: 638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52
outlook.office365.com/ Name: X-OWA-RedirectHistory
Value: ArLym14BvUnISXt13Ag
.login.microsoftonline.com/ Name: esctx-q9y4AzhE8C0
Value: AQABCQEAAADnfolhJpSnRYB1SVj-Hgd8qJ2V9Y4zi8kDLHgQSzXs_vS7AjOrEAKmutNCyqlD9gx-QBYRHAMmmqtW6JFd9FSC1kHojWRsgJnOVTY69EzYhzNlT8mZ6ieQhByvo6YPwyrb6tMSKYeeBeVcjkppaiHLFH-ATBq6Y4Am_CWrWunnkCAA
login.microsoftonline.com/ Name: x-ms-gateway-slice
Value: estsfd
login.microsoftonline.com/ Name: stsservicecookie
Value: estsfd
.login.microsoftonline.com/ Name: AADSSO
Value: NA|NoExtension
login.microsoftonline.com/ Name: SSOCOOKIEPULLED
Value: 1
login.microsoftonline.com/ Name: buid
Value: 0.AUEBMe_N-B6jSkuT5F9XHpElWgIAAAAAAPEPzgAAAAAAAAABAAA.AQABGgEAAADnfolhJpSnRYB1SVj-Hgd8jGJflNXvbRqoYTLnhI1q0wqnFeI9hFvAgklPSFvrRAiVo7UD4YFZhg_gtF1PWdglCBr8UvPIvPpGzB70GLFoIhnfe18mJCSV__tVBCLuHk8gAA
.login.microsoftonline.com/ Name: esctx
Value: PAQABBwEAAADnfolhJpSnRYB1SVj-Hgd8v1D9jXG3S-bPCpCsqUUB-XySYkFH27STPgS3WBrsh4WUZICDb_58sc8kJm1Rk5r-cu7cTvg7crSkUB7ReDShRlCysrUikjFE9RP0cLwuVzphIZtt-2YdfurxrooG1N1IoAPC2O_csRMnJtYobDOCTPpEf6G5X0ygGjeT3vYTuTkgAA
.login.microsoftonline.com/ Name: esctx-hRjyuP0EMak
Value: AQABCQEAAADnfolhJpSnRYB1SVj-Hgd8LdduMgSVRCWTRDgyM_FBnkAvWw84tLjpycps2K09wHh90uLP5wz7WoxCiY8C-anw_AoGZX0460VNVo9WDwr7lz6eZRm61wfwUxd4jNCYb10KCxIIOsTPOe6HWHXySbwnYieTv5Eg4iBy1dRzASmpEiAA
login.microsoftonline.com/ Name: fpc
Value: AkKcaaBqNIBPseklBPCkqwSerOTJAQAAACOv190OAAAA
.login.microsoftonline.com/ Name: brcap
Value: 0
.login.live.com/ Name: uaid
Value: 67b4d0bf58e14d8fa59a4ff7d4e134a1
.login.live.com/ Name: MSPRequ
Value: id=N&lt=1715845156&co=1
autologon.microsoftazuread-sso.com/ Name: fpc
Value: AmzF9rHQtQJEq5-iBDCQJvg
autologon.microsoftazuread-sso.com/ Name: x-ms-gateway-slice
Value: estsfd
autologon.microsoftazuread-sso.com/ Name: stsservicecookie
Value: estsfd

14 Console Messages

Source Level URL
Text
network error URL: https://login.microsoftonline.com/favicon.ico
Message:
Failed to load resource: the server responded with a status of 404 ()
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
other warning URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
Third-party cookie will be blocked. Learn more in the Issues tab.
network error URL: https://autologon.microsoftazuread-sso.com/wwdfeorder.pmi.com/winauth/ssoprobe?client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&_=1715845156727
Message:
Failed to load resource: the server responded with a status of 401 (Unauthorized)
recommendation verbose URL: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=8341b2c1-879c-ca36-c154-e6f110a66e93&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wwdfeorder.pmi.com&nonce=638514419559057853.9d4814e4-0546-467a-ba9e-06a719a1ea52&state=DctBDsIgEEBRsHdxBwU7A8yi8SxjGZMmEgzVcv2yeH_3tVJqGm6DdiMqhiWhB_CESA5jwsVShuRBwDiEYCBENi8mMS5w9MReGB96vHaunednE_6Utff8ltqyNPstu91quZ955f-v5v3Y6intAg&sso_reload=true
Message:
[DOM] Input elements should have autocomplete attributes (suggested: "current-password"): (More info: https://goo.gl/9p2vKq) %o

Security Headers

This page lists any security headers set by the main page. If you want to understand what these mean and how to use them, head on over to this page

Header Value
Strict-Transport-Security max-age=31536000; includeSubDomains
X-Content-Type-Options nosniff
X-Xss-Protection 0

Indicators

This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.

aadcdn.msauth.net
aadcdn.msauthimages.net
autodiscover.wwdfeorder.pmi.com
autologon.microsoftazuread-sso.com
login.live.com
login.microsoftonline.com
outlook.office365.com
13.107.226.45
152.199.21.175
20.190.159.0
40.126.31.67
40.126.32.138
40.99.150.88
40.99.214.34
52.98.171.242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