clodrive.com/trck/?_subid=j8elf43vsmm6&source=9128&rdr=https://dompeterapp.com/16/?_subid=j8elf43vsmm6&external_id=${SUBID}&ymid=${SUBID}&scenario=promo12v2ns&user_agent=Mozilla/5.0+(Linux;+Android+10)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Version/4.0+Focus/1.0+Chrome/59.0.3029.83+Mobile+Safari/537.36&browser=Firefox+Focus&browser_version=1.0&language=EN&os=Android&os_version=10
172.67.199.2302 Found 0 B URL HTTP/1.1 clodrive.com/trck/?_subid=j8elf43vsmm6&source=9128&rdr=https://dompeterapp.com/16/?_subid=j8elf43vsmm6&external_id=${SUBID}&ymid=${SUBID}&scenario=promo12v2ns&user_agent=Mozilla/5.0+(Linux;+Android+10)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Version/4.0+Focus/1.0+Chrome/59.0.3029.83+Mobile+Safari/537.36&browser=Firefox+Focus&browser_version=1.0&language=EN&os=Android&os_version=10
IP 172.67.199.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /trck/?_subid=j8elf43vsmm6&source=9128&rdr=https://dompeterapp.com/16/?_subid=j8elf43vsmm6&external_id=${SUBID}&ymid=${SUBID}&scenario=promo12v2ns&user_agent=Mozilla/5.0+(Linux;+Android+10)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Version/4.0+Focus/1.0+Chrome/59.0.3029.83+Mobile+Safari/537.36&browser=Firefox+Focus&browser_version=1.0&language=EN&os=Android&os_version=10 HTTP/1.1
Host: clodrive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Tue, 06 Dec 2022 04:57:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: _subid=j8elf43vsmm6; expires=Thu, 05-Jan-2023 04:57:25 GMT; Max-Age=2592000; path=/; domain=clodrive.com
_source=9128; expires=Thu, 05-Jan-2023 04:57:25 GMT; Max-Age=2592000; path=/; domain=clodrive.com
Location: https://dompeterapp.com/16/?_subid=j8elf43vsmm6
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eL7jnepHiv8dTIfAv1fYWksJxqq6p5LI7XXjmmTt7ON3TQwoLkZATsTINrN%2BFn3ujx3A%2FVD1zt%2F8WE55GgtIw59z%2BDlxonWGVPQ5LSq582NXrDdObP9SCAtfLQwBTzk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775270cd69d0b529-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18728
Expires: Tue, 06 Dec 2022 10:09:33 GMT
Date: Tue, 06 Dec 2022 04:57:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5724
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:57:25 GMT
Last-Modified: Tue, 06 Dec 2022 03:22:01 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 04:20:21 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2224
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Tue, 06 Dec 2022 05:36:29 GMT
Date: Tue, 06 Dec 2022 04:57:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: la+DltyKaI1yThbXWZNeglm6AE3mtpgTIyFKBdZs00dSeGFjvVycQ3E5Vt54Fr9sB+FCRi1lAXs=
x-amz-request-id: YN9Q32CXDF8KY5SJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 04:46:58 GMT
age: 627
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 04:57:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d6e217677537bfbaa2ddb57df2e2eb18
4f038d623da4dfc965b9d9ef0bc6b566e866075e
7945cb05ca93006ab2808ce18acf7db13533679651469fedc971a19b6b4f0da2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7945CB05CA93006AB2808CE18ACF7DB13533679651469FEDC971A19B6B4F0DA2"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 06 Dec 2022 10:57:26 GMT
Date: Tue, 06 Dec 2022 04:57:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 04:11:20 GMT
cache-control: public,max-age=3600
age: 2766
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
dompeterapp.com/16/?_subid=j8elf43vsmm6
79.141.162.99302 Found 0 B URL HTTP/1.1 dompeterapp.com/16/?_subid=j8elf43vsmm6
IP 79.141.162.99:0
ASN #202015 HZ Hosting Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /16/?_subid=j8elf43vsmm6 HTTP/1.1
Host: dompeterapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Server: nginx/1.10.3 (Ubuntu)
Date: Tue, 06 Dec 2022 04:57:26 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, private, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 0
Location: https://cloopjake.com/trck/?rdr=https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap&_subid=j8elf43vsmm6
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5704
Cache-Control: max-age=107070
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:57:26 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:41:56 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7ec005a228e9912522cd8b2bf03ff88d
e69491c97e56fded86039d7fe57e4b482382eece
0c7aa4a0db8dce64c53b1ec8939193d5101bb3376dfdb864492cfd54abbed8a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171206
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:57:26 GMT
Etag: "638ec57c-117"
Expires: Thu, 08 Dec 2022 04:30:52 GMT
Last-Modified: Tue, 06 Dec 2022 04:30:52 GMT
Server: nginx
Content-Length: 279
push.services.mozilla.com/
52.39.57.61101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.57.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nMFwLgf7VBiIrq3RjMMsxQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 46ezELgV4I90FXIIGkjjO/2V8aI=
oneocsp.microsoft.com/ocsp
204.79.197.203200 OK 1.8 kB URL HTTP/1.1 oneocsp.microsoft.com/ocsp
IP 204.79.197.203:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 8e1bacd1a0b4ee05ef3c87f6bb310a00
03b8737bf77b544e3f5932f73d9b4e1547e2e6d5
4ae293e394c43cdc2f781f5d43085e3a4f3bf4b71041f8cff414c73332a5bd47
POST /ocsp HTTP/1.1
Host: oneocsp.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 1777
Content-Type: application/ocsp-response
Expires: Sat, 10 Dec 2022 15:50:12 GMT
Last-Modified: Mon, 05 Dec 2022 05:09:34 GMT
ETag: "4ae293e394c43cdc2f781f5d43085e3a4f3bf4b71041f8cff414c73332a5bd47"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: BC5FF169D9364910B9809B728ECDD9D4 Ref B: OSL30EDGE0320 Ref C: 2022-12-06T04:57:26Z
Date: Tue, 06 Dec 2022 04:57:26 GMT
cloopjake.com/trck/?rdr=https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap&_subid=j8elf43vsmm6
104.21.71.60302 Found 279 B URL HTTP/2 cloopjake.com/trck/?rdr=https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap&_subid=j8elf43vsmm6
IP 104.21.71.60:0
Hash 7ec005a228e9912522cd8b2bf03ff88d
e69491c97e56fded86039d7fe57e4b482382eece
0c7aa4a0db8dce64c53b1ec8939193d5101bb3376dfdb864492cfd54abbed8a6
GET /trck/?rdr=https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap&_subid=j8elf43vsmm6 HTTP/1.1
Host: cloopjake.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Tue, 06 Dec 2022 04:57:26 GMT
content-type: text/html; charset=UTF-8
location: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
set-cookie: _subid=j8elf43vsmm6; expires=Wed, 07-Dec-2022 04:57:26 GMT; Max-Age=86400; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QCdA%2BCVuuO08GAsa1H%2FRxxZqcwRoCOPMpr8%2B%2FiRMiwx9%2FbPiyhOTcAY45zZzYPVLS38%2BiRYsI8QwgqjPkK1LYswup5r4FfV9aHIteiNgj4RRzze%2FJ%2FIMWPc6d3fuRwq8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775270d48c3d1c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
statics-marketingsites-neu-ms-com.akamaized.net/statics/override.css
95.101.11.81200 OK 473 B URL HTTP/1.1 statics-marketingsites-neu-ms-com.akamaized.net/statics/override.css
IP 95.101.11.81:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (342), with CRLF line terminators
Hash a40589609d8e75c109e93abbff0dcf60
76ae9c943d54022e24b90467713a73a431eddd6d
2c959c2618be84448b26de18639db8a66126449c6ebb29f4f6d33e00adb5b069
GET /statics/override.css HTTP/1.1
Host: statics-marketingsites-neu-ms-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Tue, 11 Jun 2019 23:22:13 GMT
ETag: 0x8D6EEC3A2D67C35
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 794b2968-c01e-0059-40d6-660f8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 473
Unused62: 8096267
Date: Tue, 06 Dec 2022 04:57:26 GMT
Connection: keep-alive
img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RE1Mu3b?ver=5c31
95.101.11.74200 OK 4.1 kB URL HTTP/2 img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RE1Mu3b?ver=5c31
IP 95.101.11.74:0
ASN #20940 Akamai International B.V.
File type PNG image data, 216 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash 9f14c20150a003d7ce4de57c298f0fba
daa53cf17cc45878a1b153f3c3bf47dc9669d78f
112fec798b78aa02e102a724b5cb1990c0f909bc1d8b7b1fa256eab41bbc0960
GET /cms/api/am/imageFileData/RE1Mu3b?ver=5c31 HTTP/1.1
Host: img-prod-cms-rt-microsoft-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
content-location: https://image.prod.cms.rt.microsoft.com/cms/api/am/imageFileData/RE1Mu3b?ver=5c31
last-modified: Wed, 16 Nov 2022 16:47:29 GMT
x-source-length: 4054
x-datacenter: northeu
x-activityid: eeba2c94-bd53-4cec-a35a-50fe3d37468c
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 4054
cache-control: public, max-age=302453
expires: Fri, 09 Dec 2022 16:58:19 GMT
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
ajax.aspnetcdn.com/ajax/jquery/jquery-1.9.0.min.js
152.199.19.160200 OK 42 kB URL HTTP/2 ajax.aspnetcdn.com/ajax/jquery/jquery-1.9.0.min.js
IP 152.199.19.160:0
File type ASCII text, with very long lines (32132)
Hash 7c29149c66233696139a5cf590c9ca00
1018cdb56d97c82c07e547cab9231f7cdc2a1dc8
63e718bd3bb4e717edb381fe8b68226403e86dbb3bb1d7ae1aa1e691b9259216
GET /ajax/jquery/jquery-1.9.0.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 11151444
cache-control: public,max-age=31536000
content-type: application/javascript
date: Tue, 06 Dec 2022 04:57:26 GMT
etag: "533edcbcc33d21:0"
last-modified: Mon, 31 Oct 2016 23:11:01 GMT
server: ECAcc (ska/F6CE)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 41697
X-Firefox-Spdy: h2
www.microsoft.com/onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/6f-d7d610/ef-a24652?ver=2.0&_cf=02242021_3231
2.18.173.151200 OK 23 kB URL HTTP/2 www.microsoft.com/onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/6f-d7d610/ef-a24652?ver=2.0&_cf=02242021_3231
IP 2.18.173.151:0
File type Unicode text, UTF-8 text, with very long lines (64241)
Hash 42c9e145515c1181de810dca8de80962
2124aa979e0b9df035541fafa3bc29aca7bcf665
335cc2a8c473151675f38c33b2486bebaddce3a0e9192ac89bfa10794bada11b
GET /onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/6f-d7d610/ef-a24652?ver=2.0&_cf=02242021_3231 HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
last-modified: Tue, 15 Nov 2022 20:15:36 GMT
x-activity-id: 086d5893-754b-4340-bba6-a1c6f5745af2
ms-cv: SEPC1mTT3UGOXse6.0
x-appversion: 1.0.8335.36378
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-10-28T03:12:36.0000000Z}
ms-operation-id: 9b2de44057dd4c4ba1113876cf4dc9e3
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2022-11-15T20:15:36
x-s2: 2022-11-15T20:15:36
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 22647
cache-control: public, max-age=29776785
expires: Wed, 15 Nov 2023 20:17:11 GMT
date: Tue, 06 Dec 2022 04:57:26 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2
c.s-microsoft.com/static/fonts/segoe-ui/west-european/Semibold/latest.woff2
2.18.173.151200 OK 29 kB URL HTTP/2 c.s-microsoft.com/static/fonts/segoe-ui/west-european/Semibold/latest.woff2
IP 2.18.173.151:0
File type Web Open Font Format (Version 2), TrueType, length 29388, version 0.0\012- data
Hash 6e75a94d5f7170a1ab532d32c2a35755
9c1b6fff544089941bbeddbcf529c3f0b46d853a
d87d0a7a7fe2c36d1dc093bfe56e9b81b311988789dbd3b65abf811d551ef02f
GET /static/fonts/segoe-ui/west-european/Semibold/latest.woff2 HTTP/1.1
Host: c.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 29388
content-type: font/woff2
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "5b68d583e9c7d51:0"
cache-control: public, max-age=503276
expires: Mon, 12 Dec 2022 00:45:23 GMT
date: Tue, 06 Dec 2022 04:57:27 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
c.s-microsoft.com/static/fonts/segoe-ui/west-european/normal/latest.woff2
2.18.173.151200 OK 34 kB URL HTTP/2 c.s-microsoft.com/static/fonts/segoe-ui/west-european/normal/latest.woff2
IP 2.18.173.151:0
File type Web Open Font Format (Version 2), TrueType, length 34052, version 0.0\012- data
Hash 36397a3bc139c6e9f81d383f060f080a
3f4f86c10920d4ed345f4858b6cde9f93e1aeb81
4f7f4afe26e71fa9ca1dac4a43b557a554a46f53251d849f07ed08a04829d74b
GET /static/fonts/segoe-ui/west-european/normal/latest.woff2 HTTP/1.1
Host: c.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 34052
content-type: font/woff2
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "588d483e9c7d51:0"
cache-control: public, max-age=133272
expires: Wed, 07 Dec 2022 17:58:39 GMT
date: Tue, 06 Dec 2022 04:57:27 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.microsoft.com/mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff
2.18.173.151200 OK 26 kB URL HTTP/2 www.microsoft.com/mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff
IP 2.18.173.151:0
File type Web Open Font Format, TrueType, length 26288, version 0.0\012- data
Hash d0263dc03be4c393a90bda733c57d6db
8a032b6deab53a33234c735133b48518f8643b92
22b4df5c33045b645cafa45b04685f4752e471a2e933bff5bf14324d87deee12
GET /mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff
last-modified: Mon, 16 May 2022 07:01:25 GMT
x-activity-id: a2e389d3-283a-4597-baa9-5c0b4de8aecc
ms-cv: Ke1Ir5jrYkKnOOkn.0
x-appversion: 1.0.8153.36695
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-04-29T04:23:10.0000000Z}
ms-operation-id: dbc3d9793f2f1b42838f4c3d2def6ed3
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-length: 26288
cache-control: public, max-age=13917838
expires: Tue, 16 May 2023 07:01:25 GMT
date: Tue, 06 Dec 2022 04:57:27 GMT
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2
microsoftedge.microsoft.com/Assets/Locales/NativeLocales.json
13.107.6.158200 OK 3.2 kB URL HTTP/2 microsoftedge.microsoft.com/Assets/Locales/NativeLocales.json
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash d39a3c4580fac6d5f1a1e0a7135823e8
1091a77d902ab0f830465bfe94af420b072e590d
d18481ef6f4ac7e72b299094d11e40cb4613eaaa8e110aa608cb3d6314826e1b
GET /Assets/Locales/NativeLocales.json HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: 12efc6e4-3e5f-44ee-92d6-fed6f4b40950
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
content-type: application/json
content-encoding: br
last-modified: Sun, 30 Oct 2022 19:48:02 GMT
accept-ranges: bytes
etag: "1d8ec98851ec8c4"
vary: Accept-Encoding
ms-cv: 12efc6e4-3e5f-44ee-92d6-fed6f4b40950
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D1C93628E2A3419D9AA44E535E6CA74A Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:27Z
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
www.microsoft.com/store/buy/cartcount
2.18.173.151200 OK 489 B URL HTTP/2 www.microsoft.com/store/buy/cartcount
IP 2.18.173.151:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bcdd127d7988dcedf4b2866d037bd952
5536e8863fabbf3c651c19e5b42d7a51bf5b2b9b
f9c56fb14488610fc4ee470e86f54bd1e9609907a3cb2bec2cc42cd78cb00679
GET /store/buy/cartcount HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
x-activity-id: c2a4617f-3e8a-4e16-bf79-dc64b9ab1251
ms-cv: t/DrHgyz7Ei5QLlC.0
x-appversion: 1.0.8347.41441
x-az: {did:9a8cd53207774949b337f7edab013e9f, rid: 39, sn: storeexp-neu-prod, dt: 2022-11-11T20:41:46.6371752Z, bt: 2022-11-08T23:01:22.0000000Z}
ms-operation-id: 53221c5f774c0d4996bcb8f3b1cf4973
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-length: 489
x-edgeconnect-midmile-rtt: 0
x-edgeconnect-origin-mex-latency: 221
cache-control: max-age=3018
expires: Tue, 06 Dec 2022 05:47:45 GMT
date: Tue, 06 Dec 2022 04:57:27 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: Str
set-cookie: ak_bmsc=9F01EFDD1AAB37B2C1841C493E5701F8~000000000000000000000000000000~YAAQlwplX0k2rHeEAQAALcXL5RLKDmKN3OKzvlAcsHrXg5HoAjraHEZErVjFHK6TRr1x28c9Kg0vzO5rRoAyT85/ocoEJYILSXx/XRZx1YEoV0VbLH4qQjMiHiPl+0rpGOdGurakiVp8LExOV3dRH4ZtVHYOnBAnZ5d57YSAemgAhda84c5I4PGTEUo1Fq22fZ4AIQoyrd4y//DmhiRxlZMfSNMbDCZYGXyH1R59ZweXUltqFlCvA5jE5eP984wdWkzRtDh/45G1BsQmzsknRg//UJLaxwOz4/wJkdUPwT8OsXzF90Oqf5w2zeg5DQwUqjRdkDmA5FpoQAQ2L24DT1e3g6g12ol/vaK7g2Bc/GCXaxpatwTp2hJrBqjRiBlMOO8fE6NEBCwg1Mcm; Domain=.microsoft.com; Path=/; Expires=Tue, 06 Dec 2022 06:57:27 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
store-images.s-microsoft.com/image/apps.25928.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.a48640a0-ef1a-4f6d-8d3d-42727ab512ac?mode=scale&h=100&q=90&w=100
23.38.201.128200 OK 5.0 kB URL HTTP/1.1 store-images.s-microsoft.com/image/apps.25928.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.a48640a0-ef1a-4f6d-8d3d-42727ab512ac?mode=scale&h=100&q=90&w=100
IP 23.38.201.128:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ee2a4e9c74d50ccb1a377bbd73559dce
9d6f8787e0373de27e1e3f215768b154be0aec91
d2d1940ad87dcc2e4cfa21f8401daea927bfc8b5c05529aae6981eeea39d221d
GET /image/apps.25928.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.a48640a0-ef1a-4f6d-8d3d-42727ab512ac?mode=scale&h=100&q=90&w=100 HTTP/1.1
Host: store-images.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: public, max-age=7776000, s-maxage=7776000
Content-Type: image/png
Last-Modified: Fri, 10 Jun 2022 16:19:25 GMT
Accept-Ranges: none
ETag: W/"AEDtkTaSXr0f6XqZ3tv8DSD6LaXe7tQgMHg4REE0QUZDRkNDMTU2MkE"
MS-CV: 2jd8WMhatUyH7n6G.0
Access-Control-Expose-Headers: MS-CV
Content-Length: 5026
Date: Tue, 06 Dec 2022 04:57:27 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
store-images.s-microsoft.com/image/apps.40633.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.63ea67e6-669f-4bbd-a287-142b7880970f
23.38.201.128200 OK 96 kB URL HTTP/1.1 store-images.s-microsoft.com/image/apps.40633.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.63ea67e6-669f-4bbd-a287-142b7880970f
IP 23.38.201.128:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, software=Adobe ImageReady], baseline, precision 8, 1280x800, components 3\012- data
Hash cdb8ee670cb9abd8263e0d2ef79f6aff
3a3b0a44db7704f17e0e51f6ae8247a0fcd6dd75
45d90b3199582015f13cd52ff63b97be8d4cec57cc5cdc3c4ab3abc5532445e7
GET /image/apps.40633.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.63ea67e6-669f-4bbd-a287-142b7880970f HTTP/1.1
Host: store-images.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: public, max-age=7776000, s-maxage=7776000
Content-Type: image/jpeg
Last-Modified: Fri, 10 Jun 2022 16:19:26 GMT
Accept-Ranges: none
ETag: W/"gEDUIDB4OERBNEFGQ0ZEMUIyMUU1"
MS-CV: /zlevpKdu0WGYJtE.0
Access-Control-Expose-Headers: MS-CV
Content-Length: 96400
Date: Tue, 06 Dec 2022 04:57:27 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
store-images.s-microsoft.com/image/apps.35342.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.8eba57ea-4ddd-4527-b97c-5a3654307d48
23.38.201.128200 OK 135 kB URL HTTP/1.1 store-images.s-microsoft.com/image/apps.35342.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.8eba57ea-4ddd-4527-b97c-5a3654307d48
IP 23.38.201.128:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, software=Adobe ImageReady], baseline, precision 8, 1280x800, components 3\012- data
Size 135 kB (134797 bytes)
Hash b0dd7910245e70fc81d04d7e64299b0e
81e9e405dab732d4fb16c22d301471fd4dd16cbd
f0fb37e43e137ac6f6488904bb56c8650c1bc5f1e3b0cf29f80a5266aec25f37
GET /image/apps.35342.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.8eba57ea-4ddd-4527-b97c-5a3654307d48 HTTP/1.1
Host: store-images.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: public, max-age=7776000, s-maxage=7776000
Content-Type: image/jpeg
Last-Modified: Fri, 10 Jun 2022 16:19:27 GMT
Accept-Ranges: none
ETag: W/"gEDUIDB4OERBNEFGQ0ZENzZCREFC"
MS-CV: Ikpw4jfAmUutTs/k.0
Access-Control-Expose-Headers: MS-CV
Content-Length: 134797
Date: Tue, 06 Dec 2022 04:57:27 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e5e7371e-44b6-4fc5-15e7-253c69fb92e6&partnerId=edgestoreweb
40.126.32.132200 OK 4.9 kB URL HTTP/1.1 login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e5e7371e-44b6-4fc5-15e7-253c69fb92e6&partnerId=edgestoreweb
IP 40.126.32.132:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (10752)
Hash b0dc3ef091be678a0c96df5e6244965c
a52e305b9898545cd55881db42cd25e509d65ee7
f1bf4379fd6560fbab7f41ee6855bb907891ce5b23b276430efac6597147660a
GET /me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e5e7371e-44b6-4fc5-15e7-253c69fb92e6&partnerId=edgestoreweb HTTP/1.1
Host: login.live.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Tue, 06 Dec 2022 04:56:27 GMT
Vary: Accept-Encoding
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
X-DNS-Prefetch-Control: on
Link: <https://logincdn.msauth.net>; rel=preconnect; crossorigin, <https://acctcdn.msauth.net>; rel=preconnect; crossorigin, <https://acctcdn.msftauth.net>; rel=preconnect; crossorigin, <https://acctcdn.msauth.net/>; rel=dns-prefetch, <https://acctcdn.msftauth.net/>; rel=dns-prefetch, <https://acctcdnmsftuswe2.azureedge.net/>; rel=dns-prefetch, <https://acctcdnvzeuno.azureedge.net/>; rel=dns-prefetch, <https://logincdn.msauth.net/>; rel=dns-prefetch, <https://logincdn.msftauth.net/>; rel=dns-prefetch, <https://lgincdnvzeuno.azureedge.net/>; rel=dns-prefetch, <https://lgincdnmsftuswe2.azureedge.net/>; rel=dns-prefetch
Referrer-Policy: strict-origin-when-cross-origin
x-ms-route-info: R3_BL2
x-ms-request-id: 8aa3ab20-4bef-483a-b5cf-094bd3326ed0
PPServer: PPV: 30 H: BL02PF321EEADF7 V: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Set-Cookie: uaid=e5e7371e44b64fc515e7253c69fb92e6; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
MSPRequ=id=N<=1670302647&co=1; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
OParams=11O.DYf3J8Xv7lvX*pYTGDYayLnXk!V838xk02wc2VX47LrsPF9W*7aScvNmCx9WnHhRB0JKgR*XbeyPnxH26gbFTlPivWLtUPBiQr5U7CoQAJqO10ETXWo3iN3iJ2b*3ZFc5XCpAo5drb08vzB9lqkkKOjw9DGYWfax8cXA6WvF7UhTQ3gidusfjqhT3jqqnndKuTUWkOifhD6CODP5yqQYLRSUE0N9gBbFDJCxIbi2BjLUs!AvTWogsOYSoDNQhFFfcLSTLhhy7Uc6CtpKmAL1l5w$; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
Date: Tue, 06 Dec 2022 04:57:26 GMT
Content-Length: 4862
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17702
Expires: Tue, 06 Dec 2022 09:52:29 GMT
Date: Tue, 06 Dec 2022 04:57:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17702
Expires: Tue, 06 Dec 2022 09:52:29 GMT
Date: Tue, 06 Dec 2022 04:57:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17702
Expires: Tue, 06 Dec 2022 09:52:29 GMT
Date: Tue, 06 Dec 2022 04:57:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17702
Expires: Tue, 06 Dec 2022 09:52:29 GMT
Date: Tue, 06 Dec 2022 04:57:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17702
Expires: Tue, 06 Dec 2022 09:52:29 GMT
Date: Tue, 06 Dec 2022 04:57:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8b8df80-ffce-4960-a0e3-83eaf7ee52f3.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8b8df80-ffce-4960-a0e3-83eaf7ee52f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ebd3528452aecd80e39bbf82d3f71f2c
eaa956309d27052d466f7c4bd75b3bdf8443f251
680066dadbddc2cd7179ad5bdfbf9b2014ea601561e585d18dfcda73512ae84a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8b8df80-ffce-4960-a0e3-83eaf7ee52f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6352
x-amzn-requestid: cd970b83-2a99-4e38-afed-580d733040a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuWF1bIAMFcpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-1ba552306e857bb37424d679;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P9Yc2Lh9Kw4AEDZyc9R9WExLdUnCitDeuy0NjttQM-EL1cdVndZxFA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:30:36 GMT
age: 23211
etag: "eaa956309d27052d466f7c4bd75b3bdf8443f251"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
microsoftedge.microsoft.com/addons/js/officebrowserfeedback_floodgate.min.js
13.107.6.158200 OK 138 kB URL HTTP/2 microsoftedge.microsoft.com/addons/js/officebrowserfeedback_floodgate.min.js
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65443)
Size 138 kB (137517 bytes)
Hash e63049d869951cc0b2249b149b534197
cf6fb20b774fadbcedb9b0ae7cc69f8abe23cfea
3f770c1e050aabcddd4005406d866961d4c89030454cd6732231124cbfe9b2d8
GET /addons/js/officebrowserfeedback_floodgate.min.js HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: application/javascript
content-encoding: br
last-modified: Thu, 26 Sep 1985 08:15:00 GMT
accept-ranges: bytes
etag: "1af56271fd29241"
vary: Accept-Encoding
ms-cv: ag3FC6DrMEqbn5bh.0
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B8CFA7E7ACFC4A9A96912BB25E904E16 Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:27Z
date: Tue, 06 Dec 2022 04:57:27 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4193f05dfd1de8bf795f433d4387243
b76ea6ae9df756f131ec16b01cdc7ab19b2d01be
b56231f3c788519751528b849a442d5c7ed828ea4ce3321fd629ca27440ea6e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6920
x-amzn-requestid: 05ec2698-a5ee-4046-be77-0036755f2946
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwaEd-IAMF_-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64cf-783b236b79b1e9ba22098cb2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GgMHlvU3WIDYMF9fmZAajw_Y3zmPm2zojn7FTqgqtBj7e4qeu8Uokg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:53 GMT
age: 24694
etag: "b76ea6ae9df756f131ec16b01cdc7ab19b2d01be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e11524d75503e35c404d6c9a12ac540
5626b75f5c2523f1a0fc301839a06a4e2407f106
d5eb74d026014c0a68893bde1107a9a111b1f0af835e28bb740308017ef80b7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9354
x-amzn-requestid: fb2dad44-2f8c-4f02-bbc5-405e9586e5af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmctYGLdoAMFyDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e55-28b5680933de0ff4208240be;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6jWrhftx7tANXoWkKtCCjzm66zJDY13bpoA-7qVaZJNHEGsJS8dniw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 04:05:41 GMT
age: 3106
etag: "5626b75f5c2523f1a0fc301839a06a4e2407f106"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcb8fe0c4ba323ab2483fa290c291051
6706e02d6b95edc3a33c951f07d04b0fb7415b77
6be68deb3a330955027ec16eaca2cdf4e2776620ffb7cb995922664b24400f02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8749
x-amzn-requestid: ee03c447-299b-45d5-b8c6-12d4d1dc436d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_spHdBIAMFywQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-0c9805c6112ec9ec6b9d1544;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tsL8hmcWaBeKYVG2b4g7ebl-sQ0Z5jZaexEfvldfzq9COcOdzqLhUA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:21 GMT
age: 25746
etag: "6706e02d6b95edc3a33c951f07d04b0fb7415b77"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meCore.min.js
13.107.238.53200 OK 24 kB URL HTTP/2 mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meCore.min.js
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (34247), with CRLF, LF line terminators
Hash 4ae8c10876ed3b7d5e9d1ea613f3251f
d1601102c832f666eb62e52d6ddc850e599196bc
b75665fde7ad4da4ab8064525a5529d2ef75b73c56bc4c4afa6aca900d5a482d
GET /scripts/me/MeControl/10.22290.5/en-US/meCore.min.js HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Wed, 02 Nov 2022 22:23:24 GMT
etag: "1d8ef446512a7ad"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 0PSWOYwAAAAAiZf5xW9BKTppxOa6OjLfNQU1TMDRFREdFMTkwOQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0t8uOYwAAAAD1pwASmG7cQoAe2zpHOKU6U1ZHMjBFREdFMDUwNgBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Tue, 06 Dec 2022 04:57:27 GMT
X-Firefox-Spdy: h2
ratingsedge.rnr.microsoft.com/v1.0/ratingsedge/product/0RDCKCZ3X8K3?catalogId=1&market=NO&locale=en-US&callSiteId=3&pageSize=3&orderBy=1&skipItems=0
40.69.87.105204 No Content 0 B URL HTTP/2 ratingsedge.rnr.microsoft.com/v1.0/ratingsedge/product/0RDCKCZ3X8K3?catalogId=1&market=NO&locale=en-US&callSiteId=3&pageSize=3&orderBy=1&skipItems=0
IP 40.69.87.105:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1.0/ratingsedge/product/0RDCKCZ3X8K3?catalogId=1&market=NO&locale=en-US&callSiteId=3&pageSize=3&orderBy=1&skipItems=0 HTTP/1.1
Host: ratingsedge.rnr.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ms-cv
Referer: https://microsoftedge.microsoft.com/
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Tue, 06 Dec 2022 04:57:27 GMT
server: Kestrel
access-control-allow-headers: ms-cv
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 3600
request-context: appId=cid-v1:fc03bcad-a752-4f14-8357-64132357286d
strict-transport-security: max-age=31536000; includeSubDomains; preload
operationid: 3ba55529fc405752bf3766d1c647e9b9
X-Firefox-Spdy: h2
microsoftedge.microsoft.com/addons/css/officebrowserfeedback.min.css
13.107.6.158200 OK 10 kB URL HTTP/2 microsoftedge.microsoft.com/addons/css/officebrowserfeedback.min.css
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (17781)
Hash 77af20ffaf653684dd8b658436d4b611
355955e9a630fb1dbe779eeb064e5bbc019078aa
7f4853cf2e7ae2e27404675a44834e7b6bc09098abf6e67ea9343d8e9b92edce
GET /addons/css/officebrowserfeedback.min.css HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2; ak_bmsc=9F01EFDD1AAB37B2C1841C493E5701F8~000000000000000000000000000000~YAAQlwplX0k2rHeEAQAALcXL5RLKDmKN3OKzvlAcsHrXg5HoAjraHEZErVjFHK6TRr1x28c9Kg0vzO5rRoAyT85/ocoEJYILSXx/XRZx1YEoV0VbLH4qQjMiHiPl+0rpGOdGurakiVp8LExOV3dRH4ZtVHYOnBAnZ5d57YSAemgAhda84c5I4PGTEUo1Fq22fZ4AIQoyrd4y//DmhiRxlZMfSNMbDCZYGXyH1R59ZweXUltqFlCvA5jE5eP984wdWkzRtDh/45G1BsQmzsknRg//UJLaxwOz4/wJkdUPwT8OsXzF90Oqf5w2zeg5DQwUqjRdkDmA5FpoQAQ2L24DT1e3g6g12ol/vaK7g2Bc/GCXaxpatwTp2hJrBqjRiBlMOO8fE6NEBCwg1Mcm
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: text/css
content-encoding: br
last-modified: Thu, 26 Sep 1985 08:15:00 GMT
accept-ranges: bytes
etag: "1af56271fd45f76"
vary: Accept-Encoding
ms-cv: O9mWxovgHUGBWtOi.0
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B68CBC21A9E641578C7F8D55B668D52D Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:27Z
date: Tue, 06 Dec 2022 04:57:27 GMT
X-Firefox-Spdy: h2
ratingsedge.rnr.microsoft.com/v1.0/ratingsedge/product/0RDCKCZ3X8K3?catalogId=1&market=NO&locale=en-US&callSiteId=3&pageSize=3&orderBy=1&skipItems=0
40.69.87.105200 OK 91 B URL HTTP/2 ratingsedge.rnr.microsoft.com/v1.0/ratingsedge/product/0RDCKCZ3X8K3?catalogId=1&market=NO&locale=en-US&callSiteId=3&pageSize=3&orderBy=1&skipItems=0
IP 40.69.87.105:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash 0098e8fd34845aed80efa39190f4b19e
0abb738c1f8839c8df472036685a7225aeea9591
f08023dc059c02924d51e28db9a84eaaf74a293015bab1b63c7079d5d9376196
GET /v1.0/ratingsedge/product/0RDCKCZ3X8K3?catalogId=1&market=NO&locale=en-US&callSiteId=3&pageSize=3&orderBy=1&skipItems=0 HTTP/1.1
Host: ratingsedge.rnr.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: 9273fa54-9ccc-45ae-bd85-5f3c10db78ff
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Tue, 06 Dec 2022 04:57:27 GMT
server: Kestrel
access-control-allow-origin: *
cache-control: public, max-age=886
content-length: 91
request-context: appId=cid-v1:fc03bcad-a752-4f14-8357-64132357286d
strict-transport-security: max-age=31536000; includeSubDomains; preload
operationid: 95cb4b8541ef89ad9f06090b3f7cf287
X-Firefox-Spdy: h2
browser.pipe.aria.microsoft.com/Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-CJS-1.2.2&x-apikey=d79e824386c4441cb8c1d4ae15690526-bd443309-5494-444a-aba9-0af9eef99f84-7360
52.182.143.210200 OK 0 B URL HTTP/1.1 browser.pipe.aria.microsoft.com/Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-CJS-1.2.2&x-apikey=d79e824386c4441cb8c1d4ae15690526-bd443309-5494-444a-aba9-0af9eef99f84-7360
IP 52.182.143.210:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-CJS-1.2.2&x-apikey=d79e824386c4441cb8c1d4ae15690526-bd443309-5494-444a-aba9-0af9eef99f84-7360 HTTP/1.1
Host: browser.pipe.aria.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1010
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: application/json
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
time-delta-millis: 3315
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: Accept, Content-Type, Content-Encoding, Client-Id
Access-Control-Expose-Headers: kill-tokens, kill-duration-seconds, time-delta-millis
Date: Tue, 06 Dec 2022 04:57:28 GMT
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
52.182.143.210200 OK 0 B URL HTTP/1.1 browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
IP 52.182.143.210:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: apikey,cache-control,client-id,client-version,content-type,time-delta-to-apply-millis,upload-time
Referer: https://microsoftedge.microsoft.com/
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public, 3600
Content-Length: 0
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: AuthMsaDeviceTicket,AuthXToken,Content-Encoding,Content-Type,Cache-Control,Client-Id,SDK-Name,sdk-version,apikey,x-apikey,client-version,upload-time,time-delta-to-apply-millis,client-time-epoch-millis,persistence-mode,reliability-mode,NoResponseBody
Access-Control-Max-Age: 3600
Access-Control-Allow-Origin: https://microsoftedge.microsoft.com
Date: Tue, 06 Dec 2022 04:57:29 GMT
browser.pipe.aria.microsoft.com/Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-JS-1.8.6&content-encoding=base64&x-apikey=225704764c804c94911a89e2f005a8c7-bc3a19c7-eaf6-4346-823a-c88981efd3fb-7097&client-time-epoch-millis=1670302646453&time-delta-to-apply-millis=use-collector-delta
52.182.143.210200 OK 0 B URL HTTP/1.1 browser.pipe.aria.microsoft.com/Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-JS-1.8.6&content-encoding=base64&x-apikey=225704764c804c94911a89e2f005a8c7-bc3a19c7-eaf6-4346-823a-c88981efd3fb-7097&client-time-epoch-millis=1670302646453&time-delta-to-apply-millis=use-collector-delta
IP 52.182.143.210:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-JS-1.8.6&content-encoding=base64&x-apikey=225704764c804c94911a89e2f005a8c7-bc3a19c7-eaf6-4346-823a-c88981efd3fb-7097&client-time-epoch-millis=1670302646453&time-delta-to-apply-millis=use-collector-delta HTTP/1.1
Host: browser.pipe.aria.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 48032
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: application/json
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
time-delta-millis: 3456
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: Accept, Content-Type, Content-Encoding, Client-Id
Access-Control-Expose-Headers: kill-tokens, kill-duration-seconds, time-delta-millis
Date: Tue, 06 Dec 2022 04:57:29 GMT
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
52.182.143.210200 OK 208 B URL HTTP/1.1 browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
IP 52.182.143.210:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash f1e567be171bf0cbfdfa00d447922f26
d10b3ae1b24eac2c3c7bbc81bc17aad5442448e2
cf95ad6e59b71e8353e680d5a8035b8ef0457495ee39ffb018b6628d48d91894
POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Client-Id: NO_AUTH
client-version: 1DS-Web-JS-3.2.6
apikey: b8ffe739c47a401190627519795ca4d2-044a8309-9d4b-430b-9d47-6e87775cbab6-6888
upload-time: 1670302646619
time-delta-to-apply-millis: use-collector-delta
cache-control: no-cache, no-store
content-type: application/x-json-stream
Content-Length: 19277
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2; ak_bmsc=9F01EFDD1AAB37B2C1841C493E5701F8~000000000000000000000000000000~YAAQlwplX0k2rHeEAQAALcXL5RLKDmKN3OKzvlAcsHrXg5HoAjraHEZErVjFHK6TRr1x28c9Kg0vzO5rRoAyT85/ocoEJYILSXx/XRZx1YEoV0VbLH4qQjMiHiPl+0rpGOdGurakiVp8LExOV3dRH4ZtVHYOnBAnZ5d57YSAemgAhda84c5I4PGTEUo1Fq22fZ4AIQoyrd4y//DmhiRxlZMfSNMbDCZYGXyH1R59ZweXUltqFlCvA5jE5eP984wdWkzRtDh/45G1BsQmzsknRg//UJLaxwOz4/wJkdUPwT8OsXzF90Oqf5w2zeg5DQwUqjRdkDmA5FpoQAQ2L24DT1e3g6g12ol/vaK7g2Bc/GCXaxpatwTp2hJrBqjRiBlMOO8fE6NEBCwg1Mcm
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Length: 208
Content-Type: application/json
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Set-Cookie: MS0=86366de51b1845ba9c82278658020611; Domain=.microsoft.com; Expires=Tue, 06 Dec 2022 05:27:30 GMT; Path=/;Secure; SameSite=None
time-delta-millis: 3577
Access-Control-Allow-Headers: P3P,Set-Cookie,time-delta-millis
Access-Control-Allow-Methods: POST
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://microsoftedge.microsoft.com
Access-Control-Expose-Headers: time-delta-millis
Date: Tue, 06 Dec 2022 04:57:29 GMT
microsoftedge.microsoft.com/addons/getrelatedextensionslist/0RDCKCZ3X8K3?hl=en-US&gl=NO&noItems=10&pgNo=1&IncludeExtensionDetailsFields=false
13.107.6.158200 OK 0 B URL HTTP/2 microsoftedge.microsoft.com/addons/getrelatedextensionslist/0RDCKCZ3X8K3?hl=en-US&gl=NO&noItems=10&pgNo=1&IncludeExtensionDetailsFields=false
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /addons/getrelatedextensionslist/0RDCKCZ3X8K3?hl=en-US&gl=NO&noItems=10&pgNo=1&IncludeExtensionDetailsFields=false HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: ae855872-876a-40f8-9cb2-3fa552fdf0d6
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2; ak_bmsc=9F01EFDD1AAB37B2C1841C493E5701F8~000000000000000000000000000000~YAAQlwplX0k2rHeEAQAALcXL5RLKDmKN3OKzvlAcsHrXg5HoAjraHEZErVjFHK6TRr1x28c9Kg0vzO5rRoAyT85/ocoEJYILSXx/XRZx1YEoV0VbLH4qQjMiHiPl+0rpGOdGurakiVp8LExOV3dRH4ZtVHYOnBAnZ5d57YSAemgAhda84c5I4PGTEUo1Fq22fZ4AIQoyrd4y//DmhiRxlZMfSNMbDCZYGXyH1R59ZweXUltqFlCvA5jE5eP984wdWkzRtDh/45G1BsQmzsknRg//UJLaxwOz4/wJkdUPwT8OsXzF90Oqf5w2zeg5DQwUqjRdkDmA5FpoQAQ2L24DT1e3g6g12ol/vaK7g2Bc/GCXaxpatwTp2hJrBqjRiBlMOO8fE6NEBCwg1Mcm
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
content-encoding: br
vary: Accept-Encoding
ms-cv: ae855872-876a-40f8-9cb2-3fa552fdf0d6
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'strict-dynamic' 'nonce-8zGINFO08PDZhjuTGQxia1qHvkR2cyN08H9LmXO354M=' 'unsafe-inline';object-src 'self';base-uri 'self';
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 1182CE871FD14B7AB5E5B94379499007 Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:27Z
date: Tue, 06 Dec 2022 04:57:27 GMT
X-Firefox-Spdy: h2
edgestoreweb.azureedge.net/edgestoreweb/js/build-a680f23da73397bdc6dd.js
13.107.246.53200 OK 0 B URL HTTP/2 edgestoreweb.azureedge.net/edgestoreweb/js/build-a680f23da73397bdc6dd.js
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /edgestoreweb/js/build-a680f23da73397bdc6dd.js HTTP/1.1
Host: edgestoreweb.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=15552000
content-type: application/javascript
content-encoding: br
content-md5: 3VNf+0riX6JJLmwfUkW0zA==
last-modified: Wed, 30 Nov 2022 21:14:28 GMT
etag: 0x8DAD317DDC786EE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: b0e5d969-601e-007f-34c6-083006000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0AByOYwAAAABcKTIQiExgR6K6RJ+dtOSaQU1TMDRFREdFMTkxMgAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
x-azure-ref: 0tsuOYwAAAACcUB674/G0RoCHpjfa4fztU1ZHMjBFREdFMDUxNQAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
edgestoreweb.azureedge.net/edgestoreweb/js/vendor14de0aba14f8d8f698a7d.js
13.107.246.53200 OK 0 B URL HTTP/2 edgestoreweb.azureedge.net/edgestoreweb/js/vendor14de0aba14f8d8f698a7d.js
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /edgestoreweb/js/vendor14de0aba14f8d8f698a7d.js HTTP/1.1
Host: edgestoreweb.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=15552000
content-type: application/javascript
content-encoding: br
content-md5: lZuaif3iBcbKbsAJiJmfAQ==
last-modified: Tue, 06 Dec 2022 03:18:48 GMT
etag: 0x8DAD7389794A366
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 63b887f9-601e-0019-4c2d-09825c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0JMmOYwAAAACHZeI58/OfSa+l4SUxz3qLQU1TMDRFREdFMTgxOQAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
x-azure-ref: 0tsuOYwAAAABIq8if9foOSLDWmcD8fDIEU1ZHMjBFREdFMDUxNQAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
microsoftedge.microsoft.com/Assets/Regions/NativeRegions-en-US.json
13.107.6.158200 OK 0 B URL HTTP/2 microsoftedge.microsoft.com/Assets/Regions/NativeRegions-en-US.json
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /Assets/Regions/NativeRegions-en-US.json HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: aeebb64a-e868-4a84-aaab-42f34b5ee9a2
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
content-type: application/json
content-encoding: br
last-modified: Sun, 30 Oct 2022 19:48:02 GMT
accept-ranges: bytes
etag: "1d8ec98851ed06f"
vary: Accept-Encoding
ms-cv: aeebb64a-e868-4a84-aaab-42f34b5ee9a2
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8A171754DE8B4693B979697361A9FC8B Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:27Z
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
microsoftedge.microsoft.com/addons/intl/en/officebrowserfeedbackstrings.js
13.107.6.158200 OK 0 B URL HTTP/2 microsoftedge.microsoft.com/addons/intl/en/officebrowserfeedbackstrings.js
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /addons/intl/en/officebrowserfeedbackstrings.js HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2; ak_bmsc=9F01EFDD1AAB37B2C1841C493E5701F8~000000000000000000000000000000~YAAQlwplX0k2rHeEAQAALcXL5RLKDmKN3OKzvlAcsHrXg5HoAjraHEZErVjFHK6TRr1x28c9Kg0vzO5rRoAyT85/ocoEJYILSXx/XRZx1YEoV0VbLH4qQjMiHiPl+0rpGOdGurakiVp8LExOV3dRH4ZtVHYOnBAnZ5d57YSAemgAhda84c5I4PGTEUo1Fq22fZ4AIQoyrd4y//DmhiRxlZMfSNMbDCZYGXyH1R59ZweXUltqFlCvA5jE5eP984wdWkzRtDh/45G1BsQmzsknRg//UJLaxwOz4/wJkdUPwT8OsXzF90Oqf5w2zeg5DQwUqjRdkDmA5FpoQAQ2L24DT1e3g6g12ol/vaK7g2Bc/GCXaxpatwTp2hJrBqjRiBlMOO8fE6NEBCwg1Mcm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: application/javascript
content-encoding: br
last-modified: Thu, 26 Sep 1985 08:15:00 GMT
accept-ranges: bytes
etag: "1af56271fd40e1c"
vary: Accept-Encoding
ms-cv: z4QUriCYyEOyvIvx.0
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 03B2F89174B349DF9AE910AB60A652DF Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:27Z
date: Tue, 06 Dec 2022 04:57:27 GMT
X-Firefox-Spdy: h2
edgestoreweb.azureedge.net/edgestoreweb/js/vendor383c5c8b7f3cf2fbc7d99.js
13.107.246.53200 OK 0 B URL HTTP/2 edgestoreweb.azureedge.net/edgestoreweb/js/vendor383c5c8b7f3cf2fbc7d99.js
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /edgestoreweb/js/vendor383c5c8b7f3cf2fbc7d99.js HTTP/1.1
Host: edgestoreweb.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=15552000
content-type: application/javascript
content-encoding: br
content-md5: yrIiLqdsWgTB6ZIs/xFIKw==
last-modified: Wed, 30 Nov 2022 21:14:29 GMT
etag: 0x8DAD317DE3B1F0A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 5dc9dc69-801e-009b-06b1-08230c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 097eOYwAAAAAsL835uPMSQK5Rz4OT/H8xQU1TMDRFREdFMTkxNgAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
x-azure-ref: 0tsuOYwAAAAAeWp/FZMtuSLS9wlNx/zGYU1ZHMjBFREdFMDUxNQAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
edgestoreweb.azureedge.net/edgestoreweb/js/vendor2b1edd69ba9ed7e7fae13.js
13.107.246.53200 OK 0 B URL HTTP/2 edgestoreweb.azureedge.net/edgestoreweb/js/vendor2b1edd69ba9ed7e7fae13.js
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /edgestoreweb/js/vendor2b1edd69ba9ed7e7fae13.js HTTP/1.1
Host: edgestoreweb.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=15552000
content-type: application/javascript
content-encoding: br
content-md5: LlfFPrb7M/TQnUSatv8Vqw==
last-modified: Tue, 06 Dec 2022 03:18:48 GMT
etag: 0x8DAD73897494DA2
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: e5971722-801e-0018-2b2e-0983a1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0D8qOYwAAAABTXMs3qYmVSYLUKg74wOy6QU1TMDRFREdFMTgxOAAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
x-azure-ref: 0tsuOYwAAAABrNGoyEEcVQb2rNMxE4ahmU1ZHMjBFREdFMDUxNQAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meBoot.min.js
13.107.238.53200 OK 0 B URL HTTP/2 mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meBoot.min.js
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /scripts/me/MeControl/10.22290.5/en-US/meBoot.min.js HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Wed, 02 Nov 2022 22:23:16 GMT
etag: "1d8ef44604cb8a1"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 0B/GLYwAAAAA/ZbhwyeAqSYiv30u3FSVlQU1TMDRFREdFMTkwNwBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0t8uOYwAAAADOkEbwu8u5Qrne5IlLNS8tU1ZHMjBFREdFMDUwNgBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Tue, 06 Dec 2022 04:57:27 GMT
X-Firefox-Spdy: h2
microsoftedge.microsoft.com/addons/css/site.css
13.107.6.158200 OK 0 B URL HTTP/2 microsoftedge.microsoft.com/addons/css/site.css
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /addons/css/site.css HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=300
content-type: text/css
content-encoding: br
last-modified: Sun, 30 Oct 2022 19:48:02 GMT
accept-ranges: bytes
etag: "1d8ec98851ed9cc"
vary: Accept-Encoding
ms-cv: gbPsGFahoE6syscr.0
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 9A808BEBB0684BFE8480B026A08677FC Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:26Z
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
js.monitor.azure.com/scripts/c/ms.shared.analytics.mectrl-3.2.6.gbl.min.js
13.107.238.53200 OK 0 B URL HTTP/2 js.monitor.azure.com/scripts/c/ms.shared.analytics.mectrl-3.2.6.gbl.min.js
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /scripts/c/ms.shared.analytics.mectrl-3.2.6.gbl.min.js HTTP/1.1
Host: js.monitor.azure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, no-transform
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: RlzwH95FOkmm6gksZWAC+w==
last-modified: Thu, 18 Aug 2022 21:40:45 GMT
etag: 0x8DA81624EF9033C
x-cache: TCP_HIT
x-ms-request-id: c69279ec-001e-009a-23a3-0871e9000000
x-ms-version: 2009-09-19
x-ms-meta-jssdkver: 3.2.6
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,x-ms-meta-jssdkver,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0eWOOYwAAAACZhXDBm1rQQKBVZslQWiNEQU1TMDRFREdFMTkwOQBmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
x-azure-ref: 0t8uOYwAAAAAQkacQbGC7T6T800gi3c0OU1ZHMjBFREdFMDYxNwBmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
date: Tue, 06 Dec 2022 04:57:27 GMT
X-Firefox-Spdy: h2
mem.gfx.ms/me/mecache?partner=edgestoreweb&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com%2Faddons%2Fdetail%2Fmulti-highlight%2Fliopeljgfbgjainhelaiggjebemkclap
13.107.238.53200 OK 0 B URL HTTP/2 mem.gfx.ms/me/mecache?partner=edgestoreweb&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com%2Faddons%2Fdetail%2Fmulti-highlight%2Fliopeljgfbgjainhelaiggjebemkclap
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /me/mecache?partner=edgestoreweb&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com%2Faddons%2Fdetail%2Fmulti-highlight%2Fliopeljgfbgjainhelaiggjebemkclap HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=43200
content-type: text/html; charset=utf-8
content-encoding: br
expires: Tue, 06 Dec 2022 10:01:15 GMT
x-cache: TCP_HIT
x-content-type-options: nosniff
content-security-policy: frame-ancestors https://microsoftedge.microsoft.com;
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 0q8uOYwAAAADQT/b9PamGQ4x2/CghjRXLQU1TMDRFREdFMTgxNQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0uMuOYwAAAAA9FXtYHndeQoT6rsnWXdICU1ZHMjBFREdFMDUxNwBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Tue, 06 Dec 2022 04:57:27 GMT
X-Firefox-Spdy: h2
microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
13.107.6.158200 OK 0 B URL HTTP/2 microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
ms-cv: DzpXRGOjw0GWmugR.0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'strict-dynamic' 'nonce-RmvVC0GVtA6VcmoWtONLCzOeVJDzW5nGjAMlSnnZGMk=' 'unsafe-inline';object-src 'self';base-uri 'self';
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 501A79DA52AD4E03BBF4E9CD35615DA4 Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:26Z
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
microsoftedge.microsoft.com/Assets/Regions/NativeRegions-en-US.json
13.107.6.158200 OK 0 B URL HTTP/2 microsoftedge.microsoft.com/Assets/Regions/NativeRegions-en-US.json
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /Assets/Regions/NativeRegions-en-US.json HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: 6bae9aa9-3d6a-4eda-b891-70829b7322bf
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
content-type: application/json
content-encoding: br
last-modified: Sun, 30 Oct 2022 19:48:02 GMT
accept-ranges: bytes
etag: "1d8ec98851ed06f"
vary: Accept-Encoding
ms-cv: 6bae9aa9-3d6a-4eda-b891-70829b7322bf
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: CDE808B3F20D49D3B9B973BF652445D3 Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:27Z
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
microsoftedge.microsoft.com/Assets/Strings/en-US/strings.json
13.107.6.158200 OK 0 B URL HTTP/2 microsoftedge.microsoft.com/Assets/Strings/en-US/strings.json
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /Assets/Strings/en-US/strings.json HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: 519a4a52-0a83-49da-970e-c6e023440e38
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=300
content-type: application/json
content-encoding: br
last-modified: Sun, 30 Oct 2022 19:48:02 GMT
accept-ranges: bytes
etag: "1d8ec98851fe4c6"
vary: Accept-Encoding
ms-cv: 519a4a52-0a83-49da-970e-c6e023440e38
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D0E81A3FE4FB46FF895C02D1EE2009ED Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:27Z
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2
microsoftedge.microsoft.com/Assets/Strings/en-US/strings.json
13.107.6.158200 OK 0 B URL HTTP/2 microsoftedge.microsoft.com/Assets/Strings/en-US/strings.json
IP 13.107.6.158:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /Assets/Strings/en-US/strings.json HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: 43e5682b-65e7-4d24-af9c-9d256709a415
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=300
content-type: application/json
content-encoding: br
last-modified: Sun, 30 Oct 2022 19:48:02 GMT
accept-ranges: bytes
etag: "1d8ec98851fe4c6"
vary: Accept-Encoding
ms-cv: 43e5682b-65e7-4d24-af9c-9d256709a415
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 6157E393CC6745929647A687BB6AFD9C Ref B: SVG20EDGE0215 Ref C: 2022-12-06T04:57:27Z
date: Tue, 06 Dec 2022 04:57:26 GMT
X-Firefox-Spdy: h2