Overview

URL www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
IP13.107.219.53
ASNMICROSOFT-CORP-MSN-AS-BLOCK
Location United States
Report completed2022-10-02 03:19:00 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-30 2 www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4 (...) Outlook
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-02 2 www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4 (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-01 23:23:54 UTC 18.164.68.21
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-01 05:17:12 UTC 108.156.28.39
mnemonic passive DNS www.attemplate.com (30) 168105 2020-07-14 08:34:04 UTC 2022-10-02 00:02:45 UTC 13.107.227.53
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-01 14:59:59 UTC 34.120.237.76
mnemonic passive DNS secure.aadcdn.microsoftonline-p.com (3) 11744 2015-09-16 22:42:07 UTC 2022-10-01 22:58:29 UTC 104.110.18.151
mnemonic passive DNS wusofficehome.msocdn.com (8) 0 2017-07-13 15:37:50 UTC 2022-09-23 09:54:14 UTC 23.32.25.29 Domain (msocdn.com) ranked at: 7415
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-10-01 04:59:16 UTC 23.36.76.226
mnemonic passive DNS oneocsp.microsoft.com (6) 1473 2020-08-13 06:58:55 UTC 2022-10-01 04:58:36 UTC 204.79.197.203
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-01 05:00:18 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-10-01 19:20:31 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-01 05:28:34 UTC 52.38.146.2
mnemonic passive DNS r4.res.office365.com (7) 180 2017-03-03 12:49:03 UTC 2022-10-01 08:56:57 UTC 23.38.200.227


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 13.107.219.53

Date UQ / IDS / BL URL IP
2022-12-01 19:15:36 +0000
0 - 0 - 0 www.officence.com/nam/9a99fab2-0ed5-42a9-b173 (...) 13.107.219.53
2022-12-01 19:11:52 +0000
0 - 0 - 0 www.officence.com/nam/9a99fab2-0ed5-42a9-b173 (...) 13.107.219.53
2022-12-01 15:53:13 +0000
0 - 0 - 0 qa-crh.kpmgsofy.com 13.107.219.53
2022-11-30 21:01:28 +0000
0 - 0 - 1 www.shareholds.com/gbr/e4094489-354f-422a-b4b (...) 13.107.219.53
2022-11-30 20:52:26 +0000
0 - 0 - 1 www.attemplate.com/eur/8c6b9c5c-2862-46a3-9be (...) 13.107.219.53

Last 5 reports on ASN: MICROSOFT-CORP-MSN-AS-BLOCK

Date UQ / IDS / BL URL IP
2022-12-04 15:10:32 +0000
21 - 0 - 31 pubgspin125.duckdns.org/ 20.9.70.76
2022-12-04 15:10:07 +0000
31 - 0 - 44 mail.pubgspin125.duckdns.org/ 20.9.70.76
2022-12-04 14:51:42 +0000
4 - 0 - 1 app.secads.club/15GBdn 20.113.188.243
2022-12-04 14:44:58 +0000
3 - 0 - 0 firstappad.me/15GBdn 20.113.188.243
2022-12-04 14:41:16 +0000
3 - 0 - 0 firstappad.me/15Gxy3 20.113.187.208

Last 5 reports on domain: attemplate.com

Date UQ / IDS / BL URL IP
2022-12-01 01:22:20 +0000
8 - 0 - 2 www.attemplate.com/eur/7bc03988-1063-4a03-b76 (...) 13.107.246.53
2022-12-01 00:39:14 +0000
0 - 0 - 2 www.attemplate.com/eur/8c6b9c5c-2862-46a3-9be (...) 13.107.213.53
2022-11-30 21:35:23 +0000
1 - 0 - 1 www.attemplate.com/eur/7bc03988-1063-4a03-b76 (...) 13.107.213.53
2022-11-30 20:52:26 +0000
0 - 0 - 1 www.attemplate.com/eur/8c6b9c5c-2862-46a3-9be (...) 13.107.219.53
2022-11-29 22:08:27 +0000
0 - 0 - 2 www.attemplate.com/jpn/c1e5a355-9690-47b4-8d1 (...) 13.107.238.53

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-12-04 12:07:57 +0000
6 - 0 - 4 www.onlineservicetec.com/landingpages/fe996bb (...) 3.250.252.105
2022-12-04 11:05:37 +0000
6 - 0 - 3 www.e-serviceparts.info/landingpages/dd263864 (...) 54.194.188.119
2022-12-04 00:43:45 +0000
7 - 0 - 2 www.webfun.website/landingpages/d20bb990-c39b (...) 34.248.250.73
2022-12-04 00:36:26 +0000
7 - 0 - 2 www.webfun.website/landingpages/dd263864-38a2 (...) 34.248.250.73
2022-12-04 00:35:32 +0000
7 - 0 - 2 www.webfun.website/landingpages/fe996bbf-3dce (...) 54.229.115.2


JavaScript

Executed Scripts (18)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (70)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EB128AEC099DBF1919EE5D965221E904AD3A2162583683CEC44518640B505447"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7473
Expires: Sun, 02 Oct 2022 05:23:21 GMT
Date: Sun, 02 Oct 2022 03:18:48 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.164.68.21
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 03:02:56 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 3fc96eac90753d96374d6038f01cfe76.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: hFUHDY9epJJ3KJVDN4hH7nsxLFS2ylkHWBvkwyDRswfwjy5KJvu_Mg==
Age: 952


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST /ocsp HTTP/1.1 
Host: oneocsp.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         204.79.197.203
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: max-age=86400
Content-Length: 1777
Expires: Thu, 06 Oct 2022 15:50:07 GMT
Last-Modified: Sat, 01 Oct 2022 10:13:33 GMT
ETag: "9a2c009ba60abe3584be5324096d5458baf170514fa2c52fd242273acb420a90"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 85B745327BD747EA923492A25ED44E2E Ref B: OSL30EDGE0415 Ref C: 2022-10-02T03:18:48Z
Date: Sun, 02 Oct 2022 03:18:48 GMT


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    0a5394e39175cbf0420f1b1969ccbe3b
Sha1:   2745c1836d05d5b0bf343cddbd86a8a626a34432
Sha256: 9a2c009ba60abe3584be5324096d5458baf170514fa2c52fd242273acb420a90
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         108.156.28.39
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 01 Oct 2022 03:39:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 905eac6c91c9858bd0f20b56e9c842d4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: o8_jcoell3MElFeU2fTKDeTN_znC-63kp27EsIy5PGguZKCsMMjcYQ==
age: 85532
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 02 Oct 2022 03:18:48 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.164.68.21
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 02 Oct 2022 02:32:53 GMT
Expires: Sun, 02 Oct 2022 03:30:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d7a09e17a9797d15006b403215eeebe6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: AbmZF1wxls6Cz90JNDhOhmbG9hSpt-OjO5XiSArRvHjyq-eT2t3pKw==
Age: 2756


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2425
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 03:18:49 GMT
Last-Modified: Sun, 02 Oct 2022 02:38:25 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CSjcunN2DRMSDgz8KSacsg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.38.146.2
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: h/DhG6Po5xbm53zIe6fcgwm8WPA=

                                        
                                            GET /Content/newSignInFiles/jsonjs.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 10323
last-modified: Thu, 29 Sep 2022 05:48:16 GMT
accept-ranges: bytes
etag: "1d8d3c711eb3853"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0GgM5YwAAAAAEf4zbDPx7QZF1pT4o7A2mT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:49 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9380), with CRLF line terminators
Size:   10323
Md5:    37ea9ecfb21e1348970d981b0cc9f68c
Sha1:   2c74e0956dd4e1f49f7726eedec967d43c9221b5
Sha256: 3c49e5eeb628e98c3dfc5282c440d21b38a0d42bf45d8e281c1a7478d200c793
                                        
                                            GET /Content/newSignInFiles/ellipsis_grey.svg HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=bUpnNHo4SEJPcjdrSWNNYXVKRWdpUDFmYzJOd3BVSTgzTFUzSkpwVDJNc3k4WXFHM1pXcU9iTWk1RDB0Vm9RdXdjWnZ0NEx0QUxyanpJMG1wT0tvYTlSekxRT2tmakovQ3MzRkxJc2FZSXpreUVFSkRpbnp6RVJna2FublZnNzd4aDhROVc0NWhzaE90YXhSV21PZEZkSDM2L2tvRnp2UEpYaUJlbGJBM0hmdWVNa2hhN2IySGRYblZneGo0N3k1MDhHYjZPc09qVWJERkZWVEpUQUdHUU0wd25ZRTJySkZUWHgybmxOVDFYeVdKdEhXMjkyOGZaVGtOMkhaMkJDNkZpMDBTQzhSb2xkbkZnYVpILzdEaHpuaCtVWmdrNW0vRzQvNUhxUmsycko4Tmx3bUxDNWhudWYxTTkxMmNTOWU5bEg4ZUZEYXZiaWVIaEZXNmNCMk9mdG1Mb3dRcllpNlBvUWp0a1pvSENzNzJLajFNSlkvZ0RXRVZvMzZFZHdvM1QraFZxcnRkcm5Cd0xwa3JaRldpQT09
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-length: 915
last-modified: Thu, 29 Sep 2022 05:56:19 GMT
accept-ranges: bytes
etag: "1d8d3c831cf0013"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0GgM5YwAAAAD7kXv+vGycRIH24gTx1F8qT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:49 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (915), with no line terminators
Size:   915
Md5:    2b5d393db04a5e6e1f739cb266e65b4c
Sha1:   6a435df5cac3d58ccad655fe022ccf3dd4b9b721
Sha256: 16c3f6531d0fa5b4d16e82abf066233b2a9f284c068c663699313c09f5e8d6e6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6015
Expires: Sun, 02 Oct 2022 04:59:06 GMT
Date: Sun, 02 Oct 2022 03:18:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6015
Expires: Sun, 02 Oct 2022 04:59:06 GMT
Date: Sun, 02 Oct 2022 03:18:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6015
Expires: Sun, 02 Oct 2022 04:59:06 GMT
Date: Sun, 02 Oct 2022 03:18:51 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3739433a-586b-4806-9e89-5a2f86fcfa94.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9608
x-amzn-requestid: 48e458f4-06b9-4860-9b5d-f029d1980d0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHnFCNIAMFTsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ca-0f75015e046622da1c785ce9;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:26 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ORd8X5LMwzSwE3J3nGk_CL3T-8CIvktiZ0yGJIsDDaK3g93LXPx1ZQ==
via: 1.1 9c335c5f85533b11cbfd38dc7cc60c16.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:52:32 GMT
age: 19579
etag: "501fbebf706d5cf59e396af4f256f72afbd943d9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9608
Md5:    d43dc29ff0419bb1930b15f5e8a875ba
Sha1:   501fbebf706d5cf59e396af4f256f72afbd943d9
Sha256: 734bc62139fee1b31c84f56de3d5e95c6d6982170db376dab09ef9b65f816d54
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6315
x-amzn-requestid: f0791b53-3c5f-4d94-954d-992a529ebb60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPnunF35oAMFYbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63361ff6-2adb303349153ced73ccecf6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 22:45:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F3fk5JnJ9ZFNPan-8DuLb4kuTiYKfniBar3qNlsuqd8a0saW3sEGvQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 04:41:31 GMT
age: 81440
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6315
Md5:    206fb65e75dbadf119512f71e0b78402
Sha1:   58ff0bf8ce7528b303d28bab01a80ad721705569
Sha256: 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
                                        
                                            GET /nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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 HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: no-cache, no-store
pragma: no-cache
set-cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY; path=/; samesite=strict; httponly
request-context: appId=
strict-transport-security: max-age=2592000
x-frame-options: SAMEORIGIN
x-cache: CONFIG_NOCACHE
x-azure-ref: 0GAM5YwAAAABZ7tHgK3fBQ71Cy6ubSyV2T1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:49 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   36377
Md5:    eb21aaa6c93b95dcf4e025ce0a386ee0
Sha1:   81db7cf10468f70d75e34fe077dcc100bde98d1c
Sha256: 584cc1f687c6e9c77f28cbb36d8e086da24d4678afb7f895605d8511d8620e96

Alerts:
  Blocklists:
    - openphish: Outlook
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11083
x-amzn-requestid: 53e2c961-bcc0-4977-8648-ee3c1aed9cde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHRFWfIAMFhlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3c7-070212d7386d5efa1b4aa8d3;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1KmxHJh9QNfg5x0enkqOjbmiqHvg7nlQiMnuDuCRNWQUBFEiKELbw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:35 GMT
etag: "d63b6ba630736d32c364b0e6a369274b2389b7ff"
age: 19516
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11083
Md5:    edded48f558f739287a040151349ef67
Sha1:   d63b6ba630736d32c364b0e6a369274b2389b7ff
Sha256: 33b4a459df0ba7b36b907ba96d74e08660cc75640c42a5748b97d18ec2e9d533
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9340
x-amzn-requestid: e892265e-836d-4638-871f-0548eda57745
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf8FCEoAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-7f39bb92066a75a90868dd03;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Sk1Dahp1gliiBIghSCZselE7-Fy45svrCk7TdmunOwNefSNqY1P1jA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:47:23 GMT
age: 19888
etag: "6d6d52fb5024e7772dd45dd459bfe3ec90cb5ce4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9340
Md5:    6047192460abf4afd600948abb5e6ee1
Sha1:   6d6d52fb5024e7772dd45dd459bfe3ec90cb5ce4
Sha256: d1fd21a5913f6831d2128c8e9e84767d9730bf9e779da5395dc31b82a10e32e9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6871
x-amzn-requestid: e1fdb2ee-c0e7-4a0c-ae26-d968aef00503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEIOGp2IAMFxSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ce-24b26a8048ffd84071a2ad57;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:30 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -svKnYBuiMSdWObzJyNah9TDIi6IuPP6VMzEJWmn0zxoZbFmwpzkJw==
via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:35 GMT
age: 19516
etag: "087521979efd5936416fd7f030779fa5725f0a8f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6871
Md5:    9dddb9d84a16a3004821d89836b83dc3
Sha1:   087521979efd5936416fd7f030779fa5725f0a8f
Sha256: a6251ac43958031d765b5743d43e14bc04b1e465bed81f757c3609ee6f2bea66
                                        
                                            GET /Content/newSignInFiles/convergedloginpaginatedstrings-en.min.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 12121
last-modified: Wed, 28 Sep 2022 14:57:31 GMT
accept-ranges: bytes
etag: "1d8d34aa23710d9"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0GgM5YwAAAADDcvl4BKmVSanbZQE7N6PGT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:50 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12112), with no line terminators
Size:   12121
Md5:    a43abb7b73ede723d909515b0db8567c
Sha1:   31a5c6d3c518e3b27d96a8c4749ef20d9b028ced
Sha256: 8176927c483b9c3c64aedb655264870a59e608a653ed5045c3091382829b4f89
                                        
                                            GET /Content/newSignInFiles/firstScript.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 54099
last-modified: Fri, 30 Sep 2022 10:23:52 GMT
accept-ranges: bytes
etag: "1d8d4b6bc8eff53"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0GgM5YwAAAACSgrcxS0QXTLoc58KD6JxXT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:50 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (39807), with CRLF line terminators
Size:   54099
Md5:    da5d678cfa62ab32b62a8123e923f822
Sha1:   ea31c64aa7f094ed21ea0acaa054fbe0745235fe
Sha256: 9fabe69e40bbff565755bbc408ba923e8d05867969c34e5448d334c8914d2ba0
                                        
                                            GET /Content/newSignInFiles/ellipsis_white.svg HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-length: 915
last-modified: Fri, 30 Sep 2022 10:23:47 GMT
accept-ranges: bytes
etag: "1d8d4b6b9933813"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0GgM5YwAAAABXBnOG3GXCTJsiQVQX8pcmT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:50 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (915), with no line terminators
Size:   915
Md5:    5ac590ee72bfe06a7cecfd75b588ad73
Sha1:   dda2cb89a241bc424746d8cf2a22a35535094611
Sha256: 6075736ea9c281d69c4a3d78ff97bb61b9416a5809919babe5a0c5596f99aaea
                                        
                                            GET /Content/newSignInFiles/microsoft_logo.svg HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-length: 3651
last-modified: Thu, 29 Sep 2022 06:20:16 GMT
accept-ranges: bytes
etag: "1d8d3cb8a53de43"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0GgM5YwAAAAChnPXMbD79T4nuHAjHP2nbT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:50 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators
Size:   3651
Md5:    ee5c8d9fb6248c938fd0dc19370e90bd
Sha1:   d01a22720918b781338b5bbf9202b241a5f99ee4
Sha256: 04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a
                                        
                                            GET /Content/newSignInFiles/morescript.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 331
last-modified: Thu, 29 Sep 2022 06:03:56 GMT
accept-ranges: bytes
etag: "1d8d3c94233af4b"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0GgM5YwAAAAAotquyn9U6T4cm0DRLDejqT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:50 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (326), with CRLF line terminators
Size:   331
Md5:    8bc03f0ed1d4ec8b123abc818f236ec9
Sha1:   8d5327da68684b0949c5b388f2b2eab3dc77b42e
Sha256: 58fa1f189953f9c0b6209827f64e8ce65318374e075c30f74cad566ed733fe69
                                        
                                            GET /Content/newSignInFiles/converged.login.min.css HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 88187
last-modified: Wed, 28 Sep 2022 14:49:33 GMT
accept-ranges: bytes
etag: "1d8d349854f64fb"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0GgM5YwAAAAA3hY3RpXHbRYzUsM/C5gwVT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:50 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (61123), with CRLF line terminators
Size:   88187
Md5:    962d66b5fa6c30ab93ed4762d692b0b6
Sha1:   264402864833193dc83aea439dfc26bbeae4199e
Sha256: b975857eea84eb27fe2effc01b4045800b81d6e358b37a7a876ba813351745ce
                                        
                                            GET /Content/newSignInFiles/convergedlogin_pcore.min.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 450214
last-modified: Wed, 28 Sep 2022 15:21:35 GMT
accept-ranges: bytes
etag: "1d8d34dfeeef726"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0GgM5YwAAAABAIhTIpQqDQrQM32FS1OV+T1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:50 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32002), with CRLF line terminators
Size:   450214
Md5:    9ae1e96885da36ab5aacdaf54eeb8305
Sha1:   34084f5f515dab11fc20b63089d5d1a80e75d478
Sha256: e4a459ed9bf635aaf0bbcfb36142c32264378f2dd25aa79bae136dfd55dd5888
                                        
                                            GET /Content/newSignInFiles/prefetch.html HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1756
last-modified: Fri, 30 Sep 2022 10:23:47 GMT
accept-ranges: bytes
etag: "1d8d4b6b9933d5c"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HAM5YwAAAACi14tgjrlAQpfJbO7titidT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:51 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   1756
Md5:    a9661376c6d3c89c6448e8efdce7fcfe
Sha1:   5f861ddc8c0d18fc4f1ad6f04a1232504b0e3f27
Sha256: c7972543b426a4ea331b3de94b4c29071d2b69ec5b2616b7af195c5cf531e72f
                                        
                                            GET /Content/newSignInFiles/0-small.jpg HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 1029
last-modified: Wed, 28 Sep 2022 14:57:31 GMT
accept-ranges: bytes
etag: "1d8d34aa2373b85"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HAM5YwAAAABEwYJaBXasSYtZEUUuogIFT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:51 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, xresolution=98, yresolution=106, resolutionunit=2, software=paint.net 4.0.13], baseline, precision 8, 50x28, components 3\012- data
Size:   1029
Md5:    12f4b8b543125cc986c79cd85320812f
Sha1:   e3142c687fe873e1a6a7d29016c7a451b8a2850f
Sha256: c13db279143e1845ee4aaee5afedc5bd75e9f7d50024b63883b45332c4960b3b
                                        
                                            GET /Content/newSignInFiles/staticStylesFluent.css HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 42370
last-modified: Thu, 29 Sep 2022 06:18:44 GMT
accept-ranges: bytes
etag: "1d8d3cb537d1f82"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HAM5YwAAAADaft867pyDQITsDdI9aqx2T1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:51 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42370), with no line terminators
Size:   42370
Md5:    91eabe9f6d879f4ca72b65493213bd68
Sha1:   0f6815e186b3c08e4e4aa3105282db2588c9dd33
Sha256: 3e17954a96ef8fdab6b6c32b08452a5e555f3c95a3ac691913542b54198c3dc5
                                        
                                            GET /ests/2.1.7362.11/content/cdnbundles/watsonsupport.min.js HTTP/1.1 
Host: secure.aadcdn.microsoftonline-p.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.110.18.151
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 38473
Content-Encoding: gzip
Content-MD5: uh+HH+n7/grQTOu2+tsxCg==
Last-Modified: Sat, 18 May 2019 15:11:34 GMT
Cache-Control: public, max-age=604800
Date: Sun, 02 Oct 2022 03:18:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (32083)
Size:   38473
Md5:    ba1f871fe9fbfe0ad04cebb6fadb310a
Sha1:   4cda39e75d7150e0848afbcc792b219b9aa94199
Sha256: a012ac4ab760ff33f4687ff7a7ab204025e229ee9dd8b15f271d464f6a935c64
                                        
                                            GET /ests/2.1.7362.11/content/cdnbundles/frameworksupport.min.js HTTP/1.1 
Host: secure.aadcdn.microsoftonline-p.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.110.18.151
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 4855
Content-Encoding: gzip
Content-MD5: 0+BRbIIbpZZhSvOw0zYrgg==
Last-Modified: Sat, 18 May 2019 15:12:35 GMT
Cache-Control: public, max-age=604800
Date: Sun, 02 Oct 2022 03:18:53 GMT
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (10924)
Size:   4855
Md5:    d3e0516c821ba596614af3b0d3362b82
Sha1:   56353c5fbb6a76635521e378f91f6d6f80ccf611
Sha256: e229fe312a20c124015ffbcf6f03b72fb91cef7641297d28e5e737c4bed96260
                                        
                                            GET /Content/newSignInFiles/prefetch_1.html HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 3401
last-modified: Fri, 30 Sep 2022 10:34:37 GMT
accept-ranges: bytes
etag: "1d8d4b83d0151c9"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HAM5YwAAAAA07qFWC0bTS4/3q+moi/NbT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1188), with CRLF line terminators
Size:   3401
Md5:    64a497444d32ffc563f0acb028a00add
Sha1:   0128ccd7f2db9cad212bbad9604fbf375fd6e9d2
Sha256: b3ed53e1ec89c55f0ad6f8241900b6fb06c8538158ae386ad18666942a6c1180
                                        
                                            GET /ests/2.1.7362.11/content/cdnbundles/watson.min.js HTTP/1.1 
Host: secure.aadcdn.microsoftonline-p.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.110.18.151
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 3780
Content-Encoding: gzip
Content-MD5: W18BicGUjwLrgw4VmUaIng==
Last-Modified: Sat, 18 May 2019 15:11:58 GMT
Cache-Control: public, max-age=604800
Date: Sun, 02 Oct 2022 03:18:53 GMT
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (8878), with no line terminators
Size:   3780
Md5:    5b5f0189c1948f02eb830e159946889e
Sha1:   b8cc8fa54058a613c29d355d432f967390dfdf6b
Sha256: 63e479c4b1297ac1553593205650af172e1225447a9b8a1faac306d5d496942f
                                        
                                            GET /Content/newSignInFiles/share.html HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 61050
last-modified: Wed, 28 Sep 2022 14:46:41 GMT
accept-ranges: bytes
etag: "1d8d3491ec9f0fa"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HAM5YwAAAAAGxlxheODrRoWHRvtiEM1+T1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (34636), with CRLF line terminators
Size:   61050
Md5:    9a3bb6d1929df442683d0042a4da4736
Sha1:   f40f88e9c5043f43ce176313738f0242bc741ddb
Sha256: 1f2052b393bc87d22c4320ac95cfa8e0e0b5e6e505be6e49c9b8158df02ff1be
                                        
                                            GET /Content/newSignInFiles/favicon_a.ico HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: image/x-icon
                                        
content-length: 17174
last-modified: Fri, 30 Sep 2022 10:18:38 GMT
accept-ranges: bytes
etag: "1d8d4b60165d016"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HAM5YwAAAAAAIBQGFIrfSKtuf17SIWdxT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Size:   17174
Md5:    12e3dac858061d088023b2bd48e2fa96
Sha1:   e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
Sha256: 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
                                        
                                            GET /Content/newSignInFiles/odbshare.resx-30cb8c0f.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.attemplate.com/Content/newSignInFiles/share.html
Connection: keep-alive
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 54846
last-modified: Fri, 30 Sep 2022 10:23:10 GMT
accept-ranges: bytes
etag: "1d8d4b6a385ad3e"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAADktfYCHwF3ToFkVZ7htNdPT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (54840), with no line terminators
Size:   54846
Md5:    30cb8c0f0121ecf0d7e72f25e99db372
Sha1:   d5569b73a452b935da0394cda601ef83e69e5361
Sha256: df5b5ebcb8f62fb2e24b77c57d71f02f98705370ccad457e4ca214975ab77498
                                        
                                            GET /Content/newSignInFiles/knockout-b324ae36.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.attemplate.com/Content/newSignInFiles/share.html
Connection: keep-alive
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 65592
last-modified: Wed, 28 Sep 2022 15:03:33 GMT
accept-ranges: bytes
etag: "1d8d34b79fd10b8"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAABy9i/z5w4XTpDG/s6I9CDqT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59466), with CRLF line terminators
Size:   65592
Md5:    1fe900de2fc85937b8fd66b912d5ec98
Sha1:   1aa37910ecec33bee345da74cd5ee50feb85fbe1
Sha256: 5052bc6222b5c7990b21575a67fbeb1396e550fb03d11b86c9bc96dbb8a9e4e7
                                        
                                            GET /Content/newSignInFiles/sprite1.mouse.png HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch_1.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 16664
last-modified: Thu, 29 Sep 2022 06:20:16 GMT
accept-ranges: bytes
etag: "1d8d3cb8a539118"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAADKE8DnkOc+Q6LdFB9oGwJMT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 600 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size:   16664
Md5:    2835f067dcf4c8a12464856267ca8ff7
Sha1:   ab0a6ccd3932d913314b1ff617f236750781a835
Sha256: 4b5cc3fed2c03c158abc3634c1f7700079fbc1e6183aa5e47a2064cfed87977c
                                        
                                            GET /Content/newSignInFiles/boot.worldwide.3.mouse.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch_1.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 656278
last-modified: Thu, 29 Sep 2022 06:04:14 GMT
accept-ranges: bytes
etag: "1d8d3c94ce44096"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAACtyJqAykwZTafFyUOxC+sfT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size:   656278
Md5:    97c5f8fff487304a9482b1bc49cc0d01
Sha1:   4e2f7c2efef5e2eb974e42c75add4c5fe62bc3f6
Sha256: 09b52730dfeb19700920e33d3a12060ec2c78ccb62b7336a22a3d39fb07674a5
                                        
                                            GET /Content/newSignInFiles/boot.worldwide.1.mouse.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch_1.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 655420
last-modified: Wed, 28 Sep 2022 14:47:33 GMT
accept-ranges: bytes
etag: "1d8d3493dcdb0bc"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAAA3uRfXVUcsQptqmCxmYkLqT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size:   655420
Md5:    6a959bbef782c384e9bc59b6ca8985f5
Sha1:   6ff91ca8fc691f7ae420d6ee41b5172b08968f3f
Sha256: eccbfcf674637944b0ad6c956e8a1210838158a3fa589d9d3752bc667ecfb09b
                                        
                                            GET /Content/newSignInFiles/sprite1.mouse.css HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch_1.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 7604
last-modified: Wed, 28 Sep 2022 14:54:46 GMT
accept-ranges: bytes
etag: "1d8d34a3fde22b4"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAACsDmNeUIMAR6bAaTEa/c53T1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7604), with no line terminators
Size:   7604
Md5:    e9ba472d2ddb09fb3ec536dc240b1976
Sha1:   99daf55408b077f6f56daaf6cae4e54dc0fc0cfa
Sha256: 461f87e55bba34c4d9248d1b45685ea832eba56c15ebf6cccf75d49f1547b502
                                        
                                            GET /Content/newSignInFiles/0.jpg HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 298105
last-modified: Fri, 30 Sep 2022 10:39:52 GMT
accept-ranges: bytes
etag: "1d8d4b8f8c60079"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HAM5YwAAAAA3Wwv5sj7wR5nPqTGj9FJDT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, xresolution=98, yresolution=106, resolutionunit=2, software=paint.net 4.0.13], baseline, precision 8, 1920x1080, components 3\012- data
Size:   298105
Md5:    f5a9a9531b8f4bcc86eabb19472d15d5
Sha1:   0aac0b09708622c679768aa62b11d95f0e8388de
Sha256: 62faab60433070e2ea52c235f0f18db228759f2a08bb6f9e5711630df8321214
                                        
                                            GET /Content/newSignInFiles/sharedFontStyles.css HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 80753
last-modified: Thu, 29 Sep 2022 05:56:55 GMT
accept-ranges: bytes
etag: "1d8d3c8474516f1"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HAM5YwAAAADRBf7Mkd/nTLunsLTB1ObAT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   80753
Md5:    f2b550ccd5342b303f228c6c21b75a5a
Sha1:   1f0d44968065c0e7c6c94c48b64df85fd87319ee
Sha256: 0365a3907c20a89c185786deb53076a06d0c823926153a46d534359e05b3fd94
                                        
                                            GET /Content/newSignInFiles/boot.worldwide.2.mouse.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch_1.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 658229
last-modified: Thu, 29 Sep 2022 06:05:00 GMT
accept-ranges: bytes
etag: "1d8d3c968534535"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAAAD6b844MuVQo/WNcp5gdaJT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size:   658229
Md5:    4b4b962b7bcb6374b576fb44fb24a871
Sha1:   d8dcadb5752a2549f8321ac022edb6be3c7ca51f
Sha256: f5ea68a1c0bb90325f9a53432026888725dacc91574702856db1d628c3f9c5df
                                        
                                            GET /Content/newSignInFiles/odbshare-deca58ee.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.attemplate.com/Content/newSignInFiles/share.html
Connection: keep-alive
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1267037
last-modified: Fri, 30 Sep 2022 10:23:47 GMT
accept-ranges: bytes
etag: "1d8d4b6b9806edd"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAABdMmRxt4mISKc97vVe0WaxT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:52 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (52526), with CRLF line terminators
Size:   1267037
Md5:    36e4d5260114c1c0aaaf543f60242abe
Sha1:   216bb5e7b2d7b3ea2fa94be5bd0daaa8420d9294
Sha256: 23f0ff28cbffa80317fd222cb6b7857cfd2075be3bccebfac2cbc97ad1747da6
                                        
                                            GET /Content/newSignInFiles/boot.worldwide.mouse.css HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch_1.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 232377
last-modified: Fri, 30 Sep 2022 10:32:53 GMT
accept-ranges: bytes
etag: "1d8d4b7ff07b339"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAAAyie3Bfnr+SJZKPYs/5m34T1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:54 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   232377
Md5:    48fc1595ceb5f14fd150e4c303231a66
Sha1:   cfea5fe8e941a3b54c37362e21b2f64969d51bb0
Sha256: 1be30cb9303e429a65d50bfa98d279c803256485836027d99b4b195b7fcd9f69
                                        
                                            GET /Content/newSignInFiles/react-e173c92e.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.attemplate.com/Content/newSignInFiles/share.html
Connection: keep-alive
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 150787
last-modified: Thu, 29 Sep 2022 05:57:02 GMT
accept-ranges: bytes
etag: "1d8d3c84b720603"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAAB6X9S4f8ciT5DuhkPcWA4hT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:54 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   150787
Md5:    e173c92e0f5b1f151fb56b251cacbc39
Sha1:   5a2ecc596693c47856d22c7f240c9b9568bb96a0
Sha256: 66bcaf33e9ff0218ddd697bfcc5067e10840ae8055f271dcf7d5a37ade6ee22f
                                        
                                            GET /Content/newSignInFiles/boot.worldwide.0.mouse.js HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/Content/newSignInFiles/prefetch_1.html
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 658812
last-modified: Fri, 30 Sep 2022 10:48:55 GMT
accept-ranges: bytes
etag: "1d8d4ba3c63c8fc"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAACNZDCjQsCgQ63PE3KIkkdMT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:54 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (59852), with CRLF line terminators
Size:   658812
Md5:    ddbd3e0172d580dce1d5037ac1b7df8b
Sha1:   182379569666d07d0505621be9d8e1b32353bd8e
Sha256: 7a321e19122b4aea06314fc09e75cf19e37d4ba61e6e315371987ac895e806ce
                                        
                                            POST /ocsp HTTP/1.1 
Host: oneocsp.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         204.79.197.203
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: max-age=86400
Content-Length: 1777
Expires: Sat, 08 Oct 2022 15:50:06 GMT
Last-Modified: Sat, 01 Oct 2022 22:14:09 GMT
ETag: "602ee6022c9beb3fbd2ee7557190859a49cdfbfe6f0f9f01dd5d43d72af742b2"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: FE695774C4E34FF8A86E0481B226E8CA Ref B: OSL30EDGE0415 Ref C: 2022-10-02T03:18:55Z
Date: Sun, 02 Oct 2022 03:18:55 GMT


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    aa9783756f8d45ca42275fe9cf23d8d0
Sha1:   4f59068e622af1309ebf11fae0eb909b5ed18baf
Sha256: 602ee6022c9beb3fbd2ee7557190859a49cdfbfe6f0f9f01dd5d43d72af742b2
                                        
                                            POST /ocsp HTTP/1.1 
Host: oneocsp.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         204.79.197.203
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: max-age=86400
Content-Length: 1777
Expires: Sat, 08 Oct 2022 15:50:06 GMT
Last-Modified: Sat, 01 Oct 2022 22:14:09 GMT
ETag: "2e8c1647ac012794627e5b1884066aed6522408d8cb2f7e3a07bc2a4374aa697"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 66B7BDFF64214170B571B21D7708E4E5 Ref B: OSL30EDGE0310 Ref C: 2022-10-02T03:18:55Z
Date: Sun, 02 Oct 2022 03:18:54 GMT


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    957ee680338d8de9d256a4613dd50038
Sha1:   91651a27868722a2233180104e5753ff593367f5
Sha256: 2e8c1647ac012794627e5b1884066aed6522408d8cb2f7e3a07bc2a4374aa697
                                        
                                            POST /ocsp HTTP/1.1 
Host: oneocsp.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         204.79.197.203
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: max-age=86400
Content-Length: 1777
Expires: Sat, 08 Oct 2022 15:50:06 GMT
Last-Modified: Sat, 01 Oct 2022 18:14:09 GMT
ETag: "163ad9fa65a1df25dfa8275d240eee41a10309069a67252fc21475ad0838cd0d"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: B081194FB7A04538ACA471AF9D35E773 Ref B: OSL30EDGE0512 Ref C: 2022-10-02T03:18:55Z
Date: Sun, 02 Oct 2022 03:18:55 GMT


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    c76c5f668d34eeb60d54e026ab4640d7
Sha1:   b3a9a18695e350d29f93bb42f504e054bb54d1d2
Sha256: 163ad9fa65a1df25dfa8275d240eee41a10309069a67252fc21475ad0838cd0d
                                        
                                            POST /ocsp HTTP/1.1 
Host: oneocsp.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         204.79.197.203
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: max-age=86400
Content-Length: 1777
Expires: Thu, 06 Oct 2022 15:50:08 GMT
Last-Modified: Sat, 01 Oct 2022 02:14:09 GMT
ETag: "7757a00a504fc58f29d588fca901cd6167e38aadd4152487cb7285ce5ce22a9d"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: FD87DB80C51E4F80B4149B9B2E2D946E Ref B: OSL30EDGE0520 Ref C: 2022-10-02T03:18:55Z
Date: Sun, 02 Oct 2022 03:18:55 GMT


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    c9b2d92f266d2291c215eaa068429a93
Sha1:   447aaa1d7620f6f889f83f79a43464a7f8ceb779
Sha256: 7757a00a504fc58f29d588fca901cd6167e38aadd4152487cb7285ce5ce22a9d
                                        
                                            POST /ocsp HTTP/1.1 
Host: oneocsp.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         204.79.197.203
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: max-age=86400
Content-Length: 1777
Expires: Thu, 06 Oct 2022 15:50:08 GMT
Last-Modified: Sat, 01 Oct 2022 14:14:09 GMT
ETag: "5f16f3913e27c4101251910d14f028493f9242ac94b754878e8242093269f892"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 2EF2C1501EAE4D8FB65DF14DE5C19BDE Ref B: OSL30EDGE0514 Ref C: 2022-10-02T03:18:55Z
Date: Sun, 02 Oct 2022 03:18:55 GMT


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    fca0b014015768d69b3598eabaf960ef
Sha1:   980c9667b166b2bc9f42c9a8530c05fd7efe0de5
Sha256: 5f16f3913e27c4101251910d14f028493f9242ac94b754878e8242093269f892
                                        
                                            GET /owa/prem/16.2170.8.2502626/scripts/boot.worldwide.0.mouse.js HTTP/1.1 
Host: r4.res.office365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.227
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
last-modified: Thu, 01 Mar 2018 22:03:28 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: public,max-age=630720000, s-maxage=630720000
date: Sun, 02 Oct 2022 03:18:55 GMT
content-length: 178168
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (59852), with CRLF line terminators
Size:   178168
Md5:    766d8b9b12b91afafe8e4acd88b189a0
Sha1:   2d521e0d6078ef684ae221170e0fa983e1d44760
Sha256: 88d8843e944d171335d8b95a11adadc743923d629c1db108178a642920bb9c7c
                                        
                                            GET /owa/prem/16.2170.8.2502626/scripts/boot.worldwide.1.mouse.js HTTP/1.1 
Host: r4.res.office365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.227
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
last-modified: Thu, 01 Mar 2018 22:03:27 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: public,max-age=630720000, s-maxage=630720000
date: Sun, 02 Oct 2022 03:18:56 GMT
content-length: 161597
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size:   161597
Md5:    1ad01b5690ad4fb23b104fc317ad7b7f
Sha1:   7f49802bcfbdd4e585ffc6d691848a673ef06625
Sha256: 958c030322a82decf7b6da5642b8bb084c7e9d8533e59f91062734a094493851
                                        
                                            GET /owa/prem/16.2170.8.2502626/scripts/boot.worldwide.2.mouse.js HTTP/1.1 
Host: r4.res.office365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.227
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
last-modified: Thu, 01 Mar 2018 22:03:28 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: public,max-age=630720000, s-maxage=630720000
date: Sun, 02 Oct 2022 03:18:56 GMT
content-length: 169086
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size:   169086
Md5:    33a2371675f9bb0d0eb8517b37ec3d0a
Sha1:   d7c8c6ace771737008ce3fc394fb69ec884e3918
Sha256: 01c5e59886323fb58a19db9f8c32cdba56edadca304e7f918f6b45bb4829c2c2
                                        
                                            GET /s/2f9f9c93/Areas/Home/Content/js/build/bundles/app-bundle.js HTTP/1.1 
Host: wusofficehome.msocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.32.25.29
HTTP/2 403 Forbidden
                                        
content-length: 0
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
date: Sun, 02 Oct 2022 03:18:56 GMT
set-cookie: OH.SID=0e8cf471-4d2f-40e4-a591-84441dfb771d; path=/; secure; samesite=none; httponly
timing-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            GET /s/7c18fcc8/Areas/Home/Content/js/build/bundles/react-bundle.js HTTP/1.1 
Host: wusofficehome.msocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.32.25.29
HTTP/2 403 Forbidden
                                        
content-length: 0
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
date: Sun, 02 Oct 2022 03:18:56 GMT
set-cookie: OH.SID=f69d7b4a-d9d0-44fb-83c6-87c2fdfac982; path=/; secure; samesite=none; httponly
timing-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            GET /s/6be72975/Areas/Home/Content/js/build/bundles/sharedScripts.js HTTP/1.1 
Host: wusofficehome.msocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.32.25.29
HTTP/2 403 Forbidden
                                        
content-length: 0
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
date: Sun, 02 Oct 2022 03:18:56 GMT
set-cookie: OH.SID=87cf16ad-6468-4e60-9b57-a39b1d49a30d; path=/; secure; samesite=none; httponly
timing-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            POST /common/handlers/watson HTTP/1.1 
Host: www.attemplate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
canary: AQABAAAAAABHh4kmS_aKT5XrjzxRAtHzByAOmM8fpkvKw4pmLXe2B2zfR-dGJC7ZE_XiwLESgQono13jEoEudwaFfYbS-zBQP_Yi900yDXGDchlib2yXwFr4wifGHsKFmuBZ24Vjx8EyYALwzY3Ze9ETm_Pz1oKKoj5UyomNUgTMpvsO69Jo0okaQRk6XPpCpTQb8OBC9Tb79u9Xq2bMD7wtNDvalpa7j8x2WH64BMJpMNSQjMBGACAA
hpgid: 1104
hpgact: 1800
client-request-id: 72b50326-20c5-494b-941d-6db76a881875
X-Requested-With: XMLHttpRequest
Content-Length: 3833
Origin: https://www.attemplate.com
Connection: keep-alive
Referer: https://www.attemplate.com/nam/52eb7b5b-9cd5-4807-859a-90564cfdacb6/c45fe897-4701-4c47-8b53-e7fa06163faf/98921452-68d9-413a-9b06-c483b769eb5a/login?id=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
Cookie: .AspNetCore.Antiforgery.NYSTDXTf4_s=CfDJ8HYjFoEwabNGncBlc9zmwau1TP74zON39DAXBMVC_CpnQhFKce08wTvLJd3kvmom7yMO7POIqiRteDl6TuqveWR2Q6Gd9e42_rs9-7PA5jI0wm3PGT3Wq5RFynvuy-gvkm2rdNnGJdahLOAf7pH3hdY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         13.107.227.53
HTTP/2 500 Internal Server Error
content-type: text/html; charset=utf-8
                                        
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 0HQM5YwAAAAB1pHCJajzKR7mxHVe1oznlT1NMMjMxMDUwMjA1MDUxADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Sun, 02 Oct 2022 03:18:54 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   4270
Md5:    87306133c167ae6af4fcbc9fe0876b2b
Sha1:   4612a396f54161fbefb3a375bd8b640a302d03e8
Sha256: c14468cdc2213365958a15b100e91d5b1722efed31f0eb898d838eb7114316fe
                                        
                                            GET /s/19ef5923/Areas/Home/Content/js/build/bundles/vendor-bundle.js HTTP/1.1 
Host: wusofficehome.msocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.32.25.29
HTTP/2 403 Forbidden
                                        
content-length: 0
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
date: Sun, 02 Oct 2022 03:18:56 GMT
set-cookie: OH.SID=f5fdefde-cfeb-456d-81d0-475f53149d18; path=/; secure; samesite=none; httponly
timing-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            GET /s/b29e92f2/Areas/Home/Content/js/build/bundles/staticScripts.js HTTP/1.1 
Host: wusofficehome.msocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.32.25.29
HTTP/2 403 Forbidden
                                        
content-length: 0
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
date: Sun, 02 Oct 2022 03:18:56 GMT
set-cookie: OH.SID=c9a372ab-a90a-422a-877c-0822cfcf94a1; path=/; secure; samesite=none; httponly
timing-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            GET /s/c3caee40/Areas/Home/Content/images/fluent-background-sources/header-default-desktop.svg HTTP/1.1 
Host: wusofficehome.msocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.attemplate.com/
Cookie: OH.SID=0e8cf471-4d2f-40e4-a591-84441dfb771d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.32.25.29
HTTP/2 403 Forbidden
                                        
content-length: 0
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
date: Sun, 02 Oct 2022 03:18:56 GMT
set-cookie: OH.SID=810719df-acf4-4bb8-bfc3-c1cc8d27fd90; path=/; secure; samesite=none; httponly
timing-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            GET /s/fab5fe9a/Areas/Home/Content/images/document-sprite.png HTTP/1.1 
Host: wusofficehome.msocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.attemplate.com/
Cookie: OH.SID=f5fdefde-cfeb-456d-81d0-475f53149d18
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.32.25.29
HTTP/2 403 Forbidden
                                        
content-length: 0
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
date: Sun, 02 Oct 2022 03:18:56 GMT
set-cookie: OH.SID=c9d28555-9651-4225-9a08-c2cd103fe143; path=/; secure; samesite=none; httponly
timing-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            GET /s/398b5c2a/Areas/Home/Content/images/zero-docs-sprite.png HTTP/1.1 
Host: wusofficehome.msocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.attemplate.com/
Cookie: OH.SID=f5fdefde-cfeb-456d-81d0-475f53149d18
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.32.25.29
HTTP/2 403 Forbidden
                                        
content-length: 0
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
date: Sun, 02 Oct 2022 03:18:56 GMT
set-cookie: OH.SID=0ed912c6-9892-46a7-b23d-a10d3dcb76de; path=/; secure; samesite=none; httponly
timing-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            GET /owa/prem/16.2170.8.2502626/scripts/boot.worldwide.3.mouse.js HTTP/1.1 
Host: r4.res.office365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.227
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
last-modified: Thu, 01 Mar 2018 22:03:28 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: public,max-age=630720000, s-maxage=630720000
date: Sun, 02 Oct 2022 03:18:57 GMT
content-length: 144731
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size:   144731
Md5:    c227bb42997647f734114335cdee8ded
Sha1:   61c8ca81fe5223e7f228ace674a5510e28f8bb4c
Sha256: 0849430ca23c787f9739969a3b8ed52cecf7f885ed177e6660e810537b4e9108
                                        
                                            GET /owa/prem/16.2170.8.2502626/resources/images/0/sprite1.mouse.png HTTP/1.1 
Host: r4.res.office365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.227
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
last-modified: Thu, 01 Mar 2018 21:58:58 GMT
server: AkamaiNetStorage
content-length: 16664
cache-control: public,max-age=630720000, s-maxage=630720000
date: Sun, 02 Oct 2022 03:18:57 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 600 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size:   16664
Md5:    2835f067dcf4c8a12464856267ca8ff7
Sha1:   ab0a6ccd3932d913314b1ff617f236750781a835
Sha256: 4b5cc3fed2c03c158abc3634c1f7700079fbc1e6183aa5e47a2064cfed87977c
                                        
                                            GET /owa/prem/16.2170.8.2502626/resources/images/0/sprite1.mouse.css HTTP/1.1 
Host: r4.res.office365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.227
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
last-modified: Thu, 01 Mar 2018 21:59:00 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: public,max-age=630720000, s-maxage=630720000
date: Sun, 02 Oct 2022 03:18:57 GMT
content-length: 1124
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7604), with no line terminators
Size:   1124
Md5:    a4e658970b457e73140a7b88a63533ae
Sha1:   b9f6b8d97fcade5e1bb38d48c153159af69fd68b
Sha256: 0be54357c66b84d5e8996b5efac2e89899b9d7481201431abe6cc806ae7c454e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4230b0ca-f194-4ba4-bdd1-69ebd8421799.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6942
x-amzn-requestid: 312f14b3-7734-4013-a652-1e0132f247eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDpnGewIAMF_1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b30a-49ec997d74e55c63500e960f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wowfOaUJdM-_XK1Tp8R6ItYDYUfRUmWLEyUhvfcLK6WHGzSw_1_vtw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:52:27 GMT
age: 19590
etag: "335a691d7ca92b74a69c349d7a25a8a15dbda5c8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6942
Md5:    91c3d94a9442b6a9c2103c8cda90ddcd
Sha1:   335a691d7ca92b74a69c349d7a25a8a15dbda5c8
Sha256: 38018ebad5d3ad8ad02c5bc732d0879a3275c28795e9dc141e35f673a03ce349
                                        
                                            GET /owa/prem/16.2170.8.2502626/resources/styles/0/boot.worldwide.mouse.css HTTP/1.1 
Host: r4.res.office365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.227
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
last-modified: Thu, 01 Mar 2018 22:00:55 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: public,max-age=630720000, s-maxage=630720000
date: Sun, 02 Oct 2022 03:18:57 GMT
content-length: 44247
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   44247
Md5:    5088d944056ceb529df40ac24c8b3f5b
Sha1:   5c8dc1ebe38e90314b2deec5ea7417888e1c731e
Sha256: 0cf03b1d1451e6c76c7ccd2320b11128dae2c0689f8fb1a7c5f4052c42e3ea73