ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f57d2cc1ab8bbee50dff2b2be18b9db
2c8acd2018995b9bbed8f4dbfa33c8044b293080
a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4395
Cache-Control: max-age=86415
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 10:44:05 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 10:44:20 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 33c3dea45eaabae3557235f002dda989
38a1903e09bff723af30fe5080f79646247b9254
b00022c599d7a74bd264b90a1ca9f935eb8a7bc6e63a9751dddc8acfbafe58da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B00022C599D7A74BD264B90A1CA9F935EB8A7BC6E63A9751DDDC8ACFBAFE58DA"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8308
Expires: Thu, 03 Nov 2022 13:02:33 GMT
Date: Thu, 03 Nov 2022 10:44:05 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1776
Cache-Control: max-age=170199
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 10:44:05 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 10:00:44 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43ea74d83493710eb8b64a74046ff569
74dee6d9e8b796d34f2788a472b90b3f7fc79ecd
f62eff2ad4d64d785a48e2761d7f2bda9171f1e60b0e9dc525d8f589f9ef7c60
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F62EFF2AD4D64D785A48E2761D7F2BDA9171F1E60B0E9DC525D8F589F9EF7C60"
Last-Modified: Tue, 01 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4805
Expires: Thu, 03 Nov 2022 12:04:10 GMT
Date: Thu, 03 Nov 2022 10:44:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
Alt-Used: 0
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 03 Nov 2022 10:42:52 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 73
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cgGDH67kcy5QyllGz7VpIOrlILrJK2cJLC3W58giH2COXa1WG9GCJffzGwHz+hT6GNTLnPhHlfk=
x-amz-request-id: DMRNEVY0VDYT6E2Z
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 03 Nov 2022 10:09:08 GMT
age: 2097
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 03 Nov 2022 10:44:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
micro0demms0nmsds.z13.web.core.windows.net/
52.239.214.161200 OK 65 kB URL HTTP/1.1 micro0demms0nmsds.z13.web.core.windows.net/
IP 52.239.214.161:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (4084), with CRLF line terminators
Hash d326e014546650cc80876d5dee22f68d
8a83f6b020953c784918980770ec776756e64f06
ffff0ee0d26bf5238cd18d9ab1f4b0bd09d61cfbc2470c76947f87c1a1af68ee
Analyzer Verdict Alert openphish Outlook
GET / HTTP/1.1
Host: micro0demms0nmsds.z13.web.core.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Content-Length: 65145
Content-Type: text/html
Last-Modified: Tue, 27 Aug 2019 17:37:29 GMT
Accept-Ranges: bytes
ETag: "0x8D72B153BFDA5E9"
Server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2adce055-601e-0046-3971-efb2b7000000
x-ms-version: 2018-03-28
Date: Thu, 03 Nov 2022 10:44:05 GMT
secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/cdnbundles/converged.v2.login.min_xu7km3oxm4bwp2b-mqyozg2.css
104.110.18.151200 OK 19 kB URL HTTP/1.1 secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/cdnbundles/converged.v2.login.min_xu7km3oxm4bwp2b-mqyozg2.css
IP 104.110.18.151:0
File type ASCII text, with very long lines (61177)
Hash c48ea714894065c560c3ea19f26a4858
ee6e2af4cd7d0f5c61715a3d6c8e6c13742d791a
4c885c3e3078d9df2a09cae69b4bfde950b342e8cc94c7b4a413b18b48b63608
GET /ests/2.1.8576.13/content/cdnbundles/converged.v2.login.min_xu7km3oxm4bwp2b-mqyozg2.css HTTP/1.1
Host: secure.aadcdn.microsoftonline-p.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://micro0demms0nmsds.z13.web.core.windows.net
Connection: keep-alive
Referer: https://micro0demms0nmsds.z13.web.core.windows.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 18788
Content-Type: text/css
Content-Encoding: gzip
Content-MD5: xI6nFIlAZcVgw+oZ8mpIWA==
Last-Modified: Sun, 19 May 2019 07:53:51 GMT
Cache-Control: public, max-age=27913880
Date: Thu, 03 Nov 2022 10:44:05 GMT
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *
secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/ellipsis_white_5ac590ee72bfe06a7cecfd75b588ad73.svg
104.110.18.151200 OK 263 B URL HTTP/1.1 secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/ellipsis_white_5ac590ee72bfe06a7cecfd75b588ad73.svg
IP 104.110.18.151:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (915), with no line terminators
Hash 1ccc2c1e135776dadf8ab40393372a30
896401dab83bfc11a8b762bcb31d380831f97c9f
ab27d5557bbbd037b4af2acce3f53c868efa932558bd7dd8e3f0347b10325043
GET /ests/2.1.8576.13/content/images/ellipsis_white_5ac590ee72bfe06a7cecfd75b588ad73.svg HTTP/1.1
Host: secure.aadcdn.microsoftonline-p.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://micro0demms0nmsds.z13.web.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 263
Content-Type: image/svg+xml
Content-Encoding: gzip
Content-MD5: HMwsHhNXdtrfirQDkzcqMA==
Last-Modified: Sun, 19 May 2019 07:54:27 GMT
Cache-Control: public, max-age=27913865
Date: Thu, 03 Nov 2022 10:44:05 GMT
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *
secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
104.110.18.151200 OK 1.4 kB URL HTTP/1.1 secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
IP 104.110.18.151:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators
Hash 9f368bc4580fed907775f31c6b26d6cf
e393a40b3e337f43057eee3de189f197ab056451
7ecbba946c099539c3d9c03f4b6804958900e5b90d48336eea7e5a2ed050fa36
GET /ests/2.1.8576.13/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1
Host: secure.aadcdn.microsoftonline-p.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://micro0demms0nmsds.z13.web.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 1435
Content-Type: image/svg+xml
Content-Encoding: gzip
Content-MD5: nzaLxFgP7ZB3dfMcaybWzw==
Last-Modified: Sun, 19 May 2019 07:54:57 GMT
Cache-Control: public, max-age=27859084
Date: Thu, 03 Nov 2022 10:44:05 GMT
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *
secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/ellipsis_grey_2b5d393db04a5e6e1f739cb266e65b4c.svg
104.110.18.151200 OK 263 B URL HTTP/1.1 secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/ellipsis_grey_2b5d393db04a5e6e1f739cb266e65b4c.svg
IP 104.110.18.151:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (915), with no line terminators
Hash fdadf2fe6a40f8745a54088f002aeca2
ce8a4413aba3b2035ef4c48d46d76eabe4dda4b0
aa6593b23f2559fe0c239b25f9ad9b2bc79437ae5ee23e412e13d148ab5b6b86
GET /ests/2.1.8576.13/content/images/ellipsis_grey_2b5d393db04a5e6e1f739cb266e65b4c.svg HTTP/1.1
Host: secure.aadcdn.microsoftonline-p.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://micro0demms0nmsds.z13.web.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 263
Content-Type: image/svg+xml
Content-Encoding: gzip
Content-MD5: /a3y/mpA+HRaVAiPACrsog==
Last-Modified: Sun, 19 May 2019 07:54:56 GMT
Cache-Control: public, max-age=27913865
Date: Thu, 03 Nov 2022 10:44:05 GMT
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *
ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
152.199.19.160200 OK 30 kB URL HTTP/2 ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
IP 152.199.19.160:0
File type ASCII text, with very long lines (65451)
Hash a263be51483c81a54aa8c85104a93e55
555a54a73531c553bd2aede6abc25c128b63312e
b2f13ad730928958c09d89e6e32bb6a227c0260d032a39ca464d998a59e57a66
GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://micro0demms0nmsds.z13.web.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 20473740
cache-control: public,max-age=31536000
content-type: application/javascript
date: Thu, 03 Nov 2022 10:44:05 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F7A8)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2
secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/backgrounds/0_a5dbd4393ff6a725c7e62b61df7e72f0.jpg
104.110.18.151200 OK 283 kB URL HTTP/1.1 secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/backgrounds/0_a5dbd4393ff6a725c7e62b61df7e72f0.jpg
IP 104.110.18.151:0
File type JPEG image data, baseline, precision 8, 1920x1080, components 3\012- data
Size 283 kB (283351 bytes)
Hash a5dbd4393ff6a725c7e62b61df7e72f0
55b292f885ffc92abce18750b07aa4acfa4e903e
211a907de2da0ff4a0e90917ac8054e2f35c351180977550c26e51b4909f2beb
GET /ests/2.1.8576.13/content/images/backgrounds/0_a5dbd4393ff6a725c7e62b61df7e72f0.jpg HTTP/1.1
Host: secure.aadcdn.microsoftonline-p.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://micro0demms0nmsds.z13.web.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 283351
Content-Type: image/jpeg
Content-MD5: pdvUOT/2pyXH5ith335y8A==
Last-Modified: Sun, 19 May 2019 07:54:25 GMT
Cache-Control: public, max-age=27913876
Date: Thu, 03 Nov 2022 10:44:05 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *
secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/backgrounds/0-small_138bcee624fa04ef9b75e86211a9fe0d.jpg
104.110.18.151200 OK 3.0 kB URL HTTP/1.1 secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/backgrounds/0-small_138bcee624fa04ef9b75e86211a9fe0d.jpg
IP 104.110.18.151:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x28, components 3\012- data
Hash 138bcee624fa04ef9b75e86211a9fe0d
23bbcdaaebd6c9a6e57e96e44493b2212860fcab
f89e908280791803bbf1f33b596ff4a2179b355a8e15ad02ebaa2b1da11127ea
GET /ests/2.1.8576.13/content/images/backgrounds/0-small_138bcee624fa04ef9b75e86211a9fe0d.jpg HTTP/1.1
Host: secure.aadcdn.microsoftonline-p.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://micro0demms0nmsds.z13.web.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 3006
Content-Type: image/jpeg
Content-MD5: E4vO5iT6BO+bdehiEan+DQ==
Last-Modified: Sun, 19 May 2019 07:54:21 GMT
Cache-Control: public, max-age=27913875
Date: Thu, 03 Nov 2022 10:44:05 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *
secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
104.110.18.151200 OK 17 kB URL HTTP/1.1 secure.aadcdn.microsoftonline-p.com/ests/2.1.8576.13/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
IP 104.110.18.151:0
File type MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Hash 12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /ests/2.1.8576.13/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: secure.aadcdn.microsoftonline-p.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://micro0demms0nmsds.z13.web.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 17174
Content-Type: image/x-icon
Content-MD5: EuPayFgGHQiAI7K9SOL6lg==
Last-Modified: Sun, 19 May 2019 07:54:51 GMT
Cache-Control: public, max-age=27913899
Date: Thu, 03 Nov 2022 10:44:05 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *
portal.microsoftonline.com/Prefetch/Prefetch.aspx
52.109.88.54200 OK 3.1 kB URL HTTP/2 portal.microsoftonline.com/Prefetch/Prefetch.aspx
IP 52.109.88.54:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3433), with CRLF, LF line terminators
Hash ee461d20ac7ea0f4c826cb1961a48d8e
8fd147e4aaf180ea466ff866c2f4d05eb57fd1cd
03718143454ade1783090299aeddbc51a078d47e5449e693c72cd1ea44ba1e04
GET /Prefetch/Prefetch.aspx HTTP/1.1
Host: portal.microsoftonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://micro0demms0nmsds.z13.web.core.windows.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-store, no-cache,no-store, no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
strict-transport-security: max-age=63072000
x-aspnet-version: 4.0.30319
set-cookie: s.SessID=3210809c-a16a-4b52-b6bd-5b53513eb28b; path=/; secure; HttpOnly
s.cachemap=20; path=/; secure; HttpOnly
p.PersID=44e6eec3-9667-4667-917d-82cf03e2a3db; expires=Fri, 01-Dec-2023 10:44:05 GMT; path=/; secure; HttpOnly
s.SessID=3210809c-a16a-4b52-b6bd-5b53513eb28b; path=/; secure; HttpOnly
s.cachemap=20; path=/; secure; HttpOnly
p.PersID=44e6eec3-9667-4667-917d-82cf03e2a3db; expires=Fri, 01-Dec-2023 10:44:05 GMT; path=/; secure; HttpOnly
x-portal-routekey=weu; path=/; secure; HttpOnly
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-ua-compatible: IE=Edge
date: Thu, 03 Nov 2022 10:44:05 GMT
content-length: 3138
X-Firefox-Spdy: h2
portal.microsoftonline.com/WebResource.axd?d=SYxG2gKEltHc92c7-eKy7vreyN1e2QqrvpdCCR4utt35Rwac9rd_c8SeOHxrYQBj6_mlgMwB-OaZiOiHvHjimRyiyb40s7dxOv3AMLtzClV2W-wogtkMOc2pDBD_sJZyRKzfvgJtVY-JClcKNVaTSg2&t=638014151959756829
52.109.88.54200 OK 6.0 kB URL HTTP/2 portal.microsoftonline.com/WebResource.axd?d=SYxG2gKEltHc92c7-eKy7vreyN1e2QqrvpdCCR4utt35Rwac9rd_c8SeOHxrYQBj6_mlgMwB-OaZiOiHvHjimRyiyb40s7dxOv3AMLtzClV2W-wogtkMOc2pDBD_sJZyRKzfvgJtVY-JClcKNVaTSg2&t=638014151959756829
IP 52.109.88.54:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 06fd446079195e9866f38728a31b8416
bce7935598a51703a7077dd75e1d30882533c6e1
5466d19b6349cc09de47de356c3195b2fd367a5ab8f1c55e8aaf2f296915d46d
GET /WebResource.axd?d=SYxG2gKEltHc92c7-eKy7vreyN1e2QqrvpdCCR4utt35Rwac9rd_c8SeOHxrYQBj6_mlgMwB-OaZiOiHvHjimRyiyb40s7dxOv3AMLtzClV2W-wogtkMOc2pDBD_sJZyRKzfvgJtVY-JClcKNVaTSg2&t=638014151959756829 HTTP/1.1
Host: portal.microsoftonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/Prefetch/Prefetch.aspx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: gzip
expires: Fri, 03 Nov 2023 03:41:48 GMT
last-modified: Sat, 15 Oct 2022 07:19:55 GMT
vary: Accept-Encoding
server: Microsoft-IIS/10.0
strict-transport-security: max-age=63072000
x-aspnet-version: 4.0.30319
set-cookie: s.SessID=35cabb57-a509-4159-be30-675dcab2debe; path=/; secure; HttpOnly
x-portal-routekey=weu; path=/; secure; HttpOnly
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-ua-compatible: IE=Edge
date: Thu, 03 Nov 2022 10:44:05 GMT
content-length: 6007
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/embeddedfonts.css
23.38.200.227200 OK 320 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/embeddedfonts.css
IP 23.38.200.227:0
File type ASCII text, with very long lines (2802), with no line terminators
Hash 5a3f1dea25d9d633d7c979a90cbc82fe
bc035d028973021dbf369b639453ba4f71c05a87
eeb58e7bfcdf27308c8911e6cc7efa9300fdc4a4b0298659ac046faafb949040
GET /admincenter/admin-pkg/2022.10.24.3/en/css/embeddedfonts.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 31 Oct 2022 17:53:02 GMT
x-ms-request-id: 41bf205e-a01e-0048-7254-ede2a0000000
content-encoding: gzip
content-length: 320
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/content/css/signup16.css
23.38.200.227200 OK 4.3 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/content/css/signup16.css
IP 23.38.200.227:0
File type Unicode text, UTF-8 text, with very long lines (21034), with no line terminators
Hash 6d7b75f8440d91312a1ff6c22f2b67fc
3d52e16961e0c8b13b85b43f47082714dd4ef67a
8dc9def0ec634f813acfab4db36a5a33f5fa4959260a143a596458ca16bcd2e0
GET /admincenter/admin-pkg/2022.10.24.3/en/content/css/signup16.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 31 Oct 2022 17:54:55 GMT
x-ms-request-id: 9e413bc7-301e-0028-0e09-ee9e3f000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 4297
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/jquery/jquery-1_10_2_min.js
23.38.200.227200 OK 33 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/jquery/jquery-1_10_2_min.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (65399)
Hash 117f25436c096247cf6441b01fd09140
02e5fd58e0d4fd6e4c3eec8a5decfb5dcf7a14b6
70c50d516099cd4bdda83b580ee6af550a8cb7761ec7c7cbf926a14a4ba704ed
GET /admincenter/admin-pkg/2022.10.24.3/en/js/jquery/jquery-1_10_2_min.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:52:51 GMT
x-ms-request-id: 41bf208d-a01e-0048-1c54-ede2a0000000
content-encoding: gzip
content-length: 33304
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/microsoftajaxcombined.js
23.38.200.227200 OK 56 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/microsoftajaxcombined.js
IP 23.38.200.227:0
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 91a46a9c92785ed247906f82d0c9df66
1c5f1440427f6dc8a42012c4f51417450aa328a9
ea042f7c95bdd0f10e426fc9e9987efbdab0690ee3859b36a6ceeed19a170eeb
GET /admincenter/admin-pkg/2022.10.24.3/en/jsc/microsoftajaxcombined.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:52:59 GMT
x-ms-request-id: 23a8cd2e-801e-003d-5054-ed898c000000
content-encoding: gzip
content-length: 56341
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/headbundle.js
23.38.200.227200 OK 17 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/headbundle.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7f6e45aae15e5c603748dce8605379eb
f38ce90adc4f795a272eee960e6f63b2f9036de0
a7f7129763c3f6b4ad56ab26856499871a0f1397f07592971122956694d22599
GET /admincenter/admin-pkg/2022.10.24.3/en/jsc/headbundle.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:38:27 GMT
x-ms-request-id: fa4ba264-901e-001e-5f4f-ed134f000000
content-encoding: gzip
content-length: 16830
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/controlbundle.js
23.38.200.227200 OK 21 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/controlbundle.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8b726a7a0faec3362c1153f296b57649
cba14afe5b57bbde5bcf3a18421d7c0b6bc8d80c
89ded19c1c4798fe0a1ddde1e2f82d84976fcf76fcee1d17dd088f41f4d2364f
GET /admincenter/admin-pkg/2022.10.24.3/en/jsc/controlbundle.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:38:28 GMT
x-ms-request-id: 30e654b7-201e-001b-264f-edc194000000
content-encoding: gzip
content-length: 20658
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/mscorlib.js
23.38.200.227200 OK 7.1 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/mscorlib.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (24942), with no line terminators
Hash 2b6367f94d76f0889f21a846d2d95d4c
dbb31e73dbe8d3cd773541cc474648a2c59d59d3
f89f4edab7dda87ae1957e31b636e286ccf622884e0ff4b6cfcdfc0d9594c09c
GET /admincenter/admin-pkg/2022.10.24.3/en/js/mscorlib.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:53:51 GMT
x-ms-request-id: 9e413c5c-301e-0028-1b09-ee9e3f000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 7064
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/listgrid.js
23.38.200.227200 OK 13 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/listgrid.js
IP 23.38.200.227:0
File type HTML document, ASCII text, with very long lines (61371), with no line terminators
Hash eddf0bfeeca147074cef31ac04836783
bb1fc79dc4ddb6a117bc4aa791cf2dd301e4bc09
d3e10f707b080b9dbce68551aee8c298acca8421e0ad08157fd8b5370dbef67e
GET /admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/listgrid.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:53:27 GMT
x-ms-request-id: fa5bf949-d01e-001f-4009-ee4c93000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 13209
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/peoplepicker.js
23.38.200.227200 OK 3.1 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/peoplepicker.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (11639), with no line terminators
Hash 3a6ead2e06cb13d684e4aaf8c74050d7
33a9baabb74929f31308c5de6734a92a4aaf12fd
d2bb834b5c12e2f755e8aa721eccde36e0df9529b0d033a681100951d2feb9bb
GET /admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/peoplepicker.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:53:52 GMT
x-ms-request-id: a1fd9115-e01e-003b-0d09-eeba33000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 3087
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/gridview.js
23.38.200.227200 OK 2.3 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/gridview.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (7808), with no line terminators
Hash 6853a2b4814f3cabf9037bcd3f2282b6
dafe915eeb4b62a6dc1180e279cbdc25ad926495
182d68e5c157d171431769dcf4ac68c11d7cf4c80cfb52910979c0cbc8f28208
GET /admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/gridview.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:53:54 GMT
x-ms-request-id: a1fd9181-e01e-003b-6a09-eeba33000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 2338
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/netperf.js
23.38.200.227200 OK 1.8 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/netperf.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (4787), with no line terminators
Hash 26487c2c21aa992c9668d0528403640d
73d6083b9eb620c0baa3e1bf2ff33afa90fa6672
311971e1bc8fa25a1aca780df6196394b7e5aee4391ed9bd96cd550903bf715f
GET /admincenter/admin-pkg/2022.10.24.3/en/js/netperf.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:55:02 GMT
x-ms-request-id: 1e8c5935-501e-0001-2a09-eea04b000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 1766
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/passwordstrengthmeter.js
23.38.200.227200 OK 1.0 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/passwordstrengthmeter.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (3041), with no line terminators
Hash 20c92386f9d76429c298b944f4ba3b6a
aef889d764017a43d666a23d7948e2c8fe834841
661bfc2e2a3c9a85f2bf417d4df229d931478f235c04b4a7e7aec8af09abfeb8
GET /admincenter/admin-pkg/2022.10.24.3/en/js/passwordstrengthmeter.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:53:54 GMT
x-ms-request-id: 583d0e43-701e-004b-1509-ee03c4000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 1027
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/hipcontrol.js
23.38.200.227200 OK 6.9 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/hipcontrol.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (38677), with no line terminators
Hash 17ed51af9c94151cd12b45535a882a50
f3c610c2eeed44b18cf8a9bca9a4e69f4ab06920
fc11b463f7acd3c461c2f769f73eb701b663834fe6462054761a8ed7a3fc5412
GET /admincenter/admin-pkg/2022.10.24.3/en/jsc/hipcontrol.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:38:39 GMT
x-ms-request-id: bf068379-a01e-0005-1e09-ee2d4c000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 6853
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/geminiwizard.js
23.38.200.227200 OK 2.2 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/geminiwizard.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (9028), with no line terminators
Hash ee9be75d598dcd9a530817d42c71679c
aa39089e4c5a3033e6ccdf7a19b757c49d647a49
24afe973894b6a5a8d64ec11178622ddbb3b950c9bcfffc5848059468af805f1
GET /admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/geminiwizard.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:53:53 GMT
x-ms-request-id: a1fd918d-e01e-003b-7309-eeba33000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 2158
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/angularextensions.js
23.38.200.227200 OK 247 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/angularextensions.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (7714)
Size 247 kB (247392 bytes)
Hash a8992c6417e8b050eea35cab0aabb9ef
4dbe059258bae400c9d75c6d6242e95892534ed6
6fd1a3a5000f92c2fff86bae4bfb234bad43ff330e3270e15ec1da6e531cb409
GET /admincenter/admin-pkg/2022.10.24.3/en/jsc/angularextensions.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:38:59 GMT
x-ms-request-id: fa4bbb20-901e-001e-274f-ed134f000000
content-encoding: gzip
content-length: 247392
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/adminapp.js
23.38.200.227200 OK 158 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/adminapp.js
IP 23.38.200.227:0
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Size 158 kB (158078 bytes)
Hash ce92e9b3dfb65ab41df04c8485040bcb
0fafeacf4dbdf5729d51de312b9750f494c57dd5
09ef9bcff5efb61112832466ad8663a74373522c5ae049887dfcc84a951ae0cb
GET /admincenter/admin-pkg/2022.10.24.3/en/jsc/adminapp.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:39:29 GMT
x-ms-request-id: 51e20c22-901e-0031-3c09-ee1e84000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 158078
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/Images/transparent.gif
23.38.200.227400 Bad Request 226 B URL HTTP/2 res.cdn.office.net/Images/transparent.gif
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash d2fab337a46e20b74366f40154163ea3
becb7124a45da85e568fe6b599cf64dd3c9b800e
35d04ca13ac283c77c01ae14fecca24fa18a6ea268ebf8ff7e6aeda7b3459c04
GET /Images/transparent.gif HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
content-length: 226
content-type: application/xml
x-ms-request-id: 6e0f94f6-401e-0040-7771-eff8af000000
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/webtrends.js
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/webtrends.js
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 4d9f2e5cba0d06de09d5679603079bd0
e64d63e5ccce50133b7cffe937d7147747ad144a
2743e0d977c0e5a50f9e993e6cc74f87f5ce0442ecbffb0252069d6f30332d60
GET /admincenter/admin-pkg/2022.10.24.3/en/js/webtrends.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
x-ms-request-id: 9a461fff-901e-003c-3371-efe306000000
date: Thu, 03 Nov 2022 10:44:06 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/images/webcontrols.png
23.38.200.227404 Not Found 223 B URL HTTP/2 res.cdn.office.net/images/webcontrols.png
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 1d56cf4996edf54d5811f1fa3bf62709
315bcb5bcdfec039a08cc49f40c10061c85eab63
1a2260504dc8559088f8d23db527e86238ede64c16f28c6f824cf9833450ce98
GET /images/webcontrols.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 223
content-type: application/xml
x-ms-request-id: 30608fbd-f01e-0015-6771-efdd72000000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/Shell/Images/header_bg_signup_office.jpg
23.38.200.227400 Bad Request 226 B URL HTTP/2 res.cdn.office.net/Shell/Images/header_bg_signup_office.jpg
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash dc533b419d57657e5d7f09ec8e660474
1ac6f2193f84154cf394a057b137dffba45861cb
c2930e41111c95589e09ad18d0a79c8bb9218f7ec6e63a24a16808d586bf29a4
GET /Shell/Images/header_bg_signup_office.jpg HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
content-length: 226
content-type: application/xml
x-ms-request-id: f6db1cdc-b01e-0054-4b71-efb0c0000000
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/Shell/Images/O365SharedClusteredImage.png
23.38.200.227400 Bad Request 226 B URL HTTP/2 res.cdn.office.net/Shell/Images/O365SharedClusteredImage.png
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash bd3cd4e201493e844c8a0307382d9382
8e78d94574a245b936ee2f1708dcc7fbcb03b906
1a53c7aa5f50f46f9dbb8e9cc887b06aeaf1be307aba708636925f6eb3b04687
GET /Shell/Images/O365SharedClusteredImage.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
content-length: 226
content-type: application/xml
x-ms-request-id: cdad07f4-b01e-0036-1c71-ef72e7000000
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/Shell/Images/pagelayout_white_panel.jpg
23.38.200.227400 Bad Request 226 B URL HTTP/2 res.cdn.office.net/Shell/Images/pagelayout_white_panel.jpg
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 7bcfd2a1a1f63b6bc8eb13c6203d0243
ff661cb665b1f433948c029c7827ad8da84ad43e
a074037c01f6377246925f572f289818e7f4df86784670b78e176dbf3ad16bc1
GET /Shell/Images/pagelayout_white_panel.jpg HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
content-length: 226
content-type: application/xml
x-ms-request-id: fa41630a-a01e-0058-5371-ef27c8000000
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/Shell/Images/pagelayout_nav_highlight.jpg
23.38.200.227400 Bad Request 226 B URL HTTP/2 res.cdn.office.net/Shell/Images/pagelayout_nav_highlight.jpg
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 11bacb60d48c8788c0b7a71c6a34b728
745ab750e747501e4b6ceb944f9a3bedacf709ba
b726c860e31d0e48fadd4465263d9438e591a4d79b71eb9f42542313b5b9887f
GET /Shell/Images/pagelayout_nav_highlight.jpg HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
content-length: 226
content-type: application/xml
x-ms-request-id: 70bc2c4f-801e-004f-1071-ef8ec3000000
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/Shell/Images/pagelayout_mos_background_left.jpg
23.38.200.227400 Bad Request 226 B URL HTTP/2 res.cdn.office.net/Shell/Images/pagelayout_mos_background_left.jpg
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 2ecae969e357712638a56765ecdea2b6
1b894e2c735c8d19496acf9c1b871d70c6d79dbe
a83c302735826eaa432669d0c56d245df6f9c4e7b3e2940c9748eba5ea38699d
GET /Shell/Images/pagelayout_mos_background_left.jpg HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
content-length: 226
content-type: application/xml
x-ms-request-id: cdad0823-b01e-0036-4471-ef72e7000000
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/Shell/Images/pagelayout_mos_background_right.jpg
23.38.200.227400 Bad Request 226 B URL HTTP/2 res.cdn.office.net/Shell/Images/pagelayout_mos_background_right.jpg
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash e7aa5beab2fc98bb75f73d163a4e7f42
0890b30547773f6c82bf1fe2faf9175612b54fe8
0980381560c14b20f925c3df1490c53b7f56c4c0719eb9cd653cdad2c52c6cd6
GET /Shell/Images/pagelayout_mos_background_right.jpg HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
content-length: 226
content-type: application/xml
x-ms-request-id: fe231b9c-f01e-0037-0171-ef2d3b000000
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/Shell/Images/header_wizard_hl_mos.jpg
23.38.200.227400 Bad Request 226 B URL HTTP/2 res.cdn.office.net/Shell/Images/header_wizard_hl_mos.jpg
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 2dcc337a31941e10ec0be4536d66e34f
1a286cff6439c605df0c7023fc1b4c7cac42238c
6fccbb27fb7ce1c4d22b7081755fd69c3102a5a27c36db5f96002a64ff54a2bb
GET /Shell/Images/header_wizard_hl_mos.jpg HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
content-length: 226
content-type: application/xml
x-ms-request-id: 4882b851-301e-0007-2971-ef93f4000000
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/Images/list_bullet_5x5.gif
23.38.200.227400 Bad Request 226 B URL HTTP/2 res.cdn.office.net/Images/list_bullet_5x5.gif
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash fcc1e75b9cb61b517aa493b4acfb6db0
60fb53f25630a42f53c9372742f50568dcbdfd81
f719186fbd58ab4359fa70ad4dac290630077e44637dabc4ad73076817485d06
GET /Images/list_bullet_5x5.gif HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
content-length: 226
content-type: application/xml
x-ms-request-id: ab5d618f-801e-003d-0d71-ef898c000000
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/images/spinner_16x16_metro.gif
23.38.200.227404 Not Found 223 B URL HTTP/2 res.cdn.office.net/images/spinner_16x16_metro.gif
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 05ffb12c57cf9fb6e55047d41026da31
594fd200261225f38941396156f0aab83bf64579
1a5cf92586a891cf4326756691a73ced148489d7b9f65925c51a696a24da0524
GET /images/spinner_16x16_metro.gif HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 223
content-type: application/xml
x-ms-request-id: f6308641-901e-0071-0671-ef2cea000000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/images/servicestatus.png
23.38.200.227404 Not Found 223 B URL HTTP/2 res.cdn.office.net/images/servicestatus.png
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 17390491bc17b38465867f615e120ff0
03fb025fb5db33f6a3324e55e3e19a786f56c03d
d6b6c2c2fffdafeb7b0774460683bc60d45295f2a1e35f7f868c3acadd1d61f6
GET /images/servicestatus.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 223
content-type: application/xml
x-ms-request-id: 176c3ef4-101e-001d-3371-efc77d000000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/conciergehelper.css
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/conciergehelper.css
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 39a37cb0136752e1a3d8ee7c583acecf
c8c1cc18a30ed62b35916a265e2213066923eac4
9854cca95736383acd111fd895ffc6a3239e160c03cca113b72cf1b16d606893
GET /admincenter/admin-pkg/2022.10.24.3/en/css/conciergehelper.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
content-type: application/xml
x-ms-request-id: ba206d53-201e-005b-6d71-eff3fa000000
date: Thu, 03 Nov 2022 10:44:06 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/home15.css
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/home15.css
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash f6d3f576c7c34da662539bc4a93b3ed5
d0e8876afb9f7d5ba133a5350e78b1c13654f028
a3e0446296881e001ea0a64ca7d24d7aeb57ff0cc1b5e8482cf56afccf0c5e71
GET /admincenter/admin-pkg/2022.10.24.3/en/css/home15.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
content-type: application/xml
x-ms-request-id: 0468a967-601e-0028-6671-efab69000000
date: Thu, 03 Nov 2022 10:44:06 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/commonhealthdashboard.css
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/commonhealthdashboard.css
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 9573a784c8f12ad46930c5ee7d0199ce
a2a9ad438d11933e3b6aac8d566af6775dd35561
ae22af544a97aab96b5e8761747caf35cb9b4d371b913e7e5f03e43848cf8ed1
GET /admincenter/admin-pkg/2022.10.24.3/en/css/commonhealthdashboard.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
content-type: application/xml
x-ms-request-id: b3f375d6-401e-0010-0a71-ef0fa9000000
date: Thu, 03 Nov 2022 10:44:06 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/home.css
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/home.css
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 38be4ae4c52d8f089c43d075f3991fb5
347bfdbdb1d0889ad4ec462ebca51608c16c00cd
4a46b84be18237a16cfa919555e320a706c2773acf294f3a80f934b6f524f7a6
GET /admincenter/admin-pkg/2022.10.24.3/en/css/home.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
content-type: application/xml
x-ms-request-id: 959b5528-d01e-0002-0e71-ef7479000000
date: Thu, 03 Nov 2022 10:44:06 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/masterstyles15.css
23.38.200.227200 OK 26 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/masterstyles15.css
IP 23.38.200.227:0
File type Unicode text, UTF-8 text, with very long lines (65272), with no line terminators
Hash 47f09d3cf7bddabb66e3f5997cdf6f17
fea8010059a5c2cfaef8feb7d2cd7492eb42654a
54ac76bc85a8c291f498a7d3e407a8878e4fffe16a0f36f14fb2b33642595ce7
GET /admincenter/admin-pkg/2022.10.24.3/en/css/masterstyles15.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 31 Oct 2022 17:53:09 GMT
x-ms-request-id: 31065d64-201e-001b-6a54-edc194000000
content-encoding: gzip
content-length: 25650
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670d0b2f341e8ff1e4ee9fe4fe21e210
dcd277daebf63623b985a81a96bcdc6a6f67c518
75029ab8db44811ac539aa3e2f1f8e015a45b80cb5a1099cec7d64e55e2a72a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5770
Cache-Control: max-age=169132
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 10:44:06 GMT
Etag: "63637698-1d7"
Expires: Sat, 05 Nov 2022 09:42:58 GMT
Last-Modified: Thu, 03 Nov 2022 08:06:48 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/o365themedefault.css
23.38.200.227200 OK 1.1 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/o365themedefault.css
IP 23.38.200.227:0
File type ASCII text, with very long lines (7600), with no line terminators
Hash 3bb9ec9208da595a2baa881e6886a407
12ea658a1b714581a721e6892eebdadb75272fb1
eec6124d9eae29eb51baadf82d2d553bc0eaf1bc4b9923ae9c17ffce37414b91
GET /admincenter/admin-pkg/2022.10.24.3/en/css/o365themedefault.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 31 Oct 2022 17:53:48 GMT
x-ms-request-id: 9e413bb3-301e-0028-7a09-ee9e3f000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 1067
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/masterstyles15mvc.css
23.38.200.227200 OK 3.2 kB URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/masterstyles15mvc.css
IP 23.38.200.227:0
File type ASCII text, with very long lines (15800), with no line terminators
Hash c0d47f3c6e18bde6f7574ba1c5344cdb
504148025f2f131cc7cbcd87db53032e04a0a67a
1bf632d32c8cb0c0e16611e416ddfb7b1b8b79b4907ad050e380f691dacea1a2
GET /admincenter/admin-pkg/2022.10.24.3/en/css/masterstyles15mvc.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 31 Oct 2022 17:53:10 GMT
x-ms-request-id: 23a8bc7f-801e-003d-4454-ed898c000000
content-encoding: gzip
content-length: 3243
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/assistancepanel.js
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/assistancepanel.js
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 97199bc19fc0f616e3e1de82c226e87b
819f3cf3591d19c8569540ef9aa9584064c03368
5eb2e79830e365c99e9f640192f4c24723b5300cbaca6a4a069f99a556f9460d
GET /admincenter/admin-pkg/2022.10.24.3/en/js/assistancepanel.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
x-ms-request-id: 2d8b6833-001e-004c-6471-ef5af1000000
date: Thu, 03 Nov 2022 10:44:06 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/assistancepanel.css
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/assistancepanel.css
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 59676c2d689d8b649d13554ff7cc8852
fa7bd415f465c82acd9dfb4bdbc9f0b0580e90cc
0bcfb912c14fc4a87b5e60233cededcbf687d7eb1e4fbc494fb9f24ce8700508
GET /admincenter/admin-pkg/2022.10.24.3/en/css/assistancepanel.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
content-type: application/xml
x-ms-request-id: 38b8a7be-201e-0006-6371-eff97e000000
date: Thu, 03 Nov 2022 10:44:06 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/images/spinner_24x24_metro.gif
23.38.200.227404 Not Found 223 B URL HTTP/2 res.cdn.office.net/images/spinner_24x24_metro.gif
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash f2b6dfab59b1d7a5890c06302278ba70
69b3db86afe76810c3556c618e26368cfc00b541
c3fc6104aa6ffec55730b4a9655fe7d65c88ff7f4de46015ff781145f96cdae9
GET /images/spinner_24x24_metro.gif HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 223
content-type: application/xml
x-ms-request-id: ba2018eb-201e-005b-1671-eff3fa000000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/searchbox.js
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/searchbox.js
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 8a36deb80fba293ee9e8887b4db3a1d0
a7ac313d8309f2e05eb4d8b69ee477c6fa7a2f6a
59edcfc883062aa180085e9b4d38f5f61798d427e6e451352fac3cff5caaf548
GET /admincenter/admin-pkg/2022.10.24.3/en/js/searchbox.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
x-ms-request-id: 9a4622df-901e-003c-4e71-efe306000000
date: Thu, 03 Nov 2022 10:44:06 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/shell/images/o365_gallatin_logo.png
23.38.200.227404 Not Found 223 B URL HTTP/2 res.cdn.office.net/shell/images/o365_gallatin_logo.png
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash fc155e26677d50fc2fb0b68837e6c612
67681a02a8b9bda59364e18698fd69295b140dc7
0fa304ef46ff42e1c6e5f2fbd82ec4468edc63e7e1f250ac2b9054949e605868
GET /shell/images/o365_gallatin_logo.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 223
content-type: application/xml
x-ms-request-id: 38b89ae2-201e-0006-3371-eff97e000000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/images/backgrounds/image1.jpg
23.38.200.227404 Not Found 223 B URL HTTP/2 res.cdn.office.net/images/backgrounds/image1.jpg
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash d2f50871dbf3f628d8813efa88d1f006
184e308a3f0039266566bae0c80a2c8cc0d8c61d
7d3f0c91b494cc643fb88aecf6718dc402a30e8838fbc554231abbdee0b0ccc8
GET /images/backgrounds/image1.jpg HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 223
content-type: application/xml
x-ms-request-id: c4ee4040-101e-0022-4a71-ef0fde000000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/images/scrollbar/arrow_staticup_16.png
23.38.200.227404 Not Found 223 B URL HTTP/2 res.cdn.office.net/images/scrollbar/arrow_staticup_16.png
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 1915b292748eb850a05c14f67f073c3a
5584d6770f1afd0d422129b3a73691dd7b75a4f5
3ec35195856c137e5f20b3dcc652ce76249201d7748e96dcb1fcab53746b5ca6
GET /images/scrollbar/arrow_staticup_16.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 223
content-type: application/xml
x-ms-request-id: 959af4d4-d01e-0002-6a71-ef7479000000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/shell/images/signup_ms_logo.png
23.38.200.227404 Not Found 223 B URL HTTP/2 res.cdn.office.net/shell/images/signup_ms_logo.png
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash cadaf0a1bd685208267ef5014cb6d29a
cb715412adfd88d1e9ad378d0849d31ad96e7ba7
fff2b2b8d0f7efe5b0b87058f02b2ce12a1198b1cea9de044a775b6bd9b7319c
GET /shell/images/signup_ms_logo.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 223
content-type: application/xml
x-ms-request-id: 04688999-601e-0028-7a71-efab69000000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/images/scrollbar/arrow_staticdown_16.png
23.38.200.227404 Not Found 223 B URL HTTP/2 res.cdn.office.net/images/scrollbar/arrow_staticdown_16.png
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 53aa1430fffc7cc2bc26db452886ed59
c108d40c656b3129db47b33be53d4b84dec3f2b4
003038e98bdb90f5410a49d53a550b4532d326c19ccb3cda1dcd265b74bc5819
GET /images/scrollbar/arrow_staticdown_16.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 223
content-type: application/xml
x-ms-request-id: 37e551ea-c01e-0021-8071-efeeba000000
date: Thu, 03 Nov 2022 10:44:06 GMT
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/reporting.js
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/reporting.js
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash a3f80d29afd9bbb8668f3a340f2906e3
58358f999aa736a30cc9726e7fca3b8c5bf128a9
009f916f8a41e5b6b1e58e5c819267a78d616c3cb3d55feb22bc3857083aaf43
GET /admincenter/admin-pkg/2022.10.24.3/en/js/reporting.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
x-ms-request-id: 2d8b68f1-001e-004c-1371-ef5af1000000
date: Thu, 03 Nov 2022 10:44:06 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/website.css
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/css/website.css
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 069d0bec4ef39248ef8a81100181c508
0c56aee4c14830898e3584f71426310b538f1dc6
5cbdad7aec55f06a52ccd4b4dcdb1cbaa7f607bc589dda4ff09aed7fdcf21dd3
GET /admincenter/admin-pkg/2022.10.24.3/en/css/website.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-length: 215
content-type: application/xml
x-ms-request-id: 64ce3d83-601e-0017-6771-ef63ca000000
date: Thu, 03 Nov 2022 10:44:06 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.80.175.197101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.80.175.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QNawSLjXrxrG/QEmq1fbcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 89ItEY31+V2w7Z1SY+nRVwbzNy0=
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/searchbox.js
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/searchbox.js
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 8a36deb80fba293ee9e8887b4db3a1d0
a7ac313d8309f2e05eb4d8b69ee477c6fa7a2f6a
59edcfc883062aa180085e9b4d38f5f61798d427e6e451352fac3cff5caaf548
GET /admincenter/admin-pkg/2022.10.24.3/en/js/searchbox.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
x-ms-request-id: 9a4622df-901e-003c-4e71-efe306000000
date: Thu, 03 Nov 2022 10:44:07 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/webtrends.js
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/webtrends.js
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 4d9f2e5cba0d06de09d5679603079bd0
e64d63e5ccce50133b7cffe937d7147747ad144a
2743e0d977c0e5a50f9e993e6cc74f87f5ce0442ecbffb0252069d6f30332d60
GET /admincenter/admin-pkg/2022.10.24.3/en/js/webtrends.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
x-ms-request-id: 9a461fff-901e-003c-3371-efe306000000
date: Thu, 03 Nov 2022 10:44:07 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/webtrendsstream.js
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/webtrendsstream.js
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash f63e61bdb70c16687ee85e9f22a07e48
bdcff4e6ade5f6827e9710c55daf69bd8a300647
708a9db7d730cc0ae8debc8b55b4b99e2f4a5013322f94efb289a1cc455d09bc
GET /admincenter/admin-pkg/2022.10.24.3/en/js/webtrendsstream.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
x-ms-request-id: 64ce3c76-601e-0017-6171-ef63ca000000
date: Thu, 03 Nov 2022 10:44:07 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/home.js
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/home.js
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 2c1bf024ac9a0ef48310716afd1941b9
ce080ed1886f75c3897c917fd2a5a08434deda02
83bda3dcca19f7706e6e33f0cd7fc2fb572804482aad39713a95e8ebda813b16
GET /admincenter/admin-pkg/2022.10.24.3/en/js/home.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
x-ms-request-id: 3060cfe9-f01e-0015-2071-efdd72000000
date: Thu, 03 Nov 2022 10:44:07 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/reporting.js
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/reporting.js
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash a3f80d29afd9bbb8668f3a340f2906e3
58358f999aa736a30cc9726e7fca3b8c5bf128a9
009f916f8a41e5b6b1e58e5c819267a78d616c3cb3d55feb22bc3857083aaf43
GET /admincenter/admin-pkg/2022.10.24.3/en/js/reporting.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
x-ms-request-id: 2d8b68f1-001e-004c-1371-ef5af1000000
date: Thu, 03 Nov 2022 10:44:07 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/assistancepanel.js
23.38.200.227404 Not Found 215 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/js/assistancepanel.js
IP 23.38.200.227:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 97199bc19fc0f616e3e1de82c226e87b
819f3cf3591d19c8569540ef9aa9584064c03368
5eb2e79830e365c99e9f640192f4c24723b5300cbaca6a4a069f99a556f9460d
GET /admincenter/admin-pkg/2022.10.24.3/en/js/assistancepanel.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-length: 215
x-ms-request-id: 2d8b6833-001e-004c-6471-ef5af1000000
date: Thu, 03 Nov 2022 10:44:07 GMT
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
outlook.office365.com/owa/prefetch.aspx
40.99.215.34200 OK 2.7 kB URL HTTP/1.1 outlook.office365.com/owa/prefetch.aspx
IP 40.99.215.34:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1188), with CRLF line terminators
Hash 479543b70a0207e8580847221955a1ef
19d66975f229649f70cff4d69a23e7f279c6b7f0
b6929855024a4e7b222bdbc3f194fee158b7b9516c9e37c14dbe971ecdd96234
GET /owa/prefetch.aspx HTTP/1.1
Host: outlook.office365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, no-store
Content-Length: 2745
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
request-id: 49f2148d-dd30-16fa-2f5d-28742a4ee79f
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Alt-Svc: h3=":443",h3-29=":443"
X-CalculatedFETarget: SV0P279CU002.internal.outlook.com
Set-Cookie: ClientId=77B4CF21362E46839AD4ED597CB92F6A; expires=Fri, 03-Nov-2023 10:44:07 GMT; path=/;SameSite=None; secure
ClientId=77B4CF21362E46839AD4ED597CB92F6A; expires=Fri, 03-Nov-2023 10:44:07 GMT; path=/;SameSite=None; secure
OIDC=1; expires=Wed, 03-May-2023 10:44:07 GMT; path=/;SameSite=None; secure; HttpOnly
OWAPF=v:15.20.5791.22&l:mouse; path=/
X-CalculatedBETarget: SV0P279MB0140.NORP279.PROD.OUTLOOK.COM
X-BackEndHttpStatus: 200, 200
X-RUM-Validated: 1
X-Content-Type-Options: nosniff
X-BeSku: WCS6
X-OWA-Version: 15.20.5791.22
X-OWA-DiagnosticsInfo: 1;0;0
X-IIDs: 0
X-BackEnd-Begin: 2022-11-03T10:44:07.353
X-BackEnd-End: 2022-11-03T10:44:07.353
X-DiagInfo: SV0P279MB0140
X-BEServer: SV0P279MB0140
X-UA-Compatible: IE=EmulateIE7
X-Proxy-RoutingCorrectness: 1
X-Proxy-BackendServerStatus: 200
X-FEProxyInfo: OS6P279CA0136.NORP279.PROD.OUTLOOK.COM
X-FEEFZInfo: OSL
Report-To: {"group":"NelOfficeUpload1","max_age":7200,"endpoints":[{"url":"https://exo.nel.measure.office.net/api/report?TenantId=&FrontEnd=Cafe&DestinationEndpoint=OSL"}],"include_subdomains":true}
NEL: {"report_to":"NelOfficeUpload1","max_age":7200,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
X-FirstHopCafeEFZ: OSL
X-FEServer: SV0P279CA0026, OS6P279CA0136
Date: Thu, 03 Nov 2022 10:44:06 GMT
r4.res.office365.com/owa/prem/15.20.5791.22/scripts/boot.worldwide.0.mouse.js
23.38.200.227200 OK 180 kB URL HTTP/2 r4.res.office365.com/owa/prem/15.20.5791.22/scripts/boot.worldwide.0.mouse.js
IP 23.38.200.227:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (59783), with CRLF line terminators
Size 180 kB (179692 bytes)
Hash 7107c752f3901d95bdc4e9d46ac2b6d8
747a0d933dc2ef38a98fa11a44ba661ec6a5eae3
c4a5ecaf090da5f8115afcf0d4b723810054ecf3de31acc5ea6d48f9eb2d4111
GET /owa/prem/15.20.5791.22/scripts/boot.worldwide.0.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Tue, 01 Nov 2022 15:32:20 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
content-length: 179692
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
res.cdn.office.net/officehub/bundles/polyfills-bundle-75b6696bb7ddfd607e0f.js
23.38.200.227200 OK 32 kB URL HTTP/2 res.cdn.office.net/officehub/bundles/polyfills-bundle-75b6696bb7ddfd607e0f.js
IP 23.38.200.227:0
File type Unicode text, UTF-8 text, with very long lines (45991), with NEL line terminators
Hash a3a08658147c7e725513899d95079e75
7bb596b1d1492f9633d9be61e0db6d022ecd08d5
af3bc7db33320e1014911b15966cc87fee393118fc1cb64a23856ce83a094de9
GET /officehub/bundles/polyfills-bundle-75b6696bb7ddfd607e0f.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 21:43:24 GMT
x-ms-request-id: 107f6d69-201e-000b-32e5-ee04fc000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
content-length: 31869
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/officehub/bundles/sharedscripts-ff1c847af5.js
23.38.200.227200 OK 15 kB URL HTTP/2 res.cdn.office.net/officehub/bundles/sharedscripts-ff1c847af5.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (31932)
Hash baebee0c801037a131b390b375053132
6ed1003971ba6960d94e52011645c01d3fa6f3f1
69ad7ef1a3afd114d09989f7403c4d276d32b6c05f886c0185ea417ab3fa6aab
GET /officehub/bundles/sharedscripts-ff1c847af5.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Oct 2022 21:36:19 GMT
x-ms-request-id: a6f41269-201e-000b-3602-e304fc000000
content-encoding: gzip
content-length: 15212
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/officehub/bundles/staticscripts-c968fd1c2d.js
23.38.200.227200 OK 5.5 kB URL HTTP/2 res.cdn.office.net/officehub/bundles/staticscripts-c968fd1c2d.js
IP 23.38.200.227:0
File type HTML document, ASCII text, with very long lines (18280), with no line terminators
Hash 86e10977127c130c1ab9e39d85b8f49b
d6bd5492c0acf898e64db0f7fd72ec535ab3b419
3e8b3c4e55d6ffa273591854c4c98e51c41264cb6f468c213fcb745b51a46d86
GET /officehub/bundles/staticscripts-c968fd1c2d.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 21:43:05 GMT
x-ms-request-id: 5cd413f1-101e-005d-02f4-edf513000000
content-encoding: gzip
content-length: 5481
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/officehub/bundles/app-bundle-ca936011b509545ec0d2.js
23.38.200.227200 OK 313 kB URL HTTP/2 res.cdn.office.net/officehub/bundles/app-bundle-ca936011b509545ec0d2.js
IP 23.38.200.227:0
File type ASCII text, with very long lines (65447)
Size 313 kB (312997 bytes)
Hash 9a28f6a5528339b37711e89e21a4f2e5
732c8b71f021ddb35785551fdea5ab73cfefaf35
c3717cc2b9a0b63fea9963f3e1df03c85cf1552c9e8098e1206b7035b8d46e44
GET /officehub/bundles/app-bundle-ca936011b509545ec0d2.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 21:43:16 GMT
x-ms-request-id: 81fd45bb-901e-0021-28f4-eddbec000000
content-encoding: gzip
content-length: 312997
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/officehub/bundles/app-bundle-1312b7b1ae2c12319260.css
23.38.200.227200 OK 15 kB URL HTTP/2 res.cdn.office.net/officehub/bundles/app-bundle-1312b7b1ae2c12319260.css
IP 23.38.200.227:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 15ee03dcace74dc21021286ebde41bf1
b453c6f7f8d6de3d0e3eaca9d23ffcb994411a7e
d8f44e67498cf460488af9baa3f3c59dd1f7af16b6074860cb5866ecbe0c0b86
GET /officehub/bundles/app-bundle-1312b7b1ae2c12319260.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 24 Oct 2022 22:36:25 GMT
x-ms-request-id: b738f9bb-f01e-0055-5589-e8ef1c000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
content-length: 14660
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/officehub/images/content/images/fluent-background-sources/header-default-desktop-652cc04392.svg
23.38.200.227200 OK 1.4 kB URL HTTP/2 res.cdn.office.net/officehub/images/content/images/fluent-background-sources/header-default-desktop-652cc04392.svg
IP 23.38.200.227:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4d5896ea8862983989124209813fd400
10ab0b0ed010e10f3b8a2eb42deb8fb8432cbc02
fa1f72faefbb17fc1d739f952d62f8a840f53f3d5a1ac6cb833ff3b7845cf7c2
GET /officehub/images/content/images/fluent-background-sources/header-default-desktop-652cc04392.svg HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 01 Sep 2021 01:22:50 GMT
x-ms-request-id: e2f3e53f-a01e-0048-5291-6ee2a0000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
content-length: 1403
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: image/svg+xml
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
r4.res.office365.com/owa/prem/15.20.5791.22/scripts/boot.worldwide.1.mouse.js
23.38.200.227200 OK 163 kB URL HTTP/2 r4.res.office365.com/owa/prem/15.20.5791.22/scripts/boot.worldwide.1.mouse.js
IP 23.38.200.227:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size 163 kB (163086 bytes)
Hash e8e90ea74afb3c2e067828c093fc86b1
cdc77987b351dc36f67d2d72d9bb59f17bfd49e0
411cbbad8d2c64f927321e1a825bf15860e2a7757688b4b445cdec041a1c497a
GET /owa/prem/15.20.5791.22/scripts/boot.worldwide.1.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Tue, 01 Nov 2022 15:32:21 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
content-length: 163086
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
portal.microsoftonline.com/pp.l?CID=6c18673d2e6e4c27a471bfa0012759c2&pageId=Prefetch.aspx&d={B:{S:%27L%27,LT:1354,UT:-1,MT:-1},A:{ET:-1,OT:12,DT:18,CT:140,RT:177,ST:180,MT:-1,LT:1565},C:{LT:1667472246893}}
52.109.88.54200 OK 813 B URL HTTP/2 portal.microsoftonline.com/pp.l?CID=6c18673d2e6e4c27a471bfa0012759c2&pageId=Prefetch.aspx&d={B:{S:%27L%27,LT:1354,UT:-1,MT:-1},A:{ET:-1,OT:12,DT:18,CT:140,RT:177,ST:180,MT:-1,LT:1565},C:{LT:1667472246893}}
IP 52.109.88.54:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash dbc2b30ecd3ce2a7a8965e5b0a569dff
c32d2ffdbf66b5582c8c184e0c0b436048292807
9397d5506d9bb44184a4bd44001382209441bd80d8c5fb4f3dffdb1f966b7995
GET /pp.l?CID=6c18673d2e6e4c27a471bfa0012759c2&pageId=Prefetch.aspx&d={B:{S:%27L%27,LT:1354,UT:-1,MT:-1},A:{ET:-1,OT:12,DT:18,CT:140,RT:177,ST:180,MT:-1,LT:1565},C:{LT:1667472246893}} HTTP/1.1
Host: portal.microsoftonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/Prefetch/Prefetch.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
pragma: no-cache
content-type: image/gif
expires: Thu, 03 Nov 2022 10:43:07 GMT
server: Microsoft-IIS/10.0
strict-transport-security: max-age=63072000
x-aspnet-version: 4.0.30319
set-cookie: s.SessID=87f56a8b-34e1-4512-8c91-05f7a34c2b42; path=/; secure; HttpOnly
s.SessID=87f56a8b-34e1-4512-8c91-05f7a34c2b42; path=/; secure; HttpOnly
x-portal-routekey=weu; path=/; secure; HttpOnly
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-ua-compatible: IE=Edge
date: Thu, 03 Nov 2022 10:44:07 GMT
content-length: 813
X-Firefox-Spdy: h2
r4.res.office365.com/owa/prem/15.20.5791.22/scripts/boot.worldwide.2.mouse.js
23.38.200.227200 OK 170 kB URL HTTP/2 r4.res.office365.com/owa/prem/15.20.5791.22/scripts/boot.worldwide.2.mouse.js
IP 23.38.200.227:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size 170 kB (169702 bytes)
Hash 1e37d6bba254c3ff7f57d369bfffb5ee
3815e368af2c284735837ee7facbbfc9a7627e59
d3b62817e50c0a8e046612ec81463e9613eda09be666c511992f556550195852
GET /owa/prem/15.20.5791.22/scripts/boot.worldwide.2.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Tue, 01 Nov 2022 15:32:22 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
content-length: 169702
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
r4.res.office365.com/owa/prem/15.20.5791.22/scripts/boot.worldwide.3.mouse.js
23.38.200.227200 OK 146 kB URL HTTP/2 r4.res.office365.com/owa/prem/15.20.5791.22/scripts/boot.worldwide.3.mouse.js
IP 23.38.200.227:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size 146 kB (145619 bytes)
Hash 860833c8349646af2c154295b933065d
8cf93d37ad244c2664fd01570fd7c03401d7c703
576c7e08575129af1184687395a4b3049c9e3278f3a8a08a3e2bbd18f9ff0d96
GET /owa/prem/15.20.5791.22/scripts/boot.worldwide.3.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Tue, 01 Nov 2022 15:32:22 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
content-length: 145619
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
r4.res.office365.com/owa/prem/15.20.5791.22/resources/images/0/sprite1.mouse.png
23.38.200.227200 OK 132 B URL HTTP/2 r4.res.office365.com/owa/prem/15.20.5791.22/resources/images/0/sprite1.mouse.png
IP 23.38.200.227:0
File type PNG image data, 600 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 3eda15637afeac6078f56c9dcc9bbdb8
97b900884183cb8cf99ba069eedc280c599c1b74
68c66d144855ba2bc8b8bee88bb266047367708c1e281a21b9d729b1fbd23429
GET /owa/prem/15.20.5791.22/resources/images/0/sprite1.mouse.png HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 132
content-type: image/png
last-modified: Tue, 01 Nov 2022 15:46:34 GMT
server: AkamaiNetStorage
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
r4.res.office365.com/owa/prem/15.20.5791.22/resources/images/0/sprite1.mouse.css
23.38.200.227200 OK 288 B URL HTTP/2 r4.res.office365.com/owa/prem/15.20.5791.22/resources/images/0/sprite1.mouse.css
IP 23.38.200.227:0
File type ASCII text, with very long lines (994), with no line terminators
Hash d5376db145bd802d6dc34b453e38db2d
a33794e22b790cefae0b1427244ddbf60aef74e6
4e5c1ba33900bd8b05d2bef342bdd037c240d27207ef878b2b87d252dfc30cfc
GET /owa/prem/15.20.5791.22/resources/images/0/sprite1.mouse.css HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/css
last-modified: Tue, 01 Nov 2022 15:46:37 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 288
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
r4.res.office365.com/owa/prem/15.20.5791.22/resources/styles/0/boot.worldwide.mouse.css
23.38.200.227200 OK 44 kB URL HTTP/2 r4.res.office365.com/owa/prem/15.20.5791.22/resources/styles/0/boot.worldwide.mouse.css
IP 23.38.200.227:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 820f40594a0e8d5f9d58546208aa9060
e17ed5116a34c432013a244c979ac9da53829d74
f8f708049e1e1609af3959cd21eaf313c8192d3e962887a7a2e1f9b353d3fc80
GET /owa/prem/15.20.5791.22/resources/styles/0/boot.worldwide.mouse.css HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/css
last-modified: Tue, 01 Nov 2022 15:47:12 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 44144
cache-control: public,max-age=630720000, s-maxage=630720000
date: Thu, 03 Nov 2022 10:44:07 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8082
Expires: Thu, 03 Nov 2022 12:58:50 GMT
Date: Thu, 03 Nov 2022 10:44:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8082
Expires: Thu, 03 Nov 2022 12:58:50 GMT
Date: Thu, 03 Nov 2022 10:44:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8082
Expires: Thu, 03 Nov 2022 12:58:50 GMT
Date: Thu, 03 Nov 2022 10:44:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8082
Expires: Thu, 03 Nov 2022 12:58:50 GMT
Date: Thu, 03 Nov 2022 10:44:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8082
Expires: Thu, 03 Nov 2022 12:58:50 GMT
Date: Thu, 03 Nov 2022 10:44:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F116416c7-b158-4c98-af55-3027f9bfbd6c.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F116416c7-b158-4c98-af55-3027f9bfbd6c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc615bd01e1ac97fec7bf47b18f0e999
ee2c892adba5d3e12ac8443065c38317752f3e4a
ca41974691496f2629f45cba9bb21b84e7dbb9cefbf7e8e3348c98b101002269
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F116416c7-b158-4c98-af55-3027f9bfbd6c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7044
x-amzn-requestid: 6ed2687f-f478-4206-a9b7-fc63428966bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a5sd1GcvIAMFYew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63608df1-79ada3087098484923a3b64d;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 03:09:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P4UrqlJZWYrmIAiDpmH9bVbInYj8XEMphiiYbi_5GygjACRrpJ54dg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 03:30:28 GMT
age: 26020
etag: "ee2c892adba5d3e12ac8443065c38317752f3e4a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43bb02a7-7c1b-4c5b-a0ac-cac7b02f85e9.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43bb02a7-7c1b-4c5b-a0ac-cac7b02f85e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f1fe4ade8899ee2e44002480821eecef
c7dbe629440450d6e79c622ca3adee742df111e3
8059fffd3fc9bc1a6376e8923d5652db966a117bad3ec67c5eb85d42b655cd42
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43bb02a7-7c1b-4c5b-a0ac-cac7b02f85e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6859
x-amzn-requestid: c3d33b2d-3e61-4c08-9f30-47c2041a408a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a5sfRFDwoAMF5mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63608dfb-01ca32b51d7652ff26e97ac6;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 03:09:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7477zeJVQGwaFpBu_K7Ri43l0F86R3K0me_MY-SC0EhYoL6h7WmDag==
via: 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 03:28:44 GMT
age: 26124
etag: "c7dbe629440450d6e79c622ca3adee742df111e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c1f0aa-9ef9-468e-9e11-7a02b7969f7f.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c1f0aa-9ef9-468e-9e11-7a02b7969f7f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f6a0b42162a59f85f6ddb149bbb09517
107817da1e00f629351ebbeb62caf795a6a8393b
0e6094306076439f0aaa893d8a4f4188a9ded69f4dca19b47d4762a19b5fc8fa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c1f0aa-9ef9-468e-9e11-7a02b7969f7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10411
x-amzn-requestid: d2e3df80-e308-4eb1-a1a5-85a0a3657dd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a-lvpGsIoAMFhqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63628330-74d69aa323713c9d01310cf0;Sampled=0
x-amzn-remapped-date: Wed, 02 Nov 2022 14:48:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pilXnOiVEgsD3xO7QRWL_SusEk8zpXuVyXq3AbVsUp2x9TC6y_8rRg==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 08:28:35 GMT
age: 8133
etag: "107817da1e00f629351ebbeb62caf795a6a8393b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3235a32d-fb0b-4624-8362-0b2d8fead111.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3235a32d-fb0b-4624-8362-0b2d8fead111.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 788a6ab1a5391958811453809e08ec74
c8188247edb78ee5f3c469a612b2430bbcd513b6
e961a4412a3f73ab7da9db2da06e72528a2abded50a442741687787933e98900
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3235a32d-fb0b-4624-8362-0b2d8fead111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10255
x-amzn-requestid: 5414f7ef-f510-4666-97f4-c8cb042f6877
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: atDhDEstIAMFlAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635b7fa0-76cd3cf7260dfe7c66ded970;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 07:07:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7V1UVCycRm1iW3P_Pm8zi-M9y4xwHdLwPe0rRIP7ASzvu8BfSJtnFw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 04:12:44 GMT
age: 23484
etag: "c8188247edb78ee5f3c469a612b2430bbcd513b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68776550-80bb-42be-9be2-eb62bcccccc1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68776550-80bb-42be-9be2-eb62bcccccc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3fe3ed0509ad6dbbf9e911a1154a3bc0
221b2d7a48090242bffda933cfa9f7ff3932d92a
415b3782419e0157a9a522f98bfc32dd133a374546ab1b57954e2cb37ec6554d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68776550-80bb-42be-9be2-eb62bcccccc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11437
x-amzn-requestid: 52f99e39-e3f4-450c-ac61-e613cb1e7a08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a_iCaHvYoAMFRmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6362e3a8-3b8d8f595238263410e90feb;Sampled=0
x-amzn-remapped-date: Wed, 02 Nov 2022 21:39:52 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QLBG44y9BzR83aEu7oqlxZHCVcd1K5qhBddrsujZoKS-Jbzc2Pm3eg==
via: 1.1 3c974a460e97e56c6eb1e6a30797d9d6.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 21:44:36 GMT
age: 46772
etag: "221b2d7a48090242bffda933cfa9f7ff3932d92a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fb3964a844616e8156299a91f6068d3b
dc8a6f2b451b87f4b8f4573daf9f3587d801e1ed
014216665e0feb6a3f64460d8dd50023d4621e10fd31180d6807c9eda8f57364
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7616
x-amzn-requestid: ede9fc0d-bac4-495c-8ecb-39cae7324858
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aznUqG2RIAMFn3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635e1f50-772b9c7e057f59c46cc7bd6f;Sampled=0
x-amzn-remapped-date: Sun, 30 Oct 2022 06:53:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: h9FWRKRLJCQT9M7qKj7c7wdASXyF4eaogCiAmea4i3UQlnOugk1qUw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 13:19:58 GMT
age: 77050
etag: "dc8a6f2b451b87f4b8f4573daf9f3587d801e1ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/adminbootstrap.js
23.38.200.227200 OK 0 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/adminbootstrap.js
IP 23.38.200.227:0
GET /admincenter/admin-pkg/2022.10.24.3/en/jsc/adminbootstrap.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:39:05 GMT
x-ms-request-id: 07e43894-201e-000b-4509-ee04fc000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 116805
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/productkeycontrol.js
23.38.200.227200 OK 0 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/productkeycontrol.js
IP 23.38.200.227:0
GET /admincenter/admin-pkg/2022.10.24.3/en/webcontrols/js/productkeycontrol.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:53:53 GMT
x-ms-request-id: bf0682ec-a01e-0005-2509-ee2d4c000000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
content-length: 2648
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/angularlib.js
23.38.200.227200 OK 0 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/jsc/angularlib.js
IP 23.38.200.227:0
GET /admincenter/admin-pkg/2022.10.24.3/en/jsc/angularlib.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 17:38:48 GMT
x-ms-request-id: fa4bb935-901e-001e-564f-ed134f000000
content-encoding: gzip
content-length: 57636
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/javascript
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/admin/css/admin.css
23.38.200.227200 OK 0 B URL HTTP/2 res.cdn.office.net/admincenter/admin-pkg/2022.10.24.3/en/admin/css/admin.css
IP 23.38.200.227:0
GET /admincenter/admin-pkg/2022.10.24.3/en/admin/css/admin.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 31 Oct 2022 17:39:35 GMT
x-ms-request-id: 2d082287-101e-004d-4f4f-ed307b000000
content-encoding: gzip
content-length: 196553
cache-control: max-age=630720000
date: Thu, 03 Nov 2022 10:44:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
access-control-expose-headers: date,Akamai-Request-BC
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-cdn-provider: Akamai
X-Firefox-Spdy: h2
www.office.com/prefetch/prefetch
13.107.6.156200 OK 0 B URL HTTP/2 www.office.com/prefetch/prefetch
IP 13.107.6.156:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /prefetch/prefetch HTTP/1.1
Host: www.office.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portal.microsoftonline.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-store,no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: OH.SID=e9ec3df7-6f77-4d92-b56f-2abacc1a4a95; path=/; secure; samesite=none; httponly
OH.DCAffinity=OH-weu; expires=Thu, 03 Nov 2022 18:44:07 GMT; path=/; secure; samesite=none; httponly
OH.FLID=1dcf8504-dab8-499f-bac4-f0b661487605; expires=Fri, 03 Nov 2023 10:44:07 GMT; path=/; secure; samesite=none; httponly
MUID=3D9791D448F6611B24B4838549F860B9; path=/; secure; expires=Tue, 28-Nov-2023 10:44:07 GMT; domain=office.com
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-ua-compatible: IE=edge,chrome=1
nel: { "report_to": "NelOfficeHubUpload1", "max_age": 3600, "include_subdomains":False, "failure_fraction":1, "success_fraction":0.01}
report-to: { "group": "NelOfficeHubUpload1", "max_age": 3600, "endpoints": [{ "url": "https://officehub.nel.measure.office.net/api/report?TenantId=unknown&DestinationEndpoint=weu&FrontEnd=AFD" }],"include_subdomains":False}
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 4720F053873A47F7803AC91938B2E366 Ref B: SVG20EDGE0312 Ref C: 2022-11-03T10:44:07Z
date: Thu, 03 Nov 2022 10:44:06 GMT
X-Firefox-Spdy: h2