Overview

URL lmomicronlixxumvum.antoniosofsimsbury.com/
IP193.106.191.175
ASNKanzas LLC
Location Russia
Report completed2022-09-27 01:01:41 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-27 2 lmomicronlixxumvum.antoniosofsimsbury.com/ Phishing
2022-09-27 2 lmomicronlixxumvum.antoniosofsimsbury.com/ Phishing
2022-09-27 2 lmomicronlixxumvum.antoniosofsimsbury.com/ Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (22)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS img-prod-cms-rt-microsoft-com.akamaized.net (1) 1197 2017-01-30 05:18:05 UTC 2022-09-26 22:55:48 UTC 23.36.76.186
mnemonic passive DNS www.office.com (2) 2755 2014-02-12 01:02:36 UTC 2022-09-26 22:00:41 UTC 13.107.6.156
mnemonic passive DNS web.vortex.data.microsoft.com (8) 1617 2015-09-17 01:54:42 UTC 2022-09-26 23:18:52 UTC 23.96.225.71
mnemonic passive DNS c1.microsoft.com (2) 5624 2012-05-21 17:28:04 UTC 2022-09-26 19:25:37 UTC 20.234.93.27
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-26 22:11:41 UTC 93.184.220.29
mnemonic passive DNS statics-marketingsites-neu-ms-com.akamaized.net (1) 27382 2017-04-12 23:05:40 UTC 2022-09-26 19:25:35 UTC 23.36.76.114
mnemonic passive DNS wcpstatic.microsoft.com (1) 5007 2020-09-15 17:02:29 UTC 2022-09-26 15:12:11 UTC 13.107.213.53
mnemonic passive DNS browser.events.data.microsoft.com (1) 290 2018-05-25 06:23:05 UTC 2022-09-26 12:53:59 UTC 13.89.178.26
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-26 04:35:11 UTC 23.36.77.32
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-26 12:15:18 UTC 34.120.237.76
mnemonic passive DNS www.microsoft.com (3) 302 2018-01-24 22:49:25 UTC 2022-09-26 04:27:01 UTC 23.38.201.156
mnemonic passive DNS res.cdn.office.net (783) 1292 2021-09-30 18:37:19 UTC 2022-09-26 15:12:11 UTC 152.199.21.175
mnemonic passive DNS c.bing.com (1) 247 2012-05-22 10:26:32 UTC 2022-09-26 04:29:10 UTC 13.107.21.200
mnemonic passive DNS js.monitor.azure.com (1) 3838 2020-04-24 19:32:44 UTC 2022-09-26 12:28:55 UTC 13.107.213.53
mnemonic passive DNS browser.pipe.aria.microsoft.com (1) 93 2017-01-30 04:57:33 UTC 2022-09-26 15:55:15 UTC 20.50.80.209
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-26 18:38:08 UTC 143.204.55.35
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-26 04:26:56 UTC 143.204.55.49
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-26 05:45:55 UTC 52.40.161.235
mnemonic passive DNS lmomicronlixxumvum.antoniosofsimsbury.com (3) 0 2022-09-14 10:31:07 UTC 2022-09-26 19:37:26 UTC 193.106.191.175 Unknown ranking
mnemonic passive DNS c.s-microsoft.com (2) 10166 2015-09-11 00:00:13 UTC 2022-09-26 22:55:49 UTC 23.38.201.156
mnemonic passive DNS mem.gfx.ms (3) 3475 2015-02-13 15:56:33 UTC 2022-09-26 22:55:48 UTC 13.107.213.53


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 193.106.191.175

Date UQ / IDS / BL URL IP
2022-11-25 05:36:32 +0000
0 - 0 - 1 msutton.sexyasiantubes.com/?=msutton@slurpmail.net 193.106.191.175
2022-11-24 12:57:14 +0000
0 - 0 - 1 msutton.sexyasiantubes.com/ 193.106.191.175
2022-11-22 21:50:46 +0000
0 - 0 - 1 elaine.eltan.thats-so-hip.com/ 193.106.191.175
2022-11-22 06:26:54 +0000
0 - 0 - 1 ecf0afe8-404a-4a96-8424-bc9f773f3285-f9cbc05d (...) 193.106.191.175
2022-11-22 04:55:31 +0000
0 - 0 - 1 aires.cassinela.thats-so-hip.com/ 193.106.191.175

Last 5 reports on ASN: Kanzas LLC

Date UQ / IDS / BL URL IP
2022-11-27 13:49:48 +0000
0 - 0 - 2 comm-updates.com/681647a719e45584566fe980061f (...) 193.106.191.135
2022-11-27 13:49:45 +0000
0 - 0 - 4 comm-update.com/0aab81de5c4c87021772015efc184 (...) 193.106.191.135
2022-11-27 11:27:33 +0000
0 - 0 - 3 lastimaners.ug/asdfg.exe 193.106.191.196
2022-11-27 11:26:20 +0000
0 - 0 - 2 193.106.191.25/microsoftkeys.exe 193.106.191.25
2022-11-27 11:14:50 +0000
0 - 0 - 2 nab-updates.com/fb93f4185aea5b548f0fe812e9067 (...) 193.106.191.135

Last 3 reports on domain: antoniosofsimsbury.com

Date UQ / IDS / BL URL IP
2022-09-27 01:01:41 +0000
0 - 0 - 3 lmomicronlixxumvum.antoniosofsimsbury.com/ 193.106.191.175
2022-09-23 08:56:58 +0000
0 - 0 - 3 lmomicronlixxumvum.antoniosofsimsbury.com/?us (...) 193.106.191.175
2022-09-22 02:44:11 +0000
0 - 0 - 4 lmomicronlixxumvum.antoniosofsimsbury.com/?us (...) 193.106.191.175

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-12 08:31:14 +0000
0 - 0 - 1 noslivresajusteprix.com/gprtv/vmonline/main/a (...) 172.67.132.124
2022-10-12 03:58:19 +0000
0 - 0 - 2 autodesk.orpheusentp.com/1/main/main.php 192.185.97.103
2022-10-12 00:25:31 +0000
0 - 0 - 1 federalsignal.authjbkiooygyggdiscover.xyz/ 45.87.43.24
2022-10-11 18:01:16 +0000
0 - 0 - 1 weneedyouukraine.top/main.php 93.157.63.250
2022-10-10 12:53:49 +0000
0 - 0 - 1 mtsn2mukomuko.sch.id/assets/css/2yc/rer/ 103.178.175.15


JavaScript

Executed Scripts (23)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (832)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2394
Expires: Tue, 27 Sep 2022 01:41:23 GMT
Date: Tue, 27 Sep 2022 01:01:29 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: lmomicronlixxumvum.antoniosofsimsbury.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         193.106.191.175
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx/1.21.6
Date: Tue, 27 Sep 2022 01:01:29 GMT
Content-Length: 169
Connection: keep-alive
Location: https://lmomicronlixxumvum.antoniosofsimsbury.com/


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   169
Md5:    ff3438f1699724c1ce3d071d2ca210c2
Sha1:   8784ddfff3a51e608dd34fce5942bc8c91af8b11
Sha256: 98d367d32108a25ed28048a4f17b2504e610249dd0bf2dcf368c7f922b300997

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 00:15:29 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: k780k3QVlMj44FtAAAgI3voRCzeLDGAfC_--bxt7rfw0xSV5MYL9lg==
Age: 2760


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8JwYrnWYVGmVXQF_WZR8y790Nj8ygbhBAH_INK56Z0jfBf-wmriWTA==
age: 73574
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 01:01:29 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E82B1B94DDD9B1A39B87F8230E34E7AA187C5600876F4AE7282DA57A59140A9"
Last-Modified: Sun, 25 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 27 Sep 2022 07:01:29 GMT
Date: Tue, 27 Sep 2022 01:01:29 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 00:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 00:54:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: thW_nYgXSEDiWDPeOAwc584sCd5V-x4CVFDa5wb8-qOcPdr4uuJFLw==
Age: 3044


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5585
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 01:01:30 GMT
Last-Modified: Mon, 26 Sep 2022 23:28:26 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v1/X4+TxQ7Ydht+IaYsIDg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.40.161.235
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: w08XTVRLVL6yS1JlSIXBINAnJPU=

                                        
                                            GET / HTTP/1.1 
Host: lmomicronlixxumvum.antoniosofsimsbury.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         193.106.191.175
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx/1.21.6
date: Tue, 27 Sep 2022 01:01:30 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (59138)
Size:   22824
Md5:    4b911cace02c6c75280f5036694f1d4b
Sha1:   a34c0f530132acd56ecd7334bf8d4b2add9bd104
Sha256: fd2f159885d1e2c6ec695f0d767a7be4a960259db6b5f8ef1d161cea93b041db

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /statics/override.css HTTP/1.1 
Host: statics-marketingsites-neu-ms-com.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Tue, 11 Jun 2019 23:22:13 GMT
ETag: 0x8D6EEC3A2D67C35
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7502d9a5-901e-0068-28c4-66545b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 473
Unused62: 8096267
Date: Tue, 27 Sep 2022 01:01:31 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (342), with CRLF line terminators
Size:   473
Md5:    a40589609d8e75c109e93abbff0dcf60
Sha1:   76ae9c943d54022e24b90467713a73a431eddd6d
Sha256: 2c959c2618be84448b26de18639db8a66126449c6ebb29f4f6d33e00adb5b069
                                        
                                            GET /onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/1a-bb39e7/ef-a24652?ver=2.0&_cf=02242021_3231 HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
last-modified: Tue, 23 Aug 2022 21:37:58 GMT
x-activity-id: e769626d-8e0e-4f3f-b04a-85779eb43935
ms-cv: 4MCHWe9odEitRWH1.0
x-appversion: 1.0.8263.42159
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-08-17T07:25:18.0000000Z}
ms-operation-id: 6a1b9303a6c94a409f3b36b55ea07de4
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2022-08-23T21:37:58
x-s2: 2022-08-23T21:37:58
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 22578
cache-control: public, max-age=28586160
expires: Wed, 23 Aug 2023 21:37:31 GMT
date: Tue, 27 Sep 2022 01:01:31 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (64241)
Size:   22578
Md5:    bb34fa956cd28133c85f395df38cd9d1
Sha1:   431626d79bb8538a90010651d1afae008bb0afd2
Sha256: 19ea0e7c6aee3590451b4dc1a1ed6b62e611cb478eb889aa7cdfe31968225ea5
                                        
                                            GET /onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/a0-23c4ba/a7-f7a340/48-6ed936/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/b0-07f293/1e-9d9d16/52-f0367f/1f-b57352/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/37-8473b9?ver=2.0&_cf=02242021_3231&iife=1 HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
last-modified: Tue, 23 Aug 2022 21:27:42 GMT
x-activity-id: ba1a6d7b-e993-45ae-a14b-260b61045c46
ms-cv: eHE/b/kYDkWjU+WL.0
x-appversion: 1.0.8263.42159
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-08-17T07:25:18.0000000Z}
ms-operation-id: 819762409931f041bf59e7a7daace4b8
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2022-08-23T21:27:42
x-s2: 2022-08-23T21:27:42
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 35578
cache-control: public, max-age=28585541
expires: Wed, 23 Aug 2023 21:27:12 GMT
date: Tue, 27 Sep 2022 01:01:31 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42133)
Size:   35578
Md5:    457c64e69f73a625fe291fae02c1b927
Sha1:   ab2aa2e7b4e37daaeb60f17698a5a886d501385e
Sha256: 094ea09c58e064dc91cfa128356e975744d1e546948c61ed9852e0fe3e158134
                                        
                                            GET /officehub/versionless/webfonts/segoeui_light.woff2 HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525928
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F6B0)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 1ee019c5-101e-001d-7344-cdc77d000000
content-length: 10544
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10544, version 1.0\012- data
Size:   10544
Md5:    8e160632c48ad1e3d0e9f4334636086b
Sha1:   7ba2921499b2264dee14f95801bfbcf416861d7c
Sha256: 57febfbad63b722a38bc668e67bc7c2dc02eca221f26db3a9303c1bd584a1a42
                                        
                                            GET /officehub/bundles/unauth-vendor-320f34a99e.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525923
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Wed, 21 Jul 2021 22:37:13 GMT
server: ECAcc (ska/F79B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 3a0131bd-f01e-003a-4044-cdd0b9000000
content-length: 30636
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31964)
Size:   30636
Md5:    f5a3702629ed05c8d175278f45a99632
Sha1:   20ad2a9349043930d645dd05a0e0e802d8f046e5
Sha256: c7cdfd5a22f1a4c1293796a71f43dd2b0759665c3998f1172670b0a655e5bb8b
                                        
                                            GET /mscc/lib/v2/wcp-consent.js HTTP/1.1 
Host: wcpstatic.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: max-age=43200
content-length: 81726
content-encoding: gzip
content-md5: X1JOIM5h9UISVFS6+GfEew==
last-modified: Wed, 24 Aug 2022 17:34:36 GMT
age: 6071
etag: 0x8DA85F6EA62BF74
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
x-cache: CONFIG_NOCACHE
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: d787f206-c01e-0033-6ffe-d16b64000000
x-ms-version: 2009-09-19
x-azure-ref: 0a0syYwAAAABWreYoWxS7T6xxmJh3I0vBQU1TMDRFREdFMTgxOAAzOWI0NjE1Ny1jYjllLTQ5YjctYTY1YS04NzIyYTNmODI0ZTQ=
date: Tue, 27 Sep 2022 01:01:31 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (63888), with no line terminators
Size:   81726
Md5:    e51f388b62281af5b4a9193cce419941
Sha1:   364f3d737462b7fd063107fe2c580fdb9781a45a
Sha256: 348404a68791474349e35bd7d1980abcbf06db85132286e45ad4f204d10b5f2c
                                        
                                            GET /officehub/bundles/sharedscripts-c77f7edec8.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525942
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Mon, 09 May 2022 22:16:27 GMT
server: ECAcc (ska/F795)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 1992dcbf-401e-005d-2844-cdc045000000
content-length: 13438
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31932)
Size:   13438
Md5:    8a604b6ea5639639ddc86c91d2233822
Sha1:   059eb5c8bdd7d2215dce97290b1962e83106f724
Sha256: 9ac5937a6d339a4c6125a819128d42129b89560375f6a7aa6936700edcf4c4e9
                                        
                                            GET /officehub/bundles/unauth-59fa1432f4.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 342085
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Thu, 26 Aug 2021 21:36:40 GMT
server: ECAcc (ska/F775)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 9a5495d2-c01e-000e-7ff0-cee371000000
content-length: 16443
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31967)
Size:   16443
Md5:    60fa9857eb425d2ecbdf01722f9b4c51
Sha1:   247f62f74fbdad9953582d89dc165bdbf1fb8434
Sha256: 6a350787638ca1530083fb3d2ba5102d221062e3fb2ca75a5a49c099ff71557a
                                        
                                            GET /officehub/bundles/otel-logger-803ab00c96be7f090df5.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 412707
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Thu, 01 Sep 2022 00:19:05 GMT
server: ECAcc (ska/F79B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 030d8cdf-e01e-0026-2b4b-ce82d9000000
content-length: 25949
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65446)
Size:   25949
Md5:    da4126de659104a6bae54e63e9b48aea
Sha1:   ac3efe50e61bee785fb42b16d1e567e64db72798
Sha256: d29e613a4508e8a1d4000b3f381d9eefcf167546531a7447bf4d0d753c8282d2
                                        
                                            GET /officehub/bundles/sharedfontstyles-27fa2598d8.css HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525942
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Mon, 11 Oct 2021 23:05:09 GMT
server: ECAcc (ska/F6A0)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: dd422cb1-401e-003f-3244-cd0262000000
content-length: 239
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1327), with no line terminators
Size:   239
Md5:    527f4eb2d79a6070d2defaff14956d5a
Sha1:   434625337517d2207d7819fc64ba7aa931ecd520
Sha256: 68c1e2283fa8db0fb592ad6eb9ef724ecd43702fb24e22362234b898ecba8da7
                                        
                                            GET /officehub/versionless/webfonts/segoeui_regular.woff2 HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525941
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F7B5)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 6da6417e-f01e-0067-7d44-cdda3d000000
content-length: 11100
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11100, version 1.0\012- data
Size:   11100
Md5:    906ba74c1f7a4fd42174e0f58fad3c95
Sha1:   3631818302580f0e0da3ed54e8488ce72b1d4b11
Sha256: bb232fd09a6696ce21ec10a43b89933e12ad866dfde30a4a6a08e08082e6557d
                                        
                                            GET /officehub/versionless/webfonts/segoeui_semilight.woff2 HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525928
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F7AD)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 39b51da3-801e-006d-1044-cd7e8a000000
content-length: 12164
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12164, version 1.0\012- data
Size:   12164
Md5:    36ac9a2365173b647657ad829ae64ff0
Sha1:   f8966e2ee4c9cfe92b5843d8c27bb7bed98bdfc9
Sha256: 633894cf845287f205f1b5bd26b7667dda186695fce3d789306f30c5fbdb14b5
                                        
                                            GET /officehub/versionless/webfonts/segoeui_semibold.woff2 HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525941
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F79E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 871ae4d9-a01e-006a-4644-cd12e9000000
content-length: 11356
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11356, version 1.0\012- data
Size:   11356
Md5:    dac73dc7b1eb35cd360da41648de072b
Sha1:   da1f6a5f46b72320a55b398f5f66d5e9aa6132f1
Sha256: 2cd3ef7b5b677b7827bfbe5b926a283e7ca687ddb6b021fa4289630671ebd061
                                        
                                            GET /officehub/bundles/unauth-8bc558595a.css HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 579470
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Mon, 22 Aug 2022 22:33:01 GMT
server: ECAcc (ska/F794)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 75b5b5d4-a01e-0037-57c7-cc186d000000
content-length: 64509
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   64509
Md5:    87ff80dfdd70d0e0fdbbb3a3b9db4e94
Sha1:   423e5771ccdfc1332ed10b38828d1c96e9665d73
Sha256: bd6098e3ede7c61f8eecbdb2b334abd19fa936f7675c70e288bebd9a30ce2009
                                        
                                            GET /cms/api/am/imageFileData/RE1Mu3b?ver=5c31 HTTP/1.1 
Host: img-prod-cms-rt-microsoft-com.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: image/png
                                        
access-control-allow-origin: *
content-location: https://image.prod.cms.rt.microsoft.com/cms/api/am/imageFileData/RE1Mu3b?ver=5c31
last-modified: Sat, 17 Sep 2022 20:22:04 GMT
x-source-length: 4054
x-datacenter: northeu
x-activityid: bbef4b2b-7038-48db-bee2-5c178f5fa7a2
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 4054
cache-control: public, max-age=415716
expires: Sat, 01 Oct 2022 20:30:07 GMT
date: Tue, 27 Sep 2022 01:01:31 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 216 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size:   4054
Md5:    9f14c20150a003d7ce4de57c298f0fba
Sha1:   daa53cf17cc45878a1b153f3c3bf47dc9669d78f
Sha256: 112fec798b78aa02e102a724b5cb1990c0f909bc1d8b7b1fa256eab41bbc0960
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-commercial-1-c12cd6bc84.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F6D6)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: b041bcae-301e-000a-5044-cd6e76000000
content-length: 288266
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 588, 8-bit/color RGBA, non-interlaced\012- data
Size:   288266
Md5:    c12cd6bc8402c20079eccd87115b50cc
Sha1:   5c8a6f635b00f83289039e8a027a4cb03cc47675
Sha256: a5fbdf8aafdbee42005a4dcaac5fa402a79aa8f153486a5ade74e92085504adf
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-edu-2-a65339870b.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F6B3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 1997cec4-401e-005d-6f44-cdc045000000
content-length: 81973
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 394, 8-bit/color RGBA, non-interlaced\012- data
Size:   81973
Md5:    a65339870bf74e66812e7eb4ae2e2ad0
Sha1:   1c69ab833c818b3b0bf97100121c7627a423a110
Sha256: 6d6f78635fdf119415ac27b93cbc42580bea55aa4a031c227a911e3bd2766075
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-edu-1-6f56908e42.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 508350
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F72E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: ed9972e3-701e-0079-6d6d-cd36e5000000
content-length: 229283
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 575, 8-bit/color RGBA, non-interlaced\012- data
Size:   229283
Md5:    6f56908e42f3398e4c68764a574b2c6a
Sha1:   dab99dff2b2401d7c3ae20d1bba5864e41908ecb
Sha256: faf8d5d4a007c272f143124965d15fae555c5f721182d09b626d70e09e6d299b
                                        
                                            GET /officehub/images/content/images/unauth-refresh/qr-code-2be9b68eed.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Wed, 23 Mar 2022 21:08:47 GMT
server: ECAcc (ska/F76E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 91bbacce-c01e-0053-4e44-cde9f5000000
content-length: 3974
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 161 x 160, 8-bit/color RGBA, non-interlaced\012- data
Size:   3974
Md5:    2be9b68eed69ae75fba5ed982d0ff25d
Sha1:   bd6e134c0d87c52ac751555269a59796d5eabc55
Sha256: 8281e85e9ff70034913a38d9eaa6af52ed98ab621300f0558e70a9bceff7246e
                                        
                                            GET /officehub/images/content/images/unauth-refresh/store-buttons-747d2c674f.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Thu, 31 Mar 2022 20:09:18 GMT
server: ECAcc (ska/F68B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 6da916de-f01e-0067-2444-cdda3d000000
content-length: 7115
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 286 x 41, 8-bit/color RGBA, non-interlaced\012- data
Size:   7115
Md5:    747d2c674f731edfd2779d83c8532e24
Sha1:   c40a635c160d4ca763d8c86f560cb937a8e1090b
Sha256: ca13c3e1ec9b3484f3e6af002f127c03de8e5171e76d37a5749a3cd75d098b05
                                        
                                            GET /officehub/images/content/images/unauth-refresh/mobile-app-4dc990c23b.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525683
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Thu, 31 Mar 2022 20:09:18 GMT
server: ECAcc (ska/F736)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: d7bfdf2d-201e-0006-2644-cdf97e000000
content-length: 25980
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 199 x 330, 8-bit/color RGBA, non-interlaced\012- data
Size:   25980
Md5:    4dc990c23b32e7d0778652ac5cf350be
Sha1:   8e33fe3b92bf60c3af9ca69e90493629c287b014
Sha256: 29b5c8aae191966fe88ec0a05553e11d3c55466128bd733b919e1f8aaaed18e4
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-consumer-4-920951c931.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F741)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: b57bfa88-101e-0022-6244-cd0fde000000
content-length: 154767
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 448, 8-bit/color RGBA, non-interlaced\012- data
Size:   154767
Md5:    920951c931c871936e67c7c41584821a
Sha1:   14b7b100edf71124766dfe275d718d3e942d700e
Sha256: f5527778f0292c5bb31c94fa867c3849f0fdb9038d70d17e0049bc07369b4d5d
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-consumer-1-2889dd4e93.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 374959
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F6CE)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 28516148-001e-005c-7fa3-ce9f99000000
content-length: 148686
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 465, 8-bit/color RGBA, non-interlaced\012- data
Size:   148686
Md5:    2889dd4e93eb0d623ebdca683cc580c0
Sha1:   26905637af861a3912fa3146c332c619c51911ed
Sha256: 6f3e98554f2260d834bcd6ab038ac6285945999a23d8071dcb2fc391cba080e1
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-edu-3-f237dbff1f.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F6C5)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 13b097f0-001e-002e-3744-cd98d6000000
content-length: 153748
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 535, 8-bit/color RGBA, non-interlaced\012- data
Size:   153748
Md5:    f237dbff1fa2d11d1b732696f88fb568
Sha1:   ccbb89ec75d9b76fa6f2bfcfe2103bc2ac34f33a
Sha256: 27e3a326be87a13cf13472fcb4bced5572d73d7cb34a0e9a7e03b6512eff4e6d
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-commercial-4-b66ce988de.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525668
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:34 GMT
server: ECAcc (ska/F760)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 85247656-e01e-0026-5444-cd82d9000000
content-length: 93489
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 394, 8-bit/color RGBA, non-interlaced\012- data
Size:   93489
Md5:    b66ce988dec4c543a4575f32fa67e926
Sha1:   1732243cddd2de044800621b380a6f6324ee937f
Sha256: 700d7ab8b2a25b9496257865f5d4dbcfbb9a7ef4112315e7dc4a6a58f9834ee9
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-commercial-3-f455600b67.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F777)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 3b51750b-801e-0030-2544-cd740e000000
content-length: 90429
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 439, 8-bit/color RGBA, non-interlaced\012- data
Size:   90429
Md5:    f455600b671bea74469cbd0de2c49abe
Sha1:   9facc63af8c238776bfc67d901ca5ef965fe12a0
Sha256: 9e0234933321be89717bad939d8d6608117ce7ad453a5f66db97f0f4e11a6252
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-commercial-2-f143e5c2d2.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:34 GMT
server: ECAcc (ska/F6CB)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 39b999a9-801e-006d-3144-cd7e8a000000
content-length: 124874
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 658 x 497, 8-bit/color RGBA, non-interlaced\012- data
Size:   124874
Md5:    f143e5c2d232cdcf3fa06da4473e0372
Sha1:   0dfe81fe5425e7ee37e35c1107114ea3df7febca
Sha256: 5f1bbca25424c86893414de6f44a39a9f28294679e975586a9633a90247d89fd
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-consumer-3-8d9f5d5cba.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525668
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:34 GMT
server: ECAcc (ska/F797)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: dcb83b18-d01e-0012-3b44-cdb111000000
content-length: 281677
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 442, 8-bit/color RGBA, non-interlaced\012- data
Size:   281677
Md5:    8d9f5d5cba3c50ebd3b2f94d685705e1
Sha1:   2261dfe2845c05b21aa21fadfd5b2e19efe7ee6f
Sha256: 5e4e6ddcf74cd9e1e8985666cdba1aeb786a7560d15feb89c1b608e0acb1fbbd
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-consumer-2-c4ec327b9e.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525668
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F6B2)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 512ff29b-b01e-0066-7244-cd85e1000000
content-length: 301050
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 658 x 467, 8-bit/color RGBA, non-interlaced\012- data
Size:   301050
Md5:    c4ec327b9e9d1fb0ce56254c891f03fe
Sha1:   eba0d651e385679fb08a2aa54d25f19ab4ee4448
Sha256: e0d79790de989c7ab117d4dba27e0964b9b7c9b496ee6f8df2476d3a98c55ea5
                                        
                                            GET /mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/font-woff
                                        
last-modified: Tue, 14 Jun 2022 13:23:15 GMT
x-activity-id: 433fff9c-ac1c-4827-bb3b-a2ca5fa6dd83
ms-cv: /0+3RKV7ykuNLoKI.0
x-appversion: 1.0.8167.41521
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-05-13T07:04:02.0000000Z}
ms-operation-id: 2f08fc2d143919438bfe914fdfecfc02
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-length: 26288
cache-control: public, max-age=22508511
expires: Wed, 14 Jun 2023 13:23:22 GMT
date: Tue, 27 Sep 2022 01:01:31 GMT
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 26288, version 0.0\012- data
Size:   26288
Md5:    d0263dc03be4c393a90bda733c57d6db
Sha1:   8a032b6deab53a33234c735133b48518f8643b92
Sha256: 22b4df5c33045b645cafa45b04685f4752e471a2e933bff5bf14324d87deee12
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-edu-4-b91aa86d96.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F7A5)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: d35e6f59-901e-005e-4244-cd2121000000
content-length: 204169
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 394, 8-bit/color RGBA, non-interlaced\012- data
Size:   204169
Md5:    b91aa86d96c46c4d61f2b244abaf89c2
Sha1:   1c725ea7a4ea7b4a958b4bc05b24f850479b11b2
Sha256: d14d8babd12bad6a5ea601e537d7fbef8642c86a0db3751ac93e7aff892dfa83
                                        
                                            GET /officehub/images/content/images/unauth-refresh/value-commercial-154eace07d.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Thu, 03 Feb 2022 22:29:08 GMT
server: ECAcc (ska/F7B3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: f0de1374-901e-0003-2444-cd2ba5000000
content-length: 262651
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1776 x 472, 8-bit/color RGBA, non-interlaced\012- data
Size:   262651
Md5:    154eace07d8cc6c997a2d64a6dcb3e0f
Sha1:   a4fbab3c56cbdc683f6863d53ca100b595385ee8
Sha256: 6e7a36dc69312208861fea7103f9d0db6032f9bdd929c41b55696e544d315552
                                        
                                            GET /officehub/images/content/images/unauth-refresh/value-edu-70021e6b37.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Thu, 03 Feb 2022 22:29:08 GMT
server: ECAcc (ska/F688)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 19204dcd-401e-0062-5644-cd08e6000000
content-length: 472176
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1776 x 472, 8-bit/color RGBA, non-interlaced\012- data
Size:   472176
Md5:    70021e6b3785a632935c71ac8d445b20
Sha1:   c1055f6147fdc78c7a95a87ca6ee98cb82d52103
Sha256: 26616d6ca935cb89e250812d01f759bdfd8b833925981c9c24be2dec3928287f
                                        
                                            GET /officehub/images/content/images/unauth-refresh/value-consumer-e73e46d493.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525668
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Thu, 03 Feb 2022 22:29:07 GMT
server: ECAcc (ska/F792)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: ba93a763-a01e-0037-2f44-cd186d000000
content-length: 670470
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1920 x 507, 8-bit/color RGBA, non-interlaced\012- data
Size:   670470
Md5:    e73e46d4935123e170587b9285528242
Sha1:   8ca446f65513228d8027cb26038b951615e013d0
Sha256: f3b0d16348c0284c2f1a40e2142268e4a039e6e66c45237e5f61024071d70059
                                        
                                            GET /officehub/images/content/images/unauth-refresh/more-apps-commercial-620d899e6a.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Mon, 14 Feb 2022 22:01:03 GMT
server: ECAcc (ska/F6B8)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 704165c1-d01e-0070-2344-cd7336000000
content-length: 737682
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1056 x 867, 8-bit/color RGBA, non-interlaced\012- data
Size:   737682
Md5:    620d899e6aaef5da299e7ac5237c2a7b
Sha1:   677be89898106026499ae63a543f051b4f9a8da2
Sha256: a47ffc5af116ccdcbdf40bc824310dcc08732712928ef1c1af07aa530d66e7b4
                                        
                                            GET /officehub/images/content/images/unauth-refresh/more-apps-edu-b1e5c7e0c9.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Mon, 14 Feb 2022 22:01:03 GMT
server: ECAcc (ska/F6C7)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 39b999bb-801e-006d-4144-cd7e8a000000
content-length: 759285
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1056 x 867, 8-bit/color RGBA, non-interlaced\012- data
Size:   759285
Md5:    b1e5c7e0c9aff86e324cb1704c560fad
Sha1:   5abc3016d14ad3c355763847ad5abd13de1dcf12
Sha256: df3103edb09b0c0b9b59508c6eadd84b458f175ce210adefea57f8d83c1d5c63
                                        
                                            GET /officehub/images/content/images/unauth-refresh/more-apps-consumer-861afc732e.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525644
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Mon, 14 Feb 2022 22:01:04 GMT
server: ECAcc (ska/F694)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 9ef2c315-b01e-003b-3944-cd8f65000000
content-length: 744598
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1056 x 867, 8-bit/color RGBA, non-interlaced\012- data
Size:   744598
Md5:    861afc732e5a6301b789e506b98b1249
Sha1:   4940f1d79468b0e2024fd1afefefc69b389dafe2
Sha256: 75ad1d9df3fc0e67c572d7ee41a2d13c8ee928c5348b0633715fe130b003e8b6
                                        
                                            GET /officehub/images/content/images/unauth-refresh/hero-desktop-a9ed1c74a0.jpg HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 520352
date: Tue, 27 Sep 2022 01:01:31 GMT
last-modified: Thu, 24 Feb 2022 22:27:20 GMT
server: ECAcc (ska/F77F)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 06595bae-001e-005c-4251-cd9f99000000
content-length: 610999
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size:   610999
Md5:    a9ed1c74a021494a48b8e524dbe1b2d1
Sha1:   4e2c1c046eb70bfc890855c2a3c4c48ee30b76e6
Sha256: 6757b53c0ed4fc376b2f53949c638352a821a19249885db615914ef364550c67
                                        
                                            GET /static/fonts/segoe-ui/west-european/normal/latest.woff2 HTTP/1.1 
Host: c.s-microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: font/woff2
                                        
content-length: 34052
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "588d483e9c7d51:0"
cache-control: public, max-age=532283
expires: Mon, 03 Oct 2022 04:52:54 GMT
date: Tue, 27 Sep 2022 01:01:31 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 34052, version 0.0\012- data
Size:   34052
Md5:    36397a3bc139c6e9f81d383f060f080a
Sha1:   3f4f86c10920d4ed345f4858b6cde9f93e1aeb81
Sha256: 4f7f4afe26e71fa9ca1dac4a43b557a554a46f53251d849f07ed08a04829d74b
                                        
                                            GET /static/fonts/segoe-ui/west-european/Semibold/latest.woff2 HTTP/1.1 
Host: c.s-microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: font/woff2
                                        
content-length: 29388
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "5b68d583e9c7d51:0"
cache-control: public, max-age=521594
expires: Mon, 03 Oct 2022 01:54:45 GMT
date: Tue, 27 Sep 2022 01:01:31 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 29388, version 0.0\012- data
Size:   29388
Md5:    6e75a94d5f7170a1ab532d32c2a35755
Sha1:   9c1b6fff544089941bbeddbcf529c3f0b46d853a
Sha256: d87d0a7a7fe2c36d1dc093bfe56e9b81b311988789dbd3b65abf811d551ef02f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4855
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Tue, 27 Sep 2022 01:01:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4855
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Tue, 27 Sep 2022 01:01:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4855
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Tue, 27 Sep 2022 01:01:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4855
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Tue, 27 Sep 2022 01:01:32 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: www.office.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: OH.DCAffinity=OH-weu; OH.FLID=1ae14a89-2f82-48f2-9040-effab5303faa; MUID=3ECE8AB922036AAB2FA89895232F6BC7; MSFPC=GUID=73fdbdf74a9640acb96dc405ca471691&HASH=73fd&LV=202209&V=4&LU=1664237639328
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.6.156
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: no-store,no-cache
pragma: no-cache
content-encoding: gzip
vary: Accept-Encoding
set-cookie: OH.SID=e3daf2b0-21ac-49e2-8186-863225e91169; path=/; secure; samesite=none; httponly CreateFreeAccountButton=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/ p.UnauthUserCookie=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/ OhpAuth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/ OhpToken=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/ UserIndex=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
nel: { "report_to": "NelOfficeHubUpload1", "max_age": 3600, "include_subdomains":False, "failure_fraction":1, "success_fraction":0.01}
report-to: { "group": "NelOfficeHubUpload1", "max_age": 3600, "endpoints": [{ "url": "https://officehub.nel.measure.office.net/api/report?TenantId=unknown&DestinationEndpoint=weu&FrontEnd=AFD" }],"include_subdomains":False}
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: BAEF3AC5251F4674A3BB180A00A24DF8 Ref B: SVG20EDGE0220 Ref C: 2022-09-27T01:01:31Z
date: Tue, 27 Sep 2022 01:01:30 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   36481
Md5:    901f565e718bf38723480a51901015bf
Sha1:   c15b4e3298f42d23b9ccc8e374a370a79983bca6
Sha256: b9cbad2e9e2586673eeb6eb5b29e0d6272f5018d04fac6be35b9325925bdd168
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3823d156-2245-40a3-a9a3-7cb4a5c4a14d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7716
x-amzn-requestid: 1cf0b1c7-4611-40bf-b72a-412ebd03ef79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2KguFL7IAMFzKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bf137-2b7c15d3071e0266586fd17d;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 05:23:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: eE2AvjvM7j07Go69VVEmTF8Q-KA5bZwOBdn_SgR5fcZj8lL760_q2Q==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 17:57:22 GMT
age: 25450
etag: "2b53c4f836970501a682dae07235215c487d35cc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7716
Md5:    8ef8d9284ebd57a7cf76ceb762291356
Sha1:   2b53c4f836970501a682dae07235215c487d35cc
Sha256: 3529ab97ab2214ee9c67ee234beac96cd40f0bd6092b92b71c60956ed5710b41
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10211
x-amzn-requestid: 3ea4ac84-2465-4bd1-8ade-863de3c9576e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSuGoQoAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145aa-7843b82728ead9a053c689d1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p1vYTqYjOmYHjVmJ8f6qyT_nLIsyXsr7ZI-DI7JBF9RJa0ZJNPiluA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:56:23 GMT
age: 11109
etag: "be60bbc96c832ae385cc9ae5828bd32703011b21"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10211
Md5:    347dca206e13a3b13953f0ab398310b4
Sha1:   be60bbc96c832ae385cc9ae5828bd32703011b21
Sha256: f6da888a54a0c6c73466f2c2a72dd875514a39d81b760a6b0116b4dd56ef31dd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kRSg9NTTAgeAJgIZ_C9_rRodCX4bzGduJEvNPNHUya0Moa2vsmWSoQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:38:57 GMT
age: 12155
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13213
Md5:    62e68c3cd08dd94d910507512a67e85f
Sha1:   3d4fa8701f17e8818c25584ef5f04bfbee8440cd
Sha256: 058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5538bec-989b-434a-bf80-699456665fd7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6829
x-amzn-requestid: cc3229a7-7c7e-472b-b7a4-1216594c4068
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yshb2FwhoAMF2EA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632815e5-0964e463192712fb08a29ee7;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 07:10:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 38UTZEh7vpUlYc9mGIdNrIy4fgLQf4iErqzZLY5mM5fdMQwvJvoBvQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:12:45 GMT
age: 10127
etag: "c80d9ce02eeaa7b0166a696e811d2cffde4997d0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6829
Md5:    62ece01d7e0036711832df5a25175b3b
Sha1:   c80d9ce02eeaa7b0166a696e811d2cffde4997d0
Sha256: 8a1968c18b44495571ff382a9cacfb7f98d3e1275d650e84cb310d635eae7e70
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fda34e4-86f9-4fb4-94af-575d6201fccb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5383
x-amzn-requestid: d7b677b7-25f9-4197-a664-ec68b0dfedfe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y8ydSEuLoAMF6PA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e9788-7b57acc9288de40d252766a5;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 05:37:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: iTzA2XJ0QFByhrYBer4ULW96ZdCeXhceaxWEAvznURvaZadKQniVRg==
via: 1.1 0da9bec11a1bde5ca7f71b28194afd5a.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 23:29:31 GMT
age: 5521
etag: "481ec2135ca0a96484c36cced30776c871aedf8f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5383
Md5:    e6c9691e104001fe54d3c6273b7b8596
Sha1:   481ec2135ca0a96484c36cced30776c871aedf8f
Sha256: f9e5e087d8b6e9b357c9f93b00c5919d89d90ac9b48d2dcd1ac72bf775a5cf49
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bs6HOUmHOoYKDuzBoVHhcr8d4HP4bBmwUF3EtOmwKXo7ozhfaIYEvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:07 GMT
age: 12145
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9163
Md5:    deb8d1e3b6d7fbc8c8ba478269621676
Sha1:   84f5a4c8b38acde814bc790e5b514347718d5bb9
Sha256: ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
                                        
                                            GET /collect/v1/t.js?ver=%272.1%27&name=%27Ms.Webi.PageView%27&time=%272022-09-27T01%3A01%3A29.806Z%27&os=%27Unix%27&appId=%27JS%3Awww.office.com-unauth%27&*baseType=%27Ms.Content.PageView%27&-ver=%271.0%27&-impressionGuid=%27e435c8af-dc6f-46f1-833a-e58b72c7ad73%27&-pageName=%27UnauthOhp%27&-uri=%27https%3A%2F%2Fwww.office.com%2F%27&-pageTags=%27%7B%22metaTags%22%3A%7B%22expengine%22%3A%22office.com%22%2C%22expstatus%22%3A%22prod%22%2C%22ver%22%3A%225%22%2C%22ms.lang%22%3A%22en%22%2C%22ms.loc%22%3A%22US%22%2C%22ms.ocpub.assetid%22%3A%22UnauthOhp%22%2C%22ms.env%22%3A%22prod%22%2C%22ms.sitever%22%3A%225%22%2C%22ms.flightid%22%3A%22wachostprodhwa%7Cthumbnailcall%7CP-R-1035877-4-5%7CP-R-1020934-8-25%7CP-R-1020323-2-3%7CP-R-1019936-2-4%7CP-R-1018575-12-18%7CP-R-1004015-2-18%7CP-R-1000295-2-20%7CP-R-108797-2-7%7CP-R-108833-2-6%7CP-R-108875-2-6%7CP-R-110074-16-13%7CP-R-106573-4-4%7CP-R-95756-2-11%7CP-R-93960-2-24%7CP-R-88009-6-9%7CP-D-116695-2-11%7CP-D-116687-1-5%7CP-D-109195-1-7%7CP-D-68024-1-140%22%7D%7D%27&-behavior=0&-resHeight=1024&-resWidth=1280&-market=%27en-US%27&*cookieEnabled=true&*flashInstalled=false&*cookies=%27MSFPC%3DGUID%3D73fdbdf74a9640acb96dc405ca471691%26HASH%3D73fd%26LV%3D202209%26V%3D4%26LU%3D1664237639328%3B%27&*isJs=true&*title=%27Office%20365%20Login%20%7C%20Microsoft%20Office%27&*isLoggedIn=false&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.1.0%27&ext-javascript-domain=%27www.office.com%27&ext-javascript-msfpc=%27GUID%3D73fdbdf74a9640acb96dc405ca471691%26HASH%3D73fd%26LV%3D202209%26V%3D4%26LU%3D1664237639328%27&ext-user-localId=%27t%3A3ECE8AB922036AAB2FA89895232F6BC7%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 45
Expires: 0
MS-CV: aXsQYRAQLkaTyGNID6QLYA.0
X-Content-Type-Options: nosniff
Set-Cookie: MS0=1f3f72bab1bb41b9b39df8ec87a3a021;Domain=.microsoft.com;Expires=Tue, 27 Sep 2022 01:31:32 GMT;Path=/;Secure;SameSite=None
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Tue, 27 Sep 2022 01:01:31 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   45
Md5:    8f1b010ba5222208e3f02a699354978f
Sha1:   3bef1aa2e973237131cbe51bff3e9e8d43e4fa68
Sha256: c9a4dd7b50eeb82a90457cb58ab085c427494828b3c8c8b5649c6c51b3c65175
                                        
                                            GET /collect/v1/t.gif?ver=%272.1%27&name=%27Ms.Webi.OutgoingRequest%27&time=%272022-09-27T01%3A01%3A29.977Z%27&appId=%27JS%3AMeControl%27&cV=%27O2KqtrKedMLBY21I.1%27&flags=2097152&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.2.3%27&ext-javascript-domain=%27www.office.com%27&ext-javascript-userConsent=false&ext-app-env=%27Prod%27&-operationName=%27meversion%27&-dependencyOperationName=%27LoadResource%27&-dependencyName=%27MeControl%27&-latencyMs=222&-succeeded=true&-targetUri=%27https%3A%2F%2Fmem.gfx.ms%2Fmeversion%3Fpartner%3D**%26market%3D**%26uhf%3D**%27&*baseType=%27Ms.Qos.OutgoingServiceRequest%27&*pageName=%27None%27&*impressionGuid=%274e7f989d-7a16-4413-c539-afdb321a5edb%27&*market=%27en-US%27&*customData=%27%7B%22computedDuration%22%3A645%2C%22perfDuration%22%3A222%2C%22metaTags%22%3A%7B%22pgpart%22%3A%22office%22%7D%2C%22config%22%3A%7B%22ver%22%3A%2210.22228.4%22%2C%22mkt%22%3A%22en-US%22%2C%22ptn%22%3A%22office%22%2C%22gfx%22%3A%22https%3A%2F%2Famcdn.msftauth.net%22%2C%22dbg%22%3Afalse%2C%22aad%22%3Atrue%2C%22int%22%3Afalse%2C%22pxy%22%3Atrue%2C%22msTxt%22%3Afalse%2C%22rwd%22%3Atrue%2C%22telEvs%22%3A%22PageAction%2C%20PageView%2C%20ContentUpdate%2C%20OutgoingRequest%2C%20ClientError%2C%20PartnerApiCall%2C%20TrackedScenario%22%2C%22instKey%22%3A%22b8ffe739c47a401190627519795ca4d2-044a8309-9d4b-430b-9d47-6e87775cbab6-6888%22%2C%22oneDSUrl%22%3A%22https%3A%2F%2Fjs.monitor.azure.com%2Fscripts%2Fc%2Fms.shared.analytics.mectrl-3.2.6.gbl.min.js%22%2C%22remAcc%22%3Atrue%2C%22main%22%3A%22meBoot%22%2C%22wrapperId%22%3A%22uhf%22%2C%22cdnRegex%22%3A%22%5E(%3F%3Ahttps%3F%3A%5C%5C%2F%5C%5C%2F)%3F(mem%5C%5C.gfx%5C%5C.ms(%3F!%5C%5C.)%7Ccontrols%5C%5C.account.microsoft%3F(%3F%3A-int%7C-dev)%3F(%5C%5C.com)%3F(%3A%5B0-9%5D%7B1%2C6%7D)%7Camcdn%5C%5C.ms(%3F%3Aft)%3Fauth%5C%5C.net(%3F!%5C%5C.))%22%2C%22timeoutMs%22%3A30000%2C%22graphv2%22%3Atrue%2C%22graphinfo%22%3A%7B%22graphclientid%22%3A%227eadcef8-456d-4611-9480-4fff72b8b9e2%22%2C%22graphscope%22%3A%22user.read%22%2C%22graphcodeurl%22%3A%22https%3A%2F%2Flogin.microsoftonline.com%2Fcommon%2Foauth2%2Fv2.0%2Fauthorize%22%2C%22graphredirecturi%22%3A%22https%3A%2F%2Famcdn.msftauth.net%2Fme%2Fcallgraph%22%2C%22graphphotourl%22%3A%22https%3A%2F%2Fgraph.microsoft.com%2Fv1.0%2Fme%2Fphotos%2F96x96%2F%24value%22%7D%2C%22aadUrl%22%3A%22https%3A%2F%2Fmyaccount.microsoft.com%22%2C%22msaUrl%22%3A%22https%3A%2F%2Faccount.microsoft.com%2F%22%2C%22authAppUpsellUrl%22%3A%22%22%2C%22cache%22%3Atrue%2C%22cacheRetention%22%3A%7B%22picRetention%22%3A604800000%2C%22authAppRetention%22%3A94670856000%7D%7D%2C%22url%22%3A%22https%3A%2F%2Fwww.office.com%2F%22%2C%22accts%22%3A%220-0%22%7D%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 43
Expires: 0
MS-CV: CdMhEye6i0qDyzH7fkZutA.0
X-Content-Type-Options: nosniff
Set-Cookie: MS0=dfcf5442d9744a3ebb16e98042203755;Domain=.microsoft.com;Expires=Tue, 27 Sep 2022 01:31:32 GMT;Path=/;Secure;SameSite=None
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Tue, 27 Sep 2022 01:01:31 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            POST /collect/v1 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 3095
Origin: https://www.office.com
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87; MS0=1f3f72bab1bb41b9b39df8ec87a3a021
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 57
Expires: 0
MS-CV: e7LETxh12EWWmtD9Yrngww.0
X-Content-Type-Options: nosniff
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Access-Control-Allow-Headers: Accept, Authorization, Content-Type, Origin, X-Xbl-Contract-Version, X-Xbl-Device-Type, Xbl-Authz-Actor-10, WithCredentials
Access-Control-Allow-Origin: https://www.office.com
Access-Control-Allow-Credentials: true
Date: Tue, 27 Sep 2022 01:01:31 GMT


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   57
Md5:    bb1bb0d9910eea16029c353a9428053f
Sha1:   f49e1213ea3f9ce8959609fac0f14ccd724f7135
Sha256: 8d316e9191d40a4b9cc775c0adce0a999873c1935781d1312a5b12ee717c53d4
                                        
                                            GET /collect/v1/t.gif?ver=%272.1%27&name=%27Ms.Webi.MeControl.TrackedScenario%27&time=%272022-09-27T01%3A01%3A30.441Z%27&appId=%27JS%3AMeControl%27&cV=%27O2KqtrKedMLBY21I.7%27&flags=2097152&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.2.3%27&ext-javascript-domain=%27www.office.com%27&ext-javascript-userConsent=false&ext-app-env=%27Prod%27&*partner=%27office%27&*controlVersion=%2710.22228.4%27&*market=%27en-US%27&*scenario=%27Interactive%27&*action=%27END%27&*previousAction=%27START%27&*success=true&*durationMs=462&*details=%27Web%20header%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87; MS0=1f3f72bab1bb41b9b39df8ec87a3a021
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 43
Expires: 0
MS-CV: OlhP2CIfNUeyysU1DpEFBg.0
X-Content-Type-Options: nosniff
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Tue, 27 Sep 2022 01:01:32 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            GET /scripts/me/MeControl/10.22228.4/en-US/meBoot.min.js HTTP/1.1 
Host: mem.gfx.ms
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
last-modified: Mon, 12 Sep 2022 17:22:52 GMT
etag: "1d8c706f61bd475"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref: 0bEsyYwAAAADXMAEHShN0Tp/bkWDJaEpTQU1TMDRFREdFMTkyMQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Tue, 27 Sep 2022 01:01:31 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   33477
Md5:    64b51d34a915cc3678e14fc213dce6c0
Sha1:   a9624addc2ff25e4945fe98fe025277282e8bf34
Sha256: e78b7543765fd698ebaec7807d1af4adec24c7d5a6ca30767ddbd7f8dadf113b
                                        
                                            GET /collect/v1/t.gif?ver=%272.1%27&name=%27Ms.Webi.MeControl.TrackedScenario%27&time=%272022-09-27T01%3A01%3A30.234Z%27&appId=%27JS%3AMeControl%27&cV=%27O2KqtrKedMLBY21I.6%27&flags=2097152&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.2.3%27&ext-javascript-domain=%27www.office.com%27&ext-javascript-userConsent=false&ext-app-env=%27Prod%27&*partner=%27office%27&*controlVersion=%2710.22228.4%27&*market=%27en-US%27&*scenario=%27Load%27&*action=%27END%27&*previousAction=%27START%27&*success=true&*durationMs=254&*details=%27loadV1%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 43
Expires: 0
MS-CV: qjsNeqoIDkyd8jVSS9lF9g.0
X-Content-Type-Options: nosniff
Set-Cookie: MS0=0f828b6d63dd4ac5a2050b84edb690d9;Domain=.microsoft.com;Expires=Tue, 27 Sep 2022 01:31:32 GMT;Path=/;Secure;SameSite=None
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Tue, 27 Sep 2022 01:01:32 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            GET /officehub/images/content/images/favicon-8f211ea639.ico HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/x-icon
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525934
date: Tue, 27 Sep 2022 01:01:32 GMT
last-modified: Wed, 21 Jul 2021 22:37:55 GMT
server: ECAcc (ska/F7A7)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: d36270bc-f01e-0015-2844-cddd72000000
content-length: 7886
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel\012- data
Size:   7886
Md5:    8f211ea639e8777abeb1ab7a8871580c
Sha1:   d6427ce52782d6b07118817e71a7e5192ca72f8c
Sha256: e588bde3eb80b349b069bcbb10520e49f9aa6f38001ce651f396269de3499549
                                        
                                            GET /sw?cdnDomain=res.cdn.office.net/officehub&workload=officehome HTTP/1.1 
Host: www.office.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: OH.DCAffinity=OH-weu; OH.FLID=1ae14a89-2f82-48f2-9040-effab5303faa; MUID=3ECE8AB922036AAB2FA89895232F6BC7; MSFPC=GUID=73fdbdf74a9640acb96dc405ca471691&HASH=73fd&LV=202209&V=4&LU=1664237639328; OH.SID=e3daf2b0-21ac-49e2-8186-863225e91169
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         13.107.6.156
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: no-store,no-cache
pragma: no-cache
content-length: 156759
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
nel: { "report_to": "NelOfficeHubUpload1", "max_age": 3600, "include_subdomains":False, "failure_fraction":1, "success_fraction":0.01}
report-to: { "group": "NelOfficeHubUpload1", "max_age": 3600, "endpoints": [{ "url": "https://officehub.nel.measure.office.net/api/report?TenantId=unknown&DestinationEndpoint=weu&FrontEnd=AFD" }],"include_subdomains":False}
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7340BAEED8DE4541B82FB6BF86B06255 Ref B: SVG20EDGE0220 Ref C: 2022-09-27T01:01:32Z
date: Tue, 27 Sep 2022 01:01:32 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   156759
Md5:    a2cc9f8086be7d49fe39f4bbf4440455
Sha1:   93c40d49305c1b60d24a26ce73a3a87b5ec4cf8c
Sha256: 657195b7c3aa6ef694303af604472a2ce0f6750f8639bfa7e252ec3d7d6ad0a5
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-sw.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 546909
date: Tue, 27 Sep 2022 01:01:32 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F732)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 3f0ea9da-401e-0000-0d13-cdcac1000000
content-length: 675
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1463), with CRLF line terminators
Size:   675
Md5:    d4ee4c43c5cbc970649d525b7b1071d5
Sha1:   dfbdb1c4fd5808c1e1d250281cd9303ddf2e1dd1
Sha256: d9ef4529189185a4680228b1b728571f74182bce8d344f5963af7c8fcdd894d9
                                        
                                            POST /collect/v1 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 3775
Origin: https://www.office.com
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87; MS0=0f828b6d63dd4ac5a2050b84edb690d9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 57
Expires: 0
MS-CV: /KssNcWRLkqNMo1SIUIj9A.0
X-Content-Type-Options: nosniff
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Access-Control-Allow-Headers: Accept, Authorization, Content-Type, Origin, X-Xbl-Contract-Version, X-Xbl-Device-Type, Xbl-Authz-Actor-10, WithCredentials
Access-Control-Allow-Origin: https://www.office.com
Access-Control-Allow-Credentials: true
Date: Tue, 27 Sep 2022 01:01:32 GMT


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   57
Md5:    bb1bb0d9910eea16029c353a9428053f
Sha1:   f49e1213ea3f9ce8959609fac0f14ccd724f7135
Sha256: 8d316e9191d40a4b9cc775c0adce0a999873c1935781d1312a5b12ee717c53d4
                                        
                                            GET /c.gif?DI=4050&did=1&t= HTTP/1.1 
Host: c1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87; MS0=0f828b6d63dd4ac5a2050b84edb690d9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         20.234.93.27
HTTP/2 302 Found
                                        
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?DI=4050&did=1&t=&CtsSyncId=6626AAF79AF5427AB3F771C7A8FB239D&RedC=c1.microsoft.com&MXFR=33A19D51AD1B69CB2B8F8F7DA91B6F87
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c1.microsoft.com; path=/; SameSite=None; Secure;
date: Tue, 27 Sep 2022 01:01:32 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-core.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 546912
date: Tue, 27 Sep 2022 01:01:32 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F743)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 4fb618d9-b01e-0066-2c13-cd85e1000000
content-length: 2587
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7422), with CRLF line terminators
Size:   2587
Md5:    28afdd91ed42b0f73c8c95573d815873
Sha1:   08a6f4f40fe4e31020672ea1b29cb0028c445fc0
Sha256: 08cde97093db5697f729e1800e7f839932b093df521adf39cdb27ffbe3a96bb6
                                        
                                            GET /scripts/me/MeControl/10.22228.4/en-US/meCore.min.js HTTP/1.1 
Host: mem.gfx.ms
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
last-modified: Mon, 12 Sep 2022 17:23:00 GMT
etag: "1d8c706fadc4407"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref: 0bEsyYwAAAACGulwtaOd9TaIp49HQTNoVQU1TMDRFREdFMTkyMQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Tue, 27 Sep 2022 01:01:31 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35361), with CRLF, LF line terminators
Size:   16340
Md5:    7542b691dae180b943c4335a6392b3ac
Sha1:   0671469adb27aa95f2fe3f6d691a9718c375e993
Sha256: ecac6ceb81609d619a3db9021b0228ccad6abe453db7e205887e3a1ee53d3c1d
                                        
                                            GET /c.gif?DI=4050&did=1&t=&CtsSyncId=6626AAF79AF5427AB3F771C7A8FB239D&RedC=c1.microsoft.com&MXFR=33A19D51AD1B69CB2B8F8F7DA91B6F87 HTTP/1.1 
Host: c.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87; SRM_B=33A19D51AD1B69CB2B8F8F7DA91B6F87; SRM_I=33A19D51AD1B69CB2B8F8F7DA91B6F87
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.21.200
HTTP/2 302 Found
                                        
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c1.microsoft.com/c.gif?DI=4050&did=1&t=&CtsSyncId=6626AAF79AF5427AB3F771C7A8FB239D&MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2F813852F2454CC487061D9351107451 Ref B: OSL30EDGE0506 Ref C: 2022-09-27T01:01:32Z
date: Tue, 27 Sep 2022 01:01:32 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST /collect/v1 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 3375
Origin: https://www.office.com
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87; MS0=0f828b6d63dd4ac5a2050b84edb690d9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 57
Expires: 0
MS-CV: 9EEFdxqpK0+Te9Ng9anpHQ.0
X-Content-Type-Options: nosniff
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Access-Control-Allow-Headers: Accept, Authorization, Content-Type, Origin, X-Xbl-Contract-Version, X-Xbl-Device-Type, Xbl-Authz-Actor-10, WithCredentials
Access-Control-Allow-Origin: https://www.office.com
Access-Control-Allow-Credentials: true
Date: Tue, 27 Sep 2022 01:01:32 GMT


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   57
Md5:    a97e1042c453127c32fbe0e51e49acc1
Sha1:   3ff2f2b7764174758c4efafd5d7644c84e671516
Sha256: 3a27830f17ab042ffde9701f02c4f7a059d4058a68369d5395ccba692a2a56b5
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-routing.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 546912
date: Tue, 27 Sep 2022 01:01:32 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F6F3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: fc45466e-c01e-0021-2513-cdeeba000000
content-length: 1149
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2815), with CRLF line terminators
Size:   1149
Md5:    fa37115f5e4098448f0da310392eb8e8
Sha1:   79549bc019939105b3284d10b107dfe5a48e16fe
Sha256: 66809c38562d164f0de6b1b690f4ee992ab69b2e27b4c80f5ea254c6e4498ce9
                                        
                                            GET /c.gif?DI=4050&did=1&t=&CtsSyncId=6626AAF79AF5427AB3F771C7A8FB239D&MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87 HTTP/1.1 
Host: c1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87; MS0=0f828b6d63dd4ac5a2050b84edb690d9; SM=T
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         20.234.93.27
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=C; domain=c1.microsoft.com; path=/; SameSite=None; Secure; ANONCHK=0; domain=c1.microsoft.com; expires=Tue, 27-Sep-2022 01:11:32 GMT; path=/; SameSite=None; Secure;
date: Tue, 27 Sep 2022 01:01:32 GMT
content-length: 42
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    32023bb33cfb2a1990a4ef2d85b6ac16
Sha1:   23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
Sha256: 99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-strategies.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 546913
date: Tue, 27 Sep 2022 01:01:32 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F694)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: c36c276c-d01e-002d-4713-cd79b2000000
content-length: 1098
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5035), with CRLF line terminators
Size:   1098
Md5:    168618bcb3f22fc86ed25a0ac3e8bfbe
Sha1:   9b8507ce6a3dc3ec15c898ce27b09428e77e6951
Sha256: ee7fdee09b690f1e811db4f2f5b7291a6bad8a60b73a78ab4d59129b80fed25f
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-cache-expiration.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 546912
date: Tue, 27 Sep 2022 01:01:32 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F6F4)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 973beffc-d01e-0070-5013-cd7336000000
content-length: 1251
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3819), with CRLF line terminators
Size:   1251
Md5:    b756216fa58823c24407410c791451d0
Sha1:   0da2e117ace57f0c6fccfcbd30a983d6b20e7c84
Sha256: fed47caf298be8f107dacc7e80b78366dd41dc7d68c073d930957b4fd0d3c650
                                        
                                            POST / HTTP/1.1 
Host: lmomicronlixxumvum.antoniosofsimsbury.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://lmomicronlixxumvum.antoniosofsimsbury.com
Content-Length: 2496
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         193.106.191.175
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx/1.21.6
date: Tue, 27 Sep 2022 01:01:30 GMT
vary: Accept-Encoding
set-cookie: __n66J="YzJjYjg4N2ItMWU2OC00YmVmLWJjYjEtMzFiMmVhNWMwMDRhOjdlM2E2MjQ0LWM0MjItNDgxOC1iNjFjLTQ2ZTJmZDNmODM0Yg=="; Domain=antoniosofsimsbury.com; expires=Tue, 27 Sep 2022 02:01:30 GMT; HttpOnly; Max-Age=3600; Path=/; SameSite=None; Secure
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   56
Md5:    243632bebdea0344c1507bd4bef11235
Sha1:   7d1a6c6c620b89370c8a71edad1ec0f112bfbabe
Sha256: 070ec69d0a27ebb2ef58b11fd77c6d7093cbfe2d156fbb68b47ece13a6510041

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-cacheable-response.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 525978
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F78D)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 21a9a90d-601e-0065-3344-cd6485000000
content-length: 301
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (525), with CRLF line terminators
Size:   301
Md5:    4dc57fb1f88168027a16a11bcf572956
Sha1:   2b220a4657242582b2a89f59cbfd11e9b76d9ba6
Sha256: f438fa669d4e18359f32184a0e315b6e007b4e6f2a616daeff4213ea08c5ca15
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-navigation-preload.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 271692
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F793)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: bf01c63c-901e-005e-2594-cf2121000000
content-length: 256
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (598), with CRLF line terminators
Size:   256
Md5:    9f7170ab4dfa3986de0a716633518f25
Sha1:   3d52ac2af7aa4c083be68ac58a9555ab553cc7fa
Sha256: f88c384687fbd63b6e99bd25a55cd8c8e555b226dc37f73b037e6eeecde42b34
                                        
                                            GET /officehub/bundles/otel-logger-803ab00c96be7f090df5.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 01 Sep 2022 00:19:05 GMT
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 304 Not Modified
                                        
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 412709
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 01 Sep 2022 00:19:05 GMT
server: ECAcc (ska/F79B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 030d8cdf-e01e-0026-2b4b-ce82d9000000
X-Firefox-Spdy: h2

                                        
                                            GET /officehub/bundles/0.afd425dea6438aec6238.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 586870
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 12 Sep 2022 23:12:38 GMT
server: ECAcc (ska/F7BA)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 682ac382-201e-0039-69b6-cc31dd000000
content-length: 6161
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18962)
Size:   6161
Md5:    6c5cb6835b1aa38f39482ba9a023ff57
Sha1:   29e8848af962c5b2f096ee2341023af5598f57f6
Sha256: 46673ebc8a70b4d4eefa69e188784b6e03447a2f656f415d508b38ddf7275a3e
                                        
                                            GET /officehub/bundles/1.275b76303e3335c22326.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 586871
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 12 Sep 2022 23:12:40 GMT
server: ECAcc (ska/F6E8)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 3882305e-201e-0006-4bb6-ccf97e000000
content-length: 6110
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23496)
Size:   6110
Md5:    ac52933dacfbbb1159946505a9979f40
Sha1:   85b4d000686abea53e1cd871b37d5785b49dd9ea
Sha256: ed1a058708b30c32e387c21331d8ba977de76867a189f1e46f5c49f314880b87
                                        
                                            GET /officehub/bundles/2.8d8acbeac631f33b4bf2.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 583185
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 19 Sep 2022 22:56:44 GMT
server: ECAcc (ska/F799)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: dca05319-d01e-0070-3cbe-cc7336000000
content-length: 5220
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18810)
Size:   5220
Md5:    56b0fd59d1870cae7421762bed63d685
Sha1:   d0e23d3be19d80bb47fbc932e5cb865d18ea699c
Sha256: aa13ab028c312b45e0cc21af07136529a59707b47a00a5cd986f2061a61cd47f
                                        
                                            GET /officehub/bundles/3.1f985b0d83086678e6b8.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 355613
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 22 Sep 2022 19:30:59 GMT
server: ECAcc (ska/F79B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 49b1c04f-c01e-0021-34d0-ceeeba000000
content-length: 7699
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7699
Md5:    f4fd9153ffd9b05347f84ddd1680a191
Sha1:   9888668331978133d1b999692e3261b8c5d4a3b3
Sha256: 0f8f7d63bef951ec507c7aef4dc1bf58e69c4c0399fa04ea5fa34ac0c1b79777
                                        
                                            GET /officehub/bundles/4.e1d174700fe0b997ef4f.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 586863
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 12 Sep 2022 23:12:34 GMT
server: ECAcc (ska/F7A3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: d3e97db3-101e-001d-4db6-ccc77d000000
content-length: 12175
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (40926)
Size:   12175
Md5:    98f5e635f22373173f7151ae04ab97cf
Sha1:   99b52d1b65e65e93977d5c50ce047a384fdf7d0c
Sha256: eb8ffd1c18a50c32b7adb830bde74ea75504e4196ef2303942f031cb0f75af85
                                        
                                            GET /officehub/bundles/officehome-async-styles.b65cd4029e9772e2fc4a.chunk.v6.css HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 586871
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 12 Sep 2022 23:12:55 GMT
server: ECAcc (ska/F6AD)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 565e7ade-301e-000a-4bb6-cc6e76000000
content-length: 8092
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47012), with no line terminators
Size:   8092
Md5:    8ba61f8294bf0c4eae116819fdbc481a
Sha1:   619f76c68b5b4f6dbfa76e5e9eb006c0971820ed
Sha256: b97d3b6c223e393161eb1b2535c0c73fa711255a7391dbf0da5d215adc4b0b27
                                        
                                            GET /officehub/bundles/officehome-async-styles.0fc8fb952c17d8d4a113.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 571757
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 08 Aug 2022 21:53:49 GMT
server: ECAcc (ska/F6AF)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: ba76dfb6-201e-0074-3fd9-ccfe31000000
content-length: 300
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884)
Size:   300
Md5:    0d95a9272a5a9052ae482f1e27228ffb
Sha1:   3aa8219ad44ac6e287c527cdfccde8a0238e2fd8
Sha256: 6cc035494c0cdd234ad1c56b9b1862433e47284b27c78036332cd01ec737ccad
                                        
                                            GET /officehub/bundles/6.e02362724ed6077d1c10.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 400226
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Wed, 07 Sep 2022 23:31:14 GMT
server: ECAcc (ska/F775)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 6f3bb916-f01e-003a-0968-ced0b9000000
content-length: 5384
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32887)
Size:   5384
Md5:    6b5c0bc4d672b903f57964a24bafd8a1
Sha1:   c31f96f2dbd9932bf4d590c5b925b9340c9b7726
Sha256: 664b8075f6b6a8e07a06e6c2af34e03586dfc281f7081f23e31ec62c7844821e
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~appbar~cc~cc-rc~cnt-actions-helper~coh~confirmation-di~efcc1153.2131cf27b9033f52ae47.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:26 GMT
server: ECAcc (ska/F779)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 01a17328-e01e-006b-775e-ce4d35000000
content-length: 4518
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13402)
Size:   4518
Md5:    f8d4f1b05051bf1fa57c0320ddc11378
Sha1:   09cd091db25740bae3e5ee6e8f339cd8d87abade
Sha256: ab924a79967048568dc158f22ec808729d7a18f4fc55e53e9d896c1265c38efc
                                        
                                            POST /collect/v1 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1923
Origin: https://www.office.com
Connection: keep-alive
Cookie: MC1=GUID=3f9636efcd8e4e769c822ec81695e7de&HASH=3f96&LV=202209&V=4&LU=1664237639610; MUID=33A19D51AD1B69CB2B8F8F7DA91B6F87; MS0=0f828b6d63dd4ac5a2050b84edb690d9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 57
Expires: 0
MS-CV: Eww3F/+ve0+LkkC0a181aw.0
X-Content-Type-Options: nosniff
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Access-Control-Allow-Headers: Accept, Authorization, Content-Type, Origin, X-Xbl-Contract-Version, X-Xbl-Device-Type, Xbl-Authz-Actor-10, WithCredentials
Access-Control-Allow-Origin: https://www.office.com
Access-Control-Allow-Credentials: true
Date: Tue, 27 Sep 2022 01:01:32 GMT


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   57
Md5:    bb1bb0d9910eea16029c353a9428053f
Sha1:   f49e1213ea3f9ce8959609fac0f14ccd724f7135
Sha256: 8d316e9191d40a4b9cc775c0adce0a999873c1935781d1312a5b12ee717c53d4
                                        
                                            GET /officehub/bundles/8.8f91cc953f39045ed5f1.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 355618
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 22 Sep 2022 19:31:04 GMT
server: ECAcc (ska/F78A)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 4f695e78-501e-0033-6bd0-ce956a000000
content-length: 4590
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16674)
Size:   4590
Md5:    ab59713c577d7f8bc645036889049a49
Sha1:   2bab84cfd544a3216aca25a799114d70dd4ea30c
Sha256: bd45247e6d569dc612d1127a373b0b0b9ccb3bc3415a7321591d3ace4a51f230
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-create~app-gallery-rc~app-host-component~appbar~cc~cc-rc~cnt-acti~186a9c27.57777fa645b60f124de6.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404563
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:03 GMT
server: ECAcc (ska/F6F1)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 019ce350-a01e-006a-745e-ce12e9000000
content-length: 6553
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19022)
Size:   6553
Md5:    9722a90f216fd4feced6a6a8bb9a56f8
Sha1:   649516c85e88830c332d8b971b410bfc5353226f
Sha256: 9353a7f6653c644ae601d2ccc7422b29bdfbba384761d9d216e1582b770c6d66
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~app-host-component~appbar~cc~cc-rc~cnt-actions-helper~~65286af5.cfcae7f9a15c445f9be3.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404562
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:07:52 GMT
server: ECAcc (ska/F692)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: ef1774b9-901e-005e-725e-ce2121000000
content-length: 3216
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43855)
Size:   3216
Md5:    c93d2f1d9b3010b38b796f55ca022033
Sha1:   40db020602622a69193be42b8fd10339cd411640
Sha256: d6fdabde3ee48d0b0c1a1d7f385280f287cdba068a44ded73d46ffc506cf08f1
                                        
                                            GET /officehub/bundles/11.5b378e35ee75ca044ad8.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 586862
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 12 Sep 2022 23:12:53 GMT
server: ECAcc (ska/F78A)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: c473fbf2-001e-0063-4bb6-cc573a000000
content-length: 3960
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11491)
Size:   3960
Md5:    c1e66e194a40a989734c3e2e5a0cbb0e
Sha1:   1737e740366a04fa8d723ff3746ac7ec943dd68d
Sha256: 0627ed66d2f92756cdc93b4b6ad9c5fdb6bc9f4831f4a4a68fe3d7358bb4c933
                                        
                                            GET /officehub/bundles/12.fe9d9d2afa479b9e71d5.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:31 GMT
server: ECAcc (ska/F794)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: a2f07ba6-c01e-0043-0f5e-ce2c9d000000
content-length: 6519
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24468)
Size:   6519
Md5:    be16db3777611a3972da88fa5b746ff9
Sha1:   885d18c1672bc0265d29d56b936a36e25e35ef7e
Sha256: ff953baf17c8027e34d7555b5dec5ffb9545453cc55830278341545f52123510
                                        
                                            GET /officehub/bundles/13.228ee061be8342b8d42a.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 586862
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 12 Sep 2022 23:12:52 GMT
server: ECAcc (ska/F79F)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 954834cc-401e-0000-4bb6-cccac1000000
content-length: 5559
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19665)
Size:   5559
Md5:    c797d7ae522891c896fa5782a27d4c4a
Sha1:   cc37db2c1b7f3c22ce1e4fd31f085359de71d61e
Sha256: 8e6171cee1d5e9475eb74a39efb4a070b614ffe75fa70e11cf8068e911c9ee7b
                                        
                                            GET /officehub/bundles/14.4c6e4266516bf5fb8f45.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 586856
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 12 Sep 2022 23:12:48 GMT
server: ECAcc (ska/F792)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 7222ec6b-a01e-0055-41b6-ccda4a000000
content-length: 1916
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12281)
Size:   1916
Md5:    86ba543abe1aca92d23a522e84d937ed
Sha1:   f3823554845124ce317c2599ba25c10b482943d6
Sha256: 29185f7613b6d98746d153db91ea199160e5e7c25d1d82a325e6bbfa083f4a65
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-create~app-gallery-rc~app-host-component~appbar~cc~cc-rc~cnt-acti~6781f6ca.e3ef00e95d40ca753dc3.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 583184
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 19 Sep 2022 22:56:44 GMT
server: ECAcc (ska/F798)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 7692007f-a01e-0045-70be-cc1f22000000
content-length: 1786
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5312)
Size:   1786
Md5:    4f32225277d2fe28326ddfb4c6247bc4
Sha1:   293e0825c4c292f0cc44c6e944df967aee47bfd3
Sha256: 24757e60977698f33e743c55751ff00fe89c1a2c856c6cba3f1471078bd3dd76
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~app-host-component~appbar~cc~cc-rc~cnt-actions-helper~~98acd925.be4c358f942de89e8f50.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404562
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:22 GMT
server: ECAcc (ska/F74D)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 89b456cd-a01e-0055-095e-ceda4a000000
content-length: 5891
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27905)
Size:   5891
Md5:    beadf8e6cfb0b2949a209c39b4391fc4
Sha1:   50d8a629e8f0afd4599374c956d2c18d27bfd8da
Sha256: fbfaf429b5e837b13634840969b167760614ab27287367c83594c08a70410f5a
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~app-host-component~appbar~cc~cc-rc~copd-rc~create-link~fbef36b4.dba0ea163e33d47b327f.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404562
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:12 GMT
server: ECAcc (ska/F744)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: b1d64dfe-801e-0042-285e-ce7341000000
content-length: 3025
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16430)
Size:   3025
Md5:    133b5077ecb4c5bde71187132a96a5d7
Sha1:   072443cc4e28908b83248117d687c6e45e730b35
Sha256: 6da76930695b23136f115f5e7c5cbbf6f1f51063a4aec6bcbb01ed513ce5e08e
                                        
                                            GET /officehub/bundles/18.441cbf4f1b9f201fdbc5.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:10 GMT
server: ECAcc (ska/F76B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 3a10c50e-301e-0035-765e-cea6d5000000
content-length: 15865
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   15865
Md5:    e104359bae9ee9876b9e39d8058edac2
Sha1:   62cb6d5810f733183d72cff8e806d044cdc1c414
Sha256: e2fe49830661d479b9850ad6a977cc465aac94f9104ebb2209a3c1968546ac80
                                        
                                            GET /officehub/bundles/19.3faafe2e5108be6b94e2.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404562
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:07:58 GMT
server: ECAcc (ska/F6CE)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 61f152bc-a01e-0045-205e-ce1f22000000
content-length: 2801
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12566)
Size:   2801
Md5:    f288fe25cc5bc0b42e480abd131dc3ce
Sha1:   e0b05876c42c45d8dd600856a1eae0ef1d4a5565
Sha256: cfb7aea11ff4982b47b3f2d183b0d7e370a690bfc4864733e7ef3b67320ba7cc
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-create~app-gallery-rc~app-host-component~appbar~cc~cc-rc~ew-os~ew~612b93da.d47de757547ec6c4b562.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 392871
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:01 GMT
server: ECAcc (ska/F691)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 3419bbfa-101e-001d-7379-cec77d000000
content-length: 18170
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65339)
Size:   18170
Md5:    972cf8eec71108809de1c3fcb81c9488
Sha1:   d01331e7b50ec274849c2c6a99b7936d4d6b803b
Sha256: ca209ec8755f4a2befd8e79c9d95c3be111be99cc2141cd36f4df75f8ffc8cf8
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-create~app-gallery-rc~appbar~cc~cc-rc~copd-rc~create-links-contro~280f1c94.fee46fd3097390a34b75.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:23 GMT
server: ECAcc (ska/F6EF)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 8b2928fb-d01e-002d-455e-ce79b2000000
content-length: 2068
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9882)
Size:   2068
Md5:    46622e07037d483089973630d7a6b0f1
Sha1:   e0bc2c8fbd316f85f6d780f5ebbcb847967c31a2
Sha256: 4eb8f0148c91123d15b4a80e4139a1696b3a32009657da42aeca5f79b49fbd03
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~app-host-component~appbar~cc~cc-rc~cnt-actions-helper~~63b4d417.062350d6e933dac2cd73.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:06 GMT
server: ECAcc (ska/F6A7)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 958cc0ab-201e-0074-075e-cefe31000000
content-length: 1641
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7092)
Size:   1641
Md5:    038d85960eb402d87e4ea84a9355437b
Sha1:   c7c89f95102097673e545b18732a800c77d4e5fb
Sha256: d53d7417e3b91d6b636410a9e7e9bddf05a95e970653d84ec40a027b5dc88e66
                                        
                                            GET /officehub/bundles/23.1bb036d8bbb5f35fe755.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 583184
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 19 Sep 2022 22:56:59 GMT
server: ECAcc (ska/F6F3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 423d9802-c01e-006c-49be-cc2156000000
content-length: 2884
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9164)
Size:   2884
Md5:    8d4f98a0fe1c76903bac8393898e9c32
Sha1:   b52884817ad8a8d4a906f1da3d4e04a9941e3e57
Sha256: c92c6f86933fe96139d68c7388e50c5e85135767f77e027dbd8e3f7c07c06a4b
                                        
                                            GET /officehub/bundles/24.a211f6a5d0b9ee5a8a42.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404562
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:06 GMT
server: ECAcc (ska/F6E5)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 19a3525e-c01e-000e-605e-cee371000000
content-length: 2165
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8685)
Size:   2165
Md5:    a0c4a58ba64d252e184c9e45318079d8
Sha1:   04cc4297bbd8194f26bb46b304851f8c625ac8e7
Sha256: 955317a3c6954ed7321dbdc3f07b70862c73b2d36ef72c93e30210774b237f66
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~app-host-component~appbar~cc~cc-rc~copd-rc~ew-os~ew-rc~69573d54.2bad1d5a200eeead9142.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:12 GMT
server: ECAcc (ska/F68B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 49cc32f9-901e-003c-475e-cee306000000
content-length: 1483
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5835)
Size:   1483
Md5:    7d448056d49f51647b8a5779297f781a
Sha1:   3a2931b90731abe9427ee356f0f898e79cb58b4a
Sha256: a027b89bffa01c1422a2f62a12d8e83a22d46bcd8b539677666b6af0d8c80c5b
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~appbar~cc~cc-rc~copd-rc~ew-os~ew-rc~mc~qa~rec1-os~rec1-rc~wb-rc.12546b46f0aa66702c44.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:20 GMT
server: ECAcc (ska/F695)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 89b46267-a01e-0055-4c5e-ceda4a000000
content-length: 1135
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4016)
Size:   1135
Md5:    21f3404619a65b19404b02829c6df34b
Sha1:   53c65c70198b1dcfa3af7334daef30683130d244
Sha256: dc62551295f876e2813266423be4ab22fa1f7f62d747f7375936fa332cc5d14b
                                        
                                            GET /officehub/bundles/27.7eb01f774bbc1b4f695d.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 583184
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 19 Sep 2022 22:57:01 GMT
server: ECAcc (ska/F6D1)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: b17e422a-901e-0003-4dbe-cc2ba5000000
content-length: 6136
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24696)
Size:   6136
Md5:    f5efaaa635aa5baefbed93b8900f5b16
Sha1:   d1936be19625d1b0b38a6cc55a86d738795227bb
Sha256: da7f3db382152a10f594d41651c5fc103426bc5a6cea488a89f09bd6350605e5
                                        
                                            GET /officehub/bundles/28.cc604ecd101d5d2f6984.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 583183
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 19 Sep 2022 22:56:59 GMT
server: ECAcc (ska/F69A)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 891834f4-101e-0050-5abe-cc0891000000
content-length: 856
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3098)
Size:   856
Md5:    a5aaf57bd9a3a8ef7bbacdef653e1040
Sha1:   d2b0fdf90d5c58771d4428f916698843baec3585
Sha256: fad24717dd65a8fcb87173580eb241a4c9656e8b256158792dbed739aa1c84bb
                                        
                                            GET /officehub/bundles/30.2ff2e9f42ee509e31712.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 583183
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 19 Sep 2022 22:56:52 GMT
server: ECAcc (ska/F779)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: a59ff00c-801e-0042-4ebe-cc7341000000
content-length: 1871
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10000)
Size:   1871
Md5:    6ac667b7628796838cf1db8c0ea92f8c
Sha1:   0fbeeb276218567c7b43135466f0ccd6c5c62884
Sha256: 6f356c61719448a16b3ce4537553558b93adbb6eba1aff108518bcadc7367193
                                        
                                            GET /officehub/bundles/29.782d9806fff236e60c6a.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 583183
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 19 Sep 2022 22:56:49 GMT
server: ECAcc (ska/F76A)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 0ca1c291-901e-005e-0dbe-cc2121000000
content-length: 1639
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9396)
Size:   1639
Md5:    c310c4adef6bbf33e4a43ce2386db249
Sha1:   1f3d425d16807ace77f9ce0920841ff56f1e1bd3
Sha256: df42790b08047ddcf5c073e9349a283295e2172ef86edc7fdbd302ffd06e97de
                                        
                                            GET /officehub/bundles/vendors~app-create~app-gallery-rc~app-host-component~appbar~cc-rc~ew-os~m365-apps-component~rec1-os~~ca57dd99.5316d4b3238fc644590c.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 355621
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 22 Sep 2022 19:30:57 GMT
server: ECAcc (ska/F79F)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 80b4547f-401e-0000-2bd0-cecac1000000
content-length: 4802
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22361)
Size:   4802
Md5:    d0c461c6e4ac97f27ef93d430ddedfb8
Sha1:   f384d6e2fffe432fb446da982612c3fbcbc53cba
Sha256: e6e5b9455e6f5e5f1c6b5b15a9468df5f10d1600d04b9381372c049e1284f093
                                        
                                            GET /officehub/bundles/calendar~forms-group~mru~officeforms-group-forms~officeforms-my-forms~places.6049ee4a108ea9b910de.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:07:53 GMT
server: ECAcc (ska/F774)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 09215325-301e-0047-115e-cea19a000000
content-length: 8312
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (46659)
Size:   8312
Md5:    3d6c33f8d1f17a146fe5e29da30fffd9
Sha1:   4ee0a51b454f32b11f302d05b2c4209034af4897
Sha256: 6bda86935b052b64f269c2f42c2bf06cfc5b8eca4bcc1217c9965209618caf85
                                        
                                            GET /officehub/bundles/33.1a0174faac9a67e05d8d.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:07:59 GMT
server: ECAcc (ska/F772)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 14af313c-501e-0023-035e-ce5002000000
content-length: 7405
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27372)
Size:   7405
Md5:    fcef4f9ba0cce97942514d4c029478d0
Sha1:   4862e89cba03ba4ae4c9d3320effe300a3154bf7
Sha256: 1f91d0f04471d9aed92e085555aab44f20b38b3e33cdd2ae86658ca8deaa9295
                                        
                                            GET /officehub/bundles/32.b604499ebf70bc06809e.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:08 GMT
server: ECAcc (ska/F6B7)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 0ae1a45c-501e-0033-1e5e-ce956a000000
content-length: 22649
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65446)
Size:   22649
Md5:    b8dedc13490ed5bd7f910c72add4c736
Sha1:   1b92f1e1132da018c58fa71741f60d64a4271bb5
Sha256: 3c6ca2b1ac91e1ace693d4c8a4efa89303e797585bfecafd389615d66f075c92
                                        
                                            GET /officehub/bundles/34.3fae167c775806c075e3.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 583182
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 19 Sep 2022 22:56:57 GMT
server: ECAcc (ska/F6C1)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 4958f235-701e-0079-48be-cc36e5000000
content-length: 5790
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20980)
Size:   5790
Md5:    f15438e2db9087e4174c0216fbca9168
Sha1:   20345855280a1194ddd9acf802b31c2db603d395
Sha256: 124a1303b5c5cebb4cafe0b0c22cf68d44433e1fc269174bbd7690d87f5ba361
                                        
                                            GET /officehub/bundles/35.875693b9e65d0cead61f.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:34 GMT
server: ECAcc (ska/F75E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 873c8bdc-001e-0073-035e-ce9252000000
content-length: 9892
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (36544)
Size:   9892
Md5:    9672f7befe1097a11be12c3ba4d47906
Sha1:   92924da5e9e638e7401dac3dc6dda907345c21f0
Sha256: d6b66c4321db868ec4afe47715acdf85d820370d99fa35b724756c1888a7aca9
                                        
                                            GET /officehub/bundles/36.ad9ff092e9cff1e29bfe.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:23 GMT
server: ECAcc (ska/F7A3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 72394d02-e01e-0019-635e-ce4a7a000000
content-length: 2885
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10347)
Size:   2885
Md5:    a712c92ba3f0c3d574249000ccbdddf7
Sha1:   097baf20f4e899055d5e5d45e5eb1d98262ccd17
Sha256: 973d071c77eb58eab66455850cd63ddf55c0fa08598e8808fff34ed0cf901b28
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~appbar~cc~copd-rc~ew-os~rec1-os.50f8988650b7737342ad.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 583182
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 19 Sep 2022 22:56:43 GMT
server: ECAcc (ska/F6E7)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: ee8c9746-b01e-0066-0cbe-cc85e1000000
content-length: 3916
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23311)
Size:   3916
Md5:    2a031f3d90d632f29e9f0821144c1a70
Sha1:   ae5422098c5f019dd47324a0da518759fc9073c2
Sha256: d991df5a8ba8f3b5b6f4366dad831b4ab4ca8f2ea8b231f8b1ee735a2afb1ec9
                                        
                                            GET /officehub/bundles/vendors~app-gallery-rc~app-host-component~appbar~cc~copd-rc~ew-os~rec1-os.90eeed44d1bd712b51b9.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:19 GMT
server: ECAcc (ska/F771)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 4508d51a-d01e-0002-475e-ce7479000000
content-length: 1519
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6304)
Size:   1519
Md5:    94bd61d0ef325ff2f6d6ca19afcf0ea6
Sha1:   27b5ebf802ec3c68b7c3b55b37501356dd3d590b
Sha256: 62249f61bfe082617ad4790057c8166509a8fb0bcf2518c9350528d72c26594a
                                        
                                            GET /officehub/bundles/39.6f4bcef481eb19d76e58.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:21 GMT
server: ECAcc (ska/F688)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 31216237-601e-005a-6c5e-ceac26000000
content-length: 1133
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5018)
Size:   1133
Md5:    818ae43ffb3e986cf708cb947883d91d
Sha1:   e1138a66f9c037f60aa678bbd36775e815bbf203
Sha256: 1d81ba3bc1972f2ce1a55d2582cc940cc5b2e3c2377092ad8a8d07f1828e3b14
                                        
                                            GET /officehub/bundles/41.8730685e6b6a2cf40241.chunk.v6.css HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:31 GMT
server: ECAcc (ska/F6E6)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 459665c5-801e-0020-185e-ceb166000000
content-length: 991
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4047), with no line terminators
Size:   991
Md5:    403bf7ce33ea8246a3d96fc2f6051f3a
Sha1:   a83a7faa40aec787b83d88247bf0b3b78e50d0b1
Sha256: 952122c18dba1e17bfa5500a14a51aef0b7a305ccdc293d0742a8973247f46b0
                                        
                                            GET /officehub/bundles/42.540bd8433ce330c88c88.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:04 GMT
server: ECAcc (ska/F77C)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 70dda21d-301e-0078-565e-ce6939000000
content-length: 7015
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30191)
Size:   7015
Md5:    5229b6bdc893636c017bbde5a547f84e
Sha1:   4a9d0e71ea71e5140ac9385e9bd50ca9184d19bb
Sha256: 45b71f9b8e68c2ed504410899e02afe5d93ae1a7f0182cdaed2f42f1b0720e96
                                        
                                            GET /officehub/bundles/vendors~auto-suggest~bc~search-preload~search-results.a26566de4281022bcc52.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404555
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:20 GMT
server: ECAcc (ska/F6C1)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: b0978d49-501e-0041-5f5e-ce9225000000
content-length: 21222
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65395)
Size:   21222
Md5:    308e33e72e8bb543f8241c5c2a05f25d
Sha1:   fee25f11b63808646c2e2ddba019e1614c7a2f72
Sha256: 30ba42bb32940043159b911c95fce4f780351357790746057955d157298745c4
                                        
                                            GET /officehub/bundles/41.fdc7d9c9a049d121ccc7.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 355613
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 22 Sep 2022 19:31:02 GMT
server: ECAcc (ska/F6E7)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: a9120eb7-b01e-003b-5cd0-ce8f65000000
content-length: 59125
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65446)
Size:   59125
Md5:    c3dbea1649099997c9532124384ddc40
Sha1:   9e7bdb1b39743ad66e9310d8b18fa0b96ec12b4c
Sha256: 1e987540b0c187422aaa433708d3bcd33a6e3cec76154233ce7e6517e9df9d78
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~cc~copd-rc~ew-os~rec1-os.43801b76939d36eaf21d.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404556
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:08:06 GMT
server: ECAcc (ska/F6EC)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 8b29298c-d01e-002d-425e-ce79b2000000
content-length: 1195
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4347)
Size:   1195
Md5:    cb4473d963b743a7d5aafd1060c1b010
Sha1:   a06147af5cfc375e601ef540ec358fae0e347e28
Sha256: 06618eb2fa404f89f7784931ad1494a3f2044434ecfc96da978f1c46153dd1e2
                                        
                                            GET /officehub/bundles/45.baf89fc0fd838ad2c022.chunk.v6.css HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404555
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:07:51 GMT
server: ECAcc (ska/F7A0)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: b1d658d8-801e-0042-295e-ce7341000000
content-length: 316
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1373), with no line terminators
Size:   316
Md5:    32aa813b67042681bc0d4bbd88b49432
Sha1:   f1b5a3d774265e4c894adc6fd606dd4cd589ecaf
Sha256: 57632346c8c846a7895e1ef51d48146db708b2dd57a0fc06cad5e477a3f8d6b5
                                        
                                            GET /officehub/bundles/vendors~mfs-storage-provider~staying-aware~staying-aware-badge~staying-aware-data-service~staying-aware-rq.3657c351fa112d17804c.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 404555
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Thu, 15 Sep 2022 03:07:58 GMT
server: ECAcc (ska/F6AA)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: b8d30ecb-e01e-0009-4c5e-ce8f12000000
content-length: 16676
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (60773)
Size:   16676
Md5:    f2a4b81dd49c307c08887a81a27c52d6
Sha1:   bf9f29a5cfbcff7acd43125aba95d1fb37837004
Sha256: e5320fbedefd5130a738554bf448d6bbdb5e9ca2026c9d4586cc27dfa3e33e03
                                        
                                            GET /officehub/bundles/vendors~edgeworth~input-dialog~wac-start.798dbe884acfdeb70bab.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 586850
date: Tue, 27 Sep 2022 01:01:33 GMT
last-modified: Mon, 12 Sep 2022 23:12:51 GMT
server: ECAcc (ska/F778)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 17a3aaea-301e-0035-2cb6-cca6d5000000
content-length: 7636
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43604)
Size:   7636
Md5:    f70ab548840865868b23384a2b79ae28
Sha1:   4f0a8b8abc82e891d850d2012bb06d82380569ea
Sha256: 3b511c2ba40aa22c75806ff7c9c445f5bb51612c61ba4da88092207e353a2234
                                        
                                            GET /officehub/bundles/45.57ac9f6876d66f34ea60.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net