r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ade0f92f30e7d68787598ca2b5fd30c7
fc7065ecb41bdfc5cbf0d8d568d335426c57f02f
1aac1c0926e545793d2040b114d2e064b175592a131ba27ff820fcd4aff4b4e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AAC1C0926E545793D2040B114D2E064B175592A131BA27FF820FCD4AFF4B4E3"
Last-Modified: Wed, 16 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16031
Expires: Wed, 16 Nov 2022 19:44:21 GMT
Date: Wed, 16 Nov 2022 15:17:10 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 9b4e6c72233070ef185ff980135e9555
2f14523a3f6f9532df3b872984fd23e156d2c465
5040e340e60b331b1569d52d66afcd5649a4121e2841d38cca0974e2a4c0af75
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 791
Cache-Control: max-age=156438
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 15:17:10 GMT
Etag: "6374bbf5-1d7"
Expires: Fri, 18 Nov 2022 10:44:28 GMT
Last-Modified: Wed, 16 Nov 2022 10:31:17 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 16 Nov 2022 14:44:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1945
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c88bc06741ab9fb81c2544acfcc34aa2
362cab19cff5aba27f472cc00071d5dfa38192e4
314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15548
Expires: Wed, 16 Nov 2022 19:36:18 GMT
Date: Wed, 16 Nov 2022 15:17:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: X7UoUcTmE3cszCGAIYHiVpt+6It9fMjxdIRmD5Wvz+GJ5iQCbPPfYUgR/RiS7TVP/m6kV1tCQkVAmM4AUoMtRg==
x-amz-request-id: 9PGFTMZJBKX1M38T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 16 Nov 2022 14:52:04 GMT
age: 1506
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b06ec85b82b9608d22fc4ad502aff441
427ac4ce4699305dac35ecd19d181376c74b949c
1337a0b816003f5d8aeaf591b77fd40c1abf87a25c5b7990b0e8e75fad100e9b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3268
Cache-Control: max-age=171111
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 15:17:10 GMT
Etag: "6374eb99-1d7"
Expires: Fri, 18 Nov 2022 14:49:01 GMT
Last-Modified: Wed, 16 Nov 2022 13:54:33 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 15:17:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
protect-us.mimecast.com/s/sF8sC73B9JuQnnqyC84IG7?domain=account.activedirectory.windowsazure.com
307 Temporary Redirect 0 B URL HTTP/1.1 protect-us.mimecast.com/s/sF8sC73B9JuQnnqyC84IG7?domain=account.activedirectory.windowsazure.com
IP
ASN #14135 NAVISITE-EAST-2
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/sF8sC73B9JuQnnqyC84IG7?domain=account.activedirectory.windowsazure.com HTTP/1.1
Host: protect-us.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 307 Temporary Redirect
Date: Wed, 16 Nov 2022 15:17:11 GMT
Content-Length: 0
Connection: keep-alive
Location: https://protect-us.mimecast.com/r/jN8NlevHbFNTEcZgM6nRIamwEqX25o-UU5m7eEzCqzISJlTN6sRPAfDHVPHMA7X-5ec0m_LOVBR5GgU0SWqWeLohYshqZl9fsH4GHEJk5OPiTX7MVKbtiwfmED2WbADScJgYAJ2X-HyiUu9-mVpqHvI5MKKGFQedbtP9P7MY16riY5LWB89kKbDYqzs_6c2eJkaoZPxgrDCM2HvR4fxieVcWq-HOduUDYItQ30ZkjlncP_gNHBsKaf-jkSh027uwqPuZqXkhFZ6xEi11cDYsVXo9UDqNBLjFMSZ7pGRdcMSNa17gQmB0FrVGlDWNSkZH_ilGDDnanPLrMaHHHb4rxEa-c8FQn2VfCadIb3NmwYf4yNMG6xFGq7-VHuQT6RKNp7uddg7u5saySCaNxBBr9zqZcQKGNo8K_2IhHmiwTxS7cZ6YcaZONXvo6EbCkA2AWZ3b0GHD6gXlY8XG7hqeW62fwiP4-EAwUgjUUM15GUMDvwNGYbQN5lKkbKiZ1bKGCIV2tmGDY0tZ611n6B4UPSwseSJQrGbe539wWPnnYKHqFuDXG_m8kYIjRQMmxwX4b2Fl1_fJigy5Jz-NU1ciBTIXdSwSCGVvfspa6ClNlDcTLxVB7g2eyelKtTzxvQBd7y_QtIna5-tfKGvEpaCEemCGWbB0LyT01Rh87Z4-uZGwPr1wbFnWmSxAF4sl8kkOJxGeh5vHxQKS1B7eBLi-ix5r4avSAQ3nDiO8MlwxQGS4tVRxEY6sBsTuNKLUWqH2Ffz5dRznHZhTA48hXxeQY4Bpf1t8jn1_ccd5Bfe_m-5MoeFnTSLFkNWLvi5rucaLuSLPErFh0QOjMA4A-44Om1c0a0MpkbvV5JaC5aKiswgeTWGzdZYWcZtToYkErXqebJwydZH4mBiVaSIgmss3wxNd2BlEJy1Su3T-J_eLqCLtm0HKCWvlX0pjcRL8fR3s-XYcfk4lgkohqCcDUBB89Sx7B7qmNjTCiKTdExccQzmwa9IZDfjiewJLjME08oiOf-pGJhqfU0f9DLmWZeWKnjnz6_bk-ScwjlPcu5AAiYgfCF7n80R6AD9TVyu9AmWRu5uNtiGdjWlKg1NJH5QhrYY7ZVyLJyzoZXq4m0tZd1b1zll69cSD5I61Snv8en2v-QtWoefRI_lirTvOx_lXrH74RVqUS53QnyT9ew9jupQgdhbkb53izhLDMT1tnQreNn3ZQk2Sjy3x1J92nzgbWzpfpJq7muXmQNUQMhHWxS0ElMjfdUGEV2_ZC05EVTR7toh9Qkhsl2sTdEe8DprVhHaL2l_5WFQrC9RdPieqEP8uC112E7ozGKOjTBLv3l2P4T25HHgGmX6ae37luv3R_56qXRVVL3uz22jneRSZLss212DH9F25oPCXDI2tANlq13fxE3XT82Pd93d53y_XCa9PZe8P5bdb1XyiK5G2d3hS2I6IiSeur9EFye3g6PtncO_oiGB2cJqb46z3S1l8eU32CcTCSf2oBagVN26CbjcU6QMljhoDd3EOFReRyw9dbPpiIWQ6VRazddMqpjROy2KGAP933Tgm8JMaPxGHyCOVUXEnHo0S--JPsACt--25WYkjV6cGBCDpwuerKHshFiIhx4-q2xitNBJoV6RpWRg_EYY4ypp488jveinZ4lFaokE6Qp7Ee9rMy1PgPPeDFdKAND8nRAESXm2-6xGnSY6aBhIg4Wj7AgcOYx72vs5OTIQnE5jEtLSlm4ldcStbfbzqM9yo4ClSCpgWAc415qEJCKAIzd0-s98eGjVF6I7VNB0eBZLKSQM_fVmPYPGXMNJqrosWK6ybY43GoCbQh4jyAET4P0sWeukXwD584qlR0sJ4K3vlXVsrzl8NYiIVdiR4CfuucGXg-F4TEE1VDzo
Cache-control: no-store
Pragma: no-cache
X-Robots-Tag: noindex, nofollow
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 16 Nov 2022 14:44:49 GMT
cache-control: public,max-age=3600
age: 1942
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 8345d8a2ca46c3b181a81d8626d0425f
5d9d088c5dca072bbc9ad23a15450e7af7829400
663b0e6c239177f35b5b48d4203ce95aabc0e5bab7911f5b1d9fb7624cac2e25
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2848
Cache-Control: max-age=153444
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 15:17:11 GMT
Etag: "6374a83b-1d7"
Expires: Fri, 18 Nov 2022 09:54:35 GMT
Last-Modified: Wed, 16 Nov 2022 09:07:07 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SaAosvd5CSLaauvkRJqI3g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RuMYzrbdEOR3gkADsVmjGtTOGIw=
protect-us.mimecast.com/r/jN8NlevHbFNTEcZgM6nRIamwEqX25o-UU5m7eEzCqzISJlTN6sRPAfDHVPHMA7X-5ec0m_LOVBR5GgU0SWqWeLohYshqZl9fsH4GHEJk5OPiTX7MVKbtiwfmED2WbADScJgYAJ2X-HyiUu9-mVpqHvI5MKKGFQedbtP9P7MY16riY5LWB89kKbDYqzs_6c2eJkaoZPxgrDCM2HvR4fxieVcWq-HOduUDYItQ30ZkjlncP_gNHBsKaf-jkSh027uwqPuZqXkhFZ6xEi11cDYsVXo9UDqNBLjFMSZ7pGRdcMSNa17gQmB0FrVGlDWNSkZH_ilGDDnanPLrMaHHHb4rxEa-c8FQn2VfCadIb3NmwYf4yNMG6xFGq7-VHuQT6RKNp7uddg7u5saySCaNxBBr9zqZcQKGNo8K_2IhHmiwTxS7cZ6YcaZONXvo6EbCkA2AWZ3b0GHD6gXlY8XG7hqeW62fwiP4-EAwUgjUUM15GUMDvwNGYbQN5lKkbKiZ1bKGCIV2tmGDY0tZ611n6B4UPSwseSJQrGbe539wWPnnYKHqFuDXG_m8kYIjRQMmxwX4b2Fl1_fJigy5Jz-NU1ciBTIXdSwSCGVvfspa6ClNlDcTLxVB7g2eyelKtTzxvQBd7y_QtIna5-tfKGvEpaCEemCGWbB0LyT01Rh87Z4-uZGwPr1wbFnWmSxAF4sl8kkOJxGeh5vHxQKS1B7eBLi-ix5r4avSAQ3nDiO8MlwxQGS4tVRxEY6sBsTuNKLUWqH2Ffz5dRznHZhTA48hXxeQY4Bpf1t8jn1_ccd5Bfe_m-5MoeFnTSLFkNWLvi5rucaLuSLPErFh0QOjMA4A-44Om1c0a0MpkbvV5JaC5aKiswgeTWGzdZYWcZtToYkErXqebJwydZH4mBiVaSIgmss3wxNd2BlEJy1Su3T-J_eLqCLtm0HKCWvlX0pjcRL8fR3s-XYcfk4lgkohqCcDUBB89Sx7B7qmNjTCiKTdExccQzmwa9IZDfjiewJLjME08oiOf-pGJhqfU0f9DLmWZeWKnjnz6_bk-ScwjlPcu5AAiYgfCF7n80R6AD9TVyu9AmWRu5uNtiGdjWlKg1NJH5QhrYY7ZVyLJyzoZXq4m0tZd1b1zll69cSD5I61Snv8en2v-QtWoefRI_lirTvOx_lXrH74RVqUS53QnyT9ew9jupQgdhbkb53izhLDMT1tnQreNn3ZQk2Sjy3x1J92nzgbWzpfpJq7muXmQNUQMhHWxS0ElMjfdUGEV2_ZC05EVTR7toh9Qkhsl2sTdEe8DprVhHaL2l_5WFQrC9RdPieqEP8uC112E7ozGKOjTBLv3l2P4T25HHgGmX6ae37luv3R_56qXRVVL3uz22jneRSZLss212DH9F25oPCXDI2tANlq13fxE3XT82Pd93d53y_XCa9PZe8P5bdb1XyiK5G2d3hS2I6IiSeur9EFye3g6PtncO_oiGB2cJqb46z3S1l8eU32CcTCSf2oBagVN26CbjcU6QMljhoDd3EOFReRyw9dbPpiIWQ6VRazddMqpjROy2KGAP933Tgm8JMaPxGHyCOVUXEnHo0S--JPsACt--25WYkjV6cGBCDpwuerKHshFiIhx4-q2xitNBJoV6RpWRg_EYY4ypp488jveinZ4lFaokE6Qp7Ee9rMy1PgPPeDFdKAND8nRAESXm2-6xGnSY6aBhIg4Wj7AgcOYx72vs5OTIQnE5jEtLSlm4ldcStbfbzqM9yo4ClSCpgWAc415qEJCKAIzd0-s98eGjVF6I7VNB0eBZLKSQM_fVmPYPGXMNJqrosWK6ybY43GoCbQh4jyAET4P0sWeukXwD584qlR0sJ4K3vlXVsrzl8NYiIVdiR4CfuucGXg-F4TEE1VDzo
307 Temporary Redirect 0 B URL HTTP/1.1 protect-us.mimecast.com/r/jN8NlevHbFNTEcZgM6nRIamwEqX25o-UU5m7eEzCqzISJlTN6sRPAfDHVPHMA7X-5ec0m_LOVBR5GgU0SWqWeLohYshqZl9fsH4GHEJk5OPiTX7MVKbtiwfmED2WbADScJgYAJ2X-HyiUu9-mVpqHvI5MKKGFQedbtP9P7MY16riY5LWB89kKbDYqzs_6c2eJkaoZPxgrDCM2HvR4fxieVcWq-HOduUDYItQ30ZkjlncP_gNHBsKaf-jkSh027uwqPuZqXkhFZ6xEi11cDYsVXo9UDqNBLjFMSZ7pGRdcMSNa17gQmB0FrVGlDWNSkZH_ilGDDnanPLrMaHHHb4rxEa-c8FQn2VfCadIb3NmwYf4yNMG6xFGq7-VHuQT6RKNp7uddg7u5saySCaNxBBr9zqZcQKGNo8K_2IhHmiwTxS7cZ6YcaZONXvo6EbCkA2AWZ3b0GHD6gXlY8XG7hqeW62fwiP4-EAwUgjUUM15GUMDvwNGYbQN5lKkbKiZ1bKGCIV2tmGDY0tZ611n6B4UPSwseSJQrGbe539wWPnnYKHqFuDXG_m8kYIjRQMmxwX4b2Fl1_fJigy5Jz-NU1ciBTIXdSwSCGVvfspa6ClNlDcTLxVB7g2eyelKtTzxvQBd7y_QtIna5-tfKGvEpaCEemCGWbB0LyT01Rh87Z4-uZGwPr1wbFnWmSxAF4sl8kkOJxGeh5vHxQKS1B7eBLi-ix5r4avSAQ3nDiO8MlwxQGS4tVRxEY6sBsTuNKLUWqH2Ffz5dRznHZhTA48hXxeQY4Bpf1t8jn1_ccd5Bfe_m-5MoeFnTSLFkNWLvi5rucaLuSLPErFh0QOjMA4A-44Om1c0a0MpkbvV5JaC5aKiswgeTWGzdZYWcZtToYkErXqebJwydZH4mBiVaSIgmss3wxNd2BlEJy1Su3T-J_eLqCLtm0HKCWvlX0pjcRL8fR3s-XYcfk4lgkohqCcDUBB89Sx7B7qmNjTCiKTdExccQzmwa9IZDfjiewJLjME08oiOf-pGJhqfU0f9DLmWZeWKnjnz6_bk-ScwjlPcu5AAiYgfCF7n80R6AD9TVyu9AmWRu5uNtiGdjWlKg1NJH5QhrYY7ZVyLJyzoZXq4m0tZd1b1zll69cSD5I61Snv8en2v-QtWoefRI_lirTvOx_lXrH74RVqUS53QnyT9ew9jupQgdhbkb53izhLDMT1tnQreNn3ZQk2Sjy3x1J92nzgbWzpfpJq7muXmQNUQMhHWxS0ElMjfdUGEV2_ZC05EVTR7toh9Qkhsl2sTdEe8DprVhHaL2l_5WFQrC9RdPieqEP8uC112E7ozGKOjTBLv3l2P4T25HHgGmX6ae37luv3R_56qXRVVL3uz22jneRSZLss212DH9F25oPCXDI2tANlq13fxE3XT82Pd93d53y_XCa9PZe8P5bdb1XyiK5G2d3hS2I6IiSeur9EFye3g6PtncO_oiGB2cJqb46z3S1l8eU32CcTCSf2oBagVN26CbjcU6QMljhoDd3EOFReRyw9dbPpiIWQ6VRazddMqpjROy2KGAP933Tgm8JMaPxGHyCOVUXEnHo0S--JPsACt--25WYkjV6cGBCDpwuerKHshFiIhx4-q2xitNBJoV6RpWRg_EYY4ypp488jveinZ4lFaokE6Qp7Ee9rMy1PgPPeDFdKAND8nRAESXm2-6xGnSY6aBhIg4Wj7AgcOYx72vs5OTIQnE5jEtLSlm4ldcStbfbzqM9yo4ClSCpgWAc415qEJCKAIzd0-s98eGjVF6I7VNB0eBZLKSQM_fVmPYPGXMNJqrosWK6ybY43GoCbQh4jyAET4P0sWeukXwD584qlR0sJ4K3vlXVsrzl8NYiIVdiR4CfuucGXg-F4TEE1VDzo
IP
ASN #14135 NAVISITE-EAST-2
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/jN8NlevHbFNTEcZgM6nRIamwEqX25o-UU5m7eEzCqzISJlTN6sRPAfDHVPHMA7X-5ec0m_LOVBR5GgU0SWqWeLohYshqZl9fsH4GHEJk5OPiTX7MVKbtiwfmED2WbADScJgYAJ2X-HyiUu9-mVpqHvI5MKKGFQedbtP9P7MY16riY5LWB89kKbDYqzs_6c2eJkaoZPxgrDCM2HvR4fxieVcWq-HOduUDYItQ30ZkjlncP_gNHBsKaf-jkSh027uwqPuZqXkhFZ6xEi11cDYsVXo9UDqNBLjFMSZ7pGRdcMSNa17gQmB0FrVGlDWNSkZH_ilGDDnanPLrMaHHHb4rxEa-c8FQn2VfCadIb3NmwYf4yNMG6xFGq7-VHuQT6RKNp7uddg7u5saySCaNxBBr9zqZcQKGNo8K_2IhHmiwTxS7cZ6YcaZONXvo6EbCkA2AWZ3b0GHD6gXlY8XG7hqeW62fwiP4-EAwUgjUUM15GUMDvwNGYbQN5lKkbKiZ1bKGCIV2tmGDY0tZ611n6B4UPSwseSJQrGbe539wWPnnYKHqFuDXG_m8kYIjRQMmxwX4b2Fl1_fJigy5Jz-NU1ciBTIXdSwSCGVvfspa6ClNlDcTLxVB7g2eyelKtTzxvQBd7y_QtIna5-tfKGvEpaCEemCGWbB0LyT01Rh87Z4-uZGwPr1wbFnWmSxAF4sl8kkOJxGeh5vHxQKS1B7eBLi-ix5r4avSAQ3nDiO8MlwxQGS4tVRxEY6sBsTuNKLUWqH2Ffz5dRznHZhTA48hXxeQY4Bpf1t8jn1_ccd5Bfe_m-5MoeFnTSLFkNWLvi5rucaLuSLPErFh0QOjMA4A-44Om1c0a0MpkbvV5JaC5aKiswgeTWGzdZYWcZtToYkErXqebJwydZH4mBiVaSIgmss3wxNd2BlEJy1Su3T-J_eLqCLtm0HKCWvlX0pjcRL8fR3s-XYcfk4lgkohqCcDUBB89Sx7B7qmNjTCiKTdExccQzmwa9IZDfjiewJLjME08oiOf-pGJhqfU0f9DLmWZeWKnjnz6_bk-ScwjlPcu5AAiYgfCF7n80R6AD9TVyu9AmWRu5uNtiGdjWlKg1NJH5QhrYY7ZVyLJyzoZXq4m0tZd1b1zll69cSD5I61Snv8en2v-QtWoefRI_lirTvOx_lXrH74RVqUS53QnyT9ew9jupQgdhbkb53izhLDMT1tnQreNn3ZQk2Sjy3x1J92nzgbWzpfpJq7muXmQNUQMhHWxS0ElMjfdUGEV2_ZC05EVTR7toh9Qkhsl2sTdEe8DprVhHaL2l_5WFQrC9RdPieqEP8uC112E7ozGKOjTBLv3l2P4T25HHgGmX6ae37luv3R_56qXRVVL3uz22jneRSZLss212DH9F25oPCXDI2tANlq13fxE3XT82Pd93d53y_XCa9PZe8P5bdb1XyiK5G2d3hS2I6IiSeur9EFye3g6PtncO_oiGB2cJqb46z3S1l8eU32CcTCSf2oBagVN26CbjcU6QMljhoDd3EOFReRyw9dbPpiIWQ6VRazddMqpjROy2KGAP933Tgm8JMaPxGHyCOVUXEnHo0S--JPsACt--25WYkjV6cGBCDpwuerKHshFiIhx4-q2xitNBJoV6RpWRg_EYY4ypp488jveinZ4lFaokE6Qp7Ee9rMy1PgPPeDFdKAND8nRAESXm2-6xGnSY6aBhIg4Wj7AgcOYx72vs5OTIQnE5jEtLSlm4ldcStbfbzqM9yo4ClSCpgWAc415qEJCKAIzd0-s98eGjVF6I7VNB0eBZLKSQM_fVmPYPGXMNJqrosWK6ybY43GoCbQh4jyAET4P0sWeukXwD584qlR0sJ4K3vlXVsrzl8NYiIVdiR4CfuucGXg-F4TEE1VDzo HTTP/1.1
Host: protect-us.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 307 Temporary Redirect
Date: Wed, 16 Nov 2022 15:17:12 GMT
Content-Length: 0
Connection: keep-alive
Location: https://account.activedirectory.windowsazure.com/Group/RestoreGroup?tenantId=8bcff170-9979-491e-8683-d8ced0850bad&id=5d84f8bb-5b57-4e31-a860-b11cf0d25f9f
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Cache-control: no-store
Pragma: no-cache
X-Robots-Tag: noindex, nofollow
account.activedirectory.windowsazure.com/Group/RestoreGroup?tenantId=8bcff170-9979-491e-8683-d8ced0850bad&id=5d84f8bb-5b57-4e31-a860-b11cf0d25f9f
302 Found 0 B URL HTTP/1.1 account.activedirectory.windowsazure.com/Group/RestoreGroup?tenantId=8bcff170-9979-491e-8683-d8ced0850bad&id=5d84f8bb-5b57-4e31-a860-b11cf0d25f9f
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Group/RestoreGroup?tenantId=8bcff170-9979-491e-8683-d8ced0850bad&id=5d84f8bb-5b57-4e31-a860-b11cf0d25f9f HTTP/1.1
Host: account.activedirectory.windowsazure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Location: https://login.microsoftonline.com/8bcff170-9979-491e-8683-d8ced0850bad/oauth2/authorize?client_id=0000000c-0000-0000-c000-000000000000&redirect_uri=https%3A%2F%2Faccount.activedirectory.windowsazure.com%2F&response_mode=form_post&response_type=code%20id_token&scope=openid%20profile&state=OpenIdConnect.AuthenticationProperties%3DAQAAAAMAAAAIVGVuYW50SWSrAXpKdnNsLUhveTdsMGYxWl84TmVJa0dUWG1YSnZ5UkRkOWVoYzB3ZS1Sa1p2aktIR2xSMExNRFNicVJ3MzNnMVBWSEppYjhtWjZzd3pGdVd5UGw3dWh4RUxKcjVycnh0TkJSSUg0OE9jQnVHZmpLR3lqWmlBNS13ZTI3UU5CemFnLVllaXBINHlBV2ZmbUllbk5pQzJZdEhibWNkcXdERTJQZFYyQ1c4VDBMawkucmVkaXJlY3SZAWh0dHBzOi8vYWNjb3VudC5hY3RpdmVkaXJlY3Rvcnkud2luZG93c2F6dXJlLmNvbS9Hcm91cC9SZXN0b3JlR3JvdXA_dGVuYW50SWQ9OGJjZmYxNzAtOTk3OS00OTFlLTg2ODMtZDhjZWQwODUwYmFkJmlkPTVkODRmOGJiLTViNTctNGUzMS1hODYwLWIxMWNmMGQyNWY5Zh5PcGVuSWRDb25uZWN0LkNvZGUuUmVkaXJlY3RVcmnAATRFa0lWWUlSZmdVVmpsNnhWa3BjVEVKNXMzTS1KUlZnQWdpb01xSm5nbFN6NW9qYTFqSV9STTViRFpfVmgzOUt0VDQydmF0elB2SE5PVnFwcHQ1amFmVjRRUTY0ZUU4VDB0RmdHeXBmV2xycmZBaWoyVXVFQmxUMnBjdHc3aE9TNTBranRyQjVuTk9kb0NESVNnS05iWE9VNV9PTHlTQVFISEtCWGI0UkRyVHJjQUtTekhzcHJKaGE2WjFyMVJ2Zg&nonce=1668611832.JOeglJRAQ3N7dGyc7BYuQQ&nux=1
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
x-ms-correlation-id: c042c0cc-c533-447f-9e92-84a99f48c35c
x-ms-session-id: 20d3ddc4-c2c7-482a-a64a-c9a87ec77c20
x-server: WEU
x-ms-gateway-requestid: e35210f7-8114-4656-9bc7-9169ade138ac
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: frame-ancestors 'self';
X-UA-Compatible: IE=Edge
Set-Cookie: flt=CCEAPIForkingAnalysis; path=/; secure; HttpOnly; SameSite=None
BOX.SessionCacheKey.SessID=20d3ddc4-c2c7-482a-a64a-c9a87ec77c20; path=/; secure; HttpOnly; SameSite=None
x-server=WEU; path=/; secure; HttpOnly; SameSite=None
gatewaydc=ams2; path=/; secure; HttpOnly; SameSite=None
OpenIdConnect.nonce.OpenIdConnect=QVFBQUFBRUFBQUFCVHFzQk5qUXhhR2RUVTBSdUxXNXhWbFkxUlV0aWNrbHZZM0JOTkU5QmFIQlpVSEZwYlRWNU9XMXlkMmc0TVRkRVZETkNaREp3UlVsdldYaDZWbEZyT0cxRGF6QnBjM1oyVkY5VFRVOTFWVE0wVldOMFgxYzVNRTVhZFRCak5ucElUVkpKYWpnNU5IaEphSFpzT0dzNVNrZDRSVzFqUjA4eGEwWlhNa3BOT1ZCaU9ERTNlamRFYzJZd1ZXUXRka3BHUWxJNVVVUlpZa0ZKYTFFNWVuUlJaa2xvV2tOcFVrMW1iSEpyU0ZWMw%3D%3D; path=/; secure; HttpOnly; SameSite=None
OpenIdConnect.nonce.OpenIdConnect=QVFBQUFBRUFBQUFCVHFzQk5qUXhhR2RUVTBSdUxXNXhWbFkxUlV0aWNrbHZZM0JOTkU5QmFIQlpVSEZwYlRWNU9XMXlkMmc0TVRkRVZETkNaREp3UlVsdldYaDZWbEZyT0cxRGF6QnBjM1oyVkY5VFRVOTFWVE0wVldOMFgxYzVNRTVhZFRCak5ucElUVkpKYWpnNU5IaEphSFpzT0dzNVNrZDRSVzFqUjA4eGEwWlhNa3BOT1ZCaU9ERTNlamRFYzJZd1ZXUXRka3BHUWxJNVVVUlpZa0ZKYTFFNWVuUlJaa2xvV2tOcFVrMW1iSEpyU0ZWMw%3D%3D; path=/; secure; HttpOnly; SameSite=None
.AspNet.Cookies=; expires=Fri, 01-Jan-1971 08:00:00 GMT; path=/; secure; HttpOnly; SameSite=None
.sessionInfo=; expires=Fri, 01-Jan-1971 08:00:00 GMT; path=/; secure; HttpOnly; SameSite=None
Date: Wed, 16 Nov 2022 15:17:12 GMT
Content-Length: 0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11133
Expires: Wed, 16 Nov 2022 18:22:46 GMT
Date: Wed, 16 Nov 2022 15:17:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11133
Expires: Wed, 16 Nov 2022 18:22:46 GMT
Date: Wed, 16 Nov 2022 15:17:13 GMT
Connection: keep-alive
login.microsoftonline.com/8bcff170-9979-491e-8683-d8ced0850bad/oauth2/authorize?client_id=0000000c-0000-0000-c000-000000000000&redirect_uri=https%3A%2F%2Faccount.activedirectory.windowsazure.com%2F&response_mode=form_post&response_type=code%20id_token&scope=openid%20profile&state=OpenIdConnect.AuthenticationProperties%3DAQAAAAMAAAAIVGVuYW50SWSrAXpKdnNsLUhveTdsMGYxWl84TmVJa0dUWG1YSnZ5UkRkOWVoYzB3ZS1Sa1p2aktIR2xSMExNRFNicVJ3MzNnMVBWSEppYjhtWjZzd3pGdVd5UGw3dWh4RUxKcjVycnh0TkJSSUg0OE9jQnVHZmpLR3lqWmlBNS13ZTI3UU5CemFnLVllaXBINHlBV2ZmbUllbk5pQzJZdEhibWNkcXdERTJQZFYyQ1c4VDBMawkucmVkaXJlY3SZAWh0dHBzOi8vYWNjb3VudC5hY3RpdmVkaXJlY3Rvcnkud2luZG93c2F6dXJlLmNvbS9Hcm91cC9SZXN0b3JlR3JvdXA_dGVuYW50SWQ9OGJjZmYxNzAtOTk3OS00OTFlLTg2ODMtZDhjZWQwODUwYmFkJmlkPTVkODRmOGJiLTViNTctNGUzMS1hODYwLWIxMWNmMGQyNWY5Zh5PcGVuSWRDb25uZWN0LkNvZGUuUmVkaXJlY3RVcmnAATRFa0lWWUlSZmdVVmpsNnhWa3BjVEVKNXMzTS1KUlZnQWdpb01xSm5nbFN6NW9qYTFqSV9STTViRFpfVmgzOUt0VDQydmF0elB2SE5PVnFwcHQ1amFmVjRRUTY0ZUU4VDB0RmdHeXBmV2xycmZBaWoyVXVFQmxUMnBjdHc3aE9TNTBranRyQjVuTk9kb0NESVNnS05iWE9VNV9PTHlTQVFISEtCWGI0UkRyVHJjQUtTekhzcHJKaGE2WjFyMVJ2Zg&nonce=1668611832.JOeglJRAQ3N7dGyc7BYuQQ&nux=1
200 OK 52 kB URL HTTP/1.1 login.microsoftonline.com/8bcff170-9979-491e-8683-d8ced0850bad/oauth2/authorize?client_id=0000000c-0000-0000-c000-000000000000&redirect_uri=https%3A%2F%2Faccount.activedirectory.windowsazure.com%2F&response_mode=form_post&response_type=code%20id_token&scope=openid%20profile&state=OpenIdConnect.AuthenticationProperties%3DAQAAAAMAAAAIVGVuYW50SWSrAXpKdnNsLUhveTdsMGYxWl84TmVJa0dUWG1YSnZ5UkRkOWVoYzB3ZS1Sa1p2aktIR2xSMExNRFNicVJ3MzNnMVBWSEppYjhtWjZzd3pGdVd5UGw3dWh4RUxKcjVycnh0TkJSSUg0OE9jQnVHZmpLR3lqWmlBNS13ZTI3UU5CemFnLVllaXBINHlBV2ZmbUllbk5pQzJZdEhibWNkcXdERTJQZFYyQ1c4VDBMawkucmVkaXJlY3SZAWh0dHBzOi8vYWNjb3VudC5hY3RpdmVkaXJlY3Rvcnkud2luZG93c2F6dXJlLmNvbS9Hcm91cC9SZXN0b3JlR3JvdXA_dGVuYW50SWQ9OGJjZmYxNzAtOTk3OS00OTFlLTg2ODMtZDhjZWQwODUwYmFkJmlkPTVkODRmOGJiLTViNTctNGUzMS1hODYwLWIxMWNmMGQyNWY5Zh5PcGVuSWRDb25uZWN0LkNvZGUuUmVkaXJlY3RVcmnAATRFa0lWWUlSZmdVVmpsNnhWa3BjVEVKNXMzTS1KUlZnQWdpb01xSm5nbFN6NW9qYTFqSV9STTViRFpfVmgzOUt0VDQydmF0elB2SE5PVnFwcHQ1amFmVjRRUTY0ZUU4VDB0RmdHeXBmV2xycmZBaWoyVXVFQmxUMnBjdHc3aE9TNTBranRyQjVuTk9kb0NESVNnS05iWE9VNV9PTHlTQVFISEtCWGI0UkRyVHJjQUtTekhzcHJKaGE2WjFyMVJ2Zg&nonce=1668611832.JOeglJRAQ3N7dGyc7BYuQQ&nux=1
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (33391), with CRLF, LF line terminators
Hash affe8b5efca2b80fb5be1ee8183a962a
57dd5cc9b3f5552869af981c23405a7f32a1d776
d5dccf2bb0476c5143425a228c12e1a9e6d468d2ee9ae6ceba1335124c8e55f5
GET /8bcff170-9979-491e-8683-d8ced0850bad/oauth2/authorize?client_id=0000000c-0000-0000-c000-000000000000&redirect_uri=https%3A%2F%2Faccount.activedirectory.windowsazure.com%2F&response_mode=form_post&response_type=code%20id_token&scope=openid%20profile&state=OpenIdConnect.AuthenticationProperties%3DAQAAAAMAAAAIVGVuYW50SWSrAXpKdnNsLUhveTdsMGYxWl84TmVJa0dUWG1YSnZ5UkRkOWVoYzB3ZS1Sa1p2aktIR2xSMExNRFNicVJ3MzNnMVBWSEppYjhtWjZzd3pGdVd5UGw3dWh4RUxKcjVycnh0TkJSSUg0OE9jQnVHZmpLR3lqWmlBNS13ZTI3UU5CemFnLVllaXBINHlBV2ZmbUllbk5pQzJZdEhibWNkcXdERTJQZFYyQ1c4VDBMawkucmVkaXJlY3SZAWh0dHBzOi8vYWNjb3VudC5hY3RpdmVkaXJlY3Rvcnkud2luZG93c2F6dXJlLmNvbS9Hcm91cC9SZXN0b3JlR3JvdXA_dGVuYW50SWQ9OGJjZmYxNzAtOTk3OS00OTFlLTg2ODMtZDhjZWQwODUwYmFkJmlkPTVkODRmOGJiLTViNTctNGUzMS1hODYwLWIxMWNmMGQyNWY5Zh5PcGVuSWRDb25uZWN0LkNvZGUuUmVkaXJlY3RVcmnAATRFa0lWWUlSZmdVVmpsNnhWa3BjVEVKNXMzTS1KUlZnQWdpb01xSm5nbFN6NW9qYTFqSV9STTViRFpfVmgzOUt0VDQydmF0elB2SE5PVnFwcHQ1amFmVjRRUTY0ZUU4VDB0RmdHeXBmV2xycmZBaWoyVXVFQmxUMnBjdHc3aE9TNTBranRyQjVuTk9kb0NESVNnS05iWE9VNV9PTHlTQVFISEtCWGI0UkRyVHJjQUtTekhzcHJKaGE2WjFyMVJ2Zg&nonce=1668611832.JOeglJRAQ3N7dGyc7BYuQQ&nux=1 HTTP/1.1
Host: login.microsoftonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: brcap=0; MSFPC=GUID=27491a5fca0c436896bdbf20a1588da0&HASH=2749&LV=202205&V=4&LU=1652883922743; ESTSSSOTILES=1; AADSSOTILES=1; buid=0.ATAAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA.AQABAAEAAAD--DLA3VO7QrddgJg7Wevr2zsMqMMSp7MEnzYMVxdSSJ4yUaJm0V1oRyR-gzXo5FQqGXR0ivYOlVGsQ_JrwQZC_tggzNywkjzLNKTTQREzd5obrFPmzLWfsoqchJv_IM0gAA; fpc=AvSTGUBJPsRCqal56S3vlgyCeMQLAQAAANzuBtsOAAAA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Link: <https://aadcdn.msauth.net>; rel=preconnect; crossorigin, <https://aadcdn.msauth.net>; rel=dns-prefetch, <https://aadcdn.msftauth.net>; rel=dns-prefetch
X-DNS-Prefetch-Control: on
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: f17ed568-7dd1-4809-82d9-a07cab5c2202
x-ms-ests-server: 2.1.14006.10 - SCUS ProdSlices
Referrer-Policy: strict-origin-when-cross-origin
X-XSS-Protection: 0
Set-Cookie: buid=0.AScAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA.AQABAAEAAAD--DLA3VO7QrddgJg7Wevrn7C-pBt3Q7ZPB9jQsajG3XqTxeFN_GruvueQdbCNHdUtCingiJkZ8Jh30lO84jLVHzKZkjswrX6FijhQAobydZvZLoB0fvILCxxpO2lFKFUgAA; expires=Fri, 16-Dec-2022 15:17:13 GMT; path=/; secure; HttpOnly; SameSite=None
fpc=AvSTGUBJPsRCqal56S3vlgyU3iOuAQAAAPj1BtsOAAAA; expires=Fri, 16-Dec-2022 15:17:13 GMT; path=/; secure; HttpOnly; SameSite=None
esctx=AQABAAAAAAD--DLA3VO7QrddgJg7WevrmSfHSFjG-7OLmXiKoAVemRgMbiBlAi_c73bbI30GmBtlLoBd-YJvqkrtUh4Nj_YUlJkHmYVuCQFDagxcZbajTNFVjCruyMP0H7dXOqIX5iam3nIBH9Gc0D02C7vD_YU8_hY5SBOQX2nyftCZM2PqxcU2gmlveWo3YizMASuRKO-uNkZ8eoQAbfOyBICC_hiHV2CVQelDSdyODcvDl331vOi9pBgxViYn99drY5DNZc4gAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
Date: Wed, 16 Nov 2022 15:17:12 GMT
Content-Length: 52291
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11133
Expires: Wed, 16 Nov 2022 18:22:46 GMT
Date: Wed, 16 Nov 2022 15:17:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11133
Expires: Wed, 16 Nov 2022 18:22:46 GMT
Date: Wed, 16 Nov 2022 15:17:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11133
Expires: Wed, 16 Nov 2022 18:22:46 GMT
Date: Wed, 16 Nov 2022 15:17:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e399ef-c649-4728-84e9-6fea03ea9b5a.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e399ef-c649-4728-84e9-6fea03ea9b5a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae0ab55e0e77a4265808a6689f25cbc3
187e6b340b43eb1aa0c724b749db7c20a486706a
3881e5ad44b9b2fae82510794af43d14e304ce624f26f66523f85d58fea063dc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e399ef-c649-4728-84e9-6fea03ea9b5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9625
x-amzn-requestid: 9bd72b4a-2ac0-423f-b0e2-73fd51e02e97
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYEBHTjIAMFvOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406e6-57f5412d5eca6d640a0f590d;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: UavYBt2WjF4WCRJGtM2zS-dZinNLgs_0HuyORwaVCSlj-32Qd6sNTQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:09:56 GMT
age: 61637
etag: "187e6b340b43eb1aa0c724b749db7c20a486706a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b31091803f98744f4da3b311467300a7
d829c5d23a494bc901d925dd02b84c470a0de479
c1cb88b82d8b5a82019da970f812cd31e13086c2da8498a21a57e7238aa34fe8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8971
x-amzn-requestid: b5dd68c5-7146-4d31-a7fd-4ac4c474119a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bnb6bGeyoAMFV9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6372d9dc-2ca4003e65d69039389bc676;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 00:14:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8TqIvhJUq_yG_iMFds_btqtYsrNzoaZeIQgOP0-Kc60yuQFOPYEXRA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 16 Nov 2022 09:48:03 GMT
age: 19750
etag: "d829c5d23a494bc901d925dd02b84c470a0de479"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 848af62ec10d0c297922f8600b6ad12d
4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d
a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CqIZqrKKIWszHFwass9Cd-GNxQ5Q9z3_2haPPGprjVDal71MQDurqw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:15:24 GMT
age: 61309
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5e6ba2a-6046-47f6-8da2-f2c9ea6dd2b8.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5e6ba2a-6046-47f6-8da2-f2c9ea6dd2b8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e2a2d21ac149d7cf783628b5e815702
ae4692dccf90fa1a30119c95a1539ed8163e574f
5e1ebb536daa764e1c906c60a7a36c0f67aa476e12bf9fe1fda07bf87bc1f299
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5e6ba2a-6046-47f6-8da2-f2c9ea6dd2b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9362
x-amzn-requestid: 859ecb2a-831d-48df-a769-4bd9e21941fa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brWuSF8hoAMFtVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63746b28-737fcd2d0c4d85eb71bfc452;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 04:46:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: Vo_6vm8fGw7IFpQIB-rScZ4XQQah_5NtDelbOQFpXqLT2yevul9MnA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 16 Nov 2022 04:51:49 GMT
age: 37524
etag: "ae4692dccf90fa1a30119c95a1539ed8163e574f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b00960f-2d08-4518-83c0-1d7f0f3c973c.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b00960f-2d08-4518-83c0-1d7f0f3c973c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 53d2d9380ba28ed0656b54c22bc56766
757f8e6306effbab70d99757c5672564cfc9f623
6d6c41527ae28cdce016470ec1eb87e0ed384f3ef721838724f29845f3bd8dac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b00960f-2d08-4518-83c0-1d7f0f3c973c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8990
x-amzn-requestid: cb142f4b-787e-4b3c-9d75-72579105db60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYFOHi8IAMFpDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406ee-504a14105d2be58b1ce71c18;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GLJACvZUJjLdl3O2HUkWjgr7MqT_SRigTSdweSaTxUc-gTDULbYliA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:14:18 GMT
age: 61375
etag: "757f8e6306effbab70d99757c5672564cfc9f623"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a698bf97cc6c0c464ed1a2b2adb1c1d3
a3977e8cde4b6ad7ef2e75a477e71b7bbbec21f0
64d52d8983b2bf30b9b1f260b8d6534664024b8dfda0da273307ee510ed33aad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4919
x-amzn-requestid: aae0d2da-e891-40a6-bd83-8942fc3ef0c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYFFEnxoAMFdCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406ed-6ff1cc593aa1c934659030db;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PhUSR2Y2GRZkB5UTrMma8vnIddc44pLJ2Sppk63xQyMC2imKLn-R4A==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:47:46 GMT
age: 62967
etag: "a3977e8cde4b6ad7ef2e75a477e71b7bbbec21f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_hMQIa-8TI8qqxRQ695cd-g2.js
200 OK 112 kB URL HTTP/2 aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_hMQIa-8TI8qqxRQ695cd-g2.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (64616)
Size 112 kB (111940 bytes)
Hash 118f3c69f724611c1a6d2a2b430e22d5
c3f79d5a4b496f7abb80f4ea28bd74d3402cd4dc
06105c49bda242c62858ad6931e460b9431d3c0178f721fa30c35c89eb4a15d9
GET /shared/1.0/content/js/ConvergedLogin_PCore_hMQIa-8TI8qqxRQ695cd-g2.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 111940
content-type: application/x-javascript
content-encoding: gzip
content-md5: EY88afckYRwabSorQw4i1Q==
last-modified: Mon, 17 Oct 2022 19:32:47 GMT
etag: 0x8DAB0765F177597
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 4a12f71d-801e-0063-2884-f50857000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0CxNwYwAAAAANf9Tf45INR4ixxAuL/k7nQU1TMDRFREdFMTkxOQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0+f50YwAAAABdIIbFqQXcTrL640jAw8KvU1ZHMjBFREdFMDYxNwAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Wed, 16 Nov 2022 15:17:12 GMT
X-Firefox-Spdy: h2
aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
200 OK 17 kB URL HTTP/2 aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Hash 12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 17174
content-type: image/x-icon
content-md5: EuPayFgGHQiAI7K9SOL6lg==
last-modified: Sun, 18 Oct 2020 03:02:03 GMT
etag: 0x8D8731230C851A6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 87315f55-101e-000a-6177-f23966000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0EdNxYwAAAAAFhk7gJY84T5IKngPwiSHoTE9OMjFFREdFMTYyMAAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0+f50YwAAAACbwZmbeIbBSaOa5k1Fx407U1ZHMjBFREdFMDUyMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Wed, 16 Nov 2022 15:17:12 GMT
X-Firefox-Spdy: h2
aadcdn.msauth.net/shared/1.0/content/js/oneDs_8363475333f6d315e7ae.js
200 OK 28 kB URL HTTP/2 aadcdn.msauth.net/shared/1.0/content/js/oneDs_8363475333f6d315e7ae.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (50743)
Hash 530ae07e9185febe894944333177c2d0
2d0e5eedda15b30f5e3073585c06413c16c9d8f0
5f72e36383a1631030682d0cacf5538fd4008c5349cd0f12c4b6991c402b0840
GET /shared/1.0/content/js/oneDs_8363475333f6d315e7ae.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 27455
content-type: application/x-javascript
content-encoding: gzip
content-md5: UwrgfpGF/r6JSUQzMXfC0A==
last-modified: Sat, 04 Jun 2022 01:22:04 GMT
etag: 0x8DA45C8A25CE0E2
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: fb3cf3b7-f01e-0080-7707-f86026000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0qkp0YwAAAAD2pkoVvv/aTpdMPcgfjzOvQU1TMDRFREdFMTkxNQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0+f50YwAAAAD16AOpHk4ORp7Buon/GoSlU1ZHMjBFREdFMDUyMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Wed, 16 Nov 2022 15:17:12 GMT
X-Firefox-Spdy: h2
aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css
200 OK 20 kB URL HTTP/2 aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (61177)
Hash f4adbf9c60a3ef95809a6008f6764d08
b55c98c403b111b494c1ece263dc06eabc0ab075
6a59a4f890ea26ef050b83d0722aafc3ad70ddbce706806381c4f159a5db7497
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 19970
content-type: text/css
content-encoding: gzip
content-md5: 9K2/nGCj75WAmmAI9nZNCA==
last-modified: Thu, 04 Aug 2022 19:37:00 GMT
etag: 0x8DA7650B37ACC3D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 5ce3e1ba-c01e-0023-17ae-f6db46000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 06NdzYwAAAADLyjzABl3+Sa29mqcqZdaTQU1TMDRFREdFMTgwOQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0+f50YwAAAADHUG38oBYzRbV6Ms1eoXRWU1ZHMjBFREdFMDUyMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Wed, 16 Nov 2022 15:17:12 GMT
X-Firefox-Spdy: h2
aadcdn.msauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_ywec5xsvivopphf4olex_a2.js
200 OK 14 kB URL HTTP/2 aadcdn.msauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_ywec5xsvivopphf4olex_a2.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (32009)
Hash 630b7df64a6cc3a50c62ddd2e0ddb992
1b1efae47cf268e702e351b1ff2197e3c64578fb
c2260e478eb36dec6dbd3d85bd6427ec09ed097de69ca3a7b27fbbe25e7939d4
GET /ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_ywec5xsvivopphf4olex_a2.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 13974
content-type: application/x-javascript
content-encoding: gzip
content-md5: Ywt99kpsw6UMYt3S4N25kg==
last-modified: Thu, 13 Oct 2022 16:37:13 GMT
etag: 0x8DAAD392F02CEA0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: ef4808b0-101e-004e-16ae-f6467f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0KLtwYwAAAACsRlTCkWuNQ6n/rfxJPseMQU1TMDRFREdFMTgxNAAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0+f50YwAAAABrXubHCP/VTK3EbEdXNGGoU1ZHMjBFREdFMDUyMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Wed, 16 Nov 2022 15:17:12 GMT
X-Firefox-Spdy: h2
aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
200 OK 673 B URL HTTP/2 aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators
Hash 0e176276362b94279a4492511bfcbd98
389fe6b51f62254bb98939896b8c89ebeffe2a02
9a2c174ae45cac057822844211156a5ed293e65c5f69e1d211a7206472c5c80c
GET /shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 673
content-type: image/svg+xml
content-encoding: gzip
content-md5: DhdidjYrlCeaRJJRG/y9mA==
last-modified: Wed, 12 Feb 2020 22:01:30 GMT
etag: 0x8D7B0071D86E386
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: c290379c-d01e-002a-4aed-f6a855000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0wr5zYwAAAAD9/dXwYqAJRI88q0IeAUXuQU1TMDRFREdFMTkxMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0+f50YwAAAADZ1CNadQ+JR6uPkuUbfKOsU1ZHMjBFREdFMDUyMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Wed, 16 Nov 2022 15:17:12 GMT
X-Firefox-Spdy: h2
aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_8dc1586f19519d6b618f.js
200 OK 32 kB URL HTTP/2 aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_8dc1586f19519d6b618f.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (33036)
Hash c5832c6b7f7c0653bba1058d165855a6
76aa9a35af65314340a4626c6c59007abbf4a825
e57c3e8430a632f0eed33f4fff534698bab803b69fabaa095f585ae490c18ec1
GET /shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_8dc1586f19519d6b618f.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 32180
content-type: application/x-javascript
content-encoding: gzip
content-md5: xYMsa398BlO7oQWNFlhVpg==
last-modified: Wed, 07 Sep 2022 21:51:35 GMT
etag: 0x8DA911B224BBA9B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 2f94bc4a-501e-004a-1a0c-f7ea77000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 05VhzYwAAAABKo5FBy/HQSZ7P9EZvMlHqQU1TMDRFREdFMTkxMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0+f50YwAAAADf7WCXYmAKQp/nEks+j+JWU1ZHMjBFREdFMDUyMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Wed, 16 Nov 2022 15:17:12 GMT
X-Firefox-Spdy: h2
aadcdn.msauthimages.net/dbd5a2dd-57wjbqtnuel4po-cnpmksioj8pjg2bo2d-3yrvr7z-g/logintenantbranding/0/bannerlogo?ts=637903229521841349
200 OK 7.9 kB URL HTTP/2 aadcdn.msauthimages.net/dbd5a2dd-57wjbqtnuel4po-cnpmksioj8pjg2bo2d-3yrvr7z-g/logintenantbranding/0/bannerlogo?ts=637903229521841349
IP
File type PNG image data, 193 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash b85099d6062c3dc1c9239da6f4f16514
d9bd4c329a2ba8798b1a80698e3602a498b3e3f3
fe64e80830b5f8b6ce3fdd2c38e4c72489ea4a97d01904912b00a19f6ad3da28
GET /dbd5a2dd-57wjbqtnuel4po-cnpmksioj8pjg2bo2d-3yrvr7z-g/logintenantbranding/0/bannerlogo?ts=637903229521841349 HTTP/1.1
Host: aadcdn.msauthimages.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 20372
cache-control: public, max-age=86400
content-md5: uFCZ1gYsPcHJI52m9PFlFA==
content-type: image/*
date: Wed, 16 Nov 2022 15:17:13 GMT
etag: 0x8DA499B84FDD6F1
last-modified: Wed, 08 Jun 2022 22:09:12 GMT
server: ECAcc (ska/F75D)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 936e2083-001e-002e-6a9f-f9009e000000
x-ms-version: 2009-09-19
content-length: 7897
X-Firefox-Spdy: h2
login.live.com/Me.htm?v=3
200 OK 1.1 kB URL HTTP/1.1 login.live.com/Me.htm?v=3
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (2345), with CRLF line terminators
Hash 9c08f0f5b411918572bb176b56d4b747
12814f1ffd1c414337cfc57da7561f4386ec8b67
d9f196403747ff4bbf6c3d61c7319f51e33be05825ac3b5200665e6e5ee26c0e
GET /Me.htm?v=3 HTTP/1.1
Host: login.live.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=315360000
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Sat, 13 Nov 2032 15:17:13 GMT
Vary: Accept-Encoding
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Referrer-Policy: strict-origin-when-cross-origin
x-ms-route-info: R3_BL2
x-ms-request-id: 2fbe4f4b-2be7-438d-aee9-e199a0329c90
PPServer: PPV: 30 H: BL02PFCE8B8E7CD V: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Set-Cookie: uaid=b46b781841b74f8aaf745331b726ec9b; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
MSPRequ=id=N<=1668611833&co=1; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
Date: Wed, 16 Nov 2022 15:17:12 GMT
Content-Length: 1132
aadcdn.msauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg
200 OK 621 B URL HTTP/2 aadcdn.msauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1592), with no line terminators
Hash 4761405717e938d7e7400bb15715db1e
76fed7c229d353a27db3257f5927c1eaf0ab8de9
f7ed91a1dab5bb2802a7a3b3890df4777588ccbe04903260fba83e6e64c90ddf
GET /shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 621
content-type: image/svg+xml
content-encoding: gzip
content-md5: R2FAVxfpONfnQAuxVxXbHg==
last-modified: Tue, 10 Nov 2020 03:41:24 GMT
etag: 0x8D8852A7FA6B761
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 62ae7601-f01e-0014-5cbb-f52b59000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0eLpwYwAAAAAKoaYXX2RKRZgBnZ1FPoR1QU1TMDRFREdFMTkxMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0+f50YwAAAAAdXvrvdemzQqvYEC4OaE2EU1ZHMjBFREdFMDUyMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Wed, 16 Nov 2022 15:17:13 GMT
X-Firefox-Spdy: h2
aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css
200 OK 20 kB URL HTTP/2 aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (61177)
Hash f4adbf9c60a3ef95809a6008f6764d08
b55c98c403b111b494c1ece263dc06eabc0ab075
6a59a4f890ea26ef050b83d0722aafc3ad70ddbce706806381c4f159a5db7497
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 19970
content-type: text/css
content-encoding: gzip
content-md5: 9K2/nGCj75WAmmAI9nZNCA==
last-modified: Thu, 04 Aug 2022 19:37:00 GMT
etag: 0x8DA7650B37ACC3D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 5ce3e1ba-c01e-0023-17ae-f6db46000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 06NdzYwAAAADLyjzABl3+Sa29mqcqZdaTQU1TMDRFREdFMTgwOQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0/v50YwAAAABbsq0WOM01Q7pW2ETbmf8HU1ZHMjBFREdFMDYxNwAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Wed, 16 Nov 2022 15:17:17 GMT
X-Firefox-Spdy: h2
aadcdn.msauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_ywec5xsvivopphf4olex_a2.js
200 OK 14 kB URL HTTP/2 aadcdn.msauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_ywec5xsvivopphf4olex_a2.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (32009)
Hash 630b7df64a6cc3a50c62ddd2e0ddb992
1b1efae47cf268e702e351b1ff2197e3c64578fb
c2260e478eb36dec6dbd3d85bd6427ec09ed097de69ca3a7b27fbbe25e7939d4
GET /ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_ywec5xsvivopphf4olex_a2.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 13974
content-type: application/x-javascript
content-encoding: gzip
content-md5: Ywt99kpsw6UMYt3S4N25kg==
last-modified: Thu, 13 Oct 2022 16:37:13 GMT
etag: 0x8DAAD392F02CEA0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: ef4808b0-101e-004e-16ae-f6467f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0KLtwYwAAAACsRlTCkWuNQ6n/rfxJPseMQU1TMDRFREdFMTgxNAAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0/v50YwAAAADVNoAdjPPlTqnwB0S4bj03U1ZHMjBFREdFMDYxNwAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Wed, 16 Nov 2022 15:17:17 GMT
X-Firefox-Spdy: h2
207.211.31.64
93.184.220.29
40.126.32.131
23.36.76.226
20.190.159.72