| forms.office.com/r/mnT1JqDiw5 | 13.107.6.194 | | 0 B |
URL forms.office.com/r/mnT1JqDiw5 IP13.107.6.194:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/mnT1JqDiw5 HTTP/1.1
Host: forms.office.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
cache-control: no-cache
pragma: no-cache
expires: -1
location: https://forms.office.com/pages/responsepage.aspx?id=kOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u
p3p: CP="CAO DSP COR ADMa DEV CONi TELi CUR PSA PSD TAI IVDi OUR SAMi BUS DEM NAV STA UNI COM INT PHY ONL FIN PUR"
x-correlationid: 624b879a-d028-4ad6-af2a-70ff4dd5dbc3
x-usersessionid: 624b879a-d028-4ad6-af2a-70ff4dd5dbc3
x-officefe: FormIntelligenceService_IN_4
x-officeversion: 16.0.17621.42051
x-officecluster: eus2-101.forms.office.com
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 19123A1D02CF41688E0AE866775828CE Ref B: SVG20EDGE0218 Ref C: 2024-04-25T12:11:51Z
date: Thu, 25 Apr 2024 12:11:51 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.min.8da9016.js | 23.36.76.145 | | 127 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.min.8da9016.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, ASCII text, with very long lines (38720) Size127 kB (126603 bytes) Hasha1bc1a085fa764693c28aac026cd8f94 8222d3c963f3998a1961e987eef5812a150035de b660f165b6e29f99a25636a9558b4fff9a22f7e8000e6aeca6199a4607396c54
GET /forms/scripts/dists/light-response-page.min.8da9016.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://forms.office.com
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 126603
content-type: application/javascript
content-md5: dM3djzCEBHBs1dGX+wohJQ==
last-modified: Mon, 22 Apr 2024 05:08:37 GMT
etag: 0x8DC628A44525A6D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0d65fbfb-801e-0053-0277-94b5f6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:52 GMT
date: Thu, 25 Apr 2024 12:11:52 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/ls-response.en-us.b900aa49d.js | 23.36.76.145 | | 11 kB |
URL cdn.forms.office.net/forms/scripts/dists/ls-response.en-us.b900aa49d.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeUnicode text, UTF-8 text, with very long lines (36981), with no line terminators Hashbcdec3803077629950a2c079684ee48e fe558ad1b671743c706c5f905051fc10e7e8f366 aea69b225fca69e36874b5e0e2e615c5f163be06233587af74fc18f482f7d233
GET /forms/scripts/dists/ls-response.en-us.b900aa49d.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://forms.office.com
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 11060
content-type: application/javascript
content-md5: kQUK+9mZj9AVtTZTTjFz5g==
last-modified: Thu, 18 Apr 2024 05:05:22 GMT
etag: 0x8DC5F6526B978F8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 33279ff5-e01e-0007-7a54-915f7c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:52 GMT
date: Thu, 25 Apr 2024 12:11:52 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/dll-dompurify.min.bcf1a85.js | 23.36.76.145 | | 12 kB |
URL cdn.forms.office.net/forms/scripts/dists/dll-dompurify.min.bcf1a85.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, ASCII text, with very long lines (16094) Hashf85df0db3b351e61f18dd9ca98a3c999 055ab43c220151e0c8b521a39d40dc54c50f988d 5bea34a1b8999fb53f5b3b8541be6a2c6f8c75a8932bcb7a05e3fd5b91d78608
GET /forms/scripts/dists/dll-dompurify.min.bcf1a85.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://forms.office.com
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 11487
content-type: application/javascript
content-md5: 3nKtWQ895+qkc91KKpgmGw==
last-modified: Sun, 18 Feb 2024 04:45:42 GMT
etag: 0x8DC303C76BCD96B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c8ceabc5-c01e-0076-7b2d-622d45000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:52 GMT
date: Thu, 25 Apr 2024 12:11:52 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_ext.1a824d5.js | 23.36.76.145 | | 109 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_ext.1a824d5.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64406), with no line terminators Size109 kB (109124 bytes) Hasha1d0467ab413a0b1985d8c3d630a8028 d3300419d068ad7bd1409e5056a7ce03e0197309 4c59edf5528765ff6492cbd54944ff0012e397451d4a6c88e61eca41ddcbbaf1
GET /forms/scripts/dists/light-response-page.chunk.lrp_ext.1a824d5.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 109124
content-type: application/javascript
content-md5: S2NceqlMsmhGua29Mj1ogA==
last-modified: Fri, 19 Apr 2024 04:55:55 GMT
etag: 0x8DC602CFF0D9F9D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d5988403-d01e-0040-611b-928017000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:53 GMT
date: Thu, 25 Apr 2024 12:11:53 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/images/favicon.ico | 23.36.76.145 | | 7.9 kB |
URL cdn.forms.office.net/forms/images/favicon.ico IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeMS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel Hash9425d8e9313a692bb3f022e8055fab82 eddcf3ea767d4c3042d01ac88594d7e795d8615c f2a1abcf12ebd0f329e5b66b811b0bd76c8e954cb283ce3b61e72fbf459ef6f1
GET /forms/images/favicon.ico HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 7886
content-type: image/x-icon
content-md5: lCXY6TE6aSuz8CLoBV+rgg==
last-modified: Mon, 27 Jun 2022 04:08:36 GMT
etag: 0x8DA57F2B5C5EE03
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 770a9f31-601e-001d-4325-8a7013000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:53 GMT
date: Thu, 25 Apr 2024 12:11:53 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.1ds.a8079b3.js | 23.36.76.145 | | 34 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.1ds.a8079b3.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, ASCII text, with very long lines (17610) Hash07b98765f2550d83eeaef5cb36a2e6a1 4f5cb9d05789079fa605e58546015c8a6969ffa6 e86b0bf07871186dd32b20c7b4fd8e8729c717eabe73763847be9cb091d348f7
GET /forms/scripts/dists/light-response-page.chunk.1ds.a8079b3.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 34470
content-type: application/javascript
content-md5: K1wotL4HRbGauz+Vu/VA/w==
last-modified: Wed, 21 Feb 2024 05:49:55 GMT
etag: 0x8DC32A0EE652AE0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ee3d53e3-701e-004d-578c-646f1b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:53 GMT
date: Thu, 25 Apr 2024 12:11:53 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.utel.d0952f9.js | 23.36.76.145 | | 8.3 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.utel.d0952f9.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, ASCII text, with very long lines (40279) Hashf91151ba9bf49a2f64908212ca7f74a7 1a2227591cac6c61e59bf8309a95b2c47b5bd98a 6c41fe30b09095010c655f068d2ea8e2f61fe1b6dbef68e9b449af07834f2a3c
GET /forms/scripts/dists/light-response-page.chunk.utel.d0952f9.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 8287
content-type: application/javascript
content-md5: xdgc6xg+Uiyha+mPfTmLrg==
last-modified: Thu, 18 Apr 2024 05:05:18 GMT
etag: 0x8DC5F65241AC817
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e6b1e161-901e-006e-7053-9100d0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:53 GMT
date: Thu, 25 Apr 2024 12:11:53 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| c.office.com/c.gif | 68.219.88.97 | | 0 B |
IP68.219.88.97:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.office.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?ctsa=mr&CtsSyncId=1BC981323DD64E7DA7976F7D8A9F1FC8&RedC=c.office.com&MXFR=3F90AE5940E96D3036DFBA3544E966B3
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.office.com; path=/; SameSite=None; Secure;
MUID=3F90AE5940E96D3036DFBA3544E966B3; domain=.office.com; expires=Tue, 20-May-2025 12:11:53 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Thu, 25 Apr 2024 12:11:53 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| forms.office.com/formapi/api/5b5ce690-c127-44b6-bfec-2df9a337fbb1/users/85554e30-f9af-42a4-8f5a-7fd07dbc6e40/light/runtimeFormsWithResponses('kOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u')?$expand=questions($expand=choices)&$top=1 | 13.107.6.194 | | 14 kB |
URL forms.office.com/formapi/api/5b5ce690-c127-44b6-bfec-2df9a337fbb1/users/85554e30-f9af-42a4-8f5a-7fd07dbc6e40/light/runtimeFormsWithResponses('kOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u')?$expand=questions($expand=choices)&$top=1 IP13.107.6.194:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typegzip compressed data, max speed, from TOPS/20 Hash1801d2926043caa428e3b80799c87de0 6972ea8a2ff742ac9338ab25b71a1629857974bc 1564c27576f85e07796e73fb753568640dd84aad210c12271159255746131087
GET /formapi/api/5b5ce690-c127-44b6-bfec-2df9a337fbb1/users/85554e30-f9af-42a4-8f5a-7fd07dbc6e40/light/runtimeFormsWithResponses('kOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u')?$expand=questions($expand=choices)&$top=1 HTTP/1.1
Host: forms.office.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-UserSessionId: a1152f5c-90ac-4bef-a6d8-c544cec46f13
__RequestVerificationToken: LQpWfo-eHNAoeWo08Q8S-thUBTDvF-uMNgq3Bgh0lkBKR9FYXgZ48DkBduMpDxULNIpqe7vQOi5DVdQRqjjJdhjSfC6XClLCMnKexWlXCs81
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/pages/responsepage.aspx?id=kOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u
Cookie: FormsWebSessionId=f205dab3-df73-4aed-a80d-79051a1446a2; __RequestVerificationToken=WlrjvCeYVrDqx1EUJAf1UwWg8ZCXxu28CnO2u6vJwr21pY6ZIsZt6BhX9OfrotAPfZosqDNfvZAKpyixufspxMxmKFjRCg3ZzdxXcwC5M0A1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 401 Unauthorized
content-type: application/json; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-routingofficecluster: frc-100.forms.office.com
x-routingofficefe: FormsSingleBox_IN_3
x-routingofficeversion: 16.0.17621.42051
x-routingsessionid: a1152f5c-90ac-4bef-a6d8-c544cec46f13
x-routingcorrelationid: df1a27cb-403d-40b3-9378-2541c4002cfe
x-correlationid: df1a27cb-403d-40b3-9378-2541c4002cfe
x-officecluster: frc-100.forms.office.com
x-officefe: FormsSingleBox_IN_13
x-officeversion: 16.0.17621.42051
x-usersessionid: a1152f5c-90ac-4bef-a6d8-c544cec46f13
x-robots-tag: noindex, nofollow
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: DABC7DE920354D328B5B4A229301D86C Ref B: SVG20EDGE0218 Ref C: 2024-04-25T12:11:52Z
date: Thu, 25 Apr 2024 12:11:52 GMT
X-Firefox-Spdy: h2
|
|
| c.bing.com/c.gif?ctsa=mr&CtsSyncId=1BC981323DD64E7DA7976F7D8A9F1FC8&RedC=c.office.com&MXFR=3F90AE5940E96D3036DFBA3544E966B3 | 13.107.21.237 | | 0 B |
URL c.bing.com/c.gif?ctsa=mr&CtsSyncId=1BC981323DD64E7DA7976F7D8A9F1FC8&RedC=c.office.com&MXFR=3F90AE5940E96D3036DFBA3544E966B3 IP13.107.21.237:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?ctsa=mr&CtsSyncId=1BC981323DD64E7DA7976F7D8A9F1FC8&RedC=c.office.com&MXFR=3F90AE5940E96D3036DFBA3544E966B3 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forms.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.office.com/c.gif?ctsa=mr&CtsSyncId=1BC981323DD64E7DA7976F7D8A9F1FC8&MUID=3F90AE5940E96D3036DFBA3544E966B3
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: MUID=3F90AE5940E96D3036DFBA3544E966B3; domain=.bing.com; expires=Tue, 20-May-2025 12:11:53 GMT; path=/; SameSite=None; Secure; Priority=High;
MR=0; domain=c.bing.com; expires=Thu, 02-May-2024 12:11:53 GMT; path=/; SameSite=None; Secure;
SRM_B=3F90AE5940E96D3036DFBA3544E966B3; domain=c.bing.com; expires=Tue, 20-May-2025 12:11:53 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B35945D5487E4AC98B100E171816FAC1 Ref B: OSL30EDGE0109 Ref C: 2024-04-25T12:11:53Z
date: Thu, 25 Apr 2024 12:11:52 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| forms.office.com/pages/responsepage.aspx?id=kOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u | 13.107.6.194 | | 24 kB |
URL forms.office.com/pages/responsepage.aspx?id=kOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u IP13.107.6.194:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeHTML document, ASCII text, with very long lines (29627), with CRLF, LF line terminators Hash7a7bfb855635fa425fcf59db63ec8c9d e282acfb342ca6961a1990ba3c65f73e2fef3c5f 34ec711c7387d91b918f5cc800a8c634d1231562ff0b1c563b3001e3bbaf23a2
GET /pages/responsepage.aspx?id=kOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u HTTP/1.1
Host: forms.office.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: br
expires: 0
vary: Accept-Encoding
set-cookie: FormsWebSessionId=f205dab3-df73-4aed-a80d-79051a1446a2; max-age=2592000; path=/; secure; samesite=none; httponly
__RequestVerificationToken=WlrjvCeYVrDqx1EUJAf1UwWg8ZCXxu28CnO2u6vJwr21pY6ZIsZt6BhX9OfrotAPfZosqDNfvZAKpyixufspxMxmKFjRCg3ZzdxXcwC5M0A1; path=/; secure; samesite=none; httponly
strict-transport-security: max-age=2592000; includeSubDomains
x-routingofficecluster: neu-100.forms.office.com
x-routingofficefe: FormsSingleBox_IN_8
x-routingofficeversion: 16.0.17621.42051
x-routingsessionid: a1152f5c-90ac-4bef-a6d8-c544cec46f13
x-routingcorrelationid: 33674ea1-94d6-4f59-8346-ff9a5b416f8b
x-correlationid: 33674ea1-94d6-4f59-8346-ff9a5b416f8b
x-officecluster: neu-100.forms.office.com
x-officefe: FormsSingleBox_IN_8
x-officeversion: 16.0.17621.42051
x-usersessionid: a1152f5c-90ac-4bef-a6d8-c544cec46f13
report-to: { "group": "endpoint-1", "max_age": 108864000, "endpoints": [ { "url": "https://csp.microsoft.com/report/Forms-PROD" }] }
content-security-policy: object-src 'none';script-src 'nonce-960cca4f-d96f-46cf-b6a7-a79c002728cc' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' https:;base-uri 'none';require-trusted-types-for 'script'; report-uri https://csp.microsoft.com/report/Forms-PROD;report-to endpoint-1;
x-robots-tag: noindex, nofollow
link: <https://cdn.forms.office.net/forms>; rel=preconnect; crossorigin=anonymous
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 526460C93EF3476AA63F013F8F02CE0C Ref B: SVG20EDGE0218 Ref C: 2024-04-25T12:11:52Z
date: Thu, 25 Apr 2024 12:11:51 GMT
X-Firefox-Spdy: h2
|
|
| c.office.com/c.gif?ctsa=mr&CtsSyncId=1BC981323DD64E7DA7976F7D8A9F1FC8&MUID=3F90AE5940E96D3036DFBA3544E966B3 | 68.219.88.97 | | 42 B |
URL c.office.com/c.gif?ctsa=mr&CtsSyncId=1BC981323DD64E7DA7976F7D8A9F1FC8&MUID=3F90AE5940E96D3036DFBA3544E966B3 IP68.219.88.97:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
File typeGIF image data, version 89a, 1 x 1 Hash32023bb33cfb2a1990a4ef2d85b6ac16 23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1 99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?ctsa=mr&CtsSyncId=1BC981323DD64E7DA7976F7D8A9F1FC8&MUID=3F90AE5940E96D3036DFBA3544E966B3 HTTP/1.1
Host: c.office.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forms.office.com/
DNT: 1
Connection: keep-alive
Cookie: SM=T; MUID=3F90AE5940E96D3036DFBA3544E966B3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Fri, 01 Mar 2024 22:54:48 GMT
accept-ranges: bytes
etag: "3e26b762b6cda1:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=C; domain=c.office.com; path=/; SameSite=None; Secure;
MUID=3F90AE5940E96D3036DFBA3544E966B3; domain=.office.com; expires=Tue, 20-May-2025 12:11:53 GMT; path=/; SameSite=None; Secure; Priority=High;
MR=0; domain=c.office.com; expires=Thu, 02-May-2024 12:11:53 GMT; path=/; SameSite=None; Secure;
ANONCHK=0; domain=c.office.com; expires=Thu, 25-Apr-2024 12:21:53 GMT; path=/; SameSite=None; Secure;
date: Thu, 25 Apr 2024 12:11:53 GMT
content-length: 42
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.utel_1ds.c419280.js | 23.36.76.145 | | 32 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.utel_1ds.c419280.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, ASCII text, with very long lines (34041) Hashbebf1245996ff75e1e4464af9ebc7ae3 d1309c30010a611ae6cd3eed08d9c5d366deeb6f feec3269001a82dd131d49fe8536753a81bd0e7e4049aebbeff7ec0a29e341e7
GET /forms/scripts/dists/light-response-page.chunk.utel_1ds.c419280.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 31781
content-type: application/javascript
content-md5: nD0YPrlZe/E4LOff0ugtHA==
last-modified: Tue, 27 Feb 2024 06:18:17 GMT
etag: 0x8DC375BE3175F19
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4d5245d6-a01e-0000-4f48-69a9f9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:53 GMT
date: Thu, 25 Apr 2024 12:11:53 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2 | 13.69.109.130 | | 0 B |
URL eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2 IP13.69.109.130:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2 HTTP/1.1
Host: eu-mobile.events.data.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: apikey,cache-control,client-id,client-version,content-type,time-delta-to-apply-millis,upload-time
Referer: https://forms.office.com/
Origin: https://forms.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, 3600
content-length: 0
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
access-control-allow-credentials: true
access-control-allow-headers: AuthMsaDeviceTicket,AuthXToken,Content-Encoding,Content-Type,Cache-Control,Client-Id,SDK-Name,sdk-version,apikey,x-apikey,client-version,upload-time,time-delta-to-apply-millis,client-time-epoch-millis,persistence-mode,reliability-mode,NoResponseBody
access-control-max-age: 3600
access-control-allow-origin: https://forms.office.com
date: Thu, 25 Apr 2024 12:11:53 GMT
X-Firefox-Spdy: h2
|
|
| eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2 | 13.69.109.130 | | 24 B |
URL eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2 IP13.69.109.130:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash5562a90bba46ae4a7dba099d68f4a42a ac7cf704563b3e32cc67770ea72a3873cc6fc146 afd588d7d1c94d797ef932006d524de973f6fc54556e62f0f340412c87f99d58
POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2 HTTP/1.1
Host: eu-mobile.events.data.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Client-Id: NO_AUTH
client-version: 1DS-Web-JS-3.2.15
apikey: 4e990506778b4d9cbf05300e98315eed-682648e1-a406-45c4-9d5b-709b9899d662-7161
upload-time: 1714047113792
time-delta-to-apply-millis: use-collector-delta
cache-control: no-cache, no-store
content-type: application/x-json-stream
Content-Length: 2762
Origin: https://forms.office.com
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 24
content-type: application/json
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
time-delta-millis: 360
access-control-allow-headers: time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://forms.office.com
access-control-expose-headers: time-delta-millis
date: Thu, 25 Apr 2024 12:11:53 GMT
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_ext.1a824d5.js | 23.36.76.145 | | 109 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_ext.1a824d5.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64406), with no line terminators Size109 kB (109124 bytes) Hasha1d0467ab413a0b1985d8c3d630a8028 d3300419d068ad7bd1409e5056a7ce03e0197309 4c59edf5528765ff6492cbd54944ff0012e397451d4a6c88e61eca41ddcbbaf1
GET /forms/scripts/dists/light-response-page.chunk.lrp_ext.1a824d5.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 109124
content-type: application/javascript
content-md5: S2NceqlMsmhGua29Mj1ogA==
last-modified: Fri, 19 Apr 2024 04:55:55 GMT
etag: 0x8DC602CFF0D9F9D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d5988403-d01e-0040-611b-928017000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:54 GMT
date: Thu, 25 Apr 2024 12:11:54 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_saveresponse.d55661f.js | 23.36.76.145 | | 9.3 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_saveresponse.d55661f.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, ASCII text, with very long lines (32927) Hashf0cdb3df9f62a902efb09a0ac1d2d68e 7b1cbf462c2980ad1bf0773fcb0c543011c54c2c 400353047efe3506297f3d78f8e80c2a5970261e5b79d859ea891652cda7ce0f
GET /forms/scripts/dists/light-response-page.chunk.lrp_saveresponse.d55661f.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 9329
content-type: application/javascript
content-md5: xhnT7YZWe1WDrD1hkiAP4A==
last-modified: Fri, 19 Apr 2024 04:55:55 GMT
etag: 0x8DC602CFF2EB761
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 417ebd74-b01e-0036-2b1b-9204ab000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:54 GMT
date: Thu, 25 Apr 2024 12:11:54 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_cover.5048999.js | 23.36.76.145 | | 18 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_cover.5048999.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hasheee60f90f2f3c34d9d82e85023e6e1ff 7c72581434d1363c018d98d2973a26dc39a1ec02 c12e9d3f8d9cd341da234bd2489050021250aaae03e71a976f6be8ccafb49f50
GET /forms/scripts/dists/light-response-page.chunk.lrp_cover.5048999.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 17468
content-type: application/javascript
content-md5: 6CNO6HcsM3fkuTk8S7N5Xg==
last-modified: Fri, 19 Apr 2024 04:55:55 GMT
etag: 0x8DC602CFEFF97EF
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4ec7ded9-201e-005e-491b-925afa000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:54 GMT
date: Thu, 25 Apr 2024 12:11:54 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_post.boot.026d6dd.js | 23.36.76.145 | | 5.1 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_post.boot.026d6dd.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, ASCII text, with very long lines (15391) Hash179d5ae735600107368e1061965fce47 8a3af19051cb9a27f87ad968e369caeae38e488c 70f39b00bc16ae9556057b4755a30cde25895dbbfca8235347631bcfbc3fcbf8
GET /forms/scripts/dists/light-response-page.chunk.lrp_post.boot.026d6dd.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 5079
content-type: application/javascript
content-md5: N7Anc6NdXOekdR1WpyvHkA==
last-modified: Fri, 19 Apr 2024 04:55:55 GMT
etag: 0x8DC602CFF2DA619
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2da8505f-101e-0019-3c1b-928591000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:54 GMT
date: Thu, 25 Apr 2024 12:11:54 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_groupnote.c2ddab2.js | 23.36.76.145 | | 1.6 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.lrp_groupnote.c2ddab2.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, ASCII text, with very long lines (4357) Hasha03f45850e67d79fdf6f7d06e8548441 cb58f87f8f29c84fb59649d9316659c809aa103e 0aa54d5d1d9e5c96ec4396ca5226c4c5e4e5773f7a6b614c90495d4c6ca7867c
GET /forms/scripts/dists/light-response-page.chunk.lrp_groupnote.c2ddab2.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 1614
content-type: application/javascript
content-md5: Oq1xkgSiwYp4jnFULXMmLQ==
last-modified: Fri, 19 Apr 2024 04:55:55 GMT
etag: 0x8DC602CFF11BDBC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: dc395549-001e-0049-091b-929a99000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:54 GMT
date: Thu, 25 Apr 2024 12:11:54 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.officebrowserfeedback.3b74b9f.js | 23.36.76.145 | | 107 kB |
URL cdn.forms.office.net/forms/scripts/dists/light-response-page.chunk.officebrowserfeedback.3b74b9f.js IP23.36.76.145:0 ASN#20940 Akamai International B.V.
File typeJavaScript source, ASCII text, with very long lines (65381) Size107 kB (107071 bytes) Hash5250d107f128838bb91152183e30c624 efa9377bb54516d2d6d8de6177d685ce00a0f51a 6ef927e682baadfeb9efa7ce2baa49626364281ec74f614c8cd0260c6fc4328e
GET /forms/scripts/dists/light-response-page.chunk.officebrowserfeedback.3b74b9f.js HTTP/1.1
Host: cdn.forms.office.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 107071
content-type: application/javascript
content-md5: 6gIHAjyH33pL5j3/DaNiOg==
last-modified: Mon, 11 Mar 2024 05:08:11 GMT
etag: 0x8DC41893FDD689D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8ba29453-601e-0070-2277-73da3d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
access-control-allow-origin: *
cache-control: max-age=31536000
expires: Fri, 25 Apr 2025 12:11:54 GMT
date: Thu, 25 Apr 2024 12:11:54 GMT
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 | 13.69.109.130 | | 0 B |
URL eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 IP13.69.109.130:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: eu-mobile.events.data.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: apikey,cache-control,client-id,client-version,content-type,time-delta-to-apply-millis,upload-time
Referer: https://forms.office.com/
Origin: https://forms.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, 3600
content-length: 0
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
access-control-allow-credentials: true
access-control-allow-headers: AuthMsaDeviceTicket,AuthXToken,Content-Encoding,Content-Type,Cache-Control,Client-Id,SDK-Name,sdk-version,apikey,x-apikey,client-version,upload-time,time-delta-to-apply-millis,client-time-epoch-millis,persistence-mode,reliability-mode,NoResponseBody
access-control-max-age: 3600
access-control-allow-origin: https://forms.office.com
date: Thu, 25 Apr 2024 12:11:54 GMT
X-Firefox-Spdy: h2
|
|
| eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 | 13.69.109.130 | | 153 B |
URL eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 IP13.69.109.130:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash78406a3082286cb5cb54ff4af05fe56e f5cfa180b3f9541a6598acaa39fda6266fef6af7 9b770b84ffd3d5ba7a1094513f5971303a5085f16a91ea346294b44ac326e742
POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: eu-mobile.events.data.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Client-Id: NO_AUTH
client-version: 1DS-Web-JS-3.2.15
apikey: 2ddc7e5f54754fc68f3ae1c5b7f3eb20-1883aa8c-4c7b-42d1-b3d6-c9cdb5956783-7092
upload-time: 1714047114212
time-delta-to-apply-millis: use-collector-delta
cache-control: no-cache, no-store
content-type: application/x-json-stream
Content-Length: 2707
Origin: https://forms.office.com
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 153
content-type: application/json
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
set-cookie: MC1=GUID=14eeaf18e3cb4ba3ade6a06142d97fcf&HASH=14ee&LV=202404&V=4&LU=1714047114574; Domain=.microsoft.com; Expires=Fri, 25 Apr 2025 12:11:54 GMT; Path=/;Secure; SameSite=None
MS0=0e81977a61534ce3ba7efd27d21f78bf; Domain=.microsoft.com; Expires=Thu, 25 Apr 2024 12:41:54 GMT; Path=/;Secure; SameSite=None
time-delta-millis: 362
access-control-allow-headers: P3P,Set-Cookie,time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://forms.office.com
access-control-expose-headers: time-delta-millis
date: Thu, 25 Apr 2024 12:11:54 GMT
X-Firefox-Spdy: h2
|
|
| eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.15&apikey=2ddc7e5f54754fc68f3ae1c5b7f3eb20-1883aa8c-4c7b-42d1-b3d6-c9cdb5956783-7092&upload-time=1714047114715&time-delta-to-apply-millis=362&w=0&NoResponseBody=true | 13.69.109.130 | | 0 B |
URL eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.15&apikey=2ddc7e5f54754fc68f3ae1c5b7f3eb20-1883aa8c-4c7b-42d1-b3d6-c9cdb5956783-7092&upload-time=1714047114715&time-delta-to-apply-millis=362&w=0&NoResponseBody=true IP13.69.109.130:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.15&apikey=2ddc7e5f54754fc68f3ae1c5b7f3eb20-1883aa8c-4c7b-42d1-b3d6-c9cdb5956783-7092&upload-time=1714047114715&time-delta-to-apply-millis=362&w=0&NoResponseBody=true HTTP/1.1
Host: eu-mobile.events.data.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1468
Origin: https://forms.office.com
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Cookie: MC1=GUID=14eeaf18e3cb4ba3ade6a06142d97fcf&HASH=14ee&LV=202404&V=4&LU=1714047114574; MS0=0e81977a61534ce3ba7efd27d21f78bf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
content-length: 0
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
time-delta-millis: 30
access-control-allow-headers: time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://forms.office.com
access-control-expose-headers: time-delta-millis
date: Thu, 25 Apr 2024 12:11:54 GMT
X-Firefox-Spdy: h2
|
|
| eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.15&apikey=4e990506778b4d9cbf05300e98315eed-682648e1-a406-45c4-9d5b-709b9899d662-7161&upload-time=1714047114717&time-delta-to-apply-millis=360&w=2&NoResponseBody=true | 13.69.109.130 | | 0 B |
URL eu-mobile.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.15&apikey=4e990506778b4d9cbf05300e98315eed-682648e1-a406-45c4-9d5b-709b9899d662-7161&upload-time=1714047114717&time-delta-to-apply-millis=360&w=2&NoResponseBody=true IP13.69.109.130:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.15&apikey=4e990506778b4d9cbf05300e98315eed-682648e1-a406-45c4-9d5b-709b9899d662-7161&upload-time=1714047114717&time-delta-to-apply-millis=360&w=2&NoResponseBody=true HTTP/1.1
Host: eu-mobile.events.data.microsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1783
Origin: https://forms.office.com
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/
Cookie: MC1=GUID=14eeaf18e3cb4ba3ade6a06142d97fcf&HASH=14ee&LV=202404&V=4&LU=1714047114574; MS0=0e81977a61534ce3ba7efd27d21f78bf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
content-length: 0
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
time-delta-millis: 28
access-control-allow-headers: time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://forms.office.com
access-control-expose-headers: time-delta-millis
date: Thu, 25 Apr 2024 12:11:54 GMT
X-Firefox-Spdy: h2
|
|
| login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_aWQ9a09aY1d5ZkJ0a1NfN0MzNW96ZjdzVEJPVllXdi1hUkNqMXBfMEgyOGJrQlVSVFJKVGsxTlMwSklNVTFRVjFsWFZ6UTBTMWRLT0ZCUFJDNHUmc2lkPWExMTUyZjVjLTkwYWMtNGJlZi1hNmQ4LWM1NDRjZWM0NmYxMyIsIi54c3JmIjoiQWE0VTlXeC03Qnc0YTBpa0Y4ZEp4OUduT1VwRjBOaV9GbmJrQ0dTSnpRbk1zLUczdHNsbXl0UlNGeTMxYTVtOXkyWkNjSkZtNE01YWh1Z2RYUW9vOHJTbW5rUlJJM1NjR2dvN25zQWdmMk1mZHBjUlZ6T2tndkltUlM5RlNid1U0ZyIsIk9wZW5JZENvbm5lY3QuQ29kZS5SZWRpcmVjdFVyaSI6IkFYdXNhU3VWcmVKbjFlV1Z0cndhQURyMHFrdDZyUkxkQlhfUndUUjBWQlUwTENZUk4ycGpMUTNGZ2hmbmlsdzdvNjV0RC1aT2FRdzQ3clp0TDk5WHNqeXY5UV9lazdBMW5wZ2dyb0o0UDlWZVRPbEFaYnF6T1V5MUJyQnRoWDA4U0EifX0&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 | 40.126.53.21 | 200 OK | 17 kB |
URL User Request GET HTTP/2login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_aWQ9a09aY1d5ZkJ0a1NfN0MzNW96ZjdzVEJPVllXdi1hUkNqMXBfMEgyOGJrQlVSVFJKVGsxTlMwSklNVTFRVjFsWFZ6UTBTMWRLT0ZCUFJDNHUmc2lkPWExMTUyZjVjLTkwYWMtNGJlZi1hNmQ4LWM1NDRjZWM0NmYxMyIsIi54c3JmIjoiQWE0VTlXeC03Qnc0YTBpa0Y4ZEp4OUduT1VwRjBOaV9GbmJrQ0dTSnpRbk1zLUczdHNsbXl0UlNGeTMxYTVtOXkyWkNjSkZtNE01YWh1Z2RYUW9vOHJTbW5rUlJJM1NjR2dvN25zQWdmMk1mZHBjUlZ6T2tndkltUlM5RlNid1U0ZyIsIk9wZW5JZENvbm5lY3QuQ29kZS5SZWRpcmVjdFVyaSI6IkFYdXNhU3VWcmVKbjFlV1Z0cndhQURyMHFrdDZyUkxkQlhfUndUUjBWQlUwTENZUk4ycGpMUTNGZ2hmbmlsdzdvNjV0RC1aT2FRdzQ3clp0TDk5WHNqeXY5UV9lazdBMW5wZ2dyb0o0UDlWZVRPbEFaYnF6T1V5MUJyQnRoWDA4U0EifX0&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 IP40.126.53.21:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerDigiCert Inc Subjectstamp2.login.microsoftonline.com Fingerprint84:2D:29:9C:5B:D1:CB:50:04:C3:0E:28:1F:1C:78:96:64:FA:B8:64 ValiditySat, 16 Mar 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (30902), with CRLF, LF line terminators Hash462de68c14b6c299bd52f9e033315c98 cbfa60e336e5465369c8d1dd958d8bc2b26d3b0b 08e7bd15ed90a5fe4297270d22602970649a87f0ffd78575adeb0850cfef9b21
GET /organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 HTTP/1.1
Host: login.microsoftonline.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forms.office.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-store, no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: -1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: DENY
link: <https://aadcdn.msftauth.net>; rel=preconnect; crossorigin,<https://aadcdn.msftauth.net>; rel=dns-prefetch,<https://aadcdn.msauth.net>; rel=dns-prefetch
x-dns-prefetch-control: on
p3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: 9eaa326d-245b-4685-9fbd-500d03e68000
x-ms-ests-server: 2.1.17910.10 - FRC ProdSlices
x-ms-clitelem: 1,0,0,,
x-ms-srs: 1.P
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 0
set-cookie: buid=0.AYIAMe_N-B6jSkuT5F9XHpElWtJZpcmrehNPpu3n6cUq7IcBAAA.AQABGgEAAADnfolhJpSnRYB1SVj-Hgd80dy4oWv2ytgV79ouN-fh98plPvbxv6MKoqcKlmUV9xhJ11uhKcqY0WAWzLCH5S7C_PgwOO1IQereavxVon7HGjwnduVALbpV_Etq0fU0YhUgAA; expires=Sat, 25-May-2024 12:11:54 GMT; path=/; secure; HttpOnly; SameSite=None
esctx=PAQABBwEAAADnfolhJpSnRYB1SVj-Hgd8ZifdrLitO2u8dQDdS6H_hHZHy8qyTFqgQfcSSnePHcx_WV3t7LKA_6DDeb_6-ve4hk_7JmCedBdFXBrsMfNxaAGe7fYo7MgUX8rt5Gxdxhx-CpQCyC6EPKf0Ucffy5QoJ_PKw92NPLli49UfG8_1ZM2ttGIsrRRfQnodDONEWw0gAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
esctx-YIkVDYjfrB8=AQABCQEAAADnfolhJpSnRYB1SVj-Hgd8VYvgcbHg5itaZOSw8fQxhWnOFLzBUCgP_tLKwkiIAO-i5nomyDu1tL7X_15RxKCeLx1QPTbsaGjsWqEzeoQ8x8XAPoqnDVe3zosdpwnErwAzWwoCHFL4r_tFnkSqIwL07UHfqUsyjo60fIKRGlsu4yAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
fpc=AnxnIcRPnVlBnhItgCRhb5S3w3mAAQAAAIo_vN0OAAAA; expires=Sat, 25-May-2024 12:11:54 GMT; path=/; secure; HttpOnly; SameSite=None
x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
date: Thu, 25 Apr 2024 12:11:54 GMT
content-length: 16777
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_1ito3russhq-9gioj-zd4w2.css | 152.199.23.37 | 200 OK | 20 kB |
URL GET HTTP/2aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_1ito3russhq-9gioj-zd4w2.css IP152.199.23.37:443
Requested byhttps://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (61177) Hashd62b4edeb512b07abef4688e27ecdde3 981a7825da5e29938ab6fe0cbfe2db622f7b8333 4b01a0a34ce8ed4bc8a8713be0442d49da6a756236b7b4424622ca3dee820f41
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_1ito3russhq-9gioj-zd4w2.css HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 2713940
cache-control: public, max-age=31536000
content-md5: kqhA3D0Xczna4D/t8ioitQ==
content-type: text/css
date: Thu, 25 Apr 2024 12:11:55 GMT
etag: 0x8DC070858CA028D
last-modified: Wed, 27 Dec 2023 18:19:21 GMT
server: ECAcc (ska/F6B1)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: c9a12eea-501e-00aa-105a-7e9255000000
x-ms-version: 2009-09-19
content-length: 20314
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_4aBF4cdky--I3Cpch7JoPw2.js | 152.199.23.37 | 200 OK | 121 kB |
URL GET HTTP/2aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_4aBF4cdky--I3Cpch7JoPw2.js IP152.199.23.37:443
Requested byhttps://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (64616) Size121 kB (121259 bytes) Hashe1a045e1c764cbef88dc2a5c87b2683f 84ef9c034e98d0295af6039028304c9eddb638ca fa449b79237b05bc9cdbedbb7879082ee80f1af5fb423c5e18408b0167a67505
GET /shared/1.0/content/js/ConvergedLogin_PCore_4aBF4cdky--I3Cpch7JoPw2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 1692325
cache-control: public, max-age=31536000
content-md5: Wy47KxpwbAEBtQO3Lwqbbw==
content-type: application/x-javascript
date: Thu, 25 Apr 2024 12:11:55 GMT
etag: 0x8DC55179E1E3E92
last-modified: Fri, 05 Apr 2024 02:25:10 GMT
server: ECAcc (ska/F753)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 065ee833-001e-001f-15a5-87631b000000
x-ms-version: 2009-09-19
content-length: 121259
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_0lriinjhzchre9aqecvmpg2.js | 152.199.23.37 | 200 OK | 16 kB |
URL GET HTTP/2aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_0lriinjhzchre9aqecvmpg2.js IP152.199.23.37:443
Requested byhttps://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (32153) Hashd0bae222726165c1eb13d010782bcc3e 96224469f74a5b6ec8677953bdbce9a880837c8f 1121ca08c71ec80299176c89aec37f6d35f6a77c0d6c2f08ea25f034f057c3a6
GET /ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_0lriinjhzchre9aqecvmpg2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 1922932
cache-control: public, max-age=31536000
content-md5: CY0A6RVMGkhI2gFiBcGc6Q==
content-type: application/x-javascript
date: Thu, 25 Apr 2024 12:11:55 GMT
etag: 0x8DC535BDA2DB838
last-modified: Tue, 02 Apr 2024 21:28:34 GMT
server: ECAcc (ska/F69D)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 117929f8-f01e-0024-0c8c-85671d000000
x-ms-version: 2009-09-19
content-length: 15776
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico | 152.199.23.37 | 200 OK | 17 kB |
URL GET HTTP/2aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico IP152.199.23.37:443
Requested byhttps://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 2713893
cache-control: public, max-age=31536000
content-md5: EuPayFgGHQiAI7K9SOL6lg==
content-type: image/x-icon
date: Thu, 25 Apr 2024 12:11:55 GMT
etag: 0x8D8731240E548EB
last-modified: Sun, 18 Oct 2020 03:02:30 GMT
server: ECAcc (ska/F738)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 582df77a-301e-0028-1b5a-7e9304000000
x-ms-version: 2009-09-19
content-length: 17174
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_8e14dcf0e3ff5580d170.js | 152.199.23.37 | 200 OK | 54 kB |
URL GET HTTP/2aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_8e14dcf0e3ff5580d170.js IP152.199.23.37:443
Requested byhttps://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (43896) Hash764e526cef65c9f062bb8e83d8ebce0b f5166f7b003cbe1b171be88aa65d2e3fd2331366 474ce0790ceb18a100cebaf1ac0915a51389fcae0830c3b44bfa1e365d40b2b4
GET /shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_8e14dcf0e3ff5580d170.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 1922931
cache-control: public, max-age=31536000
content-md5: P5ihddUjL2Zb7/wjNS1xdg==
content-type: application/x-javascript
date: Thu, 25 Apr 2024 12:11:55 GMT
etag: 0x8DC4F6D50F3D2E7
last-modified: Thu, 28 Mar 2024 21:23:30 GMT
server: ECAcc (ska/F6B4)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 6b545ed1-c01e-00c3-578c-85a364000000
x-ms-version: 2009-09-19
content-length: 54318
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg | 152.199.23.37 | 200 OK | 673 B |
URL GET HTTP/2aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg IP152.199.23.37:443
Requested byhttps://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashbc3d32a696895f78c19df6c717586a5d 9191cb156a30a3ed79c44c0a16c95159e8ff689d 0e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68
GET /shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 2713931
cache-control: public, max-age=31536000
content-md5: DhdidjYrlCeaRJJRG/y9mA==
content-type: image/svg+xml
date: Thu, 25 Apr 2024 12:11:55 GMT
etag: 0x8DB5C3F466DE917
last-modified: Wed, 24 May 2023 10:11:43 GMT
server: ECAcc (ska/F78F)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 2398d371-701e-0078-265a-7ef037000000
x-ms-version: 2009-09-19
content-length: 673
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg | 152.199.23.37 | 200 OK | 1.4 kB |
URL GET HTTP/2aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg IP152.199.23.37:443
Requested byhttps://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_aWQ9a09aY1d5ZkJ0a1NfN0MzNW96ZjdzVEJPVllXdi1hUkNqMXBfMEgyOGJrQlVSVFJKVGsxTlMwSklNVTFRVjFsWFZ6UTBTMWRLT0ZCUFJDNHUmc2lkPWExMTUyZjVjLTkwYWMtNGJlZi1hNmQ4LWM1NDRjZWM0NmYxMyIsIi54c3JmIjoiQWE0VTlXeC03Qnc0YTBpa0Y4ZEp4OUduT1VwRjBOaV9GbmJrQ0dTSnpRbk1zLUczdHNsbXl0UlNGeTMxYTVtOXkyWkNjSkZtNE01YWh1Z2RYUW9vOHJTbW5rUlJJM1NjR2dvN25zQWdmMk1mZHBjUlZ6T2tndkltUlM5RlNid1U0ZyIsIk9wZW5JZENvbm5lY3QuQ29kZS5SZWRpcmVjdFVyaSI6IkFYdXNhU3VWcmVKbjFlV1Z0cndhQURyMHFrdDZyUkxkQlhfUndUUjBWQlUwTENZUk4ycGpMUTNGZ2hmbmlsdzdvNjV0RC1aT2FRdzQ3clp0TDk5WHNqeXY5UV9lazdBMW5wZ2dyb0o0UDlWZVRPbEFaYnF6T1V5MUJyQnRoWDA4U0EifX0&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashee5c8d9fb6248c938fd0dc19370e90bd d01a22720918b781338b5bbf9202b241a5f99ee4 04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a
GET /shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 2713949
cache-control: public, max-age=31536000
content-md5: nzaLxFgP7ZB3dfMcaybWzw==
content-type: image/svg+xml
date: Thu, 25 Apr 2024 12:11:55 GMT
etag: 0x8DB5C3F495F4B8C
last-modified: Wed, 24 May 2023 10:11:48 GMT
server: ECAcc (ska/F7A1)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 8e43f2c2-901e-0066-025a-7ee208000000
x-ms-version: 2009-09-19
content-length: 1435
X-Firefox-Spdy: h2
|
|
| login.live.com/Me.htm?v=3 | 40.126.53.19 | 200 OK | 1.1 kB |
URL GET HTTP/1.1login.live.com/Me.htm?v=3 IP40.126.53.19:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 CertificateIssuerDigiCert Inc Subjectlogin.live.com Fingerprint82:2F:20:E4:BD:99:37:36:52:F8:AF:FC:4D:86:73:BA:3A:7A:65:3E ValidityFri, 29 Mar 2024 00:00:00 GMT - Sat, 29 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (2345), with CRLF line terminators Hashe86ef8b6111e5fb1d1665bcdc90888c9 994bf7651cb967cd9053056af2d69acb74db7f29 3410242720de50b090d07a23aee2dad879b31d36f2615732962ec4cfa8a9d458
GET /Me.htm?v=3 HTTP/1.1
Host: login.live.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=315360000
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 23 Apr 2034 12:11:55 GMT
Vary: Accept-Encoding
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Referrer-Policy: strict-origin-when-cross-origin
x-ms-route-info: C533_BL2
x-ms-request-id: 30f12366-c24c-4943-a4b0-3338e78a01c0
PPServer: PPV: 30 H: BL02EPF0001D8B3 V: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Set-Cookie: uaid=d12b8a0903864c09bec54dd17ae01abf; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
MSPRequ=id=N<=1714047115&co=1; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
Date: Thu, 25 Apr 2024 12:11:55 GMT
Content-Length: 1132
|
|
| aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pstringcustomizationhelper_ea3e62a2bdfb2b2ee8c8.js | 152.199.23.37 | 200 OK | 36 kB |
URL GET HTTP/2aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pstringcustomizationhelper_ea3e62a2bdfb2b2ee8c8.js IP152.199.23.37:443
Requested byhttps://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (64612) Hashb6783c7717e4042517138d9c9a48c867 7a7d6b0f36c2a3b557f1a75461630d433e5f4942 4be11c075187615adaf493d54cb7b05556e76806aed2b3b082d72952d0025be5
GET /shared/1.0/content/js/asyncchunk/convergedlogin_pstringcustomizationhelper_ea3e62a2bdfb2b2ee8c8.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 1920399
cache-control: public, max-age=31536000
content-md5: /PcUcu/J5hSxDf1JmAX3KQ==
content-type: application/x-javascript
date: Thu, 25 Apr 2024 12:11:55 GMT
etag: 0x8DC4F6D5254E400
last-modified: Thu, 28 Mar 2024 21:23:33 GMT
server: ECAcc (ska/F76C)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 0f87f76a-601e-004d-5992-85562c000000
x-ms-version: 2009-09-19
content-length: 35807
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg | 152.199.23.37 | 200 OK | 621 B |
URL GET HTTP/2aadcdn.msftauth.net/shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg IP152.199.23.37:443
Requested byhttps://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0 CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash4e48046ce74f4b89d45037c90576bfac 4a41b3b51ed787f7b33294202da72220c7cd2c32 8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93
GET /shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 2713842
cache-control: public, max-age=31536000
content-md5: R2FAVxfpONfnQAuxVxXbHg==
content-type: image/svg+xml
date: Thu, 25 Apr 2024 12:11:55 GMT
etag: 0x8DB5C3F4BB4F03C
last-modified: Wed, 24 May 2023 10:11:52 GMT
server: ECAcc (ska/F744)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: fbf6acfe-401e-00a3-305b-7ee146000000
x-ms-version: 2009-09-19
content-length: 621
X-Firefox-Spdy: h2
|
|
| forms.office.com/oidcLogin?IdentityProvider=aad&ru=https%3A%2F%2Fforms.office.com%2Fpages%2Fresponsepage.aspx%3Fid%3DkOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u%26sid%3Da1152f5c-90ac-4bef-a6d8-c544cec46f13 | 13.107.6.194 | 302 Found | 3.4 kB |
URL User Request GET HTTP/2forms.office.com/oidcLogin?IdentityProvider=aad&ru=https%3A%2F%2Fforms.office.com%2Fpages%2Fresponsepage.aspx%3Fid%3DkOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u%26sid%3Da1152f5c-90ac-4bef-a6d8-c544cec46f13 IP13.107.6.194:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerMicrosoft Corporation Subjectforms.cloud.microsoft FingerprintFC:81:06:E8:32:38:D4:40:B0:BD:B8:9D:70:45:AD:98:F5:38:01:D0 ValidityMon, 01 Apr 2024 10:16:02 GMT - Thu, 27 Mar 2025 10:16:02 GMT
Hash617ed40f2d1ded39cf101190bcd02813 a512cc455ce5fe791f58faaff423dae9c208e196 4b031f80bd87d8bc4858096a569ab48d00a6a15f17f76a4a58c39d4e2ff6575b
GET /oidcLogin?IdentityProvider=aad&ru=https%3A%2F%2Fforms.office.com%2Fpages%2Fresponsepage.aspx%3Fid%3DkOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u%26sid%3Da1152f5c-90ac-4bef-a6d8-c544cec46f13 HTTP/1.1
Host: forms.office.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forms.office.com/pages/responsepage.aspx?id=kOZcWyfBtkS_7C35ozf7sTBOVYWv-aRCj1p_0H28bkBURTRJTk1NS0JIMU1QV1lXVzQ0S1dKOFBPRC4u
Cookie: FormsWebSessionId=f205dab3-df73-4aed-a80d-79051a1446a2; __RequestVerificationToken=WlrjvCeYVrDqx1EUJAf1UwWg8ZCXxu28CnO2u6vJwr21pY6ZIsZt6BhX9OfrotAPfZosqDNfvZAKpyixufspxMxmKFjRCg3ZzdxXcwC5M0A1; MUID=3F90AE5940E96D3036DFBA3544E966B3
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-encoding: br
location: https://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c9a559d2-7aab-4f13-a6ed-e7e9c52aec87&redirect_uri=https%3A%2F%2Fforms.office.com%2Flanding&state=eyJ2ZXJzaW9uIjoxLCJkYXRhIjp7IklkZW50aXR5UHJvdmlkZXIiOiJBZG9iZE0zRmItYnRUTzc1MjhUMlFIdzB0ODFPcEczVlhENTg2UDJnNFFPbmUwUng0ZkR0TXFhSzluYTNtLTNoUE9xZXdnZWNBM2NWd0xaM09fbERPWE0iLCIucmVkaXJlY3QiOiJodHRwczovL2Zvcm1zLm9mZmljZS5jb20vcGFnZXMvcmVzcG9uc2VwYWdlLmFzcHg_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&response_type=code%20id_token&scope=openid%20profile&response_mode=form_post&nonce=638496439147449637.YzMzN2Y3YzUtYjgyMC00MGM2LTk0YjAtNjBhNTg4YmNmYjJjNzk3MzQyOWQtNWM2YS00NWViLTllMjMtOTcwOTAxYjA0YTJl&msafed=0&x-client-SKU=ID_NET8_0&x-client-ver=7.2.0.0
vary: Accept-Encoding
set-cookie: .AspNetCore.OpenIdConnect.Nonce.Aart4WmqOe9fI7k38-uSN-su95_-v0puruBKUczUl7jdn8WEWmiHYnKA-z72U_BVVmkG_PUeF2tTTujyLFwhu98CTMZK3DVRhyeZeXHWH6JSr0qneFf3XIiZiarGXk61A5AwBC-unGZPRwin3xcLR3PXWd9c2-Hfn-3WQilvXYnozs5BDv8dXHDmB3pX9GBgvuqQBWY3d8FSKAn8ypHQZzV11SnhKmH6Ig8gsqRvn4Zk=N; expires=Thu, 25 Apr 2024 12:26:54 GMT; path=/; samesite=none; secure; samesite=none; httponly
.AspNetCore.Correlation.0R0GjIZbJpxEwhN6Sc2Itu0zSmpB633dcVVo64sQujA=N; expires=Thu, 25 Apr 2024 12:26:54 GMT; path=/; samesite=none; secure; samesite=none; httponly
strict-transport-security: max-age=2592000; includeSubDomains
x-routingofficecluster: frc-100.forms.office.com
x-routingofficefe: FormsSingleBox_IN_11
x-routingofficeversion: 16.0.17621.42051
x-routingsessionid: ddc55791-266e-4d95-b8cc-e21bd5194a3e
x-routingcorrelationid: a4e7819d-9247-412a-894a-6117bd7e2f31
x-correlationid: a4e7819d-9247-412a-894a-6117bd7e2f31
x-officecluster: frc-101.forms.office.com
x-officefe: FormsSingleBox_IN_10
x-officeversion: 16.0.17621.42051
x-usersessionid: ddc55791-266e-4d95-b8cc-e21bd5194a3e
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 4E8AAEA63FC947CA9C356E0752059B23 Ref B: SVG20EDGE0218 Ref C: 2024-04-25T12:11:54Z
date: Thu, 25 Apr 2024 12:11:54 GMT
X-Firefox-Spdy: h2
|
|