Report - autodiscover.hhls.com.au/

Report Overview

Submitted URL
autodiscover.hhls.com.au/
IP
40.99.215.104
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2022-09-27 16:15:52
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
autodiscover.hhls.com.au	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	344 B	530 B	40.99.215.24
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.161.231.36
login.microsoftonline.com	25	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	17 kB	40.126.32.75
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	63 kB	34.120.237.76
r4.res.office365.com	180	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	706 kB	23.38.200.227
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
outlook.office365.com	51	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	962 B	9.8 kB	40.99.202.18
aadcdn.msftauth.net	1455	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.0 kB	290 kB	152.199.23.37

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-27	medium	autodiscover.hhls.com.au/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw	4.0 kB	2023-03-08	2023-03-08
Pretty URL login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw IP 40.126.32.75 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:16:52 Last Seen2023-03-08 05:15:48 Times Seen1 Hash e43b3bf0b9eafc5b96c39e5c0277e50c d64f9165d1c30701b1af93aba46f65f2c2c96cc7 2c5a5ef54f7fbb8a40947ef76afb3661b4fd569883285571d9b93a9f2f96438a Loading...

	aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_6b8fffaf21337fcc3970.js	110 kB	2023-03-07	2023-03-17
Pretty URL aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_6b8fffaf21337fcc3970.js IP 152.199.23.37 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:31 Last Seen2023-03-17 12:52:30 Times Seen1 Hash e4437324c30902869ffee9646eebea7c 4b4cc2b7f1b5a31378f43014723ff12e14397b68 c3884c02996923d5be8f0150d8e407562f87fb48d034080740d899682967bb3f Loading...

	outlook.office365.com/owa/prefetch.aspx	1.9 kB	2023-03-07	2023-03-08
Pretty URL outlook.office365.com/owa/prefetch.aspx IP 52.97.230.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:28:33 Last Seen2023-03-08 02:34:57 Times Seen1 Hash 65696a8fec47ba467e7cbfab032dc138 fe1ca07d5a4dd1e4d5c6d785b04638c0b794143d 0c5768104e5383776aa285beefefe0d5248bc74e97c0ba713844d28f06ee782e Loading...

	login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw	12 kB	2023-03-07	2024-02-08
Pretty URL login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw IP 40.126.32.75 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2024-02-08 12:27:13 Times Seen15 Hash 410ff206162d68e386b10f478a49631f 2e8dc5e02a31a906ba77a4d48822ca4415c652e6 f731e662470f7d40cf6e0a2be8e0e374398fb631434d849199db1d12278dca94 Loading...

	aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_ZuzZ0B9zaPr4yfAbYf7RGA2.js	392 kB	2023-03-07	2023-03-10
Pretty URL aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_ZuzZ0B9zaPr4yfAbYf7RGA2.js IP 152.199.23.37 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:28:38 Last Seen2023-03-10 11:30:49 Times Seen1 Hash 66ecd9d01f7368faf8c9f01b61fed118 76cb5da79ad2abd88ac0505dd43ce56bd8cb22f4 c1bf2d5549e6a44c730848d6516b15027a1bcd945d3873b5a59c9b0328594d10 Loading...

	aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_dcseeolyp_bhtl1lcmdobw2.js	47 kB	2023-03-08	2023-03-08
Pretty URL aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_dcseeolyp_bhtl1lcmdobw2.js IP 152.199.23.37 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:16:52 Last Seen2023-03-08 09:13:39 Times Seen1 Hash 0dcb1e1282d83ff6e1b4bd650a60e86f 39b44d06309cfe88461003371f005ded60f3a705 ea2d684e4d30b57849418c8b161584c7b23245d851b76a2e5f26199175f44c38 Loading...

	login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw	351 B	2023-03-07	2024-03-18
Pretty URL login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw IP 40.126.32.75 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2024-03-18 15:59:31 Times Seen794 Hash 3c890f9b92423da2c3f6b98940e0f56f 69f72e87d6ddff7e2364230bb8d43c6f6b16a877 1a7ba79dac10aad7ef63eec3424d65c21881436cb7f5b44ba394268ed695d34d Loading...

	login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw	19 kB	2023-03-08	2023-03-08
Pretty URL login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw IP 40.126.32.75 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:34:57 Last Seen2023-03-08 02:34:57 Times Seen1 Hash 99204bc9165977c4f4196c28f24b181f 64c02ad5b08bd9f74cb1a3fc0fe730602068378e 02849530685277f5b590ed59b9b5fc810d5cc098bd051681f481bf957493cde5 Loading...

	login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw	35 B	2023-03-07	2024-04-18
Pretty URL login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw IP 40.126.32.75 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2024-04-18 01:39:46 Times Seen46871 Hash 2badc56bc4d494e70d476b2e4efd31da 384c5f0842cd2f786b0acc4cb159b75ad3620d46 8684cc6fc8b42cd798a7e1416fda8af6cea601dca2ecd3a253acfd9649f58fcb Loading...

	aadcdn.msftauth.net/shared/1.0/content/js/oneDs_8363475333f6d315e7ae.js	83 kB	2023-03-07	2023-07-25
Pretty URL aadcdn.msftauth.net/shared/1.0/content/js/oneDs_8363475333f6d315e7ae.js IP 152.199.23.37 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2023-07-25 21:18:34 Times Seen11 Hash 3b576a85ea7836d6b151d01523bb6e52 c33f089e6cade1dfff94dc39f84adc54050c8dab 4cc1914204beca4a34eac1ed055f49f42ad77f143d97271fafa00e4810383fef Loading...

HTTP Transactions (41)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3637
Expires: Tue, 27 Sep 2022 17:16:18 GMT
Date: Tue, 27 Sep 2022 16:15:41 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 15:31:00 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: v2dwqu_8uw1TVCva1B4z82FVt2OclFRD-mijUbSTGa5v-SjLuo7bSQ==
Age: 2681

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eMLeqNFJzYxU3h_DhnFfFPIXzInsKptZP1PX8WaKJ9tHOOalH9q9cQ==
age: 24688
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 16:15:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

autodiscover.hhls.com.au/

40.99.215.24

301 Moved Permanently

0 B

URL HTTP/1.1
autodiscover.hhls.com.au/
IP
40.99.215.24:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: autodiscover.hhls.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache
Pragma: no-cache
Location: https://outlook.office365.com/owa/?realm=hhls.com.au&vd=autodiscover
Server: Microsoft-IIS/10.0
request-id: ff0202be-b9d1-e32b-0c47-7360e9e95691
X-RequestId: 42f9fc06-28df-4e5e-b50d-d805ebb43be4
X-FEProxyInfo: OS6P279CA0154.NORP279.PROD.OUTLOOK.COM
X-FEEFZInfo: OSL
MS-CV: vgIC/9G5K+MMR3Ng6elWkQ.0
X-Powered-By: ASP.NET
X-FEServer: OS6P279CA0154, OS6P279CA0154
Date: Tue, 27 Sep 2022 16:15:40 GMT
Connection: close
Content-Length: 0

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 16:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 16:47:56 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -47ZT17gJHC_s7PBRNLuXX7P5zTOf6kJY8prOLFbRVdplKBEoFnH8Q==
Age: 295

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5599
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:15:42 GMT
Last-Modified: Tue, 27 Sep 2022 14:42:23 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

outlook.office365.com/owa/?realm=hhls.com.au&vd=autodiscover

40.99.202.18

302

860 B

URL HTTP/1.1
outlook.office365.com/owa/?realm=hhls.com.au&vd=autodiscover
IP
40.99.202.18:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (788), with CRLF line terminators
Size
860 B (860 bytes)
Hash
e85ab4881778f1dd0888a962a519a275
2d668171899475eba182be75090caa2d22e1dfc3
9bf2f1d931a35b9d94c398c3bfd5c266afa77b41ca44b1a3eea890b7ea35fb7b

HTTP Headers

GET /owa/?realm=hhls.com.au&vd=autodiscover HTTP/1.1
Host: outlook.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 
Content-Length: 860
Content-Type: text/html; charset=utf-8
Location: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw
Server: Microsoft-IIS/10.0
request-id: 335a41ff-c70a-f725-99d6-f7d263b7f347
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Alt-Svc: h3=":443",h3-29=":443"
X-CalculatedBETarget: OLAP279MB0037.NORP279.PROD.OUTLOOK.COM
X-BackEndHttpStatus: 302
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Set-Cookie: ClientId=86A8ADA195294B019066ECC6C7D2D036; expires=Wed, 27-Sep-2023 16:15:42 GMT; path=/;SameSite=None; secure
ClientId=86A8ADA195294B019066ECC6C7D2D036; expires=Wed, 27-Sep-2023 16:15:42 GMT; path=/;SameSite=None; secure
OIDC=1; expires=Mon, 27-Mar-2023 16:15:42 GMT; path=/;SameSite=None; secure; HttpOnly
domainName=hhls.com.au; path=/;SameSite=None; secure; HttpOnly
RoutingKeyCookie=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.token.v1=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.token.v1=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.id_token.v1=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.code.v1=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.idp_nonce.v1=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.idp_correlation_id=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.tokenPostPath=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.id_token.v1=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.code.v1=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.idp_nonce.v1=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.idp_correlation_id=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.tokenPostPath=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.nonce.v3.HIYhH9QWPpxr6u8KywmIvFTsuzPgTSU4NgmvUOfMLsk=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0; expires=Tue, 27-Sep-2022 17:15:42 GMT; path=/;SameSite=None; secure; HttpOnly
HostSwitchPrg=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OptInPrg=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
SuiteServiceProxyKey=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
ClientId=86A8ADA195294B019066ECC6C7D2D036; expires=Wed, 27-Sep-2023 16:15:42 GMT; path=/;SameSite=None; secure
OIDC=1; expires=Mon, 27-Mar-2023 16:15:42 GMT; path=/;SameSite=None; secure; HttpOnly
domainName=hhls.com.au; path=/;SameSite=None; secure; HttpOnly
RoutingKeyCookie=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.token.v1=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.token.v1=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.id_token.v1=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.code.v1=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.idp_nonce.v1=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.idp_correlation_id=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.tokenPostPath=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.id_token.v1=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.code.v1=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.idp_nonce.v1=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.idp_correlation_id=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.tokenPostPath=; domain=outlook.office365.com; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OpenIdConnect.nonce.v3.HIYhH9QWPpxr6u8KywmIvFTsuzPgTSU4NgmvUOfMLsk=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0; expires=Tue, 27-Sep-2022 17:15:42 GMT; path=/;SameSite=None; secure; HttpOnly
HostSwitchPrg=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
OptInPrg=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
SuiteServiceProxyKey=; expires=Sun, 27-Sep-1992 16:15:42 GMT; path=/; secure
X-OWA-RedirectHistory=ArLym14Bk3-QhqOg2gg; expires=Tue, 27-Sep-2022 22:17:42 GMT; path=/;SameSite=None; secure; HttpOnly
X-RUM-Validated: 1
X-Content-Type-Options: nosniff
X-BeSku: WCS6
X-OWA-DiagnosticsInfo: 1;0;0
X-IIDs: 0
X-BackEnd-Begin: 2022-09-27T16:15:42.407
X-BackEnd-End: 2022-09-27T16:15:42.407
X-DiagInfo: OLAP279MB0037
X-BEServer: OLAP279MB0037
X-UA-Compatible: IE=EmulateIE7
X-Proxy-RoutingCorrectness: 1
Report-To: {"group":"NelOfficeUpload1","max_age":7200,"endpoints":[{"url":"https://exo.nel.measure.office.net/api/report?TenantId=&FrontEnd=Cafe&DestinationEndpoint=OSL"}],"include_subdomains":true}
NEL: {"report_to":"NelOfficeUpload1","max_age":7200,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
X-Proxy-BackendServerStatus: 302
X-FirstHopCafeEFZ: OSL
X-FEProxyInfo: OS6P279CA0053.NORP279.PROD.OUTLOOK.COM
X-FEEFZInfo: OSL
X-FEServer: OS6P279CA0053
Date: Tue, 27 Sep 2022 16:15:41 GMT

push.services.mozilla.com/

35.161.231.36

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.231.36:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bhuhwUWW7QM8hlethcky8Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Dvdo2Y8fpHzhXKbfSEzVqQyKFk4=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9963
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 16:15:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9963
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 16:15:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9963
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 16:15:43 GMT
Connection: keep-alive

login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw

40.126.32.75

200 OK

15 kB

URL HTTP/1.1
login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw
IP
40.126.32.75:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (19412), with CRLF, LF line terminators
Size
15 kB (14943 bytes)
Hash
f6e91b2a2ba37e1d16b6050ed3840e43
f18ecb16682b5fc5ad3a50d39c121ee168865574
b1cbd38b1e724c1b708e229131bf6b1a226ca10082dd6796f3786ca5dbefdf22

HTTP Headers

GET /common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=335a41ff-c70a-f725-99d6-f7d263b7f347&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=hhls.com.au&nonce=637998921424076691.ba19e2df-b7cc-43a8-a5b1-12dd940430e0&state=DctJDsMgDEBRaO_SriA2uBAvop7FDFUqJULK1OuXxfu7r5VS9-7WaehRMfjIPLJDcgQxBEabBLm68jEp5mzIy2jkldCgK4UJyEMF3d_n0H4yvLcqyzrN87Lb3FYr5-Mqk5xHK989t6tufw HTTP/1.1
Host: login.microsoftonline.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: brcap=0; MSFPC=GUID=27491a5fca0c436896bdbf20a1588da0&HASH=2749&LV=202205&V=4&LU=1652883922743; ESTSSSOTILES=1; AADSSOTILES=1; buid=0.AXYAwElNXNy74kOTfazjKAQLabMm74LteRdNoEGfZeRHGdR2AAA.AQABAAEAAAD--DLA3VO7QrddgJg7WevrEGW7cORZMdyRHkBetXWFI2d0-w5FQvClGXdoAfLDoYoW8GYaBRrBzXaRiW6rYcBeDel6KeXvgrirUAcFKWJVcXetPjI5_z04eK5deppkgt4gAA; fpc=Av8v8IeOJf9DhAyEy9fFI1f1SJQMAQAAAN8VxdoOAAAA; clrc={%2219263%22%3a[%22+SjF/0ga%22%2c%22A5iyJsrm%22]}
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Link: <https://aadcdn.msftauth.net>; rel=preconnect; crossorigin, <https://aadcdn.msftauth.net>; rel=dns-prefetch, <https://aadcdn.msauth.net>; rel=dns-prefetch
X-DNS-Prefetch-Control: on
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: 0cd72c85-9e23-4313-8658-9801bdffc300
x-ms-ests-server: 2.1.13777.5 - WUS2 ProdSlices
Referrer-Policy: strict-origin-when-cross-origin
X-XSS-Protection: 0
Set-Cookie: buid=0.AXYAwElNXNy74kOTfazjKAQLabMm74LteRdNoEGfZeRHGdR2AAA.AQABAAEAAAD--DLA3VO7QrddgJg7WevrFKUUi46BCfmUzUJMSvMuxyOxirT8ViVeh34rw7KfkIzf3faWQi_NCzS-5gwmDGzySmOZTQpeVhUuadyBX2VHAAvAE5xIEneSktM3ZGqHh6ggAA; expires=Thu, 27-Oct-2022 16:15:43 GMT; path=/; secure; HttpOnly; SameSite=None
fpc=Av8v8IeOJf9DhAyEy9fFI1f1SJQMAQAAAN8VxdoOAAAAnqzkyQEAAACtGMXaDgAAAA; expires=Thu, 27-Oct-2022 16:15:43 GMT; path=/; secure; HttpOnly; SameSite=None
esctx=AQABAAAAAAD--DLA3VO7QrddgJg7WevrI_ERDyathDrLKGdM4AVxC-jxFj0m1BwHlJjUJh61-Td1lRj5G0nOO4IJC5XmzbBRy2V1iwdtu3Mn-W8IPuFmesAoT7Oqj_0TaiLOjASpJDIzLXU2-q1pjDdo1hXgkAF-jqjSxGwwEGf7vYwUD12DwicilWB92QsS53RHR7Vd8BxdvE8RV6MrBMT3eqiEdmOiNo6F5v0CsfsOkAh5G0m12ogzVgyCGHW1_osLt0mMDKEgAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
Date: Tue, 27 Sep 2022 16:15:43 GMT
Content-Length: 14943

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9963
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 16:15:43 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10318 bytes)
Hash
a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:02:24 GMT
age: 69199
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7455 bytes)
Hash
5274e770cb5a704916c8965659709f4a
1a26007f761e439db575fb80fb403031260aecf4
e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vx-yM_jeJvOaa1UizK5OoDJFkvKnajg2ezLF2l2qnN_OhdTE6I4taQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:55 GMT
etag: "1a26007f761e439db575fb80fb403031260aecf4"
content-type: image/jpeg
age: 54588
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10211 bytes)
Hash
347dca206e13a3b13953f0ab398310b4
be60bbc96c832ae385cc9ae5828bd32703011b21
f6da888a54a0c6c73466f2c2a72dd875514a39d81b760a6b0116b4dd56ef31dd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10211
x-amzn-requestid: 3ea4ac84-2465-4bd1-8ade-863de3c9576e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSuGoQoAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145aa-7843b82728ead9a053c689d1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MMrek5LO9ukZjB6VV-5McuE_maDzwTOihucz0kwxuaTJMNOpTchoJA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:52:00 GMT
age: 66223
etag: "be60bbc96c832ae385cc9ae5828bd32703011b21"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9163 bytes)
Hash
deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 66385
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13213 bytes)
Hash
62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:42:47 GMT
age: 66776
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6390 bytes)
Hash
14218a43c5e5bbce546735a780c8ccce
61676358cdbb2373bc644e66f8a84fbc8cc5daf6
905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:25:52 GMT
age: 53391
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css

152.199.23.37

200 OK

20 kB

URL HTTP/2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (61177)
Size
20 kB (19970 bytes)
Hash
f4adbf9c60a3ef95809a6008f6764d08
b55c98c403b111b494c1ece263dc06eabc0ab075
6a59a4f890ea26ef050b83d0722aafc3ad70ddbce706806381c4f159a5db7497

HTTP Headers

GET /ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 4575206
cache-control: public, max-age=31536000
content-md5: 9K2/nGCj75WAmmAI9nZNCA==
content-type: text/css
date: Tue, 27 Sep 2022 16:15:43 GMT
etag: 0x8DA7650B375AC9B
last-modified: Thu, 04 Aug 2022 19:37:00 GMT
server: ECAcc (ska/F7A0)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 5ecbd986-101e-0042-39ef-a82f4a000000
x-ms-version: 2009-09-19
content-length: 19970
X-Firefox-Spdy: h2

aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_ZuzZ0B9zaPr4yfAbYf7RGA2.js

152.199.23.37

200 OK

111 kB

URL HTTP/2
aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_ZuzZ0B9zaPr4yfAbYf7RGA2.js
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (64616)
Size
111 kB (111355 bytes)
Hash
25fafbc9bcfe9b49cdbf3ff4f2ee2bd5
76793da44af29d7e757fa9fa926dd35b2dd569a0
9a34deb91b46c14026d377ae47e7d87d5ac2c6ac9cdddc4e24ab298610e0aa62

HTTP Headers

GET /shared/1.0/content/js/ConvergedLogin_PCore_ZuzZ0B9zaPr4yfAbYf7RGA2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 1972043
cache-control: public, max-age=31536000
content-md5: Jfr7ybz+m0nNvz/08u4r1Q==
content-type: application/x-javascript
date: Tue, 27 Sep 2022 16:15:43 GMT
etag: 0x8DA8D3CCA238076
last-modified: Fri, 02 Sep 2022 23:42:25 GMT
server: ECAcc (ska/F74C)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 756f932b-b01e-0010-099c-c061ad000000
x-ms-version: 2009-09-19
content-length: 111355
X-Firefox-Spdy: h2

aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_dcseeolyp_bhtl1lcmdobw2.js

152.199.23.37

200 OK

14 kB

URL HTTP/2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_dcseeolyp_bhtl1lcmdobw2.js
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
Unicode text, UTF-8 text, with very long lines (32021)
Size
14 kB (13605 bytes)
Hash
27d5c62bb9976ad238170067974cd1d4
e2385d2173597c82ffbdf9551f0cbef321799b09
68d960604f379395e41221aa3aac803f32f816b969d9ffb1e5e3ad2279349d5d

HTTP Headers

GET /ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_dcseeolyp_bhtl1lcmdobw2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 1971836
cache-control: public, max-age=31536000
content-md5: J9XGK7mXatI4FwBnl0zR1A==
content-type: application/x-javascript
date: Tue, 27 Sep 2022 16:15:43 GMT
etag: 0x8DA8D528A0B1219
last-modified: Sat, 03 Sep 2022 02:18:06 GMT
server: ECAcc (ska/F7A5)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 71c221b4-701e-009d-369d-c0ab66000000
x-ms-version: 2009-09-19
content-length: 13605
X-Firefox-Spdy: h2

aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico

152.199.23.37

200 OK

17 kB

URL HTTP/2
aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Size
17 kB (17174 bytes)
Hash
12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21

HTTP Headers

GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 10330835
cache-control: public, max-age=31536000
content-md5: EuPayFgGHQiAI7K9SOL6lg==
content-type: image/x-icon
date: Tue, 27 Sep 2022 16:15:43 GMT
etag: 0x8D8731240E548EB
last-modified: Sun, 18 Oct 2020 03:02:30 GMT
server: ECAcc (ska/F738)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 99c0ded5-501e-0046-2297-74c4e6000000
x-ms-version: 2009-09-19
content-length: 17174
X-Firefox-Spdy: h2

aadcdn.msftauth.net/shared/1.0/content/js/oneDs_8363475333f6d315e7ae.js

152.199.23.37

200 OK

28 kB

URL HTTP/2
aadcdn.msftauth.net/shared/1.0/content/js/oneDs_8363475333f6d315e7ae.js
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (50743)
Size
28 kB (27455 bytes)
Hash
530ae07e9185febe894944333177c2d0
2d0e5eedda15b30f5e3073585c06413c16c9d8f0
5f72e36383a1631030682d0cacf5538fd4008c5349cd0f12c4b6991c402b0840

HTTP Headers

GET /shared/1.0/content/js/oneDs_8363475333f6d315e7ae.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 9738131
cache-control: public, max-age=31536000
content-md5: UwrgfpGF/r6JSUQzMXfC0A==
content-type: application/x-javascript
date: Tue, 27 Sep 2022 16:15:44 GMT
etag: 0x8DA45C8D2C0933B
last-modified: Sat, 04 Jun 2022 01:23:25 GMT
server: ECAcc (ska/F68D)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: b60845a5-a01e-001c-54fb-79ad2e000000
x-ms-version: 2009-09-19
content-length: 27455
X-Firefox-Spdy: h2

outlook.office365.com/owa/prefetch.aspx

52.97.230.146

200 OK

1.2 kB

URL HTTP/1.1
outlook.office365.com/owa/prefetch.aspx
IP
52.97.230.146:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1188), with CRLF line terminators
Size
1.2 kB (1236 bytes)
Hash
ce24e99e6bce86360d2c403fce3fecc3
d894f1f69eea5356fa8922bc44040d33eb73956b
d276376be6c9a8caff439d9c3deddbdea503fd4d0fbbf12fde16b7cac96c84a6

HTTP Headers

GET /owa/prefetch.aspx HTTP/1.1
Host: outlook.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, no-store
Content-Length: 1236
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
request-id: 58cbd2ce-114f-4154-27a0-b65538f031d3
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Alt-Svc: h3=":443",h3-29=":443"
X-CalculatedBETarget: OL1P279MB0083.NORP279.PROD.OUTLOOK.COM
X-BackEndHttpStatus: 200
Set-Cookie: ClientId=9A99C215F68A4019BC9889E3E134F0E2; expires=Wed, 27-Sep-2023 16:15:44 GMT; path=/;SameSite=None; secure
ClientId=9A99C215F68A4019BC9889E3E134F0E2; expires=Wed, 27-Sep-2023 16:15:44 GMT; path=/;SameSite=None; secure
OIDC=1; expires=Mon, 27-Mar-2023 16:15:44 GMT; path=/;SameSite=None; secure; HttpOnly
OWAPF=v:15.20.5654.16&l:mouse; path=/
X-RUM-Validated: 1
X-Content-Type-Options: nosniff
X-BeSku: WCS6
X-OWA-Version: 15.20.5654.26
X-OWA-DiagnosticsInfo: 1;0;0
X-IIDs: 0
X-BackEnd-Begin: 2022-09-27T16:15:44.025
X-BackEnd-End: 2022-09-27T16:15:44.025
X-DiagInfo: OL1P279MB0083
X-BEServer: OL1P279MB0083
X-UA-Compatible: IE=EmulateIE7
X-Proxy-RoutingCorrectness: 1
Report-To: {"group":"NelOfficeUpload1","max_age":7200,"endpoints":[{"url":"https://exo.nel.measure.office.net/api/report?TenantId=&FrontEnd=Cafe&DestinationEndpoint=OSL"}],"include_subdomains":true}
NEL: {"report_to":"NelOfficeUpload1","max_age":7200,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
X-Proxy-BackendServerStatus: 200
X-FirstHopCafeEFZ: OSL
X-FEProxyInfo: OL1P279CA0033.NORP279.PROD.OUTLOOK.COM
X-FEEFZInfo: OSL
X-FEServer: OL1P279CA0033
Date: Tue, 27 Sep 2022 16:15:43 GMT

aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css

152.199.23.37

200 OK

20 kB

URL HTTP/2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (61177)
Size
20 kB (19970 bytes)
Hash
f4adbf9c60a3ef95809a6008f6764d08
b55c98c403b111b494c1ece263dc06eabc0ab075
6a59a4f890ea26ef050b83d0722aafc3ad70ddbce706806381c4f159a5db7497

HTTP Headers

GET /ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 4575207
cache-control: public, max-age=31536000
content-md5: 9K2/nGCj75WAmmAI9nZNCA==
content-type: text/css
date: Tue, 27 Sep 2022 16:15:44 GMT
etag: 0x8DA7650B375AC9B
last-modified: Thu, 04 Aug 2022 19:37:00 GMT
server: ECAcc (ska/F7A0)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 5ecbd986-101e-0042-39ef-a82f4a000000
x-ms-version: 2009-09-19
content-length: 19970
X-Firefox-Spdy: h2

aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_dcseeolyp_bhtl1lcmdobw2.js

152.199.23.37

200 OK

14 kB

URL HTTP/2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_dcseeolyp_bhtl1lcmdobw2.js
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
Unicode text, UTF-8 text, with very long lines (32021)
Size
14 kB (13605 bytes)
Hash
27d5c62bb9976ad238170067974cd1d4
e2385d2173597c82ffbdf9551f0cbef321799b09
68d960604f379395e41221aa3aac803f32f816b969d9ffb1e5e3ad2279349d5d

HTTP Headers

GET /ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_dcseeolyp_bhtl1lcmdobw2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 1971837
cache-control: public, max-age=31536000
content-md5: J9XGK7mXatI4FwBnl0zR1A==
content-type: application/x-javascript
date: Tue, 27 Sep 2022 16:15:44 GMT
etag: 0x8DA8D528A0B1219
last-modified: Sat, 03 Sep 2022 02:18:06 GMT
server: ECAcc (ska/F7A5)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 71c221b4-701e-009d-369d-c0ab66000000
x-ms-version: 2009-09-19
content-length: 13605
X-Firefox-Spdy: h2

aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_6b8fffaf21337fcc3970.js

152.199.23.37

200 OK

32 kB

URL HTTP/2
aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_6b8fffaf21337fcc3970.js
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (33036)
Size
32 kB (32176 bytes)
Hash
9b2ba0b90905402b0da85cef7af2e436
3751ef6b1a088aa49132b5e0d108037be750ced3
45d424f75fc4103008c354083723d72f85ba56347acac6e487026dba2b3f4149

HTTP Headers

GET /shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_6b8fffaf21337fcc3970.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 3616557
cache-control: public, max-age=31536000
content-md5: myuguQkFQCsNqFzvevLkNg==
content-type: application/x-javascript
date: Tue, 27 Sep 2022 16:15:44 GMT
etag: 0x8DA7EF6454B7A96
last-modified: Mon, 15 Aug 2022 19:42:21 GMT
server: ECAcc (ska/F72F)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: d4108683-401e-000f-1ba7-b1e166000000
x-ms-version: 2009-09-19
content-length: 32176
X-Firefox-Spdy: h2

aadcdn.msftauth.net/shared/1.0/content/images/appbackgrounds/49-small_e58aafc980614a9cd7796bea7b5ea8f0.jpg

152.199.23.37

200 OK

987 B

URL HTTP/2
aadcdn.msftauth.net/shared/1.0/content/images/appbackgrounds/49-small_e58aafc980614a9cd7796bea7b5ea8f0.jpg
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.2.9], baseline, precision 8, 50x28, components 3\012- data
Size
987 B (987 bytes)
Hash
e58aafc980614a9cd7796bea7b5ea8f0
d4cac92dcde0caf7c571e6d791101da94fdbd2ca
8b34a475187302935336bf43a2bf2a4e0adb9a1e87953ea51f6fcf0ef52a4a1d

HTTP Headers

GET /shared/1.0/content/images/appbackgrounds/49-small_e58aafc980614a9cd7796bea7b5ea8f0.jpg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 10413255
cache-control: public, max-age=31536000
content-md5: 5YqvyYBhSpzXeWvqe16o8A==
content-type: image/jpeg
date: Tue, 27 Sep 2022 16:15:44 GMT
etag: 0x8D7D287001BC861
last-modified: Fri, 27 Mar 2020 19:42:36 GMT
server: ECAcc (ska/F737)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 68e644ac-901e-0047-47d7-733aeb000000
x-ms-version: 2009-09-19
content-length: 987
X-Firefox-Spdy: h2

aadcdn.msftauth.net/shared/1.0/content/images/applogos/53_8b36337037cff88c3df203bb73d58e41.png

152.199.23.37

200 OK

5.1 kB

URL HTTP/2
aadcdn.msftauth.net/shared/1.0/content/images/applogos/53_8b36337037cff88c3df203bb73d58e41.png
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
PNG image data, 342 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
5.1 kB (5139 bytes)
Hash
8b36337037cff88c3df203bb73d58e41
1ada36fa207b8b96b2a5f55078bfe2a97acead0e
e4e1e65871749d18aea150643c07e0aab2057da057c6c57ec1c3c43580e1c898

HTTP Headers

GET /shared/1.0/content/images/applogos/53_8b36337037cff88c3df203bb73d58e41.png HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 22105240
cache-control: public, max-age=31536000
content-md5: izYzcDfP+Iw98gO7c9WOQQ==
content-type: image/png
date: Tue, 27 Sep 2022 16:15:44 GMT
etag: 0x8D7AF695D6C58F2
last-modified: Wed, 12 Feb 2020 03:12:17 GMT
server: ECAcc (ska/F7B7)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 1f2d1853-901e-0004-6380-093529000000
x-ms-version: 2009-09-19
content-length: 5139
X-Firefox-Spdy: h2

aadcdn.msftauth.net/shared/1.0/content/images/appbackgrounds/49_7916a894ebde7d29c2cc29b267f1299f.jpg

152.199.23.37

200 OK

18 kB

URL HTTP/2
aadcdn.msftauth.net/shared/1.0/content/images/appbackgrounds/49_7916a894ebde7d29c2cc29b267f1299f.jpg
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
JPEG image data, baseline, precision 8, 1920x1080, components 3\012- data
Size
18 kB (17453 bytes)
Hash
7916a894ebde7d29c2cc29b267f1299f
78345ca08f9e2c3c2cc9b318950791b349211296
d8f5ab3e00202fd3b45be1acd95d677b137064001e171bc79b06826d98f1e1d3

HTTP Headers

GET /shared/1.0/content/images/appbackgrounds/49_7916a894ebde7d29c2cc29b267f1299f.jpg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 10502317
cache-control: public, max-age=31536000
content-md5: eRaolOvefSnCzCmyZ/Epnw==
content-type: image/jpeg
date: Tue, 27 Sep 2022 16:15:44 GMT
etag: 0x8D7D2870015D3DE
last-modified: Fri, 27 Mar 2020 19:42:36 GMT
server: ECAcc (ska/F690)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 6f67de8a-901e-0060-1807-735c76000000
x-ms-version: 2009-09-19
content-length: 17453
X-Firefox-Spdy: h2

aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg

152.199.23.37

200 OK

1.4 kB

URL HTTP/2
aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators
Size
1.4 kB (1435 bytes)
Hash
9f368bc4580fed907775f31c6b26d6cf
e393a40b3e337f43057eee3de189f197ab056451
7ecbba946c099539c3d9c03f4b6804958900e5b90d48336eea7e5a2ed050fa36

HTTP Headers

GET /shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 22103482
cache-control: public, max-age=31536000
content-md5: nzaLxFgP7ZB3dfMcaybWzw==
content-type: image/svg+xml
date: Tue, 27 Sep 2022 16:15:44 GMT
etag: 0x8D79A1B9F5E121A
last-modified: Thu, 16 Jan 2020 00:32:52 GMT
server: ECAcc (ska/F7B5)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 88a9f18f-c01e-0086-2c84-09c001000000
x-ms-version: 2009-09-19
content-length: 1435
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.5654.16/scripts/boot.worldwide.0.mouse.js

23.38.200.227

200 OK

180 kB

URL HTTP/2
r4.res.office365.com/owa/prem/15.20.5654.16/scripts/boot.worldwide.0.mouse.js
IP
23.38.200.227:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (59783), with CRLF line terminators
Size
180 kB (179692 bytes)
Hash
7107c752f3901d95bdc4e9d46ac2b6d8
747a0d933dc2ef38a98fa11a44ba661ec6a5eae3
c4a5ecaf090da5f8115afcf0d4b723810054ecf3de31acc5ea6d48f9eb2d4111

HTTP Headers

GET /owa/prem/15.20.5654.16/scripts/boot.worldwide.0.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Tue, 20 Sep 2022 04:25:37 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 179692
cache-control: public,max-age=630720000, s-maxage=630720000
date: Tue, 27 Sep 2022 16:15:44 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.5654.16/scripts/boot.worldwide.1.mouse.js

23.38.200.227

200 OK

163 kB

URL HTTP/2
r4.res.office365.com/owa/prem/15.20.5654.16/scripts/boot.worldwide.1.mouse.js
IP
23.38.200.227:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size
163 kB (163086 bytes)
Hash
e8e90ea74afb3c2e067828c093fc86b1
cdc77987b351dc36f67d2d72d9bb59f17bfd49e0
411cbbad8d2c64f927321e1a825bf15860e2a7757688b4b445cdec041a1c497a

HTTP Headers

GET /owa/prem/15.20.5654.16/scripts/boot.worldwide.1.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Tue, 20 Sep 2022 04:25:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 163086
cache-control: public,max-age=630720000, s-maxage=630720000
date: Tue, 27 Sep 2022 16:15:44 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.5654.16/scripts/boot.worldwide.2.mouse.js

23.38.200.227

200 OK

170 kB

URL HTTP/2
r4.res.office365.com/owa/prem/15.20.5654.16/scripts/boot.worldwide.2.mouse.js
IP
23.38.200.227:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size
170 kB (169702 bytes)
Hash
1e37d6bba254c3ff7f57d369bfffb5ee
3815e368af2c284735837ee7facbbfc9a7627e59
d3b62817e50c0a8e046612ec81463e9613eda09be666c511992f556550195852

HTTP Headers

GET /owa/prem/15.20.5654.16/scripts/boot.worldwide.2.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Tue, 20 Sep 2022 04:25:39 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 169702
cache-control: public,max-age=630720000, s-maxage=630720000
date: Tue, 27 Sep 2022 16:15:44 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.5654.16/scripts/boot.worldwide.3.mouse.js

23.38.200.227

200 OK

146 kB

URL HTTP/2
r4.res.office365.com/owa/prem/15.20.5654.16/scripts/boot.worldwide.3.mouse.js
IP
23.38.200.227:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65339), with CRLF line terminators
Size
146 kB (145619 bytes)
Hash
51236710facd7777aa13a4807f5c5eba
f30f8bdddb857832080b878f07bd3b078aaa21b3
b13f876c44748caec001b1c875ba7d7a32354d6bf07be6d34d3e93b7dd5c98a9

HTTP Headers

GET /owa/prem/15.20.5654.16/scripts/boot.worldwide.3.mouse.js HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
last-modified: Tue, 20 Sep 2022 04:25:33 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 145619
cache-control: public,max-age=630720000, s-maxage=630720000
date: Tue, 27 Sep 2022 16:15:44 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

aadcdn.msftauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg

152.199.23.37

200 OK

621 B

URL HTTP/2
aadcdn.msftauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg
IP
152.199.23.37:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1592), with no line terminators
Size
621 B (621 bytes)
Hash
4761405717e938d7e7400bb15715db1e
76fed7c229d353a27db3257f5927c1eaf0ab8de9
f7ed91a1dab5bb2802a7a3b3890df4777588ccbe04903260fba83e6e64c90ddf

HTTP Headers

GET /shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 9214059
cache-control: public, max-age=31536000
content-md5: R2FAVxfpONfnQAuxVxXbHg==
content-type: image/svg+xml
date: Tue, 27 Sep 2022 16:15:44 GMT
etag: 0x8D8852A740F01B9
last-modified: Tue, 10 Nov 2020 03:41:05 GMT
server: ECAcc (ska/F695)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 61d031c2-901e-008e-5cbf-7ee72e000000
x-ms-version: 2009-09-19
content-length: 621
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.5654.16/resources/images/0/sprite1.mouse.png

23.38.200.227

200 OK

132 B

URL HTTP/2
r4.res.office365.com/owa/prem/15.20.5654.16/resources/images/0/sprite1.mouse.png
IP
23.38.200.227:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 600 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
132 B (132 bytes)
Hash
3eda15637afeac6078f56c9dcc9bbdb8
97b900884183cb8cf99ba069eedc280c599c1b74
68c66d144855ba2bc8b8bee88bb266047367708c1e281a21b9d729b1fbd23429

HTTP Headers

GET /owa/prem/15.20.5654.16/resources/images/0/sprite1.mouse.png HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-length: 132
content-type: image/png
last-modified: Tue, 20 Sep 2022 04:43:03 GMT
server: AkamaiNetStorage
cache-control: public,max-age=630720000, s-maxage=630720000
date: Tue, 27 Sep 2022 16:15:44 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.5654.16/resources/images/0/sprite1.mouse.css

23.38.200.227

200 OK

288 B

URL HTTP/2
r4.res.office365.com/owa/prem/15.20.5654.16/resources/images/0/sprite1.mouse.css
IP
23.38.200.227:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (994), with no line terminators
Size
288 B (288 bytes)
Hash
d5376db145bd802d6dc34b453e38db2d
a33794e22b790cefae0b1427244ddbf60aef74e6
4e5c1ba33900bd8b05d2bef342bdd037c240d27207ef878b2b87d252dfc30cfc

HTTP Headers

GET /owa/prem/15.20.5654.16/resources/images/0/sprite1.mouse.css HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: text/css
last-modified: Tue, 20 Sep 2022 04:42:55 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 288
cache-control: public,max-age=630720000, s-maxage=630720000
date: Tue, 27 Sep 2022 16:15:44 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r4.res.office365.com/owa/prem/15.20.5654.16/resources/styles/0/boot.worldwide.mouse.css

23.38.200.227

200 OK

44 kB

URL HTTP/2
r4.res.office365.com/owa/prem/15.20.5654.16/resources/styles/0/boot.worldwide.mouse.css
IP
23.38.200.227:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (65536), with no line terminators
Size
44 kB (44144 bytes)
Hash
820f40594a0e8d5f9d58546208aa9060
e17ed5116a34c432013a244c979ac9da53829d74
f8f708049e1e1609af3959cd21eaf313c8192d3e962887a7a2e1f9b353d3fc80

HTTP Headers

GET /owa/prem/15.20.5654.16/resources/styles/0/boot.worldwide.mouse.css HTTP/1.1
Host: r4.res.office365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://outlook.office365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: text/css
last-modified: Tue, 20 Sep 2022 04:43:53 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 44144
cache-control: public,max-age=630720000, s-maxage=630720000
date: Tue, 27 Sep 2022 16:15:44 GMT
timing-allow-origin: *
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations