Overview

URL 3ns7-jhcl1e-gfv1-gary.harrington-588671-randomstring.swathfitness.com/dg.php?e=gary.harrington@slurpmail.net
IP192.185.113.154
ASNUNIFIEDLAYER-AS-1
Location United States
Report completed2022-09-21 22:44:48 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-21 2 3ns7-jhcl1e-gfv1-gary.harrington-588671-randomstring.swathfitness.com/dg.ph (...) Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (24)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS img-prod-cms-rt-microsoft-com.akamaized.net (1) 1197 2017-01-30 05:18:05 UTC 2022-09-21 12:39:25 UTC 23.36.76.186
mnemonic passive DNS browser.events.data.microsoft.com (2) 290 2018-05-25 06:23:05 UTC 2022-09-21 12:39:27 UTC 20.189.173.13
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-21 04:18:32 UTC 143.204.55.25
mnemonic passive DNS office.com (1) 25 2019-05-28 09:32:42 UTC 2022-09-21 15:39:52 UTC 13.107.6.156
mnemonic passive DNS c.bing.com (1) 247 2012-05-22 10:26:32 UTC 2022-09-21 04:19:27 UTC 13.107.21.200
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-21 14:38:57 UTC 34.120.237.76
mnemonic passive DNS web.vortex.data.microsoft.com (7) 1617 2015-09-17 01:54:42 UTC 2022-09-21 12:39:26 UTC 23.96.225.71
mnemonic passive DNS www.office.com (2) 2755 2014-02-12 01:02:36 UTC 2022-09-21 14:31:48 UTC 13.107.6.156
mnemonic passive DNS c1.microsoft.com (2) 5624 2012-05-21 17:28:04 UTC 2022-09-21 15:39:32 UTC 20.234.93.27
mnemonic passive DNS browser.pipe.aria.microsoft.com (1) 93 2017-01-30 04:57:33 UTC 2022-09-21 14:00:46 UTC 104.46.162.224
mnemonic passive DNS 4b825afba3.nxcli.io (1) 0 2022-09-15 12:27:43 UTC 2022-09-21 16:04:04 UTC 192.190.221.112 Unknown ranking
mnemonic passive DNS statics-marketingsites-neu-ms-com.akamaized.net (1) 27382 2017-04-12 23:05:40 UTC 2022-09-21 12:39:25 UTC 23.36.76.114
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-21 04:18:22 UTC 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-21 04:20:37 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-21 20:53:10 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-21 04:20:37 UTC 52.88.220.109
mnemonic passive DNS www.microsoft.com (3) 302 2018-01-24 22:49:25 UTC 2022-09-21 04:19:25 UTC 23.38.201.156
mnemonic passive DNS res.cdn.office.net (704) 1292 2021-09-30 18:37:19 UTC 2022-09-21 15:39:31 UTC 152.199.21.175
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-21 16:01:18 UTC 143.204.55.36
mnemonic passive DNS 3ns7-jhcl1e-gfv1-gary.harrington-588671-randomstring.swathfitness.com (1) 0 No data No data 192.185.113.154 Unknown ranking
mnemonic passive DNS mem.gfx.ms (3) 3475 2015-02-13 15:56:33 UTC 2022-09-21 12:39:25 UTC 13.107.213.53
mnemonic passive DNS js.monitor.azure.com (1) 3838 2020-04-24 19:32:44 UTC 2022-09-21 08:12:36 UTC 13.107.213.53
mnemonic passive DNS wcpstatic.microsoft.com (1) 5007 2020-09-15 17:02:29 UTC 2022-09-21 12:39:25 UTC 13.107.213.53
mnemonic passive DNS c.s-microsoft.com (2) 10166 2015-09-11 00:00:13 UTC 2022-09-21 12:39:25 UTC 23.38.201.156


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 192.185.113.154

Date UQ / IDS / BL URL IP
2022-11-30 21:35:50 +0000
0 - 0 - 21 ndioman.com/citizen/account_verify.php?online (...) 192.185.113.154
2022-11-30 21:34:24 +0000
0 - 0 - 21 ndioman.com/citizen/credit_verify.php?online_ (...) 192.185.113.154
2022-11-30 20:27:49 +0000
0 - 0 - 21 ndioman.com/citizen/credit_verify.php?online_ (...) 192.185.113.154
2022-11-02 21:58:44 +0000
0 - 0 - 4 52738895513--5273889551352738895513--52738895 (...) 192.185.113.154
2022-11-02 18:27:15 +0000
0 - 0 - 4 52738895513--5273889551352738895513--52738895 (...) 192.185.113.154

Last 5 reports on ASN: UNIFIEDLAYER-AS-1

Date UQ / IDS / BL URL IP
2022-12-08 15:25:52 +0000
0 - 0 - 1 ab-ccyl7.ga/Meritrust.zip 142.4.9.156
2022-12-08 15:25:45 +0000
0 - 0 - 1 ab-ccyl7.ga/Meritrust.zip 142.4.9.156
2022-12-08 15:25:33 +0000
0 - 0 - 9 coolwaves.com.au/ 192.185.113.230
2022-12-08 15:25:29 +0000
0 - 0 - 2 terramarbrands.com/online/7a5673936c3f150bd17 (...) 162.241.103.53
2022-12-08 15:25:28 +0000
0 - 0 - 2 terramarbrands.com/online/01b31f8af253efd81f3 (...) 162.241.103.53

Last 4 reports on domain: swathfitness.com

Date UQ / IDS / BL URL IP
2022-09-21 22:44:48 +0000
0 - 0 - 1 3ns7-jhcl1e-gfv1-gary.harrington-588671-rando (...) 192.185.113.154
2022-09-20 22:26:42 +0000
0 - 0 - 1 8lx2-orov1m-iwf6-dan.swanson-685370-randomstr (...) 192.185.113.154
2022-09-19 18:58:22 +0000
0 - 0 - 1 7ou6-wcyw6z-uvd4-jose.quevedo-479672-randomst (...) 192.185.113.154
2022-09-05 10:37:52 +0000
0 - 0 - 14 swathfitness.com/asperioresqui/etlaudantium-3 (...) 192.185.113.154

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-12 08:31:14 +0000
0 - 0 - 1 noslivresajusteprix.com/gprtv/vmonline/main/a (...) 172.67.132.124
2022-10-12 03:58:19 +0000
0 - 0 - 2 autodesk.orpheusentp.com/1/main/main.php 192.185.97.103
2022-10-12 00:25:31 +0000
0 - 0 - 1 federalsignal.authjbkiooygyggdiscover.xyz/ 45.87.43.24
2022-10-11 18:01:16 +0000
0 - 0 - 1 weneedyouukraine.top/main.php 93.157.63.250
2022-10-10 12:53:49 +0000
0 - 0 - 1 mtsn2mukomuko.sch.id/assets/css/2yc/rer/ 103.178.175.15


JavaScript

Executed Scripts (20)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (752)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 22:13:48 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -2JzwKOnP7Js-V9LIrEdCWNAUWiQ3IjFbCf5ZO7APQxum60LwTCEhQ==
Age: 1849


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /dg.php?e=gary.harrington@slurpmail.net HTTP/1.1 
Host: 3ns7-jhcl1e-gfv1-gary.harrington-588671-randomstring.swathfitness.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         192.185.113.154
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 21 Sep 2022 22:44:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://4b825afba3.nxcli.io/wp-admin/js/bac/hcaptcha/?id=gary.harrington@slurpmail.net
Content-Length: 0
Keep-Alive: timeout=5, max=75


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3217
Expires: Wed, 21 Sep 2022 23:38:14 GMT
Date: Wed, 21 Sep 2022 22:44:37 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: raC6RsRlQPJ268AkdXla56qh1eeSMRyKWRS2NwowmxtG169ThGfXvA==
age: 65364
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 21 Sep 2022 22:44:37 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 21 Sep 2022 22:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 21 Sep 2022 22:58:56 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: w86AeQjT8ra-kPBAt58OIaSSZ-LsCbY6bFdOAgH0JZRrTSL3MnxarQ==
Age: 2475


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1009
Cache-Control: max-age=121144
Date: Wed, 21 Sep 2022 22:44:37 GMT
Etag: "632ac61c-1d7"
Expires: Fri, 23 Sep 2022 08:23:41 GMT
Last-Modified: Wed, 21 Sep 2022 08:06:52 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iETuSp/VC7M7micRL7cZCg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.88.220.109
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5sc9TpGQmXERezF/WKuHtpoH9Rg=

                                        
                                            GET /wp-admin/js/bac/hcaptcha/?id=gary.harrington@slurpmail.net HTTP/1.1 
Host: 4b825afba3.nxcli.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         192.190.221.112
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Wed, 21 Sep 2022 22:44:39 GMT
content-length: 0
location: https://office.com
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=75e095d08acb6e17e5845a18047658f5; path=/
x-nocache: 1
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: office.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         13.107.6.156
HTTP/2 301 Moved Permanently
                                        
location: https://www.office.com/
x-msedge-ref: Ref A: AC5DFB73817F4A0F89C0064594F3F79C Ref B: SVG20EDGE0219 Ref C: 2022-09-21T22:44:39Z
date: Wed, 21 Sep 2022 22:44:38 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6673
Expires: Thu, 22 Sep 2022 00:35:52 GMT
Date: Wed, 21 Sep 2022 22:44:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6673
Expires: Thu, 22 Sep 2022 00:35:52 GMT
Date: Wed, 21 Sep 2022 22:44:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6673
Expires: Thu, 22 Sep 2022 00:35:52 GMT
Date: Wed, 21 Sep 2022 22:44:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6673
Expires: Thu, 22 Sep 2022 00:35:52 GMT
Date: Wed, 21 Sep 2022 22:44:39 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8861
x-amzn-requestid: 873e88ab-7afc-4b14-b428-d90ec2079741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuE0AoAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-0d25ab397a16c78907914e23;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UStTyIXPucbY9WmDl3W5bTyeT-2SJ5CTUjv8TLeexqZtKd1p2sJrNA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 03:25:34 GMT
age: 69545
etag: "56f228d7358ba9deef000f53214dc7c1dc358109"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8861
Md5:    a504981ee10d8341b64f19001464ae8a
Sha1:   56f228d7358ba9deef000f53214dc7c1dc358109
Sha256: 0ea3b6ed12f3adf9d56e7d9b61f284d28107d99f28ee4e66b4c078a9a1a0cbee
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde54bd1a-30ec-48fe-9030-6f74a0a3df22.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5291
x-amzn-requestid: 3a510054-bb53-4003-acd1-fdedc8bd02d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GVBHXioAMFnlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b841f-7a24dca27f6ad2ed0b0e267c;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:37:35 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aU5wnFAN1vEBwSS7knyKUDU1g1MQDB10UyM6OYQlJQPSoGFEmMPSuQ==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:05:41 GMT
age: 2338
etag: "e2b90ecd1dec02c5a0a25c5bb2661fa4f4fec642"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5291
Md5:    c902cc0f7926e1098e7212b2a2d08e1a
Sha1:   e2b90ecd1dec02c5a0a25c5bb2661fa4f4fec642
Sha256: 9dab48a6114233316eb80c10994b645877f2677f6500dca61095c17c103dc7c3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F969d6cdd-691e-480c-aa3f-20d1f7156aa3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13329
x-amzn-requestid: 54887f94-9832-494c-b1c8-0a27ac04b3e7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1HDmHlQoAMFfLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b854a-5fb778255bce533044676173;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:42:34 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: x73RKQ2BJRxcFZJEobdvgd_5MplH5mHcGljNL4Em4yqTOCW8DSnzXw==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:03:49 GMT
age: 2450
etag: "deb3edfb3995fa43ca3e8dcc2adb09028bd240e3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13329
Md5:    935051c999523e0eb4c95bbe470f5708
Sha1:   deb3edfb3995fa43ca3e8dcc2adb09028bd240e3
Sha256: 30efea98cf000c8a0fd6e02b08ab114d4453c2d6f63360a352ebbd0f0bd138a0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d546012-e1d1-4ccd-a38f-d808cdfe4af0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5161
x-amzn-requestid: 9ba63285-4cef-4604-bd12-95a99463e087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0wHYXIAMFgvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-1380adf019b16d5a50475cdb;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: aRS8EmSflaJJjXsdsfTjeovOMrdDXbiDlGHsLNpkB4NGyLsvgfQq_w==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "af20ced3f00015ad8ae837d7cf3f39b9f5f0f752"
age: 4230
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5161
Md5:    06589b53db5d3d6307e15e354325e252
Sha1:   af20ced3f00015ad8ae837d7cf3f39b9f5f0f752
Sha256: 513daca9889934875f2c453aaed4ce1af32628550a4b2f2b8e69533cb09eda56
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa5fccb8-005e-4a27-aee2-802639e26592.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7206
x-amzn-requestid: cb23bf7a-e726-44c8-8952-c3edc9411989
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1Gu-EyEoAMFtFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84c6-2d9be9e7136d8223377efa43;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: S1pxBVRSjKELqBLhf1JDSrHfK49tRMGaTjeXHDCuildb4A0knsTEow==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:19 GMT
age: 3380
etag: "d0859402a9e0c61d6193995130db553995c1be9d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7206
Md5:    095da54b533e1dbad223f820b7018ff5
Sha1:   d0859402a9e0c61d6193995130db553995c1be9d
Sha256: aadbdba88629367686d44a660ff1bf3969643bed29546553d0d22837aba38543
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8549
x-amzn-requestid: 6d44626b-16c6-4f19-ae52-d5350065b390
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwPHJJoAMFdfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84ce-46ebc35612eb7a4473b36189;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UoQTXSP0LgR4LwELp2Avm27hUekfO9TU9yfvNbIlmUtB-FrU9MGRbg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:19 GMT
age: 3380
etag: "80e48c9ae48c89598780736b089c98e22d58df9a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8549
Md5:    62818de3c50f957b2e5680851a1768c9
Sha1:   80e48c9ae48c89598780736b089c98e22d58df9a
Sha256: 16f2c2d23e8641a3f297a175730343d11120a228c0fe846c0fdf1e39212c522c
                                        
                                            GET /statics/override.css HTTP/1.1 
Host: statics-marketingsites-neu-ms-com.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Tue, 11 Jun 2019 23:22:13 GMT
ETag: 0x8D6EEC3A2D67C35
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7502d9a5-901e-0068-28c4-66545b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 473
Unused62: 8096267
Date: Wed, 21 Sep 2022 22:44:39 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (342), with CRLF line terminators
Size:   473
Md5:    a40589609d8e75c109e93abbff0dcf60
Sha1:   76ae9c943d54022e24b90467713a73a431eddd6d
Sha256: 2c959c2618be84448b26de18639db8a66126449c6ebb29f4f6d33e00adb5b069
                                        
                                            GET /onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/1a-bb39e7/ef-a24652?ver=2.0&_cf=02242021_3231 HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
last-modified: Tue, 23 Aug 2022 21:37:58 GMT
x-activity-id: e769626d-8e0e-4f3f-b04a-85779eb43935
ms-cv: 4MCHWe9odEitRWH1.0
x-appversion: 1.0.8263.42159
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-08-17T07:25:18.0000000Z}
ms-operation-id: 6a1b9303a6c94a409f3b36b55ea07de4
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2022-08-23T21:37:58
x-s2: 2022-08-23T21:37:58
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 22578
cache-control: public, max-age=29026372
expires: Wed, 23 Aug 2023 21:37:31 GMT
date: Wed, 21 Sep 2022 22:44:39 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (64241)
Size:   22578
Md5:    bb34fa956cd28133c85f395df38cd9d1
Sha1:   431626d79bb8538a90010651d1afae008bb0afd2
Sha256: 19ea0e7c6aee3590451b4dc1a1ed6b62e611cb478eb889aa7cdfe31968225ea5
                                        
                                            GET /onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/a0-23c4ba/a7-f7a340/48-6ed936/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/b0-07f293/1e-9d9d16/52-f0367f/1f-b57352/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/37-8473b9?ver=2.0&_cf=02242021_3231&iife=1 HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
last-modified: Tue, 23 Aug 2022 21:27:42 GMT
x-activity-id: ba1a6d7b-e993-45ae-a14b-260b61045c46
ms-cv: eHE/b/kYDkWjU+WL.0
x-appversion: 1.0.8263.42159
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-08-17T07:25:18.0000000Z}
ms-operation-id: 819762409931f041bf59e7a7daace4b8
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2022-08-23T21:27:42
x-s2: 2022-08-23T21:27:42
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 35578
cache-control: public, max-age=29025753
expires: Wed, 23 Aug 2023 21:27:12 GMT
date: Wed, 21 Sep 2022 22:44:39 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42133)
Size:   35578
Md5:    457c64e69f73a625fe291fae02c1b927
Sha1:   ab2aa2e7b4e37daaeb60f17698a5a886d501385e
Sha256: 094ea09c58e064dc91cfa128356e975744d1e546948c61ed9852e0fe3e158134
                                        
                                            GET /officehub/versionless/webfonts/segoeui_regular.woff2 HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85729
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F7B5)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 6da6417e-f01e-0067-7d44-cdda3d000000
content-length: 11100
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11100, version 1.0\012- data
Size:   11100
Md5:    906ba74c1f7a4fd42174e0f58fad3c95
Sha1:   3631818302580f0e0da3ed54e8488ce72b1d4b11
Sha256: bb232fd09a6696ce21ec10a43b89933e12ad866dfde30a4a6a08e08082e6557d
                                        
                                            GET /mscc/lib/v2/wcp-consent.js HTTP/1.1 
Host: wcpstatic.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: max-age=43200
content-length: 81726
content-encoding: gzip
content-md5: X1JOIM5h9UISVFS6+GfEew==
last-modified: Wed, 24 Aug 2022 17:34:36 GMT
age: 17344
etag: 0x8DA85F6EA62BF74
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
x-cache: CONFIG_NOCACHE
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: b3ebd626-801e-0073-6ae3-cdb875000000
x-ms-version: 2009-09-19
x-azure-ref: 015MrYwAAAADaf7TlWKUiT7qoCvBhZ3lfTE9OMjFFREdFMTYxNwAzOWI0NjE1Ny1jYjllLTQ5YjctYTY1YS04NzIyYTNmODI0ZTQ=
date: Wed, 21 Sep 2022 22:44:39 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (63888), with no line terminators
Size:   81726
Md5:    e51f388b62281af5b4a9193cce419941
Sha1:   364f3d737462b7fd063107fe2c580fdb9781a45a
Sha256: 348404a68791474349e35bd7d1980abcbf06db85132286e45ad4f204d10b5f2c
                                        
                                            GET /officehub/bundles/otel-logger-803ab00c96be7f090df5.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 577295
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Thu, 01 Sep 2022 00:19:05 GMT
server: ECAcc (ska/F79B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 2c799ca5-001e-0063-6acb-c8573a000000
content-length: 25949
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65446)
Size:   25949
Md5:    da4126de659104a6bae54e63e9b48aea
Sha1:   ac3efe50e61bee785fb42b16d1e567e64db72798
Sha256: d29e613a4508e8a1d4000b3f381d9eefcf167546531a7447bf4d0d753c8282d2
                                        
                                            GET /officehub/bundles/sharedscripts-c77f7edec8.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85730
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Mon, 09 May 2022 22:16:27 GMT
server: ECAcc (ska/F795)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 1992dcbf-401e-005d-2844-cdc045000000
content-length: 13438
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31932)
Size:   13438
Md5:    8a604b6ea5639639ddc86c91d2233822
Sha1:   059eb5c8bdd7d2215dce97290b1962e83106f724
Sha256: 9ac5937a6d339a4c6125a819128d42129b89560375f6a7aa6936700edcf4c4e9
                                        
                                            GET /officehub/bundles/unauth-59fa1432f4.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 506684
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Thu, 26 Aug 2021 21:36:40 GMT
server: ECAcc (ska/F775)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 982d672b-001e-0063-4b70-c9573a000000
content-length: 16443
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31967)
Size:   16443
Md5:    60fa9857eb425d2ecbdf01722f9b4c51
Sha1:   247f62f74fbdad9953582d89dc165bdbf1fb8434
Sha256: 6a350787638ca1530083fb3d2ba5102d221062e3fb2ca75a5a49c099ff71557a
                                        
                                            GET /officehub/versionless/webfonts/segoeui_light.woff2 HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85716
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F6B0)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 1ee019c5-101e-001d-7344-cdc77d000000
content-length: 10544
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10544, version 1.0\012- data
Size:   10544
Md5:    8e160632c48ad1e3d0e9f4334636086b
Sha1:   7ba2921499b2264dee14f95801bfbcf416861d7c
Sha256: 57febfbad63b722a38bc668e67bc7c2dc02eca221f26db3a9303c1bd584a1a42
                                        
                                            GET /officehub/versionless/webfonts/segoeui_semibold.woff2 HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85729
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F79E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 871ae4d9-a01e-006a-4644-cd12e9000000
content-length: 11356
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11356, version 1.0\012- data
Size:   11356
Md5:    dac73dc7b1eb35cd360da41648de072b
Sha1:   da1f6a5f46b72320a55b398f5f66d5e9aa6132f1
Sha256: 2cd3ef7b5b677b7827bfbe5b926a283e7ca687ddb6b021fa4289630671ebd061
                                        
                                            GET /officehub/versionless/webfonts/segoeui_semilight.woff2 HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85716
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F7AD)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 39b51da3-801e-006d-1044-cd7e8a000000
content-length: 12164
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12164, version 1.0\012- data
Size:   12164
Md5:    36ac9a2365173b647657ad829ae64ff0
Sha1:   f8966e2ee4c9cfe92b5843d8c27bb7bed98bdfc9
Sha256: 633894cf845287f205f1b5bd26b7667dda186695fce3d789306f30c5fbdb14b5
                                        
                                            GET /officehub/bundles/sharedfontstyles-27fa2598d8.css HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85730
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Mon, 11 Oct 2021 23:05:09 GMT
server: ECAcc (ska/F6A0)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: dd422cb1-401e-003f-3244-cd0262000000
content-length: 239
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1327), with no line terminators
Size:   239
Md5:    527f4eb2d79a6070d2defaff14956d5a
Sha1:   434625337517d2207d7819fc64ba7aa931ecd520
Sha256: 68c1e2283fa8db0fb592ad6eb9ef724ecd43702fb24e22362234b898ecba8da7
                                        
                                            GET /officehub/bundles/unauth-8bc558595a.css HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 139258
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Mon, 22 Aug 2022 22:33:01 GMT
server: ECAcc (ska/F794)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 75b5b5d4-a01e-0037-57c7-cc186d000000
content-length: 64509
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   64509
Md5:    87ff80dfdd70d0e0fdbbb3a3b9db4e94
Sha1:   423e5771ccdfc1332ed10b38828d1c96e9665d73
Sha256: bd6098e3ede7c61f8eecbdb2b334abd19fa936f7675c70e288bebd9a30ce2009
                                        
                                            GET /cms/api/am/imageFileData/RE1Mu3b?ver=5c31 HTTP/1.1 
Host: img-prod-cms-rt-microsoft-com.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: image/png
                                        
access-control-allow-origin: *
content-location: https://image.prod.cms.rt.microsoft.com/cms/api/am/imageFileData/RE1Mu3b?ver=5c31
last-modified: Tue, 13 Sep 2022 05:15:59 GMT
x-source-length: 4054
x-datacenter: northeu
x-activityid: 45939172-9da6-41c1-8f0b-c1a6014a70fa
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 4054
cache-control: public, max-age=66726
expires: Thu, 22 Sep 2022 17:16:45 GMT
date: Wed, 21 Sep 2022 22:44:39 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 216 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size:   4054
Md5:    9f14c20150a003d7ce4de57c298f0fba
Sha1:   daa53cf17cc45878a1b153f3c3bf47dc9669d78f
Sha256: 112fec798b78aa02e102a724b5cb1990c0f909bc1d8b7b1fa256eab41bbc0960
                                        
                                            GET /officehub/images/content/images/unauth-refresh/qr-code-2be9b68eed.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Wed, 23 Mar 2022 21:08:47 GMT
server: ECAcc (ska/F76E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 91bbacce-c01e-0053-4e44-cde9f5000000
content-length: 3974
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 161 x 160, 8-bit/color RGBA, non-interlaced\012- data
Size:   3974
Md5:    2be9b68eed69ae75fba5ed982d0ff25d
Sha1:   bd6e134c0d87c52ac751555269a59796d5eabc55
Sha256: 8281e85e9ff70034913a38d9eaa6af52ed98ab621300f0558e70a9bceff7246e
                                        
                                            GET /officehub/images/content/images/unauth-refresh/store-buttons-747d2c674f.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Thu, 31 Mar 2022 20:09:18 GMT
server: ECAcc (ska/F68B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 6da916de-f01e-0067-2444-cdda3d000000
content-length: 7115
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 286 x 41, 8-bit/color RGBA, non-interlaced\012- data
Size:   7115
Md5:    747d2c674f731edfd2779d83c8532e24
Sha1:   c40a635c160d4ca763d8c86f560cb937a8e1090b
Sha256: ca13c3e1ec9b3484f3e6af002f127c03de8e5171e76d37a5749a3cd75d098b05
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-commercial-3-f455600b67.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F777)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 3b51750b-801e-0030-2544-cd740e000000
content-length: 90429
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 439, 8-bit/color RGBA, non-interlaced\012- data
Size:   90429
Md5:    f455600b671bea74469cbd0de2c49abe
Sha1:   9facc63af8c238776bfc67d901ca5ef965fe12a0
Sha256: 9e0234933321be89717bad939d8d6608117ce7ad453a5f66db97f0f4e11a6252
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-commercial-2-f143e5c2d2.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:34 GMT
server: ECAcc (ska/F6CB)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 39b999a9-801e-006d-3144-cd7e8a000000
content-length: 124874
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 658 x 497, 8-bit/color RGBA, non-interlaced\012- data
Size:   124874
Md5:    f143e5c2d232cdcf3fa06da4473e0372
Sha1:   0dfe81fe5425e7ee37e35c1107114ea3df7febca
Sha256: 5f1bbca25424c86893414de6f44a39a9f28294679e975586a9633a90247d89fd
                                        
                                            GET /officehub/images/content/images/unauth-refresh/mobile-app-4dc990c23b.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85471
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Thu, 31 Mar 2022 20:09:18 GMT
server: ECAcc (ska/F736)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: d7bfdf2d-201e-0006-2644-cdf97e000000
content-length: 25980
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 199 x 330, 8-bit/color RGBA, non-interlaced\012- data
Size:   25980
Md5:    4dc990c23b32e7d0778652ac5cf350be
Sha1:   8e33fe3b92bf60c3af9ca69e90493629c287b014
Sha256: 29b5c8aae191966fe88ec0a05553e11d3c55466128bd733b919e1f8aaaed18e4
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-consumer-4-920951c931.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F741)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: b57bfa88-101e-0022-6244-cd0fde000000
content-length: 154767
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 448, 8-bit/color RGBA, non-interlaced\012- data
Size:   154767
Md5:    920951c931c871936e67c7c41584821a
Sha1:   14b7b100edf71124766dfe275d718d3e942d700e
Sha256: f5527778f0292c5bb31c94fa867c3849f0fdb9038d70d17e0049bc07369b4d5d
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-edu-2-a65339870b.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F6B3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 1997cec4-401e-005d-6f44-cdc045000000
content-length: 81973
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 394, 8-bit/color RGBA, non-interlaced\012- data
Size:   81973
Md5:    a65339870bf74e66812e7eb4ae2e2ad0
Sha1:   1c69ab833c818b3b0bf97100121c7627a423a110
Sha256: 6d6f78635fdf119415ac27b93cbc42580bea55aa4a031c227a911e3bd2766075
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-commercial-4-b66ce988de.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85456
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:34 GMT
server: ECAcc (ska/F760)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 85247656-e01e-0026-5444-cd82d9000000
content-length: 93489
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 394, 8-bit/color RGBA, non-interlaced\012- data
Size:   93489
Md5:    b66ce988dec4c543a4575f32fa67e926
Sha1:   1732243cddd2de044800621b380a6f6324ee937f
Sha256: 700d7ab8b2a25b9496257865f5d4dbcfbb9a7ef4112315e7dc4a6a58f9834ee9
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-edu-4-b91aa86d96.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F7A5)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: d35e6f59-901e-005e-4244-cd2121000000
content-length: 204169
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 394, 8-bit/color RGBA, non-interlaced\012- data
Size:   204169
Md5:    b91aa86d96c46c4d61f2b244abaf89c2
Sha1:   1c725ea7a4ea7b4a958b4bc05b24f850479b11b2
Sha256: d14d8babd12bad6a5ea601e537d7fbef8642c86a0db3751ac93e7aff892dfa83
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-consumer-1-2889dd4e93.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 539552
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F6CE)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: d66f321e-d01e-0002-0523-c97479000000
content-length: 148686
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 465, 8-bit/color RGBA, non-interlaced\012- data
Size:   148686
Md5:    2889dd4e93eb0d623ebdca683cc580c0
Sha1:   26905637af861a3912fa3146c332c619c51911ed
Sha256: 6f3e98554f2260d834bcd6ab038ac6285945999a23d8071dcb2fc391cba080e1
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-edu-3-f237dbff1f.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F6C5)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 13b097f0-001e-002e-3744-cd98d6000000
content-length: 153748
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 535, 8-bit/color RGBA, non-interlaced\012- data
Size:   153748
Md5:    f237dbff1fa2d11d1b732696f88fb568
Sha1:   ccbb89ec75d9b76fa6f2bfcfe2103bc2ac34f33a
Sha256: 27e3a326be87a13cf13472fcb4bced5572d73d7cb34a0e9a7e03b6512eff4e6d
                                        
                                            GET /officehub/images/content/images/unauth-refresh/value-commercial-154eace07d.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Thu, 03 Feb 2022 22:29:08 GMT
server: ECAcc (ska/F7B3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: f0de1374-901e-0003-2444-cd2ba5000000
content-length: 262651
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1776 x 472, 8-bit/color RGBA, non-interlaced\012- data
Size:   262651
Md5:    154eace07d8cc6c997a2d64a6dcb3e0f
Sha1:   a4fbab3c56cbdc683f6863d53ca100b595385ee8
Sha256: 6e7a36dc69312208861fea7103f9d0db6032f9bdd929c41b55696e544d315552
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-commercial-1-c12cd6bc84.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F6D6)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: b041bcae-301e-000a-5044-cd6e76000000
content-length: 288266
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 588, 8-bit/color RGBA, non-interlaced\012- data
Size:   288266
Md5:    c12cd6bc8402c20079eccd87115b50cc
Sha1:   5c8a6f635b00f83289039e8a027a4cb03cc47675
Sha256: a5fbdf8aafdbee42005a4dcaac5fa402a79aa8f153486a5ade74e92085504adf
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-consumer-3-8d9f5d5cba.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85456
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:34 GMT
server: ECAcc (ska/F797)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: dcb83b18-d01e-0012-3b44-cdb111000000
content-length: 281677
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 442, 8-bit/color RGBA, non-interlaced\012- data
Size:   281677
Md5:    8d9f5d5cba3c50ebd3b2f94d685705e1
Sha1:   2261dfe2845c05b21aa21fadfd5b2e19efe7ee6f
Sha256: 5e4e6ddcf74cd9e1e8985666cdba1aeb786a7560d15feb89c1b608e0acb1fbbd
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-edu-1-6f56908e42.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 68138
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F72E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: ed9972e3-701e-0079-6d6d-cd36e5000000
content-length: 229283
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 657 x 575, 8-bit/color RGBA, non-interlaced\012- data
Size:   229283
Md5:    6f56908e42f3398e4c68764a574b2c6a
Sha1:   dab99dff2b2401d7c3ae20d1bba5864e41908ecb
Sha256: faf8d5d4a007c272f143124965d15fae555c5f721182d09b626d70e09e6d299b
                                        
                                            GET /mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/font-woff
                                        
last-modified: Tue, 14 Jun 2022 13:23:15 GMT
x-activity-id: 433fff9c-ac1c-4827-bb3b-a2ca5fa6dd83
ms-cv: /0+3RKV7ykuNLoKI.0
x-appversion: 1.0.8167.41521
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-05-13T07:04:02.0000000Z}
ms-operation-id: 2f08fc2d143919438bfe914fdfecfc02
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-length: 26288
cache-control: public, max-age=22948723
expires: Wed, 14 Jun 2023 13:23:22 GMT
date: Wed, 21 Sep 2022 22:44:39 GMT
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 26288, version 0.0\012- data
Size:   26288
Md5:    d0263dc03be4c393a90bda733c57d6db
Sha1:   8a032b6deab53a33234c735133b48518f8643b92
Sha256: 22b4df5c33045b645cafa45b04685f4752e471a2e933bff5bf14324d87deee12
                                        
                                            GET /officehub/images/content/images/unauth-refresh/highlight-consumer-2-c4ec327b9e.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85456
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
server: ECAcc (ska/F6B2)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 512ff29b-b01e-0066-7244-cd85e1000000
content-length: 301050
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 658 x 467, 8-bit/color RGBA, non-interlaced\012- data
Size:   301050
Md5:    c4ec327b9e9d1fb0ce56254c891f03fe
Sha1:   eba0d651e385679fb08a2aa54d25f19ab4ee4448
Sha256: e0d79790de989c7ab117d4dba27e0964b9b7c9b496ee6f8df2476d3a98c55ea5
                                        
                                            GET /officehub/images/content/images/unauth-refresh/value-consumer-e73e46d493.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85456
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Thu, 03 Feb 2022 22:29:07 GMT
server: ECAcc (ska/F792)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: ba93a763-a01e-0037-2f44-cd186d000000
content-length: 670470
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1920 x 507, 8-bit/color RGBA, non-interlaced\012- data
Size:   670470
Md5:    e73e46d4935123e170587b9285528242
Sha1:   8ca446f65513228d8027cb26038b951615e013d0
Sha256: f3b0d16348c0284c2f1a40e2142268e4a039e6e66c45237e5f61024071d70059
                                        
                                            GET /officehub/images/content/images/unauth-refresh/more-apps-consumer-861afc732e.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Mon, 14 Feb 2022 22:01:04 GMT
server: ECAcc (ska/F694)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 9ef2c315-b01e-003b-3944-cd8f65000000
content-length: 744598
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1056 x 867, 8-bit/color RGBA, non-interlaced\012- data
Size:   744598
Md5:    861afc732e5a6301b789e506b98b1249
Sha1:   4940f1d79468b0e2024fd1afefefc69b389dafe2
Sha256: 75ad1d9df3fc0e67c572d7ee41a2d13c8ee928c5348b0633715fe130b003e8b6
                                        
                                            GET /officehub/images/content/images/unauth-refresh/more-apps-commercial-620d899e6a.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Mon, 14 Feb 2022 22:01:03 GMT
server: ECAcc (ska/F6B8)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 704165c1-d01e-0070-2344-cd7336000000
content-length: 737682
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1056 x 867, 8-bit/color RGBA, non-interlaced\012- data
Size:   737682
Md5:    620d899e6aaef5da299e7ac5237c2a7b
Sha1:   677be89898106026499ae63a543f051b4f9a8da2
Sha256: a47ffc5af116ccdcbdf40bc824310dcc08732712928ef1c1af07aa530d66e7b4
                                        
                                            GET /officehub/images/content/images/unauth-refresh/more-apps-edu-b1e5c7e0c9.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Mon, 14 Feb 2022 22:01:03 GMT
server: ECAcc (ska/F6C7)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 39b999bb-801e-006d-4144-cd7e8a000000
content-length: 759285
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1056 x 867, 8-bit/color RGBA, non-interlaced\012- data
Size:   759285
Md5:    b1e5c7e0c9aff86e324cb1704c560fad
Sha1:   5abc3016d14ad3c355763847ad5abd13de1dcf12
Sha256: df3103edb09b0c0b9b59508c6eadd84b458f175ce210adefea57f8d83c1d5c63
                                        
                                            GET /officehub/images/content/images/unauth-refresh/hero-desktop-a9ed1c74a0.jpg HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 80140
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Thu, 24 Feb 2022 22:27:20 GMT
server: ECAcc (ska/F77F)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 06595bae-001e-005c-4251-cd9f99000000
content-length: 610999
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size:   610999
Md5:    a9ed1c74a021494a48b8e524dbe1b2d1
Sha1:   4e2c1c046eb70bfc890855c2a3c4c48ee30b76e6
Sha256: 6757b53c0ed4fc376b2f53949c638352a821a19249885db615914ef364550c67
                                        
                                            GET /static/fonts/segoe-ui/west-european/normal/latest.woff2 HTTP/1.1 
Host: c.s-microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: font/woff2
                                        
content-length: 34052
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "588d483e9c7d51:0"
cache-control: public, max-age=428123
expires: Mon, 26 Sep 2022 21:40:03 GMT
date: Wed, 21 Sep 2022 22:44:40 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 34052, version 0.0\012- data
Size:   34052
Md5:    36397a3bc139c6e9f81d383f060f080a
Sha1:   3f4f86c10920d4ed345f4858b6cde9f93e1aeb81
Sha256: 4f7f4afe26e71fa9ca1dac4a43b557a554a46f53251d849f07ed08a04829d74b
                                        
                                            GET /static/fonts/segoe-ui/west-european/Semibold/latest.woff2 HTTP/1.1 
Host: c.s-microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: font/woff2
                                        
content-length: 29388
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "5b68d583e9c7d51:0"
cache-control: public, max-age=417379
expires: Mon, 26 Sep 2022 18:40:59 GMT
date: Wed, 21 Sep 2022 22:44:40 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 29388, version 0.0\012- data
Size:   29388
Md5:    6e75a94d5f7170a1ab532d32c2a35755
Sha1:   9c1b6fff544089941bbeddbcf529c3f0b46d853a
Sha256: d87d0a7a7fe2c36d1dc093bfe56e9b81b311988789dbd3b65abf811d551ef02f
                                        
                                            GET /collect/v1/t.js?ver=%272.1%27&name=%27Ms.Webi.PageView%27&time=%272022-09-21T22%3A44%3A39.649Z%27&os=%27Unix%27&appId=%27JS%3Awww.office.com-unauth%27&*baseType=%27Ms.Content.PageView%27&-ver=%271.0%27&-impressionGuid=%27d6b18411-d0dd-4ad2-a7e5-78e396fb774a%27&-pageName=%27UnauthOhp%27&-uri=%27https%3A%2F%2Fwww.office.com%2F%27&-pageTags=%27%7B%22metaTags%22%3A%7B%22expengine%22%3A%22office.com%22%2C%22expstatus%22%3A%22prod%22%2C%22ver%22%3A%225%22%2C%22ms.lang%22%3A%22en%22%2C%22ms.loc%22%3A%22US%22%2C%22ms.ocpub.assetid%22%3A%22UnauthOhp%22%2C%22ms.env%22%3A%22prod%22%2C%22ms.sitever%22%3A%225%22%2C%22ms.flightid%22%3A%22wachostprodhwa%7Cthumbnailcall%7CP-R-1020934-8-24%7CP-R-1020323-2-3%7CP-R-1019936-2-4%7CP-R-1018575-12-18%7CP-R-1004015-2-18%7CP-R-1000295-2-20%7CP-R-108797-2-7%7CP-R-108833-2-6%7CP-R-108875-2-6%7CP-R-110074-16-13%7CP-R-106573-4-4%7CP-R-95756-2-11%7CP-R-93960-2-24%7CP-R-88009-6-9%7CP-D-116695-2-11%7CP-D-116687-1-5%7CP-D-109195-1-7%7CP-D-68024-1-140%22%7D%7D%27&-behavior=0&-resHeight=1024&-resWidth=1280&-market=%27en-US%27&*cookieEnabled=true&*flashInstalled=false&*isJs=true&*title=%27Office%20365%20Login%20%7C%20Microsoft%20Office%27&*isLoggedIn=false&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.1.0%27&ext-javascript-domain=%27www.office.com%27&ext-user-localId=%27t%3A0E5DF21EAA4561322F73E038AB696080%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 281
Expires: 0
MS-CV: Z6V9LeAjcUqiRVG7FUSRmg.0
X-Content-Type-Options: nosniff
Set-Cookie: MC1=GUID=2000e12ef5b9469bbeadd738c882993f&HASH=2000&LV=202209&V=4&LU=1663800280390;Domain=.microsoft.com;Expires=Thu, 21 Sep 2023 22:44:40 GMT;Path=/;Secure;SameSite=None MS0=3ed807a3ce6841108235c5b9fc67eabd;Domain=.microsoft.com;Expires=Wed, 21 Sep 2022 23:14:40 GMT;Path=/;Secure;SameSite=None
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Wed, 21 Sep 2022 22:44:40 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   281
Md5:    73c6e9467d71751021584b5c152a35cf
Sha1:   18678a319c14636aa1673f8cb88b6059e0768910
Sha256: 49157de106294a994877bf01d56dd7e3a5e778e69b47b698c61fdb43371b333b
                                        
                                            GET /collect/v1/t.gif?ver=%272.1%27&name=%27Ms.Webi.OutgoingRequest%27&time=%272022-09-21T22%3A44%3A39.810Z%27&appId=%27JS%3AMeControl%27&cV=%27vHKurJfpeVLTEyLf.1%27&flags=2097152&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.2.3%27&ext-javascript-domain=%27www.office.com%27&ext-javascript-userConsent=false&ext-app-env=%27Prod%27&-operationName=%27meversion%27&-dependencyOperationName=%27LoadResource%27&-dependencyName=%27MeControl%27&-latencyMs=312&-succeeded=true&-targetUri=%27https%3A%2F%2Fmem.gfx.ms%2Fmeversion%3Fpartner%3D**%26market%3D**%26uhf%3D**%27&*baseType=%27Ms.Qos.OutgoingServiceRequest%27&*pageName=%27None%27&*impressionGuid=%276bc7bfc4-e40c-49a0-498d-40946a7382c6%27&*market=%27en-US%27&*customData=%27%7B%22computedDuration%22%3A683%2C%22perfDuration%22%3A312%2C%22metaTags%22%3A%7B%22pgpart%22%3A%22office%22%7D%2C%22config%22%3A%7B%22ver%22%3A%2210.22228.4%22%2C%22mkt%22%3A%22en-US%22%2C%22ptn%22%3A%22office%22%2C%22gfx%22%3A%22https%3A%2F%2Famcdn.msftauth.net%22%2C%22dbg%22%3Afalse%2C%22aad%22%3Atrue%2C%22int%22%3Afalse%2C%22pxy%22%3Atrue%2C%22msTxt%22%3Afalse%2C%22rwd%22%3Atrue%2C%22telEvs%22%3A%22PageAction%2C%20PageView%2C%20ContentUpdate%2C%20OutgoingRequest%2C%20ClientError%2C%20PartnerApiCall%2C%20TrackedScenario%22%2C%22instKey%22%3A%22b8ffe739c47a401190627519795ca4d2-044a8309-9d4b-430b-9d47-6e87775cbab6-6888%22%2C%22oneDSUrl%22%3A%22https%3A%2F%2Fjs.monitor.azure.com%2Fscripts%2Fc%2Fms.shared.analytics-3.1.11.gbl.min.js%22%2C%22remAcc%22%3Atrue%2C%22main%22%3A%22meBoot%22%2C%22wrapperId%22%3A%22uhf%22%2C%22cdnRegex%22%3A%22%5E(%3F%3Ahttps%3F%3A%5C%5C%2F%5C%5C%2F)%3F(mem%5C%5C.gfx%5C%5C.ms(%3F!%5C%5C.)%7Ccontrols%5C%5C.account.microsoft%3F(%3F%3A-int%7C-dev)%3F(%5C%5C.com)%3F(%3A%5B0-9%5D%7B1%2C6%7D)%7Camcdn%5C%5C.ms(%3F%3Aft)%3Fauth%5C%5C.net(%3F!%5C%5C.))%22%2C%22timeoutMs%22%3A30000%2C%22graphv2%22%3Atrue%2C%22graphinfo%22%3A%7B%22graphclientid%22%3A%227eadcef8-456d-4611-9480-4fff72b8b9e2%22%2C%22graphscope%22%3A%22user.read%22%2C%22graphcodeurl%22%3A%22https%3A%2F%2Flogin.microsoftonline.com%2Fcommon%2Foauth2%2Fv2.0%2Fauthorize%22%2C%22graphredirecturi%22%3A%22https%3A%2F%2Famcdn.msftauth.net%2Fme%2Fcallgraph%22%2C%22graphphotourl%22%3A%22https%3A%2F%2Fgraph.microsoft.com%2Fv1.0%2Fme%2Fphotos%2F96x96%2F%24value%22%7D%2C%22aadUrl%22%3A%22https%3A%2F%2Fmyaccount.microsoft.com%22%2C%22msaUrl%22%3A%22https%3A%2F%2Faccount.microsoft.com%2F%22%2C%22authAppUpsellUrl%22%3A%22%22%2C%22cache%22%3Atrue%2C%22cacheRetention%22%3A%7B%22picRetention%22%3A604800000%2C%22authAppRetention%22%3A94670856000%7D%7D%2C%22url%22%3A%22https%3A%2F%2Fwww.office.com%2F%22%2C%22accts%22%3A%220-0%22%7D%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 43
Expires: 0
MS-CV: jxaYu948L0qkwzvIOZN3ow.0
X-Content-Type-Options: nosniff
Set-Cookie: MC1=GUID=9c0d454da4ad4fbaa382901796df0163&HASH=9c0d&LV=202209&V=4&LU=1663800280440;Domain=.microsoft.com;Expires=Thu, 21 Sep 2023 22:44:40 GMT;Path=/;Secure;SameSite=None MS0=6c5344da6f3846f2ac45313d34c4a920;Domain=.microsoft.com;Expires=Wed, 21 Sep 2022 23:14:40 GMT;Path=/;Secure;SameSite=None
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Wed, 21 Sep 2022 22:44:39 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            GET /collect/v1/t.gif?ver=%272.1%27&name=%27Ms.Webi.MeControl.TrackedScenario%27&time=%272022-09-21T22%3A44%3A40.143Z%27&appId=%27JS%3AMeControl%27&cV=%27vHKurJfpeVLTEyLf.7%27&flags=2097152&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.2.3%27&ext-javascript-domain=%27www.office.com%27&ext-javascript-userConsent=false&ext-app-env=%27Prod%27&*partner=%27office%27&*controlVersion=%2710.22228.4%27&*market=%27en-US%27&*scenario=%27Interactive%27&*action=%27END%27&*previousAction=%27START%27&*success=true&*durationMs=330&*details=%27Web%20header%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 43
Expires: 0
MS-CV: nuz2bp+r3UKvGJKOSiqG8g.0
X-Content-Type-Options: nosniff
Set-Cookie: MC1=GUID=7e91dba57f7244a09d1cb48f991d225f&HASH=7e91&LV=202209&V=4&LU=1663800280515;Domain=.microsoft.com;Expires=Thu, 21 Sep 2023 22:44:40 GMT;Path=/;Secure;SameSite=None MS0=d813cef018d046309dc21efbf58e01f9;Domain=.microsoft.com;Expires=Wed, 21 Sep 2022 23:14:40 GMT;Path=/;Secure;SameSite=None
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Wed, 21 Sep 2022 22:44:40 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            GET /scripts/me/MeControl/10.22228.4/en-US/meBoot.min.js HTTP/1.1 
Host: mem.gfx.ms
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
last-modified: Mon, 29 Aug 2022 21:27:20 GMT
etag: "1d8bc28cb1d0675"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref: 02JMrYwAAAACwb+hhMqRBSJs8DKbCy6ZOTE9OMjFFREdFMTYxNwBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Wed, 21 Sep 2022 22:44:39 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   33477
Md5:    64b51d34a915cc3678e14fc213dce6c0
Sha1:   a9624addc2ff25e4945fe98fe025277282e8bf34
Sha256: e78b7543765fd698ebaec7807d1af4adec24c7d5a6ca30767ddbd7f8dadf113b
                                        
                                            GET /collect/v1/t.gif?ver=%272.1%27&name=%27Ms.Webi.MeControl.TrackedScenario%27&time=%272022-09-21T22%3A44%3A39.992Z%27&appId=%27JS%3AMeControl%27&cV=%27vHKurJfpeVLTEyLf.6%27&flags=2097152&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.2.3%27&ext-javascript-domain=%27www.office.com%27&ext-javascript-userConsent=false&ext-app-env=%27Prod%27&*partner=%27office%27&*controlVersion=%2710.22228.4%27&*market=%27en-US%27&*scenario=%27Load%27&*action=%27END%27&*previousAction=%27START%27&*success=true&*durationMs=179&*details=%27loadV1%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 43
Expires: 0
MS-CV: xKYhigpYgUKfh1CBT69sNA.0
X-Content-Type-Options: nosniff
Set-Cookie: MC1=GUID=47d6931adeef42ce8305430d11163d11&HASH=47d6&LV=202209&V=4&LU=1663800280624;Domain=.microsoft.com;Expires=Thu, 21 Sep 2023 22:44:40 GMT;Path=/;Secure;SameSite=None MS0=e92a97b61abf4d6593bdedfc97931e0a;Domain=.microsoft.com;Expires=Wed, 21 Sep 2022 23:14:40 GMT;Path=/;Secure;SameSite=None
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Wed, 21 Sep 2022 22:44:39 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            GET /officehub/images/content/images/favicon-8f211ea639.ico HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/x-icon
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85722
date: Wed, 21 Sep 2022 22:44:40 GMT
last-modified: Wed, 21 Jul 2021 22:37:55 GMT
server: ECAcc (ska/F7A7)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: d36270bc-f01e-0015-2844-cddd72000000
content-length: 7886
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel\012- data
Size:   7886
Md5:    8f211ea639e8777abeb1ab7a8871580c
Sha1:   d6427ce52782d6b07118817e71a7e5192ca72f8c
Sha256: e588bde3eb80b349b069bcbb10520e49f9aa6f38001ce651f396269de3499549
                                        
                                            GET /sw?cdnDomain=res.cdn.office.net/officehub&workload=officehome HTTP/1.1 
Host: www.office.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: OH.SID=27aee771-0a69-4b76-bfce-da2ea0e03b69; OH.DCAffinity=OH-weu; OH.FLID=f039ad0c-9942-4018-b341-6f03ed029f84; MUID=0E5DF21EAA4561322F73E038AB696080; MSFPC=GUID=2000e12ef5b9469bbeadd738c882993f&HASH=2000&LV=202209&V=4&LU=1663800280390
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         13.107.6.156
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: no-store,no-cache
pragma: no-cache
content-length: 155628
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
nel: { "report_to": "NelOfficeHubUpload1", "max_age": 3600, "include_subdomains":False, "failure_fraction":1, "success_fraction":0.01}
report-to: { "group": "NelOfficeHubUpload1", "max_age": 3600, "endpoints": [{ "url": "https://officehub.nel.measure.office.net/api/report?TenantId=unknown&DestinationEndpoint=weu&FrontEnd=AFD" }],"include_subdomains":False}
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 979281FC381D43D0A8DCB4E8AA5F6E1A Ref B: SVG20EDGE0219 Ref C: 2022-09-21T22:44:40Z
date: Wed, 21 Sep 2022 22:44:39 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   155628
Md5:    41bca2e71adf86d3d8195e8d52355e8b
Sha1:   32186cc30b6dd2e29b307caabefb13876775a7fa
Sha256: 7abf2f575cf0a59b40ec45f23a4110c68d6ceac7f1ced296d0f7226d7880e082
                                        
                                            POST /collect/v1 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 3079
Origin: https://www.office.com
Connection: keep-alive
Cookie: MC1=GUID=2000e12ef5b9469bbeadd738c882993f&HASH=2000&LV=202209&V=4&LU=1663800280390; MS0=3ed807a3ce6841108235c5b9fc67eabd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 57
Expires: 0
MS-CV: NiARhdZS7UiGuyZmbCSAOg.0
X-Content-Type-Options: nosniff
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Access-Control-Allow-Headers: Accept, Authorization, Content-Type, Origin, X-Xbl-Contract-Version, X-Xbl-Device-Type, Xbl-Authz-Actor-10, WithCredentials
Access-Control-Allow-Origin: https://www.office.com
Access-Control-Allow-Credentials: true
Date: Wed, 21 Sep 2022 22:44:40 GMT


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   57
Md5:    bb1bb0d9910eea16029c353a9428053f
Sha1:   f49e1213ea3f9ce8959609fac0f14ccd724f7135
Sha256: 8d316e9191d40a4b9cc775c0adce0a999873c1935781d1312a5b12ee717c53d4
                                        
                                            POST /collect/v1 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 3759
Origin: https://www.office.com
Connection: keep-alive
Cookie: MC1=GUID=47d6931adeef42ce8305430d11163d11&HASH=47d6&LV=202209&V=4&LU=1663800280624; MS0=e92a97b61abf4d6593bdedfc97931e0a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 57
Expires: 0
MS-CV: x4CUN8iq+EuW+pqQvM7Owg.0
X-Content-Type-Options: nosniff
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Access-Control-Allow-Headers: Accept, Authorization, Content-Type, Origin, X-Xbl-Contract-Version, X-Xbl-Device-Type, Xbl-Authz-Actor-10, WithCredentials
Access-Control-Allow-Origin: https://www.office.com
Access-Control-Allow-Credentials: true
Date: Wed, 21 Sep 2022 22:44:40 GMT


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   57
Md5:    bb1bb0d9910eea16029c353a9428053f
Sha1:   f49e1213ea3f9ce8959609fac0f14ccd724f7135
Sha256: 8d316e9191d40a4b9cc775c0adce0a999873c1935781d1312a5b12ee717c53d4
                                        
                                            GET /c.gif?DI=4050&did=1&t= HTTP/1.1 
Host: c1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=47d6931adeef42ce8305430d11163d11&HASH=47d6&LV=202209&V=4&LU=1663800280624; MS0=e92a97b61abf4d6593bdedfc97931e0a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         20.234.93.27
HTTP/2 302 Found
                                        
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?DI=4050&did=1&t=&CtsSyncId=F20046966EEA42FEBF4EAC5686F6328F&RedC=c1.microsoft.com&MXFR=1D91732FF0C86F3F1AF16109F4C86960
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c1.microsoft.com; path=/; SameSite=None; Secure; MUID=1D91732FF0C86F3F1AF16109F4C86960; domain=.microsoft.com; expires=Mon, 16-Oct-2023 22:44:40 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Wed, 21 Sep 2022 22:44:40 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-sw.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 106697
date: Wed, 21 Sep 2022 22:44:40 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F732)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 3f0ea9da-401e-0000-0d13-cdcac1000000
content-length: 675
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1463), with CRLF line terminators
Size:   675
Md5:    d4ee4c43c5cbc970649d525b7b1071d5
Sha1:   dfbdb1c4fd5808c1e1d250281cd9303ddf2e1dd1
Sha256: d9ef4529189185a4680228b1b728571f74182bce8d344f5963af7c8fcdd894d9
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-core.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 106700
date: Wed, 21 Sep 2022 22:44:40 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F743)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 4fb618d9-b01e-0066-2c13-cd85e1000000
content-length: 2587
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7422), with CRLF line terminators
Size:   2587
Md5:    28afdd91ed42b0f73c8c95573d815873
Sha1:   08a6f4f40fe4e31020672ea1b29cb0028c445fc0
Sha256: 08cde97093db5697f729e1800e7f839932b093df521adf39cdb27ffbe3a96bb6
                                        
                                            GET /collect/v1/t.gif?ver=%272.1%27&name=%27Ms.Webi.OutgoingRequest%27&time=%272022-09-21T22%3A44%3A40.556Z%27&appId=%27JS%3AMeControl%27&cV=%27vHKurJfpeVLTEyLf.8%27&flags=2097152&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.2.3%27&ext-javascript-domain=%27www.office.com%27&ext-javascript-userConsent=false&ext-app-env=%27Prod%27&-operationName=%27meCore.min.js%27&-dependencyOperationName=%27DownloadScript%27&-dependencyName=%27MeControl%27&-latencyMs=51&-succeeded=true&-targetUri=%27https%3A%2F%2Fmem.gfx.ms%2Fscripts%2Fme%2FMeControl%2F10.22228.4%2Fen-US%2FmeCore.min.js%27&*baseType=%27Ms.Qos.OutgoingServiceRequest%27&*pageName=%27Initial%20Collapsed%27&*impressionGuid=%276bc7bfc4-e40c-49a0-498d-40946a7382c6%27&*market=%27en-US%27&*customData=%27%7B%22computedDuration%22%3A76%2C%22perfDuration%22%3A51%2C%22metaTags%22%3A%7B%22pgpart%22%3A%22office%22%7D%2C%22config%22%3A%7B%22ver%22%3A%2210.22228.4%22%2C%22mkt%22%3A%22en-US%22%2C%22ptn%22%3A%22office%22%2C%22gfx%22%3A%22https%3A%2F%2Famcdn.msftauth.net%22%2C%22dbg%22%3Afalse%2C%22aad%22%3Atrue%2C%22int%22%3Afalse%2C%22pxy%22%3Atrue%2C%22msTxt%22%3Afalse%2C%22rwd%22%3Atrue%2C%22telEvs%22%3A%22PageAction%2C%20PageView%2C%20ContentUpdate%2C%20OutgoingRequest%2C%20ClientError%2C%20PartnerApiCall%2C%20TrackedScenario%22%2C%22instKey%22%3A%22b8ffe739c47a401190627519795ca4d2-044a8309-9d4b-430b-9d47-6e87775cbab6-6888%22%2C%22oneDSUrl%22%3A%22https%3A%2F%2Fjs.monitor.azure.com%2Fscripts%2Fc%2Fms.shared.analytics-3.1.11.gbl.min.js%22%2C%22remAcc%22%3Atrue%2C%22main%22%3A%22meBoot%22%2C%22wrapperId%22%3A%22uhf%22%2C%22cdnRegex%22%3A%22%5E(%3F%3Ahttps%3F%3A%5C%5C%2F%5C%5C%2F)%3F(mem%5C%5C.gfx%5C%5C.ms(%3F!%5C%5C.)%7Ccontrols%5C%5C.account.microsoft%3F(%3F%3A-int%7C-dev)%3F(%5C%5C.com)%3F(%3A%5B0-9%5D%7B1%2C6%7D)%7Camcdn%5C%5C.ms(%3F%3Aft)%3Fauth%5C%5C.net(%3F!%5C%5C.))%22%2C%22timeoutMs%22%3A30000%2C%22graphv2%22%3Atrue%2C%22graphinfo%22%3A%7B%22graphclientid%22%3A%227eadcef8-456d-4611-9480-4fff72b8b9e2%22%2C%22graphscope%22%3A%22user.read%22%2C%22graphcodeurl%22%3A%22https%3A%2F%2Flogin.microsoftonline.com%2Fcommon%2Foauth2%2Fv2.0%2Fauthorize%22%2C%22graphredirecturi%22%3A%22https%3A%2F%2Famcdn.msftauth.net%2Fme%2Fcallgraph%22%2C%22graphphotourl%22%3A%22https%3A%2F%2Fgraph.microsoft.com%2Fv1.0%2Fme%2Fphotos%2F96x96%2F%24value%22%7D%2C%22aadUrl%22%3A%22https%3A%2F%2Fmyaccount.microsoft.com%22%2C%22msaUrl%22%3A%22https%3A%2F%2Faccount.microsoft.com%2F%22%2C%22authAppUpsellUrl%22%3A%22%22%2C%22cache%22%3Atrue%2C%22cacheRetention%22%3A%7B%22picRetention%22%3A604800000%2C%22authAppRetention%22%3A94670856000%7D%7D%2C%22url%22%3A%22https%3A%2F%2Fwww.office.com%2F%22%2C%22accts%22%3A%220-0%22%7D%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=47d6931adeef42ce8305430d11163d11&HASH=47d6&LV=202209&V=4&LU=1663800280624; MS0=e92a97b61abf4d6593bdedfc97931e0a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 43
Expires: 0
MS-CV: oWAM15KbokWUKkJIkGr55g.0
X-Content-Type-Options: nosniff
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Wed, 21 Sep 2022 22:44:40 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            GET /officehub/bundles/unauth-vendor-320f34a99e.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85711
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Wed, 21 Jul 2021 22:37:13 GMT
server: ECAcc (ska/F79B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 3a0131bd-f01e-003a-4044-cdd0b9000000
content-length: 30636
X-Firefox-Spdy: h2

                                        
                                            GET /c.gif?DI=4050&did=1&t=&CtsSyncId=F20046966EEA42FEBF4EAC5686F6328F&RedC=c1.microsoft.com&MXFR=1D91732FF0C86F3F1AF16109F4C86960 HTTP/1.1 
Host: c.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.21.200
HTTP/2 302 Found
                                        
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c1.microsoft.com/c.gif?DI=4050&did=1&t=&CtsSyncId=F20046966EEA42FEBF4EAC5686F6328F&MUID=1D91732FF0C86F3F1AF16109F4C86960
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: MUID=1D91732FF0C86F3F1AF16109F4C86960; domain=.bing.com; expires=Mon, 16-Oct-2023 22:44:40 GMT; path=/; SameSite=None; Secure; Priority=High; SRM_B=1D91732FF0C86F3F1AF16109F4C86960; domain=c.bing.com; expires=Mon, 16-Oct-2023 22:44:40 GMT; path=/; SameSite=None; Secure; SRM_I=1D91732FF0C86F3F1AF16109F4C86960; domain=c.bing.com; expires=Mon, 16-Oct-2023 22:44:40 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C885F6A56C884C77B291D5EB5B68D6F1 Ref B: OSL30EDGE0512 Ref C: 2022-09-21T22:44:40Z
date: Wed, 21 Sep 2022 22:44:39 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-routing.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 106700
date: Wed, 21 Sep 2022 22:44:40 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F6F3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: fc45466e-c01e-0021-2513-cdeeba000000
content-length: 1149
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2815), with CRLF line terminators
Size:   1149
Md5:    fa37115f5e4098448f0da310392eb8e8
Sha1:   79549bc019939105b3284d10b107dfe5a48e16fe
Sha256: 66809c38562d164f0de6b1b690f4ee992ab69b2e27b4c80f5ea254c6e4498ce9
                                        
                                            GET /c.gif?DI=4050&did=1&t=&CtsSyncId=F20046966EEA42FEBF4EAC5686F6328F&MUID=1D91732FF0C86F3F1AF16109F4C86960 HTTP/1.1 
Host: c1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Cookie: MC1=GUID=47d6931adeef42ce8305430d11163d11&HASH=47d6&LV=202209&V=4&LU=1663800280624; MS0=e92a97b61abf4d6593bdedfc97931e0a; SM=T; MUID=1D91732FF0C86F3F1AF16109F4C86960
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         20.234.93.27
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=C; domain=c1.microsoft.com; path=/; SameSite=None; Secure; ANONCHK=0; domain=c1.microsoft.com; expires=Wed, 21-Sep-2022 22:54:40 GMT; path=/; SameSite=None; Secure;
date: Wed, 21 Sep 2022 22:44:40 GMT
content-length: 42
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    32023bb33cfb2a1990a4ef2d85b6ac16
Sha1:   23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
Sha256: 99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-strategies.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 106701
date: Wed, 21 Sep 2022 22:44:40 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F694)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: c36c276c-d01e-002d-4713-cd79b2000000
content-length: 1098
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5035), with CRLF line terminators
Size:   1098
Md5:    168618bcb3f22fc86ed25a0ac3e8bfbe
Sha1:   9b8507ce6a3dc3ec15c898ce27b09428e77e6951
Sha256: ee7fdee09b690f1e811db4f2f5b7291a6bad8a60b73a78ab4d59129b80fed25f
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-cache-expiration.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 106701
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F6F4)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 973beffc-d01e-0070-5013-cd7336000000
content-length: 1251
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3819), with CRLF line terminators
Size:   1251
Md5:    b756216fa58823c24407410c791451d0
Sha1:   0da2e117ace57f0c6fccfcbd30a983d6b20e7c84
Sha256: fed47caf298be8f107dacc7e80b78366dd41dc7d68c073d930957b4fd0d3c650
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-cacheable-response.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85766
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F78D)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 21a9a90d-601e-0065-3344-cd6485000000
content-length: 301
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (525), with CRLF line terminators
Size:   301
Md5:    4dc57fb1f88168027a16a11bcf572956
Sha1:   2b220a4657242582b2a89f59cbfd11e9b76d9ba6
Sha256: f438fa669d4e18359f32184a0e315b6e007b4e6f2a616daeff4213ea08c5ca15
                                        
                                            GET /officehub/versionless/workbox-v3.6.2/workbox-navigation-preload.prod.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.office.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 436281
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
server: ECAcc (ska/F793)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 2cb24dce-b01e-0066-0613-ca85e1000000
content-length: 256
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (598), with CRLF line terminators
Size:   256
Md5:    9f7170ab4dfa3986de0a716633518f25
Sha1:   3d52ac2af7aa4c083be68ac58a9555ab553cc7fa
Sha256: f88c384687fbd63b6e99bd25a55cd8c8e555b226dc37f73b037e6eeecde42b34
                                        
                                            GET /officehub/bundles/otel-logger-803ab00c96be7f090df5.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 01 Sep 2022 00:19:05 GMT
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 304 Not Modified
                                        
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 577297
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Thu, 01 Sep 2022 00:19:05 GMT
server: ECAcc (ska/F79B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 2c799ca5-001e-0063-6acb-c8573a000000
X-Firefox-Spdy: h2

                                        
                                            GET /officehub/bundles/0.afd425dea6438aec6238.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146658
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:38 GMT
server: ECAcc (ska/F7BA)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 682ac382-201e-0039-69b6-cc31dd000000
content-length: 6161
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18962)
Size:   6161
Md5:    6c5cb6835b1aa38f39482ba9a023ff57
Sha1:   29e8848af962c5b2f096ee2341023af5598f57f6
Sha256: 46673ebc8a70b4d4eefa69e188784b6e03447a2f656f415d508b38ddf7275a3e
                                        
                                            GET /officehub/bundles/1.275b76303e3335c22326.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146659
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:40 GMT
server: ECAcc (ska/F6E8)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 3882305e-201e-0006-4bb6-ccf97e000000
content-length: 6110
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23496)
Size:   6110
Md5:    ac52933dacfbbb1159946505a9979f40
Sha1:   85b4d000686abea53e1cd871b37d5785b49dd9ea
Sha256: ed1a058708b30c32e387c21331d8ba977de76867a189f1e46f5c49f314880b87
                                        
                                            GET /scripts/c/ms.shared.analytics-3.1.11.gbl.min.js HTTP/1.1 
Host: js.monitor.azure.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: public, max-age=31536000, immutable, no-transform
content-encoding: br
content-md5: DIZ9SGzozvDW8TjfsqXTcw==
last-modified: Wed, 02 Mar 2022 00:34:01 GMT
etag: 0x8D9FBE45937B34A
x-cache: TCP_HIT
x-ms-request-id: a64cac87-601e-006c-3307-c903e2000000
x-ms-version: 2009-09-19
x-ms-meta-jssdkver: 3.1.11
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,x-ms-meta-jssdkver,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 02ZMrYwAAAACkzHjG85DGTIdyinPK9JFaTE9OMjFFREdFMTYxNQBmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
date: Wed, 21 Sep 2022 22:44:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65394)
Size:   34331
Md5:    e164ca1a88afa42204ad14c9ea344659
Sha1:   7ef6451451d2af101c66836de93bcfdda2aca519
Sha256: b5091e313329882f8a3dcbbf4f34ed7f3f3cad8567fc7b8a4c562fd5a5bdfcfa
                                        
                                            GET /officehub/bundles/4.e1d174700fe0b997ef4f.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146651
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:34 GMT
server: ECAcc (ska/F7A3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: d3e97db3-101e-001d-4db6-ccc77d000000
content-length: 12175
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (40926)
Size:   12175
Md5:    98f5e635f22373173f7151ae04ab97cf
Sha1:   99b52d1b65e65e93977d5c50ce047a384fdf7d0c
Sha256: eb8ffd1c18a50c32b7adb830bde74ea75504e4196ef2303942f031cb0f75af85
                                        
                                            GET /officehub/bundles/3.504b3ccbcc2e65607b29.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146628
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:13:16 GMT
server: ECAcc (ska/F76B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 7f381e92-101e-0022-57b6-cc0fde000000
content-length: 7427
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7427
Md5:    f4acb80a006d9c38a3966c75fadf6771
Sha1:   7724d697ebd58deadb59a4ed332ed27744ae4e65
Sha256: 761b9177972c51cc3329608ec5e7a6ed7b8964a8c3046316edb8f672e3b7906f
                                        
                                            GET /officehub/bundles/officehome-async-styles.b65cd4029e9772e2fc4a.chunk.v6.css HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146659
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:55 GMT
server: ECAcc (ska/F6AD)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 565e7ade-301e-000a-4bb6-cc6e76000000
content-length: 8092
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47012), with no line terminators
Size:   8092
Md5:    8ba61f8294bf0c4eae116819fdbc481a
Sha1:   619f76c68b5b4f6dbfa76e5e9eb006c0971820ed
Sha256: b97d3b6c223e393161eb1b2535c0c73fa711255a7391dbf0da5d215adc4b0b27
                                        
                                            GET /officehub/bundles/officehome-async-styles.0fc8fb952c17d8d4a113.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 131545
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 08 Aug 2022 21:53:49 GMT
server: ECAcc (ska/F6AF)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: ba76dfb6-201e-0074-3fd9-ccfe31000000
content-length: 300
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884)
Size:   300
Md5:    0d95a9272a5a9052ae482f1e27228ffb
Sha1:   3aa8219ad44ac6e287c527cdfccde8a0238e2fd8
Sha256: 6cc035494c0cdd234ad1c56b9b1862433e47284b27c78036332cd01ec737ccad
                                        
                                            GET /officehub/bundles/6.e02362724ed6077d1c10.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 564814
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Wed, 07 Sep 2022 23:31:14 GMT
server: ECAcc (ska/F775)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 4da5c7e4-701e-0079-2ce8-c836e5000000
content-length: 5384
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32887)
Size:   5384
Md5:    6b5c0bc4d672b903f57964a24bafd8a1
Sha1:   c31f96f2dbd9932bf4d590c5b925b9340c9b7726
Sha256: 664b8075f6b6a8e07a06e6c2af34e03586dfc281f7081f23e31ec62c7844821e
                                        
                                            GET /officehub/bundles/8.69bbca74c60a0d99ad27.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146657
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:51 GMT
server: ECAcc (ska/F6AE)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 9954ec23-a01e-006a-63b6-cc12e9000000
content-length: 4534
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16380)
Size:   4534
Md5:    6e1f385dfad4a0d35b76e42c11bbf3c6
Sha1:   499a60c53124da8364bd9419f8e2c9a61831e1f9
Sha256: 248a6d14f4457e8a1de69bee5c65c0467db39058136eec11220ce3cdcd80dbaa
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~appbar~cc~cc-rc~cnt-actions-helper~coh~confirmation-di~22f0623d.2131cf27b9033f52ae47.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146657
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:31 GMT
server: ECAcc (ska/F68A)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 6f58e77b-e01e-0019-0db6-cc4a7a000000
content-length: 4533
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13402)
Size:   4533
Md5:    aa9790898e649d3da21113ddd02f27ae
Sha1:   537071c59e4d054ea5b8adaf163ea046d940bb73
Sha256: 138a4de4c36ea85fc0c94c2367f58ace2caae51adfe391d59eef562bdb4d0db7
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~app-host-component~appbar~cc~cc-rc~cnt-actions-helper~~a921ca71.cfcae7f9a15c445f9be3.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 564816
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Wed, 07 Sep 2022 23:30:42 GMT
server: ECAcc (ska/F769)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 3103bd27-d01e-0070-0fe8-c87336000000
content-length: 3221
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43855)
Size:   3221
Md5:    e995f0e57247d3baf08ef9cd83103433
Sha1:   a39111304158913aeb292a8a26672c798d0dfe23
Sha256: 1a26913cf5bc5fdee1b993464e0fd3ce185839e4a4e0bbf9aa8999f3f2d8cf5f
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-create~app-gallery-rc~app-host-component~appbar~cc~cc-rc~cnt-acti~2bad25b4.c938b97d44a252ec683a.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146657
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:51 GMT
server: ECAcc (ska/F761)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: fdcecea4-701e-000b-5fb6-cc31aa000000
content-length: 7140
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21527)
Size:   7140
Md5:    41560d592eac378c063f8469cfba4a6f
Sha1:   e36bb5d4afcde402506c45f035ab0f0649cbca65
Sha256: bf2fa2a9f67e52c18628590e3f36113273fb9149cb85f8296721b5ae32596764
                                        
                                            GET /officehub/bundles/11.5b378e35ee75ca044ad8.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146650
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:53 GMT
server: ECAcc (ska/F78A)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: c473fbf2-001e-0063-4bb6-cc573a000000
content-length: 3960
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11491)
Size:   3960
Md5:    c1e66e194a40a989734c3e2e5a0cbb0e
Sha1:   1737e740366a04fa8d723ff3746ac7ec943dd68d
Sha256: 0627ed66d2f92756cdc93b4b6ad9c5fdb6bc9f4831f4a4a68fe3d7358bb4c933
                                        
                                            GET /officehub/bundles/12.fb2e3851f44a6ac8b4db.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146650
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:13:16 GMT
server: ECAcc (ska/F68A)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: fe1ccf58-701e-0024-50b6-cc3c61000000
content-length: 6558
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24862)
Size:   6558
Md5:    3553552ebfaea965c341f2ec097ea4e5
Sha1:   61a7e389a821fe2c7f70057e6787aa14e95b7f16
Sha256: 7dfcde5d92d549617b19caee29c28e7d6b8bf6b30a92a3f95befc6458bb8c651
                                        
                                            GET /officehub/bundles/13.228ee061be8342b8d42a.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146650
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:52 GMT
server: ECAcc (ska/F79F)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 954834cc-401e-0000-4bb6-cccac1000000
content-length: 5559
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19665)
Size:   5559
Md5:    c797d7ae522891c896fa5782a27d4c4a
Sha1:   cc37db2c1b7f3c22ce1e4fd31f085359de71d61e
Sha256: 8e6171cee1d5e9475eb74a39efb4a070b614ffe75fa70e11cf8068e911c9ee7b
                                        
                                            GET /officehub/bundles/14.4c6e4266516bf5fb8f45.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146644
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:48 GMT
server: ECAcc (ska/F792)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 7222ec6b-a01e-0055-41b6-ccda4a000000
content-length: 1916
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12281)
Size:   1916
Md5:    86ba543abe1aca92d23a522e84d937ed
Sha1:   f3823554845124ce317c2599ba25c10b482943d6
Sha256: 29185f7613b6d98746d153db91ea199160e5e7c25d1d82a325e6bbfa083f4a65
                                        
                                            GET /officehub/images/content/images/unauth-refresh/value-edu-70021e6b37.png HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 85432
date: Wed, 21 Sep 2022 22:44:39 GMT
last-modified: Thu, 03 Feb 2022 22:29:08 GMT
server: ECAcc (ska/F688)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 19204dcd-401e-0062-5644-cd08e6000000
content-length: 472176
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   6175
Md5:    3b74049c8ba111bd14c2c87cce492357
Sha1:   97146531061605e1cbd0bad6295d016e4dc4975f
Sha256: cc22f3dd92a50860aca642696da15c58bd22356a9ad9ef65b77235e6d684c34f
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~app-host-component~appbar~cc~cc-rc~copd-rc~create-link~fbef36b4.83b76fca2e278c24933e.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146657
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:48 GMT
server: ECAcc (ska/F6B8)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: afca1c51-701e-0069-64b6-ccf38d000000
content-length: 3371
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17528)
Size:   3371
Md5:    7030522df1935fb41f4a65f497e804e1
Sha1:   efbeabdf2a749aae196a160b8a9b6abd07b69059
Sha256: 2089774be535f0e15412a0b0d35953061ba0d18fdf73ed729617749c259b58e7
                                        
                                            GET /officehub/bundles/17.56e05cff0881dd5890ce.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146649
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:39 GMT
server: ECAcc (ska/F76F)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 1f040f4f-b01e-0004-07b6-cc47c6000000
content-length: 3685
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11219)
Size:   3685
Md5:    a64c4edfa889cfbc7b4bdc2f62f3edb9
Sha1:   1b875a2ea55250bfaa50acd5b58184092eb6c1e9
Sha256: 5eb350c1436d36f08fdbf14425a4134db39a9e0576d86d30facea70902421d2f
                                        
                                            GET /officehub/bundles/18.46b9f12c4004974a57cf.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146657
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:53 GMT
server: ECAcc (ska/F7A4)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 6a20059b-401e-0062-62b6-cc08e6000000
content-length: 2805
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12566)
Size:   2805
Md5:    4c8b692b53235b06e246b2c7c08da87d
Sha1:   b004a3f3c88ac65ee72fedce8873fb842f847cad
Sha256: b3e9f2b6457031c3071fadf7b09e4441082380410b89c2c40fc725335f42d00f
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-create~app-gallery-rc~app-host-component~appbar~cc~cc-rc~ew-os~ew~612b93da.635db5d98ccbabd08343.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146655
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:13:06 GMT
server: ECAcc (ska/F6B8)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 1bd0aca9-001e-002e-04b6-cc98d6000000
content-length: 18170
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65339)
Size:   18170
Md5:    495a764d916344b7fcd9e82e3352974b
Sha1:   ebf218e58718cd8da1062efa7ac91be557b7a240
Sha256: c8e25a586aa6e98fcbe09ad49a72c882ba36b1887acfd1790164aab34a5ed593
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-create~app-gallery-rc~appbar~cc~cc-rc~copd-rc~create-links-contro~280f1c94.294d9590056a1f57d6d7.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146655
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:42 GMT
server: ECAcc (ska/F6C6)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 17a38609-301e-0035-23b6-cca6d5000000
content-length: 2068
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9882)
Size:   2068
Md5:    70cf65dc69b010341cb6c72f7766acb8
Sha1:   6de0264de5ddae38c4dd12806b84bd16983ad96c
Sha256: 04cde5a40b41652c431a5545346d011ae4c30ee51615e5450eef3857708acc63
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~app-host-component~appbar~cc~cc-rc~cnt-actions-helper~~63b4d417.323ab2747cc88bcf80ae.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146656
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:30 GMT
server: ECAcc (ska/F74F)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: fe1cb793-701e-0024-06b6-cc3c61000000
content-length: 1626
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7092)
Size:   1626
Md5:    00176552a7150544f462c8cbb4cee1d1
Sha1:   5cba03c87eadd111bd0f2a3960585281a38a308b
Sha256: 69db6d21e9c9936fcec5cea07ed692dbf72b1423619931f1a3a9f7373c308145
                                        
                                            GET /officehub/bundles/22.15413da71a82fcdd80e5.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146649
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:35 GMT
server: ECAcc (ska/F6C1)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 7f37dcf0-101e-0022-10b6-cc0fde000000
content-length: 14276
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (61175)
Size:   14276
Md5:    5d7bbe47ab520a4e85e5dc94567317d4
Sha1:   84c159bbb3b3b4fd3f80abb5a959189a42575e7e
Sha256: f539b1c2d2a4dbee1659c828945e03502c285889d66b23f920f3bd9dd11b6606
                                        
                                            GET /officehub/bundles/23.fe5564bcd0bf99bb0827.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146656
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:13:02 GMT
server: ECAcc (ska/F766)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 7069fd23-d01e-005f-4db6-cc7efd000000
content-length: 2164
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8685)
Size:   2164
Md5:    5c2ebfa086af01d36d7a9fa1df0678e3
Sha1:   2148302cab211fbe7b6c6f02be47eae4d0af0b0e
Sha256: b1d1006f8f653c17e4967f8b41fa0d84b71034b3cfa73200b8da5560a5e6e3c2
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~app-host-component~appbar~cc~cc-rc~copd-rc~ew-os~ew-rc~69573d54.0e39fa7e98af5f42d5eb.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146654
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:30 GMT
server: ECAcc (ska/F747)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: b2e01954-b01e-0014-61b6-cc82ae000000
content-length: 1481
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5835)
Size:   1481
Md5:    b0bcb812783c83e49ac011ab70afc328
Sha1:   e9217c71a019471ef127c22f97263cfff54d6de4
Sha256: f24b4e536784287bf730971cb7482fd1dd89931aa1013460a8ade06f269b70ae
                                        
                                            GET /officehub/bundles/26.f8765311d4c078a88524.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146658
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:13:01 GMT
server: ECAcc (ska/F72F)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 95481f8f-401e-0000-29b6-cccac1000000
content-length: 2871
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9164)
Size:   2871
Md5:    7e3a166b35d2f6593a850146082c73ee
Sha1:   46ea10ec3c2a296ddcb5803f1508e5bd5a3a4c02
Sha256: 351a980507103b41933c03f38180ebf0047f870e725286f2970704afb73b51f3
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~appbar~cc~cc-rc~copd-rc~ew-os~ew-rc~mc~qa~rec1-os~rec1-rc~wb-rc.fadb9830ac7b45fa1b1f.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146655
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:31 GMT
server: ECAcc (ska/F76B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 76519133-f01e-003a-19b6-ccd0b9000000
content-length: 1136
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4016)
Size:   1136
Md5:    bb4df784fa1038c285cd2441a5bf0cfe
Sha1:   a26164b6aefc25a7a3f65eef4ca292f193c96a6e
Sha256: 5f7e3fb4fb7e752dec6cb744124b0ad8202105ee8684bda0cbd94a5ee42ea93b
                                        
                                            GET /officehub/bundles/27.68461377ad2078957dc5.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146641
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:30 GMT
server: ECAcc (ska/F732)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 5678fe74-701e-001b-19b6-ccf4c2000000
content-length: 851
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3098)
Size:   851
Md5:    260b30ce86d12c5041f8e2204e625db9
Sha1:   6d73c50b86699519e0ad0495450bca6175b7b846
Sha256: ba90414bd438af248f45f7a4b9766441106abe3ecec3f3363632ea3667430d7f
                                        
                                            GET /officehub/bundles/28.13c004a85d756369dc41.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146654
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:44 GMT
server: ECAcc (ska/F6A2)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 754064e4-001e-0073-7fb6-cc9252000000
content-length: 1647
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9396)
Size:   1647
Md5:    f409655907a7c661a6d322233cca155a
Sha1:   48bc52d080893caae19833ffbe99d0d1574f3d1a
Sha256: 4028dc6af823815f508bb1653fae217590603f3c201ae8ed80c36b3b520c6081
                                        
                                            GET /officehub/bundles/29.a659a83a41584066d127.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146644
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:37 GMT
server: ECAcc (ska/F6A3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 954845d1-401e-0000-42b6-cccac1000000
content-length: 1858
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10000)
Size:   1858
Md5:    ffe9bd71ed8a56dd817b5916c97ba568
Sha1:   3b10c55c82f260181dc4655d003d886334c55656
Sha256: b2d514824e9ea3bd5cb836f89d4ba14ccc8294f9f62b4694a8124a464eeb6b15
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~app-gallery-rc~appbar~cc~cc-rc~copd-rc~ew-os~ew-rc~mc~qa~rec1-os~rec1-rc.ce55876a0376bca46aaf.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146654
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:51 GMT
server: ECAcc (ska/F72E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 752ba6fe-a01e-0037-7eb6-cc186d000000
content-length: 3931
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23311)
Size:   3931
Md5:    c91efdaba1b4bf1171d5233ae18aa778
Sha1:   f763166a1b9dbfee44d5285c8468769ba1700120
Sha256: 47ebbb24483bddc88a35186a74f3509b631118674a9ef438f344118ddbc91b10
                                        
                                            GET /officehub/bundles/vendors~app-gallery-rc~app-host-component~appbar~cc~cc-rc~copd-rc~ew-os~ew-rc~mc~qa~rec1-os~rec1-rc.02d0e2a053354eb55ce4.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146654
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:58 GMT
server: ECAcc (ska/F793)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: fdced9b2-701e-000b-2cb6-cc31aa000000
content-length: 1526
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6304)
Size:   1526
Md5:    0959972c97b2f18031f4643d3d66b7d2
Sha1:   3e136fc2284a1a573bb4a1c69c96d74b4289d360
Sha256: 598dcb96ac50154c36ed0c8d810167c8ade35d77aaeb267d2a4bf27725bc2cac
                                        
                                            GET /officehub/bundles/32.3d1b277d868d865880ed.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146649
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:13:05 GMT
server: ECAcc (ska/F7A1)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 95c13951-101e-000d-7eb6-cc0215000000
content-length: 7392
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27372)
Size:   7392
Md5:    67ad1bfc795ecbcc70f4c980510c27fb
Sha1:   2ef2c8b3d4963d5ffab31976a0a5c27f5ccc0553
Sha256: aab9e87c526ace03405b84795434d606734704e747d970924d1fa9a32e839532
                                        
                                            GET /officehub/bundles/33.4a92a60c667227f5eb28.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146660
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:41 GMT
server: ECAcc (ska/F758)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 88e84ff5-701e-0046-55b6-ccfe46000000
content-length: 22654
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65446)
Size:   22654
Md5:    9c5ba6ddcbbc10fcc05abaf4721588e5
Sha1:   15c959c0ac3f8c9b2d7a109861ab6741efff2a38
Sha256: 3be446121797ed084b51b889136bd622a5ca3fecf802f9a7021feb38d74c2a17
                                        
                                            GET /officehub/bundles/34.9d063d836193fc498772.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146640
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:37 GMT
server: ECAcc (ska/F6D2)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 8a184c13-401e-002f-4bb6-ccc70a000000
content-length: 9896
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (36544)
Size:   9896
Md5:    73ddaf89d6c58f547dc8b71c1f91d172
Sha1:   a7c9cbc1335ffbe204b6990715fbed762c899d2d
Sha256: 93b4ac1a47bac5a05276512e0b186070d8d453bba88bd566d8bceca58d7a49b0
                                        
                                            GET /officehub/bundles/35.1b36688e19edbde3c944.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146644
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:32 GMT
server: ECAcc (ska/F69A)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 94f08552-e01e-0026-40b6-cc82d9000000
content-length: 1134
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5018)
Size:   1134
Md5:    0500e9e87643d200f59a9e909bd5b33e
Sha1:   214dc3f00dc9684285ac68c3e41a9bcb44f76d2d
Sha256: 0c7b93bf2c42e906030d6a94735ba87fe688dcdec7143bef1c0ad59a010b9d5c
                                        
                                            GET /officehub/bundles/38.d5e61cdb468af62287c9.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146648
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:46 GMT
server: ECAcc (ska/F78D)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: e7ceb9a3-d01e-003d-3bb6-ccbcda000000
content-length: 6126
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24696)
Size:   6126
Md5:    919ee7d36bfa640f9cd49718574137a8
Sha1:   3b26254c43012f28dc4dae4b397cd2cde564527c
Sha256: efe69e1210dabe6838ae5dd3f99576be400f65d802d401bf20661b814b620604
                                        
                                            GET /officehub/bundles/vendors~app-create~app-gallery-rc~app-host-component~appbar~ew-os~m365-apps-component~rec1-os.f62c6add66e12334e0e9.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146654
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:45 GMT
server: ECAcc (ska/F6EE)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: d47e0ac3-001e-003e-5eb6-cc5dbe000000
content-length: 4830
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22361)
Size:   4830
Md5:    b7b2c87775e204fbcb8caf3df5fb4a09
Sha1:   7c36abc86f3e49240988ba9737e94662dafb2503
Sha256: 57c46f3f26fb20bebdd538fdf1ab72410af5c41575064b52717f03a236775acb
                                        
                                            GET /officehub/bundles/36.fa723834abca25c036fa.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146637
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:13:02 GMT
server: ECAcc (ska/F6E1)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: c59e1ef1-c01e-0053-66b6-cce9f5000000
content-length: 5733
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19762)
Size:   5733
Md5:    52475691a14b55af2fa2c19282ab8b5f
Sha1:   c92a0f510aafc206a9665cd91a7a993348bb85a2
Sha256: 3ffa27045d35b8831e177850d57b16829426c19ac2e992cd717fcbe761f8fffd
                                        
                                            GET /officehub/bundles/37.29d6d76d8b03fc08a0d6.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146661
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:49 GMT
server: ECAcc (ska/F773)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: e8fe8093-f01e-0067-3fb6-ccda3d000000
content-length: 2880
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10347)
Size:   2880
Md5:    e41a4a155ef6b01dc3325c3c9e3e9058
Sha1:   9583e80c615410c5ad1d51228dac205eedc21085
Sha256: 21c2316d3ca2d4647088ad3d1d0ab046e91d9317510892989b9dd5cd0052ff78
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~cc~copd-rc~ew-os~rec1-os.43955f79c5a308ab5421.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146644
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:37 GMT
server: ECAcc (ska/F76D)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 1bd0ce6e-001e-002e-33b6-cc98d6000000
content-length: 1210
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4347)
Size:   1210
Md5:    a7c7095994bf564361a9fb86a8fc87be
Sha1:   8058ed53ada9012c200a6a93cc3da7b574adccd0
Sha256: b48aefe97a41d7b6456bc6b9c22198793d95a13beb4c08131fdfc5f55a35d866
                                        
                                            GET /officehub/bundles/40.29c75dead864e76ff320.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146640
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:57 GMT
server: ECAcc (ska/F74A)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 9ae18bf9-d01e-004f-10b6-ccbb95000000
content-length: 7031
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30191)
Size:   7031
Md5:    796c0a8a02885aa5a7d47446e1653e56
Sha1:   ba7f096f8b714402b85741fbe3b7833b9cf203fc
Sha256: 7951cdaab446e2f1df6fe14f425991bddc00725f6d192d67609879ef91f3ed87
                                        
                                            GET /officehub/bundles/calendar~forms-group~mru~officeforms-group-forms~officeforms-my-forms~places.37482b858c1b2967edc3.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146629
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:35 GMT
server: ECAcc (ska/F6DD)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: ce835e60-b01e-002b-3eb6-cc4a0d000000
content-length: 8316
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (46659)
Size:   8316
Md5:    2c75adb8221426f29fac47ddf71afb56
Sha1:   5cf5d9da37f889ee193354a7a224ffdeb318edf4
Sha256: 41051f03ee17508e35d9b796898cb0d3d0b11942e7bfddcfa750e7d08cdbaafd
                                        
                                            GET /officehub/bundles/44.8730685e6b6a2cf40241.chunk.v6.css HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 564808
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Wed, 07 Sep 2022 23:31:12 GMT
server: ECAcc (ska/F75D)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 4916559b-201e-0064-30e8-c83b59000000
content-length: 991
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4047), with no line terminators
Size:   991
Md5:    403bf7ce33ea8246a3d96fc2f6051f3a
Sha1:   a83a7faa40aec787b83d88247bf0b3b78e50d0b1
Sha256: 952122c18dba1e17bfa5500a14a51aef0b7a305ccdc293d0742a8973247f46b0
                                        
                                            GET /officehub/bundles/vendors~mfs-storage-provider~staying-aware~staying-aware-badge~staying-aware-data-service~staying-aware-rq.0733dad525893ed822cb.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146626
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:35 GMT
server: ECAcc (ska/F7B9)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 4484dd62-901e-0071-3eb6-cc2cea000000
content-length: 16687
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (60773)
Size:   16687
Md5:    0a1a34f691a922f3dde72c34cc365f8a
Sha1:   d8cae5d4244e954860056a1135c1bd9efe73571b
Sha256: 6ec6d92bb862904ee787af6c6797b231236b8e2ffeee00d776f92dd2ba04bcef
                                        
                                            GET /officehub/bundles/44.b63b28bcda80b09b624c.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146642
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:30 GMT
server: ECAcc (ska/F68F)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: dd24572a-301e-0078-66b6-cc6939000000
content-length: 59153
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65446)
Size:   59153
Md5:    1222c608c4dc3eecfe2dcf6403cb3fc9
Sha1:   3e5947dd37351309f34135522c7dd4df5f922c2e
Sha256: 611543d397ad513f547757ec8f6898a5556b41f463119599cc3024ed93a3d996
                                        
                                            GET /officehub/bundles/auto-suggest~bc~search-preload~search-results.ded17b436d1ed2a3fb0a.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146642
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:32 GMT
server: ECAcc (ska/F72C)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 01efbc5d-401e-004d-44b6-cc052d000000
content-length: 15755
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size:   15755
Md5:    5d12285705d969999d72bbb78f147715
Sha1:   efbd9c4b30cdf31dde6c46c6d5c58fc5751c1877
Sha256: d09bc886b85e020fa005aa29b19b5923cf0777e7a58710ea16e991cc13110ea0
                                        
                                            GET /officehub/bundles/vendors~auto-suggest~bc~search-preload~search-results.a03871c16b0e11a964c2.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146642
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:13:08 GMT
server: ECAcc (ska/F75E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: fdcf06f0-701e-000b-71b6-cc31aa000000
content-length: 21193
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65395)
Size:   21193
Md5:    fa6add5bd041ed5c9bd18adae5e62d93
Sha1:   4f0dbec577a29c1ad3f27f1687a3026a9f990710
Sha256: dc39a797bc6fdee4689fbea8ec716f10ee045fffd8e200c948f87d5543586ebe
                                        
                                            GET /officehub/bundles/vendors~action-context-menu-rc~appbar~cc~rec1-os.1c4b08c6615d0672e26c.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146653
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:31 GMT
server: ECAcc (ska/F6D6)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 1f03ff12-b01e-0004-06b6-cc47c6000000
content-length: 1418
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5834)
Size:   1418
Md5:    da237c980530b60813c1a9652885d3f3
Sha1:   42be00cca0eb4557cb01f62a69b3b61e1d9a2ef5
Sha256: 5747eda6f06c845054a70286eb8dae2cf402212ef862a6f3bdb27b2aa8818a1b
                                        
                                            GET /officehub/bundles/49.baf89fc0fd838ad2c022.chunk.v6.css HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146628
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:44 GMT
server: ECAcc (ska/F6CE)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 1f04672e-b01e-0004-3fb6-cc47c6000000
content-length: 316
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1373), with no line terminators
Size:   316
Md5:    32aa813b67042681bc0d4bbd88b49432
Sha1:   f1b5a3d774265e4c894adc6fd606dd4cd589ecaf
Sha256: 57632346c8c846a7895e1ef51d48146db708b2dd57a0fc06cad5e477a3f8d6b5
                                        
                                            GET /officehub/bundles/vendors~staying-aware~staying-aware-badge~staying-aware-data-service~staying-aware-rq.1f7d91e7342b2cb296e6.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146628
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:44 GMT
server: ECAcc (ska/F78D)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 83d5b8bd-d01e-0002-60b6-cc7479000000
content-length: 14657
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (62337)
Size:   14657
Md5:    35b8bb393ebaced285ef640469d3ea49
Sha1:   e2f09f86270322cba56334423a78a76e4aca320a
Sha256: 0f7a1ce9b526a31fa2b51cc038ba8c57cddf181bf721ca0dd6841e7b2e036d48
                                        
                                            GET /officehub/bundles/49.0caa3701d4cc64e9e8f7.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146625
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:12:33 GMT
server: ECAcc (ska/F75C)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: e798ab28-201e-0074-1ab6-ccfe31000000
content-length: 11872
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (46577)
Size:   11872
Md5:    f8eac7f312a764305ec9e8e8a487ae79
Sha1:   4f7e8a93c52bd45ea7dd0fde5f2d1e0568fd2dea
Sha256: ff4303c15fce9b879b242e5d7b1254497fefbb256bd8814b4b1ebbf1994285c4
                                        
                                            GET /officehub/bundles/50.b8cdfcb0d32e2d279723.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146625
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:13:05 GMT
server: ECAcc (ska/F7AB)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 676b8bbd-401e-003f-37b6-cc0262000000
content-length: 21983
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65250)
Size:   21983
Md5:    d9173525beaeb66c94784da7c8cba53b
Sha1:   649cbb19497a19a1fa5040d72c7a9ac1b124caf6
Sha256: c0e9584cfee9efdb4a9ab13b6ff44fcb233163f1c0e0212a1f850c877e2a9334
                                        
                                            GET /officehub/bundles/vendors~catchupflyout~flerrordialog~leap.58d87d6929f791e63dfa.chunk.v6.js HTTP/1.1 
Host: res.cdn.office.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date
age: 146625
date: Wed, 21 Sep 2022 22:44:41 GMT
last-modified: Mon, 12 Sep 2022 23:13:05 GMT
server: ECAcc (ska/F689)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: dc332d15-e01e-0009-29b6-cc8f12000000