Report - dompeterapp.com/16/

Report Overview

Submitted URL
dompeterapp.com/16/
IP
79.141.162.99
ASN
#202015 HZ Hosting Ltd
Submitted
2022-11-26 09:27:10
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
dompeterapp.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	451 B	79.141.162.99
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.5 kB	23.36.77.32
store-images.s-microsoft.com	5954	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	552 B	5.4 kB	23.38.201.128
js.monitor.azure.com	3838	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	463 B	170 kB	13.107.213.53
edgestoreweb.azureedge.net	104772	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	269 kB	13.107.246.53
browser.pipe.aria.microsoft.com	93	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	882 B	20.42.73.25
browser.events.data.microsoft.com	290	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	1.5 kB	20.42.73.25
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
statics-marketingsites-neu-ms-com.akamaized.net	27382	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	429 B	924 B	23.36.76.155
cloopjake.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	551 B	4.7 kB	104.21.71.60
www.microsoft.com	302	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	89 kB	23.38.201.156
logincdn.msauth.net	2330	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	437 B	6.8 kB	192.229.221.185
login.live.com	79	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	609 B	6.7 kB	40.126.32.135
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	48 kB	34.120.237.76
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
c.s-microsoft.com	10166	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	64 kB	23.38.201.156
microsoftedge.microsoft.com	76444	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.8 kB	5.9 kB	13.107.6.158
ajax.aspnetcdn.com	693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	397 B	42 kB	152.199.19.160
mem.gfx.ms	3475	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	148 kB	13.107.246.53

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	dompeterapp.com/16/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap	400 B	2023-03-11	2023-03-11
Pretty URL microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap IP 13.107.6.158 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:22:12 Last Seen2023-03-11 22:33:37 Times Seen1 Hash 38b58fb2e31de29329ce3e2ee249fba7 70a29732cee76f3b700cafccd44783284adc5696 56fa9283ddfd5023d41d18c7ba6b3b08fd14e7a75e78d466a112694e91ae2dbb Loading...

	edgestoreweb.azureedge.net/edgestoreweb/js/vendor14de0aba14f8d8f698a7d.js	490 kB	2023-03-08	2023-03-11
Pretty URL edgestoreweb.azureedge.net/edgestoreweb/js/vendor14de0aba14f8d8f698a7d.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:55 Last Seen2023-03-11 23:46:52 Times Seen1 Hash 959b9a89fde205c6ca6ec00988999f01 6faa2a779d40cdb92a580f956d9ce70bf1e75d02 5b602315852c52b4cd5664e0bddd7781632758b15cddeda69359a79688e2efb1 Loading...

	microsoftedge.microsoft.com/addons/js/officebrowserfeedback_floodgate.min.js	428 kB	2023-03-07	2023-08-01
Pretty URL microsoftedge.microsoft.com/addons/js/officebrowserfeedback_floodgate.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:11:25 Last Seen2023-08-01 23:46:07 Times Seen4 Hash 279f04279a8ea7613e9364d37b238bf2 358e3b4261fd2adfae1c2fbd138a4c19d666fc5a 71e03a36e3cbff8a676c396c2ff336a504c116a6e826203453f724c9da53b36e Loading...

	mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meCore.min.js	101 kB	2023-03-08	2023-03-13
Pretty URL mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meCore.min.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:55 Last Seen2023-03-13 20:20:35 Times Seen1 Hash 9a28b5d87bbe06a4c745351790f8c959 76568e37895891aaf732f1e698db4fdaeb85f55d 4138cee0dc9879fa5cf0e2bae14be75ec3affbbcf11c95735e870ffd0642d145 Loading...

	logincdn.msauth.net/16.000/content/js/MeControl_GO_wC8TuKKkgsOmYJN749A2.js	17 kB	2023-03-08	2023-03-11
Pretty URL logincdn.msauth.net/16.000/content/js/MeControl_GO_wC8TuKKkgsOmYJN749A2.js IP 192.229.221.185 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:55 Last Seen2023-03-11 23:46:52 Times Seen1 Hash 18eff00bc4ee28a920b0e99824def8f4 4ec7e1b580a5b6fc54b9b4640821771612044bf5 be261893b3c955360005423ba744db1623bc8fc77d9989a5d9fa425e1e75d363 Loading...

	js.monitor.azure.com/scripts/c/ms.shared.analytics.mectrl-3.2.6.gbl.min.js	90 kB	2023-03-07	2023-05-20
Pretty URL js.monitor.azure.com/scripts/c/ms.shared.analytics.mectrl-3.2.6.gbl.min.js IP 13.107.213.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:44:33 Last Seen2023-05-20 01:25:03 Times Seen966 Hash 465cf01fde453a49a6ea092c656002fb 6cd54cafc5e68a810ba7d3189a0123b9c61d4cc6 7d145b10d4a03fc22a08b2228f403779414c838430ce718ba52fb23e15837e55 Loading...

	login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb	1.3 kB	2023-03-11	2023-03-11
Pretty URL login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb IP 40.126.32.135 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:36:25 Last Seen2023-03-11 20:36:25 Times Seen1 Hash 1e0724c635bb76178e3d87c83e040a3c a1bcb550f1c9e30fee55c9b4004c3d5f00adab52 5cc5b0f74735f37e087a951590ad0985ed0b6716cead21d63681f7f4a8e0aa2c Loading...

	login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb	35 B	2023-03-07	2024-04-17
Pretty URL login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb IP 40.126.32.135 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:53 Last Seen2024-04-17 19:54:29 Times Seen851 Hash a7690b561f8e6221d2f65af9b5b74c44 3486d30c731973ce95980084646bcf551878919f 1445e98d0a38c404944d202cbc3f5275e45629a024a2d2d9a3f179c46b4eb9ea Loading...

	microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap	48 B	2023-03-07	2023-08-01
Pretty URL microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap IP 13.107.6.158 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:11:25 Last Seen2023-08-01 23:46:07 Times Seen4 Hash 39d781980458fc8201c1b0d10992e4da 2a74585586a9a88d558b438686a53d9fe22246ed e6af472d3f444ba1a8f099ebfe821895bf7692d8492f3dcd7cea940c30ba2705 Loading...

	login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb	1.7 kB	2023-03-07	2024-04-17
Pretty URL login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb IP 40.126.32.135 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:53 Last Seen2024-04-17 19:54:29 Times Seen863 Hash 5d1a3c923ab64ee46b300effb7d90dd2 f125a087db34513d77bde81772bceb9b90f24b85 f9515458a2d92fa1a387c8503ee17f345e75eb6aadf22a4aea7f65011de69221 Loading...

	login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb	118 B	2023-03-07	2024-04-17
Pretty URL login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb IP 40.126.32.135 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:53 Last Seen2024-04-17 19:54:29 Times Seen840 Hash 5ece7668481629f78fea8efe7a149ec6 13443a460959ec73b4e4841357f707ebe114f666 0826f3198b9d71eaeb1530cb50805479d91c241d9a679f2d2ef125f89856ceee Loading...

	microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap	2.5 kB	2023-03-07	2023-03-11
Pretty URL microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap IP 13.107.6.158 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:11:25 Last Seen2023-03-11 22:33:37 Times Seen1 Hash c86eb41528943d2c071aed94f10ed373 5d674a9613578ddb78f1306bd2147a369d958a20 6a30839919acb7c6d4d3bd79528d739c474c2b362c27c2c6237afe71c624c039 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 12:34:44 Times Seen36959635 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	edgestoreweb.azureedge.net/edgestoreweb/js/build-7b60f693b349bad4c82e.js	485 kB	2023-03-11	2023-03-11
Pretty URL edgestoreweb.azureedge.net/edgestoreweb/js/build-7b60f693b349bad4c82e.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:22:12 Last Seen2023-03-11 22:33:37 Times Seen1 Hash d9d1f1801d98d65abc43fddb0a66c004 df2e5851c53b2b371bd100283f99e0ecf76b4fad 4fcf0cae7f42f3a874e19ecc569ed15b2550db9c3fc7a57f271a2424126a9bf8 Loading...

	microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap	357 B	2023-03-07	2023-03-26
Pretty URL microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap IP 13.107.6.158 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:11:25 Last Seen2023-03-26 01:11:04 Times Seen2 Hash 459048edd1c33b1288fcbde1c42d0223 1da47f8ce012acba40289fdf21f3541c342e9b4d 81cabb639b9d670eee348832eb8ca08c19f0be1c1df3813c8c843c9be4c69884 Loading...

	mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meBoot.min.js	181 kB	2023-03-08	2023-03-13
Pretty URL mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meBoot.min.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:55 Last Seen2023-03-13 20:16:08 Times Seen1 Hash b96244196acd339ace0bbadd6625d068 6e710151edc15cf0b5dbd2aae05c777ed3802e22 cf469f5d35c6b4fc5e7401cfdb21c25f22a6a6345abff761a53b290e3c017fa6 Loading...

	login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb	894 B	2023-03-07	2024-04-17
Pretty URL login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb IP 40.126.32.135 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:52 Last Seen2024-04-17 19:54:29 Times Seen853 Hash 72dc2d0bba8a1d7d1f8c441458affe7b 4275c1a71bbfc0217eeb320615d1b6d6b3a8e39c 46d0d05327d16e5bd87c03953fe9023f1bf83bd8238169e281db258619cf395c Loading...

	mem.gfx.ms/meversion?partner=Edgestoreweb&market=en-us&uhf=1	29 kB	2023-03-08	2023-03-11
Pretty URL mem.gfx.ms/meversion?partner=Edgestoreweb&market=en-us&uhf=1 IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:55 Last Seen2023-03-11 23:46:52 Times Seen1 Hash f8d51058743f001e70f8dcb57a326133 0e4e3a752f71658c913b95f1187ce95a9df45594 cd3e873feb75888bd8dfade8e0b4f8dcd91772a70cbb9e18980d2fe59c2631fa Loading...

	microsoftedge.microsoft.com/addons/intl/en/officebrowserfeedbackstrings.js	5.1 kB	2023-03-07	2023-08-01
Pretty URL microsoftedge.microsoft.com/addons/intl/en/officebrowserfeedbackstrings.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:11:25 Last Seen2023-08-01 23:46:07 Times Seen4 Hash 06c82d1d835476eb4c665e5f9430af21 bfda4592a2ae375ea4e0c87d370674af159c8b72 4fc9f94a11aa5b233c884d4fac3640e30bb34c61a732588c413d604b0cc9d42a Loading...

	ajax.aspnetcdn.com/ajax/jquery/jquery-1.9.0.min.js	93 kB	2023-03-07	2024-04-16
Pretty URL ajax.aspnetcdn.com/ajax/jquery/jquery-1.9.0.min.js IP 152.199.19.160 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:49 Last Seen2024-04-16 07:03:40 Times Seen1473 Hash 0652da382b6fceb033dfe2b6c06d4d11 002da8cbe90fcf32fbdebb72386125079e3805ee 7fa0d5c3f538c76f878e012ac390597faecaabfe6fb9d459b919258e76c5df8e Loading...

	login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb	4.3 kB	2023-03-07	2024-04-17
Pretty URL login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb IP 40.126.32.135 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:53 Last Seen2024-04-17 19:54:29 Times Seen95 Hash d8fd85b50d5cc5532e505ebbaa690d1c cd3f3fd2c7b2bfdbe607aad3c79b6063e5f17687 3dc29fff140593e2133a4a856721d8d1e40955e551b67c38b32063a0af000aea Loading...

	login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb	896 B	2023-03-07	2024-04-19
Pretty URL login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb IP 40.126.32.135 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:53 Last Seen2024-04-19 07:44:18 Times Seen400 Hash ea11dc29cc107ad5cddc5c6c6cb9b7d7 2663e82c5ee7b5a261668e2130983c774e15a1d8 da7c2ce0351c80a1f61bf9c04b316e5dbfdd15d9c107614f3581bde880ef5997 Loading...

	login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb	355 B	2023-03-08	2023-03-11
Pretty URL login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb IP 40.126.32.135 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:55 Last Seen2023-03-11 23:46:51 Times Seen1 Hash b096c9613b41afa3b82b382df79c5b86 89fb4ba97d63baff062f4845b0accd1092d9c712 3390c95877e01e89e559f4c2143b83a4f8255c72f64f9349cc2fe8eb4ce66339 Loading...

	www.microsoft.com/onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/c6-082272/a7-f7a340/1e-addbef/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/b0-07f293/1e-9d9d16/52-f0367f/1f-b57352/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/37-8473b9?ver=2.0&_cf=02242021_3231&iife=1	136 kB	2023-03-08	2023-03-13
Pretty URL www.microsoft.com/onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/c6-082272/a7-f7a340/1e-addbef/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/b0-07f293/1e-9d9d16/52-f0367f/1f-b57352/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/37-8473b9?ver=2.0&_cf=02242021_3231&iife=1 IP 23.38.201.156 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:55 Last Seen2023-03-13 08:46:13 Times Seen1 Hash d8b85b1b9a54c532f41ee3ad758450a6 8311e13eb390700f93a0c3ee90bc617e0ed4301d f1464d6010ed2930cf906e7e4573940b4b247929c847e81d0fe866ecc4158d4f Loading...

	edgestoreweb.azureedge.net/edgestoreweb/js/vendor3251469b173d334c4d38e.js	795 kB	2023-03-11	2023-03-11
Pretty URL edgestoreweb.azureedge.net/edgestoreweb/js/vendor3251469b173d334c4d38e.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:22:12 Last Seen2023-03-11 22:33:37 Times Seen1 Hash 862c01fbd3c7babc27b90b1fa3d8c613 c6294a2da042f6d434f8847cb1108b9ef773d2ad ba351e8e91071a07dc2ee4655145590c9e75a50c4192b34887b58822e1096dda Loading...

	www.microsoft.com/store/buy/cartcount	1.1 kB	2023-03-07	2023-04-01
Pretty URL www.microsoft.com/store/buy/cartcount IP 23.38.201.156 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:19 Last Seen2023-04-01 10:46:38 Times Seen10 Hash b7c028871317e8167966d0283d329ddd 35b501b10d526c027ce0c143be53195445ee6c46 bf6c9b290a3af2b8fbc63ad17f91e6bca03c2e487d2b0484969fe522d1841d82 Loading...

	mem.gfx.ms/me/mecache?partner=edgestoreweb&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com%2Faddons%2Fdetail%2Fmulti-highlight%2Fliopeljgfbgjainhelaiggjebemkclap	3.1 kB	2023-03-08	2023-03-11
Pretty URL mem.gfx.ms/me/mecache?partner=edgestoreweb&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com%2Faddons%2Fdetail%2Fmulti-highlight%2Fliopeljgfbgjainhelaiggjebemkclap IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:55 Last Seen2023-03-11 23:46:51 Times Seen1 Hash d3972881059eca5543b918f7408f5d27 346302e3f62c423a62163f6cfcfc5e17e503bea6 cc61613e8a026b582ba7089e824f0b34956901dd7aa2c8b669bddec6672d2e00 Loading...

HTTP Transactions (53)

URL IP Response Size

dompeterapp.com/16/

79.141.162.99

302 Found

0 B

URL HTTP/1.1
dompeterapp.com/16/
IP
79.141.162.99:0
ASN
#202015 HZ Hosting Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /16/ HTTP/1.1
Host: dompeterapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Server: nginx/1.10.3 (Ubuntu)
Date: Sat, 26 Nov 2022 09:26:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, private, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 0
Location: https://cloopjake.com/trck/?rdr=https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11103
Expires: Sat, 26 Nov 2022 12:32:02 GMT
Date: Sat, 26 Nov 2022 09:26:59 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3720
Cache-Control: max-age=93975
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:26:59 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:33:14 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 09:19:13 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 466
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2403
Expires: Sat, 26 Nov 2022 10:07:02 GMT
Date: Sat, 26 Nov 2022 09:26:59 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: oL6t/6f6FEhaXevTD/FRzaidt648t3cEUanDWxji+pwiiM5Ev65AIBs78+E1lCu+XUOfGBuNksE=
x-amz-request-id: E9EMFBCNET95SW3H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 08:41:08 GMT
age: 2751
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 09:26:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
e2a8882e784cb50adbb2a634e2c0f98e
32d1f86e70f79cc2633bbfc3ddf3da4119b01a32
e30fc27977818d57a461a81486696e9aaa6fd0d79bb094cd8efc1368cba7cfc5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=155035
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:26:59 GMT
Etag: "6381967e-116"
Expires: Mon, 28 Nov 2022 04:30:54 GMT
Last-Modified: Sat, 26 Nov 2022 04:30:54 GMT
Server: nginx
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
e2a8882e784cb50adbb2a634e2c0f98e
32d1f86e70f79cc2633bbfc3ddf3da4119b01a32
e30fc27977818d57a461a81486696e9aaa6fd0d79bb094cd8efc1368cba7cfc5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=155035
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:27:00 GMT
Etag: "6381967e-116"
Expires: Mon, 28 Nov 2022 04:30:55 GMT
Last-Modified: Sat, 26 Nov 2022 04:30:54 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 09:11:12 GMT
cache-control: public,max-age=3600
age: 948
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3518
Cache-Control: max-age=88709
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:27:00 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:05:29 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

ajax.aspnetcdn.com/ajax/jquery/jquery-1.9.0.min.js

152.199.19.160

200 OK

42 kB

URL HTTP/2
ajax.aspnetcdn.com/ajax/jquery/jquery-1.9.0.min.js
IP
152.199.19.160:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (32132)
Size
42 kB (41697 bytes)
Hash
7c29149c66233696139a5cf590c9ca00
1018cdb56d97c82c07e547cab9231f7cdc2a1dc8
63e718bd3bb4e717edb381fe8b68226403e86dbb3bb1d7ae1aa1e691b9259216

HTTP Headers

GET /ajax/jquery/jquery-1.9.0.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 10303618
cache-control: public,max-age=31536000
content-type: application/javascript
date: Sat, 26 Nov 2022 09:27:00 GMT
etag: "533edcbcc33d21:0"
last-modified: Mon, 31 Oct 2016 23:11:01 GMT
server: ECAcc (ska/F6CE)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 41697
X-Firefox-Spdy: h2

statics-marketingsites-neu-ms-com.akamaized.net/statics/override.css

23.36.76.155

200 OK

473 B

URL HTTP/1.1
statics-marketingsites-neu-ms-com.akamaized.net/statics/override.css
IP
23.36.76.155:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (342), with CRLF line terminators
Size
473 B (473 bytes)
Hash
a40589609d8e75c109e93abbff0dcf60
76ae9c943d54022e24b90467713a73a431eddd6d
2c959c2618be84448b26de18639db8a66126449c6ebb29f4f6d33e00adb5b069

HTTP Headers

GET /statics/override.css HTTP/1.1
Host: statics-marketingsites-neu-ms-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Tue, 11 Jun 2019 23:22:13 GMT
ETag: 0x8D6EEC3A2D67C35
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7502d9a5-901e-0068-28c4-66545b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 473
Unused62: 8096267
Date: Sat, 26 Nov 2022 09:27:00 GMT
Connection: keep-alive

cloopjake.com/trck/?rdr=https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap

104.21.71.60

302 Found

4.1 kB

URL HTTP/2
cloopjake.com/trck/?rdr=https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
IP
104.21.71.60:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 216 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4054 bytes)
Hash
9f14c20150a003d7ce4de57c298f0fba
daa53cf17cc45878a1b153f3c3bf47dc9669d78f
112fec798b78aa02e102a724b5cb1990c0f909bc1d8b7b1fa256eab41bbc0960

HTTP Headers

GET /trck/?rdr=https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap HTTP/1.1
Host: cloopjake.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
date: Sat, 26 Nov 2022 09:27:00 GMT
content-type: text/html; charset=UTF-8
location: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b1tUIWKai7yeqZDhWFgtv6SuzjvuiFiYGbX1MY6atytBds3%2B4v8RKVX79WGZ%2Fk4tDL7zRrIvCmQ3wYOPMjfAkI9hNUYz42thmnpQp0MavnbRg1%2Bc7skErj1wlg%2BmBIVE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 770195f14fae0b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.microsoft.com/onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/6f-d7d610/ef-a24652?ver=2.0&_cf=02242021_3231

23.38.201.156

200 OK

23 kB

URL HTTP/2
www.microsoft.com/onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/6f-d7d610/ef-a24652?ver=2.0&_cf=02242021_3231
IP
23.38.201.156:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (64241)
Size
23 kB (22647 bytes)
Hash
42c9e145515c1181de810dca8de80962
2124aa979e0b9df035541fafa3bc29aca7bcf665
335cc2a8c473151675f38c33b2486bebaddce3a0e9192ac89bfa10794bada11b

HTTP Headers

GET /onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/6f-d7d610/ef-a24652?ver=2.0&_cf=02242021_3231 HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
last-modified: Tue, 15 Nov 2022 20:24:46 GMT
x-activity-id: dde950d7-71ff-4b5c-b3c7-79d8c3b97bd6
ms-cv: oRoE4eNYbECD9lie.0
x-appversion: 1.0.8335.36378
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-10-28T03:12:36.0000000Z}
ms-operation-id: a8448f896f24c445966ef58e69b443c6
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2022-11-15T20:24:46
x-s2: 2022-11-15T20:24:46
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 22647
cache-control: public, max-age=30625024
expires: Wed, 15 Nov 2023 20:24:04 GMT
date: Sat, 26 Nov 2022 09:27:00 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2

www.microsoft.com/onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/c6-082272/a7-f7a340/1e-addbef/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/b0-07f293/1e-9d9d16/52-f0367f/1f-b57352/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/37-8473b9?ver=2.0&_cf=02242021_3231&iife=1

23.38.201.156

200 OK

36 kB

URL HTTP/2
www.microsoft.com/onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/c6-082272/a7-f7a340/1e-addbef/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/b0-07f293/1e-9d9d16/52-f0367f/1f-b57352/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/37-8473b9?ver=2.0&_cf=02242021_3231&iife=1
IP
23.38.201.156:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (42133)
Size
36 kB (35604 bytes)
Hash
aece1107107ca4280de0d98c1855bdbb
b84a2a75eef1fb21dc5dcb1866ec232c0323befa
4f747d96a6976d859279fa30bdc58af942826d562ba3cb14eb0243995fc9ce68

HTTP Headers

GET /onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/c6-082272/a7-f7a340/1e-addbef/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/b0-07f293/1e-9d9d16/52-f0367f/1f-b57352/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/37-8473b9?ver=2.0&_cf=02242021_3231&iife=1 HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Tue, 18 Oct 2022 17:39:10 GMT
x-activity-id: b6d3ee50-fcfc-4286-8cd2-662da3f3e5fe
ms-cv: ZDzyws/2PUSznH42.0
x-appversion: 1.0.8301.38639
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-09-24T05:27:58.0000000Z}
ms-operation-id: 670cf0f0a57d4141b0bc0910055ad5ab
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2022-10-18T17:39:10
x-s2: 2022-10-18T17:39:10
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 35604
cache-control: public, max-age=28195876
expires: Wed, 18 Oct 2023 17:38:16 GMT
date: Sat, 26 Nov 2022 09:27:00 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2

www.microsoft.com/mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff

23.38.201.156

200 OK

26 kB

URL HTTP/2
www.microsoft.com/mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff
IP
23.38.201.156:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 26288, version 0.0\012- data
Size
26 kB (26288 bytes)
Hash
d0263dc03be4c393a90bda733c57d6db
8a032b6deab53a33234c735133b48518f8643b92
22b4df5c33045b645cafa45b04685f4752e471a2e933bff5bf14324d87deee12

HTTP Headers

GET /mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: application/font-woff
last-modified: Tue, 14 Jun 2022 13:23:15 GMT
x-activity-id: 433fff9c-ac1c-4827-bb3b-a2ca5fa6dd83
ms-cv: /0+3RKV7ykuNLoKI.0
x-appversion: 1.0.8167.41521
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-05-13T07:04:02.0000000Z}
ms-operation-id: 2f08fc2d143919438bfe914fdfecfc02
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-length: 26288
cache-control: public, max-age=17294182
expires: Wed, 14 Jun 2023 13:23:22 GMT
date: Sat, 26 Nov 2022 09:27:00 GMT
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2

c.s-microsoft.com/static/fonts/segoe-ui/west-european/Semibold/latest.woff2

23.38.201.156

200 OK

29 kB

URL HTTP/2
c.s-microsoft.com/static/fonts/segoe-ui/west-european/Semibold/latest.woff2
IP
23.38.201.156:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 29388, version 0.0\012- data
Size
29 kB (29388 bytes)
Hash
6e75a94d5f7170a1ab532d32c2a35755
9c1b6fff544089941bbeddbcf529c3f0b46d853a
d87d0a7a7fe2c36d1dc093bfe56e9b81b311988789dbd3b65abf811d551ef02f

HTTP Headers

GET /static/fonts/segoe-ui/west-european/Semibold/latest.woff2 HTTP/1.1
Host: c.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 29388
content-type: font/woff2
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "5b68d583e9c7d51:0"
cache-control: public, max-age=520176
expires: Fri, 02 Dec 2022 09:56:37 GMT
date: Sat, 26 Nov 2022 09:27:01 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

c.s-microsoft.com/static/fonts/segoe-ui/west-european/normal/latest.woff2

23.38.201.156

200 OK

34 kB

URL HTTP/2
c.s-microsoft.com/static/fonts/segoe-ui/west-european/normal/latest.woff2
IP
23.38.201.156:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 34052, version 0.0\012- data
Size
34 kB (34052 bytes)
Hash
36397a3bc139c6e9f81d383f060f080a
3f4f86c10920d4ed345f4858b6cde9f93e1aeb81
4f7f4afe26e71fa9ca1dac4a43b557a554a46f53251d849f07ed08a04829d74b

HTTP Headers

GET /static/fonts/segoe-ui/west-european/normal/latest.woff2 HTTP/1.1
Host: c.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 34052
content-type: font/woff2
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "588d483e9c7d51:0"
cache-control: public, max-age=217251
expires: Mon, 28 Nov 2022 21:47:52 GMT
date: Sat, 26 Nov 2022 09:27:01 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

store-images.s-microsoft.com/image/apps.25928.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.a48640a0-ef1a-4f6d-8d3d-42727ab512ac?mode=scale&h=100&q=90&w=100

23.38.201.128

200 OK

5.0 kB

URL HTTP/1.1
store-images.s-microsoft.com/image/apps.25928.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.a48640a0-ef1a-4f6d-8d3d-42727ab512ac?mode=scale&h=100&q=90&w=100
IP
23.38.201.128:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
5.0 kB (5026 bytes)
Hash
ee2a4e9c74d50ccb1a377bbd73559dce
9d6f8787e0373de27e1e3f215768b154be0aec91
d2d1940ad87dcc2e4cfa21f8401daea927bfc8b5c05529aae6981eeea39d221d

HTTP Headers

GET /image/apps.25928.56b4c97f-a1d6-4fa3-9bec-d01f7df56ec7.6a70d781-59b8-4eba-8999-e300d5992e0e.a48640a0-ef1a-4f6d-8d3d-42727ab512ac?mode=scale&h=100&q=90&w=100 HTTP/1.1
Host: store-images.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: public, max-age=7776000, s-maxage=7776000
Content-Type: image/png
Last-Modified: Fri, 10 Jun 2022 16:19:25 GMT
Accept-Ranges: none
ETag: W/"AEDtkTaSXr0f6XqZ3tv8DSD6LaXe7tQgMHg4REE0QUZDRkNDMTU2MkE"
MS-CV: 2jd8WMhatUyH7n6G.0
Access-Control-Expose-Headers: MS-CV
Content-Length: 5026
Date: Sat, 26 Nov 2022 09:27:01 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *

js.monitor.azure.com/scripts/c/ms.shared.analytics.mectrl-3.2.6.gbl.min.js

13.107.213.53

200 OK

169 kB

URL HTTP/2
js.monitor.azure.com/scripts/c/ms.shared.analytics.mectrl-3.2.6.gbl.min.js
IP
13.107.213.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (65395)
Size
169 kB (168823 bytes)
Hash
e5e96964af9232ef4dd662ae22b796b4
dd60e31329bf9be83a0c3ad75f02f07f48312d39
2ca8044f8d1f7bb97100b9fbfeb01fbae730c73efb67a8ff6480a339c73ed1db

HTTP Headers

GET /scripts/c/ms.shared.analytics.mectrl-3.2.6.gbl.min.js HTTP/1.1
Host: js.monitor.azure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, no-transform
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: RlzwH95FOkmm6gksZWAC+w==
last-modified: Thu, 18 Aug 2022 21:40:45 GMT
etag: 0x8DA81624EF9033C
x-cache: TCP_HIT
x-ms-request-id: e858fbc0-201e-0048-4300-01138b000000
x-ms-version: 2009-09-19
x-ms-meta-jssdkver: 3.2.6
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,x-ms-meta-jssdkver,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 05duBYwAAAAAN+S7PZPFdTJw4Lz9MSqI7QU1TMDRFREdFMTgxNABmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
date: Sat, 26 Nov 2022 09:27:01 GMT
X-Firefox-Spdy: h2

mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meBoot.min.js

13.107.246.53

200 OK

130 kB

URL HTTP/2
mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meBoot.min.js
IP
13.107.246.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (65536), with no line terminators
Size
130 kB (129838 bytes)
Hash
423104887a90ee49814ee8a837d8c2a3
68e84e606dbc9458572dda75f96bd7695acd8f7b
22ebd386299f3fb5ce755665d265e241c73b7215bb1cb50506c0fe728fbf07e8

HTTP Headers

GET /scripts/me/MeControl/10.22290.5/en-US/meBoot.min.js HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Wed, 02 Nov 2022 22:23:16 GMT
etag: "1d8ef44604cb8a1"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref: 05duBYwAAAAAvh1RQ/Di6Tqw/WaAFnd/RQU1TMDRFREdFMTkxMwBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

www.microsoft.com/store/buy/cartcount

23.38.201.156

200 OK

489 B

URL HTTP/2
www.microsoft.com/store/buy/cartcount
IP
23.38.201.156:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
489 B (489 bytes)
Hash
bcdd127d7988dcedf4b2866d037bd952
5536e8863fabbf3c651c19e5b42d7a51bf5b2b9b
f9c56fb14488610fc4ee470e86f54bd1e9609907a3cb2bec2cc42cd78cb00679

HTTP Headers

GET /store/buy/cartcount HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
x-activity-id: 9af88c2f-dcdd-471e-93f9-5874a8c2e84b
ms-cv: A5CZNTBYu0GL8T21.0
x-appversion: 1.0.8347.41441
x-az: {did:9a8cd53207774949b337f7edab013e9f, rid: 6, sn: storeexp-neu-prod, dt: 2022-11-11T20:41:42.0561837Z, bt: 2022-11-08T23:01:22.0000000Z}
ms-operation-id: a7b35b04b2884c45a10a6ab0a1f36d74
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-length: 489
x-edgeconnect-midmile-rtt: 0, 18
x-edgeconnect-origin-mex-latency: 115, 115
cache-control: max-age=83292
expires: Sun, 27 Nov 2022 08:35:13 GMT
date: Sat, 26 Nov 2022 09:27:01 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: Str
set-cookie: ak_bmsc=8C4F47A9BC5788EEF652269F526232A3~000000000000000000000000000000~YAAQJ08kFzG5WrCEAQAAgPlCsxGENz1Q3yOrtaq27+gQ2tbDzhFuHWAuf2Lqtmlb9UqziE4FCkM4bnPoN1tunY/1aHWkylf5KerbZvsM/ZdnxQbkBOVvHKreztu5Ocu1T7MnUwkeWiHgstV8a5Tbo8/U5z3LdrHkBrD1w+vADu0/IvU664lchq8iY6TwT5TY1NK03J3zKj84V4xRVi3QjWUVJMVMLVFxvUXGQoe95n+wyZERe4OiCIgAT5ypuuK7h2xwseIk5m1qst9ix3BER2iwPMxQyWnfN78kcg/miOOlkXsFGh/GyyBIsvHhJU/UMQCbqh2cXmTMx8c7HoBNo0w5c5HTurFJmLxkJwCt/zwhuTQi1k7r68XZ1Mbc2V9SOoqvmU31gYWVLTjJ; Domain=.microsoft.com; Path=/; Expires=Sat, 26 Nov 2022 11:27:01 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2

edgestoreweb.azureedge.net/edgestoreweb/js/vendor14de0aba14f8d8f698a7d.js

13.107.246.53

200 OK

267 kB

URL HTTP/2
edgestoreweb.azureedge.net/edgestoreweb/js/vendor14de0aba14f8d8f698a7d.js
IP
13.107.246.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (65451)
Size
267 kB (266738 bytes)
Hash
12303d68661b48cf485665fd6d760ee5
4d74e6fc4ac14a5bd8b7f12295e9c8dbc8d82e34
05cc6f18acb9b82c657f52580c439d863a08a0ea7af3239fd35a1f61a52008be

HTTP Headers

GET /edgestoreweb/js/vendor14de0aba14f8d8f698a7d.js HTTP/1.1
Host: edgestoreweb.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=15552000
content-type: application/javascript
content-encoding: br
content-md5: lZuaif3iBcbKbsAJiJmfAQ==
last-modified: Fri, 25 Nov 2022 06:56:34 GMT
etag: 0x8DACEB2308F0D4A
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8368cbda-301e-00a0-7f74-016152000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 05NuBYwAAAAATBHhr8Cy6Tb9bBRw9EXOPQU1TMDRFREdFMTkxNQAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meCore.min.js

13.107.246.53

200 OK

16 kB

URL HTTP/2
mem.gfx.ms/scripts/me/MeControl/10.22290.5/en-US/meCore.min.js
IP
13.107.246.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (34247), with CRLF, LF line terminators
Size
16 kB (15974 bytes)
Hash
576b11fee0cb9118aa0780f899b82b40
0a8a3db152093b0e99e49d70ef45b78c35e022a1
0cec3c9e1af5d4851f5379d37185d84f4d1b5c9226d3726e4fea043f6110a56c

HTTP Headers

GET /scripts/me/MeControl/10.22290.5/en-US/meCore.min.js HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Wed, 02 Nov 2022 22:23:24 GMT
etag: "1d8ef446512a7ad"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref: 05duBYwAAAAAgLorTmz7PQrjUpvtXuj8PQU1TMDRFREdFMTkxMwBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Sat, 26 Nov 2022 09:27:01 GMT
X-Firefox-Spdy: h2

microsoftedge.microsoft.com/favicon.ico

13.107.6.158

200 OK

1.2 kB

URL HTTP/2
microsoftedge.microsoft.com/favicon.ico
IP
13.107.6.158:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
c31f21550fe41b47cc0775fefd023205
239a8cef4a782fa47f4b733f715747a7a0174327
54d502bf879cb1e12d4a7122d2dc71633ac2afd930a9f3748135a88b4641cc9e

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2; ak_bmsc=8C4F47A9BC5788EEF652269F526232A3~000000000000000000000000000000~YAAQJ08kFzG5WrCEAQAAgPlCsxGENz1Q3yOrtaq27+gQ2tbDzhFuHWAuf2Lqtmlb9UqziE4FCkM4bnPoN1tunY/1aHWkylf5KerbZvsM/ZdnxQbkBOVvHKreztu5Ocu1T7MnUwkeWiHgstV8a5Tbo8/U5z3LdrHkBrD1w+vADu0/IvU664lchq8iY6TwT5TY1NK03J3zKj84V4xRVi3QjWUVJMVMLVFxvUXGQoe95n+wyZERe4OiCIgAT5ypuuK7h2xwseIk5m1qst9ix3BER2iwPMxQyWnfN78kcg/miOOlkXsFGh/GyyBIsvHhJU/UMQCbqh2cXmTMx8c7HoBNo0w5c5HTurFJmLxkJwCt/zwhuTQi1k7r68XZ1Mbc2V9SOoqvmU31gYWVLTjJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=300
content-length: 1150
content-type: image/x-icon
last-modified: Fri, 21 Oct 2022 06:46:56 GMT
accept-ranges: bytes
etag: "1d8e518e916f47e"
ms-cv: pZxW5a0cGUqPs0WI.0
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: DBAFEE9919014B09969ECD7766CCE9B8 Ref B: SVG20EDGE0413 Ref C: 2022-11-26T09:27:01Z
date: Sat, 26 Nov 2022 09:27:01 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9246
Expires: Sat, 26 Nov 2022 12:01:07 GMT
Date: Sat, 26 Nov 2022 09:27:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9246
Expires: Sat, 26 Nov 2022 12:01:07 GMT
Date: Sat, 26 Nov 2022 09:27:01 GMT
Connection: keep-alive

login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb

40.126.32.135

200 OK

4.9 kB

URL HTTP/1.1
login.live.com/me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb
IP
40.126.32.135:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (10752)
Size
4.9 kB (4862 bytes)
Hash
18989a43563bf63da4b1b1db6c9de2d0
f5786b577d8d5bd82b0bc0e2f42cc373131a732d
7c9c70db72c66c7430245715a8c4f05d4aa49a48c68507d0cd624f951288fd52

HTTP Headers

GET /me.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com&uaid=e68f4ff0-aa7c-4670-37cf-7f80ba1af3ff&partnerId=edgestoreweb HTTP/1.1
Host: login.live.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Sat, 26 Nov 2022 09:26:01 GMT
Vary: Accept-Encoding
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
X-DNS-Prefetch-Control: on
Link: <https://logincdn.msauth.net>; rel=preconnect; crossorigin, <https://acctcdn.msauth.net>; rel=preconnect; crossorigin, <https://acctcdn.msftauth.net>; rel=preconnect; crossorigin, <https://acctcdn.msauth.net/>; rel=dns-prefetch, <https://acctcdn.msftauth.net/>; rel=dns-prefetch, <https://acctcdnmsftuswe2.azureedge.net/>; rel=dns-prefetch, <https://acctcdnvzeuno.azureedge.net/>; rel=dns-prefetch, <https://logincdn.msauth.net/>; rel=dns-prefetch, <https://logincdn.msftauth.net/>; rel=dns-prefetch, <https://lgincdnvzeuno.azureedge.net/>; rel=dns-prefetch, <https://lgincdnmsftuswe2.azureedge.net/>; rel=dns-prefetch
Referrer-Policy: strict-origin-when-cross-origin
x-ms-route-info: R3_BL2
x-ms-request-id: 566ad609-3c53-457a-8336-e70fd5d580f4
PPServer: PPV: 30 H: BL02PFBCF034669 V: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Set-Cookie: uaid=e68f4ff0aa7c467037cf7f80ba1af3ff; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
MSPRequ=id=N&lt=1669454821&co=1; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
OParams=11O.DZ!pXT71ypaFQ9uBWc7vKhP7SPyfzdnLKPNmJJNSOoA3zvjI4*5pgtA7I7aT9M*zdT*fE2hFXCTQPKKMw4j1*2vH1VdlWrVWyf!7UK6Nz5M3jHTp!HozGTKub6WrZ4VFSaq6WIgruO51JHmPM2szcl6cfBvG9A1u*IELPk9UkRifF2MKtzNYYP*nfdmNyjA*SO5*0YgFf1J0qcnI85f83IZ3LHaPg2WzPTVmA*ANEsKh4ZljaUa8wn27lQS!1WtmMuSYRAct3Rm9ClUmFy!VB0E$; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
Date: Sat, 26 Nov 2022 09:27:01 GMT
Content-Length: 4862

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9049 bytes)
Hash
c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 42205
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8913 bytes)
Hash
5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LDrq5UcFhG63XFZhmeS5Z_mEkwrvuQ2bLfT8hV9I3E1s1lJLZF5Dww==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
age: 42037
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3502 bytes)
Hash
a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 8016
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6431 bytes)
Hash
801dd70f0c591086062e2a9054f78efc
6a2f4d4bfec41d16fa84b0a9b0b13f7dcff2be3d
ba28f27ea906aaa6db1fbdca53ecbd4366b99d2696fb888e47b731e21c0f82da

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6431
x-amzn-requestid: 0daa58b7-3fd8-463f-85f5-6f84fdb17661
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVOBEpEIAMF87A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381358c-3f8b9c18598ba2532518668d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PuOd4PnHQfvwM2zDA15uprEEgoy7BfUUgjvkrf89DYmN43XfEfyJvg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:49:35 GMT
age: 41847
etag: "6a2f4d4bfec41d16fa84b0a9b0b13f7dcff2be3d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9914 bytes)
Hash
3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 41277
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 15754
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

logincdn.msauth.net/16.000/content/js/MeControl_GO_wC8TuKKkgsOmYJN749A2.js

192.229.221.185

200 OK

6.0 kB

URL HTTP/2
logincdn.msauth.net/16.000/content/js/MeControl_GO_wC8TuKKkgsOmYJN749A2.js
IP
192.229.221.185:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (17261), with no line terminators
Size
6.0 kB (6045 bytes)
Hash
28fab573e217ac3f56df4087f8109740
d54367cd2964cf5d5105fad5bfc0ae4879fb8d05
6f2a90cf278452c8bf1fe7aba312140cac96b6a4afcfe718126036a7b76841ca

HTTP Headers

GET /16.000/content/js/MeControl_GO_wC8TuKKkgsOmYJN749A2.js HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.live.com/
Origin: https://login.live.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 2000411
cache-control: public, max-age=31536000
content-md5: KPq1c+IXrD9W30CH+BCXQA==
content-type: application/x-javascript
date: Sat, 26 Nov 2022 09:27:02 GMT
etag: 0x8DABC92025440BE
last-modified: Wed, 02 Nov 2022 05:20:51 GMT
server: ECAcc (ska/F7A5)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 042879c8-d01e-0021-6347-ef5ed9000000
x-ms-version: 2009-09-19
content-length: 6045
X-Firefox-Spdy: h2

browser.pipe.aria.microsoft.com/Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-CJS-1.2.2&x-apikey=d79e824386c4441cb8c1d4ae15690526-bd443309-5494-444a-aba9-0af9eef99f84-7360

20.42.73.25

200 OK

0 B

URL HTTP/1.1
browser.pipe.aria.microsoft.com/Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-CJS-1.2.2&x-apikey=d79e824386c4441cb8c1d4ae15690526-bd443309-5494-444a-aba9-0af9eef99f84-7360
IP
20.42.73.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-CJS-1.2.2&x-apikey=d79e824386c4441cb8c1d4ae15690526-bd443309-5494-444a-aba9-0af9eef99f84-7360 HTTP/1.1
Host: browser.pipe.aria.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1010
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Content-Length: 0
Content-Type: application/json
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
time-delta-millis: 1289
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: Accept, Content-Type, Content-Encoding, Client-Id
Access-Control-Expose-Headers: kill-tokens, kill-duration-seconds, time-delta-millis
Date: Sat, 26 Nov 2022 09:27:02 GMT

browser.pipe.aria.microsoft.com/Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-JS-1.8.6&content-encoding=base64&x-apikey=225704764c804c94911a89e2f005a8c7-bc3a19c7-eaf6-4346-823a-c88981efd3fb-7097&client-time-epoch-millis=1669454822326&time-delta-to-apply-millis=use-collector-delta

20.42.73.25

200 OK

0 B

URL HTTP/1.1
browser.pipe.aria.microsoft.com/Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-JS-1.8.6&content-encoding=base64&x-apikey=225704764c804c94911a89e2f005a8c7-bc3a19c7-eaf6-4346-823a-c88981efd3fb-7097&client-time-epoch-millis=1669454822326&time-delta-to-apply-millis=use-collector-delta
IP
20.42.73.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-JS-1.8.6&content-encoding=base64&x-apikey=225704764c804c94911a89e2f005a8c7-bc3a19c7-eaf6-4346-823a-c88981efd3fb-7097&client-time-epoch-millis=1669454822326&time-delta-to-apply-millis=use-collector-delta HTTP/1.1
Host: browser.pipe.aria.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 47800
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Content-Length: 0
Content-Type: application/json
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
time-delta-millis: 1060
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: Accept, Content-Type, Content-Encoding, Client-Id
Access-Control-Expose-Headers: kill-tokens, kill-duration-seconds, time-delta-millis
Date: Sat, 26 Nov 2022 09:27:02 GMT

browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0

20.42.73.25

200 OK

0 B

URL HTTP/1.1
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
IP
20.42.73.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: apikey,cache-control,client-id,client-version,content-type,time-delta-to-apply-millis,upload-time
Referer: https://microsoftedge.microsoft.com/
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Cache-Control: public, 3600
Content-Length: 0
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: AuthMsaDeviceTicket,AuthXToken,Content-Encoding,Content-Type,Cache-Control,Client-Id,SDK-Name,sdk-version,apikey,x-apikey,client-version,upload-time,time-delta-to-apply-millis,client-time-epoch-millis,persistence-mode,reliability-mode,NoResponseBody
Access-Control-Max-Age: 3600
Access-Control-Allow-Origin: https://microsoftedge.microsoft.com
Date: Sat, 26 Nov 2022 09:27:03 GMT

browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0

20.42.73.25

200 OK

208 B

URL HTTP/1.1
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
IP
20.42.73.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JSON data\012- , ASCII text, with no line terminators
Size
208 B (208 bytes)
Hash
5d84ef45fa57871670c02ece44ca173b
11d0328a876371362025869a59e6cca91ffa6565
742c8867dab1fb8cbec64623477fd6606d6f62dbb88eb10e123223573cf68d02

HTTP Headers

POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Client-Id: NO_AUTH
client-version: 1DS-Web-JS-3.2.6
apikey: b8ffe739c47a401190627519795ca4d2-044a8309-9d4b-430b-9d47-6e87775cbab6-6888
upload-time: 1669454822909
time-delta-to-apply-millis: use-collector-delta
cache-control: no-cache, no-store
content-type: application/x-json-stream
Content-Length: 19281
Origin: https://microsoftedge.microsoft.com
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2; ak_bmsc=8C4F47A9BC5788EEF652269F526232A3~000000000000000000000000000000~YAAQJ08kFzG5WrCEAQAAgPlCsxGENz1Q3yOrtaq27+gQ2tbDzhFuHWAuf2Lqtmlb9UqziE4FCkM4bnPoN1tunY/1aHWkylf5KerbZvsM/ZdnxQbkBOVvHKreztu5Ocu1T7MnUwkeWiHgstV8a5Tbo8/U5z3LdrHkBrD1w+vADu0/IvU664lchq8iY6TwT5TY1NK03J3zKj84V4xRVi3QjWUVJMVMLVFxvUXGQoe95n+wyZERe4OiCIgAT5ypuuK7h2xwseIk5m1qst9ix3BER2iwPMxQyWnfN78kcg/miOOlkXsFGh/GyyBIsvHhJU/UMQCbqh2cXmTMx8c7HoBNo0w5c5HTurFJmLxkJwCt/zwhuTQi1k7r68XZ1Mbc2V9SOoqvmU31gYWVLTjJ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Content-Length: 208
Content-Type: application/json
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Set-Cookie: MS0=7198e3c8e040494da4ae9bdb5d0db9cb; Domain=.microsoft.com; Expires=Sat, 26 Nov 2022 09:57:04 GMT; Path=/;Secure; SameSite=None
time-delta-millis: 1431
Access-Control-Allow-Headers: P3P,Set-Cookie,time-delta-millis
Access-Control-Allow-Methods: POST
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://microsoftedge.microsoft.com
Access-Control-Expose-Headers: time-delta-millis
Date: Sat, 26 Nov 2022 09:27:03 GMT

edgestoreweb.azureedge.net/edgestoreweb/js/build-7b60f693b349bad4c82e.js

13.107.246.53

200 OK

0 B

URL HTTP/2
edgestoreweb.azureedge.net/edgestoreweb/js/build-7b60f693b349bad4c82e.js
IP
13.107.246.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /edgestoreweb/js/build-7b60f693b349bad4c82e.js HTTP/1.1
Host: edgestoreweb.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=15552000
content-type: application/javascript
content-encoding: br
content-md5: 2dHxgB2Y1lq8Q/3bCmbABA==
last-modified: Mon, 21 Nov 2022 08:08:13 GMT
etag: 0x8DACB97894E6051
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ed17cc74-901e-000c-7468-0140c5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 05NuBYwAAAAAyj6FBJaeLTKhTRdv1NVGPQU1TMDRFREdFMTkxNQAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

mem.gfx.ms/me/mecache?partner=edgestoreweb&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com%2Faddons%2Fdetail%2Fmulti-highlight%2Fliopeljgfbgjainhelaiggjebemkclap

13.107.246.53

200 OK

0 B

URL HTTP/2
mem.gfx.ms/me/mecache?partner=edgestoreweb&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com%2Faddons%2Fdetail%2Fmulti-highlight%2Fliopeljgfbgjainhelaiggjebemkclap
IP
13.107.246.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /me/mecache?partner=edgestoreweb&wreply=https%3A%2F%2Fmicrosoftedge.microsoft.com%2Faddons%2Fdetail%2Fmulti-highlight%2Fliopeljgfbgjainhelaiggjebemkclap HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: public, no-transform, max-age=7200
content-type: text/html; charset=utf-8
content-encoding: br
expires: Sat, 26 Nov 2022 10:58:26 GMT
x-cache: TCP_HIT
x-content-type-options: nosniff
content-security-policy: frame-ancestors https://microsoftedge.microsoft.com;
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref: 05tuBYwAAAACfgTM53S5fRZKkLzvNSiRtQU1TMDRFREdFMTkwOQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Sat, 26 Nov 2022 09:27:01 GMT
X-Firefox-Spdy: h2

microsoftedge.microsoft.com/addons/getproductdetailsbycrxid/liopeljgfbgjainhelaiggjebemkclap?hl=en-US&gl=NO

13.107.6.158

200 OK

0 B

URL HTTP/2
microsoftedge.microsoft.com/addons/getproductdetailsbycrxid/liopeljgfbgjainhelaiggjebemkclap?hl=en-US&gl=NO
IP
13.107.6.158:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /addons/getproductdetailsbycrxid/liopeljgfbgjainhelaiggjebemkclap?hl=en-US&gl=NO HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: 62e72889-f905-42aa-8d50-c9c334f6955b
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
content-encoding: br
vary: Accept-Encoding
ms-cv: 62e72889-f905-42aa-8d50-c9c334f6955b
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'strict-dynamic' 'nonce-U2ATUGWdNRCbhoCnk4u8Wcb0YOw/T4FctaHyl6n2ccQ=' 'unsafe-inline';object-src 'self';base-uri 'self';
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B5F221B25A7141AD81A35FD8A54114C6 Ref B: SVG20EDGE0413 Ref C: 2022-11-26T09:27:01Z
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

microsoftedge.microsoft.com/Assets/Locales/NativeLocales.json

13.107.6.158

200 OK

0 B

URL HTTP/2
microsoftedge.microsoft.com/Assets/Locales/NativeLocales.json
IP
13.107.6.158:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Assets/Locales/NativeLocales.json HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: 86773d53-66a8-4ee6-bc20-e534d3a3471f
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=43200
content-type: application/json
content-encoding: br
last-modified: Fri, 21 Oct 2022 06:46:56 GMT
accept-ranges: bytes
etag: "1d8e518e916fdc4"
vary: Accept-Encoding
ms-cv: 86773d53-66a8-4ee6-bc20-e534d3a3471f
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 33468D479381427A81F31985AC76DD4C Ref B: SVG20EDGE0413 Ref C: 2022-11-26T09:27:01Z
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

microsoftedge.microsoft.com/Assets/Regions/NativeRegions-en-US.json

13.107.6.158

200 OK

0 B

URL HTTP/2
microsoftedge.microsoft.com/Assets/Regions/NativeRegions-en-US.json
IP
13.107.6.158:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Assets/Regions/NativeRegions-en-US.json HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: 5a0c7da4-930c-429c-a030-1a20fca4c08e
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=43200
content-type: application/json
content-encoding: br
last-modified: Fri, 21 Oct 2022 06:46:56 GMT
accept-ranges: bytes
etag: "1d8e518e916e56f"
vary: Accept-Encoding
ms-cv: 5a0c7da4-930c-429c-a030-1a20fca4c08e
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B913D3E89DE04781A222077E671914B3 Ref B: SVG20EDGE0413 Ref C: 2022-11-26T09:27:01Z
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

microsoftedge.microsoft.com/Assets/Strings/en-US/strings.json

13.107.6.158

200 OK

0 B

URL HTTP/2
microsoftedge.microsoft.com/Assets/Strings/en-US/strings.json
IP
13.107.6.158:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Assets/Strings/en-US/strings.json HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: c7e74918-022f-4eab-84cd-5d7c9b8f31cc
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=300
content-type: application/json
content-encoding: br
last-modified: Fri, 21 Oct 2022 06:46:58 GMT
accept-ranges: bytes
etag: "1d8e518ea493cc6"
vary: Accept-Encoding
ms-cv: c7e74918-022f-4eab-84cd-5d7c9b8f31cc
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 08F95E4B88B74A58AF8DB99713E559F8 Ref B: SVG20EDGE0413 Ref C: 2022-11-26T09:27:01Z
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

edgestoreweb.azureedge.net/edgestoreweb/js/vendor3251469b173d334c4d38e.js

13.107.246.53

200 OK

0 B

URL HTTP/2
edgestoreweb.azureedge.net/edgestoreweb/js/vendor3251469b173d334c4d38e.js
IP
13.107.246.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /edgestoreweb/js/vendor3251469b173d334c4d38e.js HTTP/1.1
Host: edgestoreweb.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=15552000
content-type: application/javascript
content-encoding: br
content-md5: hiwB+9PHurwnuQsfo9jGEw==
last-modified: Mon, 21 Nov 2022 08:08:14 GMT
etag: 0x8DACB978A774C86
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: df65159d-901e-002e-1802-012ef3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 05NuBYwAAAAAfsBQz1gcOTL7iS5irS/ofQU1TMDRFREdFMTkxNQAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

edgestoreweb.azureedge.net/edgestoreweb/js/vendor2b1edd69ba9ed7e7fae13.js

13.107.246.53

200 OK

0 B

URL HTTP/2
edgestoreweb.azureedge.net/edgestoreweb/js/vendor2b1edd69ba9ed7e7fae13.js
IP
13.107.246.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /edgestoreweb/js/vendor2b1edd69ba9ed7e7fae13.js HTTP/1.1
Host: edgestoreweb.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=15552000
content-type: application/javascript
content-encoding: br
content-md5: LlfFPrb7M/TQnUSatv8Vqw==
last-modified: Fri, 25 Nov 2022 06:56:33 GMT
etag: 0x8DACEB23061C249
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 715b7bc4-e01e-008b-2b67-0115ea000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 05NuBYwAAAAC36lS+qVqjR4AL89/+peJtQU1TMDRFREdFMTkxNQAwNDQyYmMwMS0yZGVmLTQ2ODktYTI4Yy01NjU5MDgyNWJhZGU=
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

microsoftedge.microsoft.com/Assets/Regions/NativeRegions-en-US.json

13.107.6.158

200 OK

0 B

URL HTTP/2
microsoftedge.microsoft.com/Assets/Regions/NativeRegions-en-US.json
IP
13.107.6.158:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Assets/Regions/NativeRegions-en-US.json HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: 56979d0a-3248-4447-bdfb-2f409bf2f4df
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=43200
content-type: application/json
content-encoding: br
last-modified: Fri, 21 Oct 2022 06:46:56 GMT
accept-ranges: bytes
etag: "1d8e518e916e56f"
vary: Accept-Encoding
ms-cv: 56979d0a-3248-4447-bdfb-2f409bf2f4df
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A08739766B774067BC3A5B89C78B7377 Ref B: SVG20EDGE0413 Ref C: 2022-11-26T09:27:01Z
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

microsoftedge.microsoft.com/addons/getrelatedextensionslist/0RDCKCZ3X8K3?hl=en-US&gl=NO&noItems=10&pgNo=1&IncludeExtensionDetailsFields=false

13.107.6.158

200 OK

0 B

URL HTTP/2
microsoftedge.microsoft.com/addons/getrelatedextensionslist/0RDCKCZ3X8K3?hl=en-US&gl=NO&noItems=10&pgNo=1&IncludeExtensionDetailsFields=false
IP
13.107.6.158:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /addons/getrelatedextensionslist/0RDCKCZ3X8K3?hl=en-US&gl=NO&noItems=10&pgNo=1&IncludeExtensionDetailsFields=false HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
MS-CV: f4cde783-6e2a-44c6-9425-70205f00e7fa
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
content-encoding: br
vary: Accept-Encoding
ms-cv: f4cde783-6e2a-44c6-9425-70205f00e7fa
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'strict-dynamic' 'nonce-bv2z2ymsDPqkkK7KldBjOvhWhljrJJ1Q5kVP44mxkMc=' 'unsafe-inline';object-src 'self';base-uri 'self';
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B067FD2BB61F4A2E905597AEC2B2C7E4 Ref B: SVG20EDGE0413 Ref C: 2022-11-26T09:27:01Z
date: Sat, 26 Nov 2022 09:27:01 GMT
X-Firefox-Spdy: h2

microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap

13.107.6.158

200 OK

0 B

URL HTTP/2
microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
IP
13.107.6.158:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
ms-cv: xUBNNXzMykeM2/rz.0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'strict-dynamic' 'nonce-7xsbOc6iPYM8w7y9+3PIk4LxgNyWIhCo/uxZ78QbnUk=' 'unsafe-inline';object-src 'self';base-uri 'self';
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: F40411AE471342F58D09326D613EC0C4 Ref B: SVG20EDGE0413 Ref C: 2022-11-26T09:27:00Z
date: Sat, 26 Nov 2022 09:26:59 GMT
X-Firefox-Spdy: h2

microsoftedge.microsoft.com/addons/css/site.css

13.107.6.158

200 OK

0 B

URL HTTP/2
microsoftedge.microsoft.com/addons/css/site.css
IP
13.107.6.158:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /addons/css/site.css HTTP/1.1
Host: microsoftedge.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/addons/detail/multi-highlight/liopeljgfbgjainhelaiggjebemkclap
Cookie: MC1=GUID=c9b37f725aa54aca920642aafbd273a6&HASH=c9b3&LV=202205&V=4&LU=1652916118807; display-culture=en-US; MUID=5cc6c626cac748aeaf2c0657a97a57b2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=300
content-type: text/css
content-encoding: br
last-modified: Fri, 21 Oct 2022 06:46:56 GMT
accept-ranges: bytes
etag: "1d8e518e916eccc"
vary: Accept-Encoding
ms-cv: IoO+LFyjHkuImg+S.0
x-content-type-options: nosniff
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 6C837665D7CB46C59551110F2F87F8F1 Ref B: SVG20EDGE0413 Ref C: 2022-11-26T09:27:00Z
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

mem.gfx.ms/meversion?partner=Edgestoreweb&market=en-us&uhf=1

13.107.246.53

200 OK

0 B

URL HTTP/2
mem.gfx.ms/meversion?partner=Edgestoreweb&market=en-us&uhf=1
IP
13.107.246.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /meversion?partner=Edgestoreweb&market=en-us&uhf=1 HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoftedge.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, no-transform, max-age=7200
content-type: application/javascript
content-encoding: br
expires: Sat, 26 Nov 2022 11:26:43 GMT
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref: 05NuBYwAAAACTyM8bSihaTJR4aKVdxQWOQU1TMDRFREdFMTkwOQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Sat, 26 Nov 2022 09:27:00 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations