Overview

URL identity.ieipm.com/?eqp=dXNlcm5hbWU9cmljY2FyZG8ubGVvbmFyZGlAY3
IP149.28.73.161
ASNAS-CHOOPA
Location United States
Report completed2022-09-28 10:15:23 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-27 2 identity.ieipm.com/?eqp=dXNlcm5hbWU9cmljY2FyZG8ubGVvbmFyZGlAY3 Outlook
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-28 2 identity.ieipm.com/?eqp=dXNlcm5hbWU9cmljY2FyZG8ubGVvbmFyZGlAY3 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (24)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-28 04:19:13 UTC 93.184.220.29
mnemonic passive DNS statics-marketingsites-neu-ms-com.akamaized.net (1) 27382 2017-04-12 23:05:40 UTC 2022-09-28 07:56:19 UTC 23.36.76.114
mnemonic passive DNS c.s-microsoft.com (3) 10166 2015-09-11 00:00:13 UTC 2022-09-28 07:56:19 UTC 23.38.201.156
mnemonic passive DNS logincdn.msauth.net (1) 2330 2019-04-23 01:13:28 UTC 2022-09-28 04:09:24 UTC 192.229.221.185
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 05:14:54 UTC 143.204.55.49
mnemonic passive DNS www.microsoft.com (33) 302 2018-01-24 22:49:25 UTC 2022-09-28 04:36:52 UTC 23.38.201.156
mnemonic passive DNS identity.ieipm.com (1) 0 2022-09-27 16:33:01 UTC 2022-09-28 06:14:17 UTC 199.247.14.64 Unknown ranking
mnemonic passive DNS web.vortex.data.microsoft.com (5) 1617 2015-09-17 01:54:42 UTC 2022-09-28 07:56:19 UTC 23.96.225.71
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-28 05:04:09 UTC 143.204.55.27
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-28 04:36:06 UTC 34.117.237.239
mnemonic passive DNS teams.com (1) 791623 2017-04-07 11:31:37 UTC 2022-09-27 13:26:44 UTC 104.43.221.31
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-28 05:02:28 UTC 35.165.41.15
mnemonic passive DNS query.prod.cms.rt.microsoft.com (3) 5521 2016-05-19 08:03:24 UTC 2022-09-28 07:56:19 UTC 104.88.26.22
mnemonic passive DNS wcpstatic.microsoft.com (1) 5007 2020-09-15 17:02:29 UTC 2022-09-28 05:59:38 UTC 13.107.213.53
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-28 08:06:38 UTC 34.120.237.76
mnemonic passive DNS js.monitor.azure.com (1) 3838 2020-04-24 19:32:44 UTC 2022-09-28 04:59:16 UTC 13.107.246.53
mnemonic passive DNS browser.events.data.microsoft.com (3) 290 2018-05-25 06:23:05 UTC 2022-09-28 04:38:52 UTC 20.189.173.3
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-28 04:06:48 UTC 23.36.77.32
mnemonic passive DNS az725175.vo.msecnd.net (1) 4891 2015-12-16 05:01:58 UTC 2022-09-28 07:56:19 UTC 152.199.19.160
mnemonic passive DNS img-prod-cms-rt-microsoft-com.akamaized.net (1) 1197 2017-01-30 05:18:05 UTC 2022-09-28 04:42:52 UTC 23.36.76.186
mnemonic passive DNS cdn-dynmedia-1.microsoft.com (16) 67683 2020-01-31 23:40:37 UTC 2022-09-28 07:56:19 UTC 104.84.152.234
mnemonic passive DNS assets.adobedtm.com (3) 512 2014-01-28 04:51:35 UTC 2022-09-28 04:36:34 UTC 23.38.200.237
mnemonic passive DNS mem.gfx.ms (4) 3475 2015-02-13 15:56:33 UTC 2022-09-28 07:56:19 UTC 13.107.213.53
mnemonic passive DNS fpt.microsoft.com (2) 19030 2014-12-17 12:17:27 UTC 2022-09-28 07:56:19 UTC 52.167.30.171


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 149.28.73.161

Date UQ / IDS / BL URL IP
2022-09-28 10:15:23 +0000
0 - 0 - 2 identity.ieipm.com/?eqp=dXNlcm5hbWU9cmljY2FyZ (...) 149.28.73.161

Last 5 reports on ASN: AS-CHOOPA

Date UQ / IDS / BL URL IP
2022-12-03 11:58:34 +0000
0 - 0 - 1 45.76.177.56/ 45.76.177.56
2022-12-03 11:55:21 +0000
0 - 0 - 6 30.winprizes630.lol/thpp2/thpp10.html?city=Mo (...) 45.76.148.82
2022-12-03 11:28:34 +0000
0 - 0 - 1 ossgao.ga/zip/all.zip 139.180.206.4
2022-12-03 11:27:07 +0000
0 - 0 - 1 adgowin66.site/PCDecrapifier.zip 207.148.71.114
2022-12-03 10:31:19 +0000
0 - 0 - 1 marmorariamarmorial.com.br/ 45.32.219.239

Last 2 reports on domain: ieipm.com

Date UQ / IDS / BL URL IP
2022-09-28 10:15:23 +0000
0 - 0 - 2 identity.ieipm.com/?eqp=dXNlcm5hbWU9cmljY2FyZ (...) 149.28.73.161
2022-09-28 07:56:28 +0000
0 - 0 - 2 ieipm.com/conferenza/?segnaposto=c2ViYXN0aWFu (...) 41.77.116.150

Last 1 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-28 07:56:28 +0000
0 - 0 - 2 ieipm.com/conferenza/?segnaposto=c2ViYXN0aWFu (...) 41.77.116.150


JavaScript

Executed Scripts (54)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (97)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 09:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vd_ER4Zn_9ZoBH3d-j7yGRfPlwuOUjs0zHKuyUft-dMm-OfV5CEJMw==
Age: 3573


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "18E0A4E9F325A8E8E978EA886666CAEAD766FBC9868A0D422AA4E1FA5173EA92"
Last-Modified: Tue, 27 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13215
Expires: Wed, 28 Sep 2022 13:55:27 GMT
Date: Wed, 28 Sep 2022 10:15:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2367
Expires: Wed, 28 Sep 2022 10:54:39 GMT
Date: Wed, 28 Sep 2022 10:15:12 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fdthDmjMr49YgqbtjefCz_wuqDO937YEbM-34-MAba4w2-V-TcEG2w==
age: 17206
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 10:15:12 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 10:03:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hUED1Ta2l3wL-2UWp3nQnNvg-ijHHiU--Xnf7DB6wG8F3r_ZUc3bcQ==
Age: 2739


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6399
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:15:13 GMT
Last-Modified: Wed, 28 Sep 2022 08:28:34 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: teams.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         104.43.221.31
HTTP/1.1 302 Found
                                        
Content-Length: 0
Date: Wed, 28 Sep 2022 10:15:12 GMT
Server: Kestrel
Cache-Control: public,max-age=30
Location: https://www.microsoft.com/microsoft-teams/group-chat-software?ms.url=teamscom
Vary: User-Agent
Request-Context: appId=cid-v1:27f0a7a8-dd10-4827-bbd3-5edd1d46ab25
Strict-Transport-Security: max-age=7776000; includeSubDomains; preload

                                        
                                            GET /microsoft-teams/group-chat-software?ms.url=teamscom HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         23.38.201.156
HTTP/2 302 Found
content-type: text/html; charset=utf-8
                                        
location: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
x-activity-id: 3bc00170-fcad-4908-8371-07ad656a71cf
ms-cv: 6Cu3weJCoESrewBu.0
x-appversion: 1.0.8294.28556
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-09-16T23:51:52.0000000Z}
ms-operation-id: 35d03c5c4f2a054386cdff4809d23e5e
p3p: CP="CAO CONi OTR OUR DEM ONL"
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-length: 210
expires: Wed, 28 Sep 2022 10:15:13 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 28 Sep 2022 10:15:13 GMT
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   210
Md5:    8cd715cb1efc14184c44cc3b9c36a737
Sha1:   7ae01ef1f8ea80c39ddc7ab0fcbe0a6ce95bc297
Sha256: 50c917a92ebb80ada5f8f1b3ca17ed35d5b0b9e9f4d07e90260b6604dabf8f21
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6Nhkd2xYvpipDsZ0VToJVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.165.41.15
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3X+gBOAUj3JiiR28C65mQeN+km4=

                                        
                                            GET /nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1 HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/html;charset=utf-8
                                        
set-cookie: AEMDC=westeurope; path=/; secure; SameSite=None
x-dispatcher: dispatcher1westeurope
ms-cv-esi: Ufq12sCih7ad/6oz.0
x-rtag: AEM_PROD_BADE
strict-transport-security: max-age=31536000
tls_version: tls1.3
vary: Accept-Encoding
x-edgeconnect-origin-mex-latency: 464, 464
x-edgeconnect-midmile-rtt: 18, 0
x-frame-options: SAMEORIGIN
ms-cv: PoADVz5GRFa2cR0F.0
ms-commit-id: 5535649
x-content-type-options: nosniff
x-vhost: publish_microsoft_s
cache-control: max-age=0,s-maxage=28800
content-encoding: gzip
date: Wed, 28 Sep 2022 10:15:14 GMT
content-length: 22851
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (809)
Size:   22851
Md5:    5803ed80612ce963929b2c20a8cbec62
Sha1:   888c3b5f377b0a8dbf500f8ddc65239fc2151a68
Sha256: 57e44ddb716601f8d8c2a9d1ad5a795273a90d9b87286fc9b608ac8c8bd19426
                                        
                                            GET /etc.clientlibs/onecloud/clientlibs/clientlib-mwf-new/main-teams.min.ACSHASH515dd12179f11337e7b3d273101eb506.css HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/css;charset=utf-8
                                        
content-length: 47670
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 5535649
ms-cv: Hva5aP+ITx229KAa.0
last-modified: Mon, 26 Sep 2022 17:59:52 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-edgeconnect-midmile-rtt: 0
x-edgeconnect-origin-mex-latency: 18
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65333)
Size:   47670
Md5:    7068b310be875b7157351f555a12b418
Sha1:   470296586e9280da35eb42404a47ab1c1793b666
Sha256: 4372ef05f8123636202936cad7605bca0e37ed8ebfc7beb336a082d3f8d4d399
                                        
                                            GET /scripts/jsll-4.js HTTP/1.1 
Host: az725175.vo.msecnd.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.19.160
HTTP/2 200 OK
content-type: text/javascript; charset="utf-8"
                                        
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 1502
cache-control: public, max-age=1800, immutable
content-md5: yvXHFTB8uAvUsw4tqOlcNw==
date: Wed, 28 Sep 2022 10:15:14 GMT
etag: 0x8D8D781DE4DEC32
last-modified: Mon, 22 Feb 2021 22:33:25 GMT
server: ECAcc (ska/F7AD)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 8d803895-701e-0047-381f-d31040000000
x-ms-version: 2009-09-19
content-length: 18421
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (56291), with no line terminators
Size:   18421
Md5:    32f1bf19428a2e79603fdd8ccc7ec1ea
Sha1:   1994843b64ecec6e83dcb18e0d4106ed5032a5ee
Sha256: 9fbf649f39e30e27a7675222fd920606592ec12291f321dfc0197d64ec8ec140
                                        
                                            GET /cms/api/am/binary/RE4OxzH HTTP/1.1 
Host: query.prod.cms.rt.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.88.26.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Tue, 27 Sep 2022 23:29:40 GMT
ETag: W/"31"
Server: Microsoft-HTTPAPI/2.0
X-CMS-DocumentId: RE4OxzH
X-CMS-Version: 11
X-CMS-State: Published
X-CMS-Tenant: am
X-CMS-Type: binary
X-CMS-Alias: default
X-CMS-ExecutionTimeInMilliseconds: 14
AppEx-Activity-Id: ee229947-2c9c-40a9-b0c1-fad81468f8f3
X-Trace-Context: {"ActivityId":"ee229947-2c9c-40a9-b0c1-fad81468f8f3"}
MS-CV: i3c6nEnes0Ok9NKAYVgeDQ.0
X-CMS-ServiceLocation: northeu:0
Content-Disposition: inline; filename=aem-head-script.js
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 966
Cache-Control: public, must-revalidate, max-age=2019
Date: Wed, 28 Sep 2022 10:15:14 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (474), with CRLF line terminators
Size:   966
Md5:    fed21c561925723cc694e49dcd1127e3
Sha1:   ac6bb1acd0e1ca8a576831d286b52da38c98bfa4
Sha256: ca5a9ca48bda2eab751d88cbebf13e5879fdc4d49145aa78f454096b34071592
                                        
                                            GET /statics/override.css HTTP/1.1 
Host: statics-marketingsites-neu-ms-com.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Tue, 11 Jun 2019 23:22:13 GMT
ETag: 0x8D6EEC3A2D67C35
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7502d9a5-901e-0068-28c4-66545b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 473
Unused62: 8096267
Date: Wed, 28 Sep 2022 10:15:14 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (342), with CRLF line terminators
Size:   473
Md5:    a40589609d8e75c109e93abbff0dcf60
Sha1:   76ae9c943d54022e24b90467713a73a431eddd6d
Sha256: 2c959c2618be84448b26de18639db8a66126449c6ebb29f4f6d33e00adb5b069
                                        
                                            GET /cms/api/am/imageFileData/RE1Mu3b?ver=5c31 HTTP/1.1 
Host: img-prod-cms-rt-microsoft-com.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: image/png
                                        
access-control-allow-origin: *
content-location: https://image.prod.cms.rt.microsoft.com/cms/api/am/imageFileData/RE1Mu3b?ver=5c31
last-modified: Sat, 17 Sep 2022 20:22:04 GMT
x-source-length: 4054
x-datacenter: northeu
x-activityid: bbef4b2b-7038-48db-bee2-5c178f5fa7a2
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 4054
cache-control: public, max-age=296093
expires: Sat, 01 Oct 2022 20:30:07 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 216 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size:   4054
Md5:    9f14c20150a003d7ce4de57c298f0fba
Sha1:   daa53cf17cc45878a1b153f3c3bf47dc9669d78f
Sha256: 112fec798b78aa02e102a724b5cb1990c0f909bc1d8b7b1fa256eab41bbc0960
                                        
                                            GET /cms/api/am/binary/RE4OFm4 HTTP/1.1 
Host: query.prod.cms.rt.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.88.26.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 15 Sep 2022 16:04:31 GMT
ETag: W/"79"
Server: Microsoft-HTTPAPI/2.0
X-CMS-DocumentId: RE4OFm4
X-CMS-Version: 24
X-CMS-State: Published
X-CMS-Tenant: am
X-CMS-Type: binary
X-CMS-Alias: default
X-CMS-ExecutionTimeInMilliseconds: 14
AppEx-Activity-Id: f4dbfea1-4970-4da9-911d-5ac9b6b595a8
X-Trace-Context: {"ActivityId":"f4dbfea1-4970-4da9-911d-5ac9b6b595a8"}
MS-CV: 6xuaf/Vj60mU8mnFrqnVEQ.0
X-CMS-ServiceLocation: northeu:0
Content-Disposition: inline; filename="____aem-head-style (2) (2) (1).css"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1179
Cache-Control: public, must-revalidate, max-age=9235
Date: Wed, 28 Sep 2022 10:15:14 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (5405), with no line terminators
Size:   1179
Md5:    ae0ddcdfcf45c55b63e346ed942922a4
Sha1:   3166458f70a56312e675667d24077daaa8fae5d9
Sha256: d98ad999ab7eb0f6c90378a5fc8e6d796dc58bebdb17fd406245bd06b5f59d07
                                        
                                            GET /cms/api/am/binary/RE1r2ij HTTP/1.1 
Host: query.prod.cms.rt.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.88.26.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Mon, 26 Apr 2021 16:08:54 GMT
ETag: W/"171"
Server: Microsoft-HTTPAPI/2.0
X-CMS-DocumentId: RE1r2ij
X-CMS-Version: 72
X-CMS-State: Published
X-CMS-Tenant: am
X-CMS-Type: binary
X-CMS-Alias: default
X-CMS-ExecutionTimeInMilliseconds: 44
AppEx-Activity-Id: 35d7530d-cdef-48d2-9426-e2c5a2a8b06b
X-Trace-Context: {"ActivityId":"35d7530d-cdef-48d2-9426-e2c5a2a8b06b"}
MS-CV: BEaW0TrWfUWb+k1o2Egp0g.0
X-CMS-ServiceLocation: westcenus:0
Content-Disposition: inline; filename=oa.min.js
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, must-revalidate, max-age=12743
Date: Wed, 28 Sep 2022 10:15:14 GMT
Content-Length: 2669
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (6777), with no line terminators
Size:   2669
Md5:    22f3565d19fd92f9d6670368e369e1cd
Sha1:   97bdf8e39af7e91ac24d65a00b0ae7c8752e065e
Sha256: 7b1cb8a4d8c56c778ef07416e7e74bca4702fab798e0eed00f9af648f2c2dbff
                                        
                                            GET /mscc/lib/v2/wcp-consent.js HTTP/1.1 
Host: wcpstatic.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: max-age=43200
content-length: 81726
content-encoding: gzip
content-md5: X1JOIM5h9UISVFS6+GfEew==
last-modified: Wed, 24 Aug 2022 17:34:36 GMT
age: 39293
etag: 0x8DA85F6EA62BF74
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
x-cache: CONFIG_NOCACHE
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 0cd19b75-c01e-0077-0fc7-d2147d000000
x-ms-version: 2009-09-19
x-azure-ref: 0sh40YwAAAABOr0+caMztS4SxiL5oJn77U1ZHMjBFREdFMDUwOQAzOWI0NjE1Ny1jYjllLTQ5YjctYTY1YS04NzIyYTNmODI0ZTQ=
date: Wed, 28 Sep 2022 10:15:13 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (63888), with no line terminators
Size:   81726
Md5:    e51f388b62281af5b4a9193cce419941
Sha1:   364f3d737462b7fd063107fe2c580fdb9781a45a
Sha256: 348404a68791474349e35bd7d1980abcbf06db85132286e45ad4f204d10b5f2c
                                        
                                            GET /etc.clientlibs/onecloud/clientlibs/clientlib-mwf-ext/main-teams.min.ACSHASHf8ae36817a59390913b012c0e0a54a37.css HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/css;charset=utf-8
                                        
content-length: 18071
x-dispatcher: dispatcher1westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 5535649
ms-cv: SrnukhiHR4mafp0D.0
last-modified: Mon, 26 Sep 2022 18:07:51 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-edgeconnect-midmile-rtt: 51
x-edgeconnect-origin-mex-latency: 10
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65335)
Size:   18071
Md5:    86899b629d1931c5721db93c5da4eb1c
Sha1:   963965bba77c7c391fe4e35e8454d9edff5c38d0
Sha256: b46e24a8ec724732a3115b44d9e5ad083ff4a69ccdf5d911dc0349c75459f59c
                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/clientlib-base.min.ACSHASH50628e34bba9f2b65078edc419e409b3.css HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/css;charset=utf-8
                                        
content-length: 23951
x-dispatcher: dispatcher3westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 2878823
ms-cv: OLGPD4DLTyie5O+7.0
last-modified: Tue, 09 Nov 2021 19:14:28 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   23951
Md5:    fcbc6e8aa7f4d5bfc35a73e83475a00d
Sha1:   fb2ddc3723fc2abbf34e9fef7ef7d716aaeabcb6
Sha256: 28604281a9928fd3e8e4cd831178de6a107622132b7825bbc7e71f5079aa03d8
                                        
                                            GET /is/content/microsoftcorp/Home-1 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/svg+xml
                                        
access-control-allow-origin: *
accept-ranges: bytes
last-modified: Mon, 12 Jul 2021 19:15:56 GMT
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 599
expires: Wed, 28 Sep 2022 19:01:10 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
x-temp-format: image/svg+xml
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   599
Md5:    09b4b58b3bf10a9a2c10fdd26d0f66b7
Sha1:   8c430c266be02120f92be64dd2aedb815915baa9
Sha256: d742a9e64cacff89b09725cac92cef13048df51219df273ddb431a2f92b0e45e
                                        
                                            GET /is/image/microsoftcorp/Twitter-34?scl=1 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-allow-origin: *
last-modified: Mon, 12 Jul 2021 19:15:54 GMT
etag: "95ef5d6416889b94a82d3cd75c4679a5"
-x-adobe-smart-imaging: 183
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 566
expires: Wed, 28 Sep 2022 17:00:32 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
x-temp-bytediff: 183
x-temp-format: image/webp
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 40x40, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   566
Md5:    95ef5d6416889b94a82d3cd75c4679a5
Sha1:   4bc61b5db581d30c31c98737e5dab93a4819a052
Sha256: 85b613a491d45771f5d5a509c4490eef5f55fbb86857415659fdf551254bb6be
                                        
                                            GET /is/image/microsoftcorp/Instagram%202x?scl=1 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-allow-origin: *
last-modified: Fri, 14 May 2021 23:45:27 GMT
etag: "b86e5e9b9826b5cf5f3aefaddee3e95b"
-x-adobe-smart-imaging: 549
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 814
expires: Wed, 28 Sep 2022 13:02:23 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
x-temp-bytediff: 549
x-temp-format: image/webp
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   814
Md5:    b86e5e9b9826b5cf5f3aefaddee3e95b
Sha1:   9c2c9a598c687a71d8c4be2cb1818717d74f59a8
Sha256: 401de36d897ae5d41e11c0859c387d297a90dc100169c5c5916fb52c4c6e3c5d
                                        
                                            GET /is/image/microsoftcorp/YouTube%202x?scl=1 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-allow-origin: *
last-modified: Fri, 14 May 2021 23:39:32 GMT
etag: "b0fe50b21f06692c6881fb79eaecd136"
-x-adobe-smart-imaging: 433
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 674
expires: Wed, 28 Sep 2022 14:57:21 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
x-temp-bytediff: 433
x-temp-format: image/webp
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   674
Md5:    b0fe50b21f06692c6881fb79eaecd136
Sha1:   6e7c5b0e8cdb54f25e2a1cc620521a1df4963cde
Sha256: 489a2bb853f0a78a22e21737540e4415023ea5beb51cb2d636ddf1c340242c2f
                                        
                                            GET /is/image/microsoftcorp/Blog?scl=1 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-allow-origin: *
last-modified: Mon, 12 Jul 2021 20:54:55 GMT
etag: "419f88e695a62cec374cbbe759f11754"
-x-adobe-smart-imaging: 346
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 502
expires: Wed, 28 Sep 2022 17:02:30 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
x-temp-bytediff: 346
x-temp-format: image/webp
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 40x40, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   502
Md5:    419f88e695a62cec374cbbe759f11754
Sha1:   69509ddecb1b082020907299471177772db59070
Sha256: 2c13442d9caa9698d2d10443eb6f0cfc395dd220e60763ae0c3a4a6044db7603
                                        
                                            GET /etc.clientlibs/onecloud/clientlibs/clientlib-events.min.ACSHASH7344ea3f173fdfa77c63bae1fed1c87d.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 516
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 13e4c43
ms-cv: bzVRDdoRS9GzENu2.0
last-modified: Mon, 29 Aug 2022 17:44:25 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   516
Md5:    d3a5ac75202f4fb98645f0bf2c2da365
Sha1:   5722e95dd2dd52544b5f8d5eebdf482db52041e5
Sha256: df81d99600967527d71df05bcb361080c8204963fb0f41ff0b43d319e1c796c5
                                        
                                            GET /is/image/microsoftcorp/KeyMessage_BringToLife:VP4-1399x600 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/avif
                                        
access-control-allow-origin: *
last-modified: Wed, 28 Sep 2022 03:28:18 GMT
etag: "98731f6d1e042dafa38055cd62f57512"
-x-adobe-smart-imaging: 46281
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 25045
expires: Wed, 28 Sep 2022 13:28:43 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
x-temp-bytediff: 46281
x-temp-format: image/avif
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   25045
Md5:    98731f6d1e042dafa38055cd62f57512
Sha1:   3146d624618688ec0bcebfd63a0ed8470d89300e
Sha256: cc4d842083781540b73ad1b2ff554536c71cfd79bcd022ee156d602a65c90777
                                        
                                            GET /is/content/microsoftcorp/Education HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/svg+xml
                                        
access-control-allow-origin: *
accept-ranges: bytes
last-modified: Mon, 12 Jul 2021 19:15:53 GMT
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1056
expires: Wed, 28 Sep 2022 19:51:38 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
x-temp-format: image/svg+xml
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1056
Md5:    b5fb481bfb75fd0ace3bcc3f09b98609
Sha1:   20f6751ac65254876b001962074c4082a63c45fd
Sha256: 3b3b416f197ea9333857e2d7f300d577e0e2e8d8dab570b6f99ada585d370ba6
                                        
                                            GET /is/content/microsoftcorp/Enterprise HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/svg+xml
                                        
access-control-allow-origin: *
accept-ranges: bytes
last-modified: Mon, 12 Jul 2021 19:15:53 GMT
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1717
expires: Wed, 28 Sep 2022 14:41:52 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
x-temp-format: image/svg+xml
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1717
Md5:    ac814055b0f58ba4ced36601f9b0a80b
Sha1:   a3daa3a253ba5e923abab34815c821934fa8d6fa
Sha256: 6d4181dc4ac04ea367de584f68429e9f905e4be4046ac99848a587ac796978e4
                                        
                                            GET /is/content/microsoftcorp/Business HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/svg+xml
                                        
access-control-allow-origin: *
accept-ranges: bytes
last-modified: Mon, 12 Jul 2021 19:15:53 GMT
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1107
expires: Wed, 28 Sep 2022 14:13:26 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
x-temp-format: image/svg+xml
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1107
Md5:    74250b98607525799265dbfbc63a8bd6
Sha1:   c65d358087546ffbdb8a47980c8a29a66978f23e
Sha256: c8ed7f97e5f409a30fc58819c8c8c8f1b2d5ee23f7f95b6a939de7bec3396c56
                                        
                                            GET /is/image/microsoftcorp/KeyMessage_StayFocused:VP4-1399x600 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-allow-origin: *
last-modified: Wed, 28 Sep 2022 05:10:00 GMT
etag: "f069c7047e398c5e4e32cdc7c7577557"
-x-adobe-smart-imaging: 1710
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 69654
expires: Wed, 28 Sep 2022 15:10:11 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
x-temp-bytediff: 1710
x-temp-format: image/webp
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 1399x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   69654
Md5:    f069c7047e398c5e4e32cdc7c7577557
Sha1:   5949b9bc0a45f91c86a1d671c7c70c266db6c4ce
Sha256: 8b785bc6d6bc37b323b4a8b3b2829b6d124f6f45cdd1d1bc4907d59701380306
                                        
                                            GET /?eqp=dXNlcm5hbWU9cmljY2FyZG8ubGVvbmFyZGlAY3 HTTP/1.1 
Host: identity.ieipm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         199.247.14.64
HTTP/2 302 Found
content-type: text/html; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 10:15:12 GMT
location: https://teams.com
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   183
Md5:    2d2234801d4f8320d1ff8be3adfa3b30
Sha1:   512312d75ad24a38ef3427e96c16733d00a5ad94
Sha256: baf0b23ca1c6fb2bc82d203de5f0ba4b4c4a5dd2cdea233dc7e381f14face44d

Alerts:
  Blocklists:
    - openphish: Outlook
    - fortinet: Phishing
                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/clientlib-polyfills.min.ACSHASH87340f968f85ec162e195e5217994ae7.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 20099
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 10fc269
ms-cv: nfrQkExLTUmigBGE.0
last-modified: Wed, 12 Jan 2022 18:45:17 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (655)
Size:   20099
Md5:    d40a8aa1eef4a26d29aea8b09bb8a83a
Sha1:   59d873c94d2fbc5498d27aad42e931f3d2093a33
Sha256: 0adb988e402660299e47aebd412ad2bc8eebc7082d4a83582c1b7e3eb86e9c80
                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/clientlib-jquery.min.ACSHASHb1168f0ce867875996c28ca9e8b4949b.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 32509
x-dispatcher: dispatcher3westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: f37f6fe
ms-cv: 66qB+AqMS1iWeSp1.0
last-modified: Mon, 01 Jun 2020 23:37:11 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-edgeconnect-midmile-rtt: 0, 18
x-edgeconnect-origin-mex-latency: 13, 13
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884)
Size:   32509
Md5:    d824a79690a8a318225eb1da6e1d3f00
Sha1:   cb90fc69a6ad001aaae682fa655b9485aae74dbe
Sha256: f4e758c8de48f457135f23aa1a187a3d686d547275765e1085a0d2bfd2c34914
                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/clientlib-jquery-cookie.min.ACSHASHa67d659f582bf93e1d8156fc182326f5.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 793
x-dispatcher: dispatcher3westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: f37f6fe
ms-cv: kmZFoA6dSRyuUN1Z.0
last-modified: Mon, 01 Jun 2020 23:37:11 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (506)
Size:   793
Md5:    9f89be8c9e55c4458eeab10d5668571e
Sha1:   4a9dbe1699f2255a484c6a3bea7ca65c143cd955
Sha256: c6fd4e7f42656b4a0f7c2d5c43d58f04c54c023e6059886680ed7472566e6dcb
                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/exp-analytics/v1.min.ACSHASHd825183b3614c7a5dca53474beaec39e.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 699
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 745e634
ms-cv: n5a9bhnyTNib3fFN.0
last-modified: Wed, 27 Jul 2022 17:36:00 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (565)
Size:   699
Md5:    6f49d536e98875fdc79ea6549d0ab065
Sha1:   fd925cf907858f3c2c5f91bca08df06fd186ed50
Sha256: 35039bb79f7f92f9d8e0ce1661dd481091887f9cdc5f1b96309510333ee69d28
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5336
Expires: Wed, 28 Sep 2022 11:44:10 GMT
Date: Wed, 28 Sep 2022 10:15:14 GMT
Connection: keep-alive

                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/exp-cookiecomp/v1.min.ACSHASH3007ee72081412fbd8b665a01afb7cad.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 1277
x-dispatcher: dispatcher1westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: aad9f57
ms-cv: K0Yf+2SrQjWAH9RV.0
last-modified: Wed, 07 Sep 2022 17:51:54 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (529)
Size:   1277
Md5:    85426543fa0d902b19358d2844a68224
Sha1:   4b11333e852c1ba1369a9739a17d65a774172b18
Sha256: 65f73fb6f40f12333d6537ddcd4a871b2acc4e09b49555652e177a1ab0083f95
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5336
Expires: Wed, 28 Sep 2022 11:44:10 GMT
Date: Wed, 28 Sep 2022 10:15:14 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 45051
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13299
Md5:    ad84ed0c5b2090df7996007514cf1984
Sha1:   651600f2ef18cecc2e38370069bbb5e1d86f68e0
Sha256: a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
                                        
                                            GET /onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_mobile_webkit_android/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/1a-bb39e7/ef-a24652?ver=2.0&_cf=02242021_3231 HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
last-modified: Sat, 03 Sep 2022 13:36:55 GMT
x-activity-id: 8c0c3fc2-b952-413b-bb5e-f49c4caf1b85
ms-cv: /kWgIiiL+EO+PP1W.0
x-appversion: 1.0.8263.42159
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-08-17T07:25:18.0000000Z}
ms-operation-id: 11d0c629229ad54bbacde09d01a9c421
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2022-09-03T13:36:55
x-s2: 2022-09-03T13:36:55
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 22578
cache-control: public, max-age=29388064
expires: Sun, 03 Sep 2023 13:36:18 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (64241)
Size:   22578
Md5:    bb34fa956cd28133c85f395df38cd9d1
Sha1:   431626d79bb8538a90010651d1afae008bb0afd2
Sha256: 19ea0e7c6aee3590451b4dc1a1ed6b62e611cb478eb889aa7cdfe31968225ea5
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5336
Expires: Wed, 28 Sep 2022 11:44:10 GMT
Date: Wed, 28 Sep 2022 10:15:14 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 44891
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    6139c878a7d2bd32c61fc8287996eb5b
Sha1:   9c4692ea64832895fbd107d91f879728b6a440c7
Sha256: 3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5319
x-amzn-requestid: d4c13fa8-eb03-4abf-9516-b74eac712b87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreHL5IAMFcOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-487923453bd27d6a744b5a31;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gGfaq_dx7NIHH43-iNn0Ah61HRLT8H3NxPGVoDvkKgBgy8zJWYwRuw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:49:20 GMT
age: 44754
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5319
Md5:    46e31aa06b8e86a9a5f9ba1cc3feca08
Sha1:   75df3341e30281fcbf78c7074980356fdf0be8e2
Sha256: d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7359
x-amzn-requestid: 6e3123b2-ea7e-4e3e-8399-19a66d27923f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI34CEYtIAMF01w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d00-5995316c70da7a0c460ac432;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:04 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: C8VwjZMvXqbQlvSRB8ugvw6o-wRUI0Xtbn91g79lSpBxrXiCzC_FXg==
via: 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:26:18 GMT
age: 42536
etag: "0cd28a243f9704140ccb9eb1415a77fcccc7cf87"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7359
Md5:    46dc8f1499f4de5f03bd87a68c3c6c7b
Sha1:   0cd28a243f9704140ccb9eb1415a77fcccc7cf87
Sha256: 3d7a5cdc0812857efabd7ab941aea6d6582790b86a9587809d222c0a8546262b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DLbHFjJGMksD2heHzypEVyGDzN-yzsAnjrKWRyTZIWCH9J6XqljyDA==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 06:36:08 GMT
age: 13146
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9733
Md5:    f3e1fd3401c5e635a8dbeec5f78b721d
Sha1:   2142075b27d0d355c51231ab06fea46e25eb9c59
Sha256: 2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d
                                        
                                            GET /etc.clientlibs/microsoft/components/content/universalheader/v1/universalheader/clientlibs/site.min.ACSHASH0df7fef27e9de44acae5b384a20f2542.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 750
x-dispatcher: dispatcher1westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: aedd210
ms-cv: NEtc3vgWR6+McVWU.0
last-modified: Mon, 18 Jul 2022 17:49:35 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-edgeconnect-midmile-rtt: 0
x-edgeconnect-origin-mex-latency: 6
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (519)
Size:   750
Md5:    2eed6eca2c07413c0170a6a6667430fc
Sha1:   85f52ca56d7f0bd535dfbba6f2da6b77b5ff7f98
Sha256: bf2d3c82a9bdced95317ac1d56f4b5028624b936e51f9e92e75f5cd9b27bf3bb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 45044
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12016
Md5:    4b794c6812cb546de0295e087ebe66a7
Sha1:   a54803cca7d3c509c195f65961e1110c8ec56f55
Sha256: 6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
                                        
                                            GET /etc.clientlibs/microsoft/components/content/alert/v1/alert/clientlibs/site.min.ACSHASH7c34475ccd4fb5689f833f1255874583.css HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/css;charset=utf-8
                                        
content-length: 141
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: f37f6fe
ms-cv: 3ontHHeSQKClRqF4.0
last-modified: Wed, 16 Dec 2020 18:52:06 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   141
Md5:    f4b537309103c7b5aebf31f588490ca8
Sha1:   5345656430672e8053e0eaf36fbb45bc965d955c
Sha256: 096a59c0fac36d255643b4f099ebbe58b02dbd78e79fcb87a57c5f4cee59a44e
                                        
                                            GET /etc.clientlibs/microsoft/components/content/alert/v1/alert/clientlibs/site.min.ACSHASHb50eba9660b82459945c8a91d7b72956.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 675
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 9c3c20e
ms-cv: XR9cuayGQ66C/jes.0
last-modified: Wed, 29 Sep 2021 17:36:55 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (516)
Size:   675
Md5:    c5799fdbc8a5ef28983590cc1535255e
Sha1:   d1968d11ecb4b548a8a81061fc4a324bebc72b15
Sha256: 8ad90e3b8e5c2fa306b6322ffa179dd66ca1a9ef4326c53bc6c2a3f04074c3c9
                                        
                                            GET /etc.clientlibs/onecloud/components/content/highlight/v1/highlight/clientlibs/site.min.ACSHASHcced67ac82867a5838572397f6cfd860.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 1495
x-dispatcher: dispatcher1westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 97bd120
ms-cv: jEACQloHR3WRM1/e.0
last-modified: Mon, 22 Aug 2022 18:06:38 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1495)
Size:   1495
Md5:    7ef4bd014f7c8f3f073a24263601b581
Sha1:   8e92cb855b44204e70ac1d92835421897dcecc4a
Sha256: 3c65afa03f34113f7a71b21529416a43ae13c84cb08e09026de43ab191c64efd
                                        
                                            GET /static/fonts/segoe-ui/west-european/normal/latest.woff2 HTTP/1.1 
Host: c.s-microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: font/woff2
                                        
content-length: 34052
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "588d483e9c7d51:0"
cache-control: public, max-age=412660
expires: Mon, 03 Oct 2022 04:52:54 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 34052, version 0.0\012- data
Size:   34052
Md5:    36397a3bc139c6e9f81d383f060f080a
Sha1:   3f4f86c10920d4ed345f4858b6cde9f93e1aeb81
Sha256: 4f7f4afe26e71fa9ca1dac4a43b557a554a46f53251d849f07ed08a04829d74b
                                        
                                            GET /etc.clientlibs/microsoft/components/content/mosaic-tile/v1/mosaic-tile/clientlibs/site.min.ACSHASHd4959324223e8a0edda3bb0a222ea21f.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 292
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 5cb2640
ms-cv: 22Vk+VhHTKqAihPC.0
last-modified: Wed, 20 Oct 2021 17:41:16 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (516)
Size:   292
Md5:    36ccd54d6c0ffa28d9391fb2a76553f1
Sha1:   cd472f796707ad4fb1dffbfba84233b8f18d340a
Sha256: 59b7bd2c209aae47053f35c6ee67b2d494935331259c7b4c580c6e899a4cb12c
                                        
                                            GET /static/fonts/segoe-ui/west-european/Semibold/latest.woff2 HTTP/1.1 
Host: c.s-microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: font/woff2
                                        
content-length: 29388
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "5b68d583e9c7d51:0"
cache-control: public, max-age=401971
expires: Mon, 03 Oct 2022 01:54:45 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 29388, version 0.0\012- data
Size:   29388
Md5:    6e75a94d5f7170a1ab532d32c2a35755
Sha1:   9c1b6fff544089941bbeddbcf529c3f0b46d853a
Sha256: d87d0a7a7fe2c36d1dc093bfe56e9b81b311988789dbd3b65abf811d551ef02f
                                        
                                            GET /etc.clientlibs/onecloud/components/content/key-message/v1/key-message/clientlibs/site.min.ACSHASH1d326b6a71c2dac6e3e8786d8499eb1e.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 822
x-dispatcher: dispatcher1westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 111cf3f
ms-cv: bXH+Hf+CRpmpCJyk.0
last-modified: Wed, 14 Jul 2021 21:40:13 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (510)
Size:   822
Md5:    6dd6649294cea1ef1b9d89693577188f
Sha1:   d06975f8ecfc2373b6f17b9fd738168392cc4a82
Sha256: 34c219ef56a805e28debc830f251b3d97478a5ee20a68e90fbe2e3cc1e6ce208
                                        
                                            GET /onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/a0-23c4ba/a7-f7a340/48-6ed936/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/b0-07f293/1e-9d9d16/52-f0367f/1f-b57352/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/37-8473b9?ver=2.0&_cf=02242021_3231&iife=1 HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
last-modified: Tue, 23 Aug 2022 21:27:42 GMT
x-activity-id: ba1a6d7b-e993-45ae-a14b-260b61045c46
ms-cv: eHE/b/kYDkWjU+WL.0
x-appversion: 1.0.8263.42159
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-08-17T07:25:18.0000000Z}
ms-operation-id: 819762409931f041bf59e7a7daace4b8
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2022-08-23T21:27:42
x-s2: 2022-08-23T21:27:42
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 35578
cache-control: public, max-age=28465918
expires: Wed, 23 Aug 2023 21:27:12 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42133)
Size:   35578
Md5:    457c64e69f73a625fe291fae02c1b927
Sha1:   ab2aa2e7b4e37daaeb60f17698a5a886d501385e
Sha256: 094ea09c58e064dc91cfa128356e975744d1e546948c61ed9852e0fe3e158134
                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/clientlib-mwf-new/main-light.min.ACSHASHf482e47f46fb33d80b20334060534d1c.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 55000
x-dispatcher: dispatcher1westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 2f885be
ms-cv: RwVEngDSQNO3Cc4c.0
last-modified: Mon, 19 Sep 2022 17:44:57 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-edgeconnect-midmile-rtt: 0, 22
x-edgeconnect-origin-mex-latency: 20, 20
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (723)
Size:   55000
Md5:    7eb6d0e413ede8fd08a2a9d1b4396875
Sha1:   3903086f443e7f945c90d4b21f528f635db54cad
Sha256: e207377c58bb074854784e09589c4f18a8f4c6a4b1373f5c67364f9b4a0d8fbc
                                        
                                            GET /etc.clientlibs/onecloud/clientlibs/clientlib-mwf-ext/main-teams.min.ACSHASH6369af0029c00338562d1e325258e1b4.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 39178
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 5535649
ms-cv: DJX8UUFYREekrO2Z.0
last-modified: Mon, 26 Sep 2022 17:59:52 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-edgeconnect-midmile-rtt: 18
x-edgeconnect-origin-mex-latency: 11
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (874)
Size:   39178
Md5:    f833f5f5ff6492eb859fc31050d54ae4
Sha1:   89a36740b2a31db59612c9096e0fae92469cc2b1
Sha256: a38730d47f6e8f248292a830fbc3c9a55245656ddd7e3e1501c6ae77beaa7a2a
                                        
                                            GET /etc.clientlibs/onecloud/clientlibs/clientlib-site.min.ACSHASH4c1f1c6a4ff877c820e56e5ab869262b.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 142
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 2447558
ms-cv: Vwq0P15SQye7soCw.0
last-modified: Mon, 12 Sep 2022 17:47:38 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-edgeconnect-midmile-rtt: 0
x-edgeconnect-origin-mex-latency: 4
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   142
Md5:    aa75c60aed07a4fb0310d88ddf2d28f9
Sha1:   901a9ed040be8c58a742bb0d798aa355ca28cf8d
Sha256: fa45cbfc0dd5030487389988fc9c25fe08c4e04d3a9c6a5e773986b8880f9167
                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/clientlib-httpclient.min.ACSHASH3777b76ab25b618eb1cc80790699da8f.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 13342
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 2f885be
ms-cv: 4ZM8aIWATT6qZL+w.0
last-modified: Wed, 21 Sep 2022 17:38:54 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2824)
Size:   13342
Md5:    9d3ae084d0b970da0ee91e3db9f01b58
Sha1:   90640131435648ddfb582f7bd33e39e58e0f0c14
Sha256: 01a34ba6e199f0faf7b450fe9975db7436255f12afe4092270d6b27c054a5cea
                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/clientlib-cookieconsent.min.ACSHASHc892f451b0c4db9c8ab2601a427c9b2c.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 118
x-dispatcher: dispatcher1westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 111cf3f
ms-cv: ZsxB4Fc4Qb2/2oJN.0
last-modified: Wed, 21 Jul 2021 20:49:06 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-edgeconnect-midmile-rtt: 3
x-edgeconnect-origin-mex-latency: 6
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   118
Md5:    971ecdbc8def64f4a3e360c7e8ea8826
Sha1:   2b04da71929ee12e7ab80c9e1954da2edfc7fbc1
Sha256: 193b9c20031af89244f2bd2c0b6a40e50420bf29e36a8317c61901f7185ea1ff
                                        
                                            GET /static/fonts/segoe-ui/west-european/Bold/latest.woff2 HTTP/1.1 
Host: c.s-microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: font/woff2
                                        
content-length: 30132
last-modified: Fri, 10 Jan 2020 19:09:42 GMT
accept-ranges: bytes
etag: "83cce83e9c7d51:0"
cache-control: public, max-age=448882
expires: Mon, 03 Oct 2022 14:56:36 GMT
date: Wed, 28 Sep 2022 10:15:14 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30132, version 0.0\012- data
Size:   30132
Md5:    4c38c2a78502af8dfbfe0f71cc49a1ae
Sha1:   4b8c845263b3696e28cf3f313e0214e22688a750
Sha256: 1232bbdbc5d205f3c5a40efa5ed92839c79e7879d5168445cc47645bb93f7d1b
                                        
                                            GET /etc.clientlibs/onecloud/clientlibs/clientlib-cookievalidator.min.ACSHASH57e17bc5d041e292fab3625ef861658a.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 4553
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 8bfc2ab
ms-cv: NcPBSESlTgW6ticf.0
last-modified: Thu, 24 Mar 2022 17:36:47 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:14 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4553
Md5:    00550f13073020abfeb5ffbc2b5a2e5e
Sha1:   50cc25fbbd6b0f6ac8cef383c3b6dc2464d6d3d3
Sha256: b2883152c86f732373412f4db42e3610e1afaf4ba43ce0cf278a7c302c650e50
                                        
                                            GET /etc.clientlibs/microsoft/components/structure/page/clientlibs/custom-oneds.min.ACSHASH5e3bdd09b4ded66c549038bde6fbc184.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 2f885be
ms-cv: 8XwLWuUHTTWKQLcT.0
last-modified: Wed, 21 Sep 2022 17:38:57 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-edgeconnect-midmile-rtt: 0
x-edgeconnect-origin-mex-latency: 15
content-length: 61565
date: Wed, 28 Sep 2022 10:15:15 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (582)
Size:   61565
Md5:    1c01ba199ccda85d9d9b0a1e3f37ef1d
Sha1:   ff850ceb292449e12c56ff0ed266adcd9d64f853
Sha256: 0b7a2c530d9a66e5c0c46ab25ee3b467942291cf232d31a9988a0447fe75ff80
                                        
                                            GET /etc.clientlibs/onecloud/clientlibs/clientlib-chat.min.ACSHASHfa6f56b2d3037982772378233706c9af.css HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: text/css;charset=utf-8
                                        
content-length: 437
x-dispatcher: dispatcher1westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: b7e7ad6
ms-cv: 52jmJgYoQ7amkt4y.0
last-modified: Mon, 15 Aug 2022 17:46:07 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-edgeconnect-midmile-rtt: 0
x-edgeconnect-origin-mex-latency: 6
date: Wed, 28 Sep 2022 10:15:15 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   437
Md5:    c7efc3485fa29071c8602973d8822665
Sha1:   7e64b32016bc52cc5ab3c3f7961f724952fba651
Sha256: 5b38c773949ff58ad0799052d81e1984046afd8394e5420ad4e18cbc07bb5854
                                        
                                            GET /etc.clientlibs/onecloud/clientlibs/clientlib-chat.min.ACSHASHd28f58ccba8e55ad3c2eef33911b7929.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 34568
x-dispatcher: dispatcher3westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 8d6a331
ms-cv: Yr3byWMyTm6y3KSx.0
last-modified: Wed, 31 Aug 2022 17:39:03 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:15 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32098)
Size:   34568
Md5:    89b15f2a949b6b45db8c5e5bc961444f
Sha1:   2f5f4eb2266940851686dbff30324de60328a7bc
Sha256: 70ec5f3e8617b86902857112a947b109e7d6f6a9a226ff1e5be33a30f45c59f3
                                        
                                            GET /etc.clientlibs/onecloud/clientlibs/clientlib-market-layer.min.ACSHASH52cb8441e33acc0de9f858216525fc58.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 664
x-dispatcher: dispatcher1westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 2447558
ms-cv: NQRpttu7SwOnxiUG.0
last-modified: Mon, 12 Sep 2022 17:55:43 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:15 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (528)
Size:   664
Md5:    2011d8044a2e36144ca781c9cc46b0c0
Sha1:   2d7228375b7ef135da36a3d7e79a240c44666640
Sha256: c04a37643dc4f22882f07f5961f30a2e8ed3bb10549a378209da3e9ca00266ee
                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/clientlib-greenid.min.ACSHASH44a811225ab0a12502f646d624dede72.js HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 516
x-dispatcher: dispatcher2westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 0c15161
ms-cv: VZgsGJbRRq+jI1HO.0
last-modified: Mon, 27 Jun 2022 17:49:01 GMT
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
date: Wed, 28 Sep 2022 10:15:15 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   516
Md5:    9bef2c89870818ac6dd0f6567bcc2bab
Sha1:   c19c94580bef4bdcac576ceade478fb51e0f098e
Sha256: 5f7904c14687e1f1f672f8c5d1843af6a4c162da4ecfdbb524562113f496d8aa
                                        
                                            GET /mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.microsoft.com/onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_mobile_webkit_android/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/1a-bb39e7/ef-a24652?ver=2.0&_cf=02242021_3231
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/font-woff
                                        
last-modified: Tue, 14 Jun 2022 13:23:15 GMT
x-activity-id: 433fff9c-ac1c-4827-bb3b-a2ca5fa6dd83
ms-cv: /0+3RKV7ykuNLoKI.0
x-appversion: 1.0.8167.41521
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2022-05-13T07:04:02.0000000Z}
ms-operation-id: 2f08fc2d143919438bfe914fdfecfc02
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-length: 26288
cache-control: public, max-age=22388887
expires: Wed, 14 Jun 2023 13:23:22 GMT
date: Wed, 28 Sep 2022 10:15:15 GMT
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 26288, version 0.0\012- data
Size:   26288
Md5:    d0263dc03be4c393a90bda733c57d6db
Sha1:   8a032b6deab53a33234c735133b48518f8643b92
Sha256: 22b4df5c33045b645cafa45b04685f4752e471a2e933bff5bf14324d87deee12
                                        
                                            GET /etc.clientlibs/microsoft/clientlibs/clientlib-mwf-new/resources/fonts/MWFUISymbol.woff2 HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.microsoft.com/etc.clientlibs/onecloud/clientlibs/clientlib-mwf-new/main-teams.min.ACSHASH515dd12179f11337e7b3d273101eb506.css
Cookie: AEMDC=westeurope
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: application/octet-stream
                                        
x-dispatcher: dispatcher1westeurope
x-vhost: publish_microsoft_s
x-content-type-options: nosniff
ms-commit-id: 98f342e
ms-cv: J8Z+LRcgQoCOSQwz.0
last-modified: Wed, 14 Jul 2021 21:40:23 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
cache-control: public, max-age=14131
date: Wed, 28 Sep 2022 10:15:15 GMT
content-length: 21344
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: AEM_PROD_Static
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21344, version 3.-27395\012- data
Size:   21344
Md5:    63c8286696144ac7c765a140efc03667
Sha1:   c0df912647bf59d6cfd9c79d960cbbda448486c7
Sha256: f343d652b1484f6d901474a52613dd7186ff89a513056a15de649f06bbd96124
                                        
                                            GET /favicon.ico?v2 HTTP/1.1 
Host: www.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/nb-no/microsoft-teams/group-chat-software?ms.url=teamscom&rtc=1
Cookie: AEMDC=westeurope; MicrosoftApplicationsTelemetryDeviceId=f4b606d5-764f-4e7b-8ae2-17fe00e49613; ai_session=KCr6UeSeTVbbC68mDChCVe|1664360112682|1664360112682
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.38.201.156
HTTP/2 200 OK
content-type: image/x-icon
                                        
content-length: 17174
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
etag: "1D8CEC950656400"
last-modified: Thu, 22 Sep 2022 21:21:44 GMT
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
x-frame-options: SAMEORIGIN
x-sitemuse-origin: Azure
x-azure-ref: 0sRg0YwAAAAAZCSUKzuHiQ5lLmuW9zYLvUEFSMjAxMDMxMDEyMDM1ADFiMmIyMmMxLWNiMGMtNDk1MC04ODc5LWQyMTJmMmFjNWE0Yg==
cache-control: public, max-age=84862
expires: Thu, 29 Sep 2022 09:49:37 GMT
date: Wed, 28 Sep 2022 10:15:15 GMT
tls_version: tls1.3
strict-transport-security: max-age=31536000
x-rtag: RT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Size:   17174
Md5:    12e3dac858061d088023b2bd48e2fa96
Sha1:   e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
Sha256: 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
                                        
                                            GET /is/image/microsoftcorp/Hero-TeamsHP-1:VP4-1399x726?resMode=sharp2&op_usm=1.5,0.65,15,0&qlt=75 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/avif
                                        
access-control-allow-origin: *
last-modified: Wed, 28 Sep 2022 05:20:47 GMT
etag: "e0979be765151b23b7e90a1847628b66"
-x-adobe-smart-imaging: 52401
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 47221
expires: Wed, 28 Sep 2022 15:20:47 GMT
date: Wed, 28 Sep 2022 10:15:15 GMT
x-temp-bytediff: 52401
x-temp-format: image/avif
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   47221
Md5:    e0979be765151b23b7e90a1847628b66
Sha1:   a8dd7321eb746398548764305dc299893a096e02
Sha256: 92ed1985c272e019db61eb90ba4ce3d6b3ec3a422f2e5c5177210482d8e3b75a
                                        
                                            GET /is/image/microsoftcorp/Image-Home-400x400?resMode=sharp2&op_usm=1.5,0.65,15,0&qlt=75&wid=400&hei=400 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-allow-origin: *
last-modified: Fri, 08 Oct 2021 07:00:49 GMT
etag: "167fb080ae10b22ea637cc4fc3d2bbc5"
-x-adobe-smart-imaging: -3491
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 29667
expires: Wed, 28 Sep 2022 12:01:03 GMT
date: Wed, 28 Sep 2022 10:15:15 GMT
x-temp-bytediff: -3491
x-temp-format: image/jpeg
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Size:   29667
Md5:    167fb080ae10b22ea637cc4fc3d2bbc5
Sha1:   ad4ec5d26679c71741b6e6c7b7f7274c51ce4bb9
Sha256: 68be1631f4273a3fc1d429a0cdd8b209ea492cac98ecf044d9961db54f20c422
                                        
                                            GET /is/image/microsoftcorp/Image-Business-400x400?resMode=sharp2&op_usm=1.5,0.65,15,0&qlt=75&wid=400&hei=400 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-allow-origin: *
last-modified: Fri, 08 Oct 2021 07:00:50 GMT
etag: "0ea3eab964b490d3e4b7a0b2ac2f9b0f"
-x-adobe-smart-imaging: -18184
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 21284
expires: Wed, 28 Sep 2022 11:25:52 GMT
date: Wed, 28 Sep 2022 10:15:15 GMT
x-temp-bytediff: -18184
x-temp-format: image/jpeg
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Size:   21284
Md5:    0ea3eab964b490d3e4b7a0b2ac2f9b0f
Sha1:   084d6fd7677c72e47251a5b4f077f629c3f81928
Sha256: ffc5708573cddbd7f1502fc26a06dde0fb8b1f9898ae105032c0443e3b98a6d8
                                        
                                            GET /is/image/microsoftcorp/Image-Enterprise-400x400?resMode=sharp2&op_usm=1.5,0.65,15,0&qlt=75&wid=400&hei=400 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-allow-origin: *
last-modified: Fri, 08 Oct 2021 07:00:49 GMT
etag: "0401e477123ac7120741c6d3b1b4a286"
-x-adobe-smart-imaging: -11498
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 26124
expires: Wed, 28 Sep 2022 15:12:31 GMT
date: Wed, 28 Sep 2022 10:15:15 GMT
x-temp-bytediff: -11498
x-temp-format: image/jpeg
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Size:   26124
Md5:    0401e477123ac7120741c6d3b1b4a286
Sha1:   5ad1456c0214be1dec0395fc00d3945159195ffb
Sha256: da769f6a3712405227a9e1258acd19c09785670e07e4e8334f327a8ae070a193
                                        
                                            GET /is/image/microsoftcorp/Image-Education-400x400?resMode=sharp2&op_usm=1.5,0.65,15,0&qlt=75&wid=400&hei=400 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-allow-origin: *
last-modified: Fri, 08 Oct 2021 07:00:50 GMT
etag: "4a753a872b62b157b09a6718a16b5da3"
-x-adobe-smart-imaging: -11904
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 23716
expires: Wed, 28 Sep 2022 11:15:42 GMT
date: Wed, 28 Sep 2022 10:15:15 GMT
x-temp-bytediff: -11904
x-temp-format: image/jpeg
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Size:   23716
Md5:    4a753a872b62b157b09a6718a16b5da3
Sha1:   bf38447c30ef43f3b593a1f9f5bc9c2ba9bccc49
Sha256: 7f077fd15e0c523e1a217a3ec24d5ccb5310bf2d1cae0fd07df87996b9044997
                                        
                                            GET /5ef092d1efb5/d6d76b37b476/launch-41185cd0b005.min.js HTTP/1.1 
Host: assets.adobedtm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.237
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
etag: "2ff66f47957052cad7dcc1ed409f7cff:1638999595.762542"
last-modified: Wed, 08 Dec 2021 21:39:55 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 18602
cache-control: max-age=3600
expires: Wed, 28 Sep 2022 11:15:15 GMT
date: Wed, 28 Sep 2022 10:15:15 GMT
access-control-allow-origin: https://www.microsoft.com
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32768)
Size:   18602
Md5:    c0258c45cf2b36b156dcde2d308a5e7a
Sha1:   1d24f1ee540ee1f11d1285c246bff88f72f6b668
Sha256: 3aa2678598c1e1abd63581b05313a3c6a9aefe7165dc588a6c49d81600680730
                                        
                                            GET /5ef092d1efb5/d6d76b37b476/cc63921ab1f0/RCbec314109be34962999dbad4041375a8-source.min.js HTTP/1.1 
Host: assets.adobedtm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.237
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
etag: "d8b4a532e9559d18d4118fb4a3525c9b:1638999596.382245"
last-modified: Wed, 08 Dec 2021 21:39:56 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 513
cache-control: max-age=3600
expires: Wed, 28 Sep 2022 11:15:15 GMT
date: Wed, 28 Sep 2022 10:15:15 GMT
access-control-allow-origin: https://www.microsoft.com
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (908)
Size:   513
Md5:    71b0db1ae2e2b879d9b15823c7a08db9
Sha1:   c1a4fd02d9154a5f6563b0dd2889032b5e85ab59
Sha256: c598069de4bd9602207f0275cd32d576b1d5139a11666f4d5c4d10e6c7bec8b1
                                        
                                            GET /5ef092d1efb5/d6d76b37b476/cc63921ab1f0/RCb827b2d874d8436fa48a7c19baf01bf1-source.min.js HTTP/1.1 
Host: assets.adobedtm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.237
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
etag: "d8b4a532e9559d18d4118fb4a3525c9b:1638999596.382245"
last-modified: Wed, 08 Dec 2021 21:39:56 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 16898
cache-control: max-age=3600
expires: Wed, 28 Sep 2022 11:15:15 GMT
date: Wed, 28 Sep 2022 10:15:15 GMT
access-control-allow-origin: https://www.microsoft.com
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65389)
Size:   16898
Md5:    b01c18308c601d937a98aca6aebf1ce6
Sha1:   cfe45999ce6d24b695fb3811154efa15731a694a
Sha256: dafee0b06b2b6eb6661294ff9abb5960bdf2003033ce24b7a68dd0e002e43483
                                        
                                            GET /meversion?partner=OfficeProducts&market=nb-no&uhf=1 HTTP/1.1 
Host: mem.gfx.ms
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, no-transform, max-age=43200
content-encoding: br
expires: Wed, 28 Sep 2022 21:42:39 GMT
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 00Rc0YwAAAAA+P4a4kJ/WRLWJHeVzeJGAQU1TMDRFREdFMTkxOQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0sh40YwAAAABL9HxUBoHNS4vMSFV/remAU1ZHMjBFREdFMDUxNABlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Wed, 28 Sep 2022 10:15:14 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30141)
Size:   10142
Md5:    ce2f76c6698e9dc70eabe832902ebe07
Sha1:   5002aa346fc5cb5aed0cf71f96d25e8f587f32ac
Sha256: ce5f789dfd84271d4ae681b3ec97f4ad3662d293871460610701cb59f3e454a6
                                        
                                            GET /collect/v1/t.gif?ver=%272.1%27&name=%27Ms.Webi.OutgoingRequest%27&time=%272022-09-28T10%3A15%3A12.760Z%27&appId=%27JS%3AMeControl%27&cV=%27nOSMon5m%2FZdv4qwP.1%27&flags=2097152&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.2.3%27&ext-javascript-domain=%27www.microsoft.com%27&ext-javascript-userConsent=false&ext-app-env=%27Prod%27&-operationName=%27meversion%27&-dependencyOperationName=%27LoadResource%27&-dependencyName=%27MeControl%27&-latencyMs=297&-succeeded=true&-targetUri=%27https%3A%2F%2Fmem.gfx.ms%2Fmeversion%3Fpartner%3D**%26market%3D**%26uhf%3D**%27&*baseType=%27Ms.Qos.OutgoingServiceRequest%27&*pageName=%27None%27&*impressionGuid=%270308bb31-a48f-4b74-acdd-36a540273cd2%27&*market=%27nb-NO%27&*customData=%27%7B%22computedDuration%22%3A1113%2C%22perfDuration%22%3A297%2C%22metaTags%22%3A%7B%22pgpart%22%3A%22officeproducts%22%7D%2C%22config%22%3A%7B%22ver%22%3A%2210.22228.4%22%2C%22mkt%22%3A%22nb-NO%22%2C%22ptn%22%3A%22officeproducts%22%2C%22gfx%22%3A%22https%3A%2F%2Famcdn.msftauth.net%22%2C%22dbg%22%3Afalse%2C%22aad%22%3Atrue%2C%22int%22%3Afalse%2C%22pxy%22%3Atrue%2C%22msTxt%22%3Afalse%2C%22rwd%22%3Atrue%2C%22telEvs%22%3A%22PageAction%2C%20PageView%2C%20ContentUpdate%2C%20OutgoingRequest%2C%20ClientError%2C%20PartnerApiCall%2C%20TrackedScenario%22%2C%22instKey%22%3A%22b8ffe739c47a401190627519795ca4d2-044a8309-9d4b-430b-9d47-6e87775cbab6-6888%22%2C%22oneDSUrl%22%3A%22https%3A%2F%2Fjs.monitor.azure.com%2Fscripts%2Fc%2Fms.shared.analytics.mectrl-3.2.6.gbl.min.js%22%2C%22remAcc%22%3Atrue%2C%22main%22%3A%22meBoot%22%2C%22wrapperId%22%3A%22uhf%22%2C%22cdnRegex%22%3A%22%5E(%3F%3Ahttps%3F%3A%5C%5C%2F%5C%5C%2F)%3F(mem%5C%5C.gfx%5C%5C.ms(%3F!%5C%5C.)%7Ccontrols%5C%5C.account.microsoft%3F(%3F%3A-int%7C-dev)%3F(%5C%5C.com)%3F(%3A%5B0-9%5D%7B1%2C6%7D)%7Camcdn%5C%5C.ms(%3F%3Aft)%3Fauth%5C%5C.net(%3F!%5C%5C.))%22%2C%22timeoutMs%22%3A30000%2C%22graphv2%22%3Atrue%2C%22graphinfo%22%3A%7B%22graphclientid%22%3A%227eadcef8-456d-4611-9480-4fff72b8b9e2%22%2C%22graphscope%22%3A%22user.read%22%2C%22graphcodeurl%22%3A%22https%3A%2F%2Flogin.microsoftonline.com%2Fcommon%2Foauth2%2Fv2.0%2Fauthorize%22%2C%22graphredirecturi%22%3A%22https%3A%2F%2Famcdn.msftauth.net%2Fme%2Fcallgraph%22%2C%22graphphotourl%22%3A%22https%3A%2F%2Fgraph.microsoft.com%2Fv1.0%2Fme%2Fphotos%2F96x96%2F%24value%22%7D%2C%22aadUrl%22%3A%22https%3A%2F%2Fmyaccount.microsoft.com%22%2C%22msaUrl%22%3A%22https%3A%2F%2Faccount.microsoft.com%2F%22%2C%22authAppUpsellUrl%22%3A%22%22%2C%22cache%22%3Atrue%2C%22cacheRetention%22%3A%7B%22picRetention%22%3A604800000%2C%22authAppRetention%22%3A94670856000%7D%7D%2C%22url%22%3A%22https%3A%2F%2Fwww.microsoft.com%2Fnb-no%2Fmicrosoft-teams%2Fgroup-chat-software%3Fms.url%3D**%26rtc%3D**%22%2C%22accts%22%3A%220-0%22%7D%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 43
Expires: 0
MS-CV: wzur2ZDXk02ZtYNJJN3+Aw.0
X-Content-Type-Options: nosniff
Set-Cookie: MC1=GUID=2168f3c0e8e647b7a7a2ff3daf29a93f&HASH=2168&LV=202209&V=4&LU=1664360115655;Domain=.microsoft.com;Expires=Thu, 28 Sep 2023 10:15:15 GMT;Path=/;Secure;SameSite=None MS0=294544af2d344b9bb4af0853b98ca8ba;Domain=.microsoft.com;Expires=Wed, 28 Sep 2022 10:45:15 GMT;Path=/;Secure;SameSite=None
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Wed, 28 Sep 2022 10:15:15 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            GET /scripts/me/MeControl/10.22228.4/nb-NO/meBoot.min.js HTTP/1.1 
Host: mem.gfx.ms
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
last-modified: Mon, 12 Sep 2022 17:22:54 GMT
etag: "1d8c706f7488183"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 0qmkzYwAAAAD6NTvsJ8fNQr9i9U0z60qTQU1TMDRFREdFMTgyMgBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0sx40YwAAAABytwaFWc4YRZAJn64p7b+vU1ZHMjBFREdFMDUxNQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Wed, 28 Sep 2022 10:15:14 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   33514
Md5:    0100fbe04b123f32568f71461cc5cd32
Sha1:   148dbac58752b346f3eec38ce087d869a0610f56
Sha256: 2da6e0acda774df497de361e27fefa5da16f0b367f5daab562bc9e8f09a2e9ec
                                        
                                            GET /collect/v1/t.gif?ver=%272.1%27&name=%27Ms.Webi.OutgoingRequest%27&time=%272022-09-28T10%3A15%3A12.902Z%27&appId=%27JS%3AMeControl%27&cV=%27nOSMon5m%2FZdv4qwP.4%27&flags=2097152&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.2.3%27&ext-javascript-domain=%27www.microsoft.com%27&ext-javascript-userConsent=false&ext-app-env=%27Prod%27&-operationName=%27meBoot.min.js%27&-dependencyOperationName=%27DownloadScript%27&-dependencyName=%27MeControl%27&-latencyMs=89&-succeeded=true&-targetUri=%27https%3A%2F%2Fmem.gfx.ms%2Fscripts%2Fme%2FMeControl%2F10.22228.4%2Fnb-NO%2FmeBoot.min.js%27&*baseType=%27Ms.Qos.OutgoingServiceRequest%27&*pageName=%27None%27&*impressionGuid=%270308bb31-a48f-4b74-acdd-36a540273cd2%27&*market=%27nb-NO%27&*customData=%27%7B%22computedDuration%22%3A138%2C%22perfDuration%22%3A89%2C%22metaTags%22%3A%7B%22pgpart%22%3A%22officeproducts%22%7D%2C%22config%22%3A%7B%22ver%22%3A%2210.22228.4%22%2C%22mkt%22%3A%22nb-NO%22%2C%22ptn%22%3A%22officeproducts%22%2C%22gfx%22%3A%22https%3A%2F%2Famcdn.msftauth.net%22%2C%22dbg%22%3Afalse%2C%22aad%22%3Atrue%2C%22int%22%3Afalse%2C%22pxy%22%3Atrue%2C%22msTxt%22%3Afalse%2C%22rwd%22%3Atrue%2C%22telEvs%22%3A%22PageAction%2C%20PageView%2C%20ContentUpdate%2C%20OutgoingRequest%2C%20ClientError%2C%20PartnerApiCall%2C%20TrackedScenario%22%2C%22instKey%22%3A%22b8ffe739c47a401190627519795ca4d2-044a8309-9d4b-430b-9d47-6e87775cbab6-6888%22%2C%22oneDSUrl%22%3A%22https%3A%2F%2Fjs.monitor.azure.com%2Fscripts%2Fc%2Fms.shared.analytics.mectrl-3.2.6.gbl.min.js%22%2C%22remAcc%22%3Atrue%2C%22main%22%3A%22meBoot%22%2C%22wrapperId%22%3A%22uhf%22%2C%22cdnRegex%22%3A%22%5E(%3F%3Ahttps%3F%3A%5C%5C%2F%5C%5C%2F)%3F(mem%5C%5C.gfx%5C%5C.ms(%3F!%5C%5C.)%7Ccontrols%5C%5C.account.microsoft%3F(%3F%3A-int%7C-dev)%3F(%5C%5C.com)%3F(%3A%5B0-9%5D%7B1%2C6%7D)%7Camcdn%5C%5C.ms(%3F%3Aft)%3Fauth%5C%5C.net(%3F!%5C%5C.))%22%2C%22timeoutMs%22%3A30000%2C%22graphv2%22%3Atrue%2C%22graphinfo%22%3A%7B%22graphclientid%22%3A%227eadcef8-456d-4611-9480-4fff72b8b9e2%22%2C%22graphscope%22%3A%22user.read%22%2C%22graphcodeurl%22%3A%22https%3A%2F%2Flogin.microsoftonline.com%2Fcommon%2Foauth2%2Fv2.0%2Fauthorize%22%2C%22graphredirecturi%22%3A%22https%3A%2F%2Famcdn.msftauth.net%2Fme%2Fcallgraph%22%2C%22graphphotourl%22%3A%22https%3A%2F%2Fgraph.microsoft.com%2Fv1.0%2Fme%2Fphotos%2F96x96%2F%24value%22%7D%2C%22aadUrl%22%3A%22https%3A%2F%2Fmyaccount.microsoft.com%22%2C%22msaUrl%22%3A%22https%3A%2F%2Faccount.microsoft.com%2F%22%2C%22authAppUpsellUrl%22%3A%22%22%2C%22cache%22%3Atrue%2C%22cacheRetention%22%3A%7B%22picRetention%22%3A604800000%2C%22authAppRetention%22%3A94670856000%7D%7D%2C%22url%22%3A%22https%3A%2F%2Fwww.microsoft.com%2Fnb-no%2Fmicrosoft-teams%2Fgroup-chat-software%3Fms.url%3D**%26rtc%3D**%22%2C%22accts%22%3A%220-0%22%7D%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 43
Expires: 0
MS-CV: 0ehua9AXZ0y5OXc39cas8w.0
X-Content-Type-Options: nosniff
Set-Cookie: MC1=GUID=19b1406030344412982e2ff14593584f&HASH=19b1&LV=202209&V=4&LU=1664360115772;Domain=.microsoft.com;Expires=Thu, 28 Sep 2023 10:15:15 GMT;Path=/;Secure;SameSite=None MS0=4962769b9ae54536b77f0f0de11b8528;Domain=.microsoft.com;Expires=Wed, 28 Sep 2022 10:45:15 GMT;Path=/;Secure;SameSite=None
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Wed, 28 Sep 2022 10:15:15 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            GET /Images/Clear.PNG?ctx=jscb1.0&session_id=48b57e93-9af5-4ef5-b935-c4265b9b8eca&CustomerId=02C58649-E822-405B-B6C3-17A7509D2FCC&esi=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 HTTP/1.1 
Host: fpt.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fpt.microsoft.com/tags?session_id=48b57e93-9af5-4ef5-b935-c4265b9b8eca
Cookie: fptctx2=H3ihr9e92IdW6yd1ZgQ9S9GE%252fyxCfNn1WRJjtpTkl7YuhEAYyOugbSqsmmyY7Af6ca8BPzyekx92kTBgZOaOeDdIkpZUVrhZiqKbQSgarqog3fTEAF28PdZpYAgpoNYbmAp4Kxtq2v3EGt%252f10yLRgAe8L0wtMvnra8UYMFrI%252f86tg4JOuLCyFcQgNHRDsCpq%252f9sFX9ForOGBzdo0r1gdNLiP5xyI8%252fXceDkhHAgbOP2XpM5U9NfwwpaGIremlYtkqrSYMH74jR9Oq7Xht5JYTBS7rGbDP2qa%252bT%252b2EyBWkIw%253d; MUID=f58c6f18f1744295ac847caadf82eb6f; MC1=GUID=2168f3c0e8e647b7a7a2ff3daf29a93f&HASH=2168&LV=202209&V=4&LU=1664360115655; MS0=294544af2d344b9bb4af0853b98ca8ba
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         52.167.30.171
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 0
content-encoding: gzip
set-cookie: fptctx2=H3ihr9e92IdW6yd1ZgQ9S9GE%252fyxCfNn1WRJjtpTkl7YuhEAYyOugbSqsmmyY7Af6ca8BPzyekx92kTBgZOaOeDdIkpZUVrhZiqKbQSgarqog3fTEAF28PdZpYAgpoNYbmAp4Kxtq2v3EGt%252f10yLRgAe8L0wtMvnra8UYMFrI%252f86tg4JOuLCyFcQgNHRDsCpq%252f9sFX9ForOGBzdo0r1gdNLiP5xyI8%252fXceDkhHAgbOP2XpM5U9NfwwpaGIremlYtkqrSYMH74jR9Oq7Xht5JYTBS7rGbDP2qa%252bT%252b2EyBWkIw%253d; domain=.microsoft.com; path=/; secure; samesite=lax; httponly
vary: Accept-Encoding
server: Microsoft-HTTPAPI/2.0
access-control-allow-origin: *
date: Wed, 28 Sep 2022 10:15:15 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /collect/v1/t.gif?ver=%272.1%27&name=%27Ms.Webi.MeControl.TrackedScenario%27&time=%272022-09-28T10%3A15%3A13.091Z%27&appId=%27JS%3AMeControl%27&cV=%27nOSMon5m%2FZdv4qwP.7%27&flags=2097152&ext-javascript-ver=%271.1%27&ext-javascript-libVer=%274.2.3%27&ext-javascript-domain=%27www.microsoft.com%27&ext-javascript-userConsent=false&ext-app-env=%27Prod%27&*partner=%27officeproducts%27&*controlVersion=%2710.22228.4%27&*market=%27nb-NO%27&*scenario=%27Interactive%27&*action=%27END%27&*previousAction=%27START%27&*success=true&*durationMs=329&*details=%27Web%20header%27 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 43
Expires: 0
MS-CV: tvCe6sgBj0Sb6gGyGrL7Mg.0
X-Content-Type-Options: nosniff
Set-Cookie: MC1=GUID=816bfe594c874a3cac02667a7f7f1f77&HASH=816b&LV=202209&V=4&LU=1664360115963;Domain=.microsoft.com;Expires=Thu, 28 Sep 2023 10:15:15 GMT;Path=/;Secure;SameSite=None MS0=68ce241cf87a43f68badcd1f2164a24b;Domain=.microsoft.com;Expires=Wed, 28 Sep 2022 10:45:15 GMT;Path=/;Secure;SameSite=None
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Date: Wed, 28 Sep 2022 10:15:15 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            GET /is/image/microsoftcorp/KeyMessage_BeTogether:VP4-1399x600?resMode=sharp2&op_usm=1.5,0.65,15,0&qlt=75 HTTP/1.1 
Host: cdn-dynmedia-1.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Cookie: fptctx2=H3ihr9e92IdW6yd1ZgQ9S9GE%252fyxCfNn1WRJjtpTkl7YuhEAYyOugbSqsmmyY7Af6ca8BPzyekx92kTBgZOaOeDdIkpZUVrhZiqKbQSgarqog3fTEAF28PdZpYAgpoNYbmAp4Kxtq2v3EGt%252f10yLRgAe8L0wtMvnra8UYMFrI%252f86tg4JOuLCyFcQgNHRDsCpq%252f9sFX9ForOGBzdo0r1gdNLiP5xyI8%252fXceDkhHAgbOP2XpM5U9NfwwpaGIremlYtkqrSYMH74jR9Oq7Xht5JYTBS7rGbDP2qa%252bT%252b2EyBWkIw%253d; MUID=f58c6f18f1744295ac847caadf82eb6f; MC1=GUID=19b1406030344412982e2ff14593584f&HASH=19b1&LV=202209&V=4&LU=1664360115772; MS0=4962769b9ae54536b77f0f0de11b8528
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: image/avif
                                        
access-control-allow-origin: *
last-modified: Wed, 28 Sep 2022 05:35:40 GMT
etag: "0e2a4e4f444aa7612d910cd6f6f789c3"
-x-adobe-smart-imaging: 35012
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 21207
expires: Wed, 28 Sep 2022 15:36:05 GMT
date: Wed, 28 Sep 2022 10:15:16 GMT
x-temp-bytediff: 35012
x-temp-format: image/avif
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   21207
Md5:    0e2a4e4f444aa7612d910cd6f6f789c3
Sha1:   0e43509907c3e71b6e3feb67ed705c69d3b1fb8d
Sha256: 7d10de0ba1b4653d4951984d193a56c2e0436553b660aa8cdebf36e904f525e5
                                        
                                            GET /scripts/me/MeControl/10.22228.4/nb-NO/meCore.min.js HTTP/1.1 
Host: mem.gfx.ms
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
last-modified: Mon, 12 Sep 2022 17:23:00 GMT
etag: "1d8c706fadc443f"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 0W30yYwAAAADnXj8B4wOkQrYN9Ql7vc1IQU1TMDRFREdFMTgxNABlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0tB40YwAAAABJTzlVLwHgToddn5UM5iiAU1ZHMjBFREdFMDUxNQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Wed, 28 Sep 2022 10:15:15 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35361), with CRLF, LF line terminators
Size:   16441
Md5:    f2529969406356f525805d443012e325
Sha1:   d48b104ec7a969ea75ed50dfd63448ed6871f955
Sha256: 0459387c1d7010363f58cb4bd2352aff813990adf854b1390e1027598846682b
                                        
                                            POST /collect/v1 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3651
Origin: https://www.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Cookie: fptctx2=H3ihr9e92IdW6yd1ZgQ9S9GE%252fyxCfNn1WRJjtpTkl7YuhEAYyOugbSqsmmyY7Af6ca8BPzyekx92kTBgZOaOeDdIkpZUVrhZiqKbQSgarqog3fTEAF28PdZpYAgpoNYbmAp4Kxtq2v3EGt%252f10yLRgAe8L0wtMvnra8UYMFrI%252f86tg4JOuLCyFcQgNHRDsCpq%252f9sFX9ForOGBzdo0r1gdNLiP5xyI8%252fXceDkhHAgbOP2XpM5U9NfwwpaGIremlYtkqrSYMH74jR9Oq7Xht5JYTBS7rGbDP2qa%252bT%252b2EyBWkIw%253d; MUID=f58c6f18f1744295ac847caadf82eb6f; MC1=GUID=816bfe594c874a3cac02667a7f7f1f77&HASH=816b&LV=202209&V=4&LU=1664360115963; MS0=68ce241cf87a43f68badcd1f2164a24b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 57
Expires: 0
MS-CV: zQsvrZLnh0iD1fXNxpiRSg.0
X-Content-Type-Options: nosniff
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Access-Control-Allow-Headers: Accept, Authorization, Content-Type, Origin, X-Xbl-Contract-Version, X-Xbl-Device-Type, Xbl-Authz-Actor-10, WithCredentials
Access-Control-Allow-Origin: https://www.microsoft.com
Access-Control-Allow-Credentials: true
Date: Wed, 28 Sep 2022 10:15:15 GMT


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   57
Md5:    a97e1042c453127c32fbe0e51e49acc1
Sha1:   3ff2f2b7764174758c4efafd5d7644c84e671516
Sha256: 3a27830f17ab042ffde9701f02c4f7a059d4058a68369d5395ccba692a2a56b5
                                        
                                            GET /tags?session_id=48b57e93-9af5-4ef5-b935-c4265b9b8eca HTTP/1.1 
Host: fpt.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site

                                         
                                         52.167.30.171
HTTP/2 200 OK
content-type: text/html
                                        
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-HTTPAPI/2.0
access-control-allow-origin: *
set-cookie: fptctx2=H3ihr9e92IdW6yd1ZgQ9S9GE%252fyxCfNn1WRJjtpTkl7YuhEAYyOugbSqsmmyY7Af6ca8BPzyekx92kTBgZOaOeDdIkpZUVrhZiqKbQSgarqog3fTEAF28PdZpYAgpoNYbmAp4Kxtq2v3EGt%252f10yLRgAe8L0wtMvnra8UYMFrI%252f86tg4JOuLCyFcQgNHRDsCpq%252f9sFX9ForOGBzdo0r1gdNLiP5xyI8%252fXceDkhHAgbOP2XpM5U9NfwwpaGIremlYtkqrSYMH74jR9Oq7Xht5JYTBS7rGbDP2qa%252bT%252b2EyBWkIw%253d; domain=.microsoft.com; path=/; secure; samesite=lax; httponly MUID=f58c6f18f1744295ac847caadf82eb6f; expires=Thu, 28 Sep 2023 10:15:15 GMT; domain=.microsoft.com; path=/; secure; samesite=lax; httponly
date: Wed, 28 Sep 2022 10:15:15 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21487), with CRLF, LF line terminators
Size:   15735
Md5:    1b8a22ded645621d379de3080c4e27d9
Sha1:   5607960c23c3c22e980fbcbcd40a287a5303f772
Sha256: 920449abba4cacd7b602e56d18e2f25e1bef1322bfa09e266cf0672f7170a92b
                                        
                                            GET /16.000/content/js/MeControl_Y-iUdrBOJz49KZVkG49w1Q2.js HTTP/1.1 
Host: logincdn.msauth.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.live.com/
Origin: https://login.live.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.229.221.185
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 2820662
cache-control: public, max-age=31536000
content-md5: XOvjgamUXNTR6M2Gx8ha7g==
date: Wed, 28 Sep 2022 10:15:16 GMT
etag: 0x8DA85E85B8714BC
last-modified: Wed, 24 Aug 2022 15:50:24 GMT
server: ECAcc (ska/F745)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: bb688519-a01e-005f-137b-b9a2ec000000
x-ms-version: 2009-09-19
content-length: 6043
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17261), with no line terminators
Size:   6043
Md5:    5cebe381a9945cd4d1e8cd86c7c85aee
Sha1:   f4772f3cc1887b130dbab7f0f4aa67d9f27083c1
Sha256: 4755a16fcadab4126e56cc0b02a4cecd7bbf455ca123de4396d63bf09c4f83a4
                                        
                                            GET /scripts/c/ms.shared.analytics.mectrl-3.2.6.gbl.min.js HTTP/1.1 
Host: js.monitor.azure.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.246.53
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: public, max-age=31536000, immutable, no-transform
content-encoding: br
content-md5: RlzwH95FOkmm6gksZWAC+w==
last-modified: Thu, 18 Aug 2022 21:40:45 GMT
etag: 0x8DA81624EF9033C
x-cache: TCP_HIT
x-ms-request-id: efb95db8-201e-001f-0346-ce5b71000000
x-ms-version: 2009-09-19
x-ms-meta-jssdkver: 3.2.6
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,x-ms-meta-jssdkver,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 02p8yYwAAAACzXyauDi0BQYUphwgoGG9nQU1TMDRFREdFMTkyMABmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
x-azure-ref: 0tB40YwAAAAB/f4bzl2yHSok/oa+wy+6/U1ZHMjBFREdFMDUwOABmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
date: Wed, 28 Sep 2022 10:15:16 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65395)
Size:   34083
Md5:    8fe1e3b77f96ba60a6302b44c49f86ec
Sha1:   1ab063450b16f69eb32b99f81f6ce9dc771850e1
Sha256: a0183c0ecd1e3123c37ac929e10a1b6197a9de7c4fbb77150888fa3c566c477a
                                        
                                            POST /collect/v1 HTTP/1.1 
Host: web.vortex.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2653
Origin: https://www.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Cookie: fptctx2=H3ihr9e92IdW6yd1ZgQ9S9GE%252fyxCfNn1WRJjtpTkl7YuhEAYyOugbSqsmmyY7Af6ca8BPzyekx92kTBgZOaOeDdIkpZUVrhZiqKbQSgarqog3fTEAF28PdZpYAgpoNYbmAp4Kxtq2v3EGt%252f10yLRgAe8L0wtMvnra8UYMFrI%252f86tg4JOuLCyFcQgNHRDsCpq%252f9sFX9ForOGBzdo0r1gdNLiP5xyI8%252fXceDkhHAgbOP2XpM5U9NfwwpaGIremlYtkqrSYMH74jR9Oq7Xht5JYTBS7rGbDP2qa%252bT%252b2EyBWkIw%253d; MUID=f58c6f18f1744295ac847caadf82eb6f; MC1=GUID=816bfe594c874a3cac02667a7f7f1f77&HASH=816b&LV=202209&V=4&LU=1664360115963; MS0=68ce241cf87a43f68badcd1f2164a24b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         23.96.225.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 57
Expires: 0
MS-CV: RXl8aVDyakihojxoFon06g.0
X-Content-Type-Options: nosniff
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Access-Control-Allow-Headers: Accept, Authorization, Content-Type, Origin, X-Xbl-Contract-Version, X-Xbl-Device-Type, Xbl-Authz-Actor-10, WithCredentials
Access-Control-Allow-Origin: https://www.microsoft.com
Access-Control-Allow-Credentials: true
Date: Wed, 28 Sep 2022 10:15:16 GMT


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   57
Md5:    84ab1fcd14265c415fae61bd1f64814f
Sha1:   efa8b4beeac0c158fb66b0a5bd81b2585ca36b7a
Sha256: be58567b3d70766522104d996519dad77942a4bcb40e53b9ad1ac16016941691
                                        
                                            GET /me/mecache?partner=officeproducts&wreply=https%3A%2F%2Fwww.microsoft.com%2Fnb-no%2Fmicrosoft-teams%2Fgroup-chat-software%3Fms.url%3Dteamscom%26rtc%3D1 HTTP/1.1 
Host: mem.gfx.ms
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.microsoft.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.213.53
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: private
content-length: 3531
set-cookie: MS-CV=hqX54PRod0uChKq0.0; expires=Wed, 28-Sep-2022 10:45:16 GMT; path=/; secure
x-cache: PRIVATE_NOSTORE
x-content-type-options: nosniff
x-frame-options: allow-from https://www.microsoft.com
content-security-policy: frame-ancestors https://www.microsoft.com;
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 0tB40YwAAAAAnceKaECTJR7Qzfn/xR031QU1TMDRFREdFMTkxOABlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0tB40YwAAAAAnbiM0kcOfTIgyxKxdooBiU1ZHMjBFREdFMDUxNABlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Wed, 28 Sep 2022 10:15:16 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   3531
Md5:    099524a242c3fe3a469b322d240c320a
Sha1:   b4952677050e4381cfe4f46ace63bc8fee54f1d3
Sha256: 067288c0009a27fe123192a893b5adfdb86af002f4675094fb6e95e9c0cbb76e
                                        
                                            OPTIONS /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1 
Host: browser.events.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: apikey,cache-control,client-id,client-version,content-type,time-delta-to-apply-millis,upload-time
Referer: https://www.microsoft.com/
Origin: https://www.microsoft.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         20.189.173.3
HTTP/1.1 200 OK
                                        
Cache-Control: public, 3600
Content-Length: 0
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: AuthMsaDeviceTicket,AuthXToken,Content-Encoding,Content-Type,Cache-Control,Client-Id,SDK-Name,sdk-version,apikey,x-apikey,client-version,upload-time,time-delta-to-apply-millis,client-time-epoch-millis,persistence-mode,reliability-mode,NoResponseBody
Access-Control-Max-Age: 3600
Access-Control-Allow-Origin: https://www.microsoft.com
Date: Wed, 28 Sep 2022 10:15:15 GMT

                                        
                                            POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1 
Host: browser.events.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Client-Id: NO_AUTH
client-version: 1DS-Web-JS-3.2.6
apikey: 1cfc1aff02e4437889594f14c4cad289-5bf9ec06-73a3-4827-a5e7-d709ff3d3b12-6941
upload-time: 1664360113717
time-delta-to-apply-millis: use-collector-delta
cache-control: no-cache, no-store
content-type: application/x-json-stream
Content-Length: 7160
Origin: https://www.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Cookie: fptctx2=H3ihr9e92IdW6yd1ZgQ9S9GE%252fyxCfNn1WRJjtpTkl7YuhEAYyOugbSqsmmyY7Af6ca8BPzyekx92kTBgZOaOeDdIkpZUVrhZiqKbQSgarqog3fTEAF28PdZpYAgpoNYbmAp4Kxtq2v3EGt%252f10yLRgAe8L0wtMvnra8UYMFrI%252f86tg4JOuLCyFcQgNHRDsCpq%252f9sFX9ForOGBzdo0r1gdNLiP5xyI8%252fXceDkhHAgbOP2XpM5U9NfwwpaGIremlYtkqrSYMH74jR9Oq7Xht5JYTBS7rGbDP2qa%252bT%252b2EyBWkIw%253d; MUID=f58c6f18f1744295ac847caadf82eb6f; MC1=GUID=816bfe594c874a3cac02667a7f7f1f77&HASH=816b&LV=202209&V=4&LU=1664360115963; MS0=68ce241cf87a43f68badcd1f2164a24b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         20.189.173.3
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 153
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
time-delta-millis: 3283
Access-Control-Allow-Headers: time-delta-millis
Access-Control-Allow-Methods: POST
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.microsoft.com
Access-Control-Expose-Headers: time-delta-millis
Date: Wed, 28 Sep 2022 10:15:16 GMT


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   153
Md5:    3dbba90f4bdacf26e5327ac3f64838c0
Sha1:   fa596f5e03a16febac8c5e3f016994bc7d93363a
Sha256: e02b976cb50cbde9e1e67cbbe2eec682afa41d74c7dda6be0c617980e54885c8
                                        
                                            POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1 
Host: browser.events.data.microsoft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Client-Id: NO_AUTH
client-version: 1DS-Web-JS-3.2.6
apikey: 1cfc1aff02e4437889594f14c4cad289-5bf9ec06-73a3-4827-a5e7-d709ff3d3b12-6941
upload-time: 1664360114723
time-delta-to-apply-millis: 3283
cache-control: no-cache, no-store
content-type: application/x-json-stream
Content-Length: 3510
Origin: https://www.microsoft.com
Connection: keep-alive
Referer: https://www.microsoft.com/
Cookie: fptctx2=H3ihr9e92IdW6yd1ZgQ9S9GE%252fyxCfNn1WRJjtpTkl7YuhEAYyOugbSqsmmyY7Af6ca8BPzyekx92kTBgZOaOeDdIkpZUVrhZiqKbQSgarqog3fTEAF28PdZpYAgpoNYbmAp4Kxtq2v3EGt%252f10yLRgAe8L0wtMvnra8UYMFrI%252f86tg4JOuLCyFcQgNHRDsCpq%252f9sFX9ForOGBzdo0r1gdNLiP5xyI8%252fXceDkhHAgbOP2XpM5U9NfwwpaGIremlYtkqrSYMH74jR9Oq7Xht5JYTBS7rGbDP2qa%252bT%252b2EyBWkIw%253d; MUID=f58c6f18f1744295ac847caadf82eb6f; MC1=GUID=816bfe594c874a3cac02667a7f7f1f77&HASH=816b&LV=202209&V=4&LU=1664360115963; MS0=68ce241cf87a43f68badcd1f2164a24b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         20.189.173.3
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 153
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
time-delta-millis: 2527
Access-Control-Allow-Headers: time-delta-millis
Access-Control-Allow-Methods: POST
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.microsoft.com
Access-Control-Expose-Headers: time-delta-millis
Date: Wed, 28 Sep 2022 10:15:17 GMT


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   153
Md5:    3dcd2a31611f847145d011a2f85f46cb
Sha1:   10d2139e4210dfc8fa320de341ab5c072d596718
Sha256: e921815f9010a9f6a44a7699234ff96aab66cab81f5e82746f1a3dfbd8b41ea9