Report - twiiterhp.sensualitejoyeria.com/ou/kop/RCSBFAQBQWNKIJA/anBhcnRlbnphQGNnZi5jb20=

Report Overview

Visited public
2023-12-06 16:56:32
Tags
phishing microsoft outlook
URL
twiiterhp.sensualitejoyeria.com/ou/kop/RCSBFAQBQWNKIJA/anBhcnRlbnphQGNnZi5jb20=
Finishing URL
www.office.com/
IP / ASN
75.102.22.56
#23352 SERVERCENTRAL
Title
Login | Microsoft 365
Phishing - Microsoft Outlook

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
twiiterhp.sensualitejoyeria.com	unknown	unknown	No data	No data	461 B	250 B	75.102.22.56
www.microsoft.com	302	1991-05-02	2012-05-21 06:29:41	2023-12-05 18:12:22	2.1 kB	88 kB	2.18.173.151
js.monitor.azure.com	3838	1994-10-25	2020-04-24 21:32:44	2023-12-06 05:44:29	488 B	321 kB	13.107.246.53
consentreceiverfd-prod.azurefd.net	210345	2018-05-08	2020-09-03 10:06:26	2023-12-06 11:00:50	520 B	1.0 kB	13.107.213.53
www.office.com	2755	1999-04-20	2014-02-12 02:02:36	2023-12-05 09:51:42	483 B	220 kB	13.107.6.156
wcpstatic.microsoft.com	5007	1991-05-02	2020-09-15 19:02:29	2023-12-05 18:12:25	435 B	82 kB	13.107.246.53
img-prod-cms-rt-microsoft-com.akamaized.net	1197	2014-03-18	2017-01-30 06:18:05	2023-12-06 05:44:29	491 B	4.7 kB	95.101.11.49
mem.gfx.ms	3475	2012-09-07	2015-02-13 16:56:33	2023-12-04 12:36:04	2.0 kB	200 kB	13.107.213.53
meth09.avenuealternative.com	unknown	unknown	No data	No data	524 B	218 kB	149.100.156.135
office.com	25	1999-04-20	2014-02-05 21:43:38	2023-12-05 09:51:42	477 B	245 B	13.107.6.156
c.s-microsoft.com	10166	2012-02-07	2013-11-06 16:56:27	2023-12-05 18:12:25	1.6 kB	99 kB	2.18.173.151
res.cdn.office.net	1292	1994-11-14	2021-09-30 20:37:19	2023-12-05 18:40:44	17 kB	11 MB	152.199.21.175
browser.events.data.microsoft.com	290	1991-05-02	2018-05-25 08:23:05	2023-12-05 18:12:16	5.5 kB	5.0 kB	40.79.197.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (23)

	URL	From	Size	First Seen	Last Seen
	res.cdn.office.net/officehub/bundles/sharedscripts-939520eada.js	ScriptElement	53 kB	2023-07-03	2024-09-19
Pretty URL res.cdn.office.net/officehub/bundles/sharedscripts-939520eada.js IP 152.199.21.175 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-03 01:33 Last Seen2024-09-19 19:33 Times Seen1654 Hash 939520eada638af9c1ccab3debb8b14b 8a3f7d9992e48620c61c58dc1c251dcce524173f 57604cc987e25fe54b77b409e487abeb52ccd8f7fbf8bb08d31d98ed977fd6ec Loading...

	mem.gfx.ms/scripts/me/MeControl/10.23271.5/en-US/meCore.min.js	ScriptElement	101 kB	2023-03-13	2025-05-12
Pretty URL mem.gfx.ms/scripts/me/MeControl/10.23271.5/en-US/meCore.min.js IP 13.107.213.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 21:04 Last Seen2025-05-12 15:49 Times Seen3659 Hash 6fe3dd83a0d98bc1977f57ea33c37693 8df606f40e4cc8c07ce929d5a82fd5304eaf4eb7 a5268a183f2a091d2d17773997e89a25fc45cbd60e586edf61f544fb85d6f6a8 Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/injections/js/bug1731825-office365-email-handling-prompt-autohide.js		995 B	2023-04-11	2025-05-12
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/injections/js/bug1731825-office365-email-handling-prompt-autohide.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 22:15 Last Seen2025-05-12 15:49 Times Seen50726 Hash 7c873167b5d35fd9f6690071701d4669 f897afe9818a00a80e98bdbc67e7f67343f89378 014e00e9c71f02f5892cda29da8fd08058817ebd57a12cfee75236874f4e889a Loading...

	www.office.com/	ScriptElement	432 B	2023-03-07	2025-03-25
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:35 Last Seen2025-03-25 09:03 Times Seen2378 Hash b11b89e52ce92f2b961047543cc90bf4 91c261acf4289323dcaae07da19b58c9b0a48287 f9a8f7ef46e4a827bcc6cb877d6e8197f41f1c4dd043cf947270991c89b539bb Loading...

	res.cdn.office.net/officehub/bundles/otel-logger-6dc48f1caefe87f8add2.js	ScriptElement	96 kB	2023-11-30	2023-12-07
Pretty URL res.cdn.office.net/officehub/bundles/otel-logger-6dc48f1caefe87f8add2.js IP 152.199.21.175 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 22:07 Last Seen2023-12-07 11:00 Times Seen41 Hash 493c52a89d3afa23be3d6769db085883 bb2a04883f2c43769ad3732a34eefe9cf56ff529 258ba0bd3907de4c63d192589ff1b13738327b89a654e05d47ae95421c76b6d0 Loading...

	www.office.com/	ScriptElement	310 B	2023-06-14	2025-01-20
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-14 15:00 Last Seen2025-01-20 11:50 Times Seen1884 Hash 076152a850225cec36bfebabb3afeb30 068ab16cf31f3afe2e8d01e092503cfce3ea03c5 a99bef929801c692f48112916af92f0535485d7de35b6329478c2a531c2dfcf7 Loading...

	wcpstatic.microsoft.com/mscc/lib/v2/wcp-consent.js	ScriptElement	279 kB	2023-03-07	2025-05-12
Pretty URL wcpstatic.microsoft.com/mscc/lib/v2/wcp-consent.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19 Last Seen2025-05-12 11:46 Times Seen4130 Hash 5f524e20ce61f542125454baf867c47b 7e9834fd30dcfd27532ce79165344a438c31d78b c688d3f2135b6b51617a306a0b1a665324402a00a6bceba475881af281503ad9 Loading...

	www.office.com/	ScriptElement	1.1 kB	2023-03-09	2024-08-21
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 15:02 Last Seen2024-08-21 09:40 Times Seen1570 Hash d08aa77c255be8e52d47c66e027611a2 89974d066ba2e1046988e1b48bce7c4dd516c0d2 f79b878a61804f84308329347b2148586ce4a00778ac04a2cf2c1115c380eaf1 Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/shims/firebase.js		2.3 kB	2023-05-05	2025-05-12
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/shims/firebase.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 23:38 Last Seen2025-05-12 15:14 Times Seen10741 Hash 32d439c9ec8c789e843ae58b6774681c deb2c661dacf46eb3a1eacbba3e430dcf10cc395 f65e83801e16f98e150ae8843afb4c98c0b3ac0fa7fbe5a5ec687b08119732d6 Loading...

	www.office.com/	ScriptElement	1.5 kB	2023-03-09	2024-08-21
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 15:02 Last Seen2024-08-21 09:40 Times Seen1570 Hash a8e885caefacbf60678f0db4c652394e 295611eaf70cf90c97f85229f4c25f29a9714b03 406c5b884038a7191811a37f9dac0bf7765c30d3abf5d4639a8e539150064634 Loading...

	www.office.com/	ScriptElement	1.5 kB	2023-03-09	2024-08-21
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 15:02 Last Seen2024-08-21 09:40 Times Seen1570 Hash 3e563a7264ebbabd141a81891310310d ae12f36227010f2a3d895cc16ab6b5713d68feac f02fc92e3f8bfef6811100960e8e8185b97dce64d1f1fd5645a11bde7b13ca27 Loading...

	www.office.com/	ScriptElement	8.7 kB	2023-08-03	2024-09-19
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-03 11:32 Last Seen2024-09-19 23:04 Times Seen2318 Hash 9b6bf4770070e8b899f749a496232d64 aecdcebb395c66118941a07268c91d8e10716f0a 8f3f6bd6db20cb2898af9fa2cf8fbaf399fdca0da253bc88cfff82b98a5a236f Loading...

	res.cdn.office.net/officehub/bundles/unauth-874e057007.js	ScriptElement	149 kB	2023-04-14	2024-09-19
Pretty URL res.cdn.office.net/officehub/bundles/unauth-874e057007.js IP 152.199.21.175 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-14 02:42 Last Seen2024-09-19 19:33 Times Seen1653 Hash 874e057007636f96d186f3ff1ac6e298 2df8b664c7671311f701f4a36823c9c319ba907f 0077c4be96711e5a136318c4928e14ae40b6d07b95c52d3fb952b71cee8bc8f3 Loading...

	mem.gfx.ms/meversion?partner=office&market=en-us&uhf=1	ScriptElement	30 kB	2023-10-14	2024-08-21
Pretty URL mem.gfx.ms/meversion?partner=office&market=en-us&uhf=1 IP 13.107.213.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-14 05:16 Last Seen2024-08-21 04:46 Times Seen1045 Hash 4d4e8b0f7460871f054e91458b140e89 20ea295d5b00e6a3612f8f7610e1b818080cd2f4 d4eea8395d57d96a30bac43176681506d2c0d5ae0bf5272c67199853cd1fec52 Loading...

	mem.gfx.ms/scripts/me/MeControl/10.23271.5/en-US/meBoot.min.js	ScriptElement	181 kB	2023-04-05	2024-08-21
Pretty URL mem.gfx.ms/scripts/me/MeControl/10.23271.5/en-US/meBoot.min.js IP 13.107.213.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 02:11 Last Seen2024-08-21 09:40 Times Seen2189 Hash 9839b66d7c986a67a821e7b3783bdf69 4f356c1a92358156486ee50921fe4c728f6d0eac fa334c1e3766c50298f83ee32aed20fcd0978230350837dc7cb9115d096a7167 Loading...

	js.monitor.azure.com/scripts/c/ms.shared.analytics.mectrl-3.2.7.gbl.min.js	ScriptElement	91 kB	2023-05-20	2024-08-21
Pretty URL js.monitor.azure.com/scripts/c/ms.shared.analytics.mectrl-3.2.7.gbl.min.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-20 15:05 Last Seen2024-08-21 09:42 Times Seen2061 Hash 6c6e1a3cd82e81abab9d7abc397a107d 246f870580dcdace936284daa47a08e7e54355cf 077052944d805da1cd832b70df86d282be6a1309626c646fc36dacdc9fbc7ddb Loading...

	www.office.com/	ScriptElement	669 B	2023-06-28	2025-01-23
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-28 05:47 Last Seen2025-01-23 23:03 Times Seen4113 Hash 20cf97cab90428eb751f1947d78005b2 1578f01e99c2319c3b77ae5ac1c7352bc0e41688 fdc67c0700776d8babc9a5d04719c4b9175d12b122b04fac69ce876a060e6cbf Loading...

	www.office.com/	ScriptElement	20 kB	2023-10-19	2024-08-21
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-19 04:48 Last Seen2024-08-21 04:09 Times Seen924 Hash 87461c8bb9840c47cb00446eaa160e09 4130089371fcd1c404fc3df7543e60057dafb176 78099757a62fac0dff6793c6b6ebec6116fdd7b660e248003102dd921de09783 Loading...

	www.office.com/	ScriptElement	4.7 kB	2023-04-14	2024-08-21
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-14 02:42 Last Seen2024-08-21 09:40 Times Seen1607 Hash 681050a0f9db821e8b758d5256d00ffd ccf58fbbc952747bc6ea85417ff2460cffe552f9 411eb9db07e847e829088b95dfbe8aa97e08040383399531ffe7661c68a8a0ca Loading...

	res.cdn.office.net/officehub/bundles/unauth-vendor-d78f09b728.js	ScriptElement	109 kB	2023-03-09	2025-05-11
Pretty URL res.cdn.office.net/officehub/bundles/unauth-vendor-d78f09b728.js IP 152.199.21.175 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 07:56 Last Seen2025-05-11 06:08 Times Seen2431 Hash d78f09b7284ee25c27265b1df43f5395 9edcad1de9a5ed59536f78c7bb1fd8a4da81301a e3ad812daf7c81f8cf38fcb6b76761924d24c2fa6af4b7cf40e125d42794ccce Loading...

	www.microsoft.com/onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/c6-082272/a7-f7a340/9d-2fe775/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/5b-6eff60/b0-07f293/1e-9d9d16/52-f0367f/af-abd754/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/e2-a06560?ver=2.0&_cf=02242021_3231&iife=1	ScriptElement	138 kB	2023-12-03	2025-05-12
Pretty URL www.microsoft.com/onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/c6-082272/a7-f7a340/9d-2fe775/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/5b-6eff60/b0-07f293/1e-9d9d16/52-f0367f/af-abd754/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/e2-a06560?ver=2.0&_cf=02242021_3231&iife=1 IP 2.18.173.151 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 19:27 Last Seen2025-05-12 15:49 Times Seen2491 Hash b9c3e4320db870036919f1ee117bda6e 29b5a9066b5b1f1fe5afe7ee986e80a49e86606a a1fe019388875b696edb373b51a51c0a8e3bad52cd489617d042c0722bdb1e48 Loading...

	www.office.com/	ScriptElement	101 B	2023-03-07	2025-05-11
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:35 Last Seen2025-05-11 06:08 Times Seen2382 Hash aac3eb24b04b904bb2bcafc9466203e8 583a20717a85173ba6d97d12d21f3d8409ddff18 3d63074920a11618c67f3fef79c7e6d9fe6bfadbaec6cc358d0327d3288bf1c9 Loading...

	www.office.com/	ScriptElement	2.4 kB	2023-03-07	2024-08-21
Pretty URL www.office.com/ IP 13.107.6.156 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:58 Last Seen2024-08-21 09:40 Times Seen1638 Hash f37b7b223d96de4bd256bb9eb62185e1 33bd61d33c26cbbc0181eab416aa5710a58bf6e2 8b2b564f560312d43a2d7eddc02adf7d83c02e12a2e95a716aae02a27327c38e Loading...

HTTP Transactions (58)

URL IP Response Size

twiiterhp.sensualitejoyeria.com/ou/kop/RCSBFAQBQWNKIJA/anBhcnRlbnphQGNnZi5jb20=

75.102.22.56

0 B

URL
twiiterhp.sensualitejoyeria.com/ou/kop/RCSBFAQBQWNKIJA/anBhcnRlbnphQGNnZi5jb20=
IP
75.102.22.56:0
ASN
#23352 SERVERCENTRAL

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /ou/kop/RCSBFAQBQWNKIJA/anBhcnRlbnphQGNnZi5jb20= HTTP/1.1
Host: twiiterhp.sensualitejoyeria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
refresh: 0;url=https://meth09.avenuealternative.com/?username=jpartenza@cgf.com
content-type: text/html; charset=UTF-8
content-length: 0
date: Wed, 06 Dec 2023 16:56:12 GMT

office.com/

13.107.6.156

301 Moved Permanently

0 B

URL User Request GET HTTP/2
office.com/
IP
13.107.6.156:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerMicrosoft Corporation
Subjectportal.office.com
FingerprintD1:DA:D6:CC:38:6B:DB:BB:03:27:D0:A9:DF:4F:CF:72:9E:E7:92:F4
ValidityMon, 04 Dec 2023 17:51:23 GMT - Thu, 28 Nov 2024 17:51:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: office.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
location: https://www.office.com/
x-msedge-ref: Ref A: F9197738AFB94503A424D4321A7B4F45 Ref B: SVG20EDGE0110 Ref C: 2023-12-06T16:56:13Z
date: Wed, 06 Dec 2023 16:56:12 GMT
content-length: 0
X-Firefox-Spdy: h2

www.microsoft.com/onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/92-14707b/74-888e54?ver=2.0&_cf=02242021_3231

2.18.173.151

200 OK

23 kB

URL GET HTTP/2
www.microsoft.com/onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/92-14707b/74-888e54?ver=2.0&_cf=02242021_3231
IP
2.18.173.151:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectwww.microsoft.com
FingerprintE1:57:9B:A5:51:25:CE:C3:A7:8E:39:F5:5C:F8:1D:A8:BF:A9:4F:88
ValidityThu, 14 Sep 2023 17:24:20 GMT - Sun, 08 Sep 2024 17:24:20 GMT

File type
Unicode text, UTF-8 text, with very long lines (64241)
Size
23 kB (22738 bytes)
Hash
21d2e4bc29cc9ba690164f896a04c2f3
b07f66e6b50916d4a636c2e91f633ac8f63e5b5d
47e77d470102641070b066a5a73c34dbd14989f55a3d435efae0fdeaaff3ae6d

HTTP Headers

GET /onerfstatics/marketingsites-neu-prod/west-european/shell/_scrf/css/themes=default.device=uplevel_web_pc/79-4cdd0a/33-ae3d41/a5-4bf7a2/13-8e1ceb/81-32f0c0/5c-b7b685/92-14707b/74-888e54?ver=2.0&_cf=02242021_3231 HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
last-modified: Fri, 20 Oct 2023 00:01:07 GMT
x-activity-id: 9a937534-0817-4288-afc7-86805339c842
x-appversion: 1.0.8658.39781
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2023-09-16T06:06:02.0000000Z}
ms-operation-id: 2195e237779b234f8a3c294a0196465a
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2023-10-20T00:01:07
x-s2: 2023-10-20T00:01:07
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 22738
cache-control: public, max-age=27414214
expires: Fri, 18 Oct 2024 23:59:47 GMT
date: Wed, 06 Dec 2023 16:56:13 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
ms-cv: CASMicrosoftCV2a66498c.0
ms-cv-esi: CASMicrosoftCV2a66498c.0
x-rtag: RT
X-Firefox-Spdy: h2

www.microsoft.com/onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/c6-082272/a7-f7a340/9d-2fe775/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/5b-6eff60/b0-07f293/1e-9d9d16/52-f0367f/af-abd754/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/e2-a06560?ver=2.0&_cf=02242021_3231&iife=1

2.18.173.151

200 OK

36 kB

URL GET HTTP/2
www.microsoft.com/onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/c6-082272/a7-f7a340/9d-2fe775/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/5b-6eff60/b0-07f293/1e-9d9d16/52-f0367f/af-abd754/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/e2-a06560?ver=2.0&_cf=02242021_3231&iife=1
IP
2.18.173.151:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectwww.microsoft.com
FingerprintE1:57:9B:A5:51:25:CE:C3:A7:8E:39:F5:5C:F8:1D:A8:BF:A9:4F:88
ValidityThu, 14 Sep 2023 17:24:20 GMT - Sun, 08 Sep 2024 17:24:20 GMT

File type
ASCII text, with very long lines (42133)
Size
36 kB (36102 bytes)
Hash
b9c3e4320db870036919f1ee117bda6e
29b5a9066b5b1f1fe5afe7ee986e80a49e86606a
a1fe019388875b696edb373b51a51c0a8e3bad52cd489617d042c0722bdb1e48

HTTP Headers

GET /onerfstatics/marketingsites-neu-prod/shell/_scrf/js/themes=default/8e-e88b64/82-2a4f02/49-a00ab0/92-02e55d/7c-dcea75/75-fca72d/ed-e77ee7/d5-bf34c0/a9-078595/7a-7ea8cc/2d-40bdad/23-e8cd2b/96-eb5423/e6-6b0cce/d1-98d78a/c6-082272/a7-f7a340/9d-2fe775/2e-ca165a/fc-169dd8/8e-60935c/87-fecbed/96-6ed6eb/c3-eb62e0/ad-ffd6bf/35-621acc/5b-6eff60/b0-07f293/1e-9d9d16/52-f0367f/af-abd754/bf-517249/e1-ed258e/20-0b10e2/6b-0f1117/fb-5e9831/e2-a06560?ver=2.0&_cf=02242021_3231&iife=1 HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Sun, 03 Dec 2023 06:10:29 GMT
x-activity-id: 467aa287-b688-45c0-8b0b-d59af8261288
x-appversion: 1.0.8719.11008
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2023-11-15T14:06:56.0000000Z}
ms-operation-id: b4a15f430fb0fc4ca8c2012c07c4926e
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
x-s1: 2023-12-03T06:10:29
x-s2: 2023-12-03T06:10:29
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-encoding: gzip
content-length: 36102
cache-control: public, max-age=31237978
expires: Mon, 02 Dec 2024 06:09:11 GMT
date: Wed, 06 Dec 2023 16:56:13 GMT
vary: Accept-Encoding
tls_version: tls1.3
strict-transport-security: max-age=31536000
ms-cv: CASMicrosoftCV2a664995.0
ms-cv-esi: CASMicrosoftCV2a664995.0
x-rtag: RT
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/versionless/webfonts/segoeui_light.woff2

152.199.21.175

200 OK

10 kB

URL GET HTTP/2
res.cdn.office.net/officehub/versionless/webfonts/segoeui_light.woff2
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10544, version 1.0\012- data
Size
10 kB (10544 bytes)
Hash
8e160632c48ad1e3d0e9f4334636086b
7ba2921499b2264dee14f95801bfbcf416861d7c
57febfbad63b722a38bc668e67bc7c2dc02eca221f26db3a9303c1bd584a1a42

HTTP Headers

GET /officehub/versionless/webfonts/segoeui_light.woff2 HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 64425
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: font/woff2
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=10924759742636915433685591284812179788"}],"include_subdomains ":true}
server: ECAcc (ska/F6B0)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 285e2b00-601e-0017-2bcf-2763ca000000
content-length: 10544
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/bundles/sharedscripts-939520eada.js

152.199.21.175

200 OK

14 kB

URL GET HTTP/2
res.cdn.office.net/officehub/bundles/sharedscripts-939520eada.js
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (31932)
Size
14 kB (13526 bytes)
Hash
939520eada638af9c1ccab3debb8b14b
8a3f7d9992e48620c61c58dc1c251dcce524173f
57604cc987e25fe54b77b409e487abeb52ccd8f7fbf8bb08d31d98ed977fd6ec

HTTP Headers

GET /officehub/bundles/sharedscripts-939520eada.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 452837
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: application/javascript
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Thu, 29 Jun 2023 22:41:15 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=169379442570073885228099281243614076169"}],"include_subdomains ":true}
server: ECAcc (ska/F79E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: ec519147-301e-0035-0746-24a6d5000000
content-length: 13526
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/bundles/unauth-vendor-d78f09b728.js

152.199.21.175

200 OK

32 kB

URL GET HTTP/2
res.cdn.office.net/officehub/bundles/unauth-vendor-d78f09b728.js
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (31996)
Size
32 kB (31751 bytes)
Hash
d78f09b7284ee25c27265b1df43f5395
9edcad1de9a5ed59536f78c7bb1fd8a4da81301a
e3ad812daf7c81f8cf38fcb6b76761924d24c2fa6af4b7cf40e125d42794ccce

HTTP Headers

GET /officehub/bundles/unauth-vendor-d78f09b728.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 574630
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: application/javascript
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Mon, 05 Dec 2022 23:20:39 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=420392338432000900910724316135168369602"}],"include_subdomains ":true}
server: ECAcc (ska/F78D)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 37aa4535-301e-000a-2a2b-236e76000000
content-length: 31751
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/bundles/unauth-874e057007.js

152.199.21.175

200 OK

49 kB

URL GET HTTP/2
res.cdn.office.net/officehub/bundles/unauth-874e057007.js
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (31998)
Size
49 kB (48775 bytes)
Hash
874e057007636f96d186f3ff1ac6e298
2df8b664c7671311f701f4a36823c9c319ba907f
0077c4be96711e5a136318c4928e14ae40b6d07b95c52d3fb952b71cee8bc8f3

HTTP Headers

GET /officehub/bundles/unauth-874e057007.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 110983
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: application/javascript
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Mon, 10 Apr 2023 21:00:46 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=83524341552984762956968660568802832868"}],"include_subdomains ":true}
server: ECAcc (ska/F739)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: b4ab3994-d01e-0002-2962-277479000000
content-length: 48775
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/bundles/otel-logger-6dc48f1caefe87f8add2.js

152.199.21.175

200 OK

30 kB

URL GET HTTP/2
res.cdn.office.net/officehub/bundles/otel-logger-6dc48f1caefe87f8add2.js
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65446)
Size
30 kB (29608 bytes)
Hash
493c52a89d3afa23be3d6769db085883
bb2a04883f2c43769ad3732a34eefe9cf56ff529
258ba0bd3907de4c63d192589ff1b13738327b89a654e05d47ae95421c76b6d0

HTTP Headers

GET /officehub/bundles/otel-logger-6dc48f1caefe87f8add2.js HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 546556
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: application/javascript
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Tue, 28 Nov 2023 22:36:15 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=21942660071056807213205062100696500176"}],"include_subdomains ":true}
server: ECAcc (ska/F764)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 7561b7fe-a01e-0045-046c-231f22000000
content-length: 29608
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/versionless/webfonts/segoeui_semilight.woff2

152.199.21.175

200 OK

12 kB

URL GET HTTP/2
res.cdn.office.net/officehub/versionless/webfonts/segoeui_semilight.woff2
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12164, version 1.0\012- data
Size
12 kB (12164 bytes)
Hash
36ac9a2365173b647657ad829ae64ff0
f8966e2ee4c9cfe92b5843d8c27bb7bed98bdfc9
633894cf845287f205f1b5bd26b7667dda186695fce3d789306f30c5fbdb14b5

HTTP Headers

GET /officehub/versionless/webfonts/segoeui_semilight.woff2 HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 64425
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: font/woff2
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=106200633179382810689709134943598174334"}],"include_subdomains ":true}
server: ECAcc (ska/F7AD)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 40ab902a-901e-0071-13cf-272cea000000
content-length: 12164
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/versionless/webfonts/segoeui_regular.woff2

152.199.21.175

200 OK

11 kB

URL GET HTTP/2
res.cdn.office.net/officehub/versionless/webfonts/segoeui_regular.woff2
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11100, version 1.0\012- data
Size
11 kB (11100 bytes)
Hash
906ba74c1f7a4fd42174e0f58fad3c95
3631818302580f0e0da3ed54e8488ce72b1d4b11
bb232fd09a6696ce21ec10a43b89933e12ad866dfde30a4a6a08e08082e6557d

HTTP Headers

GET /officehub/versionless/webfonts/segoeui_regular.woff2 HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 64505
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: font/woff2
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=474167901107818269415730334667500449372"}],"include_subdomains ":true}
server: ECAcc (ska/F7B5)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 5d520a6e-801e-0042-23ce-277341000000
content-length: 11100
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/bundles/sharedfontstyles-f7f2466ff5.css

152.199.21.175

200 OK

240 B

URL GET HTTP/2
res.cdn.office.net/officehub/bundles/sharedfontstyles-f7f2466ff5.css
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1644), with no line terminators
Size
240 B (240 bytes)
Hash
f7f2466ff5c73ae1ab3c664e0b8f3244
2ca515e0e559371add59eb88c2f9ee5f55b6896b
452c71710ac8407da431e133ed831fe09c6c881f23e9b0e93192fd8dc8bab71f

HTTP Headers

GET /officehub/bundles/sharedfontstyles-f7f2466ff5.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 528842
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: text/css
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Tue, 28 Nov 2023 22:36:25 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=997832555245177628216100722502843533911"}],"include_subdomains ":true}
server: ECAcc (ska/F6A4)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: 6a9a240b-801e-0042-3995-237341000000
content-length: 240
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/bundles/unauth-6b950066b5.css

152.199.21.175

200 OK

72 kB

URL GET HTTP/2
res.cdn.office.net/officehub/bundles/unauth-6b950066b5.css
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
72 kB (72242 bytes)
Hash
6b950066b59042050c3b9d38f322b7f4
7405e5d6b489b3139039ff203f6e9f66776a41af
e2a7afea9672c5ce751624355e79570060606139b50886aaa2ad67181fdc6b8e

HTTP Headers

GET /officehub/bundles/unauth-6b950066b5.css HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: br
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 526809
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: text/css
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Tue, 28 Nov 2023 22:36:14 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=130430867642485748105512046464461575235"}],"include_subdomains ":true}
server: ECAcc (ska/F744)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-cdn-provider: Verizon
x-content-type-options: nosniff
x-ms-request-id: e79434db-601e-0017-379a-2363ca000000
content-length: 72242
X-Firefox-Spdy: h2

wcpstatic.microsoft.com/mscc/lib/v2/wcp-consent.js

13.107.246.53

200 OK

82 kB

URL GET HTTP/2
wcpstatic.microsoft.com/mscc/lib/v2/wcp-consent.js
IP
13.107.246.53:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subjectwcpstatic.microsoft.com
Fingerprint8D:23:2F:0D:7F:40:61:58:88:D7:7E:2D:4F:2F:00:2E:82:81:FA:77
ValiditySun, 03 Sep 2023 00:00:00 GMT - Tue, 03 Sep 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (63888), with no line terminators
Size
82 kB (81726 bytes)
Hash
5f524e20ce61f542125454baf867c47b
7e9834fd30dcfd27532ce79165344a438c31d78b
c688d3f2135b6b51617a306a0b1a665324402a00a6bceba475881af281503ad9

HTTP Headers

GET /mscc/lib/v2/wcp-consent.js HTTP/1.1
Host: wcpstatic.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=43200
content-length: 81726
content-type: application/javascript
content-encoding: gzip
content-md5: X1JOIM5h9UISVFS6+GfEew==
last-modified: Wed, 24 Aug 2022 17:34:36 GMT
age: 25999
etag: 0x8DA85F6EA62BF74
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
x-cache: CONFIG_NOCACHE
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 2cc2a2d0-901e-002e-3428-28045d000000
x-ms-version: 2009-09-19
x-azure-ref: 0radwZQAAAADbaMH6nFYcR45u1EuxH7YHU1ZHMjBFREdFMDUxNAAzOWI0NjE1Ny1jYjllLTQ5YjctYTY1YS04NzIyYTNmODI0ZTQ=
date: Wed, 06 Dec 2023 16:56:12 GMT
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/versionless/webfonts/segoeui_semibold.woff2

152.199.21.175

200 OK

11 kB

URL GET HTTP/2
res.cdn.office.net/officehub/versionless/webfonts/segoeui_semibold.woff2
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11356, version 1.0\012- data
Size
11 kB (11356 bytes)
Hash
dac73dc7b1eb35cd360da41648de072b
da1f6a5f46b72320a55b398f5f66d5e9aa6132f1
2cd3ef7b5b677b7827bfbe5b926a283e7ca687ddb6b021fa4289630671ebd061

HTTP Headers

GET /officehub/versionless/webfonts/segoeui_semibold.woff2 HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 64505
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: font/woff2
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=184079229345257883194532696462806175343"}],"include_subdomains ":true}
server: ECAcc (ska/F79E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 0623e039-601e-0065-1dce-276485000000
content-length: 11356
X-Firefox-Spdy: h2

img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RE1Mu3b?ver=5c31

95.101.11.49

200 OK

4.1 kB

URL GET HTTP/2
img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RE1Mu3b?ver=5c31
IP
95.101.11.49:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 216 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4054 bytes)
Hash
9f14c20150a003d7ce4de57c298f0fba
daa53cf17cc45878a1b153f3c3bf47dc9669d78f
112fec798b78aa02e102a724b5cb1990c0f909bc1d8b7b1fa256eab41bbc0960

HTTP Headers

GET /cms/api/am/imageFileData/RE1Mu3b?ver=5c31 HTTP/1.1
Host: img-prod-cms-rt-microsoft-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
content-location: https://image.prod.cms.rt.microsoft.com/cms/api/am/imageFileData/RE1Mu3b?ver=5c31
last-modified: Tue, 28 Nov 2023 08:46:56 GMT
x-source-length: 4054
x-datacenter: eastus
x-activityid: 1533cc90-5c56-42a7-80d9-4118bb18af3c
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 4054
cache-control: public, max-age=100137
expires: Thu, 07 Dec 2023 20:45:10 GMT
date: Wed, 06 Dec 2023 16:56:13 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/store-buttons-747d2c674f.png

152.199.21.175

200 OK

7.1 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/store-buttons-747d2c674f.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 286 x 41, 8-bit/color RGBA, non-interlaced\012- data
Size
7.1 kB (7115 bytes)
Hash
747d2c674f731edfd2779d83c8532e24
c40a635c160d4ca763d8c86f560cb937a8e1090b
ca13c3e1ec9b3484f3e6af002f127c03de8e5171e76d37a5749a3cd75d098b05

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/store-buttons-747d2c674f.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 61581
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Thu, 31 Mar 2022 20:09:18 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=113943435690741349557377589035792201166"}],"include_subdomains ":true}
server: ECAcc (ska/F68B)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 8e5be2ec-e01e-0036-6ad5-2747b1000000
content-length: 7115
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-edu-4-b91aa86d96.png

152.199.21.175

200 OK

204 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-edu-4-b91aa86d96.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 657 x 394, 8-bit/color RGBA, non-interlaced\012- data
Size
204 kB (204169 bytes)
Hash
b91aa86d96c46c4d61f2b244abaf89c2
1c725ea7a4ea7b4a958b4bc05b24f850479b11b2
d14d8babd12bad6a5ea601e537d7fbef8642c86a0db3751ac93e7aff892dfa83

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-edu-4-b91aa86d96.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 59623
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=440890287429356007110574345796840932444"}],"include_subdomains ":true}
server: ECAcc (ska/F7A5)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 2cc4a1da-a01e-0045-4cda-271f22000000
content-length: 204169
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-commercial-2-f143e5c2d2.png

152.199.21.175

200 OK

125 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-commercial-2-f143e5c2d2.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 658 x 497, 8-bit/color RGBA, non-interlaced\012- data
Size
125 kB (124874 bytes)
Hash
f143e5c2d232cdcf3fa06da4473e0372
0dfe81fe5425e7ee37e35c1107114ea3df7febca
5f1bbca25424c86893414de6f44a39a9f28294679e975586a9633a90247d89fd

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-commercial-2-f143e5c2d2.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 283374
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Fri, 21 Jan 2022 01:24:34 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=79324692926513744915688106814772043628"}],"include_subdomains ":true}
server: ECAcc (ska/F6AF)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: b39072bb-b01e-0059-11d1-254d42000000
content-length: 124874
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/m365-rebrand-value-commercial-7828e22528.png

152.199.21.175

200 OK

332 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/m365-rebrand-value-commercial-7828e22528.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 1776 x 472, 8-bit/color RGBA, non-interlaced\012- data
Size
332 kB (331630 bytes)
Hash
7828e225282257b91afaabf588db7c21
214a29d06cff13e63e45fccabdaa43470484060b
62126c9de11ec402a4eaf3caa6d94c1bf77d3db15615c6a4ba6218c483995297

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/m365-rebrand-value-commercial-7828e22528.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 597119
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Mon, 30 Jan 2023 22:30:00 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=9986792011323602723854370791971784469"}],"include_subdomains ":true}
server: ECAcc (ska/F7B3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: f5921333-701e-000b-41f6-2231aa000000
content-length: 331630
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-consumer-3-8d9f5d5cba.png

152.199.21.175

200 OK

282 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-consumer-3-8d9f5d5cba.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 657 x 442, 8-bit/color RGBA, non-interlaced\012- data
Size
282 kB (281677 bytes)
Hash
8d9f5d5cba3c50ebd3b2f94d685705e1
2261dfe2845c05b21aa21fadfd5b2e19efe7ee6f
5e4e6ddcf74cd9e1e8985666cdba1aeb786a7560d15feb89c1b608e0acb1fbbd

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-consumer-3-8d9f5d5cba.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 62554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Fri, 21 Jan 2022 01:24:34 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=1547516765142846190214029679985838052575"}],"include_subdomains ":true}
server: ECAcc (ska/F797)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 7f7be7c9-201e-005b-49d3-27f3fa000000
content-length: 281677
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-commercial-3-f455600b67.png

152.199.21.175

200 OK

90 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-commercial-3-f455600b67.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 657 x 439, 8-bit/color RGBA, non-interlaced\012- data
Size
90 kB (90429 bytes)
Hash
f455600b671bea74469cbd0de2c49abe
9facc63af8c238776bfc67d901ca5ef965fe12a0
9e0234933321be89717bad939d8d6608117ce7ad453a5f66db97f0f4e11a6252

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-commercial-3-f455600b67.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 62553
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=27798987612700109794231590952579729947"}],"include_subdomains ":true}
server: ECAcc (ska/F777)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 5d021f56-b01e-003b-78d3-278f65000000
content-length: 90429
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-consumer-4-920951c931.png

152.199.21.175

200 OK

155 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-consumer-4-920951c931.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 657 x 448, 8-bit/color RGBA, non-interlaced\012- data
Size
155 kB (154767 bytes)
Hash
920951c931c871936e67c7c41584821a
14b7b100edf71124766dfe275d718d3e942d700e
f5527778f0292c5bb31c94fa867c3849f0fdb9038d70d17e0049bc07369b4d5d

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-consumer-4-920951c931.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 62554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=130984382586952517476506070331737171267"}],"include_subdomains ":true}
server: ECAcc (ska/F741)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 8f1eab7e-b01e-0066-51d3-2785e1000000
content-length: 154767
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-consumer-1-2889dd4e93.png

152.199.21.175

200 OK

149 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-consumer-1-2889dd4e93.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 657 x 465, 8-bit/color RGBA, non-interlaced\012- data
Size
149 kB (148686 bytes)
Hash
2889dd4e93eb0d623ebdca683cc580c0
26905637af861a3912fa3146c332c619c51911ed
6f3e98554f2260d834bcd6ab038ac6285945999a23d8071dcb2fc391cba080e1

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-consumer-1-2889dd4e93.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 526051
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=672662296136924232910218159886095141577"}],"include_subdomains ":true}
server: ECAcc (ska/F6CE)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 2bf3f8f2-b01e-0014-6b9c-2382ae000000
content-length: 148686
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/m365-rebrand-value-edu-8f1caf2f3b.png

152.199.21.175

200 OK

511 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/m365-rebrand-value-edu-8f1caf2f3b.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 1776 x 472, 8-bit/color RGBA, non-interlaced\012- data
Size
511 kB (511384 bytes)
Hash
8f1caf2f3b50d485bf0a6d444c4d1d03
97c09a9b47263c04cc85220ecfb7a48c6287d5f2
8f1f7dc238363395c34cd261911fa383e496669404cf2d93b6c4da570fb86e81

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/m365-rebrand-value-edu-8f1caf2f3b.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 597079
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Mon, 30 Jan 2023 22:30:00 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=73532877184345463259696067436916710902"}],"include_subdomains ":true}
server: ECAcc (ska/F768)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: b36066f4-101e-001d-32f6-22c77d000000
content-length: 511384
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-edu-1-6f56908e42.png

152.199.21.175

200 OK

229 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-edu-1-6f56908e42.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 657 x 575, 8-bit/color RGBA, non-interlaced\012- data
Size
229 kB (229283 bytes)
Hash
6f56908e42f3398e4c68764a574b2c6a
dab99dff2b2401d7c3ae20d1bba5864e41908ecb
faf8d5d4a007c272f143124965d15fae555c5f721182d09b626d70e09e6d299b

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-edu-1-6f56908e42.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 597079
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=929850451467775296916843309971142466458"}],"include_subdomains ":true}
server: ECAcc (ska/F72E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 09efd92b-d01e-0060-59f6-22b65e000000
content-length: 229283
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-edu-2-a65339870b.png

152.199.21.175

200 OK

82 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-edu-2-a65339870b.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 657 x 394, 8-bit/color RGBA, non-interlaced\012- data
Size
82 kB (81973 bytes)
Hash
a65339870bf74e66812e7eb4ae2e2ad0
1c69ab833c818b3b0bf97100121c7627a423a110
6d6f78635fdf119415ac27b93cbc42580bea55aa4a031c227a911e3bd2766075

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-edu-2-a65339870b.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 62553
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=1069016454532104902215271796684078626351"}],"include_subdomains ":true}
server: ECAcc (ska/F6B3)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: bbb4874c-201e-0006-4fd3-27f97e000000
content-length: 81973
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-consumer-2-c4ec327b9e.png

152.199.21.175

200 OK

301 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-consumer-2-c4ec327b9e.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 658 x 467, 8-bit/color RGBA, non-interlaced\012- data
Size
301 kB (301050 bytes)
Hash
c4ec327b9e9d1fb0ce56254c891f03fe
eba0d651e385679fb08a2aa54d25f19ab4ee4448
e0d79790de989c7ab117d4dba27e0964b9b7c9b496ee6f8df2476d3a98c55ea5

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-consumer-2-c4ec327b9e.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 62554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=13263488517520355585349888571053972905"}],"include_subdomains ":true}
server: ECAcc (ska/F6B2)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 28082b6c-b01e-002b-03d3-274a0d000000
content-length: 301050
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-commercial-4-b66ce988de.png

152.199.21.175

200 OK

94 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-commercial-4-b66ce988de.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 657 x 394, 8-bit/color RGBA, non-interlaced\012- data
Size
94 kB (93489 bytes)
Hash
b66ce988dec4c543a4575f32fa67e926
1732243cddd2de044800621b380a6f6324ee937f
700d7ab8b2a25b9496257865f5d4dbcfbb9a7ef4112315e7dc4a6a58f9834ee9

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-commercial-4-b66ce988de.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 62554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:14 GMT
last-modified: Fri, 21 Jan 2022 01:24:34 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=1034219379006370530017756095525230851255"}],"include_subdomains ":true}
server: ECAcc (ska/F760)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 165d6cd9-901e-0061-6ed3-27e982000000
content-length: 93489
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/qr-code-2be9b68eed.png

152.199.21.175

200 OK

4.0 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/qr-code-2be9b68eed.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 161 x 160, 8-bit/color RGBA, non-interlaced\012- data
Size
4.0 kB (3974 bytes)
Hash
2be9b68eed69ae75fba5ed982d0ff25d
bd6e134c0d87c52ac751555269a59796d5eabc55
8281e85e9ff70034913a38d9eaa6af52ed98ab621300f0558e70a9bceff7246e

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/qr-code-2be9b68eed.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 61582
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:14 GMT
last-modified: Wed, 23 Mar 2022 21:08:47 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=1646642873458187697717240553456401192423"}],"include_subdomains ":true}
server: ECAcc (ska/F76E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: c39ab120-601e-0038-03d5-276e01000000
content-length: 3974
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-edu-3-f237dbff1f.png

152.199.21.175

200 OK

154 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-edu-3-f237dbff1f.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 657 x 535, 8-bit/color RGBA, non-interlaced\012- data
Size
154 kB (153748 bytes)
Hash
f237dbff1fa2d11d1b732696f88fb568
ccbb89ec75d9b76fa6f2bfcfe2103bc2ac34f33a
27e3a326be87a13cf13472fcb4bced5572d73d7cb34a0e9a7e03b6512eff4e6d

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-edu-3-f237dbff1f.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 62554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:14 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=1699932762662155624610719824836995777841"}],"include_subdomains ":true}
server: ECAcc (ska/F6C5)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 6faa85e2-601e-0028-7fd3-27ab69000000
content-length: 153748
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/more-apps-commercial-620d899e6a.png

152.199.21.175

200 OK

738 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/more-apps-commercial-620d899e6a.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 1056 x 867, 8-bit/color RGBA, non-interlaced\012- data
Size
738 kB (737682 bytes)
Hash
620d899e6aaef5da299e7ac5237c2a7b
677be89898106026499ae63a543f051b4f9a8da2
a47ffc5af116ccdcbdf40bc824310dcc08732712928ef1c1af07aa530d66e7b4

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/more-apps-commercial-620d899e6a.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 62554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Mon, 14 Feb 2022 22:01:03 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=999578889562916431913798745339264148820"}],"include_subdomains ":true}
server: ECAcc (ska/F6B8)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 40bdb339-901e-0071-78d3-272cea000000
content-length: 737682
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-commercial-1-c12cd6bc84.png

152.199.21.175

200 OK

288 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/highlight-commercial-1-c12cd6bc84.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 657 x 588, 8-bit/color RGBA, non-interlaced\012- data
Size
288 kB (288266 bytes)
Hash
c12cd6bc8402c20079eccd87115b50cc
5c8a6f635b00f83289039e8a027a4cb03cc47675
a5fbdf8aafdbee42005a4dcaac5fa402a79aa8f153486a5ade74e92085504adf

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/highlight-commercial-1-c12cd6bc84.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 58011
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:14 GMT
last-modified: Fri, 21 Jan 2022 01:24:35 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=89027808903395018106135753030817637466"}],"include_subdomains ":true}
server: ECAcc (ska/F6D6)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: a9a0d0bb-201e-0074-2ade-27fe31000000
content-length: 288266
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/value-consumer-e73e46d493.png

152.199.21.175

200 OK

670 kB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/value-consumer-e73e46d493.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 1920 x 507, 8-bit/color RGBA, non-interlaced\012- data
Size
670 kB (670470 bytes)
Hash
e73e46d4935123e170587b9285528242
8ca446f65513228d8027cb26038b951615e013d0
f3b0d16348c0284c2f1a40e2142268e4a039e6e66c45237e5f61024071d70059

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/value-consumer-e73e46d493.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 62555
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:14 GMT
last-modified: Thu, 03 Feb 2022 22:29:07 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=1497548885202297071715240210814217453100"}],"include_subdomains ":true}
server: ECAcc (ska/F792)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 686b86be-801e-006d-4cd3-277e8a000000
content-length: 670470
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/versionless/webfonts/segoeui_bold.woff2

152.199.21.175

200 OK

30 kB

URL GET HTTP/2
res.cdn.office.net/officehub/versionless/webfonts/segoeui_bold.woff2
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30132, version 0.0\012- data
Size
30 kB (30132 bytes)
Hash
4c38c2a78502af8dfbfe0f71cc49a1ae
4b8c845263b3696e28cf3f313e0214e22688a750
1232bbdbc5d205f3c5a40efa5ed92839c79e7879d5168445cc47645bb93f7d1b

HTTP Headers

GET /officehub/versionless/webfonts/segoeui_bold.woff2 HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Referer: https://res.cdn.office.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 523026
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: font/woff2
date: Wed, 06 Dec 2023 16:56:14 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=142006565108686729227373625308535505993"}],"include_subdomains ":true}
server: ECAcc (ska/F6BE)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 67755fa9-701e-0046-56a3-23fe46000000
content-length: 30132
X-Firefox-Spdy: h2

www.microsoft.com/mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff

2.18.173.151

200 OK

26 kB

URL GET HTTP/2
www.microsoft.com/mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff
IP
2.18.173.151:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectwww.microsoft.com
FingerprintE1:57:9B:A5:51:25:CE:C3:A7:8E:39:F5:5C:F8:1D:A8:BF:A9:4F:88
ValidityThu, 14 Sep 2023 17:24:20 GMT - Sun, 08 Sep 2024 17:24:20 GMT

File type
Web Open Font Format, TrueType, length 26288, version 0.0\012- data
Size
26 kB (26288 bytes)
Hash
d0263dc03be4c393a90bda733c57d6db
8a032b6deab53a33234c735133b48518f8643b92
22b4df5c33045b645cafa45b04685f4752e471a2e933bff5bf14324d87deee12

HTTP Headers

GET /mwf/_h/v3.54/mwf.app/fonts/mwfmdl2-v3.54.woff HTTP/1.1
Host: www.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/font-woff
last-modified: Fri, 20 Oct 2023 00:01:20 GMT
x-activity-id: e4ea8559-bafa-48ba-9aea-f39d85a84d0e
x-appversion: 1.0.8658.39781
x-az: {did:92e7dc58ca2143cfb2c818b047cc5cd1, rid: OneDeployContainer, sn: marketingsites-prod-odnortheurope, dt: 2018-05-03T20:14:23.4188992Z, bt: 2023-09-16T06:06:02.0000000Z}
ms-operation-id: 6152e854787f6243bd88e33b03d38d91
p3p: CP="CAO CONi OTR OUR DEM ONL"
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
x-xss-protection: 1; mode=block
content-length: 26288
cache-control: public, max-age=27414194
expires: Fri, 18 Oct 2024 23:59:28 GMT
date: Wed, 06 Dec 2023 16:56:14 GMT
tls_version: tls1.3
strict-transport-security: max-age=31536000
ms-cv: CASMicrosoftCV2a665056.0
ms-cv-esi: CASMicrosoftCV2a665056.0
x-rtag: RT
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/unauth-refresh/unauth-m365-hero-treatment-b-288e7c77d3.png

152.199.21.175

200 OK

5.5 MB

URL GET HTTP/2
res.cdn.office.net/officehub/images/content/images/unauth-refresh/unauth-m365-hero-treatment-b-288e7c77d3.png
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
PNG image data, 4742 x 2732, 8-bit/color RGBA, non-interlaced\012- data
Size
5.5 MB (5512214 bytes)
Hash
288e7c77d34b03f527ae7cee40ff431b
1d35dcac754498fed1249d89d3b144fa7bf8e9c9
1f7d1fec9454c08dd4410cd124b215a214ef29bcd2db7b3bd293564814db3831

HTTP Headers

GET /officehub/images/content/images/unauth-refresh/unauth-m365-hero-treatment-b-288e7c77d3.png HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 346272
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/png
date: Wed, 06 Dec 2023 16:56:13 GMT
last-modified: Wed, 06 Sep 2023 22:11:24 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=231222278905716590610873186798652207388"}],"include_subdomains ":true}
server: ECAcc (ska/F6B0)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: a30fb72c-201e-0064-5c3e-253b59000000
content-length: 5512214
X-Firefox-Spdy: h2

c.s-microsoft.com/static/fonts/segoe-ui/west-european/Semibold/latest.woff2

2.18.173.151

200 OK

29 kB

URL GET HTTP/2
c.s-microsoft.com/static/fonts/segoe-ui/west-european/Semibold/latest.woff2
IP
2.18.173.151:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectwww.microsoft.com
FingerprintE1:57:9B:A5:51:25:CE:C3:A7:8E:39:F5:5C:F8:1D:A8:BF:A9:4F:88
ValidityThu, 14 Sep 2023 17:24:20 GMT - Sun, 08 Sep 2024 17:24:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 29388, version 0.0\012- data
Size
29 kB (29388 bytes)
Hash
6e75a94d5f7170a1ab532d32c2a35755
9c1b6fff544089941bbeddbcf529c3f0b46d853a
d87d0a7a7fe2c36d1dc093bfe56e9b81b311988789dbd3b65abf811d551ef02f

HTTP Headers

GET /static/fonts/segoe-ui/west-european/Semibold/latest.woff2 HTTP/1.1
Host: c.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 29388
content-type: font/woff2
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "5b68d583e9c7d51:0"
cache-control: public, max-age=446374
expires: Mon, 11 Dec 2023 20:55:49 GMT
date: Wed, 06 Dec 2023 16:56:15 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

c.s-microsoft.com/static/fonts/segoe-ui/west-european/normal/latest.woff2

2.18.173.151

200 OK

34 kB

URL GET HTTP/2
c.s-microsoft.com/static/fonts/segoe-ui/west-european/normal/latest.woff2
IP
2.18.173.151:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectwww.microsoft.com
FingerprintE1:57:9B:A5:51:25:CE:C3:A7:8E:39:F5:5C:F8:1D:A8:BF:A9:4F:88
ValidityThu, 14 Sep 2023 17:24:20 GMT - Sun, 08 Sep 2024 17:24:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34052, version 0.0\012- data
Size
34 kB (34052 bytes)
Hash
36397a3bc139c6e9f81d383f060f080a
3f4f86c10920d4ed345f4858b6cde9f93e1aeb81
4f7f4afe26e71fa9ca1dac4a43b557a554a46f53251d849f07ed08a04829d74b

HTTP Headers

GET /static/fonts/segoe-ui/west-european/normal/latest.woff2 HTTP/1.1
Host: c.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 34052
content-type: font/woff2
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "588d483e9c7d51:0"
cache-control: public, max-age=451561
expires: Mon, 11 Dec 2023 22:22:16 GMT
date: Wed, 06 Dec 2023 16:56:15 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

c.s-microsoft.com/static/fonts/segoe-ui/west-european/normal/latest.woff2

2.18.173.151

200 OK

34 kB

URL GET HTTP/2
c.s-microsoft.com/static/fonts/segoe-ui/west-european/normal/latest.woff2
IP
2.18.173.151:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectwww.microsoft.com
FingerprintE1:57:9B:A5:51:25:CE:C3:A7:8E:39:F5:5C:F8:1D:A8:BF:A9:4F:88
ValidityThu, 14 Sep 2023 17:24:20 GMT - Sun, 08 Sep 2024 17:24:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34052, version 0.0\012- data
Size
34 kB (34052 bytes)
Hash
36397a3bc139c6e9f81d383f060f080a
3f4f86c10920d4ed345f4858b6cde9f93e1aeb81
4f7f4afe26e71fa9ca1dac4a43b557a554a46f53251d849f07ed08a04829d74b

HTTP Headers

GET /static/fonts/segoe-ui/west-european/normal/latest.woff2 HTTP/1.1
Host: c.s-microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Referer: https://www.microsoft.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 34052
content-type: font/woff2
last-modified: Fri, 10 Jan 2020 19:09:43 GMT
accept-ranges: bytes
etag: "588d483e9c7d51:0"
cache-control: public, max-age=451561
expires: Mon, 11 Dec 2023 22:22:16 GMT
date: Wed, 06 Dec 2023 16:56:15 GMT
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

mem.gfx.ms/scripts/me/MeControl/10.23271.5/en-US/meBoot.min.js

13.107.213.53

200 OK

63 kB

URL GET HTTP/2
mem.gfx.ms/scripts/me/MeControl/10.23271.5/en-US/meBoot.min.js
IP
13.107.213.53:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectidentitycdn.msauth.net
Fingerprint35:07:0F:A2:57:03:9D:87:1C:4A:44:52:5D:35:DF:30:45:0E:A9:F6
ValidityMon, 23 Oct 2023 22:07:15 GMT - Thu, 17 Oct 2024 22:07:15 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
63 kB (62947 bytes)
Hash
9839b66d7c986a67a821e7b3783bdf69
4f356c1a92358156486ee50921fe4c728f6d0eac
fa334c1e3766c50298f83ee32aed20fcd0978230350837dc7cb9115d096a7167

HTTP Headers

GET /scripts/me/MeControl/10.23271.5/en-US/meBoot.min.js HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Tue, 10 Oct 2023 21:40:52 GMT
etag: "1d9fbfd1d3fa1e7"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 0mC1tZQAAAAAqS1sP4X7+RYie2cMtZlqAQU1TMDRFREdFMTkxMABlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0r6dwZQAAAAC1iHw5KAZVSqCP2IC53LyIU1ZHMjBFREdFMDUxMwBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Wed, 06 Dec 2023 16:56:14 GMT
X-Firefox-Spdy: h2

js.monitor.azure.com/scripts/c/ms.shared.analytics.mectrl-3.2.7.gbl.min.js

13.107.246.53

200 OK

320 kB

URL GET HTTP/2
js.monitor.azure.com/scripts/c/ms.shared.analytics.mectrl-3.2.7.gbl.min.js
IP
13.107.246.53:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectjs.monitor.azure.com
FingerprintFF:8C:AA:D5:CE:B8:1C:2B:92:4E:2E:4C:30:25:29:9E:54:57:FC:73
ValidityWed, 20 Sep 2023 05:47:48 GMT - Sat, 14 Sep 2024 05:47:48 GMT

File type
ASCII text, with very long lines (65395)
Size
320 kB (319652 bytes)
Hash
6c6e1a3cd82e81abab9d7abc397a107d
246f870580dcdace936284daa47a08e7e54355cf
077052944d805da1cd832b70df86d282be6a1309626c646fc36dacdc9fbc7ddb

HTTP Headers

GET /scripts/c/ms.shared.analytics.mectrl-3.2.7.gbl.min.js HTTP/1.1
Host: js.monitor.azure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, no-transform
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: bG4aPNgugaurnXq8OXoQfQ==
last-modified: Wed, 05 Oct 2022 16:53:03 GMT
etag: 0x8DAA6F2118B127C
x-cache: TCP_HIT
x-ms-request-id: 47fb1fb9-c01e-0012-2a55-247ead000000
x-ms-version: 2009-09-19
x-ms-meta-jssdkver: 3.2.7
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,x-ms-meta-jssdkver,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0YFxtZQAAAABRx8hsde07TKDGhlYJPa1tQU1TMDRFREdFMTgxNQBmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
x-azure-ref: 0r6dwZQAAAACl8sW0zs/fT5DsyzFJHYERU1ZHMjBFREdFMDUxNABmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
date: Wed, 06 Dec 2023 16:56:14 GMT
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/versionless/webfonts/segoeui_bold.woff2

152.199.21.175

200 OK

30 kB

URL GET HTTP/2
res.cdn.office.net/officehub/versionless/webfonts/segoeui_bold.woff2
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30132, version 0.0\012- data
Size
30 kB (30132 bytes)
Hash
4c38c2a78502af8dfbfe0f71cc49a1ae
4b8c845263b3696e28cf3f313e0214e22688a750
1232bbdbc5d205f3c5a40efa5ed92839c79e7879d5168445cc47645bb93f7d1b

HTTP Headers

GET /officehub/versionless/webfonts/segoeui_bold.woff2 HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Referer: https://res.cdn.office.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 523027
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: font/woff2
date: Wed, 06 Dec 2023 16:56:15 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=8911757234986762301396611702857792310"}],"include_subdomains ":true}
server: ECAcc (ska/F6BE)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 67755fa9-701e-0046-56a3-23fe46000000
content-length: 30132

res.cdn.office.net/officehub/versionless/webfonts/segoeui_semibold.woff2

152.199.21.175

200 OK

11 kB

URL GET HTTP/2
res.cdn.office.net/officehub/versionless/webfonts/segoeui_semibold.woff2
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11356, version 1.0\012- data
Size
11 kB (11356 bytes)
Hash
dac73dc7b1eb35cd360da41648de072b
da1f6a5f46b72320a55b398f5f66d5e9aa6132f1
2cd3ef7b5b677b7827bfbe5b926a283e7ca687ddb6b021fa4289630671ebd061

HTTP Headers

GET /officehub/versionless/webfonts/segoeui_semibold.woff2 HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Referer: https://res.cdn.office.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 64507
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: font/woff2
date: Wed, 06 Dec 2023 16:56:15 GMT
last-modified: Tue, 27 Jul 2021 18:20:28 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=9127733158917540651653465151958792960"}],"include_subdomains ":true}
server: ECAcc (ska/F79E)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 0623e039-601e-0065-1dce-276485000000
content-length: 11356

consentreceiverfd-prod.azurefd.net/v1/consent

13.107.213.53

202 Accepted

0 B

URL POST HTTP/2
consentreceiverfd-prod.azurefd.net/v1/consent
IP
13.107.213.53:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subject*.azurefd.net
FingerprintEC:CE:92:2B:31:C1:00:D1:08:FC:DC:90:A1:BC:D3:03:F9:8C:4A:29
ValidityThu, 30 Nov 2023 05:49:41 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v1/consent HTTP/1.1
Host: consentreceiverfd-prod.azurefd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 110
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 202 Accepted
set-cookie: TiPMix=87.95868660592416; path=/; HttpOnly; Domain=consentreceiver-germanywestcentral-app-prod.azurewebsites.net; Max-Age=3600; Secure; SameSite=None
x-ms-routing-name=self; path=/; HttpOnly; Domain=consentreceiver-germanywestcentral-app-prod.azurewebsites.net; Max-Age=3600; Secure; SameSite=None
ARRAffinity=0be4e04beb7104f5a4da345206f436f7193044c649f2f73a171a73cbe870acc9;Path=/;HttpOnly;Secure;Domain=consentreceiver-germanywestcentral-app-prod.azurewebsites.net
ARRAffinitySameSite=0be4e04beb7104f5a4da345206f436f7193044c649f2f73a171a73cbe870acc9;Path=/;HttpOnly;SameSite=None;Secure;Domain=consentreceiver-germanywestcentral-app-prod.azurewebsites.net
access-control-allow-origin: *
request-context: appId=cid-v1:95580940-68a9-46df-8c0b-4179ce2244d3
x-cache: CONFIG_NOCACHE
x-azure-ref: 0r6dwZQAAAABp1kIRuEfhSJ9kKzl0qLjKU1ZHMjBFREdFMDYyMgAxMTdhNDUzZi1mYWZmLTRhZjktOWU2Zi00MTU3NjZkYWQxMzQ=
date: Wed, 06 Dec 2023 16:56:15 GMT
content-length: 0
X-Firefox-Spdy: h2

browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0

40.79.197.35

200 OK

0 B

URL OPTIONS HTTP/2
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
IP
40.79.197.35:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subject*.events.data.microsoft.com
Fingerprint7A:36:9A:C4:E6:04:7E:FA:31:85:FE:C1:F2:74:53:9D:19:C7:4C:00
ValidityTue, 19 Sep 2023 12:26:30 GMT - Fri, 13 Sep 2024 12:26:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: apikey,cache-control,client-id,client-version,content-type,time-delta-to-apply-millis,upload-time
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, 3600
content-length: 0
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
access-control-allow-credentials: true
access-control-allow-headers: AuthMsaDeviceTicket,AuthXToken,Content-Encoding,Content-Type,Cache-Control,Client-Id,SDK-Name,sdk-version,apikey,x-apikey,client-version,upload-time,time-delta-to-apply-millis,client-time-epoch-millis,persistence-mode,reliability-mode,NoResponseBody
access-control-max-age: 3600
access-control-allow-origin: https://www.office.com
date: Wed, 06 Dec 2023 16:56:17 GMT
X-Firefox-Spdy: h2

browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0

40.79.197.35

200 OK

154 B

URL OPTIONS HTTP/2
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
IP
40.79.197.35:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subject*.events.data.microsoft.com
Fingerprint7A:36:9A:C4:E6:04:7E:FA:31:85:FE:C1:F2:74:53:9D:19:C7:4C:00
ValidityTue, 19 Sep 2023 12:26:30 GMT - Fri, 13 Sep 2024 12:26:30 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
154 B (154 bytes)
Hash
cc8b786d7055588afc9e8b2b0b50b6aa
344a71fc78aa303cba68bf3c35dedb183baa1901
1222bffb58b5dfed7de648762af43669ddba0156b0c6544db75c7904e73b48f2

HTTP Headers

POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Client-Id: NO_AUTH
client-version: 1DS-Web-JS-3.2.7
apikey: b8ffe739c47a401190627519795ca4d2-044a8309-9d4b-430b-9d47-6e87775cbab6-6888
upload-time: 1701881783768
time-delta-to-apply-millis: use-collector-delta
cache-control: no-cache, no-store
content-type: application/x-json-stream
Content-Length: 19466
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 154
content-type: application/json
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
set-cookie: MC1=GUID=05955283f6384cf286fea18469e682ee&HASH=0595&LV=202312&V=4&LU=1701881778165; Domain=.microsoft.com; Expires=Thu, 05 Dec 2024 16:56:18 GMT; Path=/;Secure; SameSite=None
MS0=2c7f97cbe30545aa8f5271b20ce84d46; Domain=.microsoft.com; Expires=Wed, 06 Dec 2023 17:26:18 GMT; Path=/;Secure; SameSite=None
time-delta-millis: -5603
access-control-allow-headers: P3P,Set-Cookie,time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://www.office.com
access-control-expose-headers: time-delta-millis
date: Wed, 06 Dec 2023 16:56:18 GMT
X-Firefox-Spdy: h2

browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0

40.79.197.35

200 OK

0 B

URL OPTIONS HTTP/2
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
IP
40.79.197.35:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subject*.events.data.microsoft.com
Fingerprint7A:36:9A:C4:E6:04:7E:FA:31:85:FE:C1:F2:74:53:9D:19:C7:4C:00
ValidityTue, 19 Sep 2023 12:26:30 GMT - Fri, 13 Sep 2024 12:26:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: apikey,cache-control,client-id,client-version,content-type,time-delta-to-apply-millis,upload-time
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, 3600
content-length: 0
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
access-control-allow-credentials: true
access-control-allow-headers: AuthMsaDeviceTicket,AuthXToken,Content-Encoding,Content-Type,Cache-Control,Client-Id,SDK-Name,sdk-version,apikey,x-apikey,client-version,upload-time,time-delta-to-apply-millis,client-time-epoch-millis,persistence-mode,reliability-mode,NoResponseBody
access-control-max-age: 3600
access-control-allow-origin: https://www.office.com
date: Wed, 06 Dec 2023 16:56:24 GMT
X-Firefox-Spdy: h2

browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2

40.79.197.35

200 OK

0 B

URL OPTIONS HTTP/2
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2
IP
40.79.197.35:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subject*.events.data.microsoft.com
Fingerprint7A:36:9A:C4:E6:04:7E:FA:31:85:FE:C1:F2:74:53:9D:19:C7:4C:00
ValidityTue, 19 Sep 2023 12:26:30 GMT - Fri, 13 Sep 2024 12:26:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: apikey,cache-control,client-id,client-version,content-type,time-delta-to-apply-millis,upload-time
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, 3600
content-length: 0
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
access-control-allow-credentials: true
access-control-allow-headers: AuthMsaDeviceTicket,AuthXToken,Content-Encoding,Content-Type,Cache-Control,Client-Id,SDK-Name,sdk-version,apikey,x-apikey,client-version,upload-time,time-delta-to-apply-millis,client-time-epoch-millis,persistence-mode,reliability-mode,NoResponseBody
access-control-max-age: 3600
access-control-allow-origin: https://www.office.com
date: Wed, 06 Dec 2023 16:56:24 GMT
X-Firefox-Spdy: h2

browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0

40.79.197.35

200 OK

153 B

URL OPTIONS HTTP/2
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
IP
40.79.197.35:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subject*.events.data.microsoft.com
Fingerprint7A:36:9A:C4:E6:04:7E:FA:31:85:FE:C1:F2:74:53:9D:19:C7:4C:00
ValidityTue, 19 Sep 2023 12:26:30 GMT - Fri, 13 Sep 2024 12:26:30 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
153 B (153 bytes)
Hash
5a27dd9e4eaa867a903770ac377e9132
c39122aac2384df2c04bd07025c7893d4ad5462a
d64b7036f897faa4698cb20e988ea2a1e8ac4569850282e26ccff6d8184c2120

HTTP Headers

POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Client-Id: NO_AUTH
client-version: 1DS-Web-JS-3.2.8
apikey: aa86c364bc9e4a5a94a6b232c110af26-72da2ec9-498a-44df-8cca-7fd88cf654c1-7527
upload-time: 1701881781862
time-delta-to-apply-millis: use-collector-delta
cache-control: no-cache, no-store
content-type: application/x-json-stream
Content-Length: 6742
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 153
content-type: application/json
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
set-cookie: MC1=GUID=716c72779ff44823af54fcf88537d370&HASH=716c&LV=202312&V=4&LU=1701881785760; Domain=.microsoft.com; Expires=Thu, 05 Dec 2024 16:56:25 GMT; Path=/;Secure; SameSite=None
MS0=5320ba6e40614562b99cf3f2f5e470be; Domain=.microsoft.com; Expires=Wed, 06 Dec 2023 17:26:25 GMT; Path=/;Secure; SameSite=None
time-delta-millis: 3898
access-control-allow-headers: P3P,Set-Cookie,Connection,time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://www.office.com
access-control-expose-headers: time-delta-millis
date: Wed, 06 Dec 2023 16:56:25 GMT
X-Firefox-Spdy: h2

browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2

40.79.197.35

200 OK

24 B

URL OPTIONS HTTP/2
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2
IP
40.79.197.35:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subject*.events.data.microsoft.com
Fingerprint7A:36:9A:C4:E6:04:7E:FA:31:85:FE:C1:F2:74:53:9D:19:C7:4C:00
ValidityTue, 19 Sep 2023 12:26:30 GMT - Fri, 13 Sep 2024 12:26:30 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
24 B (24 bytes)
Hash
5562a90bba46ae4a7dba099d68f4a42a
ac7cf704563b3e32cc67770ea72a3873cc6fc146
afd588d7d1c94d797ef932006d524de973f6fc54556e62f0f340412c87f99d58

HTTP Headers

POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=2 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Client-Id: NO_AUTH
client-version: 1DS-Web-JS-3.2.10
apikey: eba120086311400a9b62c4718c0934d3-7ec73bd2-d8e8-450d-84d0-7f0a2ade31ce-7166
upload-time: 1701881782865
time-delta-to-apply-millis: use-collector-delta
cache-control: no-cache, no-store
content-type: application/x-json-stream
Content-Length: 1876
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 24
content-type: application/json
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
time-delta-millis: 2910
access-control-allow-headers: Connection,time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://www.office.com
access-control-expose-headers: time-delta-millis
date: Wed, 06 Dec 2023 16:56:25 GMT
X-Firefox-Spdy: h2

browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0

40.79.197.35

200 OK

153 B

URL OPTIONS HTTP/2
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
IP
40.79.197.35:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subject*.events.data.microsoft.com
Fingerprint7A:36:9A:C4:E6:04:7E:FA:31:85:FE:C1:F2:74:53:9D:19:C7:4C:00
ValidityTue, 19 Sep 2023 12:26:30 GMT - Fri, 13 Sep 2024 12:26:30 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
153 B (153 bytes)
Hash
937d2e9ee4eea870b5edba05424b195a
25159b96eff8e1a1b071b9bdca21944dc450b1ea
bf97a913309e6975594c8b10e1994a3d9e1c48d5c27ce99e1997354c43696d1e

HTTP Headers

POST /OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0 HTTP/1.1
Host: browser.events.data.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Client-Id: NO_AUTH
client-version: 1DS-Web-JS-3.2.8
apikey: aa86c364bc9e4a5a94a6b232c110af26-72da2ec9-498a-44df-8cca-7fd88cf654c1-7527
upload-time: 1701881792104
time-delta-to-apply-millis: 3898
cache-control: no-cache, no-store
content-type: application/x-json-stream
Content-Length: 1112
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Cookie: MC1=GUID=716c72779ff44823af54fcf88537d370&HASH=716c&LV=202312&V=4&LU=1701881785760; MS0=5320ba6e40614562b99cf3f2f5e470be
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 153
content-type: application/json
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
time-delta-millis: -6094
access-control-allow-headers: Connection,time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://www.office.com
access-control-expose-headers: time-delta-millis
date: Wed, 06 Dec 2023 16:56:25 GMT
X-Firefox-Spdy: h2

mem.gfx.ms/scripts/me/MeControl/10.23271.5/en-US/meCore.min.js

13.107.213.53

200 OK

101 kB

URL GET HTTP/2
mem.gfx.ms/scripts/me/MeControl/10.23271.5/en-US/meCore.min.js
IP
13.107.213.53:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectidentitycdn.msauth.net
Fingerprint35:07:0F:A2:57:03:9D:87:1C:4A:44:52:5D:35:DF:30:45:0E:A9:F6
ValidityMon, 23 Oct 2023 22:07:15 GMT - Thu, 17 Oct 2024 22:07:15 GMT

File type
ASCII text, with very long lines (34235), with CRLF, LF line terminators
Size
101 kB (100769 bytes)
Hash
6fe3dd83a0d98bc1977f57ea33c37693
8df606f40e4cc8c07ce929d5a82fd5304eaf4eb7
a5268a183f2a091d2d17773997e89a25fc45cbd60e586edf61f544fb85d6f6a8

HTTP Headers

GET /scripts/me/MeControl/10.23271.5/en-US/meCore.min.js HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
Origin: https://www.office.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Wed, 15 Nov 2023 22:13:40 GMT
etag: "1da18540ae44ba1"
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 0svJuZQAAAAAwXHMI1F97QbS+BN3OXj6gQU1TMDRFREdFMTgxOQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0r6dwZQAAAACTIp0TAFtUQbGb832xmYjIU1ZHMjBFREdFMDUxMwBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Wed, 06 Dec 2023 16:56:14 GMT
X-Firefox-Spdy: h2

res.cdn.office.net/officehub/images/content/images/favicon_m365-67350a08e8.ico

152.199.21.175

200 OK

286 kB

URL GET HTTP/3
res.cdn.office.net/officehub/images/content/images/favicon_m365-67350a08e8.ico
IP
152.199.21.175:443
ASN
#15133 EDGECAST

Requested by
https://www.office.com/
Certificate
IssuerDigiCert Inc
Subject*.public.cdn.office.net
FingerprintA8:34:D7:A9:C3:5B:8A:42:9A:69:21:B4:8B:73:05:E1:2A:27:09:39
ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
286 kB (285478 bytes)
Hash
67350a08e8a8885eb2f30f6a1b36dfb6
94ffdcd8f82968a6ae300e72ebbf083ed9d15232
4b459f4f645ea3044747f1d9a0c0ac83c4754bf43246e95bfbe04519849286d6

HTTP Headers

GET /officehub/images/content/images/favicon_m365-67350a08e8.ico HTTP/1.1
Host: res.cdn.office.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: date,X-Cdn-Provider,X-Ms-Request-Id
age: 118288
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: image/x-icon
date: Wed, 06 Dec 2023 16:56:15 GMT
last-modified: Mon, 17 Oct 2022 21:37:00 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nel.measure.office.net/api/report?FrontEnd=VerizonCDNWorldWide&DestinationEndpoint=Oslo&ASN=50304&Country=NO&Region=03&RequestIdentifier=53811323846873329849206887446824787168"}],"include_subdomains ":true}
server: ECAcc (ska/F6BE)
strict-transport-security: max-age=31536000; includeSubDomains
timing-allow-origin: *
x-cache: HIT
x-cdn-provider: Verizon
x-ms-request-id: 46b59cd7-e01e-0054-0851-278596000000
content-length: 285478

www.office.com/

13.107.6.156

200 OK

218 kB

URL User Request GET HTTP/2
www.office.com/
IP
13.107.6.156:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerMicrosoft Corporation
Subjectportal.office.com
FingerprintD1:DA:D6:CC:38:6B:DB:BB:03:27:D0:A9:DF:4F:CF:72:9E:E7:92:F4
ValidityMon, 04 Dec 2023 17:51:23 GMT - Thu, 28 Nov 2024 17:51:23 GMT

File type

Size
218 kB (217492 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.office.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: no-store,no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: OH.SID=6274af9b-285c-45f8-96b5-0a0f8b7ab7f0; path=/; secure; samesite=none; httponly
OH.DCAffinity=OH-noe; expires=Thu, 07 Dec 2023 00:56:13 GMT; path=/; secure; samesite=none; httponly
OH.FLID=7002341c-3127-4d42-9b9e-3ba77ebb2d96; expires=Fri, 06 Dec 2024 16:56:13 GMT; path=/; secure; samesite=none; httponly
CreateFreeAccountButton=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
p.UnauthUserCookie=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
OhpAuth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
OhpToken=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
UserIndex=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
MUID=2808BD5B7AF761242C80AE847BDB60CE; path=/; secure; expires=Mon, 30-Dec-2024 16:56:13 GMT; domain=office.com
request-context: appId=
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
nel: {"report_to":"NelOfficeHubUpload1","max_age":3600,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelOfficeHubUpload1","max_age":3600,"endpoints":[{"url":"https://officehub.nel.measure.office.net/api/report?tenantId=unknown&destinationEndpoint=noe&frontEnd=AFD"}]}, { "group": "csp-endpoint", "max_age": 86400, "endpoints": [{ "url": "https://csp.microsoft.com/report/Harmony-App-PROD" }]}
content-security-policy: default-src 'self';base-uri 'self';script-src 'nonce-WQkvzW9fBTVEshMVO9fupA==' 'strict-dynamic' 'report-sample' https:;report-to csp-endpoint;upgrade-insecure-requests;style-src 'self' *.cdn.office.net *.microsoft.com res-dev.cdn.officeppe.net 'unsafe-inline' https://www.microsoft.com/;font-src 'self' data: *.cdn.office.net res-dev.cdn.officeppe.net data c.s-microsoft.com *.microsoft.com;connect-src 'self' https://browser.pipe.aria.microsoft.com https://browser.events.data.microsoft.com *.office.com *.cdn.office.net res-dev.cdn.officeppe.net https://consentreceiverfd-prod.azurefd.net data:;frame-src https://login.microsoftonline.com https://login.live.com mem.gfx.ms amcdn.msftauth.net amcdn.msauth.net;img-src * data: blob:;worker-src 'self' blob:;child-src 'self' blob:;report-uri https://csp.microsoft.com/report/Harmony-App-PROD;
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 80366621DC6146BA864F0B164AE81575 Ref B: SVG20EDGE0110 Ref C: 2023-12-06T16:56:13Z
date: Wed, 06 Dec 2023 16:56:13 GMT
X-Firefox-Spdy: h2

mem.gfx.ms/meversion?partner=office&market=en-us&uhf=1

13.107.213.53

200 OK

30 kB

URL GET HTTP/2
mem.gfx.ms/meversion?partner=office&market=en-us&uhf=1
IP
13.107.213.53:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectidentitycdn.msauth.net
Fingerprint35:07:0F:A2:57:03:9D:87:1C:4A:44:52:5D:35:DF:30:45:0E:A9:F6
ValidityMon, 23 Oct 2023 22:07:15 GMT - Thu, 17 Oct 2024 22:07:15 GMT

File type
ASCII text, with very long lines (30145)
Size
30 kB (30197 bytes)
Hash
4d4e8b0f7460871f054e91458b140e89
20ea295d5b00e6a3612f8f7610e1b818080cd2f4
d4eea8395d57d96a30bac43176681506d2c0d5ae0bf5272c67199853cd1fec52

HTTP Headers

GET /meversion?partner=office&market=en-us&uhf=1 HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, no-transform, max-age=43200
content-type: application/javascript
content-encoding: br
expires: Wed, 06 Dec 2023 10:37:26 GMT
x-cache: TCP_HIT
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 04Q1wZQAAAABzxDTjfKUyR78SU+z5NGqAQU1TMDRFREdFMTkxMQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0radwZQAAAAAny5G2fsyNSI1SPT4+N5XjU1ZHMjBFREdFMDUyMABlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Wed, 06 Dec 2023 16:56:13 GMT
X-Firefox-Spdy: h2

mem.gfx.ms/me/mecache?partner=office&wreply=https%3A%2F%2Fwww.office.com

13.107.213.53

200 OK

3.4 kB

URL GET HTTP/2
mem.gfx.ms/me/mecache?partner=office&wreply=https%3A%2F%2Fwww.office.com
IP
13.107.213.53:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.office.com/
Certificate
IssuerMicrosoft Corporation
Subjectidentitycdn.msauth.net
Fingerprint35:07:0F:A2:57:03:9D:87:1C:4A:44:52:5D:35:DF:30:45:0E:A9:F6
ValidityMon, 23 Oct 2023 22:07:15 GMT - Thu, 17 Oct 2024 22:07:15 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3524), with no line terminators
Size
3.4 kB (3377 bytes)
Hash
625a7322b524c7e9d937475ba08cb1a9
4c686eaaa6b8928d7a047009ed52a9ad20c1d8bd
f3939dcb85b6a9dfb1effcfaff075d3d71c026ca2218bd194e180dc6b88e62e7

HTTP Headers

GET /me/mecache?partner=office&wreply=https%3A%2F%2Fwww.office.com HTTP/1.1
Host: mem.gfx.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.office.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, no-transform, max-age=43200
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 07 Dec 2023 03:05:20 GMT
x-cache: TCP_HIT
x-content-type-options: nosniff
content-security-policy: frame-ancestors https://www.office.com;
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; includeSubDomains
x-azure-ref-originshield: 0sI1wZQAAAABBUQxF0lMvRaNXEhmmPomuQU1TMDRFREdFMTkwOQBlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
x-azure-ref: 0r6dwZQAAAACNPOVhAj9ZSaYNJhlDQ9AUU1ZHMjBFREdFMDUyMABlYWM1ZjQ5Zi1lMDJkLTRmNDEtYjBhNi0yZDUwZjlmY2Y4NGE=
date: Wed, 06 Dec 2023 16:56:15 GMT
X-Firefox-Spdy: h2

meth09.avenuealternative.com/?username=jpartenza@cgf.com

149.100.156.135

302 Found

218 kB

URL User Request GET HTTP/2
meth09.avenuealternative.com/?username=jpartenza@cgf.com
IP
149.100.156.135:443
ASN
#174 COGENT-174

Certificate
IssuerLet's Encrypt
Subjectavenuealternative.com
Fingerprint43:24:04:D7:19:61:80:9F:1A:88:F3:37:E8:22:C0:9F:57:5D:05:2C
ValidityMon, 04 Dec 2023 17:15:39 GMT - Sun, 03 Mar 2024 17:15:38 GMT

File type

Size
218 kB (217492 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /?username=jpartenza@cgf.com HTTP/1.1
Host: meth09.avenuealternative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Wed, 06 Dec 2023 16:56:12 GMT
content-type: text/html; charset=utf-8
location: https://office.com/
referrer-policy: no-referrer
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by