Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| lqxlpq.db.files.1drv.com |
CNAME
db-files.fe.1drv.com
CNAME
l-0003.l-msedge.net
|
13.107.42.12 |
| onedrive.live.com |
CNAME
l-0004.l-msedge.net
|
13.107.42.13 |
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4mlk7dFP-M0RnPYff1C3nkvINRW1bOZ9qHUq4MqIwe_I02IOVUwP9Z2VubMPC2YmRJW5w1UIVGClOrxxU2sgznVi1hUc4yd0vRe0pRKzkqXcQ4jeLxs-9z0Z5WTFUBG84Qly2oIS3WnAM4xkfaFMeu9zY0VD_O9JvfxfX4Uy1WB-0B6-62MPHKhIMjMs2DsGQ-43zoF5iMjVWq-mT4Q5dp6w/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:CWVSlS3W2Yg=:ZvGd8tnGPcVId+hzoTg0FyQOCtH4jEYKWEdLobSyAF4=:F; domain=.live.com; path=/
Set-Cookie: xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; domain=.live.com; path=/
Set-Cookie: xidseq=1; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:02:31 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:42:32 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RD0003FF9C3AAD
X-ODWebServer: canadacentral1-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 3D1ED4D27062490CBE5297C7F72D7C01 Ref B: SLAEDGE1110 Ref C: 2022-01-13T00:42:31Z
Date: Thu, 13 Jan 2022 00:42:31 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4mlk7dFP-M0RnPYff1C3nkvINRW1bOZ9qHUq4MqIwe_I02IOVUwP9Z2VubMPC2YmRJW5w1UIVGClOrxxU2sgznVi1hUc4yd0vRe0pRKzkqXcQ4jeLxs-9z0Z5WTFUBG84Qly2oIS3WnAM4xkfaFMeu9zY0VD_O9JvfxfX4Uy1WB-0B6-62MPHKhIMjMs2DsGQ-43zoF5iMjVWq-mT4Q5dp6w/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4mlk7dFP-M0RnPYff1C3nkvINRW1bOZ9qHUq4MqIwe_I02IOVUwP9Z2VubMPC2YmRJW5w1UIVGClOrxxU2sgznVi1hUc4yd0vRe0pRKzkqXcQ4jeLxs-9z0Z5WTFUBG84Qly2oIS3WnAM4xkfaFMeu9zY0VD_O9JvfxfX4Uy1WB-0B6-62MPHKhIMjMs2DsGQ-43zoF5iMjVWq-mT4Q5dp6w/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Host: lqxlpq.db.files.1drv.com
Connection: Keep-Alive
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB5SCH102220915
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: MMNEiAtW5EeK9ZMiRDqEYw.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 59f5.d6a0
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 2D59E99D96F6463597E4121B793BF520 Ref B: SLAEDGE1007 Ref C: 2022-01-13T00:42:32Z
Date: Thu, 13 Jan 2022 00:42:32 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:CWVSlS3W2Yg=:ZvGd8tnGPcVId+hzoTg0FyQOCtH4jEYKWEdLobSyAF4=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=1; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4mSvcyy0IAHKrLkg3SjRZ4sSJf9w7rI-i3hpeiwSdZtPCKNyEk7AhccnqCGbt9_gizydGiHdj9uTqI965hvAGGnUAwJvW4P-oxn-TkhZRXehFvt57LMIdTUfXhtFy2hkJoOEIpC21B8LutJuAOLpLXymcC2POc-22UizC-eHX2wLDYR0lSQ4hwMYZje2tmvZ69wZKqzdyv527HwHoQdv9EMg/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:XZ18mi3W2Yg=:hw8MaQUlDPXOe1IGDzNusO3D5uc+d2Rkr7XfDsDhWE4=:F; domain=.live.com; path=/
Set-Cookie: xidseq=2; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:02:40 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:42:40 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RDE42AAC9404AB
X-ODWebServer: centralus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 03C75C348CDE468483F65B614813E700 Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:42:40Z
Date: Thu, 13 Jan 2022 00:42:40 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4mSvcyy0IAHKrLkg3SjRZ4sSJf9w7rI-i3hpeiwSdZtPCKNyEk7AhccnqCGbt9_gizydGiHdj9uTqI965hvAGGnUAwJvW4P-oxn-TkhZRXehFvt57LMIdTUfXhtFy2hkJoOEIpC21B8LutJuAOLpLXymcC2POc-22UizC-eHX2wLDYR0lSQ4hwMYZje2tmvZ69wZKqzdyv527HwHoQdv9EMg/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4mSvcyy0IAHKrLkg3SjRZ4sSJf9w7rI-i3hpeiwSdZtPCKNyEk7AhccnqCGbt9_gizydGiHdj9uTqI965hvAGGnUAwJvW4P-oxn-TkhZRXehFvt57LMIdTUfXhtFy2hkJoOEIpC21B8LutJuAOLpLXymcC2POc-22UizC-eHX2wLDYR0lSQ4hwMYZje2tmvZ69wZKqzdyv527HwHoQdv9EMg/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB3PPF72B022211
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: KFZbDy7rMUSD2GfjLVHkVQ.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 59f5.d6a0
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 550BE769C3514C06AA898B26BEE68E10 Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:42:40Z
Date: Thu, 13 Jan 2022 00:42:41 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:XZ18mi3W2Yg=:hw8MaQUlDPXOe1IGDzNusO3D5uc+d2Rkr7XfDsDhWE4=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=2; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4mXUEPM0n6sItbcbnjxoeVnPuQJavKC4NNFBXsvnAdWeoB_Ki3abADB2xScqFVwTo_NtEq9uj_2-Sg12JrsxjG5JnN8kxMeLy1J1C4x6d0jTvnLbffLqR1WsncX0Cf0EyzSI7ul8IfpwgF66--9pUPYJm3095BCmI17aIYo55jJjTvKZxH3_VhE_sOMUrcENnnJ3rIwVORawfK2Al1TzWMew/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:+CHfny3W2Yg=:kgwF0g2rOfUMvI4f4WV967+KW7+Wh6t14sIk6vj1cVU=:F; domain=.live.com; path=/
Set-Cookie: xidseq=3; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:02:49 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:42:50 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RDE42AAC93F52D
X-ODWebServer: centralus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: C36C4CA5BB46427EABBD8252BA33976B Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:42:49Z
Date: Thu, 13 Jan 2022 00:42:50 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4mXUEPM0n6sItbcbnjxoeVnPuQJavKC4NNFBXsvnAdWeoB_Ki3abADB2xScqFVwTo_NtEq9uj_2-Sg12JrsxjG5JnN8kxMeLy1J1C4x6d0jTvnLbffLqR1WsncX0Cf0EyzSI7ul8IfpwgF66--9pUPYJm3095BCmI17aIYo55jJjTvKZxH3_VhE_sOMUrcENnnJ3rIwVORawfK2Al1TzWMew/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4mXUEPM0n6sItbcbnjxoeVnPuQJavKC4NNFBXsvnAdWeoB_Ki3abADB2xScqFVwTo_NtEq9uj_2-Sg12JrsxjG5JnN8kxMeLy1J1C4x6d0jTvnLbffLqR1WsncX0Cf0EyzSI7ul8IfpwgF66--9pUPYJm3095BCmI17aIYo55jJjTvKZxH3_VhE_sOMUrcENnnJ3rIwVORawfK2Al1TzWMew/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB3PPF4EC52EC84
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: kxo8aOSpXEKMFnFZIEfJjQ.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 59f5.d6a0
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 3F89569C442B40B6807A012BEA09F72D Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:42:50Z
Date: Thu, 13 Jan 2022 00:42:51 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:+CHfny3W2Yg=:kgwF0g2rOfUMvI4f4WV967+KW7+Wh6t14sIk6vj1cVU=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=3; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4mFT8aPU00JDlQJJt4iDFlSELVjJklfB8osvD9ChHozVxqpSJhN9KnccxoJ5_qSikXyJLL09rNKnTIP7lbr5_as_VY5Jeqnjxq_tsvMMgsZx4AM1szRrsgFMdtqe6Rq0xxEAWGJC_Y2MfchwauZ3MEu_zMJ_q08U8JHUVR8LJa9VVr0RJKFOyWMFaYpW-1n4UxvWY7LKEspbqRPw7XcwuN7A/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:SoVKpS3W2Yg=:nuKkyB2ykO+gYYlJAeruYAvp0OZv6jBEpQo1GbKu8DI=:F; domain=.live.com; path=/
Set-Cookie: xidseq=4; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:02:58 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:42:59 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RDE42AAC93BE8C
X-ODWebServer: centralus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 27A0F5F1A3DC4D5DAA2E29EFF9B18716 Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:42:58Z
Date: Thu, 13 Jan 2022 00:42:59 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4mFT8aPU00JDlQJJt4iDFlSELVjJklfB8osvD9ChHozVxqpSJhN9KnccxoJ5_qSikXyJLL09rNKnTIP7lbr5_as_VY5Jeqnjxq_tsvMMgsZx4AM1szRrsgFMdtqe6Rq0xxEAWGJC_Y2MfchwauZ3MEu_zMJ_q08U8JHUVR8LJa9VVr0RJKFOyWMFaYpW-1n4UxvWY7LKEspbqRPw7XcwuN7A/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4mFT8aPU00JDlQJJt4iDFlSELVjJklfB8osvD9ChHozVxqpSJhN9KnccxoJ5_qSikXyJLL09rNKnTIP7lbr5_as_VY5Jeqnjxq_tsvMMgsZx4AM1szRrsgFMdtqe6Rq0xxEAWGJC_Y2MfchwauZ3MEu_zMJ_q08U8JHUVR8LJa9VVr0RJKFOyWMFaYpW-1n4UxvWY7LKEspbqRPw7XcwuN7A/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB3PPF3AA5FB8F1
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: xtiGGSqJekGqqzuQpE7ouw.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 59f5.d6a0
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 894787F70BC44E43862E365615602BEC Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:42:59Z
Date: Thu, 13 Jan 2022 00:43:00 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:SoVKpS3W2Yg=:nuKkyB2ykO+gYYlJAeruYAvp0OZv6jBEpQo1GbKu8DI=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=4; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4myEkjFT7XqiIGaMVTyZi9STNz9-W9cJZs7XmfaVEVUHO6DyckBbZmvQGu1bc3djb4wiNGLceiuyK4QKuuPsHJe2qZj3aVQKy59WDQb9Q5PyUfmOvBq18Ipe0EiLO3ypmU2zGJF6yaRHpdotiExFb07k2tongT8J4Jb--Ltt7PqyTVawH5lSXsActolwQYRprJtgDZFvHkPm9w8mD7oXligA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:aMyvqi3W2Yg=:ZYoi0vflThyRM9/zNKNBXPeNWCNkK3JrHudKvihrfC0=:F; domain=.live.com; path=/
Set-Cookie: xidseq=5; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:03:07 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:43:07 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RDE42AAC9404AB
X-ODWebServer: centralus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 40F8B9322544413DBEC86F02E1BA2498 Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:43:07Z
Date: Thu, 13 Jan 2022 00:43:07 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4myEkjFT7XqiIGaMVTyZi9STNz9-W9cJZs7XmfaVEVUHO6DyckBbZmvQGu1bc3djb4wiNGLceiuyK4QKuuPsHJe2qZj3aVQKy59WDQb9Q5PyUfmOvBq18Ipe0EiLO3ypmU2zGJF6yaRHpdotiExFb07k2tongT8J4Jb--Ltt7PqyTVawH5lSXsActolwQYRprJtgDZFvHkPm9w8mD7oXligA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4myEkjFT7XqiIGaMVTyZi9STNz9-W9cJZs7XmfaVEVUHO6DyckBbZmvQGu1bc3djb4wiNGLceiuyK4QKuuPsHJe2qZj3aVQKy59WDQb9Q5PyUfmOvBq18Ipe0EiLO3ypmU2zGJF6yaRHpdotiExFb07k2tongT8J4Jb--Ltt7PqyTVawH5lSXsActolwQYRprJtgDZFvHkPm9w8mD7oXligA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB1PPF6AE6D35E9
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: Kcd7SQyHWU2+7HJh4e7RWA.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 51d8.51b4
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 80A5C826A02740D6BBB32E9B111A212F Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:43:07Z
Date: Thu, 13 Jan 2022 00:43:08 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:aMyvqi3W2Yg=:ZYoi0vflThyRM9/zNKNBXPeNWCNkK3JrHudKvihrfC0=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=5; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4m4oG_AQ5gWHg4mu0IPxG8HvUuhKqLzGk89FqJfZJE-HwO5fsZjAfCm1O7bed7LpS_Yvb3NW53yKXg9JYqhHUriilfHUbQcs5ph-08FCsQ7cJzEpKj64GclLke1i4-oPJ9fQWwu-_30oeXsdjhnnjcuhInubQx8H-8nsqS_xKBk4vjEhSH3vAZ96ZaKM90Bw2T005otXg9i9BYuftiALJKpg/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:8BFtsC3W2Yg=:mbwcwme/fE6ZzVA5+RLNFy1mMOxmyB6W80KPHxVwcjE=:F; domain=.live.com; path=/
Set-Cookie: xidseq=6; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:03:17 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:43:17 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RD00155D999523
X-ODWebServer: eastus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: FEBA89D0EA2449478FD4E4D9DEBA31F6 Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:43:16Z
Date: Thu, 13 Jan 2022 00:43:17 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4m4oG_AQ5gWHg4mu0IPxG8HvUuhKqLzGk89FqJfZJE-HwO5fsZjAfCm1O7bed7LpS_Yvb3NW53yKXg9JYqhHUriilfHUbQcs5ph-08FCsQ7cJzEpKj64GclLke1i4-oPJ9fQWwu-_30oeXsdjhnnjcuhInubQx8H-8nsqS_xKBk4vjEhSH3vAZ96ZaKM90Bw2T005otXg9i9BYuftiALJKpg/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4m4oG_AQ5gWHg4mu0IPxG8HvUuhKqLzGk89FqJfZJE-HwO5fsZjAfCm1O7bed7LpS_Yvb3NW53yKXg9JYqhHUriilfHUbQcs5ph-08FCsQ7cJzEpKj64GclLke1i4-oPJ9fQWwu-_30oeXsdjhnnjcuhInubQx8H-8nsqS_xKBk4vjEhSH3vAZ96ZaKM90Bw2T005otXg9i9BYuftiALJKpg/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB1PPF87E4CB283
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: fPrbJTP0z0Kj75y0fc36Sw.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 51d8.51b4
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: A35114B5D0914C63A18AA7DF2F7245B5 Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:43:17Z
Date: Thu, 13 Jan 2022 00:43:17 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:8BFtsC3W2Yg=:mbwcwme/fE6ZzVA5+RLNFy1mMOxmyB6W80KPHxVwcjE=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=6; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4mbCeSRE0rG7ziEp3ozPFebwlTjmNQ2GGlVznH174M4PNpvkRh0xz_fXvwSfxXvFHYueW8QvmNIjErg_1lTkuGYykO9i4B5ngD6CK4wLxFmyLJ-RQtD24OI8OA7DxQxGzyUzE50NlPCS59K9SDQnXv1tZNKKjbd_xbxBECtwKvEGgppHSoEKtPzOpaIYJElqH44iSu_icoueOXfBDtIgi9NA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:7GV8tS3W2Yg=:/jK5btrfa0pjBTyj+YtoWU2QSW3589Rb/KHsrQsIdRI=:F; domain=.live.com; path=/
Set-Cookie: xidseq=7; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:03:25 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:43:26 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RD00155D99BBEF
X-ODWebServer: eastus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 3BEF6A60527B416EA4EAB72A2433A2D3 Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:43:25Z
Date: Thu, 13 Jan 2022 00:43:26 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4mbCeSRE0rG7ziEp3ozPFebwlTjmNQ2GGlVznH174M4PNpvkRh0xz_fXvwSfxXvFHYueW8QvmNIjErg_1lTkuGYykO9i4B5ngD6CK4wLxFmyLJ-RQtD24OI8OA7DxQxGzyUzE50NlPCS59K9SDQnXv1tZNKKjbd_xbxBECtwKvEGgppHSoEKtPzOpaIYJElqH44iSu_icoueOXfBDtIgi9NA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4mbCeSRE0rG7ziEp3ozPFebwlTjmNQ2GGlVznH174M4PNpvkRh0xz_fXvwSfxXvFHYueW8QvmNIjErg_1lTkuGYykO9i4B5ngD6CK4wLxFmyLJ-RQtD24OI8OA7DxQxGzyUzE50NlPCS59K9SDQnXv1tZNKKjbd_xbxBECtwKvEGgppHSoEKtPzOpaIYJElqH44iSu_icoueOXfBDtIgi9NA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB3PPF985D62EAD
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: 0yJ76D46Y06Z0HzP4gVp2Q.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 59f5.d6a0
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 408F7E8C88BA472D85F9B218CFD6B9B8 Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:43:26Z
Date: Thu, 13 Jan 2022 00:43:26 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:7GV8tS3W2Yg=:/jK5btrfa0pjBTyj+YtoWU2QSW3589Rb/KHsrQsIdRI=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=7; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4m4QFHB58xOaRhE-Myq1XS4-F16QdkLadH1DQYRCjA1v4EzRspS-jS6Qa0LbYVTvWKMqASSwnj7J0S8CT8342BrVz8naC1XhyQwsZDxYHiDsKWqfgRzhlWCatbX-KiEq26isN_r8BaycTBtSxLXssp8SnYHxIoWN4orB2Y1nzDz87xYXtoMizyAfamf3_g1UBoFTXpduDbO-eo97yi3NYTyA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:emrfui3W2Yg=:yVVWJXk2GAd/eQhqBcl5RtLbf1K9tjXGXU631Aoe2n8=:F; domain=.live.com; path=/
Set-Cookie: xidseq=8; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:03:34 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:43:34 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RD00155D99BBEF
X-ODWebServer: eastus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 032BD55F74D14542A067CC50CF2D2C08 Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:43:34Z
Date: Thu, 13 Jan 2022 00:43:34 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4m4QFHB58xOaRhE-Myq1XS4-F16QdkLadH1DQYRCjA1v4EzRspS-jS6Qa0LbYVTvWKMqASSwnj7J0S8CT8342BrVz8naC1XhyQwsZDxYHiDsKWqfgRzhlWCatbX-KiEq26isN_r8BaycTBtSxLXssp8SnYHxIoWN4orB2Y1nzDz87xYXtoMizyAfamf3_g1UBoFTXpduDbO-eo97yi3NYTyA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4m4QFHB58xOaRhE-Myq1XS4-F16QdkLadH1DQYRCjA1v4EzRspS-jS6Qa0LbYVTvWKMqASSwnj7J0S8CT8342BrVz8naC1XhyQwsZDxYHiDsKWqfgRzhlWCatbX-KiEq26isN_r8BaycTBtSxLXssp8SnYHxIoWN4orB2Y1nzDz87xYXtoMizyAfamf3_g1UBoFTXpduDbO-eo97yi3NYTyA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB5SCH102220515
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: oQgDCAnHIEOCOJ2/TvvRlg.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 59f5.d6a0
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 35D4FB51469A46E3850828B0AD4BF4F0 Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:43:35Z
Date: Thu, 13 Jan 2022 00:43:35 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:emrfui3W2Yg=:yVVWJXk2GAd/eQhqBcl5RtLbf1K9tjXGXU631Aoe2n8=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=8; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4m9I-WXb_FACwf0q97jJsCvJOP70BT5w2WjysHvxQG_FmvQuXEwiaQRmToJZ5dR1snRULgd86WEaNJ4itHICK6CFu49tvL_z0ITeKH7WTTBgP5V24JNpZTO0peBToBXREjp-eD2f-ziNYuDl1USBat8ltotajQQa7ogs_DdwbVtzzyCAb9cb6PgkwXplv_b1TtEYH-4NKrE0ckL1fmnN1l3Q/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:eFE/wC3W2Yg=:JjBkNjd91BHB5q8F95qug5XiIsC0sY/VSDTxOytuKck=:F; domain=.live.com; path=/
Set-Cookie: xidseq=9; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:03:43 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:43:43 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RD00155D99BBEF
X-ODWebServer: eastus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 4840828CFD394CCAA11713A350DC0BA4 Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:43:43Z
Date: Thu, 13 Jan 2022 00:43:43 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4m9I-WXb_FACwf0q97jJsCvJOP70BT5w2WjysHvxQG_FmvQuXEwiaQRmToJZ5dR1snRULgd86WEaNJ4itHICK6CFu49tvL_z0ITeKH7WTTBgP5V24JNpZTO0peBToBXREjp-eD2f-ziNYuDl1USBat8ltotajQQa7ogs_DdwbVtzzyCAb9cb6PgkwXplv_b1TtEYH-4NKrE0ckL1fmnN1l3Q/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4m9I-WXb_FACwf0q97jJsCvJOP70BT5w2WjysHvxQG_FmvQuXEwiaQRmToJZ5dR1snRULgd86WEaNJ4itHICK6CFu49tvL_z0ITeKH7WTTBgP5V24JNpZTO0peBToBXREjp-eD2f-ziNYuDl1USBat8ltotajQQa7ogs_DdwbVtzzyCAb9cb6PgkwXplv_b1TtEYH-4NKrE0ckL1fmnN1l3Q/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB5SCH102220301
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: Ytet6W0Wt0CK8pG4WN7djA.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 59f5.d6a0
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: AC24F6A67AF54CBEB89CC417854D6C46 Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:43:44Z
Date: Thu, 13 Jan 2022 00:43:44 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:eFE/wC3W2Yg=:JjBkNjd91BHB5q8F95qug5XiIsC0sY/VSDTxOytuKck=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=9; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4mOM1rxJgJ-8chInwBzNO5-eMhuvn8mE9o4i_sZdp9oQUDLEOdnWMqkuI0dtX8m6x7-2rG6leW9MYSJj9CAbray9DVrn5OSnG6o7uUcJDyLGlnX50Caq4M0YEoL4-C35SYipjYxFbI2zDCvxZvTrpq-t5eFgt6mf21ETbPS_XERJ4Z_mdVrF4WJDSH00b6CYg0BDN5uhQ-XrIGYlCZrQnuTQ/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:9VKtxS3W2Yg=:dFqft9B99OgmhkoAqsjmkdgw9UCkpAKmXgGgYRoTjVY=:F; domain=.live.com; path=/
Set-Cookie: xidseq=10; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:03:52 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:43:53 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RD00155D99BDEA
X-ODWebServer: eastus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: B248659809784F75A47662FF8CC9A53A Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:43:52Z
Date: Thu, 13 Jan 2022 00:43:53 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4mOM1rxJgJ-8chInwBzNO5-eMhuvn8mE9o4i_sZdp9oQUDLEOdnWMqkuI0dtX8m6x7-2rG6leW9MYSJj9CAbray9DVrn5OSnG6o7uUcJDyLGlnX50Caq4M0YEoL4-C35SYipjYxFbI2zDCvxZvTrpq-t5eFgt6mf21ETbPS_XERJ4Z_mdVrF4WJDSH00b6CYg0BDN5uhQ-XrIGYlCZrQnuTQ/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4mOM1rxJgJ-8chInwBzNO5-eMhuvn8mE9o4i_sZdp9oQUDLEOdnWMqkuI0dtX8m6x7-2rG6leW9MYSJj9CAbray9DVrn5OSnG6o7uUcJDyLGlnX50Caq4M0YEoL4-C35SYipjYxFbI2zDCvxZvTrpq-t5eFgt6mf21ETbPS_XERJ4Z_mdVrF4WJDSH00b6CYg0BDN5uhQ-XrIGYlCZrQnuTQ/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB5SCH102220301
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: t1E/3T7hMEy0nABzcsvvgA.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 59f5.d6a0
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 1C57C4FACBEF48A8BF45784A28691311 Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:43:53Z
Date: Thu, 13 Jan 2022 00:43:53 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:9VKtxS3W2Yg=:dFqft9B99OgmhkoAqsjmkdgw9UCkpAKmXgGgYRoTjVY=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=10; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4mhOYPZU47GNoGYQPhMcB9-cmuRofa9atgV20wglwgRqXE2F_vAMGtbNOw6N67uiB_rq4bYv8kjmHyi1IFXkFlSlA8tYGn_Rjypd5-sw44Va3PxMFYJoGLgeX_cP9JTVOmkeaL3CqquMmlo2KABT61MxNqN5cML2fprdmNu_z3R4ZH9TYjlEmrYXho53OFT4PxJ2zozdzb1Svl67RFiiC-nA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:p9cRyy3W2Yg=:0f5XcNA+W7oBmHaYsfPK8MkVSXknbQ65sYLOjrZDXQc=:F; domain=.live.com; path=/
Set-Cookie: xidseq=11; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:04:01 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:44:02 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RD00155D99BDEA
X-ODWebServer: eastus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: DA37E081B45249C9AEF137EC18973DC5 Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:44:01Z
Date: Thu, 13 Jan 2022 00:44:02 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4mhOYPZU47GNoGYQPhMcB9-cmuRofa9atgV20wglwgRqXE2F_vAMGtbNOw6N67uiB_rq4bYv8kjmHyi1IFXkFlSlA8tYGn_Rjypd5-sw44Va3PxMFYJoGLgeX_cP9JTVOmkeaL3CqquMmlo2KABT61MxNqN5cML2fprdmNu_z3R4ZH9TYjlEmrYXho53OFT4PxJ2zozdzb1Svl67RFiiC-nA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4mhOYPZU47GNoGYQPhMcB9-cmuRofa9atgV20wglwgRqXE2F_vAMGtbNOw6N67uiB_rq4bYv8kjmHyi1IFXkFlSlA8tYGn_Rjypd5-sw44Va3PxMFYJoGLgeX_cP9JTVOmkeaL3CqquMmlo2KABT61MxNqN5cML2fprdmNu_z3R4ZH9TYjlEmrYXho53OFT4PxJ2zozdzb1Svl67RFiiC-nA/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB1PPF87E4CB283
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: B+Oo6uMkP0aTP/CqP8wP2Q.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 51d8.51b4
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 5DE23B402F8F4FF2A673EDF0B2618C03 Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:44:02Z
Date: Thu, 13 Jan 2022 00:44:02 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:p9cRyy3W2Yg=:0f5XcNA+W7oBmHaYsfPK8MkVSXknbQ65sYLOjrZDXQc=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=11; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4meXszciy-_ipQdPKkDPt8ivd5YyEMjKYMeJy9AYEBBCIBWAG4IzdaIb6RKfae_sVjz6Tf33eaKQZRL0hC-u1YkPpJXV3WDp0Om8Tttsplx61Zgvd25BkUcYpVt5gNRmu4Co1Le_7LNbivMl3dNECZZX3r71Z7_qLX-mrmZTJpXNVivxHRlVoWqbM9VDRh9UUnYrt0B7-mstPdzd3M3NdPxQ/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:vbt40C3W2Yg=:qAbe2jcK5+tn5uDsHS55TP7oNBRH+zgESdXy42klSRU=:F; domain=.live.com; path=/
Set-Cookie: xidseq=12; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:04:10 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:44:11 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RD00155D999523
X-ODWebServer: eastus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 796CA41933704233BCFAC4E9C5DE3B8D Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:44:10Z
Date: Thu, 13 Jan 2022 00:44:11 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4meXszciy-_ipQdPKkDPt8ivd5YyEMjKYMeJy9AYEBBCIBWAG4IzdaIb6RKfae_sVjz6Tf33eaKQZRL0hC-u1YkPpJXV3WDp0Om8Tttsplx61Zgvd25BkUcYpVt5gNRmu4Co1Le_7LNbivMl3dNECZZX3r71Z7_qLX-mrmZTJpXNVivxHRlVoWqbM9VDRh9UUnYrt0B7-mstPdzd3M3NdPxQ/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4meXszciy-_ipQdPKkDPt8ivd5YyEMjKYMeJy9AYEBBCIBWAG4IzdaIb6RKfae_sVjz6Tf33eaKQZRL0hC-u1YkPpJXV3WDp0Om8Tttsplx61Zgvd25BkUcYpVt5gNRmu4Co1Le_7LNbivMl3dNECZZX3r71Z7_qLX-mrmZTJpXNVivxHRlVoWqbM9VDRh9UUnYrt0B7-mstPdzd3M3NdPxQ/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB5SCH102220301
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: PyL7LJWN8U2H3eQv2K6XFQ.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 59f5.d6a0
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 472483ABB746401B988AEE58506DFAED Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:44:11Z
Date: Thu, 13 Jan 2022 00:44:11 GMT
Content-Length: 0
GET
302
https://onedrive.live.com/download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8
REQUEST
RESPONSE
BODY
GET /download?cid=C3C0A692803ED1E8&resid=C3C0A692803ED1E8%21112&authkey=ANjDOz6phEbw5-8 HTTP/1.1
User-Agent: lVali
Host: onedrive.live.com
Cookie: E=P:vbt40C3W2Yg=:qAbe2jcK5+tn5uDsHS55TP7oNBRH+zgESdXy42klSRU=:F; xid=83e8157b-5126-44d9-8570-81d37e3ff1d8&&RD0003FF9C3AAD&45; xidseq=12; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://lqxlpq.db.files.1drv.com/y4m0BlEv1YX95PV2PjGCqtA-YtVjNQ401tOEtAHUdFW7GtfRqGMBS5SzzbgPYlM9aRS6-Excq4Z6qxyC-GuKOzcdYwl5rKzG4D0U3ieyAcOXY0W7pxZID4iCpOnm6xET-ZXDyQfeW9GwZJgi06x4qQzukauTyYkg6iggBhD2a07At6AHBmrNiuF5Pra1MA5ODhxL7eA3tZ8UkTJJaFVurMtog/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
Set-Cookie: E=P:YSTc1S3W2Yg=:zTvl3YD9OdRBkf4Zu90S5KaLgldbZL67oxwMCzyXS/o=:F; domain=.live.com; path=/
Set-Cookie: xidseq=13; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Wed, 12-Jan-2022 23:04:19 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 20-Jan-2022 00:44:20 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RD00155D99BBEF
X-ODWebServer: eastus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: BDC351FAB221477A8B57BFDBB1B500C2 Ref B: SLAEDGE1112 Ref C: 2022-01-13T00:44:19Z
Date: Thu, 13 Jan 2022 00:44:20 GMT
Content-Length: 0
GET
403
https://lqxlpq.db.files.1drv.com/y4m0BlEv1YX95PV2PjGCqtA-YtVjNQ401tOEtAHUdFW7GtfRqGMBS5SzzbgPYlM9aRS6-Excq4Z6qxyC-GuKOzcdYwl5rKzG4D0U3ieyAcOXY0W7pxZID4iCpOnm6xET-ZXDyQfeW9GwZJgi06x4qQzukauTyYkg6iggBhD2a07At6AHBmrNiuF5Pra1MA5ODhxL7eA3tZ8UkTJJaFVurMtog/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4m0BlEv1YX95PV2PjGCqtA-YtVjNQ401tOEtAHUdFW7GtfRqGMBS5SzzbgPYlM9aRS6-Excq4Z6qxyC-GuKOzcdYwl5rKzG4D0U3ieyAcOXY0W7pxZID4iCpOnm6xET-ZXDyQfeW9GwZJgi06x4qQzukauTyYkg6iggBhD2a07At6AHBmrNiuF5Pra1MA5ODhxL7eA3tZ8UkTJJaFVurMtog/Vnscjnsahrzwgwkfalpfrrteqjetuny?download&psid=1 HTTP/1.1
User-Agent: lVali
Connection: Keep-Alive
Host: lqxlpq.db.files.1drv.com
HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: DB5SCH102220515
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: w+Je6yifhUWF79qw9PjgjQ.0
X-QosStats: {"ApiId":0,"ResultType":2,"SourcePropertyId":0,"TargetPropertyId":42}
X-ThrowSite: 59f5.d6a0
X-ClientErrorCode: AccessRestricted
X-ErrorCodeChain: AccessDenied,AccessRestricted
X-AsmVersion: UNKNOWN; 19.823.1213.2020
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 1A7860A3B194458E8CA8A4E0664857DC Ref B: SLAEDGE1118 Ref C: 2022-01-13T00:44:20Z
Date: Thu, 13 Jan 2022 00:44:20 GMT
Content-Length: 0
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
Snort Alerts
No Snort Alerts