Edit tour

Windows Analysis Report
http://gmail.com

Overview

General Information

Sample URL:	http://gmail.com
Analysis ID:	1427032
Infos:

Detection

Score:	2
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Found iframes

HTML body contains password input but no form action

HTML title does not match URL

Stores files to the Windows start menu directory

Classification

Process Tree

System is w10x64_ra

chrome.exe (PID: 7016 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http://gmail.com/ MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6184 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2204 --field-trial-handle=1948,i,11222838486592232605,4256594581684048127,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 4508 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5888 --field-trial-handle=1948,i,11222838486592232605,4256594581684048127,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6672 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5552 --field-trial-handle=1948,i,11222838486592232605,4256594581684048127,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0	HTTP Parser: Iframe src: https://accounts.youtube.com/accounts/CheckConnection?pmpo=https%3A%2F%2Faccounts.google.com&v=-1321404373&timestamp=1713300722730
Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0	HTTP Parser: Iframe src: /_/bscframe
Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0	HTTP Parser: Iframe src: https://accounts.youtube.com/accounts/CheckConnection?pmpo=https%3A%2F%2Faccounts.google.com&v=-1321404373&timestamp=1713300722730
Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0	HTTP Parser: Iframe src: /_/bscframe

Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0

HTTP Parser: <input type="password" .../> found but no <form action="...

HTTP Parser: Title: Gmail does not match URL

HTTP Parser: <input type="password" .../> found

Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0	HTTP Parser: No favicon
Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0	HTTP Parser: No favicon

Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0	HTTP Parser: No <meta name="author".. found
Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0	HTTP Parser: No <meta name="author".. found

Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0	HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&emr=1&followup=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F&ifkv=ARZ0qKIHrR-OP7wuyBHgl5kCupPQoNCArmS8_o9stByQ3swkcy54UbGwOeFbS3ltHD7t_ObTxPJ2Ug&osid=1&passive=1209600&service=mail&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1929935711%3A1713300719426040&theme=mn&ddm=0	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 204.79.197.200:443 -> 192.168.2.16:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.29.13:443 -> 192.168.2.16:49744 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 51.104.15.253:443 -> 192.168.2.16:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.16:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.16:49750 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 204.79.197.222:443 -> 192.168.2.16:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.214.29:443 -> 192.168.2.16:49759 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.214.29:443 -> 192.168.2.16:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.214.29:443 -> 192.168.2.16:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.42.254:443 -> 192.168.2.16:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.113.196.254:443 -> 192.168.2.16:49766 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 150.171.22.254:443 -> 192.168.2.16:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49800 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49801 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49798 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49803 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49802 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49799 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.96.52.198:443 -> 192.168.2.16:49826 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.211.118.80:443 -> 192.168.2.16:49827 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.96.52.198:443 -> 192.168.2.16:49830 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.29.13:443 -> 192.168.2.16:49829 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.214.29:443 -> 192.168.2.16:49832 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.29.13:443 -> 192.168.2.16:49831 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.96.63.25:443 -> 192.168.2.16:49836 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.96.63.25:443 -> 192.168.2.16:49839 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49841 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.214.29:443 -> 192.168.2.16:49843 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49847 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49848 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49849 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49850 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49851 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49852 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49853 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49854 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.22.113.133:443 -> 192.168.2.16:49855 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.22.113.133:443 -> 192.168.2.16:49856 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.22.113.133:443 -> 192.168.2.16:49857 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.22.113.133:443 -> 192.168.2.16:49858 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 51.104.15.253
Source: unknown	TCP traffic detected without corresponding DNS query: 51.104.15.253
Source: unknown	TCP traffic detected without corresponding DNS query: 51.104.15.253
Source: unknown	TCP traffic detected without corresponding DNS query: 51.104.15.253
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 51.104.15.253
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.29.13

Source: global traffic	HTTP traffic detected: GET /mail/u/0/ HTTP/1.1Host: mail.google.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /accounts/CheckConnection?pmpo=https%3A%2F%2Faccounts.google.com&v=-1321404373&timestamp=1713300722730 HTTP/1.1Host: accounts.youtube.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-wow64: ?0sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEI3L3NAQi5ys0BCMfRzQEIidPNAQjc080BCMvWzQEI9NbNAQiK180BCKfYzQEI+cDUFRi60s0BGMvYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://accounts.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEI3L3NAQi5ys0BCMfRzQEIidPNAQjc080BCMvWzQEI9NbNAQiK180BCKfYzQEI+cDUFRi60s0BGMvYzQEY642lFw==Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://accounts.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEIucrNAQiJ080BGMvYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /manifest/threshold.appcache HTTP/1.1Accept: /Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitOrigin: https://www.bing.comAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: www.bing.comConnection: Keep-AliveCookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1707317782133&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1707317784&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=66ka7AY8zWtDbHC&MD=LZZ2D3WS HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /AS/API/WindowsCortanaPane/V2/Suggestions?qry=st&setlang=en-CH&cc=CH&nohs=1&qfm=1&cp=2&cvid=06383237da004593a51c2cfed9916957&ig=4aa0e05b1fdf4fef8ea380075a1f6b48 HTTP/1.1Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: /Accept-Language: en-CHX-BM-ClientFeatures: FontV22,LightAnswers,PreviewPaneAvailable,RevStoreX-MSEdge-ExternalExp: d-thshld42,dsbdailyset_c,expmegaclick_cf,hashexpt3,iffsqloptwin10c,msbdsbedu9cf,wsbqfnewsynonym,wsbref-t,wsbswgc-t2X-MSEdge-ExternalExpType: JointCoordAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: www.bing.comConnection: Keep-AliveCookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1713300731144&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1713300733&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
Source: global traffic	HTTP traffic detected: GET /AS/API/WindowsCortanaPane/V2/Suggestions?qry=store&setlang=en-CH&cc=CH&nohs=1&qfm=1&cp=5&cvid=06383237da004593a51c2cfed9916957&ig=c3cac62bd6cb435c81e9969e065052f6 HTTP/1.1Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: /Accept-Language: en-CHX-BM-ClientFeatures: FontV22,LightAnswers,PreviewPaneAvailable,RevStoreX-MSEdge-ExternalExp: d-thshld42,dsbdailyset_c,expmegaclick_cf,hashexpt3,iffsqloptwin10c,msbdsbedu9cf,wsbqfnewsynonym,wsbref-t,wsbswgc-t2X-MSEdge-ExternalExpType: JointCoordAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: www.bing.comConnection: Keep-AliveCookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1713300731144&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1713300733&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
Source: global traffic	HTTP traffic detected: GET /AS/API/WindowsCortanaPane/V2/Suggestions?qry=s&setlang=en-CH&cc=CH&nohs=1&qfm=1&cp=1&cvid=06383237da004593a51c2cfed9916957&ig=fa13123c3b65485a8c0ad1d225b24786 HTTP/1.1Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: /Accept-Language: en-CHX-BM-ClientFeatures: FontV22,LightAnswers,PreviewPaneAvailable,RevStoreX-MSEdge-ExternalExp: d-thshld42,dsbdailyset_c,expmegaclick_cf,hashexpt3,iffsqloptwin10c,msbdsbedu9cf,wsbqfnewsynonym,wsbref-t,wsbswgc-t2X-MSEdge-ExternalExpType: JointCoordAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: www.bing.comConnection: Keep-AliveCookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1713300731144&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1713300733&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
Source: global traffic	HTTP traffic detected: GET /AS/API/WindowsCortanaPane/V2/Suggestions?qry=stor&setlang=en-CH&cc=CH&nohs=1&qfm=1&cp=4&cvid=06383237da004593a51c2cfed9916957&ig=65c7158fa9b5475fa1472641d85191b1 HTTP/1.1Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: /Accept-Language: en-CHX-BM-ClientFeatures: FontV22,LightAnswers,PreviewPaneAvailable,RevStoreX-MSEdge-ExternalExp: d-thshld42,dsbdailyset_c,expmegaclick_cf,hashexpt3,iffsqloptwin10c,msbdsbedu9cf,wsbqfnewsynonym,wsbref-t,wsbswgc-t2X-MSEdge-ExternalExpType: JointCoordAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: www.bing.comConnection: Keep-AliveCookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1713300731144&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1713300733&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
Source: global traffic	HTTP traffic detected: GET /AS/API/WindowsCortanaPane/V2/Suggestions?qry=sto&setlang=en-CH&cc=CH&nohs=1&qfm=1&cp=3&cvid=06383237da004593a51c2cfed9916957&ig=4eb84d662f164b0b9973aa16ab8f073b HTTP/1.1Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: /Accept-Language: en-CHX-BM-ClientFeatures: FontV22,LightAnswers,PreviewPaneAvailable,RevStoreX-MSEdge-ExternalExp: d-thshld42,dsbdailyset_c,expmegaclick_cf,hashexpt3,iffsqloptwin10c,msbdsbedu9cf,wsbqfnewsynonym,wsbref-t,wsbswgc-t2X-MSEdge-ExternalExpType: JointCoordAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: www.bing.comConnection: Keep-AliveCookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1713300731144&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1713300733&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
Source: global traffic	HTTP traffic detected: GET /conf/v2/asgw/fpconfig.min.json?monitorId=asgw HTTP/1.1Origin: https://www.bing.comReferer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: /Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: fp.msedge.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /v8.0/callerspecificdata/?market=CH&locale=en-CH&appversion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&catalogLocales=en-CH%2Cen-GB&oemId=Public&scmId=Public&moId=Public&hardware=arm0%2Carm640%2Cble0%2Ccmb0%2Ccmf0%2Ccmr0%2Cdcb1%2Cdcc1%2Cdx91%2Cdxa1%2Cdxb1%2Cgyr0%2Chce0%2Chdc0%2Chov0%2Chsa0%2Chss1%2Ckbd1%2Cm041%2Cm060%2Cm080%2Cm120%2Cm160%2Cm200%2Cm301%2Cm751%2CmA01%2Cmct0%2Cmgn0%2Cmic0%2Cmrc0%2Cmse1%2CmT01%2Cnfc0%2Crs10%2Crs20%2Crs30%2Crs40%2Crs50%2Crs60%2Ctch0%2Ctel0%2Cv010%2Cv020%2Cv040%2Cx641%2Cx860%2Cx86a640%2Cxbd0%2Cxbo0%2Cxbs0%2Cxbx0%2Cxgp0&packageHardware=dcb%2Cdcc%2Cdx9%2Cdxa%2Cdxb%2Cm30%2Cm75%2CmA0%2CmT0&pzn=1&preciseAppVersion=11910.1002.5.0&preciseDeviceFamilyVersion=2814751015241686&mfg=VMware%2C+Inc.&model=VMware20%2C1 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseOSIsGenuine: TrueAccept: /TASIGNORE: YESMS-PreciseDeviceFamilyVersion: 2814751015241686User-Agent: WindowsStore/11910.1002.5.0MS-CV: UxEEy7KhKESwa2v1.2Accept-Language: en-CHAuthorization: Bearer MSAHW1.0=t=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&p=Content-Length: 0Content-Type: application/json; charset=UTF-8Host: storeedgefd.dsx.mp.microsoft.comConnection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /v8.0/secondarycallerspecificdata/?market=CH&locale=en-CH&appversion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&catalogLocales=en-CH%2Cen-GB&oemId=Public&scmId=Public&moId=Public&hardware=arm0%2Carm640%2Cble0%2Ccmb0%2Ccmf0%2Ccmr0%2Cdcb1%2Cdcc1%2Cdx91%2Cdxa1%2Cdxb1%2Cgyr0%2Chce0%2Chdc0%2Chov0%2Chsa0%2Chss1%2Ckbd1%2Cm041%2Cm060%2Cm080%2Cm120%2Cm160%2Cm200%2Cm301%2Cm751%2CmA01%2Cmct0%2Cmgn0%2Cmic0%2Cmrc0%2Cmse1%2CmT01%2Cnfc0%2Crs10%2Crs20%2Crs30%2Crs40%2Crs50%2Crs60%2Ctch0%2Ctel0%2Cv010%2Cv020%2Cv040%2Cx641%2Cx860%2Cx86a640%2Cxbd0%2Cxbo0%2Cxbs0%2Cxbx0%2Cxgp0&packageHardware=dcb%2Cdcc%2Cdx9%2Cdxa%2Cdxb%2Cm30%2Cm75%2CmA0%2CmT0&preciseAppVersion=11910.1002.5.0&preciseDeviceFamilyVersion=2814751015241686 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseOSIsGenuine: TrueAccept: /TASIGNORE: YESMS-PreciseDeviceFamilyVersion: 2814751015241686User-Agent: WindowsStore/11910.1002.5.0MS-CV: UxEEy7KhKESwa2v1.1Accept-Language: en-CHAuthorization: Bearer MSAHW1.0=t=EwCoBF8iAQAUxokDaR6V1OYTSqu3AJSFH2TqWh0AAerKgtsf2pOlTKT7oTdo7Uceu1dZt/MHfrX3RnsNNyMPHM07k3VfGs5S8Dw/TeNZq8qkolPw30fES6JBwIj+mJr01HE5xxEI6vFmO08BNrGvcwkS2nj0u+3h+Y8WnLUZ1Gvrl1Mf3RYGstYGn+jox2xpSS7gdBFukoVq2vClZc5rGW5O8ypvBZZQn8NFqDv/MTpSzHEyKpdMJ6+sfg4a0yPzOyV2+dKYgcRhLnDDe77tukvPgkFuPtoWbhOEDQHrLl5vr35NngAYQqZxjYFC6UCt7B53MOH1L13dyfrPyR6QjD0TAbHom1glQWYiLOWrPWWnLfqmid5WEFWDC78RQI8DZgAACHAH+3DY/8tLeAMCp0cIJxN2OakUG7ztcRy5hX/26s5SG2jQWs2eaMtyA/XZMsD9XI64MOWt6hbnWnpWnqzGvRbgn3mZAwDG7WA3ZXhMGtQM0Okxbf/wsVPROYN2X8jmxDrO5EJnQCRIBP1mCvL5nHMJWrahZWQUwIzxZqFqRcG9ZYT6+A6DViwJauvNzQvEHpBXEILFXYc7lBydd0iHpLMwX6wyzTq/14hdcVUQZUJarjRdDJzbso1wbKzOj0fow5qqe6anSTmmYJyVtU3eKVRiriFggdz98cCYjkPAvO+qvtzsEMqGEjcSPP8zn9s7p27g5Ze+ypWEYmpGbCbs6Ofn5pB4pyrjRf08v6bpaVD3JOu14zN1Ms2H8uOuXKwkC7YQWNxDQ6rsKjSaSAI8m5mme0lhnH/hp/J3JvE46w9JSNYesRsVaTjs2zn3LBNJz9lsxKcz+NBDMSf8jq0M1FzgIdMPsh6RDchX3we/MM0hlpiqBto8FJd2+R11yIGB0LH6OVKT6XpMESK8Wy8A4wkItsz4MdocKvB/47Ld0dxlyfjpQEG1GTGbM6K0pVfya81N7dCnNIkvpslnERLkbGavSizggVUOtD0w/a/TFiLbJZgqW8X20xc/k8Bw+5ioFk9tHlFMI8TwyGOttF2E4inI1tYtTH85MEyQz31d0M0taDq7g2f6mHyCIBT1yRaLXfvIj0X9E7p64ULkTlGi7/BvmRlqeIlJlc994B+0cJDfyrLwrCW0vVatTJoExKrNnookFpwTN2FeZ/85fssGtdVxjlnxiURCIUi4fHJo1R2BZb7/QAEsdDL+9xVXqXRlp5RcZm4pmPLM1JAOMF4OZZ2WDKwW/wNJf5Wm1WwCQUjl4FxYBxnz0y67cqOBmr0+2Vqg4zvt7Ejzcfcz3uoxvCa7PiScCSan6V0BS1tsy/JJWIGoxk0cegBrfDFVI0AV1jx+9jdQ8RRe7+/QWy4b6CssoiwL/PvOAC6WW6o6RUKGmqnW3Rf5cVTvURKzZ5L9lAdtOrY+uVhjHgvqOaHUFBMD7DTLn9zkw6oWmINp64poZORLA7WgD2mueDsTcJ9nlHV/f/NYLLukQeBjOLo98pfi3XXl+zhJFpQ5CnX08ehpLJg6cv/gG6ropYLyruRCzJRQYZuGGEIaYAjS3C3XYLT6Di9fKpTjBW9xSN65LycjF3ieAw==&p=Content-Length: 0Content-Type: application/json; charset=UTF-8Host: storeedgefd.dsx.mp.microsoft.comConnection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /v8.0/callerspecificdata/?market=CH&locale=en-CH&appversion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&catalogLocales=en-CH%2Cen-GB&oemId=Public&scmId=Public&moId=Public&hardware=arm0%2Carm640%2Cble0%2Ccmb0%2Ccmf0%2Ccmr0%2Cdcb1%2Cdcc1%2Cdx91%2Cdxa1%2Cdxb1%2Cgyr0%2Chce0%2Chdc0%2Chov0%2Chsa0%2Chss1%2Ckbd1%2Cm041%2Cm060%2Cm080%2Cm120%2Cm160%2Cm200%2Cm301%2Cm751%2CmA01%2Cmct0%2Cmgn0%2Cmic0%2Cmrc0%2Cmse1%2CmT01%2Cnfc0%2Crs10%2Crs20%2Crs30%2Crs40%2Crs50%2Crs60%2Ctch0%2Ctel0%2Cv010%2Cv020%2Cv040%2Cx641%2Cx860%2Cx86a640%2Cxbd0%2Cxbo0%2Cxbs0%2Cxbx0%2Cxgp0&packageHardware=dcb%2Cdcc%2Cdx9%2Cdxa%2Cdxb%2Cm30%2Cm75%2CmA0%2CmT0&pzn=0&preciseAppVersion=11910.1002.5.0&preciseDeviceFamilyVersion=2814751015241686&mfg=VMware%2C+Inc.&model=VMware20%2C1 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseOSIsGenuine: TrueAccept: /TASIGNORE: YESMS-PreciseDeviceFamilyVersion: 2814751015241686User-Agent: WindowsStore/11910.1002.5.0MS-CV: UxEEy7KhKESwa2v1.3Accept-Language: en-CHAuthorization: Bearer MSAHW1.0=t=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&p=Content-Length: 0Content-Type: application/json; charset=UTF-8Host: storeedgefd.dsx.mp.microsoft.comConnection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /v8.0/pages/chrome?appversion=11910.1002.0.0&market=CH&locale=en-CH&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x/h2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j/E7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM/gOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga/fF1TaSmfcmlDS9rqcl8k/sG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt/AR/IwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk/+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB/Pfrc5UPdhNsb8zc8EU1Q4WKN+/y+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB/iJ1R1g/+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc/gVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK/50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW/TjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3/GSOz4cgioMMmrVpIMK/8M6fIIUUehZ6+9YmNpqEG/FvQZpNNkbyafd4/sawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr/hsmEu13e5mNyk+xISTJQ+US9A/Uo0NHxKQIjEev3F/eEgP/ob9LKMRNYwfqz+mNLUtJwDmrA9N/Yk62Aeasba4jU7a/wTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr/DCmzZjqfcG2K73TdzvnIlEb/lv2b6wB+L7WfkP0kR9oGUf/+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v/rLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb/h9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU/wh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv/OgWnroYVXiNqCbBDZ/QGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n/nhKSowEOrNqly/u8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy/MQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm/VcsrY7TPk8jC/IAqruaud2eIV0cKnnFN2cRll/jBd4vz+vv7ggjlZ6SbF8vKaK1hGShkUg42Mey50s4AgTtBQyUdt89TlbWVXiy2Jr67zoU5n0koGCpNK6qdq+rcdA74ut+iCme65mwi2gdSzyk4RbTL/3CZj9lHbWY7ZElTpS1EPyDPHHdpvrEshHN6yFgyo/6tKKlm785Lr6RKCFYlgFY1MZnP+xjwMjf1RmTkJzm52pn9xfXrfSRd0rWMYjz5mpvm1SU7Tas+OsxQZkTtAZ2zsXwvOzYvqow9rVsaxs2Am89kHxbaA0y1FYLZDQQIIlaUBdTMbgdGqMMe3jpkgtoytzm2M1rPk5xnXpzCe4XUzJKXT9VDkoG9xsCW7egMHEDglbp5a3g8bm4qNP7qC2HHQ90I4zIBpt+AosVvZc3YB/vORSsNvT2J3TF4DG/EB8UfdaxKrb2tUc9SXzOgdT/Mkj9AmHRFuLSR+Q3Ng5KB4HTesN5eDyNDUPvSEpCWw9AGeJIUaI1CW5upF4Hmf6/EkdGdi18FcGl4HM+pMNASrsvNiSbR/Uq/Mqk6BFQFiWNCjFDPWgoBhqK2Px3XNaiMwm2kHUg+/4z8s79bg7bwZKtHHdBxRo
Source: global traffic	HTTP traffic detected: GET /v8.0/pages/home?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&hydrateCount=3&deviceFamilyVersion=2814750970478592&pzn=0&userSegments=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
Source: global traffic	HTTP traffic detected: GET /apc/trans.gif?e3bfee56476065f0ab149b748f731e37 HTTP/1.1Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: image/png,image/svg+xml,image/;q=0.8,/*;q=0.5Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: l-ring.msedge.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /apc/trans.gif?abf6b0b4363a8fb8ec7d6cce4a4b9cc3 HTTP/1.1Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: image/png,image/svg+xml,image/;q=0.8,/*;q=0.5Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: l-ring.msedge.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /v8.0/pages/home?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&hydrateCount=3&deviceFamilyVersion=2814750970478592&pzn=0&userSegments=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
Source: global traffic	HTTP traffic detected: GET /apc/trans.gif?dc1aa3056d31478dcc0798188196ffde HTTP/1.1Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: image/png,image/svg+xml,image/;q=0.8,/*;q=0.5Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: teams-ring.msedge.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /apc/trans.gif?7bf22ffe445c3280828f728bc0dbb2b3 HTTP/1.1Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: image/png,image/svg+xml,image/;q=0.8,/*;q=0.5Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: teams-ring.msedge.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /apc/trans.gif?be502d8ba45b794bb9a4ed7b34197dc5 HTTP/1.1Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/InitAccept: image/png,image/svg+xml,image/;q=0.8,/*;q=0.5Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: ln-ring.msedge.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /v8.0/recommendations/collections/Collection/Home.FC1?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&pageSize=15&cardsEnabled=true&pzn=0 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseuserSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c2024
Source: global traffic	HTTP traffic detected: GET /v8.0/autosuggest?market=CH&locale=en-CH&appVersion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&cardsEnabled=true&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x%2fh2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j%2fE7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM%2fgOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga%2ffF1TaSmfcmlDS9rqcl8k%2fsG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt%2fAR%2fIwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk%2f+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB%2fPfrc5UPdhNsb8zc8EU1Q4WKN+%2fy+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB%2fiJ1R1g%2f+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc%2fgVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK%2f50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr%2fhsmEu13e5mNyk+xISTJQ+US9A%2fUo0NHxKQIjEev3F%2feEgP%2fob9LKMRNYwfqz+mNLUtJwDmrA9N%2fYk62Aeasba4jU7a%2fwTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr%2fDCmzZjqfcG2K73TdzvnIlEb%2flv2b6wB+L7WfkP0kR9oGUf%2f+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v%2frLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb%2fh9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU%2fwh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv%2fOgWnroYVXiNqCbBDZ%2fQGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n%2fnhKSowEOrNqly%2fu8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy%2fMQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm%2fVcsrY7TPk8jC%2fIAqruaud2eIV0cKnnFN2cRll%2fjBd4vz+vv7ggjlZ6SbF8vKaK1hGShkUg42Mey50s4AgTtBQyUdt89TlbWVXiy2Jr67zoU5n0koGCpNK6qdq+rcdA74ut+iCme65mwi2gdSzyk4RbTL%2f3CZj9lHbWY7ZElTpS1EPyDPHHdpvrEshHN6yFgyo%2f6tKKlm785Lr6RKCFYlgFY1MZnP+xjwMjf1RmTkJzm52pn9xfXrfSRd0rWMYjz5mpvm1SU7Tas+OsxQZkTtAZ2zsXwvOzYvqow9rVsaxs2Am89kHxbaA0y1FYLZDQQIIlaUBdTMbgdGqMMe3jpkgtoytzm2M1rPk5xnXpzCe4XUzJKXT9VDkoG9xsCW7egMHEDglbp5a3g8bm4qNP7qC2HHQ90I4zIBpt+AosVvZc3YB%2fvORSsNvT2J3TF4DG%2fEB8UfdaxKrb2tUc9SXzOgdT%2fMkj9AmHRFuLSR+Q3Ng5KB4HTesN5eDyNDUPvSEpCWw9AGeJIUaI1CW
Source: global traffic	HTTP traffic detected: GET /v8.0/recommendations/collections/TopFree?market=CH&locale=en-CH&mediaType=APPS&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&pageSize=15&cardsEnabled=true&pzn=0 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseuserSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c2
Source: global traffic	HTTP traffic detected: GET /v8.0/autosuggest?market=CH&locale=en-CH&appVersion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&cardsEnabled=true&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x%2fh2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j%2fE7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM%2fgOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga%2ffF1TaSmfcmlDS9rqcl8k%2fsG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt%2fAR%2fIwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk%2f+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB%2fPfrc5UPdhNsb8zc8EU1Q4WKN+%2fy+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB%2fiJ1R1g%2f+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc%2fgVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK%2f50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr%2fhsmEu13e5mNyk+xISTJQ+US9A%2fUo0NHxKQIjEev3F%2feEgP%2fob9LKMRNYwfqz+mNLUtJwDmrA9N%2fYk62Aeasba4jU7a%2fwTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr%2fDCmzZjqfcG2K73TdzvnIlEb%2flv2b6wB+L7WfkP0kR9oGUf%2f+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v%2frLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb%2fh9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU%2fwh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv%2fOgWnroYVXiNqCbBDZ%2fQGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n%2fnhKSowEOrNqly%2fu8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy%2fMQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm%2fVcsrY7TPk8jC%2fIAqruaud2eIV0cKnnFN2cRll%2fjBd4vz+vv7ggjlZ6SbF8vKaK1hGShkUg42Mey50s4AgTtBQyUdt89TlbWVXiy2Jr67zoU5n0koGCpNK6qdq+rcdA74ut+iCme65mwi2gdSzyk4RbTL%2f3CZj9lHbWY7ZElTpS1EPyDPHHdpvrEshHN6yFgyo%2f6tKKlm785Lr6RKCFYlgFY1MZnP+xjwMjf1RmTkJzm52pn9xfXrfSRd0rWMYjz5mpvm1SU7Tas+OsxQZkTtAZ2zsXwvOzYvqow9rVsaxs2Am89kHxbaA0y1FYLZDQQIIlaUBdTMbgdGqMMe3jpkgtoytzm2M1rPk5xnXpzCe4XUzJKXT9VDkoG9xsCW7egMHEDglbp5a3g8bm4qNP7qC2HHQ90I4zIBpt+AosVvZc3YB%2fvORSsNvT2J3TF4DG%2fEB8UfdaxKrb2tUc9SXzOgdT%2fMkj9AmHRFuLSR+Q3Ng5KB4HTesN5eDyNDUPvSEpCWw9AGeJIUaI1CW
Source: global traffic	HTTP traffic detected: GET /v8.0/autosuggest?market=CH&locale=en-CH&appVersion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&cardsEnabled=true&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x%2fh2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j%2fE7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM%2fgOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga%2ffF1TaSmfcmlDS9rqcl8k%2fsG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt%2fAR%2fIwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk%2f+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB%2fPfrc5UPdhNsb8zc8EU1Q4WKN+%2fy+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB%2fiJ1R1g%2f+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc%2fgVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK%2f50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr%2fhsmEu13e5mNyk+xISTJQ+US9A%2fUo0NHxKQIjEev3F%2feEgP%2fob9LKMRNYwfqz+mNLUtJwDmrA9N%2fYk62Aeasba4jU7a%2fwTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr%2fDCmzZjqfcG2K73TdzvnIlEb%2flv2b6wB+L7WfkP0kR9oGUf%2f+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v%2frLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb%2fh9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU%2fwh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv%2fOgWnroYVXiNqCbBDZ%2fQGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n%2fnhKSowEOrNqly%2fu8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy%2fMQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm%2fVcsrY7TPk8jC%2fIAqruaud2eIV0cKnnFN2cRll%2fjBd4vz+vv7ggjlZ6SbF8vKaK1hGShkUg42Mey50s4AgTtBQyUdt89TlbWVXiy2Jr67zoU5n0koGCpNK6qdq+rcdA74ut+iCme65mwi2gdSzyk4RbTL%2f3CZj9lHbWY7ZElTpS1EPyDPHHdpvrEshHN6yFgyo%2f6tKKlm785Lr6RKCFYlgFY1MZnP+xjwMjf1RmTkJzm52pn9xfXrfSRd0rWMYjz5mpvm1SU7Tas+OsxQZkTtAZ2zsXwvOzYvqow9rVsaxs2Am89kHxbaA0y1FYLZDQQIIlaUBdTMbgdGqMMe3jpkgtoytzm2M1rPk5xnXpzCe4XUzJKXT9VDkoG9xsCW7egMHEDglbp5a3g8bm4qNP7qC2HHQ90I4zIBpt+AosVvZc3YB%2fvORSsNvT2J3TF4DG%2fEB8UfdaxKrb2tUc9SXzOgdT%2fMkj9AmHRFuLSR+Q3Ng5KB4HTesN5eDyNDUPvSEpCWw9AGeJIUaI1CW
Source: global traffic	HTTP traffic detected: GET /v8.0/recommendations/collections/TopFree?market=CH&locale=en-CH&mediaType=GAMES&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&pageSize=15&cardsEnabled=true&pzn=0 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseuserSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c
Source: global traffic	HTTP traffic detected: GET /v8.0/autosuggest?market=CH&locale=en-CH&appVersion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&cardsEnabled=true&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x%2fh2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j%2fE7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM%2fgOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga%2ffF1TaSmfcmlDS9rqcl8k%2fsG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt%2fAR%2fIwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk%2f+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB%2fPfrc5UPdhNsb8zc8EU1Q4WKN+%2fy+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB%2fiJ1R1g%2f+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc%2fgVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK%2f50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr%2fhsmEu13e5mNyk+xISTJQ+US9A%2fUo0NHxKQIjEev3F%2feEgP%2fob9LKMRNYwfqz+mNLUtJwDmrA9N%2fYk62Aeasba4jU7a%2fwTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr%2fDCmzZjqfcG2K73TdzvnIlEb%2flv2b6wB+L7WfkP0kR9oGUf%2f+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v%2frLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb%2fh9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU%2fwh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv%2fOgWnroYVXiNqCbBDZ%2fQGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n%2fnhKSowEOrNqly%2fu8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy%2fMQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm%2fVcsrY7TPk8jC%2fIAqruaud2eIV0cKnnFN2cRll%2fjBd4vz+vv7ggjlZ6SbF8vKaK1hGShkUg42Mey50s4AgTtBQyUdt89TlbWVXiy2Jr67zoU5n0koGCpNK6qdq+rcdA74ut+iCme65mwi2gdSzyk4RbTL%2f3CZj9lHbWY7ZElTpS1EPyDPHHdpvrEshHN6yFgyo%2f6tKKlm785Lr6RKCFYlgFY1MZnP+xjwMjf1RmTkJzm52pn9xfXrfSRd0rWMYjz5mpvm1SU7Tas+OsxQZkTtAZ2zsXwvOzYvqow9rVsaxs2Am89kHxbaA0y1FYLZDQQIIlaUBdTMbgdGqMMe3jpkgtoytzm2M1rPk5xnXpzCe4XUzJKXT9VDkoG9xsCW7egMHEDglbp5a3g8bm4qNP7qC2HHQ90I4zIBpt+AosVvZc3YB%2fvORSsNvT2J3TF4DG%2fEB8UfdaxKrb2tUc9SXzOgdT%2fMkj9AmHRFuLSR+Q3Ng5KB4HTesN5eDyNDUPvSEpCWw9AGeJIUaI1CW
Source: global traffic	HTTP traffic detected: GET /v8.0/pages/search?appversion=11910.1002.0.0&market=CH&locale=en-CH&catalogLocales=en-CH%2Cen-GB&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&oemId=Public&scmId=Public&moId=Public&query=trello&navItemId=Home&pzn=0&userSegments=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
Source: global traffic	HTTP traffic detected: GET /v8.0/pages/searchAllResults?appVersion=11910.1002.0.0&market=CH&locale=en-CH&deviceFamily=windows.desktop&query=trello&mediaType=all&availableOn=windows.desktop&deviceFamilyVersion=2814750970478592&catalogLocales=en-CH%2Cen-GB&oemId=Public&scmId=Public&moId=Public&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x/h2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j/E7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM/gOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga/fF1TaSmfcmlDS9rqcl8k/sG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt/AR/IwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk/+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB/Pfrc5UPdhNsb8zc8EU1Q4WKN+/y+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB/iJ1R1g/+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc/gVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK/50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW/TjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3/GSOz4cgioMMmrVpIMK/8M6fIIUUehZ6+9YmNpqEG/FvQZpNNkbyafd4/sawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr/hsmEu13e5mNyk+xISTJQ+US9A/Uo0NHxKQIjEev3F/eEgP/ob9LKMRNYwfqz+mNLUtJwDmrA9N/Yk62Aeasba4jU7a/wTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr/DCmzZjqfcG2K73TdzvnIlEb/lv2b6wB+L7WfkP0kR9oGUf/+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v/rLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb/h9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU/wh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv/OgWnroYVXiNqCbBDZ/QGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n/nhKSowEOrNqly/u8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy/MQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm/VcsrY7TPk8jC/IAqruaud2eIV0cKnnFN2cRll/jBd4vz+vv7ggjlZ6SbF8vKaK1hGShkUg42Mey50s4AgTtBQyUdt89TlbWVXiy2Jr67zoU5n0koGCpNK6qdq+rcdA74ut+iCme65mwi2gdSzyk4RbTL/3CZj9lHbWY7ZElTpS1EPyDPHHdpvrEshHN6yFgyo/6tKKlm785Lr6RKCFYlgFY1MZnP+xjwMjf1RmTkJzm52pn9xfXrfSRd0rWMYjz5mpvm1SU7Tas+OsxQZkTtAZ2zsXwvOzYvqow9rVsaxs2Am89kHxbaA0y1FYLZDQQIIlaUBdTMbgdGqMMe3jpkgtoytzm2M1rPk5xnXpzCe4XUzJKXT9VDkoG9xsCW7egMHEDglbp5a3g8bm4qNP7qC2HHQ90I4zIBpt+AosVvZc3YB/vORSsNvT2J3TF4DG/EB8UfdaxKrb2tUc9SXzOgdT/Mkj9AmHRFuLSR+Q3Ng5KB4HTesN
Source: global traffic	HTTP traffic detected: GET /v8.0/search?market=CH&locale=en-CH&pageSize=15&query=trello&mediaType=TV&moId=Public&oemId=Public&scmId=Public&deviceFamily=windows.desktop&appVersion=11910.1002.0.0&catalogLocales=en-CH%2cen-GB&availableOn=windows.desktop&deviceFamilyVersion=2814750970478592&&cardsEnabled=true&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x%2fh2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j%2fE7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM%2fgOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga%2ffF1TaSmfcmlDS9rqcl8k%2fsG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt%2fAR%2fIwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk%2f+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB%2fPfrc5UPdhNsb8zc8EU1Q4WKN+%2fy+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB%2fiJ1R1g%2f+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc%2fgVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK%2f50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr%2fhsmEu13e5mNyk+xISTJQ+US9A%2fUo0NHxKQIjEev3F%2feEgP%2fob9LKMRNYwfqz+mNLUtJwDmrA9N%2fYk62Aeasba4jU7a%2fwTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr%2fDCmzZjqfcG2K73TdzvnIlEb%2flv2b6wB+L7WfkP0kR9oGUf%2f+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v%2frLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb%2fh9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU%2fwh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv%2fOgWnroYVXiNqCbBDZ%2fQGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n%2fnhKSowEOrNqly%2fu8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy%2fMQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm%2fVcsrY7TPk8jC%2fIAqruaud2eIV0cKnnFN2cRll%2fjBd4vz+vv7ggjlZ6SbF8vKaK1hGShkUg42Mey50s4AgTtBQyUdt89TlbWVXiy2Jr67zoU5n0koGCpNK6qdq+rcdA74ut+iCme65mwi2gdSzyk4RbTL%2f3CZj9lHbWY7ZElTpS1EPyDPHHdpvrEshHN6yFgyo%2f6tKKlm785Lr6RKCFYlgFY1MZnP+xjwMjf1RmTkJzm52pn9xfXrfSRd0rWMYjz5mpvm1SU7Tas+OsxQZkTtAZ2zsXwvOzYvqow9rVsaxs2Am89kHxbaA0y1FYLZDQQIIlaUBdTMbgdGqMMe3jpkgtoytzm2M1rPk5xnXpzCe4XUzJKXT9VDkoG9xsCW7egMHEDglbp5a3g8bm4qNP
Source: global traffic	HTTP traffic detected: GET /7/713f2900-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190 HTTP/1.1Accept: /Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: musicart.xboxlive.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /7/f5855100-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190 HTTP/1.1Accept: /Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: musicart.xboxlive.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /7/b7654500-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190 HTTP/1.1Accept: /Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: musicart.xboxlive.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /7/45172400-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190 HTTP/1.1Accept: /Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: musicart.xboxlive.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /7/fd965100-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190 HTTP/1.1Accept: /Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: musicart.xboxlive.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /7/27ea1000-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190 HTTP/1.1Accept: /Accept-Language: en-CHAccept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: musicart.xboxlive.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /v8.0/pages/pdp?productId=9NBLGGH4XXVW&itemType=Apps&appversion=11910.1002.0.0&market=CH&locale=en-CH&deviceFamily=Windows.Desktop&catalogLocales=en-CH%2Cen-GB&hardware=arm0%2Carm640%2Cble0%2Ccmb0%2Ccmf0%2Ccmr0%2Cdcb1%2Cdcc1%2Cdx91%2Cdxa1%2Cdxb1%2Cgyr0%2Chce0%2Chdc0%2Chov0%2Chsa0%2Chss1%2Ckbd1%2Cm041%2Cm060%2Cm080%2Cm120%2Cm160%2Cm200%2Cm301%2Cm751%2CmA01%2Cmct0%2Cmgn0%2Cmic0%2Cmrc0%2Cmse1%2CmT01%2Cnfc0%2Crs10%2Crs20%2Crs30%2Crs40%2Crs50%2Crs60%2Ctch0%2Ctel0%2Cv010%2Cv020%2Cv040%2Cx641%2Cx860%2Cx86a640%2Cxbd0%2Cxbo0%2Cxbs0%2Cxbx0%2Cxgp0&packageHardware=dcb%2Cdcc%2Cdx9%2Cdxa%2Cdxb%2Cm30%2Cm75%2CmA0%2CmT0&preciseDeviceFamilyVersion=2814751015241686&deviceFamilyVersion=2814750970478592&architecture=x64&deviceFamilyFilter=Windows.Desktop&displayMode=3&oemId=Public&scmId=Public&moId=Public&hydrateCount=0&cacheable=False&pzn=0&userSegments=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
Source: global traffic	HTTP traffic detected: GET /v8.0/ratings/summary/product/9NBLGGH4XXVW?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&deviceFamilyFilter=Windows.Desktop&hardware=arm0%2carm640%2cble0%2ccmb0%2ccmf0%2ccmr0%2cdcb1%2cdcc1%2cdx91%2cdxa1%2cdxb1%2cgyr0%2chce0%2chdc0%2chov0%2chsa0%2chss1%2ckbd1%2cm041%2cm060%2cm080%2cm120%2cm160%2cm200%2cm301%2cm751%2cmA01%2cmct0%2cmgn0%2cmic0%2cmrc0%2cmse1%2cmT01%2cnfc0%2crs10%2crs20%2crs30%2crs40%2crs50%2crs60%2ctch0%2ctel0%2cv010%2cv020%2cv040%2cx641%2cx860%2cx86a640%2cxbd0%2cxbo0%2cxbs0%2cxbx0%2cxgp0&packageHardware=dcb%2cdcc%2cdx9%2cdxa%2cdxb%2cm30%2cm75%2cmA0%2cmT0&architecture=x64&displayMode=3&cardsEnabled=true&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x%2fh2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j%2fE7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM%2fgOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga%2ffF1TaSmfcmlDS9rqcl8k%2fsG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt%2fAR%2fIwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk%2f+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB%2fPfrc5UPdhNsb8zc8EU1Q4WKN+%2fy+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB%2fiJ1R1g%2f+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc%2fgVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK%2f50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr%2fhsmEu13e5mNyk+xISTJQ+US9A%2fUo0NHxKQIjEev3F%2feEgP%2fob9LKMRNYwfqz+mNLUtJwDmrA9N%2fYk62Aeasba4jU7a%2fwTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr%2fDCmzZjqfcG2K73TdzvnIlEb%2flv2b6wB+L7WfkP0kR9oGUf%2f+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v%2frLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb%2fh9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU%2fwh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv%2fOgWnroYVXiNqCbBDZ%2fQGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n%2fnhKSowEOrNqly%2fu8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy%2fMQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm%2fVcsrY7TPk8jC%2fIAqruaud2eIV0cKnnFN2cRll%2fjBd4vz+vv7ggjlZ6Sb
Source: global traffic	HTTP traffic detected: GET /v8.0/recommendations/bundlesByProduct/9NBLGGH4XXVW?market=CH&locale=en-CH&architecture=x64&moId=Public&oemId=Public&scmId=Public&hardware=arm0%2carm640%2cble0%2ccmb0%2ccmf0%2ccmr0%2cdcb1%2cdcc1%2cdx91%2cdxa1%2cdxb1%2cgyr0%2chce0%2chdc0%2chov0%2chsa0%2chss1%2ckbd1%2cm041%2cm060%2cm080%2cm120%2cm160%2cm200%2cm301%2cm751%2cmA01%2cmct0%2cmgn0%2cmic0%2cmrc0%2cmse1%2cmT01%2cnfc0%2crs10%2crs20%2crs30%2crs40%2crs50%2crs60%2ctch0%2ctel0%2cv010%2cv020%2cv040%2cx641%2cx860%2cx86a640%2cxbd0%2cxbo0%2cxbs0%2cxbx0%2cxgp0&packageHardware=dcb%2cdcc%2cdx9%2cdxa%2cdxb%2cm30%2cm75%2cmA0%2cmT0&deviceFamily=Windows.Desktop&catalogLocales=en-CH%2cen-GB&pageSize=15&appVersion=11910.1002.0.0&cardsEnabled=true&pzn=0 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseuserSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,pr
Source: global traffic	HTTP traffic detected: GET /v8.0/filters/pdpReview?market=CH&locale=en-CH&appVersion=11910.1002.0.0&architecture=x64&hardware=arm0%2carm640%2cble0%2ccmb0%2ccmf0%2ccmr0%2cdcb1%2cdcc1%2cdx91%2cdxa1%2cdxb1%2cgyr0%2chce0%2chdc0%2chov0%2chsa0%2chss1%2ckbd1%2cm041%2cm060%2cm080%2cm120%2cm160%2cm200%2cm301%2cm751%2cmA01%2cmct0%2cmgn0%2cmic0%2cmrc0%2cmse1%2cmT01%2cnfc0%2crs10%2crs20%2crs30%2crs40%2crs50%2crs60%2ctch0%2ctel0%2cv010%2cv020%2cv040%2cx641%2cx860%2cx86a640%2cxbd0%2cxbo0%2cxbs0%2cxbx0%2cxgp0&packageHardware=dcb%2cdcc%2cdx9%2cdxa%2cdxb%2cm30%2cm75%2cmA0%2cmT0&deviceFamily=Windows.Desktop&catalogLocales=en-CH%2cen-GB&deviceFamilyFilter=Windows.Desktop&productId=9NBLGGH4XXVW&displayMode=3&oemId=Public&scmId=Public&moId=Public&deviceFamilyVersion=2814750970478592&deviceFamilyVersion=2814750970478592&cardsEnabled=true&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x%2fh2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j%2fE7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM%2fgOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga%2ffF1TaSmfcmlDS9rqcl8k%2fsG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt%2fAR%2fIwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk%2f+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB%2fPfrc5UPdhNsb8zc8EU1Q4WKN+%2fy+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB%2fiJ1R1g%2f+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc%2fgVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK%2f50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr%2fhsmEu13e5mNyk+xISTJQ+US9A%2fUo0NHxKQIjEev3F%2feEgP%2fob9LKMRNYwfqz+mNLUtJwDmrA9N%2fYk62Aeasba4jU7a%2fwTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr%2fDCmzZjqfcG2K73TdzvnIlEb%2flv2b6wB+L7WfkP0kR9oGUf%2f+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v%2frLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb%2fh9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU%2fwh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv%2fOgWnroYVXiNqCbBDZ%2fQGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n%2fnhKSowEOrNqly%2fu8roZhlj8tuvEOmUDeo75kzNxDAQkyuU
Source: global traffic	HTTP traffic detected: GET /v8.0/ratings/product/9NBLGGH4XXVW?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&deviceFamilyFilter=Windows.Desktop&hardware=arm0%2carm640%2cble0%2ccmb0%2ccmf0%2ccmr0%2cdcb1%2cdcc1%2cdx91%2cdxa1%2cdxb1%2cgyr0%2chce0%2chdc0%2chov0%2chsa0%2chss1%2ckbd1%2cm041%2cm060%2cm080%2cm120%2cm160%2cm200%2cm301%2cm751%2cmA01%2cmct0%2cmgn0%2cmic0%2cmrc0%2cmse1%2cmT01%2cnfc0%2crs10%2crs20%2crs30%2crs40%2crs50%2crs60%2ctch0%2ctel0%2cv010%2cv020%2cv040%2cx641%2cx860%2cx86a640%2cxbd0%2cxbo0%2cxbs0%2cxbx0%2cxgp0&packageHardware=dcb%2cdcc%2cdx9%2cdxa%2cdxb%2cm30%2cm75%2cmA0%2cmT0&architecture=x64&orderBy=5&pageSize=10&displayMode=3&cardsEnabled=true&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x%2fh2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j%2fE7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM%2fgOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga%2ffF1TaSmfcmlDS9rqcl8k%2fsG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt%2fAR%2fIwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk%2f+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB%2fPfrc5UPdhNsb8zc8EU1Q4WKN+%2fy+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB%2fiJ1R1g%2f+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc%2fgVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK%2f50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr%2fhsmEu13e5mNyk+xISTJQ+US9A%2fUo0NHxKQIjEev3F%2feEgP%2fob9LKMRNYwfqz+mNLUtJwDmrA9N%2fYk62Aeasba4jU7a%2fwTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr%2fDCmzZjqfcG2K73TdzvnIlEb%2flv2b6wB+L7WfkP0kR9oGUf%2f+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v%2frLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb%2fh9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU%2fwh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv%2fOgWnroYVXiNqCbBDZ%2fQGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n%2fnhKSowEOrNqly%2fu8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy%2fMQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm%2fVcsrY7TPk8jC%2fIAqruaud2eIV0cKnnFN2cRll%2fjBd4
Source: global traffic	HTTP traffic detected: GET /v7.0/products/9NBLGGH4XXVW/?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.17.1.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/9NBLGGH4XXVW/0010?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=EwCYBF8iAQAU28X5hAkumfrDedQ+i9LVQH6YOAgAAeuljf3yihTEb0apRr7s//ERrDruG4IRMP9IXDkFxviXUw28eaQoqwUfAaf1CIXjUf4cqPcVoQ1YaTTH3WKts+FtW+PWLvB6YF0YZYPvAC0l9SIuoRQTxmnR/EgZoAjzXFZnnwQ7II1bt7T4yMgl1nfEc5Ym5KXArrfosIUrvtCVvEwiawftHd1niYtLCC4TCQtUejyJ0dSiwtVQXgBh/gqiR6aI++bLpENAFt8UopAffUqo45eUe6uLJXCIyd5YE55HTT5NoQUhydKLsM29vlxhkjBwJrQhRQdTfjnV8jyc3WCPQrGh4LQb2I8Otbecp5k1YTNBXtcqecmrAX4XXzsDZgAACElLWVbRXpKaaAMiJ7jLPDfqXRgcw4Ypj3Iha2yQCEZuCpDzPvzyjb3ZdC2UMWFYSM5olCyp0dLZjvwUeoAqs35QdlWZDQZla16FurEogZo+QIR8ZKNOh97S9IKRvkCT3pN/pW5AMK6bFZ/GAcpzLlG13vXPymCfa++xNe6Lvih5GrLQD/Y926PZVScuK00BiXDn2CZ54u02k4yx6s84Q/Zh3yS2i0yzqgLBr0lbHQ++cdv5C0mWbMoNpOT5cV3AW7DMH8lat6egIDLzHvznOBmyKwoR9Xmtlk3W1DCKh25+tg2Obmpxyb9fbZvsFxlroP8IBNYnsnoyuk8NbTYAxDuIbCpn83S+rQ5J72z9g02r8KLCOtRbCvT8gHYjUSjyU2f4a4ybST0ySJv9sEBpToNURaezDjDd4AjvNLUEn+N0xLCPR/GQ031D9MSHo8Vb/8PnT6zLStg6SON4+jaVq6nFGYbfiYHbDZ/VVmlP8+bYhkHcxR5hRwhCxWk+AP7N7cVnJFrmQre8eTfX9Pwa1NJzc1R1edQgGYeEdBXKVyHCoU1eONfw75xSdyrRHdvFeJ7yarUXkDgglAe6MYkWWCqlBjm2IMWy/UBrBoBVR7nNlvggfduqqZh+YoHy465d13N8/uWPcgFYUzjR5yg7x52GWvH8l2VaRR3Bzq8DQI2BvwDzCH7HHSFfecAG1FdICr5CHbd+9tAcVU3CCkWojVO/BiHl74RDWRndYKI+ryYcjy8FzkbciGgsy7vkMj+4xAag/FW7sHeEHAxdTlKmvxPkMXgB8r2F41qNyoMAQ3GWpE+awqk5l1gQzLKEPBBpJLqeSy2QSP+eExdn3lNE9Y3/DIA4Sio9uVxsv6ZKlwuqC5L0l90MN+IFcvogsQVq+/dn7VI4CDNnpC4Z4AJYXcaPOooh5sQEfJ9qW0OIkZ83IDZRbkgp0Y2HONOzwdhuKUXUbHTqp6aXP5TuN4Mb1gwm6zIEVLYPx7i2TUm27oXPwJ8Hp5wYOA/myVbXHWIEJ/qf+A47O2RcBmoSczOJkHMS/Hce8GD3QJ2LxfdTb90yOH8ADFKIeSn+pbbedpjPJO6efv9XIjslg7EQmDmh9dGumoDqloUxmywylEVLx8wanOp+JZ2rjP32cVe0qdNKVh5tysq3q3mzYQkrQVd7vpAjo5sD&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.23.2.2.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v8.0/products/9NBLGGH4XXVW?appversion=11910.1002.0.0&idType=ProductId&market=CH&locale=en-CH&deviceFamily=Windows.Desktop&catalogLocales=en-CH%2Cen-GB&hardware=arm0%2Carm640%2Cble0%2Ccmb0%2Ccmf0%2Ccmr0%2Cdcb1%2Cdcc1%2Cdx91%2Cdxa1%2Cdxb1%2Cgyr0%2Chce0%2Chdc0%2Chov0%2Chsa0%2Chss1%2Ckbd1%2Cm041%2Cm060%2Cm080%2Cm120%2Cm160%2Cm200%2Cm301%2Cm751%2CmA01%2Cmct0%2Cmgn0%2Cmic0%2Cmrc0%2Cmse1%2CmT01%2Cnfc0%2Crs10%2Crs20%2Crs30%2Crs40%2Crs50%2Crs60%2Ctch0%2Ctel0%2Cv010%2Cv020%2Cv040%2Cx641%2Cx860%2Cx86a640%2Cxbd0%2Cxbo0%2Cxbs0%2Cxbx0%2Cxgp0&packageHardware=dcb%2Cdcc%2Cdx9%2Cdxa%2Cdxb%2Cm30%2Cm75%2CmA0%2CmT0&deviceFamilyVersion=2814750970478592&preciseDeviceFamilyVersion=2814751015241686&architecture=x64&pzn=0 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseuserSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotif
Source: global traffic	HTTP traffic detected: GET /v8.0/oemdiscovery?oemId=&scmId=&phoneManufacturerName=&smBiosManufacturerName=VMware%2C+Inc.&phoneDeviceModel=&smBiosDm=VMware20%2C1 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseuserSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c20240328,test21emulation,testcanvas,tr
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=66ka7AY8zWtDbHC&MD=LZZ2D3WS HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v8.0/oemdiscovery?oemId=&scmId=&phoneManufacturerName=&smBiosManufacturerName=VMware%2C+Inc.&phoneDeviceModel=&smBiosDm=VMware20%2C1 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseuserSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c20240328,test21emulation,testcanvas,tr
Source: global traffic	HTTP traffic detected: GET /v8.0/background/pages/livetile?appversion=11910.1002.0.0&market=CH&locale=en-CH&deviceFamily=Windows.Desktop HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseuserSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c20240328,test21emulation,testcanvas,traffic-p1df-3r,traffic-pr
Source: global traffic	HTTP traffic detected: GET /v8.0/errorinfo?context=WU&code=0x80070422&market=CH&locale=en-CH&deviceFamily=Windows.Desktop&pzn=0 HTTP/1.1OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989fAccept-Encoding: gzip, deflateOSIsSMode: FalseuserSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c20240328,test21emulation,testcanvas,traffic-p1df-3r,traffic-pr2-ampm-wi
Source: global traffic	HTTP traffic detected: GET /v8.0/pages/mylibrary?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&catalogLocales=en-CH%2Cen-GB&moId=Public&oemId=Public&scmId=Public&appversion=11910.1002.0.0&hardware=arm0%2Carm640%2Cble0%2Ccmb0%2Ccmf0%2Ccmr0%2Cdcb1%2Cdcc1%2Cdx91%2Cdxa1%2Cdxb1%2Cgyr0%2Chce0%2Chdc0%2Chov0%2Chsa0%2Chss1%2Ckbd1%2Cm041%2Cm060%2Cm080%2Cm120%2Cm160%2Cm200%2Cm301%2Cm751%2CmA01%2Cmct0%2Cmgn0%2Cmic0%2Cmrc0%2Cmse1%2CmT01%2Cnfc0%2Crs10%2Crs20%2Crs30%2Crs40%2Crs50%2Crs60%2Ctch0%2Ctel0%2Cv010%2Cv020%2Cv040%2Cx641%2Cx860%2Cx86a640%2Cxbd0%2Cxbo0%2Cxbs0%2Cxbx0%2Cxgp0&packageHardware=dcb%2Cdcc%2Cdx9%2Cdxa%2Cdxb%2Cm30%2Cm75%2CmA0%2CmT0&preciseDeviceFamilyVersion=2814751015241686&architecture=x64&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x/h2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j/E7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM/gOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga/fF1TaSmfcmlDS9rqcl8k/sG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt/AR/IwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk/+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB/Pfrc5UPdhNsb8zc8EU1Q4WKN+/y+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB/iJ1R1g/+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc/gVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK/50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW/TjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3/GSOz4cgioMMmrVpIMK/8M6fIIUUehZ6+9YmNpqEG/FvQZpNNkbyafd4/sawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr/hsmEu13e5mNyk+xISTJQ+US9A/Uo0NHxKQIjEev3F/eEgP/ob9LKMRNYwfqz+mNLUtJwDmrA9N/Yk62Aeasba4jU7a/wTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr/DCmzZjqfcG2K73TdzvnIlEb/lv2b6wB+L7WfkP0kR9oGUf/+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v/rLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb/h9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU/wh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv/OgWnroYVXiNqCbBDZ/QGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n/nhKSowEOrNqly/u8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy/MQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm/VcsrY7TPk8jC/IAqruaud2eIV0cKnnFN2cRll/jBd4vz+vv7
Source: global traffic	HTTP traffic detected: GET /v8.0/devicequalificationoffers?market=CH&locale=en-CH&architecture=x64&moId=Public&oemId=Public&scmId=Public&hardware=arm0%2carm640%2cble0%2ccmb0%2ccmf0%2ccmr0%2cdcb1%2cdcc1%2cdx91%2cdxa1%2cdxb1%2cgyr0%2chce0%2chdc0%2chov0%2chsa0%2chss1%2ckbd1%2cm041%2cm060%2cm080%2cm120%2cm160%2cm200%2cm301%2cm751%2cmA01%2cmct0%2cmgn0%2cmic0%2cmrc0%2cmse1%2cmT01%2cnfc0%2crs10%2crs20%2crs30%2crs40%2crs50%2crs60%2ctch0%2ctel0%2cv010%2cv020%2cv040%2cx641%2cx860%2cx86a640%2cxbd0%2cxbo0%2cxbs0%2cxbx0%2cxgp0&packageHardware=dcb%2cdcc%2cdx9%2cdxa%2cdxb%2cm30%2cm75%2cmA0%2cmT0&deviceFamily=Windows.Desktop&catalogLocales=en-CH%2cen-GB&pageSize=15&cardsEnabled=true&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x%2fh2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j%2fE7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM%2fgOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga%2ffF1TaSmfcmlDS9rqcl8k%2fsG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt%2fAR%2fIwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk%2f+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB%2fPfrc5UPdhNsb8zc8EU1Q4WKN+%2fy+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB%2fiJ1R1g%2f+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc%2fgVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK%2f50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr%2fhsmEu13e5mNyk+xISTJQ+US9A%2fUo0NHxKQIjEev3F%2feEgP%2fob9LKMRNYwfqz+mNLUtJwDmrA9N%2fYk62Aeasba4jU7a%2fwTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr%2fDCmzZjqfcG2K73TdzvnIlEb%2flv2b6wB+L7WfkP0kR9oGUf%2f+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v%2frLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb%2fh9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU%2fwh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv%2fOgWnroYVXiNqCbBDZ%2fQGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n%2fnhKSowEOrNqly%2fu8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy%2fMQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm%2fVcsrY7TPk8jC%2fIAqruaud2eIV0cKnnFN2cRll%2
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.549981C3F5F10_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.3.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.BingWeather_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.5.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.DesktopAppInstaller_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.7.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.GetHelp_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=EwCYBF8iAQAU28X5hAkumfrDedQ+i9LVQH6YOAgAAeuljf3yihTEb0apRr7s//ERrDruG4IRMP9IXDkFxviXUw28eaQoqwUfAaf1CIXjUf4cqPcVoQ1YaTTH3WKts+FtW+PWLvB6YF0YZYPvAC0l9SIuoRQTxmnR/EgZoAjzXFZnnwQ7II1bt7T4yMgl1nfEc5Ym5KXArrfosIUrvtCVvEwiawftHd1niYtLCC4TCQtUejyJ0dSiwtVQXgBh/gqiR6aI++bLpENAFt8UopAffUqo45eUe6uLJXCIyd5YE55HTT5NoQUhydKLsM29vlxhkjBwJrQhRQdTfjnV8jyc3WCPQrGh4LQb2I8Otbecp5k1YTNBXtcqecmrAX4XXzsDZgAACElLWVbRXpKaaAMiJ7jLPDfqXRgcw4Ypj3Iha2yQCEZuCpDzPvzyjb3ZdC2UMWFYSM5olCyp0dLZjvwUeoAqs35QdlWZDQZla16FurEogZo+QIR8ZKNOh97S9IKRvkCT3pN/pW5AMK6bFZ/GAcpzLlG13vXPymCfa++xNe6Lvih5GrLQD/Y926PZVScuK00BiXDn2CZ54u02k4yx6s84Q/Zh3yS2i0yzqgLBr0lbHQ++cdv5C0mWbMoNpOT5cV3AW7DMH8lat6egIDLzHvznOBmyKwoR9Xmtlk3W1DCKh25+tg2Obmpxyb9fbZvsFxlroP8IBNYnsnoyuk8NbTYAxDuIbCpn83S+rQ5J72z9g02r8KLCOtRbCvT8gHYjUSjyU2f4a4ybST0ySJv9sEBpToNURaezDjDd4AjvNLUEn+N0xLCPR/GQ031D9MSHo8Vb/8PnT6zLStg6SON4+jaVq6nFGYbfiYHbDZ/VVmlP8+bYhkHcxR5hRwhCxWk+AP7N7cVnJFrmQre8eTfX9Pwa1NJzc1R1edQgGYeEdBXKVyHCoU1eONfw75xSdyrRHdvFeJ7yarUXkDgglAe6MYkWWCqlBjm2IMWy/UBrBoBVR7nNlvggfduqqZh+YoHy465d13N8/uWPcgFYUzjR5yg7x52GWvH8l2VaRR3Bzq8DQI2BvwDzCH7HHSFfecAG1FdICr5CHbd+9tAcVU3CCkWojVO/BiHl74RDWRndYKI+ryYcjy8FzkbciGgsy7vkMj+4xAag/FW7sHeEHAxdTlKmvxPkMXgB8r2F41qNyoMAQ3GWpE+awqk5l1gQzLKEPBBpJLqeSy2QSP+eExdn3lNE9Y3/DIA4Sio9uVxsv6ZKlwuqC5L0l90MN+IFcvogsQVq+/dn7VI4CDNnpC4Z4AJYXcaPOooh5sQEfJ9qW0OIkZ83IDZRbkgp0Y2HONOzwdhuKUXUbHTqp6aXP5TuN4Mb1gwm6zIEVLYPx7i2TUm27oXPwJ8Hp5wYOA/myVbXHWIEJ/qf+A47O2RcBmoSczOJkHMS/Hce8GD3QJ2LxfdTb90yOH8ADFKIeSn+pbbedpjPJO6efv9XIjslg7EQmDmh9dGumoDqloUxmywylEVLx8wanOp+JZ2rjP32cVe0qdNKVh5tysq3q3mzYQkrQVd7vpAjo5sD&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.9.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.Getstarted_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.11.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.HEIFImageExtension_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.13.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.Microsoft3DViewer_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.15.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.17.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=EwCYBF8iAQAU28X5hAkumfrDedQ+i9LVQH6YOAgAAeuljf3yihTEb0apRr7s//ERrDruG4IRMP9IXDkFxviXUw28eaQoqwUfAaf1CIXjUf4cqPcVoQ1YaTTH3WKts+FtW+PWLvB6YF0YZYPvAC0l9SIuoRQTxmnR/EgZoAjzXFZnnwQ7II1bt7T4yMgl1nfEc5Ym5KXArrfosIUrvtCVvEwiawftHd1niYtLCC4TCQtUejyJ0dSiwtVQXgBh/gqiR6aI++bLpENAFt8UopAffUqo45eUe6uLJXCIyd5YE55HTT5NoQUhydKLsM29vlxhkjBwJrQhRQdTfjnV8jyc3WCPQrGh4LQb2I8Otbecp5k1YTNBXtcqecmrAX4XXzsDZgAACElLWVbRXpKaaAMiJ7jLPDfqXRgcw4Ypj3Iha2yQCEZuCpDzPvzyjb3ZdC2UMWFYSM5olCyp0dLZjvwUeoAqs35QdlWZDQZla16FurEogZo+QIR8ZKNOh97S9IKRvkCT3pN/pW5AMK6bFZ/GAcpzLlG13vXPymCfa++xNe6Lvih5GrLQD/Y926PZVScuK00BiXDn2CZ54u02k4yx6s84Q/Zh3yS2i0yzqgLBr0lbHQ++cdv5C0mWbMoNpOT5cV3AW7DMH8lat6egIDLzHvznOBmyKwoR9Xmtlk3W1DCKh25+tg2Obmpxyb9fbZvsFxlroP8IBNYnsnoyuk8NbTYAxDuIbCpn83S+rQ5J72z9g02r8KLCOtRbCvT8gHYjUSjyU2f4a4ybST0ySJv9sEBpToNURaezDjDd4AjvNLUEn+N0xLCPR/GQ031D9MSHo8Vb/8PnT6zLStg6SON4+jaVq6nFGYbfiYHbDZ/VVmlP8+bYhkHcxR5hRwhCxWk+AP7N7cVnJFrmQre8eTfX9Pwa1NJzc1R1edQgGYeEdBXKVyHCoU1eONfw75xSdyrRHdvFeJ7yarUXkDgglAe6MYkWWCqlBjm2IMWy/UBrBoBVR7nNlvggfduqqZh+YoHy465d13N8/uWPcgFYUzjR5yg7x52GWvH8l2VaRR3Bzq8DQI2BvwDzCH7HHSFfecAG1FdICr5CHbd+9tAcVU3CCkWojVO/BiHl74RDWRndYKI+ryYcjy8FzkbciGgsy7vkMj+4xAag/FW7sHeEHAxdTlKmvxPkMXgB8r2F41qNyoMAQ3GWpE+awqk5l1gQzLKEPBBpJLqeSy2QSP+eExdn3lNE9Y3/DIA4Sio9uVxsv6ZKlwuqC5L0l90MN+IFcvogsQVq+/dn7VI4CDNnpC4Z4AJYXcaPOooh5sQEfJ9qW0OIkZ83IDZRbkgp0Y2HONOzwdhuKUXUbHTqp6aXP5TuN4Mb1gwm6zIEVLYPx7i2TUm27oXPwJ8Hp5wYOA/myVbXHWIEJ/qf+A47O2RcBmoSczOJkHMS/Hce8GD3QJ2LxfdTb90yOH8ADFKIeSn+pbbedpjPJO6efv9XIjslg7EQmDmh9dGumoDqloUxmywylEVLx8wanOp+JZ2rjP32cVe0qdNKVh5tysq3q3mzYQkrQVd7vpAjo5sD&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.19.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.21.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.MixedReality.Portal_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.23.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v7.0/products/lookup?fieldsTemplate=InstallAgent&market=CH&languages=en-CH,en,neutral&alternateId=PackageFamilyName&value=Microsoft.MSPaint_8wekyb3d8bbwe HTTP/1.1Connection: Keep-AliveContent-Type: application/jsonAuthorization: MSAHW1.0=t=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&p=User-Agent: Install ServiceMS-CV: UxEEy7KhKESwa2v1.36.0.25.3Host: displaycatalog.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: gmail.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: chromecache_188.1.dr

String found in binary or memory: _.Hw(p);break;case "PuZJUb":a+="https://www.youtube.com/t/terms?chromeless=1&hl="+_.Hw(m);break;case "fxTQxb":a+="https://youtube.com/t/terms?gl="+_.Hw(_.Qw(c))+"&hl="+_.Hw(d)+"&override_hl=1"+(f?"&linkless=1":"");break;case "prAmvd":a+="https://www.google.com/intl/"+_.Hw(m)+"/chromebook/termsofservice.html?languageCode="+_.Hw(d)+"&regionCode="+_.Hw(c);break;case "NfnTze":a+="https://policies.google.com/privacy/google-partners"+(f?"/embedded":"")+"?hl="+_.Hw(d)+"&gl="+_.Hw(c)+(h?"&color_scheme="+ equals www.youtube.com (Youtube)

Source: unknown

DNS traffic detected: queries for: gmail.com

Source: unknown

HTTP traffic detected: POST /RST2.srf HTTP/1.0Connection: Keep-AliveContent-Type: application/soap+xmlAccept: */*User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 10.0; Win64; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; IDCRL 24.10.0.19045.0.0; IDCRL-cfg 16.000.29743.00; App svchost.exe, 10.0.19041.1806, {DF60E2DF-88AD-4526-AE21-83D130EF0F68})Content-Length: 3592Host: login.live.com

Source: chromecache_188.1.dr	String found in binary or memory: https://accounts.google.com
Source: chromecache_188.1.dr	String found in binary or memory: https://accounts.google.com/TOS?loc=
Source: chromecache_174.1.dr	String found in binary or memory: https://apis.google.com/js/api.js
Source: chromecache_188.1.dr	String found in binary or memory: https://apis.google.com/js/rpc:shindig_random.js?onload=credentialservice.postMessage
Source: chromecache_188.1.dr	String found in binary or memory: https://families.google.com/intl/
Source: chromecache_188.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/productlogos/drive_2020q4/v10/192px.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/productlogos/gmail_2020q4/v10/web-48dp/logo_gmail_2020q4_color_2x_web_
Source: chromecache_188.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/productlogos/maps/v7/192px.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://g.co/recover
Source: chromecache_188.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_188.1.dr	String found in binary or memory: https://play.google.com/work/enroll?identifier=
Source: chromecache_188.1.dr	String found in binary or memory: https://play.google/intl/
Source: chromecache_188.1.dr	String found in binary or memory: https://policies.google.com/privacy
Source: chromecache_188.1.dr	String found in binary or memory: https://policies.google.com/privacy/additional
Source: chromecache_188.1.dr	String found in binary or memory: https://policies.google.com/privacy/additional/embedded?gl=kr
Source: chromecache_188.1.dr	String found in binary or memory: https://policies.google.com/privacy/google-partners
Source: chromecache_188.1.dr	String found in binary or memory: https://policies.google.com/technologies/cookies
Source: chromecache_188.1.dr	String found in binary or memory: https://policies.google.com/technologies/location-data
Source: chromecache_188.1.dr	String found in binary or memory: https://policies.google.com/terms
Source: chromecache_188.1.dr	String found in binary or memory: https://policies.google.com/terms/location/embedded
Source: chromecache_188.1.dr	String found in binary or memory: https://policies.google.com/terms/service-specific
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/account-recovery-email-pin.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/account-recovery-password.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/account-recovery-sms-or-voice-pin.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/account-recovery-sms-pin.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/account-recovery-stop-go-landing-page_1x.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/animation/
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/ble_device.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/ble_pin.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/contacts_backup_sync.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/contacts_backup_sync_1x.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/contacts_backup_sync_2x.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/continue_on_your_phone.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/device_phone_number_verification.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/device_prompt_tap_yes.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kid_success.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidfork_who_will_use.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidfork_who_will_use_updated.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignin_not_ready.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignin_stick_around_v1.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_child_account_1.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_child_privacy_1.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_created.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_double_device.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_full_house.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_link_accounts.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_parent_app_decision.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_parent_supervision_1.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_respect_others_1.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_single_device.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/kidsignup_stop.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/personalization_reminders.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/phone_number_sign_in_2x.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/security_key.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/security_key_ios_center.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/security_key_laptop.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/security_key_nfc_discovered.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/security_key_phone.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/signin_googleapp_ios.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/signin_googleapp_pulldown.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/signin_tapyes.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/smart_lock_2x.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/usb_key.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/web_and_app_activity.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/embedded/you_tube_history.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/feature_not_available.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/gmail_ios_authzen.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/paaskey.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/passkey_challenge.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/passkey_enrollment.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/passkey_enrollment_cross_device.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/passkey_enrollment_error.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/passkey_enrollment_reauth.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/passkey_success.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/passkeyerror.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/red_globe_light.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/screenlock.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/security_key_ipad.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/security_key_iphone.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/security_key_iphone_nfc.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/security_key_iphone_usb.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/security_key_phone.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/security_keys.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/marc/success_checkmark_2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/ui/loading_spinner_gm.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/ui/progress_spinner_color_20dp_4x.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/accounts/ui/success-gm-default_2x.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/apps/signup/resources/custom-email-address.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/images/hpp/shield_security_checkup_green_2x_web_96dp.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/chaptering/account_setup_chapter.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/chaptering/device_setup_chapter.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/chaptering/parental_control_chapter.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_allset.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_apps_devices.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_areyousurekid.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_birthdayemail.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_choose_apps.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_confirmation.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_exploremore.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_intro.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_privacyterms.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_review_settings.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_safe_search.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_supervision_choice.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/graduation/graduation_supervisiongrad.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/guardianlinking/linking_complete_0.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/minormodeexit/ads_personalization.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/minormodeexit/confirmation.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/minormodeexit/eligibility_error.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/minormodeexit/fork.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/minormodeexit/intro.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/minormodeexit/personal_results.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/minormodeexit/safe_search.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/onboarding/get_family_link_2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/onboarding/kid_watch_installing_family_link_2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/onboarding/kid_watch_set_up_location_sharing_2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/onboarding/kid_watch_set_up_parental_controls_2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/onboarding/kid_watch_set_up_school_time_2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/onboarding/location_sharing_enabled_2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/onboarding/parent_sign_in_prologue_0.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/onboarding/set_up_complete_0.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/onboarding/set_up_contacts_2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/teensupervisionreview/all_set.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/teensupervisionreview/are_you_sure_parent.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/teensupervisionreview/content_restriction.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/teensupervisionreview/error.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/teensupervisionreview/how_controls_work.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/teensupervisionreview/next_steps.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/teensupervisionreview/setup_controls.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/teensupervisionreview/who_parent.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/teensupervisionreview/who_teen.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/ulp_appblock/kid_setup_parent_escalation.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/ulp_appblock/send_email_confirmation.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/ulp_appblock/success_sent_email.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/images/ulpupgrade/kidprofileupgrade_all_set.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/all_set.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/almost_done_kids_space_v2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/alreadyinstalledfamilylink.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/devices_connected_tablet_v2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/devices_connected_v2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/emailinstallfamilylink.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/familylinkinstalling.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/hand_over_device.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/installfamilylink.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/linking_accounts_v2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/manage_parental_controls_email.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/manage_parental_controls_v2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/open_family_link_v2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/parents_help.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/set_up_kids_space.png
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/setupcontrol.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/setuptimelimits.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://ssl.gstatic.com/kids/onboarding/illustrations/supervision_ready_v2.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://support.google.com/accounts?hl=
Source: chromecache_188.1.dr	String found in binary or memory: https://support.google.com/accounts?p=new-si-ui
Source: chromecache_188.1.dr	String found in binary or memory: https://support.google.com/websearch/answer/4358949?hl=ko&ref_topic=3285072
Source: chromecache_174.1.dr	String found in binary or memory: https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
Source: chromecache_188.1.dr	String found in binary or memory: https://www.google.com
Source: chromecache_188.1.dr	String found in binary or memory: https://www.google.com/intl/
Source: chromecache_188.1.dr	String found in binary or memory: https://www.gstatic.com/accounts/speedbump/authzen_optin_illustration.gif
Source: chromecache_188.1.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/2x/chrome_48dp.png
Source: chromecache_188.1.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/2x/googleg_48dp.png
Source: chromecache_188.1.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/2x/gsa_48dp.png
Source: chromecache_188.1.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/2x/play_prism_48dp.png
Source: chromecache_188.1.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/2x/youtube_48dp.png
Source: chromecache_188.1.dr	String found in binary or memory: https://www.gstatic.com/images/branding/productlogos/googleg/v6/36px.svg
Source: chromecache_188.1.dr	String found in binary or memory: https://www.youtube.com/t/terms?chromeless=1&hl=
Source: chromecache_188.1.dr	String found in binary or memory: https://youtube.com/t/terms?gl=

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49689 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49681 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49677 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49683 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49701
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49701 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 204.79.197.200:443 -> 192.168.2.16:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.29.13:443 -> 192.168.2.16:49744 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 51.104.15.253:443 -> 192.168.2.16:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.16:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.16:49750 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 204.79.197.222:443 -> 192.168.2.16:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.214.29:443 -> 192.168.2.16:49759 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.214.29:443 -> 192.168.2.16:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.214.29:443 -> 192.168.2.16:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.42.254:443 -> 192.168.2.16:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.113.196.254:443 -> 192.168.2.16:49766 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 150.171.22.254:443 -> 192.168.2.16:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49800 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49801 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49798 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49803 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49802 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.54.200.10:443 -> 192.168.2.16:49799 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.96.52.198:443 -> 192.168.2.16:49826 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.211.118.80:443 -> 192.168.2.16:49827 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.96.52.198:443 -> 192.168.2.16:49830 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.29.13:443 -> 192.168.2.16:49829 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.214.29:443 -> 192.168.2.16:49832 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.29.13:443 -> 192.168.2.16:49831 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.96.63.25:443 -> 192.168.2.16:49836 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.96.63.25:443 -> 192.168.2.16:49839 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49841 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.214.29:443 -> 192.168.2.16:49843 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49847 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49848 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49849 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49850 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49851 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49852 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49853 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.185.73.156:443 -> 192.168.2.16:49854 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.22.113.133:443 -> 192.168.2.16:49855 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.22.113.133:443 -> 192.168.2.16:49856 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.22.113.133:443 -> 192.168.2.16:49857 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.22.113.133:443 -> 192.168.2.16:49858 version: TLS 1.2

Source: classification engine

Classification label: clean2.win@19/42@12/7

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http://gmail.com/
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2204 --field-trial-handle=1948,i,11222838486592232605,4256594581684048127,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5888 --field-trial-handle=1948,i,11222838486592232605,4256594581684048127,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5552 --field-trial-handle=1948,i,11222838486592232605,4256594581684048127,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2204 --field-trial-handle=1948,i,11222838486592232605,4256594581684048127,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5888 --field-trial-handle=1948,i,11222838486592232605,4256594581684048127,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5552 --field-trial-handle=1948,i,11222838486592232605,4256594581684048127,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Drive-by Compromise	Windows Management Instrumentation	1 Registry Run Keys / Startup Folder	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Registry Run Keys / Startup Folder	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	3 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	4 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	1 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
https://play.google/intl/	0%	URL Reputation	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
www3.l.google.com	74.125.138.101	true	false	high
play.google.com	74.125.138.139	true	false	high
mail.google.com	74.125.136.83	true	false	high
www.google.com	142.250.105.103	true	false	high
gmail.com	142.250.9.17	true	false	high
accounts.youtube.com	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Reputation
https://musicart.xboxlive.com/7/f5855100-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190	false	high
https://musicart.xboxlive.com/7/b7654500-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190	false	high
https://mail.google.com/mail/u/0/	false	high
https://www.google.com/favicon.ico	false	high
https://musicart.xboxlive.com/7/27ea1000-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190	false	high
https://musicart.xboxlive.com/7/fd965100-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190	false	high
https://musicart.xboxlive.com/7/713f2900-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190	false	high
http://gmail.com/	false	high
https://musicart.xboxlive.com/7/45172400-0000-0000-0000-000000000002/504/image.jpg?w=140&h=190	false	high

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://play.google/intl/	chromecache_188.1.dr	false	URL Reputation: safe	unknown
https://families.google.com/intl/	chromecache_188.1.dr	false		high
https://youtube.com/t/terms?gl=	chromecache_188.1.dr	false		high
https://policies.google.com/technologies/location-data	chromecache_188.1.dr	false		high
https://www.google.com/intl/	chromecache_188.1.dr	false		high
https://apis.google.com/js/api.js	chromecache_174.1.dr	false		high
https://policies.google.com/privacy/google-partners	chromecache_188.1.dr	false		high
https://play.google.com/work/enroll?identifier=	chromecache_188.1.dr	false		high
https://policies.google.com/terms/service-specific	chromecache_188.1.dr	false		high
https://g.co/recover	chromecache_188.1.dr	false		high
https://policies.google.com/privacy/additional	chromecache_188.1.dr	false		high
https://support.google.com/websearch/answer/4358949?hl=ko&ref_topic=3285072	chromecache_188.1.dr	false		high
https://policies.google.com/technologies/cookies	chromecache_188.1.dr	false		high
https://policies.google.com/terms	chromecache_188.1.dr	false		high
https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=	chromecache_174.1.dr	false		high
https://www.google.com	chromecache_188.1.dr	false		high
https://play.google.com/log?format=json&hasfast=true	chromecache_188.1.dr	false		high
https://policies.google.com/privacy/additional/embedded?gl=kr	chromecache_188.1.dr	false		high
https://policies.google.com/terms/location/embedded	chromecache_188.1.dr	false		high
https://www.youtube.com/t/terms?chromeless=1&hl=	chromecache_188.1.dr	false		high
https://support.google.com/accounts?hl=	chromecache_188.1.dr	false		high
https://policies.google.com/privacy	chromecache_188.1.dr	false		high
https://support.google.com/accounts?p=new-si-ui	chromecache_188.1.dr	false		high
https://apis.google.com/js/rpc:shindig_random.js?onload=credentialservice.postMessage	chromecache_188.1.dr	false		high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
74.125.136.83	mail.google.com	United States	15169	GOOGLEUS	false
142.250.105.103	www.google.com	United States	15169	GOOGLEUS	false
142.250.105.147	unknown	United States	15169	GOOGLEUS	false
142.250.9.17	gmail.com	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
74.125.138.101	www3.l.google.com	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.16

General Information

Joe Sandbox version:	40.0.0 Tourmaline
Analysis ID:	1427032
Start date and time:	2024-04-16 22:51:32 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 27s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	defaultwindowsinteractivecookbook.jbs
Sample URL:	http://gmail.com
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	24
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	CLEAN
Classification:	clean2.win@19/42@12/7
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, SIHClient.exe, backgroundTaskHost.exe, SgrmBroker.exe, MoUsoCoreWorker.exe, conhost.exe, svchost.exe, wuapihost.exe
Excluded IPs from analysis (whitelisted): 142.251.15.94, 173.194.219.101, 173.194.219.113, 173.194.219.139, 173.194.219.102, 173.194.219.138, 173.194.219.100, 172.253.124.84, 34.104.35.123, 142.250.105.94, 142.250.9.94, 142.250.9.95, 172.253.124.95, 142.250.105.95, 173.194.219.95, 64.233.185.95, 64.233.177.95, 64.233.176.95, 142.251.15.95, 74.125.138.95, 74.125.136.95, 108.177.122.95, 172.217.215.95, 142.250.105.84, 72.21.81.240, 23.46.202.149
Excluded domains from analysis (whitelisted): fs.microsoft.com, l-ring.msedge.net, accounts.google.com, content-autofill.googleapis.com, slscr.update.microsoft.com, fonts.gstatic.com, ctldl.windowsupdate.com, clientservices.googleapis.com, purchase.mp.microsoft.com, fe3cr.delivery.mp.microsoft.com, ln-ring.msedge.net, licensing.mp.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, login.live.com, store-images.s-microsoft.com, displaycatalog.mp.microsoft.com, musicart.xboxlive.com, clients.l.google.com, www.gstatic.com, teams-ring.msedge.net, livetileedge.dsx.mp.microsoft.com, storeedgefd.dsx.mp.microsoft.com
HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
VT rate limit hit for: http://gmail.com

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 19:51:59 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2673
Entropy (8bit):	3.9928464885956627
Encrypted:	false
SSDEEP:	48:8DxdWTSi/HYidAKZdA1FehwiZUklqehly+3:8DajWmy
MD5:	A5F23040468CDD42A61D7709D837F8FF
SHA1:	EAB57B31DC3CF1C897ADB3BAD0C9C1196C287051
SHA-256:	0473B7BB89F7FBDC87AD7AEE144A4378AE2A1FD1AAEE02630C7FF0EAF3116A26
SHA-512:	331831A18B76370B3560A111B151BEB3803F865F979D4387798CD780D9B29460E857CD0D9B3F68BD53787D659E32FC5FB69A90DE2F44D69A06138BCEB742E92D
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,....\.&.?...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.I.Xv.....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X}.....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X}.....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X}............................"&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............&.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Apr 16, 2024 22:51:57.687340021 CEST	53837	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:51:57.687536955 CEST	63254	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:51:57.780759096 CEST	53	64644	1.1.1.1	192.168.2.16
Apr 16, 2024 22:51:57.791819096 CEST	53	53837	1.1.1.1	192.168.2.16
Apr 16, 2024 22:51:57.794095039 CEST	53	63254	1.1.1.1	192.168.2.16
Apr 16, 2024 22:51:57.856949091 CEST	53	54719	1.1.1.1	192.168.2.16
Apr 16, 2024 22:51:58.011837959 CEST	55072	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:51:58.012061119 CEST	52485	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:51:58.116204023 CEST	53	55072	1.1.1.1	192.168.2.16
Apr 16, 2024 22:51:58.116395950 CEST	53	52485	1.1.1.1	192.168.2.16
Apr 16, 2024 22:51:58.509092093 CEST	53	54868	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:00.654042006 CEST	53	52808	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:00.682517052 CEST	53	58165	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:01.644227982 CEST	53	60192	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:02.527025938 CEST	52507	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:52:02.527167082 CEST	64209	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:52:02.632272005 CEST	53	64209	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:02.632493973 CEST	53	52507	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:03.144969940 CEST	53	54952	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:03.170353889 CEST	56039	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:52:03.170478106 CEST	60713	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:52:03.275019884 CEST	53	56039	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:03.275078058 CEST	53	60713	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:04.062628031 CEST	53	55663	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:05.346398115 CEST	56895	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:52:05.346518993 CEST	64664	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:52:05.451330900 CEST	53	56895	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:05.451755047 CEST	53	64664	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:08.347337008 CEST	62632	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:52:08.348185062 CEST	61259	53	192.168.2.16	1.1.1.1
Apr 16, 2024 22:52:08.452344894 CEST	53	62632	1.1.1.1	192.168.2.16
Apr 16, 2024 22:52:08.452617884 CEST	53	61259	1.1.1.1	192.168.2.16
Apr 16, 2024 22:53:10.195358038 CEST	138	138	192.168.2.16	192.168.2.255

Timestamp	Bytes transferred	Direction	Data
Apr 16, 2024 22:51:57.903841972 CEST	424	OUT	GET / HTTP/1.1 Host: gmail.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9
Apr 16, 2024 22:51:58.009525061 CEST	607	IN	HTTP/1.1 301 Moved Permanently Location: https://mail.google.com/mail/u/0/ Cross-Origin-Resource-Policy: cross-origin X-Content-Type-Options: nosniff Server: sffe Content-Length: 230 X-XSS-Protection: 0 Date: Tue, 16 Apr 2024 20:30:28 GMT Expires: Tue, 16 Apr 2024 21:00:28 GMT Cache-Control: public, max-age=1800 Content-Type: text/html; charset=UTF-8 Age: 1289 Data Raw: 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 3e 0a 3c 54 49 54 4c 45 3e 33 30 31 20 4d 6f 76 65 64 3c 2f 54 49 54 4c 45 3e 3c 2f 48 45 41 44 3e 3c 42 4f 44 59 3e 0a 3c 48 31 3e 33 30 31 20 4d 6f 76 65 64 3c 2f 48 31 3e 0a 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 0a 3c 41 20 48 52 45 46 3d 22 68 74 74 70 73 3a 2f 2f 6d 61 69 6c 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 6d 61 69 6c 2f 75 2f 30 2f 22 3e 68 65 72 65 3c 2f 41 3e 2e 0d 0a 3c 2f 42 4f 44 59 3e 3c 2f 48 54 4d 4c 3e 0d 0a Data Ascii: <HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8"><TITLE>301 Moved</TITLE></HEAD><BODY><H1>301 Moved</H1>The document has moved<A HREF="https://mail.google.com/mail/u/0/">here</A>.</BODY></HTML>

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:51:58 UTC	667	OUT	GET /mail/u/0/ HTTP/1.1 Host: mail.google.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-16 20:51:58 UTC	777	IN	HTTP/1.1 302 Found Content-Type: application/binary Vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site Location: https://accounts.google.com/ServiceLogin?service=mail&passive=1209600&osid=1&continue=https://mail.google.com/mail/u/0/&followup=https://mail.google.com/mail/u/0/&emr=1 Strict-Transport-Security: max-age=10886400; includeSubDomains Permissions-Policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version=* Cross-Origin-Resource-Policy: same-site Date: Tue, 16 Apr 2024 20:51:58 GMT Server: ESF Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Alt-Svc: clear Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:03 UTC	1233	OUT	GET /accounts/CheckConnection?pmpo=https%3A%2F%2Faccounts.google.com&v=-1321404373&timestamp=1713300722730 HTTP/1.1 Host: accounts.youtube.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-full-version: "117.0.5938.132" sec-ch-ua-arch: "x86" sec-ch-ua-platform: "Windows" sec-ch-ua-platform-version: "10.0.0" sec-ch-ua-model: "" sec-ch-ua-bitness: "64" sec-ch-ua-wow64: ?0 sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEI3L3NAQi5ys0BCMfRzQEIidPNAQjc080BCMvWzQEI9NbNAQiK180BCKfYzQEI+cDUFRi60s0BGMvYzQEY642lFw== Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://accounts.google.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-16 20:52:03 UTC	1850	IN	HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 X-Frame-Options: ALLOW-FROM https://accounts.google.com Content-Security-Policy: frame-ancestors https://accounts.google.com Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/AccountsDomainCookiesCheckConnectionHttp/cspreport Content-Security-Policy: script-src 'report-sample' 'nonce-qlKM4LdmwQ8Von9s2HYLQA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsDomainCookiesCheckConnectionHttp/cspreport;worker-src 'self' Content-Security-Policy: script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsDomainCookiesCheckConnectionHttp/cspreport/allowlist Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Mon, 01 Jan 1990 00:00:00 GMT Date: Tue, 16 Apr 2024 20:52:03 GMT Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version Permissions-Policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version=* Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin reporting-endpoints: default="/_/AccountsDomainCookiesCheckConnectionHttp/web-reports?context=eJzjUtDikmLw0JBikPj6kkkNiJ3SZ7AGAHHSv_OsBUAsxMPx-eTvDWwCN64v3scEAH1gEsY" Server: ESF X-XSS-Protection: 0 X-Content-Type-Options: nosniff Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked
2024-04-16 20:52:03 UTC	1850	IN	Data Raw: 37 36 39 66 0d 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 3c 73 63 72 69 70 74 20 6e 6f 6e 63 65 3d 22 71 6c 4b 4d 34 4c 64 6d 77 51 38 56 6f 6e 39 73 32 48 59 4c 51 41 22 3e 22 75 73 65 20 73 74 72 69 63 74 22 3b 74 68 69 73 2e 64 65 66 61 75 6c 74 5f 41 63 63 6f 75 6e 74 73 44 6f 6d 61 69 6e 63 6f 6f 6b 69 65 73 43 68 65 63 6b 63 6f 6e 6e 65 63 74 69 6f 6e 4a 73 3d 74 68 69 73 2e 64 65 66 61 75 6c 74 5f 41 63 63 6f 75 6e 74 73 44 6f 6d 61 69 6e 63 6f 6f 6b 69 65 73 43 68 65 63 6b 63 6f 6e 6e 65 63 74 69 6f 6e 4a 73 7c 7c 7b 7d 3b 28 66 75 6e 63 74 69 6f 6e 28 5f 29 7b 76 61 72 20 77 69 6e 64 6f 77 3d 74 68 69 73 3b 0a 74 72 79 7b 0a 5f 2e 5f 46 5f 74 6f 67 67 6c 65 73 5f 69 6e 69 74 69 61 6c 69 7a 65 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 28 22 75 6e 64 65 Data Ascii: 769f<html><head><script nonce="qlKM4LdmwQ8Von9s2HYLQA">"use strict";this.default_AccountsDomaincookiesCheckconnectionJs=this.default_AccountsDomaincookiesCheckconnectionJs\|\|{};(function(_){var window=this;try{_._F_toggles_initialize=function(a){("unde
2024-04-16 20:52:03 UTC	1850	IN	Data Raw: 65 72 6e 65 74 20 45 78 70 6c 6f 72 65 72 22 3d 3d 3d 61 29 7b 69 66 28 69 61 28 29 29 69 66 28 28 61 3d 2f 72 76 3a 20 2a 28 5b 5c 64 5c 2e 5d 2a 29 2f 2e 65 78 65 63 28 62 29 29 26 26 61 5b 31 5d 29 62 3d 61 5b 31 5d 3b 65 6c 73 65 7b 61 3d 22 22 3b 76 61 72 20 63 3d 2f 4d 53 49 45 20 2b 28 5b 5c 64 5c 2e 5d 2b 29 2f 2e 65 78 65 63 28 62 29 3b 69 66 28 63 26 26 63 5b 31 5d 29 69 66 28 62 3d 2f 54 72 69 64 65 6e 74 5c 2f 28 5c 64 2e 5c 64 29 2f 2e 65 78 65 63 28 62 29 2c 0a 22 37 2e 30 22 3d 3d 63 5b 31 5d 29 69 66 28 62 26 26 62 5b 31 5d 29 73 77 69 74 63 68 28 62 5b 31 5d 29 7b 63 61 73 65 20 22 34 2e 30 22 3a 61 3d 22 38 2e 30 22 3b 62 72 65 61 6b 3b 63 61 73 65 20 22 35 2e 30 22 3a 61 3d 22 39 2e 30 22 3b 62 72 65 61 6b 3b 63 61 73 65 20 22 36 2e 30 Data Ascii: ernet Explorer"===a){if(ia())if((a=/rv: ([\d\.])/.exec(b))&&a[1])b=a[1];else{a="";var c=/MSIE +([\d\.]+)/.exec(b);if(c&&c[1])if(b=/Trident\/(\d.\d)/.exec(b),"7.0"==c[1])if(b&&b[1])switch(b[1]){case "4.0":a="8.0";break;case "5.0":a="9.0";break;case "6.0
2024-04-16 20:52:03 UTC	1850	IN	Data Raw: 7d 2c 42 3d 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 29 7b 69 66 28 21 41 72 72 61 79 2e 69 73 41 72 72 61 79 28 61 29 7c 7c 61 2e 6c 65 6e 67 74 68 29 72 65 74 75 72 6e 21 31 3b 76 61 72 20 64 3d 41 28 61 29 3b 69 66 28 64 26 31 29 72 65 74 75 72 6e 21 30 3b 69 66 28 21 28 62 26 26 28 41 72 72 61 79 2e 69 73 41 72 72 61 79 28 62 29 3f 62 2e 69 6e 63 6c 75 64 65 73 28 63 29 3a 62 2e 68 61 73 28 63 29 29 29 29 72 65 74 75 72 6e 21 31 3b 41 61 28 61 2c 64 7c 31 29 3b 72 65 74 75 72 6e 21 30 7d 2c 42 61 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 61 3d 45 72 72 6f 72 28 22 69 6e 74 33 32 22 29 3b 61 2e 5f 5f 63 6c 6f 73 75 72 65 5f 5f 65 72 72 6f 72 5f 5f 63 6f 6e 74 65 78 74 5f 5f 39 38 34 33 38 32 7c 7c 28 61 2e 5f 5f 63 6c 6f 73 75 72 65 5f 5f 65 72 Data Ascii: },B=function(a,b,c){if(!Array.isArray(a)\|\|a.length)return!1;var d=A(a);if(d&1)return!0;if(!(b&&(Array.isArray(b)?b.includes(c):b.has(c))))return!1;Aa(a,d\|1);return!0},Ba=function(){var a=Error("int32");a.__closure__error__context__984382\|\|(a.__closure__er
2024-04-16 20:52:03 UTC	1850	IN	Data Raw: 61 2c 62 2c 63 2c 64 2c 65 29 7b 69 66 28 6e 75 6c 6c 21 3d 0a 61 29 7b 69 66 28 41 72 72 61 79 2e 69 73 41 72 72 61 79 28 61 29 29 61 3d 42 28 61 2c 76 6f 69 64 20 30 2c 30 29 3f 76 6f 69 64 20 30 3a 65 26 26 41 28 61 29 26 32 3f 61 3a 49 61 28 61 2c 62 2c 63 2c 76 6f 69 64 20 30 21 3d 3d 64 2c 65 29 3b 65 6c 73 65 20 69 66 28 7a 61 28 61 29 29 7b 76 61 72 20 66 3d 7b 7d 2c 68 3b 66 6f 72 28 68 20 69 6e 20 61 29 66 5b 68 5d 3d 4a 61 28 61 5b 68 5d 2c 62 2c 63 2c 64 2c 65 29 3b 61 3d 66 7d 65 6c 73 65 20 61 3d 62 28 61 2c 64 29 3b 72 65 74 75 72 6e 20 61 7d 7d 2c 49 61 3d 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 29 7b 76 61 72 20 66 3d 64 7c 7c 63 3f 41 28 61 29 3a 30 3b 64 3d 64 3f 21 21 28 66 26 33 32 29 3a 76 6f 69 64 20 30 3b 61 3d 41 72 Data Ascii: a,b,c,d,e){if(null!=a){if(Array.isArray(a))a=B(a,void 0,0)?void 0:e&&A(a)&2?a:Ia(a,b,c,void 0!==d,e);else if(za(a)){var f={},h;for(h in a)f[h]=Ja(a[h],b,c,d,e);a=f}else a=b(a,d);return a}},Ia=function(a,b,c,d,e){var f=d\|\|c?A(a):0;d=d?!!(f&32):void 0;a=Ar
2024-04-16 20:52:03 UTC	1850	IN	Data Raw: 65 3a 21 30 2c 77 72 69 74 61 62 6c 65 3a 21 30 2c 76 61 6c 75 65 3a 68 7d 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 74 6f 53 74 72 69 6e 67 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 67 7d 3b 76 61 72 20 63 3d 22 6a 73 63 6f 6d 70 5f 73 79 6d 62 6f 6c 5f 22 2b 28 31 45 39 2a 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 3e 3e 3e 30 29 2b 22 5f 22 2c 64 3d 30 2c 65 3d 66 75 6e 63 74 69 6f 6e 28 66 29 7b 69 66 28 74 68 69 73 20 69 6e 73 74 61 6e 63 65 6f 66 20 65 29 74 68 72 6f 77 20 6e 65 77 20 54 79 70 65 45 72 72 6f 72 28 22 62 22 29 3b 72 65 74 75 72 6e 20 6e 65 77 20 62 28 63 2b 28 66 7c 7c 22 22 29 2b 22 5f 22 2b 64 2b 2b 2c 66 29 7d 3b 72 65 74 75 72 6e 20 65 7d 29 3b 0a 45 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 Data Ascii: e:!0,writable:!0,value:h})};b.prototype.toString=function(){return this.g};var c="jscomp_symbol_"+(1E9*Math.random()>>>0)+"_",d=0,e=function(f){if(this instanceof e)throw new TypeError("b");return new b(c+(f\|\|"")+"_"+d++,f)};return e});E("Symbol.iterator
2024-04-16 20:52:03 UTC	1850	IN	Data Raw: 63 74 2e 69 73 45 78 74 65 6e 73 69 62 6c 65 28 6d 29 26 26 64 28 6d 29 3b 72 65 74 75 72 6e 20 6c 28 6d 29 7d 29 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 21 4f 62 6a 65 63 74 2e 73 65 61 6c 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 6b 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 6c 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 6d 3d 6e 65 77 20 61 28 5b 5b 6b 2c 32 5d 2c 5b 6c 2c 33 5d 5d 29 3b 69 66 28 32 21 3d 6d 2e 67 65 74 28 6b 29 7c 7c 33 21 3d 6d 2e 67 65 74 28 6c 29 29 72 65 74 75 72 6e 21 31 3b 6d 2e 64 65 6c 65 74 65 28 6b 29 3b 6d 2e 73 65 74 28 6c 2c 34 29 3b 72 65 74 75 72 6e 21 6d 2e 68 61 73 28 6b 29 26 26 34 3d 3d 6d 2e 67 65 74 28 6c 29 7d 63 61 74 63 68 28 72 29 7b 72 65 74 75 72 6e 21 31 Data Ascii: ct.isExtensible(m)&&d(m);return l(m)})}if(function(){if(!a\|\|!Object.seal)return!1;try{var k=Object.seal({}),l=Object.seal({}),m=new a([[k,2],[l,3]]);if(2!=m.get(k)\|\|3!=m.get(l))return!1;m.delete(k);m.set(l,4);return!m.has(k)&&4==m.get(l)}catch(r){return!1
2024-04-16 20:52:03 UTC	1850	IN	Data Raw: 65 61 64 3d 0a 6e 75 6c 6c 2c 74 68 69 73 2e 73 69 7a 65 2d 2d 2c 21 30 29 3a 21 31 7d 3b 63 2e 70 72 6f 74 6f 74 79 70 65 2e 63 6c 65 61 72 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 74 68 69 73 5b 30 5d 3d 7b 7d 3b 74 68 69 73 5b 31 5d 3d 74 68 69 73 5b 31 5d 2e 75 3d 66 28 29 3b 74 68 69 73 2e 73 69 7a 65 3d 30 7d 3b 63 2e 70 72 6f 74 6f 74 79 70 65 2e 68 61 73 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 72 65 74 75 72 6e 21 21 64 28 74 68 69 73 2c 67 29 2e 6c 7d 3b 63 2e 70 72 6f 74 6f 74 79 70 65 2e 67 65 74 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 72 65 74 75 72 6e 28 67 3d 64 28 74 68 69 73 2c 67 29 2e 6c 29 26 26 67 2e 76 61 6c 75 65 7d 3b 63 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 65 28 74 Data Ascii: ead=null,this.size--,!0):!1};c.prototype.clear=function(){this[0]={};this[1]=this[1].u=f();this.size=0};c.prototype.has=function(g){return!!d(this,g).l};c.prototype.get=function(g){return(g=d(this,g).l)&&g.value};c.prototype.entries=function(){return e(t
2024-04-16 20:52:03 UTC	1850	IN	Data Raw: 63 29 7b 72 65 74 75 72 6e 20 62 3d 3d 3d 63 3f 30 21 3d 3d 62 7c 7c 31 2f 62 3d 3d 3d 31 2f 63 3a 62 21 3d 3d 62 26 26 63 21 3d 3d 63 7d 7d 29 3b 45 28 22 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 2e 69 6e 63 6c 75 64 65 73 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 2c 63 29 7b 76 61 72 20 64 3d 74 68 69 73 3b 64 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 64 3d 53 74 72 69 6e 67 28 64 29 29 3b 76 61 72 20 65 3d 64 2e 6c 65 6e 67 74 68 3b 63 3d 63 7c 7c 30 3b 66 6f 72 28 30 3e 63 26 26 28 63 3d 4d 61 74 68 2e 6d 61 78 28 63 2b 65 2c 30 29 29 3b 63 3c 65 3b 63 2b 2b 29 7b 76 61 72 20 66 3d 64 5b 63 5d 3b 69 66 28 66 3d 3d 3d 62 7c 7c 4f 62 6a 65 63 74 2e 69 73 28 66 2c 62 Data Ascii: c){return b===c?0!==b\|\|1/b===1/c:b!==b&&c!==c}});E("Array.prototype.includes",function(a){return a?a:function(b,c){var d=this;d instanceof String&&(d=String(d));var e=d.length;c=c\|\|0;for(0>c&&(c=Math.max(c+e,0));c<e;c++){var f=d[c];if(f===b\|\|Object.is(f,b
2024-04-16 20:52:03 UTC	1850	IN	Data Raw: 76 61 72 20 22 2b 61 5b 30 5d 29 3b 66 6f 72 28 76 61 72 20 64 3b 61 2e 6c 65 6e 67 74 68 26 26 28 64 3d 61 2e 73 68 69 66 74 28 29 29 3b 29 61 2e 6c 65 6e 67 74 68 7c 7c 76 6f 69 64 20 30 3d 3d 3d 62 3f 63 5b 64 5d 26 26 63 5b 64 5d 21 3d 3d 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 5b 64 5d 3f 63 3d 63 5b 64 5d 3a 63 3d 63 5b 64 5d 3d 7b 7d 3a 63 5b 64 5d 3d 62 7d 2c 49 3d 66 75 6e 63 74 69 6f 6e 28 61 2c 62 29 7b 66 75 6e 63 74 69 6f 6e 20 63 28 29 7b 7d 63 2e 70 72 6f 74 6f 74 79 70 65 3d 62 2e 70 72 6f 74 6f 74 79 70 65 3b 61 2e 41 3d 62 2e 70 72 6f 74 6f 74 79 70 65 3b 61 2e 70 72 6f 74 6f 74 79 70 65 3d 6e 65 77 20 63 3b 61 2e 70 72 6f 74 6f 74 79 70 65 2e 63 6f 6e 73 74 72 75 63 74 6f 72 3d 61 3b 61 2e 65 61 3d 66 75 6e 63 74 69 6f 6e 28 64 Data Ascii: var "+a[0]);for(var d;a.length&&(d=a.shift());)a.length\|\|void 0===b?c[d]&&c[d]!==Object.prototype[d]?c=c[d]:c=c[d]={}:c[d]=b},I=function(a,b){function c(){}c.prototype=b.prototype;a.A=b.prototype;a.prototype=new c;a.prototype.constructor=a;a.ea=function(d
2024-04-16 20:52:03 UTC	1850	IN	Data Raw: 61 6d 65 3a 61 2e 66 69 6c 65 4e 61 6d 65 2c 73 74 61 63 6b 3a 62 7d 3a 28 63 3d 61 2e 6d 65 73 73 61 67 65 2c 6e 75 6c 6c 3d 3d 63 26 26 28 63 3d 61 2e 63 6f 6e 73 74 72 75 63 74 6f 72 26 26 61 2e 63 6f 6e 73 74 72 75 63 74 6f 72 20 69 6e 73 74 61 6e 63 65 6f 66 20 46 75 6e 63 74 69 6f 6e 3f 27 55 6e 6b 6e 6f 77 6e 20 45 72 72 6f 72 20 6f 66 20 74 79 70 65 20 22 27 2b 28 61 2e 63 6f 6e 73 74 72 75 63 74 6f 72 2e 6e 61 6d 65 3f 61 2e 63 6f 6e 73 74 72 75 63 74 6f 72 2e 6e 61 6d 65 3a 74 62 28 61 2e 63 6f 6e 73 74 72 75 63 74 6f 72 29 29 2b 27 22 27 3a 22 55 6e 6b 6e 6f 77 6e 20 45 72 72 6f 72 20 6f 66 20 75 6e 6b 6e 6f 77 6e 20 74 79 70 65 22 2c 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 3d 74 79 70 65 6f 66 20 61 2e 74 6f 53 74 72 69 6e 67 26 26 4f 62 6a 65 63 Data Ascii: ame:a.fileName,stack:b}:(c=a.message,null==c&&(c=a.constructor&&a.constructor instanceof Function?'Unknown Error of type "'+(a.constructor.name?a.constructor.name:tb(a.constructor))+'"':"Unknown Error of unknown type","function"===typeof a.toString&&Objec

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:05 UTC	1033	OUT	GET /favicon.ico HTTP/1.1 Host: www.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-arch: "x86" sec-ch-ua-full-version: "117.0.5938.132" sec-ch-ua-platform-version: "10.0.0" sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132" sec-ch-ua-bitness: "64" sec-ch-ua-model: "" sec-ch-ua-wow64: ?0 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEI3L3NAQi5ys0BCMfRzQEIidPNAQjc080BCMvWzQEI9NbNAQiK180BCKfYzQEI+cDUFRi60s0BGMvYzQEY642lFw== Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://accounts.google.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-16 20:52:05 UTC	707	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable" Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} Content-Length: 5430 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Mon, 15 Apr 2024 14:07:06 GMT Expires: Tue, 23 Apr 2024 14:07:06 GMT Cache-Control: public, max-age=691200 Last-Modified: Tue, 22 Oct 2019 18:30:00 GMT Content-Type: image/x-icon Vary: Accept-Encoding Age: 110699 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-04-16 20:52:05 UTC	548	IN	Data Raw: 00 00 01 00 02 00 10 10 00 00 01 00 20 00 68 04 00 00 26 00 00 00 20 20 00 00 01 00 20 00 a8 10 00 00 8e 04 00 00 28 00 00 00 10 00 00 00 20 00 00 00 01 00 20 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ff ff ff 30 fd fd fd 96 fd fd fd d8 fd fd fd f9 fd fd fd f9 fd fd fd d7 fd fd fd 94 fe fe fe 2e 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fe fe fe 09 fd fd fd 99 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff fd fd fd 95 ff ff ff 08 00 00 00 00 00 00 00 00 00 00 00 00 fe fe fe 09 fd fd fd c1 ff ff ff ff fa fd f9 ff b4 d9 a7 ff 76 ba 5d ff 58 ab 3a ff 58 aa 3a ff 72 b8 59 ff ac d5 9d ff f8 fb f6 ff ff Data Ascii: h& ( 0.v]X:X:rY
2024-04-16 20:52:05 UTC	1255	IN	Data Raw: ff ff ff ff ff ff ff ff ff ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f7 a6 75 ff ff ff ff ff fd fd fd f9 fd fd fd fa ff ff ff ff 0b be fb ff 05 bc fb ff b6 ec fe ff ff ff ff ff ff ff ff ff ff ff ff ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f7 aa 7b ff ff ff ff ff fd fd fd f9 fd fd fd db ff ff ff ff 35 c9 fc ff 0a b2 f9 ff 6b a4 f6 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff fd fd fd d8 fd fd fd 99 ff ff ff ff 92 cf fb ff 37 52 ec ff 38 46 ea ff d0 d4 fa ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff fd fd ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff fd fd fd 96 fe fe fe 32 ff ff ff ff f9 f9 fe ff 56 62 ed ff 35 43 ea ff 3b Data Ascii: BBBBBuBBBBB{5k7R8F2Vb5C;
2024-04-16 20:52:05 UTC	1255	IN	Data Raw: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff fd fd fd e8 fe fe fe 2f 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fe fe fe 24 fd fd fd ea ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff eb f5 e7 ff 8f c6 7b ff 54 a9 36 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 7e be 67 ff dd ee d7 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff fd fd fd e8 ff ff ff 22 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ff ff ff 0a fd fd fd d3 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff c4 e1 b9 ff 5c ac 3e ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff 53 a8 34 ff Data Ascii: /${T6S4S4S4S4S4S4S4S4S4~g"\>S4S4S4S4S4S4S4S4S4S4S4
2024-04-16 20:52:05 UTC	1255	IN	Data Raw: ff ff ff ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff fa c8 aa ff ff ff ff ff ff ff ff ff ff ff ff ff fd fd fd ea fd fd fd fa ff ff ff ff ff ff ff ff ff ff ff ff 07 bd fb ff 05 bc fb ff 05 bc fb ff 05 bc fb ff 7d dc fd ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f4 85 42 ff f9 c1 9f ff ff ff ff ff ff ff ff ff ff ff ff ff fd fd fd f9 fd fd fd fa ff ff ff ff ff ff ff ff ff ff ff ff 07 bd fb ff 05 bc fb ff 05 bc fb ff 05 bc fb ff 7d dc fd ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff Data Ascii: BBBBBBBBBBB}BBBBBBBBBBB}
2024-04-16 20:52:05 UTC	1117	IN	Data Raw: ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 81 8a f2 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff fd fd fd 8a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fe fe fe 0b fd fd fd d5 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff b5 ba f7 ff 3e 4b eb ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 35 43 ea ff 3f 4c eb ff ba bf f8 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff fd fd fd d2 fe fe fe 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fe fe fe 26 fd fd fd eb ff ff ff ff ff ff ff ff ff ff ff ff ff ff Data Ascii: 5C5C5C5C5C5C5C5C5C5C5C5C5C5C>K5C5C5C5C5C5C5C5C5C5C5C5C?L&

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:11 UTC	812	OUT	GET /manifest/threshold.appcache HTTP/1.1 Accept: / Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Origin: https://www.bing.com Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: www.bing.com Connection: Keep-Alive Cookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1707317782133&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1707317784&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
2024-04-16 20:52:11 UTC	181	IN	HTTP/1.1 200 OK X-MSEdge-Ref: Ref A: AEC6546B6BF64F219C0E2D0A4263EB41 Ref B: ATL331000108031 Ref C: 2024-04-16T20:52:11Z Date: Tue, 16 Apr 2024 20:52:11 GMT Connection: close
2024-04-16 20:52:11 UTC	875	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 20 50 55 42 4c 49 43 20 27 2d 2f 2f 57 33 43 2f 2f 44 54 44 20 58 48 54 4d 4c 20 31 2e 30 20 54 72 61 6e 73 69 74 69 6f 6e 61 6c 2f 2f 45 4e 27 20 27 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 54 52 2f 78 68 74 6d 6c 31 2f 44 54 44 2f 78 68 74 6d 6c 31 2d 74 72 61 6e 73 69 74 69 6f 6e 61 6c 2e 64 74 64 27 3e 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 27 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 27 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 27 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 27 20 68 74 74 70 2d 65 71 75 69 76 3d 27 63 6f 6e 74 65 6e 74 2d 74 79 70 65 27 2f 3e 3c 73 74 79 6c 65 20 74 79 70 65 3d 27 74 65 78 74 Data Ascii: <!DOCTYPE html PUBLIC '-//W3C//DTD XHTML 1.0 Transitional//EN' 'http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd'><html xmlns='http://www.w3.org/1999/xhtml'><head><meta content='text/html; charset=utf-8' http-equiv='content-type'/><style type='text

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:12 UTC	422	OUT	POST /RST2.srf HTTP/1.0 Connection: Keep-Alive Content-Type: application/soap+xml Accept: / User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 10.0; Win64; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; IDCRL 24.10.0.19045.0.0; IDCRL-cfg 16.000.29743.00; App svchost.exe, 10.0.19041.1806, {DF60E2DF-88AD-4526-AE21-83D130EF0F68}) Content-Length: 3592 Host: login.live.com
2024-04-16 20:52:12 UTC	3592	OUT	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 3c 73 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 70 73 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 73 2e 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 50 61 73 73 70 6f 72 74 2f 53 6f 61 70 53 65 72 76 69 63 65 73 2f 50 50 43 52 4c 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 Data Ascii: <?xml version="1.0" encoding="UTF-8"?><s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:ps="http://schemas.microsoft.com/Passport/SoapServices/PPCRL" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1
2024-04-16 20:52:12 UTC	569	IN	HTTP/1.1 200 OK Cache-Control: no-store, no-cache Pragma: no-cache Content-Type: application/soap+xml; charset=utf-8 Expires: Tue, 16 Apr 2024 20:51:12 GMT P3P: CP="DSP CUR OTPi IND OTRi ONL FIN" Referrer-Policy: strict-origin-when-cross-origin x-ms-route-info: C538_SN1 x-ms-request-id: cfb8555f-ce1a-4245-a5a1-5ddeb943b6a4 PPServer: PPV: 30 H: SN1PEPF0002F993 V: 0 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 X-XSS-Protection: 1; mode=block Date: Tue, 16 Apr 2024 20:52:12 GMT Connection: close Content-Length: 11390
2024-04-16 20:52:12 UTC	11390	IN	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 20 3f 3e 3c 53 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 53 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 2e 30 2e 78 73 64 22 20 78 6d 6c 6e 73 3a 77 73 75 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 Data Ascii: <?xml version="1.0" encoding="utf-8" ?><S:Envelope xmlns:S="http://www.w3.org/2003/05/soap-envelope" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:12 UTC	306	OUT	GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=66ka7AY8zWtDbHC&MD=LZZ2D3WS HTTP/1.1 Connection: Keep-Alive Accept: / User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33 Host: slscr.update.microsoft.com
2024-04-16 20:52:12 UTC	560	IN	HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Type: application/octet-stream Expires: -1 Last-Modified: Mon, 01 Jan 0001 00:00:00 GMT ETag: "XAopazV00XDWnJCwkmEWRv6JkbjRA9QSSZ2+e/3MzEk=_2880" MS-CorrelationId: f1e286ba-fea8-4447-bc3e-b953270dfea7 MS-RequestId: 617dd602-8391-4703-8ca3-6c59a90c92a1 MS-CV: Otq6AAFW6EWpQrHG.0 X-Microsoft-SLSClientCache: 2880 Content-Disposition: attachment; filename=environment.cab X-Content-Type-Options: nosniff Date: Tue, 16 Apr 2024 20:52:12 GMT Connection: close Content-Length: 24490
2024-04-16 20:52:12 UTC	15824	IN	Data Raw: 4d 53 43 46 00 00 00 00 92 1e 00 00 00 00 00 00 44 00 00 00 00 00 00 00 03 01 01 00 01 00 04 00 23 d0 00 00 14 00 00 00 00 00 10 00 92 1e 00 00 18 41 00 00 00 00 00 00 00 00 00 00 64 00 00 00 01 00 01 00 e6 42 00 00 00 00 00 00 00 00 00 00 00 00 80 00 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 63 61 62 00 78 cf 8d 5c 26 1e e6 42 43 4b ed 5c 07 54 13 db d6 4e a3 f7 2e d5 d0 3b 4c 42 af 4a 57 10 e9 20 bd 77 21 94 80 88 08 24 2a 02 02 d2 55 10 a4 a8 88 97 22 8a 0a d2 11 04 95 ae d2 8b 20 28 0a 88 20 45 05 f4 9f 80 05 bd ed dd f7 ff 77 dd f7 bf 65 d6 4a 66 ce 99 33 67 4e d9 7b 7f fb db 7b 56 f4 4d 34 b4 21 e0 a7 03 0a d9 fc 68 6e 1d 20 70 28 14 02 85 20 20 ad 61 10 08 e3 66 0d ed 66 9b 1d 6a 90 af 1f 17 f0 4b 68 35 01 83 6c fb 44 42 5c 7d 83 3d 03 30 be 3e ae be 58 Data Ascii: MSCFD#AdBenvironment.cabx\&BCK\TN.;LBJW w!$*U" ( EweJf3gN{{VM4!hn p( affjKh5lDB\}=0>X
2024-04-16 20:52:12 UTC	8666	IN	Data Raw: 04 01 31 2f 30 2d 30 0a 02 05 00 e1 2b 8a 50 02 01 00 30 0a 02 01 00 02 02 12 fe 02 01 ff 30 07 02 01 00 02 02 11 e6 30 0a 02 05 00 e1 2c db d0 02 01 00 30 36 06 0a 2b 06 01 04 01 84 59 0a 04 02 31 28 30 26 30 0c 06 0a 2b 06 01 04 01 84 59 0a 03 02 a0 0a 30 08 02 01 00 02 03 07 a1 20 a1 0a 30 08 02 01 00 02 03 01 86 a0 30 0d 06 09 2a 86 48 86 f7 0d 01 01 05 05 00 03 81 81 00 0c d9 08 df 48 94 57 65 3e ad e7 f2 17 9c 1f ca 3d 4d 6c cd 51 e1 ed 9c 17 a5 52 35 0f fd de 4b bd 22 92 c5 69 e5 d7 9f 29 23 72 40 7a ca 55 9d 8d 11 ad d5 54 00 bb 53 b4 87 7b 72 84 da 2d f6 e3 2c 4f 7e ba 1a 58 88 6e d6 b9 6d 16 ae 85 5b b5 c2 81 a8 e0 ee 0a 9c 60 51 3a 7b e4 61 f8 c3 e4 38 bd 7d 28 17 d6 79 f0 c8 58 c6 ef 1f f7 88 65 b1 ea 0a c0 df f7 ee 5c 23 c2 27 fd 98 63 08 31 Data Ascii: 1/0-0+P000,06+Y1(0&0+Y0 00*HHWe>=MlQR5K"i)#r@zUTS{r-,O~Xnm[`Q:{a8}(yXe\#'c1

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:12 UTC	684	OUT	POST /Collector/3.0/?qsp=true&content-type=application%2Fbond-compact-binary&client-id=NO_AUTH&sdk-version=AWT-Web-CJS-1.2.0&x-apikey=33d70a864599496b982a39f036f71122-2064703e-3a9d-4d90-8362-eec08dffe8e8-7176 HTTP/1.1 Origin: https://www.bing.com Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: / Accept-Language: en-CH Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: browser.pipe.aria.microsoft.com Content-Length: 987 Connection: Keep-Alive Cache-Control: no-cache
2024-04-16 20:52:12 UTC	987	OUT	Data Raw: 6d 09 0b 01 4a 33 33 64 37 30 61 38 36 34 35 39 39 34 39 36 62 39 38 32 61 33 39 66 30 33 36 66 37 31 31 32 32 2d 32 30 36 34 37 30 33 65 2d 33 61 39 64 2d 34 64 39 30 2d 38 33 36 32 2d 65 65 63 30 38 64 66 66 65 38 65 38 2d 37 31 37 36 0a 01 49 12 61 63 74 5f 64 65 66 61 75 6c 74 5f 73 6f 75 72 63 65 a9 24 38 38 63 34 32 33 65 63 2d 66 31 35 33 2d 34 34 34 35 2d 61 36 63 34 2d 62 35 65 62 32 39 63 61 62 36 31 33 d1 06 96 dc f3 8a dd 63 cb 08 0a 01 29 24 32 36 35 37 36 30 34 38 2d 61 30 61 34 2d 34 35 33 34 2d 39 61 36 34 2d 35 31 65 37 61 33 31 39 30 34 39 63 71 ac cc f3 8a dd 63 a9 14 63 75 73 74 6f 6d 2e 43 6c 69 65 6e 74 5f 45 76 65 6e 74 73 c9 06 0e 76 61 72 69 61 6e 74 5f 65 76 65 6e 74 73 cd 0d 09 09 19 0a 64 65 76 69 63 65 54 79 70 65 07 44 45 53 Data Ascii: mJ33d70a864599496b982a39f036f71122-2064703e-3a9d-4d90-8362-eec08dffe8e8-7176Iact_default_source$88c423ec-f153-4445-a6c4-b5eb29cab613c)$26576048-a0a4-4534-9a64-51e7a319049cqccustom.Client_Eventsvariant_eventsdeviceTypeDES
2024-04-16 20:52:13 UTC	462	IN	HTTP/1.1 200 OK Content-Length: 0 Content-Type: application/json Server: Microsoft-HTTPAPI/2.0 Strict-Transport-Security: max-age=31536000 time-delta-millis: 1111 Access-Control-Allow-Origin: * Access-Control-Allow-Methods: POST Access-Control-Allow-Headers: Accept, Content-Type, Content-Encoding, Client-Id Access-Control-Expose-Headers: kill-tokens, kill-duration-seconds, time-delta-millis Date: Tue, 16 Apr 2024 20:52:12 GMT Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:13 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-04-16 20:52:13 UTC	468	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (chd/079C) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-eus2-z1 Cache-Control: public, max-age=123036 Date: Tue, 16 Apr 2024 20:52:13 GMT Connection: close X-CID: 2

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:14 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-04-16 20:52:14 UTC	531	IN	HTTP/1.1 200 OK Last-Modified: Tue, 16 May 2017 22:58:00 GMT ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Content-Type: application/octet-stream ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json X-Azure-Ref: 0rcGnYgAAAAANOnx9vccHTr21ROgX9ESTU0pDRURHRTAzMDkAY2VmYzI1ODMtYTliMi00NGE3LTk3NTUtYjc2ZDE3ZTA1Zjdm Cache-Control: public, max-age=123078 Date: Tue, 16 Apr 2024 20:52:14 GMT Content-Length: 55 Connection: close X-CID: 2
2024-04-16 20:52:14 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:14 UTC	1188	OUT	GET /AS/API/WindowsCortanaPane/V2/Suggestions?qry=st&setlang=en-CH&cc=CH&nohs=1&qfm=1&cp=2&cvid=06383237da004593a51c2cfed9916957&ig=4aa0e05b1fdf4fef8ea380075a1f6b48 HTTP/1.1 Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: / Accept-Language: en-CH X-BM-ClientFeatures: FontV22,LightAnswers,PreviewPaneAvailable,RevStore X-MSEdge-ExternalExp: d-thshld42,dsbdailyset_c,expmegaclick_cf,hashexpt3,iffsqloptwin10c,msbdsbedu9cf,wsbqfnewsynonym,wsbref-t,wsbswgc-t2 X-MSEdge-ExternalExpType: JointCoord Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: www.bing.com Connection: Keep-Alive Cookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1713300731144&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1713300733&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
2024-04-16 20:52:14 UTC	1190	IN	HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Content-Length: 7395 Content-Type: application/json; charset=utf-8 Expires: -1 P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND" Set-Cookie: _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; domain=.bing.com; path=/; HttpOnly Set-Cookie: MUIDB=5047E5942BB2460EA35B53CCF78DDB3D; expires=Sun, 11-May-2025 20:52:14 GMT; path=/; HttpOnly X-EventID: 661ee4feecdd401397a8e05a8630bc47 UserAgentReductionOptOut: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0= X-XSS-Protection: 0 X-Cache: CONFIG_NOCACHE Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 9A2E3530FA4D40A3AA785DFE1A34C863 Ref B: ATL331000102033 Ref C: 2024-04-16T20:52:14Z Date: Tue, 16 Apr 2024 20:52:14 GMT Connection: close
2024-04-16 20:52:14 UTC	1841	IN	Data Raw: 7b 22 52 65 73 6f 75 72 63 65 73 22 3a 7b 22 53 74 79 6c 65 73 22 3a 7b 22 43 73 73 48 65 61 64 4e 6f 72 6d 61 6c 22 3a 7b 7d 2c 22 43 73 73 48 65 61 64 4f 76 65 72 72 69 64 65 22 3a 7b 7d 7d 2c 22 53 63 72 69 70 74 73 22 3a 7b 22 4a 73 48 65 61 64 54 6f 70 6d 6f 73 74 22 3a 7b 7d 2c 22 4a 73 48 65 61 64 4e 6f 72 6d 61 6c 22 3a 7b 7d 2c 22 4a 73 45 6e 64 4f 66 43 68 75 6e 6b 22 3a 7b 7d 2c 22 4a 73 42 65 66 6f 72 65 43 6f 6e 74 65 6e 74 22 3a 7b 7d 2c 22 4a 73 41 66 74 65 72 43 6f 6e 74 65 6e 74 22 3a 7b 7d 2c 22 4a 73 41 66 74 65 72 4f 6e 4c 6f 61 64 22 3a 7b 7d 7d 7d 2c 22 53 75 67 67 65 73 74 69 6f 6e 73 22 3a 5b 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 75 72 6c 22 3a 22 2f 73 65 61 72 63 68 3f 71 3d 73 74 65 61 6d 5c 75 30 30 32 36 66 69 6c 74 Data Ascii: {"Resources":{"Styles":{"CssHeadNormal":{},"CssHeadOverride":{}},"Scripts":{"JsHeadTopmost":{},"JsHeadNormal":{},"JsEndOfChunk":{},"JsBeforeContent":{},"JsAfterContent":{},"JsAfterOnLoad":{}}},"Suggestions":[{"Attributes":{"url":"/search?q=steam\u0026filt
2024-04-16 20:52:14 UTC	1288	IN	Data Raw: 22 52 61 6e 6b 69 6e 67 53 63 6f 72 65 22 3a 22 22 2c 22 51 75 65 72 79 22 3a 22 53 74 65 61 6d 20 46 6f 72 65 6e 22 2c 22 54 79 70 65 22 3a 22 45 43 53 22 7d 2c 7b 22 54 65 78 74 22 3a 22 53 79 73 74 65 6d 76 6f 72 61 75 73 73 65 74 7a 75 6e 67 65 6e 22 2c 22 53 65 63 6f 6e 64 61 72 79 54 65 78 74 22 3a 22 22 2c 22 55 72 6c 22 3a 22 2f 73 65 61 72 63 68 3f 71 3d 53 74 65 61 6d 2b 53 79 73 74 65 6d 76 6f 72 61 75 73 73 65 74 7a 75 6e 67 65 6e 5c 75 30 30 32 36 66 69 6c 74 65 72 73 3d 75 66 6e 25 33 61 25 32 32 73 74 65 61 6d 25 32 32 2b 73 69 64 25 33 61 25 32 32 34 39 31 33 32 37 37 36 2d 37 33 39 31 2d 37 34 36 62 2d 64 64 64 35 2d 35 38 38 62 37 34 34 65 36 38 61 62 25 32 32 22 2c 22 43 61 74 65 67 6f 72 79 22 3a 22 22 2c 22 52 61 6e 6b 69 6e 67 53 63 Data Ascii: "RankingScore":"","Query":"Steam Foren","Type":"ECS"},{"Text":"Systemvoraussetzungen","SecondaryText":"","Url":"/search?q=Steam+Systemvoraussetzungen\u0026filters=ufn%3a%22steam%22+sid%3a%2249132776-7391-746b-ddd5-588b744e68ab%22","Category":"","RankingSc
2024-04-16 20:52:14 UTC	4096	IN	Data Raw: 30 30 31 3a 5c 22 31 30 38 36 31 5c 22 3b 32 31 35 32 3a 5c 22 31 33 32 35 36 5c 22 3b 32 30 30 30 3a 5c 22 31 32 31 33 31 34 39 5c 22 3b 32 30 31 31 3a 5c 22 35 5c 22 3b 31 31 30 33 34 3a 5c 22 31 30 37 33 37 39 37 35 30 35 5c 22 3b 22 2c 22 68 63 73 22 3a 22 30 22 7d 2c 22 54 65 78 74 22 3a 22 ee 80 80 73 74 ee 80 81 72 65 61 6d 6b 69 73 74 65 22 2c 22 48 69 67 68 43 6f 6e 66 69 64 65 6e 63 65 4d 65 74 61 53 75 67 67 65 73 74 69 6f 6e 53 63 6f 72 65 22 3a 30 2c 22 50 72 65 66 65 74 63 68 43 6f 6e 66 69 64 65 6e 63 65 53 63 6f 72 65 22 3a 30 7d 2c 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 75 72 6c 22 3a 22 2f 73 65 61 72 63 68 3f 71 3d 73 74 75 73 73 79 22 2c 22 71 75 65 72 79 22 3a 22 73 74 75 73 73 79 22 2c 22 73 74 79 70 65 22 3a 22 41 53 22 2c Data Ascii: 001:\"10861\";2152:\"13256\";2000:\"1213149\";2011:\"5\";11034:\"1073797505\";","hcs":"0"},"Text":"streamkiste","HighConfidenceMetaSuggestionScore":0,"PrefetchConfidenceScore":0},{"Attributes":{"url":"/search?q=stussy","query":"stussy","stype":"AS",
2024-04-16 20:52:14 UTC	170	IN	Data Raw: 73 65 74 74 69 6e 67 73 5c 74 73 74 61 72 20 77 61 72 73 20 2d 20 74 68 65 20 6f 6c 64 20 72 65 70 75 62 6c 69 63 5c 74 73 74 6d 33 32 20 73 74 2d 6c 69 6e 6b 20 75 74 69 6c 69 74 79 5c 74 73 74 61 72 66 61 63 65 20 75 63 63 20 63 6c 69 65 6e 74 5c 74 73 74 65 6c 6c 61 72 69 75 6d 5c 74 73 74 6d 33 32 63 75 62 65 6d 78 5c 74 73 74 61 72 74 65 61 6d 20 63 72 6f 73 73 2d 70 6c 61 74 66 6f 72 6d 20 63 6c 69 65 6e 74 5c 74 63 6c 78 2e 73 74 61 67 65 5c 74 73 79 73 74 65 6d 73 74 65 75 65 72 75 6e 67 22 7d 7d Data Ascii: settings\tstar wars - the old republic\tstm32 st-link utility\tstarface ucc client\tstellarium\tstm32cubemx\tstarteam cross-platform client\tclx.stage\tsystemsteuerung"}}

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:14 UTC	1191	OUT	GET /AS/API/WindowsCortanaPane/V2/Suggestions?qry=store&setlang=en-CH&cc=CH&nohs=1&qfm=1&cp=5&cvid=06383237da004593a51c2cfed9916957&ig=c3cac62bd6cb435c81e9969e065052f6 HTTP/1.1 Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: / Accept-Language: en-CH X-BM-ClientFeatures: FontV22,LightAnswers,PreviewPaneAvailable,RevStore X-MSEdge-ExternalExp: d-thshld42,dsbdailyset_c,expmegaclick_cf,hashexpt3,iffsqloptwin10c,msbdsbedu9cf,wsbqfnewsynonym,wsbref-t,wsbswgc-t2 X-MSEdge-ExternalExpType: JointCoord Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: www.bing.com Connection: Keep-Alive Cookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1713300731144&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1713300733&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
2024-04-16 20:52:14 UTC	1190	IN	HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Content-Length: 5069 Content-Type: application/json; charset=utf-8 Expires: -1 P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND" Set-Cookie: _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; domain=.bing.com; path=/; HttpOnly Set-Cookie: MUIDB=5047E5942BB2460EA35B53CCF78DDB3D; expires=Sun, 11-May-2025 20:52:14 GMT; path=/; HttpOnly X-EventID: 661ee4fecde64765984ce8bb859f14e2 UserAgentReductionOptOut: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0= X-XSS-Protection: 0 X-Cache: CONFIG_NOCACHE Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 82C12F8F068A4BC28B712CF11E73BF2F Ref B: ATL331000106027 Ref C: 2024-04-16T20:52:14Z Date: Tue, 16 Apr 2024 20:52:14 GMT Connection: close
2024-04-16 20:52:14 UTC	531	IN	Data Raw: 7b 22 52 65 73 6f 75 72 63 65 73 22 3a 7b 22 53 74 79 6c 65 73 22 3a 7b 22 43 73 73 48 65 61 64 4e 6f 72 6d 61 6c 22 3a 7b 7d 2c 22 43 73 73 48 65 61 64 4f 76 65 72 72 69 64 65 22 3a 7b 7d 7d 2c 22 53 63 72 69 70 74 73 22 3a 7b 22 4a 73 48 65 61 64 54 6f 70 6d 6f 73 74 22 3a 7b 7d 2c 22 4a 73 48 65 61 64 4e 6f 72 6d 61 6c 22 3a 7b 7d 2c 22 4a 73 45 6e 64 4f 66 43 68 75 6e 6b 22 3a 7b 7d 2c 22 4a 73 42 65 66 6f 72 65 43 6f 6e 74 65 6e 74 22 3a 7b 7d 2c 22 4a 73 41 66 74 65 72 43 6f 6e 74 65 6e 74 22 3a 7b 7d 2c 22 4a 73 41 66 74 65 72 4f 6e 4c 6f 61 64 22 3a 7b 7d 7d 7d 2c 22 53 75 67 67 65 73 74 69 6f 6e 73 22 3a 5b 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 75 72 6c 22 3a 22 2f 73 65 61 72 63 68 3f 71 3d 73 74 6f 72 65 22 2c 22 71 75 65 72 79 22 3a Data Ascii: {"Resources":{"Styles":{"CssHeadNormal":{},"CssHeadOverride":{}},"Scripts":{"JsHeadTopmost":{},"JsHeadNormal":{},"JsEndOfChunk":{},"JsBeforeContent":{},"JsAfterContent":{},"JsAfterOnLoad":{}}},"Suggestions":[{"Attributes":{"url":"/search?q=store","query":
2024-04-16 20:52:14 UTC	2598	IN	Data Raw: 64 65 6e 63 65 53 63 6f 72 65 22 3a 30 2e 33 34 34 30 38 33 39 39 34 36 32 36 39 39 38 39 7d 2c 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 75 72 6c 22 3a 22 2f 73 65 61 72 63 68 3f 71 3d 73 74 6f 72 65 2b 6d 69 63 72 6f 73 6f 66 74 22 2c 22 71 75 65 72 79 22 3a 22 73 74 6f 72 65 20 6d 69 63 72 6f 73 6f 66 74 22 2c 22 73 74 79 70 65 22 3a 22 41 53 22 2c 22 6c 6d 22 3a 22 31 30 30 30 3a 5c 22 30 5c 22 3b 32 32 30 30 3a 5c 22 31 33 5c 22 3b 33 30 30 30 31 3a 5c 22 31 34 37 38 33 5c 22 3b 32 31 35 32 3a 5c 22 31 35 35 33 33 5c 22 3b 32 30 30 30 3a 5c 22 31 35 32 30 31 34 5c 22 3b 32 30 31 31 3a 5c 22 32 5c 22 3b 31 31 30 33 34 3a 5c 22 31 30 37 33 37 39 37 35 30 35 5c 22 3b 22 2c 22 68 63 73 22 3a 22 30 22 7d 2c 22 54 65 78 74 22 3a 22 ee 80 80 73 74 6f Data Ascii: denceScore":0.3440839946269989},{"Attributes":{"url":"/search?q=store+microsoft","query":"store microsoft","stype":"AS","lm":"1000:\"0\";2200:\"13\";30001:\"14783\";2152:\"15533\";2000:\"152014\";2011:\"2\";11034:\"1073797505\";","hcs":"0"},"Text":"sto
2024-04-16 20:52:14 UTC	1940	IN	Data Raw: 72 65 22 3a 31 2c 22 50 72 65 66 65 74 63 68 43 6f 6e 66 69 64 65 6e 63 65 53 63 6f 72 65 22 3a 30 7d 2c 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 73 74 79 70 65 22 3a 22 51 50 22 2c 22 68 63 22 3a 22 31 22 2c 22 68 63 73 22 3a 22 31 22 2c 22 61 70 70 49 64 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 57 69 6e 64 6f 77 73 53 74 6f 72 65 5f 38 77 65 6b 79 62 33 64 38 62 62 77 65 21 41 70 70 22 7d 2c 22 48 69 67 68 43 6f 6e 66 69 64 65 6e 63 65 4d 65 74 61 53 75 67 67 65 73 74 69 6f 6e 53 63 6f 72 65 22 3a 31 2c 22 50 72 65 66 65 74 63 68 43 6f 6e 66 69 64 65 6e 63 65 53 63 6f 72 65 22 3a 30 7d 5d 2c 22 45 4c 54 6f 6b 65 6e 22 3a 22 22 2c 22 52 61 6e 6b 69 6e 67 53 69 67 6e 61 6c 73 22 3a 7b 22 43 43 52 53 75 67 67 65 73 74 69 6f 6e 73 22 3a 22 6d 69 63 72 Data Ascii: re":1,"PrefetchConfidenceScore":0},{"Attributes":{"stype":"QP","hc":"1","hcs":"1","appId":"Microsoft.WindowsStore_8wekyb3d8bbwe!App"},"HighConfidenceMetaSuggestionScore":1,"PrefetchConfidenceScore":0}],"ELToken":"","RankingSignals":{"CCRSuggestions":"micr

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:14 UTC	1187	OUT	GET /AS/API/WindowsCortanaPane/V2/Suggestions?qry=s&setlang=en-CH&cc=CH&nohs=1&qfm=1&cp=1&cvid=06383237da004593a51c2cfed9916957&ig=fa13123c3b65485a8c0ad1d225b24786 HTTP/1.1 Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: / Accept-Language: en-CH X-BM-ClientFeatures: FontV22,LightAnswers,PreviewPaneAvailable,RevStore X-MSEdge-ExternalExp: d-thshld42,dsbdailyset_c,expmegaclick_cf,hashexpt3,iffsqloptwin10c,msbdsbedu9cf,wsbqfnewsynonym,wsbref-t,wsbswgc-t2 X-MSEdge-ExternalExpType: JointCoord Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: www.bing.com Connection: Keep-Alive Cookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1713300731144&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1713300733&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
2024-04-16 20:52:14 UTC	1190	IN	HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Content-Length: 5461 Content-Type: application/json; charset=utf-8 Expires: -1 P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND" Set-Cookie: _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; domain=.bing.com; path=/; HttpOnly Set-Cookie: MUIDB=5047E5942BB2460EA35B53CCF78DDB3D; expires=Sun, 11-May-2025 20:52:14 GMT; path=/; HttpOnly X-EventID: 661ee4fee94445d5961c0857cf05c778 UserAgentReductionOptOut: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0= X-XSS-Protection: 0 X-Cache: CONFIG_NOCACHE Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 3E8345C1F7C440CD8858898FD83461C6 Ref B: ATL331000102029 Ref C: 2024-04-16T20:52:14Z Date: Tue, 16 Apr 2024 20:52:13 GMT Connection: close
2024-04-16 20:52:14 UTC	3081	IN	Data Raw: 7b 22 52 65 73 6f 75 72 63 65 73 22 3a 7b 22 53 74 79 6c 65 73 22 3a 7b 22 43 73 73 48 65 61 64 4e 6f 72 6d 61 6c 22 3a 7b 7d 2c 22 43 73 73 48 65 61 64 4f 76 65 72 72 69 64 65 22 3a 7b 7d 7d 2c 22 53 63 72 69 70 74 73 22 3a 7b 22 4a 73 48 65 61 64 54 6f 70 6d 6f 73 74 22 3a 7b 7d 2c 22 4a 73 48 65 61 64 4e 6f 72 6d 61 6c 22 3a 7b 7d 2c 22 4a 73 45 6e 64 4f 66 43 68 75 6e 6b 22 3a 7b 7d 2c 22 4a 73 42 65 66 6f 72 65 43 6f 6e 74 65 6e 74 22 3a 7b 7d 2c 22 4a 73 41 66 74 65 72 43 6f 6e 74 65 6e 74 22 3a 7b 7d 2c 22 4a 73 41 66 74 65 72 4f 6e 4c 6f 61 64 22 3a 7b 7d 7d 7d 2c 22 53 75 67 67 65 73 74 69 6f 6e 73 22 3a 5b 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 75 72 6c 22 3a 22 2f 73 65 61 72 63 68 3f 71 3d 73 70 6f 74 69 66 79 5c 75 30 30 32 36 66 69 Data Ascii: {"Resources":{"Styles":{"CssHeadNormal":{},"CssHeadOverride":{}},"Scripts":{"JsHeadTopmost":{},"JsHeadNormal":{},"JsEndOfChunk":{},"JsBeforeContent":{},"JsAfterContent":{},"JsAfterOnLoad":{}}},"Suggestions":[{"Attributes":{"url":"/search?q=spotify\u0026fi
2024-04-16 20:52:14 UTC	48	IN	Data Raw: 22 31 33 5c 22 3b 33 30 30 30 31 3a 5c 22 31 30 33 37 32 5c 22 3b 32 31 35 32 3a 5c 22 31 30 37 32 32 5c 22 3b 32 30 30 30 3a 5c 22 31 32 35 31 Data Ascii: "13\";30001:\"10372\";2152:\"10722\";2000:\"1251
2024-04-16 20:52:14 UTC	2332	IN	Data Raw: 38 36 35 33 5c 22 3b 32 30 31 31 3a 5c 22 31 30 5c 22 3b 31 31 30 33 34 3a 5c 22 31 30 37 33 37 39 37 35 30 35 5c 22 3b 22 2c 22 68 63 73 22 3a 22 30 22 7d 2c 22 54 65 78 74 22 3a 22 ee 80 80 73 ee 80 81 75 6e 72 69 73 65 22 2c 22 48 69 67 68 43 6f 6e 66 69 64 65 6e 63 65 4d 65 74 61 53 75 67 67 65 73 74 69 6f 6e 53 63 6f 72 65 22 3a 30 2c 22 50 72 65 66 65 74 63 68 43 6f 6e 66 69 64 65 6e 63 65 53 63 6f 72 65 22 3a 30 7d 2c 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 73 74 79 70 65 22 3a 22 51 50 22 2c 22 68 63 22 3a 22 31 22 2c 22 68 63 73 22 3a 22 31 22 2c 22 61 70 70 49 64 22 3a 22 7b 37 43 35 41 34 30 45 46 2d 41 30 46 42 2d 34 42 46 43 2d 38 37 34 41 2d 43 30 46 32 45 30 42 39 46 41 38 45 7d 5c 5c 53 74 65 61 6d 5c 5c 53 74 65 61 6d 2e 65 78 65 Data Ascii: 8653\";2011:\"10\";11034:\"1073797505\";","hcs":"0"},"Text":"sunrise","HighConfidenceMetaSuggestionScore":0,"PrefetchConfidenceScore":0},{"Attributes":{"stype":"QP","hc":"1","hcs":"1","appId":"{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\\Steam\\Steam.exe

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:14 UTC	1189	OUT	GET /AS/API/WindowsCortanaPane/V2/Suggestions?qry=sto&setlang=en-CH&cc=CH&nohs=1&qfm=1&cp=3&cvid=06383237da004593a51c2cfed9916957&ig=4eb84d662f164b0b9973aa16ab8f073b HTTP/1.1 Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: / Accept-Language: en-CH X-BM-ClientFeatures: FontV22,LightAnswers,PreviewPaneAvailable,RevStore X-MSEdge-ExternalExp: d-thshld42,dsbdailyset_c,expmegaclick_cf,hashexpt3,iffsqloptwin10c,msbdsbedu9cf,wsbqfnewsynonym,wsbref-t,wsbswgc-t2 X-MSEdge-ExternalExpType: JointCoord Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: www.bing.com Connection: Keep-Alive Cookie: MUID=5047E5942BB2460EA35B53CCF78DDB3D; _SS=SID=117ACB7E7D246FD81513DF607C366EB7&CPID=1713300731144&AC=1&CPH=c645c844; _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; SRCHUID=V=2&GUID=E0DD87A720F84B6F91D233EB006F66A1&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&HV=1713300733&IPMH=3a628620&IPMID=1707317755885; MUIDB=5047E5942BB2460EA35B53CCF78DDB3D
2024-04-16 20:52:14 UTC	1190	IN	HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Content-Length: 5391 Content-Type: application/json; charset=utf-8 Expires: -1 P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND" Set-Cookie: _EDGE_S=SID=117ACB7E7D246FD81513DF607C366EB7&mkt=de-ch; domain=.bing.com; path=/; HttpOnly Set-Cookie: MUIDB=5047E5942BB2460EA35B53CCF78DDB3D; expires=Sun, 11-May-2025 20:52:14 GMT; path=/; HttpOnly X-EventID: 661ee4fe9494494f830840a72c7b2520 UserAgentReductionOptOut: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0= X-XSS-Protection: 0 X-Cache: CONFIG_NOCACHE Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 055A4A0B647946F3B3DE241A9149C721 Ref B: ATL331000102019 Ref C: 2024-04-16T20:52:14Z Date: Tue, 16 Apr 2024 20:52:13 GMT Connection: close
2024-04-16 20:52:14 UTC	1568	IN	Data Raw: 7b 22 52 65 73 6f 75 72 63 65 73 22 3a 7b 22 53 74 79 6c 65 73 22 3a 7b 22 43 73 73 48 65 61 64 4e 6f 72 6d 61 6c 22 3a 7b 7d 2c 22 43 73 73 48 65 61 64 4f 76 65 72 72 69 64 65 22 3a 7b 7d 7d 2c 22 53 63 72 69 70 74 73 22 3a 7b 22 4a 73 48 65 61 64 54 6f 70 6d 6f 73 74 22 3a 7b 7d 2c 22 4a 73 48 65 61 64 4e 6f 72 6d 61 6c 22 3a 7b 7d 2c 22 4a 73 45 6e 64 4f 66 43 68 75 6e 6b 22 3a 7b 7d 2c 22 4a 73 42 65 66 6f 72 65 43 6f 6e 74 65 6e 74 22 3a 7b 7d 2c 22 4a 73 41 66 74 65 72 43 6f 6e 74 65 6e 74 22 3a 7b 7d 2c 22 4a 73 41 66 74 65 72 4f 6e 4c 6f 61 64 22 3a 7b 7d 7d 7d 2c 22 53 75 67 67 65 73 74 69 6f 6e 73 22 3a 5b 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 75 72 6c 22 3a 22 2f 73 65 61 72 63 68 3f 71 3d 73 74 6f 63 6b 78 22 2c 22 71 75 65 72 79 22 Data Ascii: {"Resources":{"Styles":{"CssHeadNormal":{},"CssHeadOverride":{}},"Scripts":{"JsHeadTopmost":{},"JsHeadNormal":{},"JsEndOfChunk":{},"JsBeforeContent":{},"JsAfterContent":{},"JsAfterOnLoad":{}}},"Suggestions":[{"Attributes":{"url":"/search?q=stockx","query"
2024-04-16 20:52:14 UTC	1561	IN	Data Raw: 34 30 5c 22 3b 32 30 30 30 3a 5c 22 32 38 39 31 35 38 5c 22 3b 32 30 31 31 3a 5c 22 35 5c 22 3b 31 31 30 33 34 3a 5c 22 31 30 37 33 37 39 37 35 30 35 5c 22 3b 22 2c 22 68 63 73 22 3a 22 30 22 7d 2c 22 54 65 78 74 22 3a 22 ee 80 80 73 74 6f ee 80 81 6e 65 20 69 73 6c 61 6e 64 22 2c 22 48 69 67 68 43 6f 6e 66 69 64 65 6e 63 65 4d 65 74 61 53 75 67 67 65 73 74 69 6f 6e 53 63 6f 72 65 22 3a 30 2c 22 50 72 65 66 65 74 63 68 43 6f 6e 66 69 64 65 6e 63 65 53 63 6f 72 65 22 3a 30 7d 2c 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 75 72 6c 22 3a 22 2f 73 65 61 72 63 68 3f 71 3d 73 74 6f 72 65 22 2c 22 71 75 65 72 79 22 3a 22 73 74 6f 72 65 22 2c 22 73 74 79 70 65 22 3a 22 41 53 22 2c 22 6c 6d 22 3a 22 31 30 30 30 3a 5c 22 30 5c 22 3b 32 32 30 30 3a 5c 22 31 33 Data Ascii: 40\";2000:\"289158\";2011:\"5\";11034:\"1073797505\";","hcs":"0"},"Text":"stone island","HighConfidenceMetaSuggestionScore":0,"PrefetchConfidenceScore":0},{"Attributes":{"url":"/search?q=store","query":"store","stype":"AS","lm":"1000:\"0\";2200:\"13
2024-04-16 20:52:14 UTC	2262	IN	Data Raw: 72 65 22 3a 30 2c 22 50 72 65 66 65 74 63 68 43 6f 6e 66 69 64 65 6e 63 65 53 63 6f 72 65 22 3a 30 7d 2c 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 73 74 79 70 65 22 3a 22 51 50 22 2c 22 68 63 22 3a 22 31 22 2c 22 68 63 73 22 3a 22 31 22 2c 22 61 70 70 49 64 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 57 69 6e 64 6f 77 73 53 74 6f 72 65 5f 38 77 65 6b 79 62 33 64 38 62 62 77 65 21 41 70 70 22 7d 2c 22 48 69 67 68 43 6f 6e 66 69 64 65 6e 63 65 4d 65 74 61 53 75 67 67 65 73 74 69 6f 6e 53 63 6f 72 65 22 3a 31 2c 22 50 72 65 66 65 74 63 68 43 6f 6e 66 69 64 65 6e 63 65 53 63 6f 72 65 22 3a 30 7d 2c 7b 22 41 74 74 72 69 62 75 74 65 73 22 3a 7b 22 73 74 79 70 65 22 3a 22 51 50 22 2c 22 68 63 22 3a 22 31 22 2c 22 68 63 73 22 3a 22 31 22 2c 22 61 70 70 49 64 22 Data Ascii: re":0,"PrefetchConfidenceScore":0},{"Attributes":{"stype":"QP","hc":"1","hcs":"1","appId":"Microsoft.WindowsStore_8wekyb3d8bbwe!App"},"HighConfidenceMetaSuggestionScore":1,"PrefetchConfidenceScore":0},{"Attributes":{"stype":"QP","hc":"1","hcs":"1","appId"

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:15 UTC	462	OUT	GET /conf/v2/asgw/fpconfig.min.json?monitorId=asgw HTTP/1.1 Origin: https://www.bing.com Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: / Accept-Language: en-CH Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: fp.msedge.net Connection: Keep-Alive
2024-04-16 20:52:15 UTC	431	IN	HTTP/1.1 200 OK Cache-Control: public,max-age=900 Content-Length: 18094 Content-Type: application/json; charset=utf-8 ETag: "1507013247" Access-Control-Allow-Origin: * Request-Context: appId=cid-v1:b183296d-485b-49fc-81c7-a511e61d1309 X-Cache: CONFIG_NOCACHE X-MSEdge-Ref: Ref A: ADE0CF110B904400A15811C04F2B2DF4 Ref B: ATL331000108019 Ref C: 2024-04-16T20:52:15Z Date: Tue, 16 Apr 2024 20:52:15 GMT Connection: close
2024-04-16 20:52:15 UTC	2568	IN	Data Raw: 7b 22 73 22 3a 35 30 30 30 2c 22 6e 22 3a 33 2c 22 65 22 3a 5b 7b 22 65 22 3a 22 2a 2e 61 7a 72 2e 66 6f 6f 74 70 72 69 6e 74 64 6e 73 2e 63 6f 6d 22 2c 22 77 22 3a 35 30 30 30 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 2a 2e 63 6c 6f 2e 66 6f 6f 74 70 72 69 6e 74 64 6e 73 2e 63 6f 6d 22 2c 22 77 22 3a 32 30 30 30 2c 22 6d 22 3a 31 7d 2c 7b 22 65 22 3a 22 2a 2e 63 6c 6f 2e 66 6f 6f 74 70 72 69 6e 74 64 6e 73 2e 63 6f 6d 22 2c 22 77 22 3a 31 30 30 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 2a 2e 6e 72 62 2e 66 6f 6f 74 70 72 69 6e 74 64 6e 73 2e 63 6f 6d 22 2c 22 77 22 3a 34 32 30 2c 22 6d 22 3a 33 7d 2c 7b 22 65 22 3a 22 61 66 64 78 74 65 73 74 2e 7a 30 31 2e 61 7a 75 72 65 66 64 2e 6e 65 74 22 2c 22 77 22 3a 35 30 30 2c 22 6d 22 3a 31 7d 2c 7b Data Ascii: {"s":5000,"n":3,"e":[{"e":".azr.footprintdns.com","w":5000,"m":128},{"e":".clo.footprintdns.com","w":2000,"m":1},{"e":".clo.footprintdns.com","w":100,"m":128},{"e":".nrb.footprintdns.com","w":420,"m":3},{"e":"afdxtest.z01.azurefd.net","w":500,"m":1},{
2024-04-16 20:52:15 UTC	1230	IN	Data Raw: 70 30 32 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 63 68 69 32 35 70 72 64 61 70 70 30 31 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 63 6f 32 70 72 64 61 70 70 30 31 2d 63 61 6e 61 72 79 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 7d 2c 7b 22 65 22 3a 22 63 6f 33 70 72 64 61 70 70 30 32 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 63 70 71 32 31 70 72 64 61 70 70 30 31 Data Ascii: p02-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"chi25prdapp01-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"co2prdapp01-canary.netmon.azure.com","w":3,"m":1},{"e":"co3prdapp02-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"cpq21prdapp01
2024-04-16 20:52:15 UTC	4096	IN	Data Raw: 70 70 30 31 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 64 6f 68 32 31 70 72 64 61 70 70 30 31 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 64 6f 68 32 31 70 72 64 61 70 70 30 32 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 64 6f 68 32 32 70 72 64 61 70 70 30 31 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 Data Ascii: pp01-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"doh21prdapp01-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"doh21prdapp02-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"doh22prdapp01-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"
2024-04-16 20:52:15 UTC	4096	IN	Data Raw: 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 69 61 64 32 30 70 72 64 61 70 70 30 32 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 6a 67 61 32 30 70 72 64 61 70 70 30 31 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 7d 2c 7b 22 65 22 3a 22 6a 67 61 32 30 70 72 64 61 70 70 30 31 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 6a 67 61 32 30 70 72 64 61 70 70 30 32 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e Data Ascii: om","w":3,"m":128},{"e":"iad20prdapp02-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"jga20prdapp01-canary-opaph.netmon.azure.com","w":3,"m":1},{"e":"jga20prdapp01-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"jga20prdapp02-canary-opaph.netmon.
2024-04-16 20:52:15 UTC	4096	IN	Data Raw: 72 79 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 70 61 72 32 32 70 72 64 61 70 70 30 31 2d 63 61 6e 61 72 79 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 70 61 72 32 33 70 72 64 61 70 70 30 32 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 70 68 78 31 30 70 72 64 61 70 70 30 31 2d 63 61 6e 61 72 79 2d 6f 70 61 70 68 2e 6e 65 74 6d 6f 6e 2e 61 7a 75 72 65 2e 63 6f 6d 22 2c 22 77 22 3a 33 2c 22 6d 22 3a 31 32 38 7d 2c 7b 22 65 22 3a 22 70 68 78 31 30 70 72 64 61 70 70 30 32 2d 63 61 6e 61 72 79 2d Data Ascii: ry.netmon.azure.com","w":3,"m":128},{"e":"par22prdapp01-canary.netmon.azure.com","w":3,"m":128},{"e":"par23prdapp02-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"phx10prdapp01-canary-opaph.netmon.azure.com","w":3,"m":128},{"e":"phx10prdapp02-canary-
2024-04-16 20:52:15 UTC	2008	IN	Data Raw: 33 7d 2c 7b 22 65 22 3a 22 74 2d 72 69 6e 67 2d 66 61 6c 6c 62 61 63 6b 73 31 2e 6d 73 65 64 67 65 2e 6e 65 74 22 2c 22 77 22 3a 32 30 30 2c 22 6d 22 3a 33 7d 2c 7b 22 65 22 3a 22 74 2d 72 69 6e 67 2d 66 61 6c 6c 62 61 63 6b 73 32 2e 6d 73 65 64 67 65 2e 6e 65 74 22 2c 22 77 22 3a 32 30 30 2c 22 6d 22 3a 33 7d 2c 7b 22 65 22 3a 22 74 2d 72 69 6e 67 2d 66 64 76 32 2e 6d 73 65 64 67 65 2e 6e 65 74 22 2c 22 77 22 3a 32 30 30 30 2c 22 6d 22 3a 33 7d 2c 7b 22 65 22 3a 22 74 2d 73 31 2d 72 69 6e 67 2e 6d 73 65 64 67 65 2e 6e 65 74 22 2c 22 77 22 3a 35 30 2c 22 6d 22 3a 33 7d 2c 7b 22 65 22 3a 22 74 2d 73 32 2d 72 69 6e 67 2e 6d 73 65 64 67 65 2e 6e 65 74 22 2c 22 77 22 3a 32 30 30 2c 22 6d 22 3a 33 7d 2c 7b 22 65 22 3a 22 74 79 31 70 72 64 61 70 70 30 31 2d 63 Data Ascii: 3},{"e":"t-ring-fallbacks1.msedge.net","w":200,"m":3},{"e":"t-ring-fallbacks2.msedge.net","w":200,"m":3},{"e":"t-ring-fdv2.msedge.net","w":2000,"m":3},{"e":"t-s1-ring.msedge.net","w":50,"m":3},{"e":"t-s2-ring.msedge.net","w":200,"m":3},{"e":"ty1prdapp01-c

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:15 UTC	2871	OUT	GET /v8.0/callerspecificdata/?market=CH&locale=en-CH&appversion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&catalogLocales=en-CH%2Cen-GB&oemId=Public&scmId=Public&moId=Public&hardware=arm0%2Carm640%2Cble0%2Ccmb0%2Ccmf0%2Ccmr0%2Cdcb1%2Cdcc1%2Cdx91%2Cdxa1%2Cdxb1%2Cgyr0%2Chce0%2Chdc0%2Chov0%2Chsa0%2Chss1%2Ckbd1%2Cm041%2Cm060%2Cm080%2Cm120%2Cm160%2Cm200%2Cm301%2Cm751%2CmA01%2Cmct0%2Cmgn0%2Cmic0%2Cmrc0%2Cmse1%2CmT01%2Cnfc0%2Crs10%2Crs20%2Crs30%2Crs40%2Crs50%2Crs60%2Ctch0%2Ctel0%2Cv010%2Cv020%2Cv040%2Cx641%2Cx860%2Cx86a640%2Cxbd0%2Cxbo0%2Cxbs0%2Cxbx0%2Cxgp0&packageHardware=dcb%2Cdcc%2Cdx9%2Cdxa%2Cdxb%2Cm30%2Cm75%2CmA0%2CmT0&pzn=1&preciseAppVersion=11910.1002.5.0&preciseDeviceFamilyVersion=2814751015241686&mfg=VMware%2C+Inc.&model=VMware20%2C1 HTTP/1.1 OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989f Accept-Encoding: gzip, deflate OSIsSMode: False OSIsGenuine: True Accept: / TASIGNORE: YES MS-PreciseDeviceFamilyVersion: 2814751015241686 User-Agent: WindowsStore/11910.1002.5.0 MS-CV: UxEEy7KhKESwa2v1.2 Accept-Language: en-CH Authorization: Bearer MSAHW1.0=t=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&p= Content-Length: 0 Content-Type: application/json; charset=UTF-8 Host: storeedgefd.dsx.mp.microsoft.com Connection: Keep-Alive Cache-Control: no-cache
2024-04-16 20:52:15 UTC	380	IN	HTTP/1.1 200 OK Content-Type: application/json; charset=utf-8 Server: Microsoft-HTTPAPI/2.0 X-OSG-Served-By: Torus-EASTUS_Legacy0007I9_1.0.0.0 MS-CV: UxEEy7KhKESwa2v1.2.0 Expires: Tue, 16 Apr 2024 20:52:15 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Tue, 16 Apr 2024 20:52:15 GMT Content-Length: 9242 Connection: close X-Segment-On: true
2024-04-16 20:52:15 UTC	9242	IN	Data Raw: 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 31 2e 52 65 73 70 6f 6e 73 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 50 61 74 68 22 3a 22 2f 63 61 6c 6c 65 72 73 70 65 63 69 66 69 63 64 61 74 61 2f 3f 6d 61 72 6b 65 74 3d 43 48 26 6c 6f 63 61 6c 65 3d 65 6e 2d 43 48 26 61 70 70 76 65 72 73 69 6f 6e 3d 31 31 39 31 30 2e 31 30 30 32 2e 30 2e 30 26 64 65 76 69 63 65 46 61 6d 69 6c 79 3d 57 69 6e 64 6f 77 73 2e 44 65 73 6b 74 6f 70 26 64 65 76 69 63 65 46 61 6d 69 6c 79 56 65 72 73 69 6f 6e 3d 32 38 31 34 37 35 30 39 37 30 34 37 38 35 Data Ascii: {"$type":"Microsoft.Marketplace.Storefront.Contracts.V1.ResponseItem, Microsoft.Marketplace.Storefront.Contracts","Path":"/callerspecificdata/?market=CH&locale=en-CH&appversion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=28147509704785

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:15 UTC	2836	OUT	GET /v8.0/secondarycallerspecificdata/?market=CH&locale=en-CH&appversion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&catalogLocales=en-CH%2Cen-GB&oemId=Public&scmId=Public&moId=Public&hardware=arm0%2Carm640%2Cble0%2Ccmb0%2Ccmf0%2Ccmr0%2Cdcb1%2Cdcc1%2Cdx91%2Cdxa1%2Cdxb1%2Cgyr0%2Chce0%2Chdc0%2Chov0%2Chsa0%2Chss1%2Ckbd1%2Cm041%2Cm060%2Cm080%2Cm120%2Cm160%2Cm200%2Cm301%2Cm751%2CmA01%2Cmct0%2Cmgn0%2Cmic0%2Cmrc0%2Cmse1%2CmT01%2Cnfc0%2Crs10%2Crs20%2Crs30%2Crs40%2Crs50%2Crs60%2Ctch0%2Ctel0%2Cv010%2Cv020%2Cv040%2Cx641%2Cx860%2Cx86a640%2Cxbd0%2Cxbo0%2Cxbs0%2Cxbx0%2Cxgp0&packageHardware=dcb%2Cdcc%2Cdx9%2Cdxa%2Cdxb%2Cm30%2Cm75%2CmA0%2CmT0&preciseAppVersion=11910.1002.5.0&preciseDeviceFamilyVersion=2814751015241686 HTTP/1.1 OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989f Accept-Encoding: gzip, deflate OSIsSMode: False OSIsGenuine: True Accept: / TASIGNORE: YES MS-PreciseDeviceFamilyVersion: 2814751015241686 User-Agent: WindowsStore/11910.1002.5.0 MS-CV: UxEEy7KhKESwa2v1.1 Accept-Language: en-CH Authorization: Bearer MSAHW1.0=t=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&p= Content-Length: 0 Content-Type: application/json; charset=UTF-8 Host: storeedgefd.dsx.mp.microsoft.com Connection: Keep-Alive Cache-Control: no-cache
2024-04-16 20:52:15 UTC	380	IN	HTTP/1.1 200 OK Content-Type: application/json; charset=utf-8 Server: Microsoft-HTTPAPI/2.0 X-OSG-Served-By: Torus-EASTUS_LEGACY000002_1.0.0.0 MS-CV: UxEEy7KhKESwa2v1.1.0 Expires: Tue, 16 Apr 2024 20:52:15 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Tue, 16 Apr 2024 20:52:15 GMT Content-Length: 9345 Connection: close X-Segment-On: true
2024-04-16 20:52:15 UTC	9345	IN	Data Raw: 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 31 2e 52 65 73 70 6f 6e 73 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 50 61 74 68 22 3a 22 2f 73 65 63 6f 6e 64 61 72 79 63 61 6c 6c 65 72 73 70 65 63 69 66 69 63 64 61 74 61 2f 3f 6d 61 72 6b 65 74 3d 43 48 26 6c 6f 63 61 6c 65 3d 65 6e 2d 43 48 26 61 70 70 76 65 72 73 69 6f 6e 3d 31 31 39 31 30 2e 31 30 30 32 2e 30 2e 30 26 64 65 76 69 63 65 46 61 6d 69 6c 79 3d 57 69 6e 64 6f 77 73 2e 44 65 73 6b 74 6f 70 26 64 65 76 69 63 65 46 61 6d 69 6c 79 56 65 72 73 69 6f 6e 3d 32 38 31 34 37 Data Ascii: {"$type":"Microsoft.Marketplace.Storefront.Contracts.V1.ResponseItem, Microsoft.Marketplace.Storefront.Contracts","Path":"/secondarycallerspecificdata/?market=CH&locale=en-CH&appversion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=28147

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:16 UTC	8927	OUT	GET /v8.0/pages/chrome?appversion=11910.1002.0.0&market=CH&locale=en-CH&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&pzn=0&userSegments=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 HTTP/1.1 OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989f Accept-Encoding: gzip, deflate OSIsSMode: False userSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c20240328,test21emulation,testcanvas,traffic-p1df-3r,traffic-pr2-ampm-wi,usewsasmodecheck,vws-chpgv2-lgtn,wishlistmvpsfaf,wsaenabledforusonly,zchen-t"}} TASGUID: a523d5be-dd8c-45ce-80bc-9648858cd753 OSIsGenuine: True Accept: / Muid: 28E37935204C689136B56D56214B6983 TASIGNORE: YES MS-PreciseDeviceFamilyVersion: 2814751015241686 User-Agent: WindowsStore/11910.1002.5.0 MS-CV: UxEEy7KhKESwa2v1.4 Accept-Language: en-CH Authorization: Bearer MSAHW1.0=t=EwCoBF8iAQAUxokDaR6V1OYTSqu3AJSFH2TqWh0AAerKgtsf2pOlTKT7oTdo7Uceu1dZt/MHfrX3RnsNNyMPHM07k3VfGs5S8Dw/TeNZq8qkolPw30fES6JBwIj+mJr01HE5xxEI6vFmO08BNrGvcwkS2nj0u+3h+Y8WnLUZ1Gvrl1Mf3RYGstYGn+jox2xpSS7gdBFukoVq2vClZc5rGW5O8ypvBZZQn8NFqDv/MTpSzHEyKpdMJ6+sfg4a0yPzOyV2+dKYgcRhLnDDe77tukvPgkFuPtoWbhOEDQHrLl5vr35NngAYQqZxjYFC6UCt7B53MOH1L13dyfrPyR6QjD0TAbHom1glQWYiLOWrPWWnLfqmid5WEFWDC78RQI8DZgAACHAH+3DY/8tLeAMCp0cIJxN2OakUG7ztcRy5hX/26s5SG2jQWs2eaMtyA/XZMsD9XI64MOWt6hbnWnpWnqzGvRbgn3mZAwDG7WA3ZXhMGtQM0Okxbf/wsVPROYN2X8jmxDrO5EJnQCRIBP1mCvL5nHMJWrahZWQUwIzxZqFqRcG9ZYT6+A6DViwJauvNzQvEHpBXEILFXYc7lBydd0iHpLMwX6wyzTq/14hdcVUQZUJarjRdDJzbso1wbKzOj0fow5qqe6anSTmmYJyVtU3eKVRiriFggdz98cCYjkPAvO+qvtzsEMqGEjcSPP8zn9s7p27g5Ze+ypWEYmpGbCbs6Ofn5pB4pyrjRf08v6bpaVD3JOu14zN1Ms2H8uOuXKwkC7YQWNxDQ6rsKjSaSAI8m5mme0lhnH/hp/J3JvE46w9JSNYesRsVaTjs2zn3LBNJz9lsxKcz+NBDMSf8jq0M1FzgIdMPsh6RDchX3we/MM0hlpiqBto8FJd2+R11yIGB0LH6OVKT6XpMESK8Wy8A4wkItsz4MdocKvB/47Ld0dxlyfjpQEG1GTGbM6K0pVfya81N7dCnNIkvpslnERLkbGavSizggVUOtD0w/a/TFiLbJZgqW8X20xc/k8Bw+5ioFk9tHlFMI8TwyGOttF2E4inI1tYtTH85MEyQz31d0M0taDq7g2f6mHyCIBT1yRaLXfvIj0X9E7p64ULkTlGi7/BvmRlqeIlJlc994B+0cJDfyrLwrCW0vVatTJoExKrNnookFpwTN2FeZ/85fssGtdVxjlnxiURCIUi4fHJo1R2BZb7/QAEsdDL+9xVXqXRlp5RcZm4pmPLM1JAOMF4OZZ2WDKwW/wNJf5Wm1WwCQUjl4FxYBxnz0y67cqOBmr0+2Vqg4zvt7Ejzcfcz3uoxvCa7PiScCSan6V0BS1tsy/JJWIGoxk0cegBrfDFVI0AV1jx+9jdQ8RRe7+/QWy4b6CssoiwL/PvOAC6WW6o6RUKGmqnW3Rf5cVTvURKzZ5L9lAdtOrY+uVhjHgvqOaHUFBMD7DTLn9zkw6oWmINp64poZORLA7WgD2mueDsTcJ9nlHV/f/NYLLukQeBjOLo98pfi3XXl+zhJFpQ5CnX08ehpLJg6cv/gG6ropYLyruRCzJRQYZuGGEIaYAjS3C3XYLT6Di9fKpTjBW9xSN65LycjF3ieAw==&p= Host: storeedgefd.dsx.mp.microsoft.com Connection: Keep-Alive
2024-04-16 20:52:16 UTC	381	IN	HTTP/1.1 200 OK Content-Type: application/json; charset=utf-8 Server: Microsoft-HTTPAPI/2.0 X-OSG-Served-By: Torus-EASTUS_Legacy000001_1.0.0.0 MS-CV: UxEEy7KhKESwa2v1.4.5 Expires: Tue, 16 Apr 2024 20:52:16 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Tue, 16 Apr 2024 20:52:16 GMT Content-Length: 17294 Connection: close X-Segment-On: true
2024-04-16 20:52:16 UTC	16003	IN	Data Raw: 5b 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 31 2e 52 65 73 70 6f 6e 73 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 50 61 74 68 22 3a 22 2f 70 61 67 65 73 2f 63 68 72 6f 6d 65 3f 61 70 70 76 65 72 73 69 6f 6e 3d 31 31 39 31 30 2e 31 30 30 32 2e 30 2e 30 26 6d 61 72 6b 65 74 3d 43 48 26 6c 6f 63 61 6c 65 3d 65 6e 2d 43 48 26 64 65 76 69 63 65 46 61 6d 69 6c 79 3d 57 69 6e 64 6f 77 73 2e 44 65 73 6b 74 6f 70 26 64 65 76 69 63 65 46 61 6d 69 6c 79 56 65 72 73 69 6f 6e 3d 32 38 31 34 37 35 30 39 37 30 34 37 38 35 39 32 26 70 7a 6e Data Ascii: [{"$type":"Microsoft.Marketplace.Storefront.Contracts.V1.ResponseItem, Microsoft.Marketplace.Storefront.Contracts","Path":"/pages/chrome?appversion=11910.1002.0.0&market=CH&locale=en-CH&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&pzn
2024-04-16 20:52:16 UTC	1291	IN	Data Raw: 48 48 64 42 78 52 6f 64 51 73 36 74 77 37 72 31 49 51 4d 69 34 51 38 58 30 65 76 73 72 31 6f 30 62 6d 4f 73 30 36 5a 30 4b 73 39 76 59 49 61 48 68 4e 61 30 4b 63 57 32 4b 45 4e 59 4d 52 41 4c 55 61 50 6e 69 67 25 32 66 43 53 52 39 4d 47 4e 38 6b 71 54 71 7a 68 47 4d 55 7a 74 33 45 5a 62 57 31 4d 50 41 4b 67 79 54 4d 37 50 79 50 6d 43 34 30 32 54 4c 42 61 59 79 67 7a 73 68 62 4c 67 59 52 50 48 57 50 4e 55 45 54 54 77 6a 56 63 71 66 33 32 49 4b 6a 25 32 66 33 42 57 32 51 34 59 31 52 30 33 46 48 56 62 62 65 67 4c 68 61 57 75 57 72 77 76 75 44 77 6d 34 44 63 66 47 32 53 62 74 79 57 7a 7a 25 32 66 65 52 51 38 54 68 78 41 36 73 4e 72 36 37 42 46 6a 34 68 42 5a 53 32 74 79 59 6b 72 4a 71 57 72 42 58 7a 75 32 61 44 35 71 4e 77 4c 37 6d 49 4e 4a 59 31 5a 78 6c 2b Data Ascii: HHdBxRodQs6tw7r1IQMi4Q8X0evsr1o0bmOs06Z0Ks9vYIaHhNa0KcW2KENYMRALUaPnig%2fCSR9MGN8kqTqzhGMUzt3EZbW1MPAKgyTM7PyPmC402TLBaYygzshbLgYRPHWPNUETTwjVcqf32IKj%2f3BW2Q4Y1R03FHVbbegLhaWuWrwvuDwm4DcfG2SbtyWzz%2feRQ8ThxA6sNr67BFj4hBZS2tyYkrJqWrBXzu2aD5qNwL7mINJY1Zxl+

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:17 UTC	8940	OUT	GET /v8.0/pages/home?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&hydrateCount=3&deviceFamilyVersion=2814750970478592&pzn=0&userSegments=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 HTTP/1.1 OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989f Accept-Encoding: gzip, deflate OSIsSMode: False userSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c20240328,test21emulation,testcanvas,traffic-p1df-3r,traffic-pr2-ampm-wi,usewsasmodecheck,vws-chpgv2-lgtn,wishlistmvpsfaf,wsaenabledforusonly,zchen-t"}} TASGUID: a523d5be-dd8c-45ce-80bc-9648858cd753 OSIsGenuine: True Accept: / Muid: 28E37935204C689136B56D56214B6983 TASIGNORE: YES MS-PreciseDeviceFamilyVersion: 2814751015241686 User-Agent: WindowsStore/11910.1002.5.0 MS-CV: UxEEy7KhKESwa2v1.5 Accept-Language: en-CH Authorization: Bearer MSAHW1.0=t=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&p= Host: storeedgefd.dsx.mp.microsoft.com Connection: Keep-Alive
2024-04-16 20:52:17 UTC	340	IN	HTTP/1.1 401 Unauthorized Content-Length: 0 Server: Microsoft-HTTPAPI/2.0 X-OSG-Served-By: Torus-EASTUS_Legacy00000B_1.0.0.0 MS-CV: UxEEy7KhKESwa2v1.5.1 Expires: Tue, 16 Apr 2024 20:52:17 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Tue, 16 Apr 2024 20:52:17 GMT Connection: close X-Segment-On: true

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report http://gmail.com

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Snort Signatures

Joe Sandbox Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Chrome Cache Entry: 171

Chrome Cache Entry: 172

Chrome Cache Entry: 173

Chrome Cache Entry: 174

Chrome Cache Entry: 175

Chrome Cache Entry: 176

Chrome Cache Entry: 177

Chrome Cache Entry: 178

Chrome Cache Entry: 179

Chrome Cache Entry: 180

Chrome Cache Entry: 181

Chrome Cache Entry: 182

Chrome Cache Entry: 183

Chrome Cache Entry: 184

Chrome Cache Entry: 185

Chrome Cache Entry: 186

Chrome Cache Entry: 187

Chrome Cache Entry: 188

Chrome Cache Entry: 189

Static File Info

Network Behavior

Network Port Distribution

Windows Analysis Report
http://gmail.com

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:17 UTC	481	OUT	GET /apc/trans.gif?e3bfee56476065f0ab149b748f731e37 HTTP/1.1 Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: image/png,image/svg+xml,image/;q=0.8,/*;q=0.5 Accept-Language: en-CH Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: l-ring.msedge.net Connection: Keep-Alive
2024-04-16 20:52:17 UTC	708	IN	HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Content-Length: 43 Content-Type: image/gif Last-Modified: Thu, 14 Mar 2024 23:51:50 GMT Accept-Ranges: bytes ETag: 0x0DA2C2C0C44B11E89E6C66FF4F731D7D Access-Control-Allow-Origin: * Access-Control-Expose-Headers: X-EndPoint, X-FrontEnd, X-UserHostAddress, X-MSEdge-Ref, X-MachineName Timing-Allow-Origin: * X-Content-Type-Options: nosniff X-Endpoint: ATL33r5d X-Frontend: AFD X-Machinename: ATL331000107039 X-Userhostaddress: 81.181.57.0 X-Cache: CONFIG_NOCACHE X-MSEdge-Ref: Ref A: AB1ED188EA0241CF834FF47F5FEE5177 Ref B: ATL331000107039 Ref C: 2024-04-16T20:52:17Z Date: Tue, 16 Apr 2024 20:52:17 GMT Connection: close
2024-04-16 20:52:17 UTC	43	IN	Data Raw: 47 49 46 38 39 61 01 00 01 00 80 00 00 ff ff ff 00 00 00 21 f9 04 01 00 00 00 00 2c 00 00 00 00 01 00 01 00 00 02 02 44 01 00 3b Data Ascii: GIF89a!,D;

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:18 UTC	422	OUT	POST /RST2.srf HTTP/1.0 Connection: Keep-Alive Content-Type: application/soap+xml Accept: / User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 10.0; Win64; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; IDCRL 24.10.0.19045.0.0; IDCRL-cfg 16.000.29743.00; App svchost.exe, 10.0.19041.1806, {DF60E2DF-88AD-4526-AE21-83D130EF0F68}) Content-Length: 4790 Host: login.live.com
2024-04-16 20:52:18 UTC	4790	OUT	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 3c 73 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 70 73 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 73 2e 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 50 61 73 73 70 6f 72 74 2f 53 6f 61 70 53 65 72 76 69 63 65 73 2f 50 50 43 52 4c 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 Data Ascii: <?xml version="1.0" encoding="UTF-8"?><s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:ps="http://schemas.microsoft.com/Passport/SoapServices/PPCRL" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1
2024-04-16 20:52:18 UTC	569	IN	HTTP/1.1 200 OK Cache-Control: no-store, no-cache Pragma: no-cache Content-Type: application/soap+xml; charset=utf-8 Expires: Tue, 16 Apr 2024 20:51:18 GMT P3P: CP="DSP CUR OTPi IND OTRi ONL FIN" Referrer-Policy: strict-origin-when-cross-origin x-ms-route-info: C538_SN1 x-ms-request-id: 3c79ec3e-c8b1-41f1-a352-26f1d8d6a07d PPServer: PPV: 30 H: SN1PEPF0002F94A V: 0 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 X-XSS-Protection: 1; mode=block Date: Tue, 16 Apr 2024 20:52:17 GMT Connection: close Content-Length: 11985
2024-04-16 20:52:18 UTC	11985	IN	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 20 3f 3e 3c 53 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 53 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 2e 30 2e 78 73 64 22 20 78 6d 6c 6e 73 3a 77 73 75 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 Data Ascii: <?xml version="1.0" encoding="utf-8" ?><S:Envelope xmlns:S="http://www.w3.org/2003/05/soap-envelope" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:18 UTC	481	OUT	GET /apc/trans.gif?abf6b0b4363a8fb8ec7d6cce4a4b9cc3 HTTP/1.1 Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: image/png,image/svg+xml,image/;q=0.8,/*;q=0.5 Accept-Language: en-CH Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: l-ring.msedge.net Connection: Keep-Alive
2024-04-16 20:52:18 UTC	708	IN	HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Content-Length: 43 Content-Type: image/gif Last-Modified: Thu, 14 Mar 2024 23:51:50 GMT Accept-Ranges: bytes ETag: 0x0DA2C2C0C44B11E89E6C66FF4F731D7D Access-Control-Allow-Origin: * Access-Control-Expose-Headers: X-EndPoint, X-FrontEnd, X-UserHostAddress, X-MSEdge-Ref, X-MachineName Timing-Allow-Origin: * X-Content-Type-Options: nosniff X-Endpoint: ATL33r5a X-Frontend: AFD X-Machinename: ATL331000101011 X-Userhostaddress: 81.181.57.0 X-Cache: CONFIG_NOCACHE X-MSEdge-Ref: Ref A: CA65AC20B6594B08BB6FCE94B5434C48 Ref B: ATL331000101011 Ref C: 2024-04-16T20:52:18Z Date: Tue, 16 Apr 2024 20:52:17 GMT Connection: close
2024-04-16 20:52:18 UTC	43	IN	Data Raw: 47 49 46 38 39 61 01 00 01 00 80 00 00 ff ff ff 00 00 00 21 f9 04 01 00 00 00 00 2c 00 00 00 00 01 00 01 00 00 02 02 44 01 00 3b Data Ascii: GIF89a!,D;

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:18 UTC	8928	OUT	GET /v8.0/pages/home?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&hydrateCount=3&deviceFamilyVersion=2814750970478592&pzn=0&userSegments=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 HTTP/1.1 OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989f Accept-Encoding: gzip, deflate OSIsSMode: False userSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c20240328,test21emulation,testcanvas,traffic-p1df-3r,traffic-pr2-ampm-wi,usewsasmodecheck,vws-chpgv2-lgtn,wishlistmvpsfaf,wsaenabledforusonly,zchen-t"}} TASGUID: a523d5be-dd8c-45ce-80bc-9648858cd753 OSIsGenuine: True Accept: / Muid: 28E37935204C689136B56D56214B6983 TASIGNORE: YES MS-PreciseDeviceFamilyVersion: 2814751015241686 User-Agent: WindowsStore/11910.1002.5.0 MS-CV: UxEEy7KhKESwa2v1.6 Accept-Language: en-CH Authorization: Bearer MSAHW1.0=t=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&p= Host: storeedgefd.dsx.mp.microsoft.com Connection: Keep-Alive
2024-04-16 20:52:19 UTC	419	IN	HTTP/1.1 200 OK Content-Type: application/json; charset=utf-8 Server: Microsoft-HTTPAPI/2.0 X-OSG-Served-By: Torus-EASTUS_LEGACY000005_1.0.0.0 MS-CV: UxEEy7KhKESwa2v1.6.13 Expires: Tue, 16 Apr 2024 20:52:19 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Tue, 16 Apr 2024 20:52:19 GMT Transfer-Encoding: chunked Connection: close Connection: Transfer-Encoding X-Segment-On: true
2024-04-16 20:52:19 UTC	15965	IN	Data Raw: 30 30 30 30 36 30 30 30 0d 0a 5b 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 31 2e 52 65 73 70 6f 6e 73 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 50 61 74 68 22 3a 22 2f 70 61 67 65 73 2f 68 6f 6d 65 3f 6d 61 72 6b 65 74 3d 43 48 26 6c 6f 63 61 6c 65 3d 65 6e 2d 43 48 26 64 65 76 69 63 65 46 61 6d 69 6c 79 3d 57 69 6e 64 6f 77 73 2e 44 65 73 6b 74 6f 70 26 61 70 70 56 65 72 73 69 6f 6e 3d 31 31 39 31 30 2e 31 30 30 32 2e 30 2e 30 26 68 79 64 72 61 74 65 43 6f 75 6e 74 3d 33 26 64 65 76 69 63 65 46 61 6d 69 6c 79 56 65 72 73 69 Data Ascii: 00006000[{"$type":"Microsoft.Marketplace.Storefront.Contracts.V1.ResponseItem, Microsoft.Marketplace.Storefront.Contracts","Path":"/pages/home?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&hydrateCount=3&deviceFamilyVersi
2024-04-16 20:52:19 UTC	8623	IN	Data Raw: 51 6a 47 6c 41 39 57 44 6a 41 6c 56 76 65 33 6a 4f 4a 68 4d 4b 71 61 76 51 41 57 57 25 32 66 54 6a 6a 74 46 35 64 48 6f 62 47 7a 6e 4d 68 6f 66 35 68 54 6a 34 56 68 56 6d 35 42 31 6b 76 50 63 47 4c 50 4f 4f 77 66 35 6f 32 7a 71 37 50 52 41 65 35 52 6e 59 4b 79 6f 57 55 55 63 79 6f 76 78 37 77 2b 4f 2b 35 58 56 34 33 4b 74 77 35 51 46 66 69 6b 68 6b 47 6a 6e 6d 47 44 58 61 5a 48 61 4b 6d 59 58 4d 56 31 50 48 6b 7a 67 51 5a 35 70 41 45 2b 73 66 55 53 73 56 31 4f 36 45 67 74 5a 76 33 25 32 66 47 53 4f 7a 34 63 67 69 6f 4d 4d 6d 72 56 70 49 4d 4b 25 32 66 38 4d 36 66 49 49 55 55 65 68 5a 36 2b 39 59 6d 4e 70 71 45 47 25 32 66 46 76 51 5a 70 4e 4e 6b 62 79 61 66 64 34 25 32 66 73 61 77 78 53 31 75 75 6b 44 64 55 37 4f 69 6a 33 72 55 4a 64 32 4e 55 76 2b 46 6e Data Ascii: QjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+Fn
2024-04-16 20:52:19 UTC	16384	IN	Data Raw: 30 30 30 30 36 30 30 30 0d 0a 56 64 71 77 39 79 79 2b 57 6d 47 5a 75 63 73 71 62 4a 4a 32 6b 39 6b 41 56 70 4c 52 6f 4a 25 32 66 36 61 2b 65 78 4c 4e 61 58 59 58 55 59 30 67 71 63 7a 68 74 45 33 5a 64 42 69 58 66 6f 4b 67 71 6f 33 71 35 76 65 69 6f 63 72 64 72 31 58 64 55 69 7a 68 56 44 4f 35 4b 63 25 33 64 22 7d 7d 2c 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 38 2e 44 61 74 61 53 6f 75 72 63 65 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 49 64 22 3a 22 74 69 74 6c 65 22 2c 22 44 61 74 61 42 69 6e 64 65 72 22 3a 7b 22 24 74 79 70 65 22 3a 22 Data Ascii: 00006000Vdqw9yy+WmGZucsqbJJ2k9kAVpLRoJ%2f6a+exLNaXYXUY0gqczhtE3ZdBiXfoKgqo3q5veiocrdr1XdUizhVDO5Kc%3d"}},{"$type":"Microsoft.Marketplace.Storefront.Contracts.V8.DataSource, Microsoft.Marketplace.Storefront.Contracts","Id":"title","DataBinder":{"$type":"
2024-04-16 20:52:19 UTC	8204	IN	Data Raw: 2f 61 70 70 73 2e 32 35 35 32 32 2e 31 34 33 37 34 35 31 32 30 37 30 36 39 37 37 35 31 2e 35 61 31 35 30 64 62 62 2d 32 63 65 66 2d 34 66 61 39 2d 61 66 38 32 2d 65 62 63 35 64 36 36 36 35 36 64 35 2e 39 30 34 61 31 63 34 34 2d 30 61 36 39 2d 34 35 66 35 2d 39 38 39 31 2d 39 61 63 61 36 31 66 62 34 31 64 61 22 2c 22 48 65 69 67 68 74 22 3a 33 31 30 2c 22 57 69 64 74 68 22 3a 33 31 30 7d 2c 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 32 2e 49 6d 61 67 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 49 6d 61 67 65 54 79 70 65 22 3a 22 Data Ascii: /apps.25522.14374512070697751.5a150dbb-2cef-4fa9-af82-ebc5d66656d5.904a1c44-0a69-45f5-9891-9aca61fb41da","Height":310,"Width":310},{"$type":"Microsoft.Marketplace.Storefront.Contracts.V2.ImageItem, Microsoft.Marketplace.Storefront.Contracts","ImageType":"
2024-04-16 20:52:19 UTC	16384	IN	Data Raw: 30 30 30 30 34 30 30 30 0d 0a 6e 64 73 20 6f 66 20 6f 74 68 65 72 73 21 20 44 69 73 63 6f 76 65 72 20 67 69 67 61 6e 74 69 63 20 63 6f 6d 6d 75 6e 69 74 79 2d 72 75 6e 20 77 6f 72 6c 64 73 2c 20 63 6f 6d 70 65 74 65 20 69 6e 20 75 6e 69 71 75 65 20 6d 69 6e 69 2d 67 61 6d 65 73 20 61 6e 64 20 73 6f 63 69 61 6c 69 7a 65 20 69 6e 20 6c 6f 62 62 69 65 73 20 66 75 6c 6c 20 6f 66 20 6e 65 77 20 66 72 69 65 6e 64 73 2e 2d 20 4a 61 76 61 20 45 64 69 74 69 6f 6e 3a 20 43 72 6f 73 73 2d 70 6c 61 74 66 6f 72 6d 20 70 6c 61 79 20 66 6f 72 20 70 6c 61 79 65 72 73 20 61 63 72 6f 73 73 20 57 69 6e 64 6f 77 73 2c 20 4d 61 63 2c 20 61 6e 64 20 4c 69 6e 75 78 20 64 65 76 69 63 65 73 2e 20 43 72 6f 73 73 20 70 6c 61 79 20 61 63 72 6f 73 73 20 42 65 64 72 6f 63 6b 20 61 6e Data Ascii: 00004000nds of others! Discover gigantic community-run worlds, compete in unique mini-games and socialize in lobbies full of new friends.- Java Edition: Cross-platform play for players across Windows, Mac, and Linux devices. Cross play across Bedrock an
2024-04-16 20:52:19 UTC	12	IN	Data Raw: 6f 72 22 3a 22 23 30 30 37 38 0d 0a Data Ascii: or":"#0078
2024-04-16 20:52:19 UTC	402	IN	Data Raw: 30 30 30 30 30 31 38 36 0d 0a 44 34 22 2c 22 46 6f 72 65 67 72 6f 75 6e 64 43 6f 6c 6f 72 22 3a 22 22 2c 22 43 61 70 74 69 6f 6e 22 3a 22 22 2c 22 49 6d 61 67 65 50 6f 73 69 74 69 6f 6e 49 6e 66 6f 22 3a 22 22 2c 22 55 72 6c 22 3a 22 68 74 74 70 73 3a 2f 2f 73 74 6f 72 65 2d 69 6d 61 67 65 73 2e 73 2d 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 69 6d 61 67 65 2f 61 70 70 73 2e 35 35 34 33 34 2e 31 33 38 37 38 36 35 30 30 30 32 35 33 38 31 36 31 2e 33 66 32 37 34 31 33 62 2d 32 33 37 61 2d 34 35 32 66 2d 61 39 64 34 2d 32 38 61 63 66 62 37 66 66 38 61 33 2e 35 64 62 64 34 61 30 64 2d 65 63 63 65 2d 34 30 65 62 2d 62 38 35 61 2d 65 63 63 39 65 63 31 61 39 62 64 61 22 2c 22 48 65 69 67 68 74 22 3a 31 35 30 2c 22 57 69 64 74 68 22 3a 33 31 30 7d 2c 7b 22 24 74 Data Ascii: 00000186D4","ForegroundColor":"","Caption":"","ImagePositionInfo":"","Url":"https://store-images.s-microsoft.com/image/apps.55434.13878650002538161.3f27413b-237a-452f-a9d4-28acfb7ff8a3.5dbd4a0d-ecce-40eb-b85a-ecc9ec1a9bda","Height":150,"Width":310},{"$t
2024-04-16 20:52:19 UTC	16384	IN	Data Raw: 30 30 30 30 34 30 30 30 0d 0a 23 30 30 37 38 44 34 22 2c 22 46 6f 72 65 67 72 6f 75 6e 64 43 6f 6c 6f 72 22 3a 22 22 2c 22 43 61 70 74 69 6f 6e 22 3a 22 22 2c 22 49 6d 61 67 65 50 6f 73 69 74 69 6f 6e 49 6e 66 6f 22 3a 22 22 2c 22 55 72 6c 22 3a 22 68 74 74 70 73 3a 2f 2f 73 74 6f 72 65 2d 69 6d 61 67 65 73 2e 73 2d 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 69 6d 61 67 65 2f 61 70 70 73 2e 31 38 38 39 39 2e 31 33 38 37 38 36 35 30 30 30 32 35 33 38 31 36 31 2e 33 66 32 37 34 31 33 62 2d 32 33 37 61 2d 34 35 32 66 2d 61 39 64 34 2d 32 38 61 63 66 62 37 66 66 38 61 33 2e 30 30 32 61 36 62 39 66 2d 66 38 34 64 2d 34 65 61 31 2d 62 32 65 66 2d 34 63 39 61 36 33 39 39 30 31 33 64 22 2c 22 48 65 69 67 68 74 22 3a 32 32 35 2c 22 57 69 64 74 68 22 3a 34 36 35 7d Data Ascii: 00004000#0078D4","ForegroundColor":"","Caption":"","ImagePositionInfo":"","Url":"https://store-images.s-microsoft.com/image/apps.18899.13878650002538161.3f27413b-237a-452f-a9d4-28acfb7ff8a3.002a6b9f-f84d-4ea1-b2ef-4c9a6399013d","Height":225,"Width":465}
2024-04-16 20:52:19 UTC	12	IN	Data Raw: 64 74 68 22 3a 34 36 35 7d 2c 0d 0a Data Ascii: dth":465},
2024-04-16 20:52:19 UTC	16384	IN	Data Raw: 30 30 30 30 34 30 30 30 0d 0a 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 32 2e 49 6d 61 67 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 49 6d 61 67 65 54 79 70 65 22 3a 22 74 69 6c 65 22 2c 22 42 61 63 6b 67 72 6f 75 6e 64 43 6f 6c 6f 72 22 3a 22 74 72 61 6e 73 70 61 72 65 6e 74 22 2c 22 46 6f 72 65 67 72 6f 75 6e 64 43 6f 6c 6f 72 22 3a 22 22 2c 22 43 61 70 74 69 6f 6e 22 3a 22 22 2c 22 49 6d 61 67 65 50 6f 73 69 74 69 6f 6e 49 6e 66 6f 22 3a 22 22 2c 22 55 72 6c 22 3a 22 68 74 74 70 73 3a 2f 2f 73 74 6f 72 65 2d 69 6d 61 67 65 Data Ascii: 00004000{"$type":"Microsoft.Marketplace.Storefront.Contracts.V2.ImageItem, Microsoft.Marketplace.Storefront.Contracts","ImageType":"tile","BackgroundColor":"transparent","ForegroundColor":"","Caption":"","ImagePositionInfo":"","Url":"https://store-image

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:18 UTC	485	OUT	GET /apc/trans.gif?dc1aa3056d31478dcc0798188196ffde HTTP/1.1 Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: image/png,image/svg+xml,image/;q=0.8,/*;q=0.5 Accept-Language: en-CH Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: teams-ring.msedge.net Connection: Keep-Alive
2024-04-16 20:52:18 UTC	708	IN	HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Content-Length: 43 Content-Type: image/gif Last-Modified: Thu, 14 Mar 2024 23:51:50 GMT Accept-Ranges: bytes ETag: 0x0DA2C2C0C44B11E89E6C66FF4F731D7D Access-Control-Allow-Origin: * Access-Control-Expose-Headers: X-EndPoint, X-FrontEnd, X-UserHostAddress, X-MSEdge-Ref, X-MachineName Timing-Allow-Origin: * X-Content-Type-Options: nosniff X-Endpoint: ATL33r5d X-Frontend: AFD X-Machinename: ATL331000107029 X-Userhostaddress: 81.181.57.0 X-Cache: CONFIG_NOCACHE X-MSEdge-Ref: Ref A: 04E06F1972154D0DA45888CE7DF2ABC8 Ref B: ATL331000107029 Ref C: 2024-04-16T20:52:18Z Date: Tue, 16 Apr 2024 20:52:18 GMT Connection: close
2024-04-16 20:52:18 UTC	43	IN	Data Raw: 47 49 46 38 39 61 01 00 01 00 80 00 00 ff ff ff 00 00 00 21 f9 04 01 00 00 00 00 2c 00 00 00 00 01 00 01 00 00 02 02 44 01 00 3b Data Ascii: GIF89a!,D;

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:19 UTC	485	OUT	GET /apc/trans.gif?7bf22ffe445c3280828f728bc0dbb2b3 HTTP/1.1 Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: image/png,image/svg+xml,image/;q=0.8,/*;q=0.5 Accept-Language: en-CH Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: teams-ring.msedge.net Connection: Keep-Alive
2024-04-16 20:52:19 UTC	708	IN	HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Content-Length: 43 Content-Type: image/gif Last-Modified: Thu, 14 Mar 2024 23:51:50 GMT Accept-Ranges: bytes ETag: 0x0DA2C2C0C44B11E89E6C66FF4F731D7D Access-Control-Allow-Origin: * Access-Control-Expose-Headers: X-EndPoint, X-FrontEnd, X-UserHostAddress, X-MSEdge-Ref, X-MachineName Timing-Allow-Origin: * X-Content-Type-Options: nosniff X-Endpoint: ATL33r5c X-Frontend: AFD X-Machinename: ATL331000105017 X-Userhostaddress: 81.181.57.0 X-Cache: CONFIG_NOCACHE X-MSEdge-Ref: Ref A: 2FBB1E5F03B34CBA8BEE4FABD8F688AC Ref B: ATL331000105017 Ref C: 2024-04-16T20:52:19Z Date: Tue, 16 Apr 2024 20:52:19 GMT Connection: close
2024-04-16 20:52:19 UTC	43	IN	Data Raw: 47 49 46 38 39 61 01 00 01 00 80 00 00 ff ff ff 00 00 00 21 f9 04 01 00 00 00 00 2c 00 00 00 00 01 00 01 00 00 02 02 44 01 00 3b Data Ascii: GIF89a!,D;

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:19 UTC	482	OUT	GET /apc/trans.gif?be502d8ba45b794bb9a4ed7b34197dc5 HTTP/1.1 Referer: https://www.bing.com/AS/API/WindowsCortanaPane/V2/Init Accept: image/png,image/svg+xml,image/;q=0.8,/*;q=0.5 Accept-Language: en-CH Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: ln-ring.msedge.net Connection: Keep-Alive
2024-04-16 20:52:19 UTC	695	IN	HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Content-Length: 43 Content-Type: image/gif Last-Modified: Fri, 09 Feb 2024 20:11:51 GMT Accept-Ranges: bytes ETag: 0x0DA2C2C0C44B11E89E6C66FF4F731D7D Access-Control-Allow-Origin: * Access-Control-Expose-Headers: X-EndPoint, X-FrontEnd, X-UserHostAddress, X-MSEdge-Ref, X-MachineName Timing-Allow-Origin: * X-Content-Type-Options: nosniff X-Endpoint: ATA X-Frontend: AFD X-Machinename: ATAEDGE1109 X-Userhostaddress: 81.181.57.0 X-Cache: CONFIG_NOCACHE X-MSEdge-Ref: Ref A: C125870CDA274F7B842AD2BBED544D68 Ref B: ATAEDGE1109 Ref C: 2024-04-16T20:52:19Z Date: Tue, 16 Apr 2024 20:52:19 GMT Connection: close
2024-04-16 20:52:19 UTC	43	IN	Data Raw: 47 49 46 38 39 61 01 00 01 00 80 00 00 ff ff ff 00 00 00 21 f9 04 01 00 00 00 00 2c 00 00 00 00 01 00 01 00 00 02 02 44 01 00 3b Data Ascii: GIF89a!,D;

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:20 UTC	5109	OUT	GET /v8.0/recommendations/collections/Collection/Home.FC1?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&pageSize=15&cardsEnabled=true&pzn=0 HTTP/1.1 OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989f Accept-Encoding: gzip, deflate OSIsSMode: False userSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c20240328,test21emulation,testcanvas,traffic-p1df-3r,traffic-pr2-ampm-wi,usewsasmodecheck,vws-chpgv2-lgtn,wishlistmvpsfaf,wsaenabledforusonly,zchen-t"}} TASGUID: a523d5be-dd8c-45ce-80bc-9648858cd753 OSIsGenuine: True Accept: / Muid: 28E37935204C689136B56D56214B6983 TASIGNORE: YES MS-PreciseDeviceFamilyVersion: 2814751015241686 User-Agent: WindowsStore/11910.1002.5.0 MS-CV: UxEEy7KhKESwa2v1.7 Accept-Language: en-CH Authorization: Bearer MSAHW1.0=t=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&p= Host: storeedgefd.dsx.mp.microsoft.com Connection: Keep-Alive
2024-04-16 20:52:20 UTC	379	IN	HTTP/1.1 200 OK Content-Type: application/json; charset=utf-8 Server: Microsoft-HTTPAPI/2.0 X-OSG-Served-By: Torus-EASTUS_Legacy0006QH_1.0.0.0 MS-CV: UxEEy7KhKESwa2v1.7.1 Expires: Tue, 16 Apr 2024 20:52:20 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Tue, 16 Apr 2024 20:52:20 GMT Content-Length: 608 Connection: close X-Segment-On: true
2024-04-16 20:52:20 UTC	608	IN	Data Raw: 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 31 2e 52 65 73 70 6f 6e 73 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 50 61 74 68 22 3a 22 2f 72 65 63 6f 6d 6d 65 6e 64 61 74 69 6f 6e 73 2f 63 6f 6c 6c 65 63 74 69 6f 6e 73 2f 43 6f 6c 6c 65 63 74 69 6f 6e 2f 48 6f 6d 65 2e 46 43 31 3f 6d 61 72 6b 65 74 3d 43 48 26 6c 6f 63 61 6c 65 3d 65 6e 2d 43 48 26 64 65 76 69 63 65 46 61 6d 69 6c 79 3d 57 69 6e 64 6f 77 73 2e 44 65 73 6b 74 6f 70 26 61 70 70 56 65 72 73 69 6f 6e 3d 31 31 39 31 30 2e 31 30 30 32 2e 30 2e 30 26 70 61 67 65 53 69 Data Ascii: {"$type":"Microsoft.Marketplace.Storefront.Contracts.V1.ResponseItem, Microsoft.Marketplace.Storefront.Contracts","Path":"/recommendations/collections/Collection/Home.FC1?market=CH&locale=en-CH&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&pageSi

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:20 UTC	9179	OUT	GET /v8.0/autosuggest?market=CH&locale=en-CH&appVersion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&cardsEnabled=true&pzn=0&userSegments=6s7hQGocdWdYfcAV1GTLAMZeXNCO1x%2fh2D+wGjMAiSM4HVf6f2JkKj6immiHtFFIMMFGbFeuetcZbydVEbykNHpl75PfeHh+BssFs60jl2F2j%2fE7PbBR78+fgMuVhkDOAf+7Gvb5ZIdqMfw9R3Y0Q2rXhFPBhGf5iKik2FJLkYyVaDZVyM%2fgOLouloeDUrf+nHhYPpcxXdPy9IB66aii4SgNga%2ffF1TaSmfcmlDS9rqcl8k%2fsG9wTyNT0lT0kv1ocZAQ1RG80czQ0dGSUacoA90sJc4Ar5xW+zeX5y2Dzy0f2nCFCGt%2fAR%2fIwByz8XSGH71cvjvuGE9PHaFiOi9YM3M4hhGbaAMniNx5lo2VYOyaWLPHOBpRTj3rrnoUGUXXF2+Seuj2tFbqXlcpbbpN5CxlG9aUIAdSx0Vm8al7T07lVKR0isR4GxV6xii4KAz5EfcjHw1tTYjgnZAcRhuwCCLt7JhfHQvt8Z+zvn4aMk%2f+iZqcofcEDcYh2wfUWf5Pf9WIh8cpLAVUrSd2AxqcH2EnweHoq66LIC7VXvADXFGC6GsBBdnPWEnUG3bG31X4ztmxV0A1zqbaBBJCOHOe3sKlwpWMDgUPZF2CQxXxXiKWKpxEZ+ApvvXOdjgA2fbv+rg23zIbnIyB6reflWG4V2aH7rdqY+33xzzTr8HgYY2GQLYuPC2P45WFkXyI2MqlxZCBBAIZO2nsJnxyOQSycz8Rza0w2l0GzwjXEZlfjqcrErtlsNTT+Pl2BGYoOby1pe5KnPx6Cuwc2HwtkJPg9j+s9LB%2fPfrc5UPdhNsb8zc8EU1Q4WKN+%2fy+U0KHRwskfcyYmKeQVoYAvq6Ay++nXiPwHyoH3OTMV52nhwWd+Znm3vfR1ZyrD+anVKRhsH1DqC4aeeqfuzszzxijocKDmz2mNpwN+MUSvzGmdnIXOtB%2fiJ1R1g%2f+ySLwtB4ymN5iS94iI4RN4YFaEnftUkD4dc%2fgVbP22fhUrz9FEjLt6eurAOeaEGwUidoBSgfeEE0pDIWyTvXDiqHfhGkz8TzRdFC4wqMPE1qyLoJbDTv6H1y+n5GAkZdBUjhI84ENOQHPNlz51zDh8xj4Kwe+opCa4DIfRUyB5I9dPZeathCYp4BuQTTmr958Mbh7vnqozDc9CoMaeIWtAK%2f50NGabOuWKQbmlXkzhYMOC7I6GY8T7HGxk3fgTKRnmN8yy8V96hfj+eVZcX2aSyvcES9HGeptziIuJmxh8pE37yahNw7CiDdq56cOAWKQpuoNC6iTrtJCLyWamiKUxwYZXo3C36xo+SpcQuVAqd8voQjGlA9WDjAlVve3jOJhMKqavQAWW%2fTjjtF5dHobGznMhof5hTj4VhVm5B1kvPcGLPOOwf5o2zq7PRAe5RnYKyoWUUcyovx7w+O+5XV43Ktw5QFfikhkGjnmGDXaZHaKmYXMV1PHkzgQZ5pAE+sfUSsV1O6EgtZv3%2fGSOz4cgioMMmrVpIMK%2f8M6fIIUUehZ6+9YmNpqEG%2fFvQZpNNkbyafd4%2fsawxS1uukDdU7Oij3rUJd2NUv+FnGjeJy+l7g850z+lJsIh5NDnJGN6pAr%2fhsmEu13e5mNyk+xISTJQ+US9A%2fUo0NHxKQIjEev3F%2feEgP%2fob9LKMRNYwfqz+mNLUtJwDmrA9N%2fYk62Aeasba4jU7a%2fwTAVOI6hwqDqx4Drb0t+KJwqn0A1TsHWMGMWXNzr%2fDCmzZjqfcG2K73TdzvnIlEb%2flv2b6wB+L7WfkP0kR9oGUf%2f+goDqzCQJOCteqT3Krkti7frqb7bdJSizyeK9T1IpHCFIHkOeE7v%2frLw2D5WZ0HMQYXgeDvNs1bxgq3ZBOnibq9RCO6ASmNihyg+yUN6daQsxLLoGhuCOTzyCKxbA0Eh1seJtRaKlqCb%2fh9tLqKaCNhrOnQ8HbPJI5BojxEyIXmQ0DU%2fwh01YWtVmZNHop6lGGAFDIpGLCoDaIdSONYu0Wv%2fOgWnroYVXiNqCbBDZ%2fQGeaAHvc6F5mBc9I22ebJZ2f1uQB+HCBFE6gGn+Kg329LSO3Tqm2D5j7n%2fnhKSowEOrNqly%2fu8roZhlj8tuvEOmUDeo75kzNxDAQkyuUkfmI9VOz0yRrcQrIRCJ8Cy%2fMQg6ppktFMER2y2Ig4aVBb9NWrAtktH0ItvZL2cusMpOnw53SBWDhnsci2mdXOCBeohKQND2FwqTHsj5tOm%2fVcsrY7TPk8jC%2fIAqruaud2eIV0cKnnFN2cRll%2fjBd4vz+vv7ggjlZ6SbF8vKaK1hGShkUg42Mey50s4AgTtBQyUdt89TlbWVXiy2Jr67zoU5n0koGCpNK6qdq+rcdA74ut+iCme65mwi2gdSzyk4RbTL%2f3CZj9lHbWY7ZElTpS1EPyDPHHdpvrEshHN6yFgyo%2f6tKKlm785Lr6RKCFYlgFY1MZnP+xjwMjf1RmTkJzm52pn9xfXrfSRd0rWMYjz5mpvm1SU7Tas+OsxQZkTtAZ2zsXwvOzYvqow9rVsaxs2Am89kHxbaA0y1FYLZDQQIIlaUBdTMbgdGqMMe3jpkgtoytzm2M1rPk5xnXpzCe4XUzJKXT9VDkoG9xsCW7egMHEDglbp5a3g8bm4qNP7qC2HHQ90I4zIBpt+AosVvZc3YB%2fvORSsNvT2J3TF4DG%2fEB8UfdaxKrb2tUc9SXzOgdT%2fMkj9AmHRFuLSR+Q3Ng5KB4HTesN5eDyNDUPvSEpCWw9AGeJIUaI1CW5upF4Hmf6%2fEkdGdi18FcGl4HM+pMNASrsvNiSbR%2fUq%2fMqk6BFQFiWNCjFDPWgoBhqK2Px3XNaiMwm2kHUg+%2f4z8s79bg7bwZKtHHdBxRodQs6tw7r1IQMi4Q8X0evsr1o0bmOs06Z0Ks9vYIaHhNa0KcW2KENYMRALUaPnig%2fCSR9MGN8kqTqzhGMUzt3EZbW1MPAKgyTM7PyPmC402TLBaYygzshbLgYRPHWPNUETTwjVcqf32IKj%2f3BW2Q4Y1R03FHVbbegLhaWuWrwvuDwm4DcfG2SbtyWzz%2feRQ8ThxA6sNr67BFj4hBZS2tyYkrJqWrBXzu2aD5qNwL7mINJY1Zxl+9MxWNyfdbZX2RBdeBJjRfOaQBaquhBq8E%2fl0iFbfjb3LQi6BwJNjZ8UikPrQ1VL3M0jcai97pjn430pbFMtSTWNCLF+nyNvMpyQvTl1j2%2fAKfXuBp8Wgeq+a89ZdGeh8RlM2aOM1Fq9gftB34jhJQ66vzvjFi0tXnWUuvg9tGdOFjj0xqF8KIR8m5aHg%2fTmQTt8+T+U5noiJ4%2f8y4F2Xkl%2fuVMkWwngoaLumw3KvfW1RYqu08J0nPecCp7SoikW%2fiQtO%2fcGxZ3sOm+gn0KFeNr%2fAWrq2yNrQ+KnvL+wR83f00yp97SH6jW7SY+WKbnX2rWVPYOI509lBRgssE1szHi81CFka5B%2ffmnFlLGDKlyEp3SyI72oV1UC7vKdYRUKuSkhkRDcOcOO080RcubeCgaiW35dWKmdN2gndHnNq6r+SzNDsBHuCkVEkrdiGiAWJNLk9myBVVVZ%2fnpRqb1MboZQ3Sj+1fMAGFf4KQwgxCMxY5hEf7%2fHtnmtbyL2Qi0peCeTzvXKYChe8T75nTI4z+QYfMtzj51fRA+BhnZx3DaxBWiXkZgyTIe37wni%2frFV31yJOeNIRJM2W53XOlGSXgANxAgZrIJ4gzh7KPt2b9p31IFL%2fkZ5RH5jT9AfLx1pTbjvqPWVdqw9yy+WmGZucsqbJJ2k9kAVpLRoJ%2f6a+exLNaXYXUY0gqczhtE3ZdBiXfoKgqo3q5veiocrdr1XdUizhVDO5Kc%3d&prefix=t&navItemId=Home HTTP/1.1 OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989f Accept-Encoding: gzip, deflate OSIsSMode: False userSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c20240328,test21emulation,testcanvas,traffic-p1df-3r,traffic-pr2-ampm-wi,usewsasmodecheck,vws-chpgv2-lgtn,wishlistmvpsfaf,wsaenabledforusonly,zchen-t"}} TASGUID: a523d5be-dd8c-45ce-80bc-9648858cd753 OSIsGenuine: True Accept: / Muid: 28E37935204C689136B56D56214B6983 TASIGNORE: YES MS-PreciseDeviceFamilyVersion: 2814751015241686 User-Agent: WindowsStore/11910.1002.5.0 MS-CV: UxEEy7KhKESwa2v1.8 Accept-Language: en-CH Authorization: Bearer MSAHW1.0=t=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&p= Content-Length: 0 Content-Type: application/json; charset=UTF-8 Host: storeedgefd.dsx.mp.microsoft.com Connection: Keep-Alive Cache-Control: no-cache
2024-04-16 20:52:20 UTC	380	IN	HTTP/1.1 200 OK Content-Type: application/json; charset=utf-8 Server: Microsoft-HTTPAPI/2.0 X-OSG-Served-By: Torus-EASTUS_Legacy0007IL_1.0.0.0 MS-CV: UxEEy7KhKESwa2v1.8.2 Expires: Tue, 16 Apr 2024 20:52:20 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Tue, 16 Apr 2024 20:52:20 GMT Content-Length: 9804 Connection: close X-Segment-On: true
2024-04-16 20:52:20 UTC	9804	IN	Data Raw: 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 31 2e 52 65 73 70 6f 6e 73 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 50 61 74 68 22 3a 22 2f 61 75 74 6f 73 75 67 67 65 73 74 3f 6d 61 72 6b 65 74 3d 43 48 26 6c 6f 63 61 6c 65 3d 65 6e 2d 43 48 26 61 70 70 56 65 72 73 69 6f 6e 3d 31 31 39 31 30 2e 31 30 30 32 2e 30 2e 30 26 64 65 76 69 63 65 46 61 6d 69 6c 79 3d 57 69 6e 64 6f 77 73 2e 44 65 73 6b 74 6f 70 26 64 65 76 69 63 65 46 61 6d 69 6c 79 56 65 72 73 69 6f 6e 3d 32 38 31 34 37 35 30 39 37 30 34 37 38 35 39 32 26 63 61 72 64 73 Data Ascii: {"$type":"Microsoft.Marketplace.Storefront.Contracts.V1.ResponseItem, Microsoft.Marketplace.Storefront.Contracts","Path":"/autosuggest?market=CH&locale=en-CH&appVersion=11910.1002.0.0&deviceFamily=Windows.Desktop&deviceFamilyVersion=2814750970478592&cards

Timestamp	Bytes transferred	Direction	Data
2024-04-16 20:52:20 UTC	5112	OUT	GET /v8.0/recommendations/collections/TopFree?market=CH&locale=en-CH&mediaType=APPS&deviceFamily=Windows.Desktop&appVersion=11910.1002.0.0&pageSize=15&cardsEnabled=true&pzn=0 HTTP/1.1 OSContentId: 482e3ada-05f0-d73c-4fef-cc9d8f8d989f Accept-Encoding: gzip, deflate OSIsSMode: False userSegments: 0.{"Flights":{"Features":"1s-1sw-evlc,1s-1sw-evlcn,1s-1sw-evlct,1s-blis-followloc,1s-ntf1-rspmh,1s-ntf1-spmh,1s-ntf2-ctrl,1s-shp-rc-t2-c20240328,1s-shp-rc-tc-rmsan1,1s-shp-rc-te-c20240328,1s-sl-halfucards,1s-sports-recov2,1s-temp-wid-t,1s-tpsn-wapidestprg2,1s-tpsn-wapiprg2-t,1s-uasdisf-t,1s-wpo-ntp-hero-t,1s-wpo-pr1-3colnodem,1s-wpo-pr1-clc19,1s-wpo-pr1-clc19-sup,1s-wpo-pr1-fsearch,1s-wpo-pr1-ncard,1s-wpo-pr1-ntrfd,1s-wpo-pr1-prots120,1s-wpo-pr1-skipdisb,1s-wpo-pr1-trfd2,1s-wpo-pr1-tskipdisb,1s-wpo-pr2-revpro,1s-wpo-prg1-aeplifecycle,1s-wpo-prg1-tafv3,1s-wpo-skdt-revwpo3,1s-wpo-skype-revwpo3,4918t1,ads-anjson-migc,ads-logallcr-t,ads-nooutbrain,ads-postsq-c,ads-sharvia-migr,ads-unifcrlog-t,ads-uniformcralllog,be7hj724,btie-fancy-img-t,cartemberpl,cartinstallall,cg-int-4-rwd,cjhii185,cswea-ovwntout,daconvertenabled,disableapprestore,disablebinglinkrestoretf,disableblendallpdp,disableiapreactcf,disablenorefunds,enableavatars,enablenpdp,enablesaturn,enablescarlettmetadata,enablesfdsapp,fv-cg-stage,hp-bot-seo,installgrtswithgarrison,mms-sc-sc_roer1,msnallexpusers,msph-aiacselect,msph-c2scontrep,msph-c2snobrand,msph-contoverview,msph-feedinternal,msph-mergedfeedapi,msph-mngcontrep,msph-newrsvideo,msph-onboardconfig,msph-tdinmsph,preprg-1sw-sa-annquota11,prg-1s-sm-workid-c,prg-1s-twid,prg-1sw-cmpmhp1,prg-1sw-dft3r,prg-1sw-dft-tskb,prg-1sw-fieplc,prg-1sw-finvldc,prg-1sw-iconmap,prg-1sw-ins-nb,prg-1sw-iplsdc1p2,prg-1sw-iplsdc-ntp,prg-1sw-iplsd-ntp,prg-1sw-iplsdp1,prg-1sw-iplsdp2,prg-1sw-mtr-en-c,prg-1sw-nucomobiter2t3,prg-1sw-p1widinc,prg-1sw-p1widinc-2d,prg-1s-wpocfp1,prg-1sw-river34,prg-1sw-sa-1gfm,prg-1sw-sal3fcac1,prg-1sw-samtmli18t2,prg-1sw-sa-offv32t6,prg-1sw-spexpnut3,prg-1sw-spmhp1,prg-1sw-superifpind,prg-1sw-tsk-cmsev,prg-1sw-wxevolnoti,prg-1sw-wxmptreplace,prg-ad-ai-imgf,prg-ad-fbi,prg-ad-pdedupe-c,prg-arb-rsz,prg-cg-c-hb,prg-cg-dom-cleac,prg-cg-ntv-ad-blnd,prg-chnl-umf-follow,prg-chpg-ldgw,prg-fin-cdicon,prg-fin-cnosign,prg-fin-errde,prg-fin-l2nav21,prg-msan-p2-holdout,prg-p2-add-pred,prg-p2-tfins,prg-padonrest,prg-pr1-evolvelifecycle2,prg-pr2-getpinnedwd,prg-pr2-pagecontext,prg-pr2-pulsec,prg-pr2-rmplchdr-t2,prg-pr2-sanotifyp2,prg-pr2-saupsellp2,prg-pr2-saupsellt2,prg-pr2-shoreline,prg-pr2-sidebar,prg-pr2-sidebar-5-t,prg-river-infod2,prg-river-infodl,prg-rpt2,prg-sh-bd-disgb,prg-sh-bd-newchckot,prg-sh-bd-nwchk,prg-sh-bd-pagoff,prg-sh-bd-ts2,prg-sh-bd-video,prg-sh-bd-xtracash,prg-sh-bf-ts,prg-sh-fashion-c,prg-sh-usecshk,prg-sh-usecshkpdp,prg-sp-liveapi,prg-ugc-likechange,prg-vidbuf4,prg-wg-cgbgc,prg-wx-ncar,prg-wx-nrfdads,prg-wx-pwac,prg-wx-reactads,revprmres,sfa-exp-dk3vt5s1o4,sfdsconfigoverride,sfdspriceoverride,sha-exp-inlyi9j7ql,sh-bdvid,spr-t-c20240328,test21emulation,testcanvas,traffic-p1df-3r,traffic-pr2-ampm-wi,usewsasmodecheck,vws-chpgv2-lgtn,wishlistmvpsfaf,wsaenabledforusonly,zchen-t"}} TASGUID: a523d5be-dd8c-45ce-80bc-9648858cd753 OSIsGenuine: True Accept: / Muid: 28E37935204C689136B56D56214B6983 TASIGNORE: YES MS-PreciseDeviceFamilyVersion: 2814751015241686 User-Agent: WindowsStore/11910.1002.5.0 MS-CV: UxEEy7KhKESwa2v1.9 Accept-Language: en-CH Authorization: Bearer MSAHW1.0=t=EwCgBF8iAQAU28X5hAkumfrDedQ+i9LVQH6YOAgAASZFd06tzxPYHUlSfva310A/8GtVnnrKJg3/R5o2c6hGUm8XgwMTSNwqb8rpkorBhtXKN14jo3HMyPLNq+o731KfXwf5PzYaahuoAvM/eTedPPMeSLWsiNRKeCSCRsu0eaeIeubgBwUDu2XsUXjKRHOETs2PYg2aTYYTeuZTUo4txVUbDZbUWRLSYggg8mAVLZITnroW7+vAimtv+F8NPx7fLLzVbqIy6xrWCkYiyaa/rQui/k7G/GNmw9ebsXsWyn/0yD4EucLGqxqQvjuWUBv1L31nt2uP3gS+LB1vNAhPNVfhQufwans2Z6dDlYky9UZBusij0rBqDyG1evGREDMDZgAACE1Y86MbfyQ3cAMFCZcESBk6svH4MlVkHD0h4hLQssoT4Bq1E2ilDO3ItE7zZwsu1quPo/qKZsDH9JDZ4B6+tnkr6ir8HTofhf/4yNdRxNy1I0qjci8Gk0EA/TwQdGEPQhPJH//RCwOhOCdLeeN5jTnoLjImqsHT1CwlH5BQV+pR2kXrtIRmIPlf3vyRDd2sRFh5Pv094y4EXp7Q+WkT2stOcvgD48W9oK9EIMdjmhmukBhDWDq0YrVQZB1x/VVa6B0UI39Roukq0cuQaLJasSpHpkBypgU/8eFzInI9cXOqpec4rVfQGI1Pem/UXM2nnAzsf98H56/cEpEAAdj895chnVIBsoMjnZMaD8GPfVIaWNQi8CyuXMLvrLNsq2eNj4etC+SaNhx/QxEO0labjwiHfk0nejp7EYj3lBRZhA7ed6LwB9DCf0NAcA6eNfpIZRNEjlqHfZ/MseBK0EIX24rqPFjcTyqE/7atrB3gt8TQRzB0JiOZyGidMTB1MkBu3mZD+etopckCdIy6BAsnVaMOQGPWXcR6GoODhbcR0c+pnSjf+SVudUmR1/RTpP+TNdADkHQp0aERHtvpw9WSq595bZM8935VphthaOgcTdwfNq/r0uLQnpudHhtCNBMxibky39I04OZ8EqmDsgNb3d8iowtlf31Uw1Kfpzd3PXg1srkv6IFBLma0a0pBp1wMW6NisqMSlzmmM4h/PV3nqrUySqAsejXmNtrcZQwxE7A+WyqyRWZLIO77DnHHg+FJ4r0qeOCwzKlXe0znOT7QnNYAmfO92fC4LFbbrQULT8YV1C+MWjeKQyeqBVM/yMC4ow7tVva5eE0I0C0WRTou6Ba9Fun/5l0vXHWeO7AYrcENIPOvTqwP0rl2JV6UacMa2G7EhVVcKrYmO3KxdjvhGzGzCY+XT+TWdV36J2Nj9072+Ko9sTbNQ9LFHB0CfM4svbXnoYBmOsNt3Vh/IP1E/6r0tXbqxXCvIfZUyNVf4XAGj+BD4lUACxn1QGlZ353f6+jhLdmAsq4SCzBKSHbPW+LMY7NJ8h6tkp3+hMiVDzXPg/ZVZEM5Yo4JfVs+sqkjUmZaGGmjx3gRFxNg43bWDRcqlqSziJKMB3HR2jTZysYreNA9X581SBfktvFuymhsZQMWOq7EzF7YEtNSIIu5U4v8YjJWcJA6boeHmwM=&p= Host: storeedgefd.dsx.mp.microsoft.com Connection: Keep-Alive
2024-04-16 20:52:21 UTC	418	IN	HTTP/1.1 200 OK Content-Type: application/json; charset=utf-8 Server: Microsoft-HTTPAPI/2.0 X-OSG-Served-By: Torus-EASTUS_Legacy0007HW_1.0.0.0 MS-CV: UxEEy7KhKESwa2v1.9.7 Expires: Tue, 16 Apr 2024 20:52:21 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Tue, 16 Apr 2024 20:52:21 GMT Transfer-Encoding: chunked Connection: close Connection: Transfer-Encoding X-Segment-On: true
2024-04-16 20:52:21 UTC	15966	IN	Data Raw: 30 30 30 30 36 30 30 30 0d 0a 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 31 2e 52 65 73 70 6f 6e 73 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 50 61 74 68 22 3a 22 2f 72 65 63 6f 6d 6d 65 6e 64 61 74 69 6f 6e 73 2f 63 6f 6c 6c 65 63 74 69 6f 6e 73 2f 54 6f 70 46 72 65 65 3f 6d 61 72 6b 65 74 3d 43 48 26 6c 6f 63 61 6c 65 3d 65 6e 2d 43 48 26 6d 65 64 69 61 54 79 70 65 3d 41 50 50 53 26 64 65 76 69 63 65 46 61 6d 69 6c 79 3d 57 69 6e 64 6f 77 73 2e 44 65 73 6b 74 6f 70 26 61 70 70 56 65 72 73 69 6f 6e 3d 31 31 39 31 30 2e 31 30 Data Ascii: 00006000{"$type":"Microsoft.Marketplace.Storefront.Contracts.V1.ResponseItem, Microsoft.Marketplace.Storefront.Contracts","Path":"/recommendations/collections/TopFree?market=CH&locale=en-CH&mediaType=APPS&deviceFamily=Windows.Desktop&appVersion=11910.10
2024-04-16 20:52:21 UTC	8622	IN	Data Raw: 4e 61 72 72 61 74 6f 72 54 65 78 74 22 3a 22 50 43 2c 48 6f 6c 6f 4c 65 6e 73 22 2c 22 54 79 70 65 54 61 67 22 3a 22 61 70 70 22 2c 22 52 65 63 6f 6d 6d 65 6e 64 61 74 69 6f 6e 52 65 61 73 6f 6e 22 3a 22 22 2c 22 4c 6f 6e 67 44 65 73 63 72 69 70 74 69 6f 6e 22 3a 22 53 6e 61 70 63 68 61 74 20 69 73 20 61 20 66 61 73 74 20 61 6e 64 20 66 75 6e 20 77 61 79 20 74 6f 20 73 68 61 72 65 20 74 68 65 20 6d 6f 6d 65 6e 74 20 77 69 74 68 20 79 6f 75 72 20 66 72 69 65 6e 64 73 20 61 6e 64 20 66 61 6d 69 6c 79 2e 22 2c 22 50 72 6f 64 75 63 74 46 61 6d 69 6c 79 4e 61 6d 65 22 3a 22 41 70 70 73 22 2c 22 53 6b 75 73 53 75 6d 6d 61 72 79 22 3a 5b 5d 2c 22 49 73 47 61 6d 69 6e 67 41 70 70 4f 6e 6c 79 22 3a 66 61 6c 73 65 2c 22 43 61 74 65 67 6f 72 69 65 73 22 3a 5b 22 53 Data Ascii: NarratorText":"PC,HoloLens","TypeTag":"app","RecommendationReason":"","LongDescription":"Snapchat is a fast and fun way to share the moment with your friends and family.","ProductFamilyName":"Apps","SkusSummary":[],"IsGamingAppOnly":false,"Categories":["S
2024-04-16 20:52:21 UTC	16384	IN	Data Raw: 30 30 30 30 36 30 30 30 0d 0a 2f 73 74 6f 72 65 2d 69 6d 61 67 65 73 2e 73 2d 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 69 6d 61 67 65 2f 61 70 70 73 2e 35 35 34 33 31 2e 31 34 34 39 35 33 31 31 38 34 37 31 32 34 31 37 30 2e 30 30 34 61 33 38 36 65 2d 65 62 30 37 2d 34 39 30 33 2d 62 31 37 64 2d 62 62 61 31 63 63 33 64 66 30 32 65 2e 62 34 31 39 34 61 63 64 2d 63 37 39 35 2d 34 61 62 30 2d 61 31 35 62 2d 66 30 61 31 33 38 33 64 62 37 32 34 22 2c 22 48 65 69 67 68 74 22 3a 33 30 30 2c 22 57 69 64 74 68 22 3a 33 30 30 7d 2c 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 32 2e 49 6d 61 67 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 Data Ascii: 00006000/store-images.s-microsoft.com/image/apps.55431.14495311847124170.004a386e-eb07-4903-b17d-bba1cc3df02e.b4194acd-c795-4ab0-a15b-f0a1383db724","Height":300,"Width":300},{"$type":"Microsoft.Marketplace.Storefront.Contracts.V2.ImageItem, Microsoft.Ma
2024-04-16 20:52:21 UTC	8204	IN	Data Raw: 30 34 2d 34 61 34 64 2d 61 36 31 62 2d 34 37 63 63 63 32 35 64 61 30 31 32 2e 30 31 66 36 61 66 39 37 2d 30 66 66 39 2d 34 66 63 39 2d 61 61 65 30 2d 61 34 65 37 30 32 61 64 66 39 34 62 22 2c 22 48 65 69 67 68 74 22 3a 31 35 30 2c 22 57 69 64 74 68 22 3a 33 31 30 7d 2c 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 32 2e 49 6d 61 67 65 49 74 65 6d 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 49 6d 61 67 65 54 79 70 65 22 3a 22 74 69 6c 65 22 2c 22 42 61 63 6b 67 72 6f 75 6e 64 43 6f 6c 6f 72 22 3a 22 23 31 30 37 43 31 30 22 2c 22 46 6f 72 65 67 72 Data Ascii: 04-4a4d-a61b-47ccc25da012.01f6af97-0ff9-4fc9-aae0-a4e702adf94b","Height":150,"Width":310},{"$type":"Microsoft.Marketplace.Storefront.Contracts.V2.ImageItem, Microsoft.Marketplace.Storefront.Contracts","ImageType":"tile","BackgroundColor":"#107C10","Foregr
2024-04-16 20:52:21 UTC	8959	IN	Data Raw: 30 30 30 30 32 32 46 33 0d 0a 73 74 20 64 6f 6e e2 80 99 74 20 68 61 76 65 20 74 68 65 20 74 69 6d 65 2e 20 50 6f 63 6b 65 74 20 73 74 61 73 68 65 73 20 69 74 20 69 6e 20 79 6f 75 72 20 6f 77 6e 20 70 72 69 76 61 74 65 2c 20 64 69 73 74 72 61 63 74 69 6f 6e 2d 66 72 65 65 20 73 70 61 63 65 20 74 6f 20 64 69 76 65 20 69 6e 74 6f 20 6c 61 74 65 72 2e 5c 72 5c 6e 5c 72 5c 6e 4d 55 4c 54 49 54 41 53 4b 49 4e 47 20 4d 41 44 45 20 45 41 53 59 5c 72 5c 6e 50 6c 61 79 20 61 20 76 69 64 65 6f 20 69 6e 20 61 20 73 65 70 61 72 61 74 65 2c 20 73 63 61 6c 61 62 6c 65 20 77 69 6e 64 6f 77 20 74 68 61 74 20 70 69 6e 73 20 74 6f 20 74 68 65 20 66 72 6f 6e 74 20 6f 66 20 79 6f 75 72 20 64 65 73 6b 74 6f 70 20 77 69 74 68 20 74 68 65 20 50 69 63 74 75 72 65 2d 69 6e 2d 50 Data Ascii: 000022F3st dont have the time. Pocket stashes it in your own private, distraction-free space to dive into later.\r\n\r\nMULTITASKING MADE EASY\r\nPlay a video in a separate, scalable window that pins to the front of your desktop with the Picture-in-P
2024-04-16 20:52:21 UTC	16384	IN	Data Raw: 30 30 30 30 34 30 30 30 0d 0a 70 75 72 63 68 61 73 65 20 61 20 4d 69 63 72 6f 73 6f 66 74 20 33 36 35 20 42 61 73 69 63 2c 20 50 65 72 73 6f 6e 61 6c 2c 20 6f 72 20 46 61 6d 69 6c 79 20 73 75 62 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 72 65 6d 6f 76 65 20 61 6e 79 20 61 64 76 65 72 74 69 73 69 6e 67 20 73 65 72 76 65 64 20 62 79 20 4d 69 63 72 6f 73 6f 66 74 2e 20 54 6f 20 6c 65 61 72 6e 20 6d 6f 72 65 2c 20 76 69 73 69 74 20 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 6f 75 74 6c 6f 6f 6b 2d 66 6f 72 2d 77 69 6e 64 6f 77 73 5c 72 5c 6e 5c 72 5c 6e 2a 20 4d 69 63 72 6f 73 6f 66 74 20 33 36 35 20 73 75 62 73 63 72 69 70 74 69 6f 6e 20 72 65 71 75 69 72 65 64 22 2c 22 50 72 6f 64 75 63 74 46 61 6d 69 6c 79 4e 61 6d 65 22 3a 22 41 70 70 73 22 2c 22 53 6b 75 73 Data Ascii: 00004000purchase a Microsoft 365 Basic, Personal, or Family subscription to remove any advertising served by Microsoft. To learn more, visit microsoft.com/outlook-for-windows\r\n\r\n* Microsoft 365 subscription required","ProductFamilyName":"Apps","Skus
2024-04-16 20:52:21 UTC	12	IN	Data Raw: 72 6f 6e 74 2e 43 6f 6e 74 72 0d 0a Data Ascii: ront.Contr
2024-04-16 20:52:21 UTC	4893	IN	Data Raw: 30 30 30 30 31 33 31 31 0d 0a 61 63 74 73 2e 56 31 2e 43 6f 6e 74 65 6e 74 46 69 6c 74 65 72 43 68 6f 69 63 65 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 22 2c 22 43 68 6f 69 63 65 49 64 22 3a 22 43 53 52 52 3a 50 47 31 35 22 2c 22 54 69 74 6c 65 22 3a 22 43 53 52 52 3a 50 47 31 35 22 2c 22 43 6f 75 6e 74 22 3a 37 32 7d 2c 7b 22 24 74 79 70 65 22 3a 22 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 74 73 2e 56 31 2e 43 6f 6e 74 65 6e 74 46 69 6c 74 65 72 43 68 6f 69 63 65 2c 20 4d 69 63 72 6f 73 6f 66 74 2e 4d 61 72 6b 65 74 70 6c 61 63 65 2e 53 74 6f 72 65 66 72 6f 6e 74 2e 43 6f 6e 74 72 61 63 Data Ascii: 00001311acts.V1.ContentFilterChoice, Microsoft.Marketplace.Storefront.Contracts","ChoiceId":"CSRR:PG15","Title":"CSRR:PG15","Count":72},{"$type":"Microsoft.Marketplace.Storefront.Contracts.V1.ContentFilterChoice, Microsoft.Marketplace.Storefront.Contrac
2024-04-16 20:52:21 UTC	12	IN	Data Raw: 30 30 30 30 30 30 30 30 0d 0a 0d 0a Data Ascii: 00000000