Windows Analysis Report
https://www.octopuspro.life/

Overview

General Information

Sample URL:	https://www.octopuspro.life/
Analysis ID:	1649417
Infos:

Detection

Score:	1
Range:	0 - 100
Confidence:	80%

Signatures

Creates files inside the system directory

Deletes files inside the Windows folder

Classification

Signatures

Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.251.40.228:443 -> 192.168.2.16:49749 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/vant.bf6013a5.css HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/index.523307d0.css HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/index.b0a3a26f.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/@vue.d3b2b407.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/@vant.378c9e84.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/vant.9dc2feea.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/has-symbols.456daba2.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/has-proto.4a87f140.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/function-bind.72d06d3b.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/has.851ffceb.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/get-intrinsic.1f7927fd.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/call-bind.218c9af5.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/crypto-js.71120912.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/pinia.d3ba3a69.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/pinia-plugin-persistedstate.35ef556e.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/uuid.5e712abb.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/vue-router.6cf43cf2.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/@intlify.d5940eca.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/vue-i18n.69c8aa1d.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /config.js?1743012562274 HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/index.a34c92de.css HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/index.14bbc7ed.css HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/Login.0d647572.css HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/Login.51f70c7b.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/eye_open.915cc152.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/request.6a9e1309.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/axios.743c2fba.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/qs.9001da4e.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/side-channel.722dcddb.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/object-inspect.1ccc8433.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/ts-md5.046f776c.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/index.e6d0fc0c.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/index.e0b83602.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/index.8c930aeb.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /config.js?1743012581536 HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531 HTTP/1.1Host: ntp.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-edge-ntp: {"back_block":0,"bg_cur":{},"bg_img_typ":"bing","exp":["msQuickLinksDefaultOneRow","msShoppingWebAssistOnNtp","msShoppingHistogramsOnNtp","msEnableWinHPNewTabBackButtonFocusAndClose","msCustomMaxQuickLinks","msMaxQuickLinksAt20","msAllowThemeInstallationFromChromeStore","msEdgeSplitWindowLinkMode"],"feed":0,"feed_dis":"onscroll","layout":1,"quick_links_opt":1,"sel_feed_piv":"","show_greet":true,"vt_opened":false}Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /crx/blobs/Ad_brx3-BuL0c-lurTuHDvLGx_3o1po6xdCJ6biVPWmOWpEAIO3qQwYr84tWN8xt3Y-b4FBELB16YJo65m5b1LlifuobAPibVoX_4l94iArbx2Gsn4X-g9109tXuJL65PgYAxlKa5UnJV70rV6RKReARs98yYD2dVaKO/GHBMNNJOOEKPMOECNNNILNNBDLOLHKHI_1_90_1_0.crx HTTP/1.1Host: clients2.googleusercontent.comConnection: keep-aliveSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/edgeChromium/latest/SSR-extension.828d19e24cc86fbcd5c9.js HTTP/1.1Host: ntp.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ntp.msn.comsec-ch-viewport-height: 876sec-ch-ua-arch: "x86"sec-ch-viewport-width: 1232sec-ch-ua-platform-version: "10.0.0"downlink: 1.55sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-platform: "Windows"device-memory: 8rtt: 100sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-full-version: "117.0.2045.47"sec-ch-dpr: 1ect: 4gAccept: /sec-edge-ntp: {"back_block":0,"bg_cur":{},"bg_img_typ":"bing","exp":["msQuickLinksDefaultOneRow","msShoppingWebAssistOnNtp","msShoppingHistogramsOnNtp","msEnableWinHPNewTabBackButtonFocusAndClose","msCustomMaxQuickLinks","msMaxQuickLinksAt20","msAllowThemeInstallationFromChromeStore","msEdgeSplitWindowLinkMode"],"feed":0,"feed_dis":"onscroll","layout":1,"quick_links_opt":1,"sel_feed_piv":"","show_greet":true,"vt_opened":false}Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: _C_ETH=1; sptmarket=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z; USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; MUIDB=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1
Source: global traffic	HTTP traffic detected: GET /bundles/v1/edgeChromium/latest/web-worker.948ffa5ea2d441a35f55.js HTTP/1.1Host: ntp.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-viewport-height: 876sec-ch-ua-arch: "x86"sec-ch-viewport-width: 1232sec-ch-ua-platform-version: "10.0.0"downlink: 1.55sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-platform: "Windows"device-memory: 8rtt: 100sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-full-version: "117.0.2045.47"sec-ch-dpr: 1ect: 4gAccept: /sec-edge-ntp: {"back_block":0,"bg_cur":{},"bg_img_typ":"bing","exp":["msQuickLinksDefaultOneRow","msShoppingWebAssistOnNtp","msShoppingHistogramsOnNtp","msEnableWinHPNewTabBackButtonFocusAndClose","msCustomMaxQuickLinks","msMaxQuickLinksAt20","msAllowThemeInstallationFromChromeStore","msEdgeSplitWindowLinkMode"],"feed":0,"feed_dis":"onscroll","layout":1,"quick_links_opt":1,"sel_feed_piv":"","show_greet":true,"vt_opened":false}Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: _C_ETH=1; sptmarket=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z; USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; MUIDB=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1
Source: global traffic	HTTP traffic detected: GET /bundles/v1/edgeChromium/latest/vendors.08ddc3af8246ad2193cd.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ntp.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/edgeChromium/latest/microsoft.1ed6fad3ee8a8960478c.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ntp.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/edgeChromium/latest/common.054c6a114cb2ba3115b8.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ntp.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /c.gif?rnd=1743012599501&udc=true&pg.n=default&pg.t=dhp&pg.c=547&pg.p=anaheim&rf=&tp=https%3A%2F%2Fntp.msn.com%2Fedge%2Fntp%3Flocale%3Den-GB%26title%3DNew%2520tab%26dsp%3D1%26sp%3DBing%26isFREModalBackground%3D1%26startpage%3D1%26PC%3DU531%26ocid%3Dmsedgdhp&cvs=Browser&di=340&st.dpt=&st.sdpt=antp&subcvs=homepage&lng=en-us&rid=fdede3e39b3c42b3863a32b25c92065a&activityId=fdede3e39b3c42b3863a32b25c92065a&d.imd=false&scr=1280x1024&anoncknm=app_anon&issso=&aadState=0 HTTP/1.1Host: c.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: _C_ETH=1; USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1
Source: global traffic	HTTP traffic detected: GET /b?rn=1743012599501&c1=2&c2=3000001&cs_ucfr=1&c7=https%3A%2F%2Fntp.msn.com%2Fedge%2Fntp%3Flocale%3Den-GB%26title%3DNew%2Btab%26dsp%3D1%26sp%3DBing%26isFREModalBackground%3D1%26startpage%3D1%26PC%3DU531%26ocid%3Dmsedgdhp%26mkt%3Den-us&c8=New+tab&c9=&cs_fpid=292EF211B19B62C117BBE7AAB06B639F&cs_fpit=o&cs_fpdm=null&cs_fpdt=null HTTP/1.1Host: sb.scorecardresearch.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /b2?rn=1743012599501&c1=2&c2=3000001&cs_ucfr=1&c7=https%3A%2F%2Fntp.msn.com%2Fedge%2Fntp%3Flocale%3Den-GB%26title%3DNew%2Btab%26dsp%3D1%26sp%3DBing%26isFREModalBackground%3D1%26startpage%3D1%26PC%3DU531%26ocid%3Dmsedgdhp%26mkt%3Den-us&c8=New+tab&c9=&cs_fpid=292EF211B19B62C117BBE7AAB06B639F&cs_fpit=o&cs_fpdm=null&cs_fpdt=null HTTP/1.1Host: sb.scorecardresearch.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: UID=18C23e9bcc7c48c308e5c5d1743012600; XID=18C23e9bcc7c48c308e5c5d1743012600
Source: global traffic	HTTP traffic detected: GET /c.gif?rnd=1743012599501&udc=true&pg.n=default&pg.t=dhp&pg.c=547&pg.p=anaheim&rf=&tp=https%3A%2F%2Fntp.msn.com%2Fedge%2Fntp%3Flocale%3Den-GB%26title%3DNew%2520tab%26dsp%3D1%26sp%3DBing%26isFREModalBackground%3D1%26startpage%3D1%26PC%3DU531%26ocid%3Dmsedgdhp&cvs=Browser&di=340&st.dpt=&st.sdpt=antp&subcvs=homepage&lng=en-us&rid=fdede3e39b3c42b3863a32b25c92065a&activityId=fdede3e39b3c42b3863a32b25c92065a&d.imd=false&scr=1280x1024&anoncknm=app_anon&issso=&aadState=0&ctsa=mr&CtsSyncId=336A651762A6411E9F54AB570587B1CD&MUID=292EF211B19B62C117BBE7AAB06B639F HTTP/1.1Host: c.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1; SM=T
Source: global traffic	HTTP traffic detected: GET /edge/ntp?locale=en-GB&title=New+tab&enableForceCache=true HTTP/1.1Host: ntp.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-viewport-height: 876sec-ch-ua-arch: "x86"sec-ch-viewport-width: 1232sec-ch-ua-platform-version: "10.0.0"downlink: 7.45sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-platform: "Windows"device-memory: 8rtt: 150sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-full-version: "117.0.2045.47"sec-ch-dpr: 1ect: 4gAccept: /sec-edge-ntp: {"back_block":0,"bg_cur":{},"bg_img_typ":"bing","exp":["msQuickLinksDefaultOneRow","msShoppingWebAssistOnNtp","msShoppingHistogramsOnNtp","msEnableWinHPNewTabBackButtonFocusAndClose","msCustomMaxQuickLinks","msMaxQuickLinksAt20","msAllowThemeInstallationFromChromeStore","msEdgeSplitWindowLinkMode"],"feed":0,"feed_dis":"onscroll","layout":1,"quick_links_opt":1,"sel_feed_piv":"","show_greet":true,"vt_opened":false}Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: _C_Auth=; pglt-edgeChromium-dhp=547; sptmarket=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z; USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; MUIDB=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1; MicrosoftApplicationsTelemetryDeviceId=d11ce2a9-d65c-49a6-a499-c9838f8a283e; ai_session=owZEu+zYUbqTPCflCLvR2b\|1743012599497\|1743012599497; sptmarket_restored=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z
Source: global traffic	HTTP traffic detected: GET /edge/ntp/service-worker.js?bundles=latest&riverAgeMinutes=2880&navAgeMinutes=2880&networkTimeoutSeconds=5&bgTaskNetworkTimeoutSeconds=8&ssrBasePageNavAgeMinutes=720&enableEmptySectionRoute=true&enableNavPreload=true&enableFallbackVerticalsFeed=true&noCacheLayoutTemplates=true&cacheSSRBasePageResponse=true&enableStaticAdsRouting=true&enableWidgetsRegion=true HTTP/1.1Host: ntp.msn.comConnection: keep-aliveCache-Control: max-age=0Accept: /Service-Worker: scriptUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-edge-ntp: {"back_block":0,"bg_cur":{"configIndex":33,"imageId":"BB1msyO5","provider":"CMSImage","userSelected":false},"bg_img_typ":"bing","exp":["msQuickLinksDefaultOneRow","msShoppingWebAssistOnNtp","msShoppingHistogramsOnNtp","msEnableWinHPNewTabBackButtonFocusAndClose","msCustomMaxQuickLinks","msMaxQuickLinksAt20","msAllowThemeInstallationFromChromeStore","msEdgeSplitWindowLinkMode"],"feed":0,"feed_dis":"onscroll","layout":1,"quick_links_opt":1,"sel_feed_piv":"myFeed","show_greet":true,"vt_opened":false,"wpo_nx":{"cpt":false,"v":"2","wgt":{"src":"default"}}}Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: serviceworkerReferer: https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: _C_Auth=; pglt-edgeChromium-dhp=547; sptmarket=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z; USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; MUIDB=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1; MicrosoftApplicationsTelemetryDeviceId=d11ce2a9-d65c-49a6-a499-c9838f8a283e; ai_session=owZEu+zYUbqTPCflCLvR2b\|1743012599497\|1743012599497; sptmarket_restored=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /v4/1737322246582photo_2025-01-19_16-28-54.jpg HTTP/1.1Host: shangchengossvip.oss-ap-northeast-1.aliyuncs.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /v4/1737323341061photo_2025-01-19_16-48-53.jpg HTTP/1.1Host: shangchengossvip.oss-ap-northeast-1.aliyuncs.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /widgets/fullpage/distribution/edgewelcome?experiences=DistributionPage&ocid=edge-whatsnew HTTP/1.1Host: www.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: USRLOC=; msnup=%7B%22cnex%22%3A%22no%22%7D
Source: global traffic	HTTP traffic detected: GET /bundles/v1/distribution/latest/vendors.d049fb344a15489e568f.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/distribution/latest/microsoft.a64b2be15baaa46efd42.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /npm/@shoelace-style/shoelace@2.12.0/cdn/themes/light.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxlyvkTw3vm8lDHAT6SkekwG8YusCcPfPfP0m.fAST28KgPMuaAoMaftBlNveobdvuj_EZhnZ5RCl5BbcBXbDJU8-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHM0OYfiFeMI2p9MWie0CvL99U4GA1gf6_kayTt_kBblFwHwo8BW8JXlqfnYxKPmmBYVg3jodNnjjCF9g7fe.CF_J3ICewh8sxTRsG3rDIJJCfXdg_PjicQOhn.MpxC_5EHrD1bdswgr8IKXaeHvwZiM-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxsG72wAo9EWJR4yQWyJJaDb6rYcBtJvTvH3UoAS4JFNDaxGhmKNaMwgElLURlRFeVkLCjkfnXmWtINWZIrPGYq0-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxo4K81Ei7WzcnqEk8W.MgwZHw5A578BHBl7Vp_RZnEknVVBWO3tHfmiSimvYi2NX1b2Ftw62ZhmFl6P1HnAei74-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxiq8rwXckZAP_inAe6ki68ngsFVcJXxS4Pf4uY6MUw4tEWr31NRKjpRAPoTVhCqZwkPWoFkmcoOefB1IaaJEY.0-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8

Source: Favicons.16.dr	String found in binary or memory: https://edge.microsoft.com/favicon/v1?client=chrome_desktop&nfrp=2&check_seen=true&size=32&min_size=16&max_size=256&fallback_opts=TYPE,SIZE,URL&url=https://www.facebook.com/&origin=PinningWizard equals www.facebook.com (Facebook)
Source: Favicons.16.dr	String found in binary or memory: https://edge.microsoft.com/favicon/v1?client=chrome_desktop&nfrp=2&check_seen=true&size=32&min_size=16&max_size=256&fallback_opts=TYPE,SIZE,URL&url=https://www.youtube.com/&origin=PinningWizard equals www.youtube.com (Youtube)
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: "url": "https://www.youtube.com" equals www.youtube.com (Youtube)
Source: 000003.log9.16.dr	String found in binary or memory: "www.facebook.com": "{\"Tier1\": [1103, 6061], \"Tier2\": [5445, 1780, 8220]}", equals www.facebook.com (Facebook)
Source: 000003.log9.16.dr	String found in binary or memory: "www.linkedin.com": "{\"Tier1\": [1103, 214, 6061], \"Tier2\": [2771, 9515, 1780, 1303, 1099, 6081, 5581, 9396]}", equals www.linkedin.com (Linkedin)
Source: 000003.log9.16.dr	String found in binary or memory: "www.youtube.com": "{\"Tier1\": [983, 6061, 1103], \"Tier2\": [2413, 8118, 1720, 5007]}", equals www.youtube.com (Youtube)
Source: Favicons.16.dr	String found in binary or memory: ?https://www.facebook.com/ equals www.facebook.com (Facebook)
Source: Favicons.16.dr	String found in binary or memory: https://edge.microsoft.com/favicon/v1?client=chrome_desktop&nfrp=2&check_seen=true&size=32&min_size=16&max_size=256&fallback_opts=TYPE,SIZE,URL&url=https://www.youtube.com/&origin=PinningWizard equals www.youtube.com (Youtube)
Source: Favicons.16.dr	String found in binary or memory: https://www.youtube.com/ equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: www.octopuspro.life
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: ntp.msn.com
Source: global traffic	DNS traffic detected: DNS query: bzib.nelreports.net
Source: global traffic	DNS traffic detected: DNS query: clients2.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: sb.scorecardresearch.com
Source: global traffic	DNS traffic detected: DNS query: assets.msn.com
Source: global traffic	DNS traffic detected: DNS query: c.msn.com
Source: global traffic	DNS traffic detected: DNS query: api.msn.com
Source: global traffic	DNS traffic detected: DNS query: browser.events.data.msn.com
Source: global traffic	DNS traffic detected: DNS query: r.msftstatic.com
Source: global traffic	DNS traffic detected: DNS query: chrome.cloudflare-dns.com
Source: global traffic	DNS traffic detected: DNS query: beacons.gcp.gvt2.com
Source: global traffic	DNS traffic detected: DNS query: beacons.gvt2.com
Source: global traffic	DNS traffic detected: DNS query: beacons2.gvt2.com

Source: unknown

HTTP traffic detected: POST /report/v4?s=I2Ow%2FoTEWj9RSY7%2Bzt8M9QA3c1WeDPaGYD60R9snKv1Ag3c1WZusTlTvly3hPrOSy207D2%2FZlQr2CTDtL5yw7AcLsoKOOs9L8PfmqX66QMBThe5idRyxfMlGYv513ctTVlFH88Ip HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 428Content-Type: application/reports+jsonOrigin: https://www.octopuspro.lifeUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Wed, 26 Mar 2025 18:09:26 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeCache-Control: max-age=14400cf-cache-status: EXPIREDReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I2Ow%2FoTEWj9RSY7%2Bzt8M9QA3c1WeDPaGYD60R9snKv1Ag3c1WZusTlTvly3hPrOSy207D2%2FZlQr2CTDtL5yw7AcLsoKOOs9L8PfmqX66QMBThe5idRyxfMlGYv513ctTVlFH88Ip"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 92689959dea041d8-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=83839&min_rtt=83503&rtt_var=17889&sent=6&recv=8&lost=0&retrans=0&sent_bytes=2836&recv_bytes=1173&delivery_rate=36554&cwnd=252&unsent_bytes=0&cid=97f95b20ab9be20d&ts=251&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundX-Cache: CONFIG_NOCACHEAccept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-VersionX-MSEdge-Ref: Ref A: C74CFBD41EF24F7BB41F7BD4337DF4B0 Ref B: BL2AA2030102017 Ref C: 2025-03-26T18:10:14ZDate: Wed, 26 Mar 2025 18:10:15 GMTConnection: closeContent-Length: 0
Source: global traffic	HTTP traffic detected: HTTP/1.1 503 Service UnavailableServer: AkamaiGHostMime-Version: 1.0Content-Type: text/htmlContent-Length: 278Expires: Wed, 26 Mar 2025 18:10:59 GMTDate: Wed, 26 Mar 2025 18:10:59 GMTConnection: closePMUSER_FORMAT_QS: X-CDN-TraceId: 0.0c972e17.1743012659.11e6ac92Access-Control-Allow-Headers: Access-Control-Allow-Credentials: falseAccess-Control-Allow-Methods: GET, OPTIONS, POSTAccess-Control-Allow-Origin:

Source: History.16.dr	String found in binary or memory: http://octopuspro.life/
Source: Reporting and NEL.17.dr	String found in binary or memory: https://a.nel.cloudflare.com/report/v4?s=9QEJGKPfQebdzI7EQm3LhMmeS88mWfTuPyzoeOmlFkUxDuN46HIlNo1gzY3
Source: Reporting and NEL.17.dr	String found in binary or memory: https://a.nel.cloudflare.com/report/v4?s=DqNqKnZhh3biWqc4CnouRDGaeEv6W3DzKu8wIWUz6hQ00T7dplIaS%2BwDo
Source: chromecache_533.1.dr, chromecache_546.1.dr	String found in binary or memory: https://api.toivaex.site
Source: 000003.log2.16.dr	String found in binary or memory: https://api.toivaex.site/storage/topic/20230922/d470331eb5fc052cbec7b618ddbd2e52.png
Source: chromecache_533.1.dr, chromecache_546.1.dr	String found in binary or memory: https://app.vskefu.com
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://assets.msn.cn/resolver/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://assets.msn.com/resolver/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://bard.google.com/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://bit.ly/wb-precache
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://browser.events.data.msn.cn/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://browser.events.data.msn.com/
Source: Reporting and NEL.17.dr	String found in binary or memory: https://bzib.nelreports.net/api/report?cat=bingbusiness
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://c.msn.com/
Source: offscreendocument_main.js.16.dr, service_worker_bin_prod.js.16.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/mathjax/
Source: Web Data.16.dr	String found in binary or memory: https://ch.search.yahoo.com/favicon.icohttps://ch.search.yahoo.com/search
Source: Web Data.16.dr	String found in binary or memory: https://ch.search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command=
Source: manifest.json.16.dr	String found in binary or memory: https://chrome.google.com/webstore/
Source: manifest.json.16.dr	String found in binary or memory: https://chromewebstore.google.com/
Source: cf7f6554-1068-404a-9c89-011a37b2b6b3.tmp.17.dr	String found in binary or memory: https://clients2.google.com
Source: manifest.json0.16.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: cf7f6554-1068-404a-9c89-011a37b2b6b3.tmp.17.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: Reporting and NEL.17.dr	String found in binary or memory: https://deff.nelreports.net/api/report
Source: Reporting and NEL.17.dr	String found in binary or memory: https://deff.nelreports.net/api/report?cat=msn
Source: manifest.json0.16.dr	String found in binary or memory: https://docs.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-autopush.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-0.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-1.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-2.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-3.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-4.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-5.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-6.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-preprod.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-staging.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive.google.com/
Source: Web Data.16.dr	String found in binary or memory: https://duckduckgo.com/ac/?q=
Source: Web Data.16.dr	String found in binary or memory: https://duckduckgo.com/chrome_newtab
Source: Web Data.16.dr	String found in binary or memory: https://duckduckgo.com/favicon.icohttps://duckduckgo.com/?q=
Source: 000003.log9.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/addressbar_uu_files.en-gb/1.0.2/asset?sv=2017-07-29&sr
Source: 000003.log9.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/arbitration_priority_list/4.0.5/asset?assetgroup=Arbit
Source: 000003.log9.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/arbitration_priority_list/4.0.5/asset?sv=2017-07-29&sr
Source: 000003.log7.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/domains_config_gz/2.8.76/asset?assetgroup=EntityExtrac
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_163_music.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_M365_dark.png/1.7.32/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_M365_hc.png/1.7.32/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_M365_light.png/1.7.32/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_action_center_hc.png/1.2.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_action_center_maximal_dark.png/1.2.1/ass
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_action_center_maximal_light.png/1.2.1/as
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_amazon_music_light.png/1.4.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_apple_music.png/1.4.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_bard_light.png/1.0.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_active_dark.png/1.1.17/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_active_dark.png/1.6.8/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_active_light.png/1.1.17/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_active_light.png/1.6.8/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_hc.png/1.1.17/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_hc.png/1.6.8/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_collections_hc.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_collections_maximal_dark.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_collections_maximal_light.png/1.0.3/asse
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_deezer.png/1.4.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_demo_dark.png/1.0.6/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_demo_light.png/1.0.6/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_designer_color.png/1.0.14/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_designer_hc.png/1.0.14/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_edrop_hc.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_edrop_maximal_dark.png/1.1.12/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_edrop_maximal_light.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_etree_hc.png/1.2.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_etree_maximal_dark.png/1.2.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_etree_maximal_light.png/1.2.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_excel.png/1.7.32/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_facebook_messenger.png/1.5.14/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_gaana.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_hc.png/1.7.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_hc_controller.png/1.7.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_hc_joystick.png/1.7.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_dark.png/1.7.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_dark_controller.png/1.7.1/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_dark_joystick.png/1.7.1/as
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_light.png/1.7.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_light_controller.png/1.7.1
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_light_joystick.png/1.7.1/a
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_gmail.png/1.5.4/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_help.png/1.0.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_history_hc.png/0.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_history_maximal_dark.png/0.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_history_maximal_light.png/0.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_iHeart.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_image_creator_hc.png/1.0.14/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_image_creator_maximal_dark.png/1.0.14/as
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_image_creator_maximal_light.png/1.0.14/a
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_instagram.png/1.4.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_ku_gou.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_last.png/1.0.3/asset
Source: 000003.log9.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_manifest_gz/4.7.107/asset?assetgroup=Sho
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_maximal_follow_dark.png/1.1.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_maximal_follow_hc.png/1.1.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_maximal_follow_light.png/1.1.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_naver_vibe.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_onenote_dark.png/1.4.9/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_onenote_hc.png/1.4.9/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_onenote_light.png/1.4.9/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_outlook_dark.png/1.9.10/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_outlook_hc.png/1.9.10/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_outlook_light.png/1.9.10/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_performance_hc.png/1.1.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_performance_maximal_dark.png/1.1.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_performance_maximal_light.png/1.1.0/asse
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_power_point.png/1.7.32/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_qq.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_refresh_dark.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_refresh_hc.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_refresh_light.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_rewards_hc.png/1.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_rewards_maximal_dark.png/1.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_rewards_maximal_light.png/1.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_search_hc.png/1.3.6/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_search_maximal_dark.png/1.3.6/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_search_maximal_light.png/1.3.6/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_dark.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_dark.png/1.4.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_dark.png/1.5.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_hc.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_hc.png/1.4.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_hc.png/1.5.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_light.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_light.png/1.4.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_light.png/1.5.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_shopping_hc.png/1.4.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_shopping_maximal_dark.png/1.4.0/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_shopping_maximal_light.png/1.4.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_skype_dark.png/1.3.20/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_skype_hc.png/1.3.20/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_skype_light.png/1.3.20/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_sound_cloud.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_spotify.png/1.4.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_teams_dark.png/1.2.19/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_teams_hc.png/1.2.19/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_teams_light.png/1.2.19/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_telegram.png/1.0.4/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_theater_hc.png/1.0.5/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_theater_maximal_dark.png/1.0.5/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_theater_maximal_light.png/1.0.5/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_tidal.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_tik_tok_light.png/1.0.5/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_toolbox_hc.png/1.5.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_toolbox_maximal_dark.png/1.5.13/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_toolbox_maximal_light.png/1.5.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_twitter_light.png/1.0.9/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_vk.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_whats_new.png/1.0.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_whatsapp_light.png/1.4.11/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_word.png/1.7.32/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_yandex_music.png/1.0.10/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_youtube.png/1.4.14/asset
Source: 000003.log7.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/extraction.autofillFull.en-us/1.0.0/asset?assetgroup=E
Source: 000003.log9.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/signal_triggers/1.13.3/asset?sv=2017-07-29&sr=c&sig=Nt
Source: Network Action Predictor.16.dr	String found in binary or memory: https://edgecdn-embza6g8cacagcbn.z01.azurefd.net/
Source: Favicons.16.dr	String found in binary or memory: https://edgestatic.azureedge.net/welcome/static/favicon.png
Source: Favicons.16.dr	String found in binary or memory: https://edgestatic.azureedge.net/welcome/static/favicon.pngk
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://excel.new?from=EdgeM365Shoreline
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://gaana.com/
Source: chromecache_529.1.dr	String found in binary or memory: https://github.com/uuidjs/uuid#getrandomvalues-not-supported
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://i.y.qq.com/n2/m/index.html
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://img-s-msn-com.akamaized.net/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://img-s.msn.cn/tenant/amp/entityid/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://latest.web.skype.com/?browsername=edge_canary_shoreline
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://m.kugou.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://m.soundcloud.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://m.vk.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://mail.google.com/mail/mu/mp/266/#tl/Inbox
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://manifestdeliveryservice.edgebrowser.microsoft-staging-falcon.io/app/page-context-demo
Source: Cookies.17.dr	String found in binary or memory: https://msn.comXID/
Source: Cookies.17.dr	String found in binary or memory: https://msn.comXIDv10
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://music.amazon.com
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://music.apple.com
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://music.yandex.com
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://ntp.msn.cn/edge/ntp
Source: 000003.log2.16.dr, 2cc80dabc69f58b6_0.16.dr	String found in binary or memory: https://ntp.msn.com
Source: 000003.log10.16.dr, 000003.log1.16.dr	String found in binary or memory: https://ntp.msn.com/
Source: 000003.log10.16.dr	String found in binary or memory: https://ntp.msn.com/0
Source: QuotaManager.16.dr	String found in binary or memory: https://ntp.msn.com/_default
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://ntp.msn.com/edge/ntp
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://ntp.msn.com/edge/ntp/service-worker.js?bundles=latest&riverAgeMinutes=2880&navAgeMinutes=288
Source: Session_13387486198780599.16.dr	String found in binary or memory: https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&start
Source: QuotaManager.16.dr	String found in binary or memory: https://ntp.msn.com/ntp.msn.com_default
Source: 2cc80dabc69f58b6_0.16.dr	String found in binary or memory: https://ntp.msn.comService-Worker-Allowed:
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://open.spotify.com
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.live.com/calendar/view/agenda/quickcapture/moreDetails?isExtension=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.live.com/mail/0/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.live.com/mail/compose?isExtension=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.live.com/mail/inbox?isExtension=true&sharedHeader=1&nlp=1&client_flight=outlookedge
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.office.com/calendar/view/agenda/quickcapture/moreDetails?isExtension=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.office.com/mail/0/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.office.com/mail/compose?isExtension=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.office.com/mail/inbox?isExtension=true&sharedHeader=1&client_flight=outlookedge
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://powerpoint.new?from=EdgeM365Shoreline
Source: chromecache_533.1.dr, chromecache_546.1.dr	String found in binary or memory: https://qb.toivaex2.online
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://sb.scorecardresearch.com/
Source: 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737321931036App.gif
Source: 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737321934995App.gif
Source: 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737322241556photo_2025-01-19_16-28-54.j
Source: Favicons.16.dr, 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737322246582photo_2025-01-19_16-28-54.j
Source: 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737323341061photo_2025-01-19_16-48-53.j
Source: 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737323349737photo_2025-01-19_16-48-53.j
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://srtb.msn.cn/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://srtb.msn.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://tidal.com/
Source: 000003.log2.16.dr	String found in binary or memory: https://touchmplexs.shop/en.html?eid=f992f07138a96456afb1e9c53e85c530&language=tw
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://twitter.com/
Source: edgeSettings_2.0-48b11410dc937a1723bf4c5ad33ecdb286d8ec69544241bc373f753e64b396c1.16.dr	String found in binary or memory: https://unitedstates1.ss.wd.microsoft.us/
Source: edgeSettings_2.0-48b11410dc937a1723bf4c5ad33ecdb286d8ec69544241bc373f753e64b396c1.16.dr	String found in binary or memory: https://unitedstates2.ss.wd.microsoft.us/
Source: edgeSettings_2.0-48b11410dc937a1723bf4c5ad33ecdb286d8ec69544241bc373f753e64b396c1.16.dr	String found in binary or memory: https://unitedstates4.ss.wd.microsoft.us/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://vibe.naver.com/today
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://web.skype.com/?browsername=edge_canary_shoreline
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://web.skype.com/?browsername=edge_stable_shoreline
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://web.telegram.org/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://web.whatsapp.com
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://word.new?from=EdgeM365Shoreline
Source: Favicons.16.dr	String found in binary or memory: https://www.aliexpress.com/
Source: Favicons.16.dr	String found in binary or memory: https://www.amazon.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.deezer.com/
Source: content.js.16.dr, content_new.js.16.dr	String found in binary or memory: https://www.google.com/chrome
Source: Web Data.16.dr	String found in binary or memory: https://www.google.com/images/branding/product/ico/googleg_lodp.ico
Source: service_worker_bin_prod.js.16.dr	String found in binary or memory: https://www.gstatic.com/_/apps-fileview/_/js/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.iheart.com/podcast/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.instagram.com
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.last.fm/
Source: Favicons.16.dr	String found in binary or memory: https://www.live.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.messenger.com
Source: 000003.log2.16.dr	String found in binary or memory: https://www.msn.com
Source: 000003.log1.16.dr	String found in binary or memory: https://www.msn.com/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://www.msn.com/web-notification-icon-light.png
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/cgSideBar/widget?experiences=CasualGamesHub&sharedHeader=1
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/cgSideBar/widget?experiences=CasualGamesHub&sharedHeader=1&game
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/cgSideBar/widget?experiences=CasualGamesHub&sharedHeader=1&item
Source: Session_13387486198780599.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/distribution/edgewelcome?experiences=DistributionPage&ocid=edge
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/gaming/widget?experiences=CasualGamesHub&sharedHeader=1
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/gaming/widget?experiences=CasualGamesHub&sharedHeader=1&item=fl
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/gaming/widget?experiences=CasualGamesHub&sharedHeader=1&playInS
Source: Favicons.16.dr	String found in binary or memory: https://www.netflix.com/
Source: 000003.log2.16.dr	String found in binary or memory: https://www.octopuspro.life
Source: Login Data.16.dr, Session_13387486198780599.16.dr, 000003.log1.16.dr	String found in binary or memory: https://www.octopuspro.life/
Source: Session_13387486198780599.16.dr, WebAssistDatabase.16.dr, History.16.dr	String found in binary or memory: https://www.octopuspro.life/#/login
Source: History.16.dr	String found in binary or memory: https://www.octopuspro.life/#/loginOCTOPUS
Source: WebAssistDatabase.16.dr	String found in binary or memory: https://www.octopuspro.life/#/loginOCTOPUSg
Source: Network Action Predictor.16.dr	String found in binary or memory: https://www.octopuspro.life/#/loginhttps://www.octopuspro.life/#/login
Source: Shortcuts.16.dr	String found in binary or memory: https://www.octopuspro.life/#/loginhttps://www.octopuspro.life/#/loginhttps://www.octopuspro.life/#/
Source: Session_13387486198780599.16.dr, WebAssistDatabase.16.dr, History.16.dr	String found in binary or memory: https://www.octopuspro.life/#/register
Source: History.16.dr	String found in binary or memory: https://www.octopuspro.life/#/registerOCTOPUS
Source: WebAssistDatabase.16.dr	String found in binary or memory: https://www.octopuspro.life/#/registerOCTOPUSg
Source: Login Data.16.dr	String found in binary or memory: https://www.octopuspro.life//
Source: Login Data.16.dr	String found in binary or memory: https://www.octopuspro.life/28288282828
Source: Login Data.16.dr	String found in binary or memory: https://www.octopuspro.life/28288282828https://www.octopuspro.life/
Source: Login Data.16.dr	String found in binary or memory: https://www.octopuspro.life/28288282828v10
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.office.com
Source: Favicons.16.dr	String found in binary or memory: https://www.office.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.officeplus.cn/?sid=shoreline&endpoint=OPPC&source=OPCNshoreline
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotes?isEdgeHub=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotes?isEdgeHub=true&auth=1
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotes?isEdgeHub=true&auth=2
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotesstaging?isEdgeHub=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotesstaging?isEdgeHub=true&auth=1
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotesstaging?isEdgeHub=true&auth=2
Source: Favicons.16.dr	String found in binary or memory: https://www.reddit.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.tiktok.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.youtube.com
Source: Favicons.16.dr	String found in binary or memory: https://www.youtube.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://y.music.163.com/m/

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 50066 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 50007 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50007
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 50064 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49679 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.251.40.228:443 -> 192.168.2.16:49749 version: TLS 1.2

Creates files inside the system directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\scoped_dir3460_1448113233

Jump to behavior

Deletes files inside the Windows folder

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\scoped_dir3460_1448113233

Jump to behavior

Source: classification engine

Classification label: clean1.win@85/351@55/32

Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

File created: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\BrowserMetrics\BrowserMetrics-67E442F4-1C30.pma

Jump to behavior

Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

File created: C:\Users\user\AppData\Local\Temp\e704adde-a275-48d5-9f7d-527fc41e3759.tmp

Jump to behavior

Source: Login Data.16.dr

Binary or memory string: CREATE TABLE password_notes (id INTEGER PRIMARY KEY AUTOINCREMENT, parent_id INTEGER NOT NULL REFERENCES logins ON UPDATE CASCADE ON DELETE CASCADE DEFERRABLE INITIALLY DEFERRED, key VARCHAR NOT NULL, value BLOB, date_created INTEGER NOT NULL, confidential INTEGER, UNIQUE (parent_id, key));

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1924,i,12072782508214886044,16553714955938646618,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2212 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.octopuspro.life/"
Source: unknown	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2156 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:3
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-GB --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=6360 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=6636 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --lang=en-GB --service-sandbox-type=collections --mojo-platform-channel-handle=3420 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-GB --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=4600 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=7004 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1924,i,12072782508214886044,16553714955938646618,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2212 /prefetch:3	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2156 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:3	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-GB --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=6360 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=6636 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-GB --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=4600 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --lang=en-GB --service-sandbox-type=collections --mojo-platform-channel-handle=3420 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=7004 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-GB --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=4600 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=7004 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: Web Data.16.dr	Binary or memory string: outlook.office365.comVMware20,11696584680t
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - COM.HKVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - GDCDYNVMware20,11696584680p
Source: Web Data.16.dr	Binary or memory string: Canara Change Transaction PasswordVMware20,11696584680^
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - EU WestVMware20,11696584680n
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - HKVMware20,11696584680]
Source: Web Data.16.dr	Binary or memory string: microsoft.visualstudio.comVMware20,11696584680x
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - non-EU EuropeVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: outlook.office.comVMware20,11696584680s
Source: Web Data.16.dr	Binary or memory string: secure.bankofamerica.comVMware20,11696584680\|UE
Source: Web Data.16.dr	Binary or memory string: Canara Transaction PasswordVMware20,11696584680x
Source: Web Data.16.dr	Binary or memory string: account.microsoft.com/profileVMware20,11696584680u
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - EU East & CentralVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: ms.portal.azure.comVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: Canara Transaction PasswordVMware20,11696584680}
Source: Web Data.16.dr	Binary or memory string: bankofamerica.comVMware20,11696584680x
Source: Web Data.16.dr	Binary or memory string: turbotax.intuit.comVMware20,11696584680t
Source: Web Data.16.dr	Binary or memory string: Test URL for global passwords blocklistVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: Canara Change Transaction PasswordVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: www.interactivebrokers.co.inVMware20,11696584680~
Source: Web Data.16.dr	Binary or memory string: www.interactivebrokers.comVMware20,11696584680}
Source: Web Data.16.dr	Binary or memory string: AMC password management pageVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: trackpan.utiitsl.comVMware20,11696584680h
Source: Web Data.16.dr	Binary or memory string: interactivebrokers.comVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - NDCDYNVMware20,11696584680z
Source: Web Data.16.dr	Binary or memory string: tasks.office.comVMware20,11696584680o
Source: Web Data.16.dr	Binary or memory string: discord.comVMware20,11696584680f
Source: Web Data.16.dr	Binary or memory string: global block list test formVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: netportal.hdfcbank.comVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: dev.azure.comVMware20,11696584680j
Source: Web Data.16.dr	Binary or memory string: interactivebrokers.co.inVMware20,11696584680d

Screenshots

Behavior

Click here to start
Slideshow Behavior Animation

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.67.148.94	www.octopuspro.life	United States	13335	CLOUDFLARENETUS	false
52.240.245.68	unknown	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
47.79.80.19	unknown	United States	9500	VODAFONE-TRANSIT-ASVodafoneNZLtdNZ	false
13.226.94.6	sb.scorecardresearch.com	United States	16509	AMAZON-02US	false
104.21.29.43	unknown	United States	13335	CLOUDFLARENETUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
20.110.205.119	c-msn-pme.trafficmanager.net	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
23.57.90.105	a416.dscd.akamai.net	United States	35994	AKAMAI-ASUS	false
13.89.179.13	unknown	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
20.52.64.201	unknown	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
23.46.156.50	unknown	United States	20940	AKAMAI-ASN1EU	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
23.40.179.183	a233.dscd.akamai.net	United States	16625	AKAMAI-ASUS	false
23.51.56.9	unknown	United States	4788	TMNET-AS-APTMNetInternetServiceProviderMY	false
142.251.40.228	www.google.com	United States	15169	GOOGLEUS	false
20.42.72.131	onedscolprdeus00.eastus.cloudapp.azure.com	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
131.253.33.203	unknown	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
150.171.28.12	ax-0003.ax-msedge.net	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
23.48.224.230	unknown	United States	20940	AKAMAI-ASN1EU	false
23.204.152.27	unknown	United States	20940	AKAMAI-ASN1EU	false
23.219.36.106	unknown	United States	20940	AKAMAI-ASN1EU	false
172.67.186.63	unknown	United States	13335	CLOUDFLARENETUS	false
13.107.13.80	unknown	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
142.251.32.97	googlehosted.l.googleusercontent.com	United States	15169	GOOGLEUS	false
23.46.156.18	unknown	United States	20940	AKAMAI-ASN1EU	false
204.79.197.219	a-0016.a-msedge.net	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
172.64.41.3	chrome.cloudflare-dns.com	United States	13335	CLOUDFLARENETUS	false
151.101.65.229	unknown	United States	54113	FASTLYUS	false
23.96.124.156	unknown	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
204.79.197.203	a-0003.a-msedge.net	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false

Private

IP
192.168.2.16
192.168.2.24

Contacted Domains

Name	IP	Active
ax-0003.ax-msedge.net	150.171.28.12	true
chrome.cloudflare-dns.com	172.64.41.3	true
a.nel.cloudflare.com	35.190.80.1	true
ax-0002.ax-msedge.net	150.171.28.11	true
a416.dscd.akamai.net	23.57.90.105	true
a-0003.a-msedge.net	204.79.197.203	true
c-msn-pme.trafficmanager.net	20.110.205.119	true
s-part-0013.t-0009.t-msedge.net	13.107.246.41	true
beacons2.gvt2.com	34.128.8.163	true
b-0005.b-dc-msedge.net	13.107.9.158	true
beacons.gvt2.com	142.250.113.94	true
www.octopuspro.life	172.67.148.94	true
ax-0001.ax-msedge.net	150.171.28.10	true
a233.dscd.akamai.net	23.40.179.183	true
a-0016.a-msedge.net	204.79.197.219	true
sb.scorecardresearch.com	13.226.94.6	true
onedscolprdeus00.eastus.cloudapp.azure.com	20.42.72.131	true
gce-beacons.gcp.gvt2.com	35.186.229.172	true
www.google.com	142.251.40.228	true
googlehosted.l.googleusercontent.com	142.251.32.97	true
assets.msn.com	unknown	unknown
r.msftstatic.com	unknown	unknown
c.msn.com	unknown	unknown
beacons.gcp.gvt2.com	unknown	unknown
ntp.msn.com	unknown	unknown
clients2.googleusercontent.com	unknown	unknown
bzib.nelreports.net	unknown	unknown
api.msn.com	unknown	unknown
browser.events.data.msn.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://www.octopuspro.life/assets/js/request.6a9e1309.js	false	Avira URL Cloud: safe	unknown
https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application/x-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.8&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1743012601736&w=0&NoResponseBody=true	false		high
https://c.msn.com/c.gif?rnd=1743012599501&udc=true&pg.n=default&pg.t=dhp&pg.c=547&pg.p=anaheim&rf=&tp=https%3A%2F%2Fntp.msn.com%2Fedge%2Fntp%3Flocale%3Den-GB%26title%3DNew%2520tab%26dsp%3D1%26sp%3DBing%26isFREModalBackground%3D1%26startpage%3D1%26PC%3DU531%26ocid%3Dmsedgdhp&cvs=Browser&di=340&st.dpt=&st.sdpt=antp&subcvs=homepage&lng=en-us&rid=fdede3e39b3c42b3863a32b25c92065a&activityId=fdede3e39b3c42b3863a32b25c92065a&d.imd=false&scr=1280x1024&anoncknm=app_anon&issso=&aadState=0	false		high
https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737323341061photo_2025-01-19_16-48-53.jpg	false	Avira URL Cloud: safe	unknown
https://services.bingapis.com/undersideproactive/api/v1/trigger	false		high
https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxiq8rwXckZAP_inAe6ki68ngsFVcJXxS4Pf4uY6MUw4tEWr31NRKjpRAPoTVhCqZwkPWoFkmcoOefB1IaaJEY.0-&format=source&w=75	false		high
https://www.octopuspro.life/assets/css/index.523307d0.css	false	Avira URL Cloud: safe	unknown
https://www.octopuspro.life/assets/js/index.e6d0fc0c.js	false	Avira URL Cloud: safe	unknown
https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531	false		high
https://www.octopuspro.life/assets/js/uuid.5e712abb.js	false	Avira URL Cloud: safe	unknown
https://www.octopuspro.life/assets/js/index.e0b83602.js	false	Avira URL Cloud: safe	unknown
https://images-eds-ssl.xboxlive.com/image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxo4K81Ei7WzcnqEk8W.MgwZHw5A578BHBl7Vp_RZnEknVVBWO3tHfmiSimvYi2NX1b2Ftw62ZhmFl6P1HnAei74-&format=source&w=75	false		high
https://www.octopuspro.life/config.js?1743012562274	false	Avira URL Cloud: safe	unknown
https://ntp.msn.com/edge/ntp?locale=en-GB&title=New+tab&enableForceCache=true	false		high
https://www.octopuspro.life/assets/js/has-symbols.456daba2.js	false	Avira URL Cloud: safe	unknown
https://www.octopuspro.life/assets/js/@vant.378c9e84.js	false	Avira URL Cloud: safe	unknown
https://bzib.nelreports.net/api/report?cat=bingbusiness	false		high
https://www.octopuspro.life/assets/js/vue-router.6cf43cf2.js	false	Avira URL Cloud: safe	unknown
https://assets.msn.com/bundles/v1/edgeChromium/latest/common.054c6a114cb2ba3115b8.js	false		high
https://www.octopuspro.life/assets/js/crypto-js.71120912.js	false	Avira URL Cloud: safe	unknown
https://www.octopuspro.life/assets/js/get-intrinsic.1f7927fd.js	false	Avira URL Cloud: safe	unknown
https://northcentralus-0.in.applicationinsights.azure.com//v2/track	false		high
https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application/x-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.8&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1743012600736&w=0&NoResponseBody=true	false		high
https://ntp.msn.com/bundles/v1/edgeChromium/latest/SSR-extension.828d19e24cc86fbcd5c9.js	false		high
https://www.octopuspro.life/assets/js/vue-i18n.69c8aa1d.js	false	Avira URL Cloud: safe	unknown
https://www.octopuspro.life/assets/css/index.14bbc7ed.css	false	Avira URL Cloud: safe	unknown
https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application/x-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.8&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1743012600740&w=0&NoResponseBody=true	false		high
https://www.octopuspro.life/assets/js/has-proto.4a87f140.js	false	Avira URL Cloud: safe	unknown
https://sb.scorecardresearch.com/b?rn=1743012599501&c1=2&c2=3000001&cs_ucfr=1&c7=https%3A%2F%2Fntp.msn.com%2Fedge%2Fntp%3Flocale%3Den-GB%26title%3DNew%2Btab%26dsp%3D1%26sp%3DBing%26isFREModalBackground%3D1%26startpage%3D1%26PC%3DU531%26ocid%3Dmsedgdhp%26mkt%3Den-us&c8=New+tab&c9=&cs_fpid=292EF211B19B62C117BBE7AAB06B639F&cs_fpit=o&cs_fpdm=null&cs_fpdt=null	false		high
https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application/x-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-3.2.8&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1743012609982&w=0&NoResponseBody=true	false		high
https://assets.msn.com/bundles/v1/edgeChromium/latest/vendors.08ddc3af8246ad2193cd.js	false		high
https://a.nel.cloudflare.com/report/v4?s=I2Ow%2FoTEWj9RSY7%2Bzt8M9QA3c1WeDPaGYD60R9snKv1Ag3c1WZusTlTvly3hPrOSy207D2%2FZlQr2CTDtL5yw7AcLsoKOOs9L8PfmqX66QMBThe5idRyxfMlGYv513ctTVlFH88Ip	false		high
https://assets.msn.com/bundles/v1/distribution/latest/vendors.d049fb344a15489e568f.js	false		high
https://assets.msn.com/bundles/v1/distribution/latest/microsoft.a64b2be15baaa46efd42.js	false		high

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\058ba08c-bddf-4037-80fb-ee81bfb7f66b.tmp	JSON data	7CD6DC1EDDDFF4AC7CC5981ECED8E616	94C2AA2FD28B41E220B58D96AC13CEA0A496F5A4	13C6E7A7DDC86DDA9E3C3C5F33D2CA8E4E421003C5F374E40F730F0CD7FDAE56
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\0a78c584-7d65-4abf-b031-1c7796fa9b9a.tmp	JSON data	453D95F8E1D6A3B157337782BC33E3B7	E7FC129934AA6A218F8EB564C7CDF4C696903256	B20E203016B9E0CC71DFE3EE73CB6F7A4D1172A965FAB6BB6AB4E5D788157C2F
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\2e35d71e-0126-4605-8acf-9bf4369a9fb0.tmp	JSON data	8BAE51F9EF925BEB0802D5B59EB409A0	95BA6574A691DDD2B1DFA67E4F8744BC5C6C20A8	E1C983E09B05AAABBD467CC7EF46BB9CB0E1F7870F4078CA775AF39FDFD0A4D6
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\305238ce-899f-4c06-af41-f990b41a3752.tmp	JSON data	69822CB9A1C82B0DAAD58283092E2267	8323112FD6055E1DC50616A0CF31F40F3F9E1A27	A8F89E9CEDA49855E4F140129540A16B54A35627336151B3664C6F588BA4D298
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\782a5d2e-2561-4cff-85ef-00ce2f3abbd2.tmp	JSON data	C263D2B70076373797EFB919F501D10E	1DDD02F8DD30CFBDFD5C30EFEC55AD5B1929227E	F066C60C3C5A3EC05563285FE9BDE04B3C9F620E48551618A8EC5F2B750063E1
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Ad Blocking\682e9cf8-6980-42d4-80f6-51963bfc48f3.tmp	JSON data	7129D4BC1D980217D137BA5631FDBB5A	DDDC2B18DC0AC8E3821605EEDC7ABA53E0996218	C9EE27A10E08696ABCECBCABE93C043602C809B73289013B9CD82B95C023C272
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Ad Blocking\blocklist (copy)	JSON data	7129D4BC1D980217D137BA5631FDBB5A	DDDC2B18DC0AC8E3821605EEDC7ABA53E0996218	C9EE27A10E08696ABCECBCABE93C043602C809B73289013B9CD82B95C023C272
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\BrowserMetrics\BrowserMetrics-67E442F4-1C30.pma	data	9565ED9E279508F1B43920F49A3C1AB2	E3CB152526C648BDE3147EBF263B14D23F2B93A5	3FB7821494D9B2601B078DBC8D7D21B678825BE2B688C35330F646EA037BCBE0
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat	data	6ADE03B9CDDBE3063CDE85FFE2FA23B8	BB954F44DE116EB35F4FC46372CCD7C0E8024868	0794BB4D5A452DFCD4E3082DC11BE7E399BDAB5CCDAB1DA7AF7ED2C2834027FB
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\153a1ebf-3235-41c4-a0d6-743d07b6636e.tmp	JSON data	CA4F89D9B45DE3ED53E39FA73BE131C0	C4D51724EF7552E80A8C0441F57DA829CF2BFA81	39ADDDA9D9F36549CD82C161F33EFD74333D63435F7F2A33630471FF8F962FED
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\19cef983-8e23-47ed-920b-4464f05dde57.tmp	JSON data	5A526218E404EA85A58A886120E467CE	58E81D931D96878313AFC8F9A68DA2C4EADABC69	672FE09938686D94B3D3BF34E63D3A75928C5F33A898FDED2F32BA767C71BFF2
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\5f3d6357-8192-49d6-a5cc-8553d2815612.tmp	JSON data	37E34EDDA7ABF12AD68A2A78A757D57B	BC7E85E3E264E089E2C7A6423196D8CD9E7B8DED	A8ECD86770793A0C48233FF893523C893E4C4D6AB2EA6E8CF78CF644B01978B6
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\6254aada-4cab-498a-a029-4e9208cf1fb3.tmp	ASCII text, with very long lines (1597), with CRLF line terminators	3D8183370B5E2A9D11D43EBEF474B305	155AB0A46E019E834FA556F3D818399BFF02162B	6A30BADAD93601FC8987B8239D8907BCBE65E8F1993E4D045D91A77338A2A5B4
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\6498526c-d09d-49a4-af02-66855c6a5dc8.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\79ac8909-75a3-4963-b9a0-409b3a6b6485.tmp	JSON data	31748FAAD9352026F0351EB4B915660D	61938A46F2F4949279111BFC997A2C4FA650DD19	9DE7A2151A2BDBC0A363EEF44E27149F82D2AB530671C6116E1D6EFBC7C22155
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\7bfa5f81-fe08-412d-86a2-0ce7bcec87d1.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\80552ddc-5898-46e0-a02f-a970cf3dc9db.tmp	JSON data	E1ECE55C1D1D75653D6DDEC48D01AAB2	1913B1290C1A87E674392D5EB8E0D04E85516FC0	F44EF9A985EA75D9A2F344277EE1710C975F442630669CC9CF8ABCEFA56F8C9C
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\925965c2-2e95-4bff-8e31-fd5a7df9431b.tmp	JSON data	6EBAD2314ED374FE73853DBCBBA55400	C0AA0B2CED87F2BD96397E94F76FC24E60EADA57	E294DB7783DA2F20E629EB443EA97923457BEC47DB811EA38433F8E3C711CF37
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Asset Store\assets.db\000003.log	data	7AFA4849764F949B3A01AE7E700815B2	CDDDE5D1ED0A3C41BF384436F9D291C556098F26	BE47ACE4C61A058C232E12370035F0B3D65E873D2B83EBD50C1E8C539BCDCE01
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Asset Store\assets.db\LOG	ASCII text	ED3165E025141AB80324C5DEF0CE35DE	20A9723B131A0965F2552033597B8DCFAFE33D90	202F2B7AE886783C31048AE4CE104913911186249BE9DD299256904416B0F6D3
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Asset Store\assets.db\LOG.old (copy)	ASCII text	ED3165E025141AB80324C5DEF0CE35DE	20A9723B131A0965F2552033597B8DCFAFE33D90	202F2B7AE886783C31048AE4CE104913911186249BE9DD299256904416B0F6D3
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Collections\collectionsSQLite	SQLite 3.x database, last written using SQLite version 3042000, file counter 34, database pages 18, cookie 0x19, schema 4, UTF-8, version-valid-for 34	29C9AF42D59BA452C914D337F83778D8	0D4075E73B0189BD28D6968499DCFDE5975116CB	DFDAE22D17235546DAF4200A5920C46B10E0885D9A0BE747D3DE14F432817613
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\DIPS	SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 7, cookie 0x3, schema 4, UTF-8, version-valid-for 1	D938578EB93F3E4AB3BA796F9D81E3B4	193DFCA04659A99CC2C73A1C266E83FFBFEDB5CD	23D4E5A3D7BF505033EF75CE79891BC159880B1FBDCB69B7C22CE3DE66EDBA56
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\DashTrackerDatabase	SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 5, database pages 5, cookie 0x5, schema 4, UTF-8, version-valid-for 5	92F9F7F28AB4823C874D79EDF2F582DE	2D4F1B04C314C79D76B7FF3F50056ECA517C338B	6318FCD9A092D1F5B30EBD9FB6AEC30B1AEBD241DC15FE1EEED3B501571DA3C7
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\DawnCache\data_0	FoxPro FPT, blocks size 512, next free block index 3284796609, field type 0	CF89D16BB9107C631DAABF0C0EE58EFB	3AE5D3A7CF1F94A56E42F9A58D90A0B9616AE74B	D6A5FE39CD672781B256E0E3102F7022635F1D4BB7CFCC90A80FFFE4D0F3877E
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\DawnCache\data_1	data	D0D388F3865D0523E451D6BA0BE34CC4	8571C6A52AACC2747C048E3419E5657B74612995	902F30C1FB0597D0734BC34B979EC5D131F8F39A4B71B338083821216EC8D61B
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\DawnCache\data_2	data	0962291D6D367570BEE5454721C17E11	59D10A893EF321A706A9255176761366115BEDCB	EC1702806F4CC7C42A82FC2B38E89835FDE7C64BB32060E0823C9077CA92EFB7
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\DawnCache\data_3	data	41876349CB12D6DB992F1309F22DF3F0	5CF26B3420FC0302CD0A71E8D029739B8765BE27	E09F42C398D688DCE168570291F1F92D079987DEDA3099A34ADB9E8C0522B30C
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\DawnCache\index	FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0	E27B51F49F76E0664F529EB9642DDCF8	21C8E2F638BD5701E125C9E5C8FA7F83FEF33455	D8A4BFB6995AA28D35C1E98F5DF1A5A79B0C3B1A4F2DEE71EF2A60AE27D34486
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\000003.log	data	A105E51FE00336B6E15773C6527E666B	2DB0F6E166BDB55F73C77B649542B9810041B35C	4D04DCB4BEE7F0510E10B56602A004B99C94E7C8184058CD1AF09B27E16D2AAB
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\LOG	ASCII text	B1EAF55E3FF16DDE3EC57B390F343803	BE68DD400BD5EA719BA257C4DD91F8D6AC6E25FD	CEDA7F420FA27220C5E923DDB2B7028903451980152B797EA19B28C915536A97
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\LOG.old (copy)	ASCII text	B1EAF55E3FF16DDE3EC57B390F343803	BE68DD400BD5EA719BA257C4DD91F8D6AC6E25FD	CEDA7F420FA27220C5E923DDB2B7028903451980152B797EA19B28C915536A97
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeHubAppUsage\EdgeHubAppUsageSQLite.db	SQLite 3.x database, last written using SQLite version 3042000, file counter 6, database pages 5, cookie 0x5, schema 4, UTF-8, version-valid-for 6	2F2AC1324EB074111A1E18B5907F4994	0C6EA30BA7114BBBCE2336312C868702D11AEA23	71C176C8E9838A2F6293EB15EB8AB3666ED8852146651D7F718AA878C52461E9
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtraction\EntityExtractionAssetStore.db\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtraction\EntityExtractionAssetStore.db\000003.log	data	6A4B16E41466ED751AB52556E9CEB20E	7BE956C5782CEA8FE9DB66942732D79B31510890	17173AA2F99536117717B8822A43D8999C8C49C9B85287BD4E6D5E063478B93C
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtraction\EntityExtractionAssetStore.db\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtraction\EntityExtractionAssetStore.db\LOG	ASCII text	94CA3A4B26DFE4710E124A8ED2E60415	C3617809349416BCFDF1FE23559CE295035F267E	5B9DFAFD41DE8B762861E541BF9F66C4A1D68EB15E455B963735F6212B0A7FC7
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtraction\EntityExtractionAssetStore.db\LOG.old (copy)	ASCII text	94CA3A4B26DFE4710E124A8ED2E60415	C3617809349416BCFDF1FE23559CE295035F267E	5B9DFAFD41DE8B762861E541BF9F66C4A1D68EB15E455B963735F6212B0A7FC7
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtraction\EntityExtractionAssetStore.db\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtraction\domains_config.json	JSON data	97F475BF8B0A481763BDC14CCE2720CA	E7C0D884785CBC1E7C937F0BF036A9A49B272752	2239807DBCCA279029648C8E03C3FF58360C87832BC1814EE8E05D2A8BF4B69E
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Rules\000003.log	data	BF097D724FDF1FCA9CF3532E86B54696	4039A5DD607F9FB14018185F707944FE7BA25EF7	1B8B50A996172C16E93AC48BCB94A3592BEED51D3EF03F87585A1A5E6EC37F6B
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Rules\LOG	ASCII text	EF45E5404AB3172BA39A55ED9A2D8C9F	E52546CEBE2C3CE60CB7F2AA63D8B49919DD147A	0CD8BB63FAC74A6D84C682726AA5B26C65A1095AE7C5145EAE2737C040214A5B
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Rules\LOG.old (copy)	ASCII text	EF45E5404AB3172BA39A55ED9A2D8C9F	E52546CEBE2C3CE60CB7F2AA63D8B49919DD147A	0CD8BB63FAC74A6D84C682726AA5B26C65A1095AE7C5145EAE2737C040214A5B
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Scripts\000003.log	data	BF097D724FDF1FCA9CF3532E86B54696	4039A5DD607F9FB14018185F707944FE7BA25EF7	1B8B50A996172C16E93AC48BCB94A3592BEED51D3EF03F87585A1A5E6EC37F6B
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Scripts\LOG	ASCII text	BABA18815FC6E2C31347F9B0DC03A2C6	7499E60AF44AB3525543020842311E7BF1DCF1C8	DE8C0DB626FDA73E8CE43C0DAE672FDA9350B70185F9BF7F60319B02F026F733
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Scripts\LOG.old (copy)	ASCII text	BABA18815FC6E2C31347F9B0DC03A2C6	7499E60AF44AB3525543020842311E7BF1DCF1C8	DE8C0DB626FDA73E8CE43C0DAE672FDA9350B70185F9BF7F60319B02F026F733
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\000003.log	data	826B4C0003ABB7604485322423C5212A	6B8EF07391CD0301C58BB06E8DEDCA502D59BCB4	C56783C3A6F28D9F7043D2FB31B8A956369F25E6CE6441EB7C03480334341A63
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\LOG	ASCII text	0AC5C91F8B8361B7CD15733AF1084519	7E97EC2176B382EAE2D729F50717DB0E18F71CD4	A1F37BE88BB7A8F9271C5062FEBF76B16DE06770853CA42F08E33C03B04E1629
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\LOG.old (copy)	ASCII text	0AC5C91F8B8361B7CD15733AF1084519	7E97EC2176B382EAE2D729F50717DB0E18F71CD4	A1F37BE88BB7A8F9271C5062FEBF76B16DE06770853CA42F08E33C03B04E1629
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha\1.2.1_0\_metadata\computed_hashes.json	JSON data	5D1D9020CCEFD76CA661902E0C229087	DCF2AA4A1C626EC7FFD9ABD284D29B269D78FCB6	B829B0DF7E3F2391BFBA70090EB4CE2BA6A978CCD665EEBF1073849BDD4B8FB9
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Favicons	SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 2, database pages 18, cookie 0x8, schema 4, UTF-8, version-valid-for 2	FD2DA584DD68F95843D9D323B1943D18	B11D5FFB8AB09D500B517B36B9666879E87F341D	3BCAFE3B26F78195D8546C2B843BD701A52ED1E459EFB43B8039519AAE8CE222
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_0	FoxPro FPT, blocks size 512, next free block index 3284796609, field type 0	CF89D16BB9107C631DAABF0C0EE58EFB	3AE5D3A7CF1F94A56E42F9A58D90A0B9616AE74B	D6A5FE39CD672781B256E0E3102F7022635F1D4BB7CFCC90A80FFFE4D0F3877E
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_1	data	D0D388F3865D0523E451D6BA0BE34CC4	8571C6A52AACC2747C048E3419E5657B74612995	902F30C1FB0597D0734BC34B979EC5D131F8F39A4B71B338083821216EC8D61B
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_2	data	0962291D6D367570BEE5454721C17E11	59D10A893EF321A706A9255176761366115BEDCB	EC1702806F4CC7C42A82FC2B38E89835FDE7C64BB32060E0823C9077CA92EFB7
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_3	data	41876349CB12D6DB992F1309F22DF3F0	5CF26B3420FC0302CD0A71E8D029739B8765BE27	E09F42C398D688DCE168570291F1F92D079987DEDA3099A34ADB9E8C0522B30C
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\index	FoxPro FPT, blocks size 768, next free block index 3284796353, field type 0	0801B9BBEEB07A793D643DF1403E800E	6F9948638FE79FCBA5B7BEB1B51B52AE820B3308	B02174151F2731AA702D7BE5C699774FF31AE3AB0EAF48AC868EA856D7287AAD
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3042000, file counter 2, database pages 38, cookie 0x1f, schema 4, UTF-8, version-valid-for 2	03EBAFCF6B3C937FECA193097DE2A038	394D8827421F6EA476560BDC0F3478E6C9D97AAE	917A1CA7086E1233EB811C565C11C2B5A24C2C52790008979CDC33CEFF03C7BB
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\HubApps (copy)	ASCII text, with very long lines (1597), with CRLF line terminators	3D8183370B5E2A9D11D43EBEF474B305	155AB0A46E019E834FA556F3D818399BFF02162B	6A30BADAD93601FC8987B8239D8907BCBE65E8F1993E4D045D91A77338A2A5B4
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\HubApps Icons	SQLite 3.x database, last written using SQLite version 3042000, file counter 6, database pages 11, cookie 0x3, schema 4, UTF-8, version-valid-for 6	8007B02796E773ED6FAEBBCC090906E2	A7E6CC003479C59985567D5143BA0266404BF848	4DC14A43EE985E0E31C9A8B3884EA825249703555A7EABC3C07D03358E29FA9D
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Extension Settings\jdiccldimpdaibmpdkjnbmckianbfold\LOG	ASCII text	9E9F2E5ECDA63E5B45AE36C94EA671E6	943ABA09EBE7972D035A4CF02BAE8934998967B0	B253577EB8F5789B369B46C6C8FF3EC5D73E541F2D95BE587038B8FD0F8B26E3
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Extension Settings\jdiccldimpdaibmpdkjnbmckianbfold\LOG.old (copy)	ASCII text	9E9F2E5ECDA63E5B45AE36C94EA671E6	943ABA09EBE7972D035A4CF02BAE8934998967B0	B253577EB8F5789B369B46C6C8FF3EC5D73E541F2D95BE587038B8FD0F8B26E3
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\000003.log	data	E36FC57468361E90F478670AEB2F7455	DE9B03B8882C02AB97749920624B1D5D3621FD13	2305396416F3818F796477BC8D4A91702A449A252F0CC151C9DDCDD6A332A6E7
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG	ASCII text	3BEC84D2A202BE1B8A7F09BCD05F095F	327537D73E7967F6C31582FB5553C4C1031AAD94	9BD87557214D9F9283D2DCD849EC4A43FC25533B7EBE8803BFB97C9807BF13A3
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG.old (copy)	ASCII text	3BEC84D2A202BE1B8A7F09BCD05F095F	327537D73E7967F6C31582FB5553C4C1031AAD94	9BD87557214D9F9283D2DCD849EC4A43FC25533B7EBE8803BFB97C9807BF13A3
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Login Data	SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 2, database pages 25, cookie 0xe, schema 4, UTF-8, version-valid-for 2	A6923AE8BB6A08416E4FE7C34C9C6D96	2B52451B62FD0461394A2A856671BC125C7F1CC2	09D5EF5D324EA806E85CD1DEE24C0761005927DB232E72BBBA52F85AB4D1F4C6
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network Action Predictor	SQLite 3.x database, last written using SQLite version 3042000, file counter 4, database pages 11, cookie 0x6, schema 4, UTF-8, version-valid-for 4	079C3AB576DFBA37C42C7891C1A7565F	EEB3E5F93E794933F8EE509F1062F7527CA0E39C	73B5CF0DDDC9281C2F9DF4826BC1D637842E8FD33332AF0EAC1683A394C757F5
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\0b5398c8-45eb-453f-adb4-8d02cd6191ce.tmp	JSON data	9EA393E601EEFB5CD4073A225AE35148	72234D9C4A3A08D3D62837017FAA44DE51C955A2	D7885464C954C526E2E34DF23171934DCB89B69BACEFE4819209011BCF67FE97
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\24dcd783-ff9e-47df-9dd5-acadff91659e.tmp	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\444eb41f-dc51-493d-8a8d-2aff46c9abdc.tmp	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\625b0c90-1b66-444a-9728-fe10ebed54c1.tmp	JSON data	285252A2F6327D41EAB203DC2F402C67	ACEDB7BA5FBC3CE914A8BF386A6F72CA7BAA33C6	5DFC321417FC31359F23320EA68014EBFD793C5BBED55F77DAB4180BBD4A2026
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\997fae69-0f9e-4c99-a703-ab5891babbbb.tmp	JSON data	20D4B8FA017A12A108C87F540836E250	1AC617FAC131262B6D3CE1F52F5907E31D5F6F00	6028BD681DBF11A0A58DDE8A0CD884115C04CAA59D080BA51BDE1B086CE0079D
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\Cookies	SQLite 3.x database, last written using SQLite version 3042000, file counter 11, database pages 5, cookie 0x5, schema 4, UTF-8, version-valid-for 11	4E66395F2533B33E4D00E76FC024152A	6F91AC449EC6B5AE9DB380E9D7CD9DA1A4AE431E	29430D985B8BF19513C6E43D4E16B6E448226582C46E49D02846606F259D10C8
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State (copy)	JSON data	285252A2F6327D41EAB203DC2F402C67	ACEDB7BA5FBC3CE914A8BF386A6F72CA7BAA33C6	5DFC321417FC31359F23320EA68014EBFD793C5BBED55F77DAB4180BBD4A2026
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State~RF33e91.TMP (copy)	JSON data	285252A2F6327D41EAB203DC2F402C67	ACEDB7BA5FBC3CE914A8BF386A6F72CA7BAA33C6	5DFC321417FC31359F23320EA68014EBFD793C5BBED55F77DAB4180BBD4A2026
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\Reporting and NEL	SQLite 3.x database, last written using SQLite version 3042000, file counter 8, database pages 9, cookie 0x4, schema 4, UTF-8, version-valid-for 8	697B5C4DCE792642D421C30BB334B020	15846ADE153A68824318859E27CDBA6416EB8BD8	72431AD0BB8311EFE64E9DA556876BEDCCA9C28EEE3DB237B1C084B53431E803
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\SCT Auditing Pending Reports (copy)	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\SCT Auditing Pending Reports~RF22e49.TMP (copy)	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\SCT Auditing Pending Reports~RF2452d.TMP (copy)	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\Sdch Dictionaries (copy)	JSON data	20D4B8FA017A12A108C87F540836E250	1AC617FAC131262B6D3CE1F52F5907E31D5F6F00	6028BD681DBF11A0A58DDE8A0CD884115C04CAA59D080BA51BDE1B086CE0079D
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\Token Bindings	SQLite 3.x database, last written using SQLite version 3042000, file counter 2, database pages 5, cookie 0x2, schema 4, UTF-8, version-valid-for 2	72E9D82D6C1742197EEA43EC203C6825	275AE552E437747FD707962111675AA2C8DEEB0F	0DB0BA239E0421208146C4FBB809F2DBD960019FE4F4EC4CBC894C29627DD759
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\TransportSecurity (copy)	JSON data	DC832A6204F540B2E332F85A8A0EED1D	A57FDD1C93654D9316895EA724EE57207FA0EF15	F42519B1663B07678057790BF68FE1A7705F2E0EA5EA580767DC41DCDE22435C
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\TransportSecurity~RF3475b.TMP (copy)	JSON data	DC832A6204F540B2E332F85A8A0EED1D	A57FDD1C93654D9316895EA724EE57207FA0EF15	F42519B1663B07678057790BF68FE1A7705F2E0EA5EA580767DC41DCDE22435C
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\a52573f4-20c5-4cdd-960f-37ed62cf42de.tmp	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\ba711940-cedb-4120-b38f-426452ae8b46.tmp	JSON data	DC832A6204F540B2E332F85A8A0EED1D	A57FDD1C93654D9316895EA724EE57207FA0EF15	F42519B1663B07678057790BF68FE1A7705F2E0EA5EA580767DC41DCDE22435C
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\cf7f6554-1068-404a-9c89-011a37b2b6b3.tmp	JSON data	0C71BF96829308DB6E4C6306CBE4880C	D79F720BFB088F9DE1F6842B571287282E8BA250	48E625DC389211B660C3499B121918CFCC2F2E1626654A5C24F27EE8586F69F6
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Nurturing\campaign_history	SQLite 3.x database, last written using SQLite version 3042000, file counter 3, database pages 5, cookie 0x2, schema 4, UTF-8, version-valid-for 3	3B7DAF79375F7F997E3ED0F60832B429	45BF8EBF0EAF0D181EA7B5853E9FCC0A8999DE3C	CED7067546B68C385A7CD1C36507B0D4F2704F6BAEA841FA501926AC368019B2
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences (copy)	JSON data	CA4F89D9B45DE3ED53E39FA73BE131C0	C4D51724EF7552E80A8C0441F57DA829CF2BFA81	39ADDDA9D9F36549CD82C161F33EFD74333D63435F7F2A33630471FF8F962FED
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences~RF27a27.TMP (copy)	JSON data	CA4F89D9B45DE3ED53E39FA73BE131C0	C4D51724EF7552E80A8C0441F57DA829CF2BFA81	39ADDDA9D9F36549CD82C161F33EFD74333D63435F7F2A33630471FF8F962FED
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences~RF2a389.TMP (copy)	JSON data	CA4F89D9B45DE3ED53E39FA73BE131C0	C4D51724EF7552E80A8C0441F57DA829CF2BFA81	39ADDDA9D9F36549CD82C161F33EFD74333D63435F7F2A33630471FF8F962FED
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences~RF2dbef.TMP (copy)	JSON data	CA4F89D9B45DE3ED53E39FA73BE131C0	C4D51724EF7552E80A8C0441F57DA829CF2BFA81	39ADDDA9D9F36549CD82C161F33EFD74333D63435F7F2A33630471FF8F962FED
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences~RF308cb.TMP (copy)	JSON data	CA4F89D9B45DE3ED53E39FA73BE131C0	C4D51724EF7552E80A8C0441F57DA829CF2BFA81	39ADDDA9D9F36549CD82C161F33EFD74333D63435F7F2A33630471FF8F962FED
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences~RF3328a.TMP (copy)	JSON data	CA4F89D9B45DE3ED53E39FA73BE131C0	C4D51724EF7552E80A8C0441F57DA829CF2BFA81	39ADDDA9D9F36549CD82C161F33EFD74333D63435F7F2A33630471FF8F962FED
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences~RF35ad3.TMP (copy)	JSON data	CA4F89D9B45DE3ED53E39FA73BE131C0	C4D51724EF7552E80A8C0441F57DA829CF2BFA81	39ADDDA9D9F36549CD82C161F33EFD74333D63435F7F2A33630471FF8F962FED
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences (copy)	JSON data	6EBAD2314ED374FE73853DBCBBA55400	C0AA0B2CED87F2BD96397E94F76FC24E60EADA57	E294DB7783DA2F20E629EB443EA97923457BEC47DB811EA38433F8E3C711CF37
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences~RF28f94.TMP (copy)	JSON data	6EBAD2314ED374FE73853DBCBBA55400	C0AA0B2CED87F2BD96397E94F76FC24E60EADA57	E294DB7783DA2F20E629EB443EA97923457BEC47DB811EA38433F8E3C711CF37
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\000003.log	data	7C1B96DAB9280D6BA57513C7B67D992F	B2EE388821413E5CE5D9ECD38998F71B23FFCC69	103E2BB870EF8E0155FCAEE58BB8B3421B45B580F087A72E59F67C1205C4422B
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\CURRENT (copy)	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\LOG	ASCII text	FEC0417478BD84EE7210D5D4D972C693	B011E81EF818BAA3BD13985B44AD539C51DDEB53	44CF088EF7A8C3443AAC4FECC0A6EF9A130ED17725C6C2BC1FB0204E52B31FDA
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\MANIFEST-000001	OpenPGP Secret Key	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0	data	1A8D521E85ABF56A3B0E464FBDF0F14E	6D6BE58449D804113C06B93093AF4827A4BE7D8D	E366A73DFF3B52B1308A235566DD76D7FDA8D246229045A3A6F76841A68459BB
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_1	data	BB5ECFE0891B0F988A3A16CFF33347EA	9EA73CBC1200C4DFFAA818073650B7D74265F5CE	B36E94EC8E75DE40B24467D5C7CC05110CB3ABBEEB6C96DA02560404D38FBBB8
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index	data	54CB446F628B2EA4A5BCE5769910512E	C27CA848427FE87F5CF4D0E0E3CD57151B0D820D	FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index	data	016A7299A5984321C3E45437997010EE	71F66D074767B8FB01D97CDEC8812BC8DC34F7D2	53658D872452805A4F9BF21CED8532E2914EDA050CE5E357AE525EA381E9DEBC
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index (copy)	data	016A7299A5984321C3E45437997010EE	71F66D074767B8FB01D97CDEC8812BC8DC34F7D2	53658D872452805A4F9BF21CED8532E2914EDA050CE5E357AE525EA381E9DEBC
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RF2ad5d.TMP (copy)	data	016A7299A5984321C3E45437997010EE	71F66D074767B8FB01D97CDEC8812BC8DC34F7D2	53658D872452805A4F9BF21CED8532E2914EDA050CE5E357AE525EA381E9DEBC
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\000003.log	data	D56C606B74F28C3BF1A431E7DE4FBD68	28BA00EA07DDCF1D1F4BF31E9F98706388FEBD28	C998D131A0F4DC00FCE61E3B55B020E911244B649585A80E774375D765D41DB7
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\LOG	ASCII text	DCCFDAACC752F2D5FF009178CFBC4E0D	A579343FD3E2CEFA71403CDA23BB4DDEB8BF314C	AF069108C3B31CD68A44C9E4E54C8723725AC9B6BAF554C4C7C0C878B54E8241
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\LOG.old (copy)	ASCII text	DCCFDAACC752F2D5FF009178CFBC4E0D	A579343FD3E2CEFA71403CDA23BB4DDEB8BF314C	AF069108C3B31CD68A44C9E4E54C8723725AC9B6BAF554C4C7C0C878B54E8241
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Session_13387486198780599	data	F8A08BA1C9F1CAD63ABA32A4ED265568	F9FE92C82AB4C60F6192100B2A7926502A2AA313	9B5C4FE555DFF7B42C20BCB3F2C4EF56B8BD04A16A1C55F66D0756F4799DFD43
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Shortcuts	SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 5, cookie 0x2, schema 4, UTF-8, version-valid-for 1	E3544E14B50628BD8C9AE877A8FE8171	7A92091E87DD38F43B76F1681D8D1CFD8773AB24	CEA6159EE8E1B0B04A9203605929F7F7CCB7CCC8C5AA4BAD0A8E46ADAC02E058
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\000003.log	data	7B2FE7FA491BCBCFD65BD92BA6C06503	F8EEAC00FF06BCDD9DDBE8B5BEC2F43CEA3436D0	3C7ABEFA32B9A64D25BB5E1226425DD8378A1CF374137D0641EAED8E86186ED7
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG	ASCII text	8BA855AEE20215F8F2A30AFCF1F01137	E6E722102B54B789599E301F4672F90D345AD5A5	19B92B2BB8462ADF3EA9693D36D537B7387D135CF5A751BBCDDAE00EE0238AFD
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG.old (copy)	ASCII text	8BA855AEE20215F8F2A30AFCF1F01137	E6E722102B54B789599E301F4672F90D345AD5A5	19B92B2BB8462ADF3EA9693D36D537B7387D135CF5A751BBCDDAE00EE0238AFD
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\DawnCache\data_1	data	F50F89A0A91564D0B8A211F8921AA7DE	112403A17DD69D5B9018B8CEDE023CB3B54EAB7D	B1E963D702392FB7224786E7D56D43973E9B9EFD1B89C17814D7C558FFC0CDEC
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\GPUCache\data_1	data	F50F89A0A91564D0B8A211F8921AA7DE	112403A17DD69D5B9018B8CEDE023CB3B54EAB7D	B1E963D702392FB7224786E7D56D43973E9B9EFD1B89C17814D7C558FFC0CDEC
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Local Storage\leveldb\LOG	ASCII text	931FE7CDCFC3E321E3E348547C7A4630	8CE17CCBED1D49E8069084C8EBD2849C83C96FCF	0A0A1986289AE109D0BDD93ED7CA0293F1314F5FCBB0491AF054FCC6CF2634A3
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Local Storage\leveldb\LOG.old (copy)	ASCII text	931FE7CDCFC3E321E3E348547C7A4630	8CE17CCBED1D49E8069084C8EBD2849C83C96FCF	0A0A1986289AE109D0BDD93ED7CA0293F1314F5FCBB0491AF054FCC6CF2634A3
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\SCT Auditing Pending Reports (copy)	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\SCT Auditing Pending Reports~RF2452d.TMP (copy)	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\Sdch Dictionaries (copy)	JSON data	20D4B8FA017A12A108C87F540836E250	1AC617FAC131262B6D3CE1F52F5907E31D5F6F00	6028BD681DBF11A0A58DDE8A0CD884115C04CAA59D080BA51BDE1B086CE0079D
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\Trust Tokens	SQLite 3.x database, last written using SQLite version 3042000, file counter 4, database pages 9, cookie 0x7, schema 4, UTF-8, version-valid-for 4	DEA619BA33775B1BAEEC7B32110CB3BD	949B8246021D004B2E772742D34B2FC8863E1AAA	3669D76771207A121594B439280A67E3A6B1CBAE8CE67A42C8312D33BA18854B
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\c52c8206-70a2-4b33-a883-0b5a77435c9d.tmp	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\ea5eb92d-bd23-485e-b84d-e64fdfc30fb5.tmp	JSON data	D751713988987E9331980363E24189CE	97D170E1550EEE4AFC0AF065B78CDA302A97674C	4F53CDA18C2BAA0C0354BB5F9A3ECBE5ED12AB4D8E11BA873C2F11161202B945
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\fc39c1e3-3ea7-48e9-8f79-45a737465526.tmp	JSON data	20D4B8FA017A12A108C87F540836E250	1AC617FAC131262B6D3CE1F52F5907E31D5F6F00	6028BD681DBF11A0A58DDE8A0CD884115C04CAA59D080BA51BDE1B086CE0079D
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Session Storage\000003.log	data	69449520FD9C139C534E2970342C6BD8	230FE369A09DEF748F8CC23AD70FD19ED8D1B885	3F2E9648DFDB2DDB8E9D607E8802FEF05AFA447E17733DD3FD6D933E7CA49277
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Session Storage\LOG	ASCII text	052BB4C979024C15EF86C84221ADAB24	5D2EA14E266F3F789D347C7C4AE92A0ACAA5BCE7	672B6200A859FD15A173B8F89F96E5EB3E97B395150A1818D020399F1BBD7858
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Session Storage\LOG.old (copy)	ASCII text	052BB4C979024C15EF86C84221ADAB24	5D2EA14E266F3F789D347C7C4AE92A0ACAA5BCE7	672B6200A859FD15A173B8F89F96E5EB3E97B395150A1818D020399F1BBD7858
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG	ASCII text	10DD82E4AF5E67B2AD312DF382C1A740	7CAFB75244D47105667D7F9E272B014C9C4307DB	AA95CED881FE972506F5CC27E667E55A931D56AFCA1EFC0CA5754CE0D462B45C
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG.old (copy)	ASCII text	10DD82E4AF5E67B2AD312DF382C1A740	7CAFB75244D47105667D7F9E272B014C9C4307DB	AA95CED881FE972506F5CC27E667E55A931D56AFCA1EFC0CA5754CE0D462B45C
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links	data	C2D5200BFC9D53B4D1868AB30EB288BA	E6DDFFEF58034141C99F4386B05340866B39E0A8	856EDE7F5E99FB64C71018C85D73301630D9B32492FCFB8A396E9D7ECDDA40BA
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Web Data	SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 10, database pages 91, cookie 0x36, schema 4, UTF-8, version-valid-for 10	BEEEDC23FAB8F78E157D57CB1C492698	D235F4C1CA03F132B35E5F14BA7D27FADC86EC85	A690EBEE2E3101E3E425571DFA79AB9FE5CA5161E823B5479371266087B1CE37
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\WebAssistDatabase	SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 11, database pages 7, cookie 0xb, schema 4, UTF-8, version-valid-for 11	ADD371EDCC5C6FA032959D3CBFD3E88A	F8037DCEC71B1C2FED4EF8ABBB61A0616F653A4E	9E2D305580B3319B36D799CAE3D3F484DBD443861AE5716956B0FA19C1E49DF8
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\WebStorage\QuotaManager	SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 10, cookie 0x7, schema 4, UTF-8, version-valid-for 1	7EA461901E81A7926A9DDB357DF20121	88FD9662FD6FF9ECF541A16CE3A6011F8E28E591	2F8A7A28B04D41C396B841F5492D36045B49DB6B9C067FA954E4CD9DFDDABAFC
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\afaa13ed-2d68-4067-b531-d84422d0c37d.tmp	JSON data	8594A4999E3A1B714B8AEFD6FC2BB47D	842F45DE8EF7D5FB42AF662CC53A112351B3C4E5	1B3F22D9615D8B03029D1537060A59746D9810F57259AEC3C0A634D0A7F880E0
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\arbitration_service_config.json	ASCII text, with very long lines (3951), with CRLF line terminators	07301A857C41B5854E6F84CA00B81EA0	7441FC1018508FF4F3DBAA139A21634C08ED979C	2343C541E095E1D5F202E8D2A0807113E69E1969AF8E15E3644C51DB0BF33FBF
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\b0cb3da4-5be8-4d82-8168-a80aafd1c050.tmp	JSON data	00ADAE62F924488E573CAD8C268C47EF	29EDE69DACE67701E6E322B7B29FAF0510EBA1B0	4E539FC5AC72BD937335CEB43E5FBF999923C76DC99C23BE83E11FCEC260C380
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\dad78574-ffe5-4834-979d-e8e1de2ba2df.tmp	JSON data	C7C3C5D7C06CF96521B83770B933A15D	31EBEA8553630B6C0326EDDB21EC977454900D04	82464CEFE5835BFFAC6B0B2DDEE5D89C9173A209580F438CAA4BF82F969F0E02
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\databases\Databases.db	SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 7, cookie 0x4, schema 4, UTF-8, version-valid-for 1	98643AF1CA5C0FE03CE8C687189CE56B	ECADBA79A364D72354C658FD6EA3D5CF938F686B	4DC3BF7A36AB5DA80C0995FAF61ED0F96C4DE572F2D6FF9F120F9BC44B69E444
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db-shm	data	9119C82850CFE69FCE5903847CB01C66	3C6E10D6BDA6F671EF20131EB471AF738EFAE6A5	FCB5C86DC12E3CA2C84845AF9A82E83885DBCCBD5D7AC458ACA6FBF409244C75
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db-wal	SQLite Write-Ahead Log, version 3007000	7408F917D31EEFE9509110816641F3F8	381842155995FAE70214306FA225B33AAF34001C	CE38DDF3669DB0E3666FA64B400F3D46D0C37450039032E13CB172EA2E41EADF
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log	data	F00AEA623B29C2921BBADEB81D816BFF	5BAD0C2E22A8B2147B487A49506924561608CBDC	1D136C20F74EE13C9138880E3E513D264C1E04C7FC0A4CCB8ACAB6D8AC3DF146
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG	ASCII text	4A1CDAAB054C4D1F700B91CF29A5FF13	744ABF25C7A38456E439C86B9B32EC9230E579E6	43D33A4639D02F2AEA67B3758CE158C9642D213FA79011E37BAFFC2D4A755048
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG.old (copy)	ASCII text	4A1CDAAB054C4D1F700B91CF29A5FF13	744ABF25C7A38456E439C86B9B32EC9230E579E6	43D33A4639D02F2AEA67B3758CE158C9642D213FA79011E37BAFFC2D4A755048
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log	data	FFD773A32B54CE20C08561046A7359C3	0457B60240313DE71285F57D99A505601FECA7EF	F0FF72019973430411A49A1B5BB5F2C3FBEAA8EAB418944ACB3295CB00DBBA50
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG	ASCII text	3F767214AE6EADF1CEE3CD2F25BDDC64	BF7103D2C4842311BF97E1EF55F3AC7B6CE3F691	874F9A77F1BD70549DF8A9490AD0DDD7B2FB197F52CDBEB7A76839D1B66A58DF
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG.old (copy)	ASCII text	3F767214AE6EADF1CEE3CD2F25BDDC64	BF7103D2C4842311BF97E1EF55F3AC7B6CE3F691	874F9A77F1BD70549DF8A9490AD0DDD7B2FB197F52CDBEB7A76839D1B66A58DF
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Last Browser	data	A397E5983D4A1619E36143B4D804B870	AA135A8CC2469CFD1EF2D7955F027D95BE5DFBD4	9C70F766D3B84FC2BB298EFA37CC9191F28BEC336329CC11468CFADBC3B137F4
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Last Version	ASCII text, with no line terminators	BF16C04B916ACE92DB941EBB1AF3CB18	FA8DAEAE881F91F61EE0EE21BE5156255429AA8A	7FC23C9028A316EC0AC25B09B5B0D61A1D21E58DFCF84C2A5F5B529129729098
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State (copy)	JSON data	C263D2B70076373797EFB919F501D10E	1DDD02F8DD30CFBDFD5C30EFEC55AD5B1929227E	F066C60C3C5A3EC05563285FE9BDE04B3C9F620E48551618A8EC5F2B750063E1
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF229d5.TMP (copy)	JSON data	C263D2B70076373797EFB919F501D10E	1DDD02F8DD30CFBDFD5C30EFEC55AD5B1929227E	F066C60C3C5A3EC05563285FE9BDE04B3C9F620E48551618A8EC5F2B750063E1
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF25087.TMP (copy)	JSON data	C263D2B70076373797EFB919F501D10E	1DDD02F8DD30CFBDFD5C30EFEC55AD5B1929227E	F066C60C3C5A3EC05563285FE9BDE04B3C9F620E48551618A8EC5F2B750063E1
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF285ff.TMP (copy)	JSON data	C263D2B70076373797EFB919F501D10E	1DDD02F8DD30CFBDFD5C30EFEC55AD5B1929227E	F066C60C3C5A3EC05563285FE9BDE04B3C9F620E48551618A8EC5F2B750063E1
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF33a89.TMP (copy)	JSON data	C263D2B70076373797EFB919F501D10E	1DDD02F8DD30CFBDFD5C30EFEC55AD5B1929227E	F066C60C3C5A3EC05563285FE9BDE04B3C9F620E48551618A8EC5F2B750063E1
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF372d0.TMP (copy)	JSON data	C263D2B70076373797EFB919F501D10E	1DDD02F8DD30CFBDFD5C30EFEC55AD5B1929227E	F066C60C3C5A3EC05563285FE9BDE04B3C9F620E48551618A8EC5F2B750063E1
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Nurturing\campaign_history	SQLite 3.x database, last written using SQLite version 3042000, file counter 8, database pages 5, cookie 0x2, schema 4, UTF-8, version-valid-for 8	D8827DFCAFAEFFCC68F2C8C5581BECCA	AB8AFE220039BB64DAFD39CD1F013162D33A7467	DB95E81B88A859341D32D822BBD1B535710095127C51A740EBD60157944B3DBE
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Safe Browsing\ChromeExtMalware.store (copy)	data	90285F3035574B265D2260E608BF1243	E3552DCEA01CD2BB3D1F95EDD0E3128058AED5E6	947A9A6CBD3365240582620B4AD595FE8D6461D69C90601501C6DE54186CA37A
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Safe Browsing\ChromeExtMalware.store_new	data	90285F3035574B265D2260E608BF1243	E3552DCEA01CD2BB3D1F95EDD0E3128058AED5E6	947A9A6CBD3365240582620B4AD595FE8D6461D69C90601501C6DE54186CA37A
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\RemoteData\customSettings	ASCII text, with no line terminators	48324111147DECC23AC222A361873FC5	0DF8B2267ABBDBD11C422D23338262E3131A4223	D8D672F953E823063955BD9981532FC3453800C2E74C0CC3653D091088ABD3B3
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\RemoteData\customSettings_F95BA787499AB4FA9EFFF472CE383A14	JSON data	BB57A76019EADEDC27F04EB2FB1F1841	8B41A1B995D45B7A74A365B6B1F1F21F72F86760	2BAE8302F9BD2D87AE26ACF692663DF1639B8E2068157451DA4773BD8BD30A2B
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\RemoteData\edgeSettings	ASCII text, with no line terminators	177F4D75F4FEE84EF08C507C3476C0D2	08E17AEB4D4066AC034207420F1F73DD8BE3FAA0	21EE7A30C2409E0041CDA6C04EEE72688EB92FE995DC94487FF93AD32BD8F849
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\RemoteData\edgeSettings_2.0-48b11410dc937a1723bf4c5ad33ecdb286d8ec69544241bc373f753e64b396c1	JSON data	EB75CEFFE37E6DF9C171EE8380439EDA	F00119BA869133D64E4F7F0181161BD47968FA23	48B11410DC937A1723BF4C5AD33ECDB286D8EC69544241BC373F753E64B396C1
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\RemoteData\synchronousLookupUris	ASCII text, with no line terminators	6A3A60A3F78299444AACAA89710A64B6	2A052BF5CF54F980475085EEF459D94C3CE5EF55	61597278D681774EFD8EB92F5836EB6362975A74CEF807CE548E50A7EC38E11F
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\RemoteData\synchronousLookupUris_638343870221005468	data	3A05EAEA94307F8C57BAC69C3DF64E59	9B852B902B72B9D5F7B9158E306E1A2C5F6112C8	A8EF112DF7DAD4B09AAA48C3E53272A2EEC139E86590FD80E2B7CBD23D14C09E
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\RemoteData\topTraffic	ASCII text, with no line terminators	52E2839549E67CE774547C9F07740500	B172E16D7756483DF0CA0A8D4F7640DD5D557201	F81B7B9CE24F5A2B94182E817037B5F1089DC764BC7E55A9B0A6227A7E121F32
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\RemoteData\topTraffic_170540185939602997400506234197983529371	data	BE5D1A12C1644421F877787F8E76642D	06C46A95B4BD5E145E015FA7E358A2D1AC52C809	C1CE928FBEF4EF5A4207ABAFD9AB6382CC29D11DDECC215314B0522749EF6A5A
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\RemoteData\topTraffic_638004170464094982	raw G3 (Group 3) FAX, byte-padded	E9C502DB957CDB977E7F5745B34C32E6	DBD72B0D3F46FA35A9FE2527C25271AEC08E3933	5A6B49358772DB0B5C682575F02E8630083568542B984D6D00727740506569D4
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\local\uriCache	ASCII text, with no line terminators	B6F7A6B03164D4BF8E3531A5CF721D30	A2134120D4712C7C629CDCEEF9DE6D6E48CA13FA	3D6F3F8F1456D7CE78DD9DFA8187318B38E731A658E513F561EE178766E74D39
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\SmartScreen\local\uriCache_	JSON data	24CFA1DBE72375BBD4BC78DA01684380	7AC699DCE5A24F2F9C61C5E869366A9BEE378750	D8E2E3CB3402D8521B43E57DDCB4D93E6D4CFA4C8207F722099C4CD19FBE3C8C
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Variations	JSON data	67408267EF01ED6B9372F04C029B602A	8B7C489754731F399077B899ABFE55475AC2ABE7	B5AA30B0D3E08F80F60EFFA00FE335D2295FA494B36F33A2E8D8C66E0A34234A
C:\Users\user\AppData\Local\Microsoft\Edge\User Data\e8a27378-c78b-4a7a-bb07-4d922c46bf73.tmp	JSON data	131D5035DA9289A45147B81487FD7946	020C11528194740AC0230195CE069601B5664992	4547CAA2897713809183B4AFD4AEF816CA27FEB73D615DBC607451426F5C43E3
C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\5a2a7058cf8d1e56c20e6b19a7c48eb2386d141b.tbres	data	ED38F37DE43C6E390251AAA01F017773	B425CD9838E2969947497505D904771AD78A4B21	D9D83BDE126EEAAEA3ED8472FE594D31382EC10D768B608F0211CC98E95B941A
C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\cf7513a936f7effbb38627e56f8d1fce10eb12cc.tbres	data	6D76D2F0CE9B2270476DE5ADC54929BC	50091247D43B115E3F0C0CDE09E4A6F46CA2699D	7453DBDE25921C557D4F43E53485BD1E9B0E3720705B8BD76D66483D3A1184FC
C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\e8ddd4cbd9c0504aace6ef7a13fa20d04fd52408.tbres	data	CFDA52F91037157A77C28132DE0B01BF	C9CA305D10BF06B8526676FBCD36E951C2853EFE	8CF3A524F58B7A50641CC6B165A9A3EEED1FB285411477A377B42EA630A78069
C:\Users\user\AppData\Local\Temp\4369f348-4ebc-4249-89f3-60976b07ea2c.tmp	Google Chrome extension, version 3	78E47DDA17341BED7BE45DCCFD89AC87	1AFDE30E46997452D11E4A2ADBBF35CCE7A1404F	67D161098BE68CD24FEBC0C7B48F515F199DDA72F20AE3BBB97FCF2542BB0550
C:\Users\user\AppData\Local\Temp\4deeaf21-37d1-42f9-ba1b-9138a3a804d7.tmp	PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced	E9EFEB99FB420ADF241646AF7814F4A1	F97FAB7D0575CBB98348899BACE9AD0F9EF2B894	04BC5910C6CE0617030A727B0CF1712A462F10F0133A0B843D93DFA3CEEF0E5B
C:\Users\user\AppData\Local\Temp\5f7e3510-33c7-4b09-b8ab-88b3040a2110.tmp	JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1024x211, components 3	BB28CB3515E9FC2E0872034A0EDB8A1F	17536BB9CD45F7EED785AAFF0B08E684AB989AE4	8F1E561CB4795E82465827B52EFB6D4D366F1801FC968EFDDA62A6D7A9B5444A
C:\Users\user\AppData\Local\Temp\7cc1457e-5809-4f24-adfd-1e8e927f988c.tmp	PNG image data, 342 x 126, 8-bit colormap, non-interlaced	A96BE32BF33CCDC6C0B4137ECB5FD563	2CDDF8A54326A15323660D44FAD9C0DC485C8D12	A6B4FC12406A93652C8856AAA158CE23A3D119B9E6FCFA01ACECB568B0BE001C
C:\Users\user\AppData\Local\Temp\8c28b41e-8ac0-45e7-bed4-69133e65fd41.tmp	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1366x720, components 3	37CF67E6E5D3AE47CF40406A1E8BE94F	2A6F868ADC761DB9C03869E238BEA0D67D1FE6CE	B4B4DBE335296D0CCF9C659D671A54C2FA06F8B4E41228CF03E1D21F7C8F9D03
C:\Users\user\AppData\Local\Temp\8d03a3a1-148f-4cf7-917e-c57978fb2e96.tmp	RIFF (little-endian) data, Web/P image	78C99C03F277B670C6585DA98E49FB79	0F067E4DEB8BE2B6DD869DA97D4BAC1AC89ABA7A	15A18A54AB8E25E1EC1B4021D6CF453892A71D0F02FB80C514968827B06E79AD
C:\Users\user\AppData\Local\Temp\9d6a4eec-9b87-4853-8411-1dbce335be8b.tmp	Google Chrome extension, version 3	DD9BF8448D3DDCFD067967F01E8BF6D7	D7829475B2BD6A3BAA8FABFAF39AF57C6439B35E	FA2232917A5656EA4F811936561EA6B7C92B3C0004C5E08ECB97636D3AFC6F72
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log	ASCII text	58A13B303671EF8D7246FD7D0516C45C	0E6983DFD283F978BA13C8B7A7AF80C0DB7C222A	3825CD4A8B6E29E48F0FCF2B6552CD5B3B741C1B4E263F042B5C34C1385346E1
C:\Users\user\AppData\Local\Temp\cv_debug.log	JSON data	317C1A66D763395EAE6253B45FD5D3F1	51701F0A93BE6091911CF2E2D4F16234E89D2657	297491D4375AE6E0AF86AD824581A503B4D6EBFBA987DC8873823763C0120185
C:\Users\user\AppData\Local\Temp\d0611efd-e2ee-4067-a94f-f659ff531de5.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\de04cad0-c4c9-422f-8208-dd8c210c2945.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\e704adde-a275-48d5-9f7d-527fc41e3759.tmp	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	92A30731CBF974D3F697AEB83EC91EB2	97689FC2962EA2683EACC0D47982EF6F6E5481AF	FD333E7C82FD07EB99084F918AD517BF0456369F48CC357A82A05783DB02BABA
C:\Users\user\AppData\Local\Temp\scoped_dir7216_414159132\4369f348-4ebc-4249-89f3-60976b07ea2c.tmp	Google Chrome extension, version 3	78E47DDA17341BED7BE45DCCFD89AC87	1AFDE30E46997452D11E4A2ADBBF35CCE7A1404F	67D161098BE68CD24FEBC0C7B48F515F199DDA72F20AE3BBB97FCF2542BB0550
C:\Users\user\AppData\Local\Temp\scoped_dir7216_414159132\CRX_INSTALL\_metadata\verified_contents.json	JSON data	738E757B92939B24CDBBD0EFC2601315	77058CBAFA625AAFBEA867052136C11AD3332143	D23B2BA94BA22BBB681E6362AE5870ACD8A3280FA9E7241B86A9E12982968947
C:\Users\user\AppData\Local\Temp\scoped_dir7216_414159132\CRX_INSTALL\content.js	Unicode text, UTF-8 text, with very long lines (8031), with no line terminators	3D20584F7F6C8EAC79E17CCA4207FB79	3C16DCC27AE52431C8CDD92FBAAB0341524D3092	0D40A5153CB66B5BDE64906CA3AE750494098F68AD0B4D091256939EEA243643
C:\Users\user\AppData\Local\Temp\scoped_dir7216_414159132\CRX_INSTALL\content_new.js	Unicode text, UTF-8 text, with very long lines (8604), with no line terminators	3DE1E7D989C232FC1B58F4E32DE15D64	42B152EA7E7F31A964914F344543B8BF14B5F558	D4AA4602A1590A4B8A1BCE8B8D670264C9FB532ADC97A72BC10C43343650385A
C:\Users\user\AppData\Local\Temp\scoped_dir7216_414159132\CRX_INSTALL\manifest.json	JSON data	E805E9E69FD6ECDCA65136957B1FB3BE	2356F60884130C86A45D4B232A26062C7830E622	5694C91F7D165C6F25DAF0825C18B373B0A81EA122C89DA60438CD487455FD6A
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\9d6a4eec-9b87-4853-8411-1dbce335be8b.tmp	Google Chrome extension, version 3	DD9BF8448D3DDCFD067967F01E8BF6D7	D7829475B2BD6A3BAA8FABFAF39AF57C6439B35E	FA2232917A5656EA4F811936561EA6B7C92B3C0004C5E08ECB97636D3AFC6F72
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\128.png	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	913064ADAAA4C4FA2A9D011B66B33183	99EA751AC2597A080706C690612AEEEE43161FC1	AFB4CE8882EF7AE80976EBA7D87F6E07FCDDC8E9E84747E8D747D1E996DEA8EB
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\af\messages.json	JSON data	12403EBCCE3AE8287A9E823C0256D205	C82D43C501FAE24BFE05DB8B8F95ED1C9AC54037	B40BDE5B612CFFF936370B32FB0C58CC205FC89937729504C6C0B527B60E2CBA
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\am\messages.json	JSON data	9721EBCE89EC51EB2BAEB4159E2E4D8C	58979859B28513608626B563138097DC19236F1F	3D0361A85ADFCD35D0DE74135723A75B646965E775188F7DCDD35E3E42DB788E
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ar\messages.json	JSON data	3EC93EA8F8422FDA079F8E5B3F386A73	24640131CCFB21D9BC3373C0661DA02D50350C15	ABD0919121956AB535E6A235DE67764F46CFC944071FCF2302148F5FB0E8C65A
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\az\messages.json	JSON data	9A798FD298008074E59ECC253E2F2933	1E93DA985E880F3D3350FC94F5CCC498EFC8C813	628145F4281FA825D75F1E332998904466ABD050E8B0DC8BB9B6A20488D78A66
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\be\messages.json	JSON data	68884DFDA320B85F9FC5244C2DD00568	FD9C01E03320560CBBB91DC3D1917C96D792A549	DDF16859A15F3EB3334D6241975CA3988AC3EAFC3D96452AC3A4AFD3644C8550
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\bg\messages.json	JSON data	2E6423F38E148AC5A5A041B1D5989CC0	88966FFE39510C06CD9F710DFAC8545672FFDCEB	AC4A8B5B7C0B0DD1C07910F30DCFBDF1BCB701CFCFD182B6153FD3911D566C0E
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\bn\messages.json	JSON data	651375C6AF22E2BCD228347A45E3C2C9	109AC3A912326171D77869854D7300385F6E628C	1DBF38E425C5C7FC39E8077A837DF0443692463BA1FBE94E288AB5A93242C46E
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ca\messages.json	JSON data	D177261FFE5F8AB4B3796D26835F8331	4BE708E2FFE0F018AC183003B74353AD646C1657	D6E65238187A430FF29D4C10CF1C46B3F0FA4B91A5900A17C5DFD16E67FFC9BD
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\cs\messages.json	JSON data	CCB00C63E4814F7C46B06E4A142F2DE9	860936B2A500CE09498B07A457E0CCA6B69C5C23	21AE66CE537095408D21670585AD12599B0F575FF2CB3EE34E3A48F8CC71CFAB
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\cy\messages.json	JSON data	A86407C6F20818972B80B9384ACFBBED	D1531CD0701371E95D2A6BB5EDCB79B949D65E7C	A482663292A913B02A9CDE4635C7C92270BF3C8726FD274475DC2C490019A7C9
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\da\messages.json	JSON data	B922F7FD0E8CCAC31B411FC26542C5BA	2D25E153983E311E44A3A348B7D97AF9AAD21A30	48847D57C75AF51A44CBF8F7EF1A4496C2007E58ED56D340724FDA1604FF9195
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\de\messages.json	JSON data	D116453277CC860D196887CEC6432FFE	0AE00288FDE696795CC62FD36EABC507AB6F4EA4	36AC525FA6E28F18572D71D75293970E0E1EAD68F358C20DA4FDC643EEA2C1C5
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\el\messages.json	JSON data	9ABA4337C670C6349BA38FDDC27C2106	1FC33BE9AB4AD99216629BC89FBB30E7AA42B812	37CA6AB271D6E7C9B00B846FDB969811C9CE7864A85B5714027050795EA24F00
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\en\messages.json	JSON data	07FFBE5F24CA348723FF8C6C488ABFB8	6DC2851E39B2EE38F88CF5C35A90171DBEA5B690	6895648577286002F1DC9C3366F558484EB7020D52BBF64A296406E61D09599C
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\en_CA\messages.json	JSON data	07FFBE5F24CA348723FF8C6C488ABFB8	6DC2851E39B2EE38F88CF5C35A90171DBEA5B690	6895648577286002F1DC9C3366F558484EB7020D52BBF64A296406E61D09599C
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\en_GB\messages.json	JSON data	3734D498FB377CF5E4E2508B8131C0FA	AA23E39BFE526B5E3379DE04E00EACBA89C55ADE	AB5CDA04013DCE0195E80AF714FBF3A67675283768FFD062CF3CF16EDB49F5D4
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\en_US\messages.json	JSON data	578215FBB8C12CB7E6CD73FBD16EC994	9471D71FA6D82CE1863B74E24237AD4FD9477187	102B586B197EA7D6EDFEB874B97F95B05D229EA6A92780EA8544C4FF1E6BC5B1
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\es\messages.json	JSON data	F61916A206AC0E971CDCB63B29E580E3	994B8C985DC1E161655D6E553146FB84D0030619	2008F4FAAB71AB8C76A5D8811AD40102C380B6B929CE0BCE9C378A7CADFC05EB
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\es_419\messages.json	JSON data	535331F8FB98894877811B14994FEA9D	42475E6AFB6A8AE41E2FC2B9949189EF9BBE09FB	90A560FF82605DB7EDA26C90331650FF9E42C0B596CEDB79B23598DEC1B4988F
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\et\messages.json	JSON data	64204786E7A7C1ED9C241F1C59B81007	586528E87CD670249A44FB9C54B1796E40CDB794	CC31B877238DA6C1D51D9A6155FDE565727A1956572F466C387B7E41C4923A29
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\eu\messages.json	JSON data	29A1DA4ACB4C9D04F080BB101E204E93	2D0E4587DDD4BAC1C90E79A88AF3BD2C140B53B1	A41670D52423BA69C7A65E7E153E7B9994E8DD0370C584BDA0714BD61C49C578
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\fa\messages.json	JSON data	097F3BA8DE41A0AAF436C783DCFE7EF3	986B8CABD794E08C7AD41F0F35C93E4824AC84DF	7C4C09D19AC4DA30CC0F7F521825F44C4DFBC19482A127FBFB2B74B3468F48F1
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\fi\messages.json	JSON data	B38CBD6C2C5BFAA6EE252D573A0B12A1	2E490D5A4942D2455C3E751F96BD9960F93C4B60	2D752A5DBE80E34EA9A18C958B4C754F3BC10D63279484E4DF5880B8FD1894D2
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\fil\messages.json	JSON data	FCEA43D62605860FFF41BE26BAD80169	F25C2CE893D65666CC46EA267E3D1AA080A25F5B	F51EEB7AAF5F2103C1043D520E5A4DE0FA75E4DC375E23A2C2C4AFD4D9293A72
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\fr\messages.json	JSON data	A58C0EEBD5DC6BB5D91DAF923BD3A2AA	F169870EEED333363950D0BCD5A46D712231E2AE	0518287950A8B010FFC8D52554EB82E5D93B6C3571823B7CECA898906C11ABCC
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\fr_CA\messages.json	JSON data	6CAC04BDCC09034981B4AB567B00C296	84F4D0E89E30ED7B7ACD7644E4867FFDB346D2A5	4CAA46656ECC46A420AA98D3307731E84F5AC1A89111D2E808A228C436D83834
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\gl\messages.json	JSON data	6BAAFEE2F718BEFBC7CD58A04CCC6C92	CE0BDDDA2FA1F0AD222B604C13FF116CBB6D02CF	0CF098DFE5BBB46FC0132B3CF0C54B06B4D2C8390D847EE2A65D20F9B7480F4C
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\gu\messages.json	JSON data	BC7E1D09028B085B74CB4E04D8A90814	E28B2919F000B41B41209E56B7BF3A4448456CFE	FE8218DF25DB54E633927C4A1640B1A41B8E6CB3360FA386B5382F833B0B237C
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\hi\messages.json	JSON data	98A7FC3E2E05AFFFC1CFE4A029F47476	A17E077D6E6BA1D8A90C1F3FAF25D37B0FF5A6AD	D2D1AFA224CDA388FF1DC8FAC24CDA228D7CE09DE5D375947D7207FA4A6C4F8D
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\hr\messages.json	JSON data	25CDFF9D60C5FC4740A48EF9804BF5C7	4FADECC52FB43AEC084DF9FF86D2D465FBEBCDC0	73E6E246CEEAB9875625CD4889FBF931F93B7B9DEAA11288AE1A0F8A6E311E76
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\hu\messages.json	JSON data	8930A51E3ACE3DD897C9E61A2AEA1D02	4108506500C68C054BA03310C49FA5B8EE246EA4	958C0F664FCA20855FA84293566B2DDB7F297185619143457D6479E6AC81D240
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\hy\messages.json	JSON data	55DE859AD778E0AA9D950EF505B29DA9	4479BE637A50C9EE8A2F7690AD362A6A8FFC59B2	0B16E3F8BD904A767284345AE86A0A9927C47AFE89E05EA2B13AD80009BDF9E4
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\id\messages.json	JSON data	34D6EE258AF9429465AE6A078C2FB1F5	612CAE151984449A4346A66C0A0DF4235D64D932	E3C86DDD2EFEBE88EED8484765A9868202546149753E03A61EB7C28FD62CFCA1
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\is\messages.json	JSON data	CAEB37F451B5B5E9F5EB2E7E7F46E2D7	F917F9EAE268A385A10DB3E19E3CC3ACED56D02E	943E61988C859BB088F548889F0449885525DD660626A89BA67B2C94CFBFBB1B
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\it\messages.json	JSON data	0D82B734EF045D5FE7AA680B6A12E711	BD04F181E4EE09F02CD53161DCABCEF902423092	F41862665B13C0B4C4F562EF1743684CCE29D4BCF7FE3EA494208DF253E33885
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\iw\messages.json	JSON data	26B1533C0852EE4661EC1A27BD87D6BF	18234E3ABAF702DF9330552780C2F33B83A1188A	BBB81C32F482BA3216C9B1189C70CEF39CA8C2181AF3538FFA07B4C6AD52F06A
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ja\messages.json	JSON data	15EC1963FC113D4AD6E7E59AE5DE7C0A	4017FC6D8B302335469091B91D063B07C9E12109	34AC08F3C4F2D42962A3395508818B48CA323D22F498738CC9F09E78CB197D73
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ka\messages.json	JSON data	83F81D30913DC4344573D7A58BD20D85	5AD0E91EA18045232A8F9DF1627007FE506A70E0	30898BBF51BDD58DB397FF780F061E33431A38EF5CFC288B5177ECF76B399F26
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\kk\messages.json	JSON data	2D94A58795F7B1E6E43C9656A147AD3C	E377DB505C6924B6BFC9D73DC7C02610062F674E	548DC6C96E31A16CE355DC55C64833B08EF3FBA8BF33149031B4A685959E3AF4
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\km\messages.json	JSON data	B3699C20A94776A5C2F90AEF6EB0DAD9	1F9B968B0679A20FA097624C9ABFA2B96C8C0BEA	A6118F0A0DE329E07C01F53CD6FB4FED43E54C5F53DB4CD1C7F5B2B4D9FB10E6
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\kn\messages.json	JSON data	38BE0974108FC1CC30F13D8230EE5C40	ACF44889DD07DB97D26D534AD5AFA1BC1A827BAD	30078EF35A76E02A400F03B3698708A0145D9B57241CC4009E010696895CF3A1
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ko\messages.json	JSON data	F3E59EEEB007144EA26306C20E04C292	83E7BDFA1F18F4C7534208493C3FF6B1F2F57D90	C52D9B955D229373725A6E713334BBB31EA72EFA9B5CF4FBD76A566417B12CAC
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\lo\messages.json	JSON data	E20D6C27840B406555E2F5091B118FC5	0DCECC1A58CEB4936E255A64A2830956BFA6EC14	89082FB05229826BC222F5D22C158235F025F0E6DF67FF135A18BD899E13BB8F
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\lt\messages.json	JSON data	970544AB4622701FFDF66DC556847652	14BEE2B77EE74C5E38EBD1DB09E8D8104CF75317	5DFCBD4DFEAEC3ABE973A78277D3BD02CD77AE635D5C8CD1F816446C61808F59
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\lv\messages.json	JSON data	A568A58817375590007D1B8ABCAEBF82	B0F51FE6927BB4975FC6EDA7D8A631BF0C1AB597	0621DE9161748F45D53052ED8A430962139D7F19074C7FFE7223ECB06B0B87DB
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ml\messages.json	JSON data	4717EFE4651F94EFF6ACB6653E868D1A	B8A7703152767FBE1819808876D09D9CC1C44450	22CA9415E294D9C3EC3384B9D08CDAF5164AF73B4E4C251559E09E529C843EA6
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\mn\messages.json	JSON data	83E7A14B7FC60D4C66BF313C8A2BEF0B	1CCF1D79CDED5D65439266DB58480089CC110B18	613D8751F6CC9D3FA319F4B7EA8B2BD3BED37FD077482CA825929DD7C12A69A8
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\mr\messages.json	JSON data	3B98C4ED8874A160C3789FEAD5553CFA	5550D0EC548335293D962AAA96B6443DD8ABB9F6	ADEB082A9C754DFD5A9D47340A3DDCC19BF9C7EFA6E629A2F1796305F1C9A66F
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ms\messages.json	JSON data	7D273824B1E22426C033FF5D8D7162B7	EADBE9DBE5519BD60458B3551BDFC36A10049DD1	2824CF97513DC3ECC261F378BFD595AE95A5997E9D1C63F5731A58B1F8CD54F9
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\my\messages.json	JSON data	342335A22F1886B8BC92008597326B24	2CB04F892E430DCD7705C02BF0A8619354515513	243BEFBD6B67A21433DCC97DC1A728896D3A070DC20055EB04D644E1BB955FE7
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ne\messages.json	JSON data	B1083DA5EC718D1F2F093BD3D1FB4F37	74B6F050D918448396642765DEF1AD5390AB5282	E6ED0A023EF31705CCCBAF1E07F2B4B2279059296B5CA973D2070417BA16F790
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\nl\messages.json	JSON data	32DF72F14BE59A9BC9777113A8B21DE6	2A8D9B9A998453144307DD0B700A76E783062AD0	F3FE1FFCB182183B76E1B46C4463168C746A38E461FD25CA91FF2A40846F1D61
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\no\messages.json	JSON data	A1744B0F53CCF889955B95108367F9C8	6A5A6771DFF13DCB4FD425ED839BA100B7123DE0	21CEFF02B45A4BFD60D144879DFA9F427949A027DD49A3EB0E9E345BD0B7C9A8
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\pa\messages.json	JSON data	97F769F51B83D35C260D1F8CFD7990AF	0D59A76564B0AEE31D0A074305905472F740CECA	BBD37D41B7DE6F93948FA2437A7699D4C30A3C39E736179702F212CB36A3133C
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\pl\messages.json	JSON data	B8D55E4E3B9619784AECA61BA15C9C0F	B4A9C9885FBEB78635957296FDDD12579FEFA033	E00FF20437599A5C184CA0C79546CB6500171A95E5F24B9B5535E89A89D3EC3D
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\pt_BR\messages.json	JSON data	608551F7026E6BA8C0CF85D9AC11F8E3	87B017B2D4DA17E322AF6384F82B57B807628617	A73EEA087164620FA2260D3910D3FBE302ED85F454EDB1493A4F287D42FC882F
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\pt_PT\messages.json	JSON data	0963F2F3641A62A78B02825F6FA3941C	7E6972BEAB3D18E49857079A24FB9336BC4D2D48	E93B8E7FB86D2F7DFAE57416BB1FB6EE0EEA25629B972A5922940F0023C85F90
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ro\messages.json	JSON data	BED8332AB788098D276B448EC2B33351	6084124A2B32F386967DA980CBE79DD86742859E	085787999D78FADFF9600C9DC5E3FF4FB4EB9BE06D6BB19DF2EEF8C284BE7B20
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ru\messages.json	JSON data	51D34FE303D0C90EE409A2397FCA437D	B4B9A7B19C62D0AA95D1F10640A5FBA628CCCA12	BE733625ACD03158103D62BC0EEF272CA3F265AC30C87A6A03467481A177DAE3
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\si\messages.json	JSON data	B8A4FD612534A171A9A03C1984BB4BDD	F513F7300827FE352E8ECB5BD4BB1729F3A0E22A	54241EBE651A8344235CC47AFD274C080ABAEBC8C3A25AFB95D8373B6A5670A2
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\sk\messages.json	JSON data	8E55817BF7A87052F11FE554A61C52D5	9ABDC0725FE27967F6F6BE0DF5D6C46E2957F455	903060EC9E76040B46DEB47BBB041D0B28A6816CB9B892D7342FC7DC6782F87C
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\sl\messages.json	JSON data	BFAEFEFF32813DF91C56B71B79EC2AF4	F8EDA2B632610972B581724D6B2F9782AC37377B	AAB9CF9098294A46DC0F2FA468AFFF7CA7C323A1A0EFA70C9DB1E3A4DA05D1D4
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\sr\messages.json	JSON data	7F5F8933D2D078618496C67526A2B066	B7050E3EFA4D39548577CF47CB119FA0E246B7A4	4E8B69E864F57CDDD4DC4E4FAF2C28D496874D06016BC22E8D39E0CB69552769
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\sv\messages.json	JSON data	90D8FB448CE9C0B9BA3D07FB8DE6D7EE	D8688CAC0245FD7B886D0DEB51394F5DF8AE7E84	64B1E422B346AB77C5D1C77142685B3FF7661D498767D104B0C24CB36D0EB859
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\sw\messages.json	JSON data	D0579209686889E079D87C23817EDDD5	C4F99E66A5891973315D7F2BC9C1DAA524CB30DC	0D20680B74AF10EF8C754FCDE259124A438DCE3848305B0CAF994D98E787D263
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ta\messages.json	JSON data	DCC0D1725AEAEAAF1690EF8053529601	BB9D31859469760AC93E84B70B57909DCC02EA65	6282BF9DF12AD453858B0B531C8999D5FD6251EB855234546A1B30858462231A
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\te\messages.json	JSON data	385E65EF723F1C4018EEE6E4E56BC03F	0CEA195638A403FD99BAEF88A360BD746C21DF42	026C164BAE27DBB36A564888A796AA3F188AAD9E0C37176D48910395CF772CEA
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\th\messages.json	JSON data	64077E3D186E585A8BEA86FF415AA19D	73A861AC810DABB4CE63AD052E6E1834F8CA0E65	D147631B2334A25B8AA4519E4A30FB3A1A85B6A0396BC688C68DC124EC387D58
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\tr\messages.json	JSON data	76B59AAACC7B469792694CF3855D3F4C	7C04A2C1C808FA57057A4CCEEE66855251A3C231	B9066A162BEE00FD50DC48C71B32B69DFFA362A01F84B45698B017A624F46824
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\uk\messages.json	JSON data	970963C25C2CEF16BB6F60952E103105	BBDDACFEEE60E22FB1C130E1EE8EFDA75EA600AA	9FA26FF09F6ACDE2457ED366C0C4124B6CAC1435D0C4FD8A870A0C090417DA19
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\ur\messages.json	JSON data	8B4DF6A9281333341C939C244DDB7648	382C80CAD29BCF8AAF52D9A24CA5A6ECF1941C6B	5DA836224D0F3A96F1C5EB5063061AAD837CA9FC6FED15D19C66DA25CF56F8AC
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\vi\messages.json	JSON data	773A3B9E708D052D6CBAA6D55C8A5438	5617235844595D5C73961A2C0A4AC66D8EA5F90F	597C5F32BC999746BC5C2ED1E5115C523B7EB1D33F81B042203E1C1DF4BBCAFE
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\zh_CN\messages.json	JSON data	3E76788E17E62FB49FB5ED5F4E7A3DCE	6904FFA0D13D45496F126E58C886C35366EFCC11	E72D0BB08CC3005556E95A498BD737E7783BB0E56DCC202E7D27A536616F5EE0
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\zh_HK\messages.json	JSON data	524E1B2A370D0E71342D05DDE3D3E774	60D1F59714F9E8F90EF34138D33FBFF6DD39E85A	30F44CFAD052D73D86D12FA20CFC111563A3B2E4523B43F7D66D934BA8DACE91
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\zh_TW\messages.json	JSON data	0E60627ACFD18F44D4DF469D8DCE6D30	2BFCB0C3CA6B50D69AD5745FA692BAF0708DB4B5	F94C6DDEDF067642A1AF18D629778EC65E02B6097A8532B7E794502747AEB008
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_locales\zu\messages.json	JSON data	71F916A64F98B6D1B5D1F62D297FDEC1	9386E8F723C3F42DA5B3F7E0B9970D2664EA0BAA	EC78DDD4CCF32B5D76EC701A20167C3FBD146D79A505E4FB0421FC1E5CF4AA63
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\_metadata\verified_contents.json	JSON data	66CA3B4324CE2F09906C7A1D16A1C10F	38597793E98446B853F4680F0E3F51798D93B390	FBE9C4BA4B6178A2DAF160A237C1E89AB73EE89EBD4FAAB490C8B4802B4976B1
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\dasherSettingSchema.json	JSON data	4EC1DF2DA46182103D2FFC3B92D20CA5	FB9D1BA3710CF31A87165317C6EDC110E98994CE	6C69CE0FE6FAB14F1990A320D704FEE362C175C00EB6C9224AA6F41108918CA6
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\manifest.json	JSON data	1048F1F4D861F5C812E5BC268EB68A06	4C9495A3202F63FD0878086F27310DB6D3BF5BE9	8B3B5B96A5D6D7C613052B4A751C6632F5F91CB0A912C96E515978999B6F43F5
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\offscreendocument.html	HTML document, ASCII text	B747B5922A0BC74BBF0A9BC59DF7685F	7BF124B0BE8EE2CFCD2506C1C6FFC74D1650108C	B9FA2D52A4FFABB438B56184131B893B04655B01F336066415D4FE839EFE64E7
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\offscreendocument_main.js	ASCII text, with very long lines (4979)	5656F8678589CF436A2E5C532A036A73	AF8B89F2C1596298B1652BE2B0C83EC25FFCFB21	73E898C9A5EFE3A6B8C13B53880B55DD588CA09D543ECB102D965EAC32BB12D0
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\page_embed_script.js	ASCII text, with very long lines (337)	C14D617E06059A9951C38413F8D3CBC4	1418D66BDA6097888B1467316B349DF77DDCC0DB	FBD9369840EC4D8F3102CD865C5186E0C65DE80D67FBAA244CB7513BA839DE36
C:\Users\user\AppData\Local\Temp\scoped_dir7216_60145791\CRX_INSTALL\service_worker_bin_prod.js	ASCII text, with very long lines (4982)	D47E43B89EDCE51BC01FA656962401FE	8CDC456964CFBCC7CA62E58D6258C8535B48D980	7E2AA9557DB237EE59473F8079197E4DE851F8FADDF3575BC345CBDE6AA49DFC
C:\Users\user\AppData\Roaming\Microsoft\Spelling\en-GB\default.acl	Unicode text, UTF-16, little-endian text, with no line terminators	F3B25701FE362EC84616A93A45CE9998	D62636D8CAEC13F04E28442A0A6FA1AFEB024BBB	B3D510EF04275CA8E698E5B3CBB0ECE3949EF9252F0CDC839E9EE347409A2209
C:\Users\user\AppData\Roaming\Microsoft\Spelling\en-GB\default.dic	Unicode text, UTF-16, little-endian text, with no line terminators	F3B25701FE362EC84616A93A45CE9998	D62636D8CAEC13F04E28442A0A6FA1AFEB024BBB	B3D510EF04275CA8E698E5B3CBB0ECE3949EF9252F0CDC839E9EE347409A2209
C:\Users\user\AppData\Roaming\Microsoft\Spelling\en-GB\default.exc	Unicode text, UTF-16, little-endian text, with no line terminators	F3B25701FE362EC84616A93A45CE9998	D62636D8CAEC13F04E28442A0A6FA1AFEB024BBB	B3D510EF04275CA8E698E5B3CBB0ECE3949EF9252F0CDC839E9EE347409A2209
Chrome Cache Entry: 517	ASCII text, with very long lines (8539)	137F952858C25EF14F2B18FC73F9BB4A	085642C5E085CE1AC06823AD5636A43228BFB846	523307D06386EC51D7F5160ACE51F4456815B268DAF000FC1914D8ED67027616
Chrome Cache Entry: 518	ASCII text, with very long lines (10795)	0844227C8EAC2AC21E8B707407F234B2	43FDB118D1E8FF6BF31EB5F4451556D10F40176A	15711F98BD54C7FB15BEA22A9ABB6AFFA6D7EC5C811D827377B937C2645F283F
Chrome Cache Entry: 519	Java source, ASCII text, with very long lines (3335)	683EDB06679BD7429A62F0440FD67C71	90D01201AAC3105DFF903D0058755DF779C8A778	87B06CF13E6BE46BC1F31D0EDF640172BFAA16C5C48E6C54B242880C7C7712DF
Chrome Cache Entry: 520	Unicode text, UTF-8 text, with very long lines (26432)	B9BA4C07AAE6943433A6DE66F00F9B7F	B0C1DD4603C5BBEF198390235863C15FEFD5BF1B	4C0B78E91CB2D1CAB5B91E0364C6FFBA3532810813ACD104F3B4139781106A18
Chrome Cache Entry: 521	HTML document, ASCII text	A4090A38E4434A36BAF7361E29EBD25F	667FDFC62AC98C11DD1F0CE469374F20D4AA6694	0441A193CEAC676241E1D0F9824F9F766545B15A08A44454A6EC05FD7E1D0126
Chrome Cache Entry: 522	ASCII text, with very long lines (8908)	59807BA32F1B386A081D99DA4805CFBC	36C0855E43E1386D3C7EAC16730245FE7AC253A8	07D58C87B287938711D77F4A675F8710003F3527A021DDB25F397000169EFDB1
Chrome Cache Entry: 523	Java source, ASCII text, with very long lines (25431)	A54E996245AA1D903A16B4285E55344F	672CFFA899B81C56AD985ACA3465DB2A6CE5A597	7F6C2A8E12895406D8E2BF790BD7AD84E534F652BFD6312AF8CE0208310D7E55
Chrome Cache Entry: 524	ASCII text, with very long lines (65536), with no line terminators	DB8B9FB3C6D0351E56DF01EE66A5F8F6	6D9D70A9325882C8DF1E455D8FB6A0D7E5DD6F50	7F639222924D0221362935FEF93AC18FBBF532656AF32832921786AD1BD31C86
Chrome Cache Entry: 525	ASCII text, with very long lines (3330)	434234284C72CB3345B6AC715791E10F	687B456A27B1AE2CF3BD289B1C211CBC5E6ECB25	0D647572462BACDA1151789E0B3E471CD024CB156A626A3E9013F70E88241C18
Chrome Cache Entry: 526	Java source, Unicode text, UTF-8 text, with very long lines (1903)	5822BFFA4685CA8D25CE46DA40637684	28D0DD7B39B3DDE8B2DA3CEA37B58424F9B7F807	32BEBA1849D2320503E8ACD114D11F73C5FDAA270B019932E83D575F60125C74
Chrome Cache Entry: 527	Java source, ASCII text, with very long lines (1237)	C7ED0FD80D8817ABDDDACB9B48E5689F	FEAC81B1B0CCA03ED0416E082F48B4E4ECF77AEE	571453D693F812B56E996C2CE9DAE12315B24C5124064F1EF8B161FA220D183B
Chrome Cache Entry: 528	HTML document, ASCII text, with CRLF line terminators	370E16C3B7DBA286CFF055F93B9A94D8	65F3537C3C798F7DA146C55AEF536F7B5D0CB943	D465172175D35D493FB1633E237700022BD849FA123164790B168B8318ACB090
Chrome Cache Entry: 529	ASCII text, with very long lines (1086)	743D9B7A58CB34CAB3C5325CD5BF4759	51EC3B847954E7B6568B8B3E0E15DF0FCBE15BE3	73476FAEF8F93E66194CDE3A431436AE91F110CD59B2EA9DD7D97EAAB11C8AC2
Chrome Cache Entry: 530	Unicode text, UTF-8 text, with very long lines (65044), with no line terminators	826ED3D744C97F5D7843265371D8B8E4	BC9C65A566FB2912697AD7F65FFC9A15EC5521A7	BF6013A5BC0D80E47558440AFF78DFA387E647135FFDE0EB2EDF6EE0F42623D7
Chrome Cache Entry: 531	ASCII text	A0A952EC017F1B5BB545FC6C55E3245C	B8E6630F408AE17475A9659AC6DEBF6AC45C81B5	EFD6CDF0B10A1793A172C52CB23F51A84D78B2370EFDF3E8DFD68C66CF9DE77F
Chrome Cache Entry: 532	ASCII text, with very long lines (526)	EF6CC3A679F4DD7EF28F977543F31C6C	99B71A1FF959DA1DE3F6FF99F1890FF99157F38B	A34C92DE0AF288BBAC247785986BD197106971EF5FEB13C3C360091610910A24
Chrome Cache Entry: 533	Unicode text, UTF-8 text	795F37E4197BA23932B5BA750761DF07	B5233AAB1ED89A7121C90B4145AF0B9A979FCB9F	3B9C05162414DA0191021E7835431967C557FAE21EC64B6DF95A92E9EC006986
Chrome Cache Entry: 534	Java source, Unicode text, UTF-8 text, with very long lines (2587)	F2AE48421B4FC94F3CFA454295D53B82	8D8EFA91D298809655894AAA0A537D51C7D47477	412077317AB229DDBE89092C3F6C0FAC7C345D62ADD833D19A3BDC971E112EC2
Chrome Cache Entry: 535	ASCII text, with very long lines (1763)	3AE5CB85ECBC4168F4740FC50789EF84	F8FF6CE457D4A69081EBF4F9259A90C2D43066C1	C393E23975D017A126E554151493B51D52FBC3883343BBE99F1EC2838E343C2A
Chrome Cache Entry: 536	Java source, ASCII text, with very long lines (3470)	85055F901240043B98F6C9D1CA2B29BC	52E326E4B022EF6672F474B357F2626469802682	13B57D98ED37606B5E1F72C368C8176661D7AB8EA75D4ED0B05D4CBA7991C6FC
Chrome Cache Entry: 537	Java source, ASCII text, with very long lines (1513)	42BC66EF6FFCFC3752E922025F145842	7A623C4F005BA4DFCCB7ADDCD168E02A2F2A9EBA	8A98BF951B341064F3C3B5947DC279DD532A8A4C9A3684CDCFC073EC13384175
Chrome Cache Entry: 538	C++ source, ASCII text, with very long lines (6388)	B6F220CE85D6D61C00FC82F136FB1120	5F6D180DDBC5725005AC42D8EE80A46E42370E7A	BCE86D9D5CAB89292366BED50917B378A8DE71F799459C5C419672880AE562DD
Chrome Cache Entry: 539	Java source, ASCII text, with very long lines (2967)	2AA14EF862BFC814B0D304D030E6659F	792DD75C4EF3351983E4A9FEB3EC57C4E38A93C1	48116003E3FD479A5500EB98FEF799074153F83B2380333C9FFF68915F998CCC
Chrome Cache Entry: 540	Java source, Unicode text, UTF-8 text, with very long lines (7961)	55FC79926D4872C311B42C3AA542A952	EE33E8DCA6FDD322A0F476F1B62226AC79F4257E	E352CEC26EB6CBFE0A36672067CAD51FD5D95ECBB37FB2A9EE043B5898905C23
Chrome Cache Entry: 541	ASCII text, with very long lines (710)	83EAA061C1686FA5AAA65E36A45BC842	8F892CEB73F326BBE9C8C037461FEAFF20ED93CB	7438AE4FF4ACAB5179C804DEA5A843AD00E2757190C326D5EC4DBEFDF3C164F5
Chrome Cache Entry: 542	ASCII text, with very long lines (8218)	8BEEA671EEC0DF6F97CE85F0B8EAC2FA	500F9993D7D65591893D6E11C0609965C293DFAA	792C1253D215041AB11D638B2CD5DC3E30DB80F0402C6D6FFDE3169723090772
Chrome Cache Entry: 543	ASCII text, with very long lines (28616)	E65EBA242A894B6EABF36E276F3CD71C	248799B94DB13D10A4867E8C3CD54406D4B1FDF9	8560DC147A156390726479F13018706F4D4BF08FDE4CD444269CA3BDBE7E6B6F
Chrome Cache Entry: 544	ASCII text, with very long lines (1363)	C47D63EC1F05A1F2DC1B900797DC077D	D12AF8D2E3D088E766A63C7D3CBC7E7A5BEA9053	14BBC7EDD5A7D4B85B79FCF4C1E097C747A1DDDAB68DC3E40BE226120BAC5988
Chrome Cache Entry: 545	ASCII text	BD7FAB1E13997FD9DBE1ADC309C5549C	E6FB970015F5BF4DF4EE0A86B5422898F1906907	460730385684F43638A991CBD42B4EEA9ACB722392B09DC48BCFADB29B94E00C
Chrome Cache Entry: 546	Unicode text, UTF-8 text	795F37E4197BA23932B5BA750761DF07	B5233AAB1ED89A7121C90B4145AF0B9A979FCB9F	3B9C05162414DA0191021E7835431967C557FAE21EC64B6DF95A92E9EC006986
Chrome Cache Entry: 547	Unicode text, UTF-8 text, with very long lines (14935)	380E20386E4E93B9F46C036F25D63286	52F78E881F33C31398D659F5A3DA22FD8E17AC4A	5F9C3B6BF0FCA0167BB55EB52D9663CC4932EC601AC2F7FAEFC7A053E2879682
Chrome Cache Entry: 548	Unicode text, UTF-8 text, with very long lines (65248), with no line terminators	8B48A0FEFA4154F0E2869A38280FEBC4	6B7C12A5C65451622027B87A52607F66B2ED6245	2A386A6CACB001774D6EBD3D355671B92E94D6236FD9593A26905143DB88BF75
Chrome Cache Entry: 549	ASCII text, with very long lines (65536), with no line terminators	CC75C2DFE4FA5DE68E5E044AF4247B20	6AA4CE826B316E3410A3C92E7119BD7B775D0134	733888AEE84449FE33BFA1481480F1A839F62A036BF1202AC7471F1E5B921ACA
Chrome Cache Entry: 550	Java source, ASCII text, with very long lines (22496)	4050A958796E6717BADA242AFB8F2686	142E381B7849DD8356E8C2AF7F3A0F8C31BC353C	F04526077F6ED11CB1A2D394CC24D8E4787461475D2BCF39EDA914A7939366C5
Chrome Cache Entry: 551	ASCII text, with very long lines (504)	A2BBB978CC9A5032B574C12140320ACE	98E2CE787FF16E4857E8C0272B05AAEA4A3D3351	9FC6EDDF483DE72FA37FBACD0C0F3DA635BF90282780F03C400BE685A16AC37D
Chrome Cache Entry: 552	ASCII text, with very long lines (1024)	679C41BE9E67D2CF1D420DF21C5CB683	80964B7DF089660F33ED468A43BF596254EA1372	D9A1B4E5055D6812A34564F46F5B6A64B26691097238CA308881C451AA5BF79C

Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.251.40.228:443 -> 192.168.2.16:49749 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.203
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.89.179.13
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.13.80

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/vant.bf6013a5.css HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/index.523307d0.css HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/index.b0a3a26f.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/@vue.d3b2b407.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/@vant.378c9e84.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/vant.9dc2feea.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/has-symbols.456daba2.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/has-proto.4a87f140.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/function-bind.72d06d3b.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/has.851ffceb.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/get-intrinsic.1f7927fd.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/call-bind.218c9af5.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/crypto-js.71120912.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/pinia.d3ba3a69.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/pinia-plugin-persistedstate.35ef556e.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/uuid.5e712abb.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/vue-router.6cf43cf2.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/@intlify.d5940eca.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/vue-i18n.69c8aa1d.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /config.js?1743012562274 HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/index.a34c92de.css HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/index.14bbc7ed.css HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/Login.0d647572.css HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/Login.51f70c7b.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/eye_open.915cc152.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/request.6a9e1309.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/axios.743c2fba.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/qs.9001da4e.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/side-channel.722dcddb.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/object-inspect.1ccc8433.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/ts-md5.046f776c.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/index.e6d0fc0c.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/index.e0b83602.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/index.8c930aeb.js HTTP/1.1Host: www.octopuspro.lifeConnection: keep-aliveOrigin: https://www.octopuspro.lifesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /config.js?1743012581536 HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531 HTTP/1.1Host: ntp.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-edge-ntp: {"back_block":0,"bg_cur":{},"bg_img_typ":"bing","exp":["msQuickLinksDefaultOneRow","msShoppingWebAssistOnNtp","msShoppingHistogramsOnNtp","msEnableWinHPNewTabBackButtonFocusAndClose","msCustomMaxQuickLinks","msMaxQuickLinksAt20","msAllowThemeInstallationFromChromeStore","msEdgeSplitWindowLinkMode"],"feed":0,"feed_dis":"onscroll","layout":1,"quick_links_opt":1,"sel_feed_piv":"","show_greet":true,"vt_opened":false}Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /crx/blobs/Ad_brx3-BuL0c-lurTuHDvLGx_3o1po6xdCJ6biVPWmOWpEAIO3qQwYr84tWN8xt3Y-b4FBELB16YJo65m5b1LlifuobAPibVoX_4l94iArbx2Gsn4X-g9109tXuJL65PgYAxlKa5UnJV70rV6RKReARs98yYD2dVaKO/GHBMNNJOOEKPMOECNNNILNNBDLOLHKHI_1_90_1_0.crx HTTP/1.1Host: clients2.googleusercontent.comConnection: keep-aliveSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/edgeChromium/latest/SSR-extension.828d19e24cc86fbcd5c9.js HTTP/1.1Host: ntp.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ntp.msn.comsec-ch-viewport-height: 876sec-ch-ua-arch: "x86"sec-ch-viewport-width: 1232sec-ch-ua-platform-version: "10.0.0"downlink: 1.55sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-platform: "Windows"device-memory: 8rtt: 100sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-full-version: "117.0.2045.47"sec-ch-dpr: 1ect: 4gAccept: /sec-edge-ntp: {"back_block":0,"bg_cur":{},"bg_img_typ":"bing","exp":["msQuickLinksDefaultOneRow","msShoppingWebAssistOnNtp","msShoppingHistogramsOnNtp","msEnableWinHPNewTabBackButtonFocusAndClose","msCustomMaxQuickLinks","msMaxQuickLinksAt20","msAllowThemeInstallationFromChromeStore","msEdgeSplitWindowLinkMode"],"feed":0,"feed_dis":"onscroll","layout":1,"quick_links_opt":1,"sel_feed_piv":"","show_greet":true,"vt_opened":false}Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: _C_ETH=1; sptmarket=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z; USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; MUIDB=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1
Source: global traffic	HTTP traffic detected: GET /bundles/v1/edgeChromium/latest/web-worker.948ffa5ea2d441a35f55.js HTTP/1.1Host: ntp.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-viewport-height: 876sec-ch-ua-arch: "x86"sec-ch-viewport-width: 1232sec-ch-ua-platform-version: "10.0.0"downlink: 1.55sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-platform: "Windows"device-memory: 8rtt: 100sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-full-version: "117.0.2045.47"sec-ch-dpr: 1ect: 4gAccept: /sec-edge-ntp: {"back_block":0,"bg_cur":{},"bg_img_typ":"bing","exp":["msQuickLinksDefaultOneRow","msShoppingWebAssistOnNtp","msShoppingHistogramsOnNtp","msEnableWinHPNewTabBackButtonFocusAndClose","msCustomMaxQuickLinks","msMaxQuickLinksAt20","msAllowThemeInstallationFromChromeStore","msEdgeSplitWindowLinkMode"],"feed":0,"feed_dis":"onscroll","layout":1,"quick_links_opt":1,"sel_feed_piv":"","show_greet":true,"vt_opened":false}Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: _C_ETH=1; sptmarket=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z; USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; MUIDB=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1
Source: global traffic	HTTP traffic detected: GET /bundles/v1/edgeChromium/latest/vendors.08ddc3af8246ad2193cd.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ntp.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/edgeChromium/latest/microsoft.1ed6fad3ee8a8960478c.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ntp.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/edgeChromium/latest/common.054c6a114cb2ba3115b8.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ntp.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /c.gif?rnd=1743012599501&udc=true&pg.n=default&pg.t=dhp&pg.c=547&pg.p=anaheim&rf=&tp=https%3A%2F%2Fntp.msn.com%2Fedge%2Fntp%3Flocale%3Den-GB%26title%3DNew%2520tab%26dsp%3D1%26sp%3DBing%26isFREModalBackground%3D1%26startpage%3D1%26PC%3DU531%26ocid%3Dmsedgdhp&cvs=Browser&di=340&st.dpt=&st.sdpt=antp&subcvs=homepage&lng=en-us&rid=fdede3e39b3c42b3863a32b25c92065a&activityId=fdede3e39b3c42b3863a32b25c92065a&d.imd=false&scr=1280x1024&anoncknm=app_anon&issso=&aadState=0 HTTP/1.1Host: c.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: _C_ETH=1; USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1
Source: global traffic	HTTP traffic detected: GET /b?rn=1743012599501&c1=2&c2=3000001&cs_ucfr=1&c7=https%3A%2F%2Fntp.msn.com%2Fedge%2Fntp%3Flocale%3Den-GB%26title%3DNew%2Btab%26dsp%3D1%26sp%3DBing%26isFREModalBackground%3D1%26startpage%3D1%26PC%3DU531%26ocid%3Dmsedgdhp%26mkt%3Den-us&c8=New+tab&c9=&cs_fpid=292EF211B19B62C117BBE7AAB06B639F&cs_fpit=o&cs_fpdm=null&cs_fpdt=null HTTP/1.1Host: sb.scorecardresearch.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /b2?rn=1743012599501&c1=2&c2=3000001&cs_ucfr=1&c7=https%3A%2F%2Fntp.msn.com%2Fedge%2Fntp%3Flocale%3Den-GB%26title%3DNew%2Btab%26dsp%3D1%26sp%3DBing%26isFREModalBackground%3D1%26startpage%3D1%26PC%3DU531%26ocid%3Dmsedgdhp%26mkt%3Den-us&c8=New+tab&c9=&cs_fpid=292EF211B19B62C117BBE7AAB06B639F&cs_fpit=o&cs_fpdm=null&cs_fpdt=null HTTP/1.1Host: sb.scorecardresearch.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: UID=18C23e9bcc7c48c308e5c5d1743012600; XID=18C23e9bcc7c48c308e5c5d1743012600
Source: global traffic	HTTP traffic detected: GET /c.gif?rnd=1743012599501&udc=true&pg.n=default&pg.t=dhp&pg.c=547&pg.p=anaheim&rf=&tp=https%3A%2F%2Fntp.msn.com%2Fedge%2Fntp%3Flocale%3Den-GB%26title%3DNew%2520tab%26dsp%3D1%26sp%3DBing%26isFREModalBackground%3D1%26startpage%3D1%26PC%3DU531%26ocid%3Dmsedgdhp&cvs=Browser&di=340&st.dpt=&st.sdpt=antp&subcvs=homepage&lng=en-us&rid=fdede3e39b3c42b3863a32b25c92065a&activityId=fdede3e39b3c42b3863a32b25c92065a&d.imd=false&scr=1280x1024&anoncknm=app_anon&issso=&aadState=0&ctsa=mr&CtsSyncId=336A651762A6411E9F54AB570587B1CD&MUID=292EF211B19B62C117BBE7AAB06B639F HTTP/1.1Host: c.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ntp.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1; SM=T
Source: global traffic	HTTP traffic detected: GET /edge/ntp?locale=en-GB&title=New+tab&enableForceCache=true HTTP/1.1Host: ntp.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-viewport-height: 876sec-ch-ua-arch: "x86"sec-ch-viewport-width: 1232sec-ch-ua-platform-version: "10.0.0"downlink: 7.45sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Microsoft Edge";v="117.0.2045.47", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-platform: "Windows"device-memory: 8rtt: 150sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-full-version: "117.0.2045.47"sec-ch-dpr: 1ect: 4gAccept: /sec-edge-ntp: {"back_block":0,"bg_cur":{},"bg_img_typ":"bing","exp":["msQuickLinksDefaultOneRow","msShoppingWebAssistOnNtp","msShoppingHistogramsOnNtp","msEnableWinHPNewTabBackButtonFocusAndClose","msCustomMaxQuickLinks","msMaxQuickLinksAt20","msAllowThemeInstallationFromChromeStore","msEdgeSplitWindowLinkMode"],"feed":0,"feed_dis":"onscroll","layout":1,"quick_links_opt":1,"sel_feed_piv":"","show_greet":true,"vt_opened":false}Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: _C_Auth=; pglt-edgeChromium-dhp=547; sptmarket=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z; USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; MUIDB=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1; MicrosoftApplicationsTelemetryDeviceId=d11ce2a9-d65c-49a6-a499-c9838f8a283e; ai_session=owZEu+zYUbqTPCflCLvR2b\|1743012599497\|1743012599497; sptmarket_restored=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z
Source: global traffic	HTTP traffic detected: GET /edge/ntp/service-worker.js?bundles=latest&riverAgeMinutes=2880&navAgeMinutes=2880&networkTimeoutSeconds=5&bgTaskNetworkTimeoutSeconds=8&ssrBasePageNavAgeMinutes=720&enableEmptySectionRoute=true&enableNavPreload=true&enableFallbackVerticalsFeed=true&noCacheLayoutTemplates=true&cacheSSRBasePageResponse=true&enableStaticAdsRouting=true&enableWidgetsRegion=true HTTP/1.1Host: ntp.msn.comConnection: keep-aliveCache-Control: max-age=0Accept: /Service-Worker: scriptUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-edge-ntp: {"back_block":0,"bg_cur":{"configIndex":33,"imageId":"BB1msyO5","provider":"CMSImage","userSelected":false},"bg_img_typ":"bing","exp":["msQuickLinksDefaultOneRow","msShoppingWebAssistOnNtp","msShoppingHistogramsOnNtp","msEnableWinHPNewTabBackButtonFocusAndClose","msCustomMaxQuickLinks","msMaxQuickLinksAt20","msAllowThemeInstallationFromChromeStore","msEdgeSplitWindowLinkMode"],"feed":0,"feed_dis":"onscroll","layout":1,"quick_links_opt":1,"sel_feed_piv":"myFeed","show_greet":true,"vt_opened":false,"wpo_nx":{"cpt":false,"v":"2","wgt":{"src":"default"}}}Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: serviceworkerReferer: https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&startpage=1&PC=U531Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: _C_Auth=; pglt-edgeChromium-dhp=547; sptmarket=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z; USRLOC=; MUID=292EF211B19B62C117BBE7AAB06B639F; MUIDB=292EF211B19B62C117BBE7AAB06B639F; _EDGE_S=F=1&SID=20D4576375B2664D14C642D8743E6761; _EDGE_V=1; MicrosoftApplicationsTelemetryDeviceId=d11ce2a9-d65c-49a6-a499-c9838f8a283e; ai_session=owZEu+zYUbqTPCflCLvR2b\|1743012599497\|1743012599497; sptmarket_restored=en-GB\|\|us\|en-us\|en-us\|en\|\|cf=8\|RefA=FDEDE3E39B3C42B3863A32B25C92065A.RefC=2025-03-26T18:09:58Z
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.octopuspro.lifeConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /v4/1737322246582photo_2025-01-19_16-28-54.jpg HTTP/1.1Host: shangchengossvip.oss-ap-northeast-1.aliyuncs.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /v4/1737323341061photo_2025-01-19_16-48-53.jpg HTTP/1.1Host: shangchengossvip.oss-ap-northeast-1.aliyuncs.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.octopuspro.life/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /widgets/fullpage/distribution/edgewelcome?experiences=DistributionPage&ocid=edge-whatsnew HTTP/1.1Host: www.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: USRLOC=; msnup=%7B%22cnex%22%3A%22no%22%7D
Source: global traffic	HTTP traffic detected: GET /bundles/v1/distribution/latest/vendors.d049fb344a15489e568f.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/distribution/latest/microsoft.a64b2be15baaa46efd42.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /npm/@shoelace-style/shoelace@2.12.0/cdn/themes/light.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxlyvkTw3vm8lDHAT6SkekwG8YusCcPfPfP0m.fAST28KgPMuaAoMaftBlNveobdvuj_EZhnZ5RCl5BbcBXbDJU8-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHM0OYfiFeMI2p9MWie0CvL99U4GA1gf6_kayTt_kBblFwHwo8BW8JXlqfnYxKPmmBYVg3jodNnjjCF9g7fe.CF_J3ICewh8sxTRsG3rDIJJCfXdg_PjicQOhn.MpxC_5EHrD1bdswgr8IKXaeHvwZiM-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxsG72wAo9EWJR4yQWyJJaDb6rYcBtJvTvH3UoAS4JFNDaxGhmKNaMwgElLURlRFeVkLCjkfnXmWtINWZIrPGYq0-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxo4K81Ei7WzcnqEk8W.MgwZHw5A578BHBl7Vp_RZnEknVVBWO3tHfmiSimvYi2NX1b2Ftw62ZhmFl6P1HnAei74-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxiq8rwXckZAP_inAe6ki68ngsFVcJXxS4Pf4uY6MUw4tEWr31NRKjpRAPoTVhCqZwkPWoFkmcoOefB1IaaJEY.0-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8

Source: Favicons.16.dr	String found in binary or memory: https://edge.microsoft.com/favicon/v1?client=chrome_desktop&nfrp=2&check_seen=true&size=32&min_size=16&max_size=256&fallback_opts=TYPE,SIZE,URL&url=https://www.facebook.com/&origin=PinningWizard equals www.facebook.com (Facebook)
Source: Favicons.16.dr	String found in binary or memory: https://edge.microsoft.com/favicon/v1?client=chrome_desktop&nfrp=2&check_seen=true&size=32&min_size=16&max_size=256&fallback_opts=TYPE,SIZE,URL&url=https://www.youtube.com/&origin=PinningWizard equals www.youtube.com (Youtube)
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: "url": "https://www.youtube.com" equals www.youtube.com (Youtube)
Source: 000003.log9.16.dr	String found in binary or memory: "www.facebook.com": "{\"Tier1\": [1103, 6061], \"Tier2\": [5445, 1780, 8220]}", equals www.facebook.com (Facebook)
Source: 000003.log9.16.dr	String found in binary or memory: "www.linkedin.com": "{\"Tier1\": [1103, 214, 6061], \"Tier2\": [2771, 9515, 1780, 1303, 1099, 6081, 5581, 9396]}", equals www.linkedin.com (Linkedin)
Source: 000003.log9.16.dr	String found in binary or memory: "www.youtube.com": "{\"Tier1\": [983, 6061, 1103], \"Tier2\": [2413, 8118, 1720, 5007]}", equals www.youtube.com (Youtube)
Source: Favicons.16.dr	String found in binary or memory: ?https://www.facebook.com/ equals www.facebook.com (Facebook)
Source: Favicons.16.dr	String found in binary or memory: https://edge.microsoft.com/favicon/v1?client=chrome_desktop&nfrp=2&check_seen=true&size=32&min_size=16&max_size=256&fallback_opts=TYPE,SIZE,URL&url=https://www.youtube.com/&origin=PinningWizard equals www.youtube.com (Youtube)
Source: Favicons.16.dr	String found in binary or memory: https://www.youtube.com/ equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: www.octopuspro.life
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: ntp.msn.com
Source: global traffic	DNS traffic detected: DNS query: bzib.nelreports.net
Source: global traffic	DNS traffic detected: DNS query: clients2.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: sb.scorecardresearch.com
Source: global traffic	DNS traffic detected: DNS query: assets.msn.com
Source: global traffic	DNS traffic detected: DNS query: c.msn.com
Source: global traffic	DNS traffic detected: DNS query: api.msn.com
Source: global traffic	DNS traffic detected: DNS query: browser.events.data.msn.com
Source: global traffic	DNS traffic detected: DNS query: r.msftstatic.com
Source: global traffic	DNS traffic detected: DNS query: chrome.cloudflare-dns.com
Source: global traffic	DNS traffic detected: DNS query: beacons.gcp.gvt2.com
Source: global traffic	DNS traffic detected: DNS query: beacons.gvt2.com
Source: global traffic	DNS traffic detected: DNS query: beacons2.gvt2.com

Source: unknown

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Wed, 26 Mar 2025 18:09:26 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeCache-Control: max-age=14400cf-cache-status: EXPIREDReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I2Ow%2FoTEWj9RSY7%2Bzt8M9QA3c1WeDPaGYD60R9snKv1Ag3c1WZusTlTvly3hPrOSy207D2%2FZlQr2CTDtL5yw7AcLsoKOOs9L8PfmqX66QMBThe5idRyxfMlGYv513ctTVlFH88Ip"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 92689959dea041d8-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=83839&min_rtt=83503&rtt_var=17889&sent=6&recv=8&lost=0&retrans=0&sent_bytes=2836&recv_bytes=1173&delivery_rate=36554&cwnd=252&unsent_bytes=0&cid=97f95b20ab9be20d&ts=251&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundX-Cache: CONFIG_NOCACHEAccept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-VersionX-MSEdge-Ref: Ref A: C74CFBD41EF24F7BB41F7BD4337DF4B0 Ref B: BL2AA2030102017 Ref C: 2025-03-26T18:10:14ZDate: Wed, 26 Mar 2025 18:10:15 GMTConnection: closeContent-Length: 0
Source: global traffic	HTTP traffic detected: HTTP/1.1 503 Service UnavailableServer: AkamaiGHostMime-Version: 1.0Content-Type: text/htmlContent-Length: 278Expires: Wed, 26 Mar 2025 18:10:59 GMTDate: Wed, 26 Mar 2025 18:10:59 GMTConnection: closePMUSER_FORMAT_QS: X-CDN-TraceId: 0.0c972e17.1743012659.11e6ac92Access-Control-Allow-Headers: Access-Control-Allow-Credentials: falseAccess-Control-Allow-Methods: GET, OPTIONS, POSTAccess-Control-Allow-Origin:

Source: History.16.dr	String found in binary or memory: http://octopuspro.life/
Source: Reporting and NEL.17.dr	String found in binary or memory: https://a.nel.cloudflare.com/report/v4?s=9QEJGKPfQebdzI7EQm3LhMmeS88mWfTuPyzoeOmlFkUxDuN46HIlNo1gzY3
Source: Reporting and NEL.17.dr	String found in binary or memory: https://a.nel.cloudflare.com/report/v4?s=DqNqKnZhh3biWqc4CnouRDGaeEv6W3DzKu8wIWUz6hQ00T7dplIaS%2BwDo
Source: chromecache_533.1.dr, chromecache_546.1.dr	String found in binary or memory: https://api.toivaex.site
Source: 000003.log2.16.dr	String found in binary or memory: https://api.toivaex.site/storage/topic/20230922/d470331eb5fc052cbec7b618ddbd2e52.png
Source: chromecache_533.1.dr, chromecache_546.1.dr	String found in binary or memory: https://app.vskefu.com
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://assets.msn.cn/resolver/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://assets.msn.com/resolver/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://bard.google.com/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://bit.ly/wb-precache
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://browser.events.data.msn.cn/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://browser.events.data.msn.com/
Source: Reporting and NEL.17.dr	String found in binary or memory: https://bzib.nelreports.net/api/report?cat=bingbusiness
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://c.msn.com/
Source: offscreendocument_main.js.16.dr, service_worker_bin_prod.js.16.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/mathjax/
Source: Web Data.16.dr	String found in binary or memory: https://ch.search.yahoo.com/favicon.icohttps://ch.search.yahoo.com/search
Source: Web Data.16.dr	String found in binary or memory: https://ch.search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command=
Source: manifest.json.16.dr	String found in binary or memory: https://chrome.google.com/webstore/
Source: manifest.json.16.dr	String found in binary or memory: https://chromewebstore.google.com/
Source: cf7f6554-1068-404a-9c89-011a37b2b6b3.tmp.17.dr	String found in binary or memory: https://clients2.google.com
Source: manifest.json0.16.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: cf7f6554-1068-404a-9c89-011a37b2b6b3.tmp.17.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: Reporting and NEL.17.dr	String found in binary or memory: https://deff.nelreports.net/api/report
Source: Reporting and NEL.17.dr	String found in binary or memory: https://deff.nelreports.net/api/report?cat=msn
Source: manifest.json0.16.dr	String found in binary or memory: https://docs.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-autopush.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-0.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-1.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-2.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-3.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-4.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-5.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-daily-6.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-preprod.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive-staging.corp.google.com/
Source: manifest.json0.16.dr	String found in binary or memory: https://drive.google.com/
Source: Web Data.16.dr	String found in binary or memory: https://duckduckgo.com/ac/?q=
Source: Web Data.16.dr	String found in binary or memory: https://duckduckgo.com/chrome_newtab
Source: Web Data.16.dr	String found in binary or memory: https://duckduckgo.com/favicon.icohttps://duckduckgo.com/?q=
Source: 000003.log9.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/addressbar_uu_files.en-gb/1.0.2/asset?sv=2017-07-29&sr
Source: 000003.log9.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/arbitration_priority_list/4.0.5/asset?assetgroup=Arbit
Source: 000003.log9.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/arbitration_priority_list/4.0.5/asset?sv=2017-07-29&sr
Source: 000003.log7.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/domains_config_gz/2.8.76/asset?assetgroup=EntityExtrac
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_163_music.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_M365_dark.png/1.7.32/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_M365_hc.png/1.7.32/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_M365_light.png/1.7.32/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_action_center_hc.png/1.2.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_action_center_maximal_dark.png/1.2.1/ass
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_action_center_maximal_light.png/1.2.1/as
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_amazon_music_light.png/1.4.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_apple_music.png/1.4.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_bard_light.png/1.0.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_active_dark.png/1.1.17/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_active_dark.png/1.6.8/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_active_light.png/1.1.17/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_active_light.png/1.6.8/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_hc.png/1.1.17/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_chatB_hc.png/1.6.8/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_collections_hc.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_collections_maximal_dark.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_collections_maximal_light.png/1.0.3/asse
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_deezer.png/1.4.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_demo_dark.png/1.0.6/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_demo_light.png/1.0.6/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_designer_color.png/1.0.14/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_designer_hc.png/1.0.14/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_edrop_hc.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_edrop_maximal_dark.png/1.1.12/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_edrop_maximal_light.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_etree_hc.png/1.2.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_etree_maximal_dark.png/1.2.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_etree_maximal_light.png/1.2.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_excel.png/1.7.32/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_facebook_messenger.png/1.5.14/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_gaana.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_hc.png/1.7.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_hc_controller.png/1.7.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_hc_joystick.png/1.7.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_dark.png/1.7.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_dark_controller.png/1.7.1/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_dark_joystick.png/1.7.1/as
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_light.png/1.7.1/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_light_controller.png/1.7.1
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_games_maximal_light_joystick.png/1.7.1/a
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_gmail.png/1.5.4/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_help.png/1.0.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_history_hc.png/0.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_history_maximal_dark.png/0.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_history_maximal_light.png/0.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_iHeart.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_image_creator_hc.png/1.0.14/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_image_creator_maximal_dark.png/1.0.14/as
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_image_creator_maximal_light.png/1.0.14/a
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_instagram.png/1.4.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_ku_gou.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_last.png/1.0.3/asset
Source: 000003.log9.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_manifest_gz/4.7.107/asset?assetgroup=Sho
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_maximal_follow_dark.png/1.1.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_maximal_follow_hc.png/1.1.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_maximal_follow_light.png/1.1.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_naver_vibe.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_onenote_dark.png/1.4.9/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_onenote_hc.png/1.4.9/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_onenote_light.png/1.4.9/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_outlook_dark.png/1.9.10/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_outlook_hc.png/1.9.10/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_outlook_light.png/1.9.10/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_performance_hc.png/1.1.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_performance_maximal_dark.png/1.1.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_performance_maximal_light.png/1.1.0/asse
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_power_point.png/1.7.32/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_qq.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_refresh_dark.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_refresh_hc.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_refresh_light.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_rewards_hc.png/1.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_rewards_maximal_dark.png/1.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_rewards_maximal_light.png/1.1.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_search_hc.png/1.3.6/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_search_maximal_dark.png/1.3.6/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_search_maximal_light.png/1.3.6/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_dark.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_dark.png/1.4.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_dark.png/1.5.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_hc.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_hc.png/1.4.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_hc.png/1.5.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_light.png/1.1.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_light.png/1.4.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_settings_light.png/1.5.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_shopping_hc.png/1.4.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_shopping_maximal_dark.png/1.4.0/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_shopping_maximal_light.png/1.4.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_skype_dark.png/1.3.20/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_skype_hc.png/1.3.20/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_skype_light.png/1.3.20/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_sound_cloud.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_spotify.png/1.4.12/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_teams_dark.png/1.2.19/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_teams_hc.png/1.2.19/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_teams_light.png/1.2.19/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_telegram.png/1.0.4/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_theater_hc.png/1.0.5/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_theater_maximal_dark.png/1.0.5/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_theater_maximal_light.png/1.0.5/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_tidal.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_tik_tok_light.png/1.0.5/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_toolbox_hc.png/1.5.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_toolbox_maximal_dark.png/1.5.13/asset
Source: HubApps Icons.16.dr, 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_toolbox_maximal_light.png/1.5.13/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_twitter_light.png/1.0.9/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_vk.png/1.0.3/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_whats_new.png/1.0.0/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_whatsapp_light.png/1.4.11/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_word.png/1.7.32/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_yandex_music.png/1.0.10/asset
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/edge_hub_apps_youtube.png/1.4.14/asset
Source: 000003.log7.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/extraction.autofillFull.en-us/1.0.0/asset?assetgroup=E
Source: 000003.log9.16.dr	String found in binary or memory: https://edgeassetservice.azureedge.net/assets/signal_triggers/1.13.3/asset?sv=2017-07-29&sr=c&sig=Nt
Source: Network Action Predictor.16.dr	String found in binary or memory: https://edgecdn-embza6g8cacagcbn.z01.azurefd.net/
Source: Favicons.16.dr	String found in binary or memory: https://edgestatic.azureedge.net/welcome/static/favicon.png
Source: Favicons.16.dr	String found in binary or memory: https://edgestatic.azureedge.net/welcome/static/favicon.pngk
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://excel.new?from=EdgeM365Shoreline
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://gaana.com/
Source: chromecache_529.1.dr	String found in binary or memory: https://github.com/uuidjs/uuid#getrandomvalues-not-supported
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://i.y.qq.com/n2/m/index.html
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://img-s-msn-com.akamaized.net/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://img-s.msn.cn/tenant/amp/entityid/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://latest.web.skype.com/?browsername=edge_canary_shoreline
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://m.kugou.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://m.soundcloud.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://m.vk.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://mail.google.com/mail/mu/mp/266/#tl/Inbox
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://manifestdeliveryservice.edgebrowser.microsoft-staging-falcon.io/app/page-context-demo
Source: Cookies.17.dr	String found in binary or memory: https://msn.comXID/
Source: Cookies.17.dr	String found in binary or memory: https://msn.comXIDv10
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://music.amazon.com
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://music.apple.com
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://music.yandex.com
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://ntp.msn.cn/edge/ntp
Source: 000003.log2.16.dr, 2cc80dabc69f58b6_0.16.dr	String found in binary or memory: https://ntp.msn.com
Source: 000003.log10.16.dr, 000003.log1.16.dr	String found in binary or memory: https://ntp.msn.com/
Source: 000003.log10.16.dr	String found in binary or memory: https://ntp.msn.com/0
Source: QuotaManager.16.dr	String found in binary or memory: https://ntp.msn.com/_default
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://ntp.msn.com/edge/ntp
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://ntp.msn.com/edge/ntp/service-worker.js?bundles=latest&riverAgeMinutes=2880&navAgeMinutes=288
Source: Session_13387486198780599.16.dr	String found in binary or memory: https://ntp.msn.com/edge/ntp?locale=en-GB&title=New%20tab&dsp=1&sp=Bing&isFREModalBackground=1&start
Source: QuotaManager.16.dr	String found in binary or memory: https://ntp.msn.com/ntp.msn.com_default
Source: 2cc80dabc69f58b6_0.16.dr	String found in binary or memory: https://ntp.msn.comService-Worker-Allowed:
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://open.spotify.com
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.live.com/calendar/view/agenda/quickcapture/moreDetails?isExtension=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.live.com/mail/0/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.live.com/mail/compose?isExtension=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.live.com/mail/inbox?isExtension=true&sharedHeader=1&nlp=1&client_flight=outlookedge
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.office.com/calendar/view/agenda/quickcapture/moreDetails?isExtension=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.office.com/mail/0/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.office.com/mail/compose?isExtension=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://outlook.office.com/mail/inbox?isExtension=true&sharedHeader=1&client_flight=outlookedge
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://powerpoint.new?from=EdgeM365Shoreline
Source: chromecache_533.1.dr, chromecache_546.1.dr	String found in binary or memory: https://qb.toivaex2.online
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://sb.scorecardresearch.com/
Source: 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737321931036App.gif
Source: 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737321934995App.gif
Source: 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737322241556photo_2025-01-19_16-28-54.j
Source: Favicons.16.dr, 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737322246582photo_2025-01-19_16-28-54.j
Source: 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737323341061photo_2025-01-19_16-48-53.j
Source: 000003.log2.16.dr	String found in binary or memory: https://shangchengossvip.oss-ap-northeast-1.aliyuncs.com/v4/1737323349737photo_2025-01-19_16-48-53.j
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://srtb.msn.cn/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://srtb.msn.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://tidal.com/
Source: 000003.log2.16.dr	String found in binary or memory: https://touchmplexs.shop/en.html?eid=f992f07138a96456afb1e9c53e85c530&language=tw
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://twitter.com/
Source: edgeSettings_2.0-48b11410dc937a1723bf4c5ad33ecdb286d8ec69544241bc373f753e64b396c1.16.dr	String found in binary or memory: https://unitedstates1.ss.wd.microsoft.us/
Source: edgeSettings_2.0-48b11410dc937a1723bf4c5ad33ecdb286d8ec69544241bc373f753e64b396c1.16.dr	String found in binary or memory: https://unitedstates2.ss.wd.microsoft.us/
Source: edgeSettings_2.0-48b11410dc937a1723bf4c5ad33ecdb286d8ec69544241bc373f753e64b396c1.16.dr	String found in binary or memory: https://unitedstates4.ss.wd.microsoft.us/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://vibe.naver.com/today
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://web.skype.com/?browsername=edge_canary_shoreline
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://web.skype.com/?browsername=edge_stable_shoreline
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://web.telegram.org/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://web.whatsapp.com
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://word.new?from=EdgeM365Shoreline
Source: Favicons.16.dr	String found in binary or memory: https://www.aliexpress.com/
Source: Favicons.16.dr	String found in binary or memory: https://www.amazon.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.deezer.com/
Source: content.js.16.dr, content_new.js.16.dr	String found in binary or memory: https://www.google.com/chrome
Source: Web Data.16.dr	String found in binary or memory: https://www.google.com/images/branding/product/ico/googleg_lodp.ico
Source: service_worker_bin_prod.js.16.dr	String found in binary or memory: https://www.gstatic.com/_/apps-fileview/_/js/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.iheart.com/podcast/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.instagram.com
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.last.fm/
Source: Favicons.16.dr	String found in binary or memory: https://www.live.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.messenger.com
Source: 000003.log2.16.dr	String found in binary or memory: https://www.msn.com
Source: 000003.log1.16.dr	String found in binary or memory: https://www.msn.com/
Source: 2cc80dabc69f58b6_1.16.dr	String found in binary or memory: https://www.msn.com/web-notification-icon-light.png
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/cgSideBar/widget?experiences=CasualGamesHub&sharedHeader=1
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/cgSideBar/widget?experiences=CasualGamesHub&sharedHeader=1&game
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/cgSideBar/widget?experiences=CasualGamesHub&sharedHeader=1&item
Source: Session_13387486198780599.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/distribution/edgewelcome?experiences=DistributionPage&ocid=edge
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/gaming/widget?experiences=CasualGamesHub&sharedHeader=1
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/gaming/widget?experiences=CasualGamesHub&sharedHeader=1&item=fl
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.msn.com/widgets/fullpage/gaming/widget?experiences=CasualGamesHub&sharedHeader=1&playInS
Source: Favicons.16.dr	String found in binary or memory: https://www.netflix.com/
Source: 000003.log2.16.dr	String found in binary or memory: https://www.octopuspro.life
Source: Login Data.16.dr, Session_13387486198780599.16.dr, 000003.log1.16.dr	String found in binary or memory: https://www.octopuspro.life/
Source: Session_13387486198780599.16.dr, WebAssistDatabase.16.dr, History.16.dr	String found in binary or memory: https://www.octopuspro.life/#/login
Source: History.16.dr	String found in binary or memory: https://www.octopuspro.life/#/loginOCTOPUS
Source: WebAssistDatabase.16.dr	String found in binary or memory: https://www.octopuspro.life/#/loginOCTOPUSg
Source: Network Action Predictor.16.dr	String found in binary or memory: https://www.octopuspro.life/#/loginhttps://www.octopuspro.life/#/login
Source: Shortcuts.16.dr	String found in binary or memory: https://www.octopuspro.life/#/loginhttps://www.octopuspro.life/#/loginhttps://www.octopuspro.life/#/
Source: Session_13387486198780599.16.dr, WebAssistDatabase.16.dr, History.16.dr	String found in binary or memory: https://www.octopuspro.life/#/register
Source: History.16.dr	String found in binary or memory: https://www.octopuspro.life/#/registerOCTOPUS
Source: WebAssistDatabase.16.dr	String found in binary or memory: https://www.octopuspro.life/#/registerOCTOPUSg
Source: Login Data.16.dr	String found in binary or memory: https://www.octopuspro.life//
Source: Login Data.16.dr	String found in binary or memory: https://www.octopuspro.life/28288282828
Source: Login Data.16.dr	String found in binary or memory: https://www.octopuspro.life/28288282828https://www.octopuspro.life/
Source: Login Data.16.dr	String found in binary or memory: https://www.octopuspro.life/28288282828v10
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.office.com
Source: Favicons.16.dr	String found in binary or memory: https://www.office.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.officeplus.cn/?sid=shoreline&endpoint=OPPC&source=OPCNshoreline
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotes?isEdgeHub=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotes?isEdgeHub=true&auth=1
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotes?isEdgeHub=true&auth=2
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotesstaging?isEdgeHub=true
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotesstaging?isEdgeHub=true&auth=1
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.onenote.com/stickynotesstaging?isEdgeHub=true&auth=2
Source: Favicons.16.dr	String found in binary or memory: https://www.reddit.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.tiktok.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://www.youtube.com
Source: Favicons.16.dr	String found in binary or memory: https://www.youtube.com/
Source: 6254aada-4cab-498a-a029-4e9208cf1fb3.tmp.16.dr	String found in binary or memory: https://y.music.163.com/m/

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 50066 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 50007 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50007
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 50064 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49679 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.94:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.251.40.228:443 -> 192.168.2.16:49749 version: TLS 1.2

Creates files inside the system directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\scoped_dir3460_1448113233

Jump to behavior

Deletes files inside the Windows folder

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\scoped_dir3460_1448113233

Jump to behavior

Source: classification engine

Classification label: clean1.win@85/351@55/32

Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

File created: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\BrowserMetrics\BrowserMetrics-67E442F4-1C30.pma

Jump to behavior

Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

File created: C:\Users\user\AppData\Local\Temp\e704adde-a275-48d5-9f7d-527fc41e3759.tmp

Jump to behavior

Source: Login Data.16.dr

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1924,i,12072782508214886044,16553714955938646618,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2212 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.octopuspro.life/"
Source: unknown	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2156 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:3
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-GB --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=6360 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=6636 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --lang=en-GB --service-sandbox-type=collections --mojo-platform-channel-handle=3420 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-GB --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=4600 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=7004 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1924,i,12072782508214886044,16553714955938646618,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2212 /prefetch:3	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2156 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:3	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-GB --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=6360 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=6636 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-GB --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=4600 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --lang=en-GB --service-sandbox-type=collections --mojo-platform-channel-handle=3420 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=7004 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-GB --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=4600 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=7004 --field-trial-handle=2052,i,362564186211522737,924032608937213350,262144 /prefetch:8	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: Web Data.16.dr	Binary or memory string: outlook.office365.comVMware20,11696584680t
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - COM.HKVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - GDCDYNVMware20,11696584680p
Source: Web Data.16.dr	Binary or memory string: Canara Change Transaction PasswordVMware20,11696584680^
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - EU WestVMware20,11696584680n
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - HKVMware20,11696584680]
Source: Web Data.16.dr	Binary or memory string: microsoft.visualstudio.comVMware20,11696584680x
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - non-EU EuropeVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: outlook.office.comVMware20,11696584680s
Source: Web Data.16.dr	Binary or memory string: secure.bankofamerica.comVMware20,11696584680\|UE
Source: Web Data.16.dr	Binary or memory string: Canara Transaction PasswordVMware20,11696584680x
Source: Web Data.16.dr	Binary or memory string: account.microsoft.com/profileVMware20,11696584680u
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - EU East & CentralVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: ms.portal.azure.comVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: Canara Transaction PasswordVMware20,11696584680}
Source: Web Data.16.dr	Binary or memory string: bankofamerica.comVMware20,11696584680x
Source: Web Data.16.dr	Binary or memory string: turbotax.intuit.comVMware20,11696584680t
Source: Web Data.16.dr	Binary or memory string: Test URL for global passwords blocklistVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: Canara Change Transaction PasswordVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: www.interactivebrokers.co.inVMware20,11696584680~
Source: Web Data.16.dr	Binary or memory string: www.interactivebrokers.comVMware20,11696584680}
Source: Web Data.16.dr	Binary or memory string: AMC password management pageVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: trackpan.utiitsl.comVMware20,11696584680h
Source: Web Data.16.dr	Binary or memory string: interactivebrokers.comVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: Interactive Brokers - NDCDYNVMware20,11696584680z
Source: Web Data.16.dr	Binary or memory string: tasks.office.comVMware20,11696584680o
Source: Web Data.16.dr	Binary or memory string: discord.comVMware20,11696584680f
Source: Web Data.16.dr	Binary or memory string: global block list test formVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: netportal.hdfcbank.comVMware20,11696584680
Source: Web Data.16.dr	Binary or memory string: dev.azure.comVMware20,11696584680j
Source: Web Data.16.dr	Binary or memory string: interactivebrokers.co.inVMware20,11696584680d

ID:	1649417
Product:	CloudBasic
Start time:	19:08:49
Start date:	26.03.2025
Cookbook:	defaultwindowsinteractivecookbook.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://www.octopuspro.life/

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Networking

System Summary

Malware Analysis System Evasion

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://www.octopuspro.life/

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Networking

System Summary

Malware Analysis System Evasion

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://www.octopuspro.life/