Source: global traffic | HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=310091&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:FE8E72D9-9324-F27F-91C7-FEE66B531521&ctry=US&time=20220308T162905Z&lc=en-US&pl=en-US&idtp=mid&uid=8706df6d-9543-4122-b8e1-1fcdd5939be6&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=d5cb2190cdcb48f5b142d01a3f2f311d&ctmode=MultiSession&arch=x64&cdm=1&cdmver=10.0.17134.1&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.17134.1&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=1418274&metered=false&nettype=ethernet&npid=sc-310091&oemName=VMware%2C%20Inc.&oemid=VMware%2C%20Inc.&ossku=Professional&rver=2&smBiosDm=VMware7%2C1&tl=2&tsu=1418274&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing= HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50583&fs=32099&sc=6Cache-Control: no-cacheMS-CV: GDgnYUGRXkOhGS9+.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: tch0,m301,m751,mA01,mT01Host: arc.msn.comConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=314559&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:FE8E72D9-9324-F27F-91C7-FEE66B531521&ctry=US&time=20220308T162905Z&lc=en-US&pl=en-US&idtp=mid&uid=8706df6d-9543-4122-b8e1-1fcdd5939be6&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=aaf728aa45654491a37deadb4fd192eb&ctmode=MultiSession&arch=x64&cdm=1&cdmver=10.0.17134.1&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.17134.1&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=1418274&metered=false&nettype=ethernet&npid=sc-314559&oemName=VMware%2C%20Inc.&oemid=VMware%2C%20Inc.&ossku=Professional&smBiosDm=VMware7%2C1&tl=2&tsu=1418274&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing= HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50583&fs=32099&sc=6Cache-Control: no-cacheMS-CV: GDgnYUGRXkOhGS9+.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: tch0,m301,m751,mA01,mT01Host: arc.msn.comConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1 HTTP/1.1Host: clients2.google.comConnection: keep-aliveX-Goog-Update-Interactivity: fgX-Goog-Update-AppId: nmmhkkegccagdldgiimedpiccmgmieda,pkedcjkdefgpdelpbcmbmeomcjbeemfmX-Goog-Update-Updater: chromecrx-85.0.4183.121Sec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /proactive/v2/spark?cc=US&setLang=en-US HTTP/1.1X-Search-CortanaAvailableCapabilities: CortanaExperience,SpeechLanguageX-Search-SafeSearch: ModerateAccept-Encoding: gzip, deflateX-Device-MachineId: {A2AB526A-D38D-4FC9-8BA0-E34B8D6354E8}X-Device-IsBatteryCertified: falseX-UserAgeClass: UnknownX-BM-Market: USX-BM-DateFormat: M/d/yyyyX-CortanaAccessAboveLock: falseX-Device-OSSKU: 48X-Device-IsBatteryEnabled: falseX-Device-NetworkType: ethernetX-BM-DTZ: -420X-BM-FirstEnabledTime: 132061340710069592X-DeviceID: 0100748C0900F045X-VoiceActivationOn: falseX-Device-AudioCapture: Microphone (High Definition Audio Device)X-Search-TimeZone: Bias=480; DaylightBias=-60; TimeZoneKeyName=Pacific Standard TimeX-BM-Theme: 000000;0078d7X-Search-RPSToken: t%3DEwDgAkR8BAAUcvamItSE/vUHpyZRp3BeyOJPQDsAActggyinXwoPm6ezoZs3atOuqdT0Ty5f1ON9AVBbfGg%2BtZCjYHavyXaq2FVxoR57HiZgM9PS9zv6mWn1hDtnNmwJr6EzCIEZsTSNHTShMlCG26rL1wti8Nc%2BFPpVLbzXM5Gx8bUd8nY7oce3tqoQhosoU2vByoHdNosqvGj3v9eo9Q8V7NwU6vUjYilOM8Z5T1AnR5R63OIyhnP484k/Mi%2B8DJOL4BZ2ZpJWlIKL3H%2BP/8d7a4YjdeqeIa9Qwh6NJxVxPNnlVMRzgtrrPdrjaVGpcIKqwLQdgwNT%2BV9%2B7SWK81gwW4B0n2fZMnhr9V4XHiMV8ElMYqJYsMjJjzWburEDZgAACJdg3yRQBb1VsAEtfm0mflpkmVGKV4IvWqE3I/H7FjA3rOvPF6VP9kjQjX5utC2cpTXES5ywq1%2BQ14PEXddUOkLESuXrPmkAvOGV0FOkeG6vQElOeryel9hfW8ks0cn2Sql3KJ5mkUIxWNLmI%2BphXovQXjY4O4Z///2kZgyj55/kSLCNtYMDBF7CmTRkub0Zy1EC/mWZXuYJR3VXRGCJNsqQLoOh5RVEmaRfm99mGumkDzjkOBrcQub/TnFM5kJuIGPS0eO5gt3EFP%2BFIKeJluJoYlmlUifpm75dVJc9YjbTJmFXmC/FL/K7%2BCC324Xdrz5hFGn/cecoHQD3LW7Wd1wCKTVuYumCQZI5iqOaOBrbQgNH6oOjEsw8DBr3XgqzTmePQpaHYf64PGKMgtoIjOBK6ZqOaO75KwZUGrvvI8HFHfqGO%2BdCYXA/4qvaQsYA//KjulanDtcHEeDuzsU6vfo1EpGtykSDZ4ymDEBq0EZ2Nj7Qa%2BS77x5xkgJEzdvQLhVrXv%2BaKuMv7w64RxawXDihT7rjbjz90ypoDvvKgnVcpiGb09ta%2BM2L0wsvCi2w1cYMARHiV/mVO67aAQ%3D%3D%26p%3DX-Agent-DeviceId: 0100748C0900F045X-BM-CBT: 1653933935User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.10.7.17134; 10.0.0.0.17134.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134X-Device-isOptin: trueAccept-language: en-US, enX-Device-IsEnergyHero: falseX-Device-Touch: falseX-Device-ClientSession: 1FC1FF0B27EF4B57A2D812274DC1A264X-Search-AppId: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUIX-BM-ClientFeatures: pbitcpdisabled,AmbientWidescreen,rs1musicprod,CortanaSPAXamlHeaderHost: www.bing.comConnection: Keep-AliveCookie: MUID=0BA1234E3B2140EBA8746E9F98F8CAA3 |
Source: global traffic | HTTP traffic detected: GET /client/config?cc=US&setlang=en-US HTTP/1.1X-Search-CortanaAvailableCapabilities: CortanaExperience,SpeechLanguageX-Search-SafeSearch: ModerateAccept-Encoding: gzip, deflateX-Device-MachineId: {A2AB526A-D38D-4FC9-8BA0-E34B8D6354E8}X-UserAgeClass: UnknownX-BM-Market: USX-BM-DateFormat: M/d/yyyyX-CortanaAccessAboveLock: falseX-Device-OSSKU: 48X-BM-DTZ: -420X-BM-FirstEnabledTime: 132061340710069592X-DeviceID: 0100748C0900F045X-Search-TimeZone: Bias=480; DaylightBias=-60; TimeZoneKeyName=Pacific Standard TimeX-BM-Theme: 000000;0078d7X-Search-RPSToken: t%3DEwDgAkR8BAAUcvamItSE/vUHpyZRp3BeyOJPQDsAActggyinXwoPm6ezoZs3atOuqdT0Ty5f1ON9AVBbfGg%2BtZCjYHavyXaq2FVxoR57HiZgM9PS9zv6mWn1hDtnNmwJr6EzCIEZsTSNHTShMlCG26rL1wti8Nc%2BFPpVLbzXM5Gx8bUd8nY7oce3tqoQhosoU2vByoHdNosqvGj3v9eo9Q8V7NwU6vUjYilOM8Z5T1AnR5R63OIyhnP484k/Mi%2B8DJOL4BZ2ZpJWlIKL3H%2BP/8d7a4YjdeqeIa9Qwh6NJxVxPNnlVMRzgtrrPdrjaVGpcIKqwLQdgwNT%2BV9%2B7SWK81gwW4B0n2fZMnhr9V4XHiMV8ElMYqJYsMjJjzWburEDZgAACJdg3yRQBb1VsAEtfm0mflpkmVGKV4IvWqE3I/H7FjA3rOvPF6VP9kjQjX5utC2cpTXES5ywq1%2BQ14PEXddUOkLESuXrPmkAvOGV0FOkeG6vQElOeryel9hfW8ks0cn2Sql3KJ5mkUIxWNLmI%2BphXovQXjY4O4Z///2kZgyj55/kSLCNtYMDBF7CmTRkub0Zy1EC/mWZXuYJR3VXRGCJNsqQLoOh5RVEmaRfm99mGumkDzjkOBrcQub/TnFM5kJuIGPS0eO5gt3EFP%2BFIKeJluJoYlmlUifpm75dVJc9YjbTJmFXmC/FL/K7%2BCC324Xdrz5hFGn/cecoHQD3LW7Wd1wCKTVuYumCQZI5iqOaOBrbQgNH6oOjEsw8DBr3XgqzTmePQpaHYf64PGKMgtoIjOBK6ZqOaO75KwZUGrvvI8HFHfqGO%2BdCYXA/4qvaQsYA//KjulanDtcHEeDuzsU6vfo1EpGtykSDZ4ymDEBq0EZ2Nj7Qa%2BS77x5xkgJEzdvQLhVrXv%2BaKuMv7w64RxawXDihT7rjbjz90ypoDvvKgnVcpiGb09ta%2BM2L0wsvCi2w1cYMARHiV/mVO67aAQ%3D%3D%26p%3DX-Agent-DeviceId: 0100748C0900F045X-BM-CBT: 1653933935User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.10.7.17134; 10.0.0.0.17134.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134X-Device-isOptin: trueAccept-language: en-US, enX-Device-Touch: falseX-Device-ClientSession: 1FC1FF0B27EF4B57A2D812274DC1A264X-Search-AppId: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUIX-BM-ClientFeatures: pbitcpdisabled,AmbientWidescreen,rs1musicprod,CortanaSPAXamlHeaderHost: www.bing.comConnection: Keep-AliveCookie: MUID=0BA1234E3B2140EBA8746E9F98F8CAA3 |
Source: global traffic | HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=338389&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:FE8E72D9-9324-F27F-91C7-FEE66B531521&ctry=US&time=20220530T180619Z&lc=en-US&pl=en-US&idtp=mid&uid=8706df6d-9543-4122-b8e1-1fcdd5939be6&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=2898ea5b8573487cb04b5f5ed0f6e8cc&ctmode=MultiSession&arch=x64&cdm=1&cdmver=10.0.17134.1&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.17134.1&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=1537891&metered=false&nettype=ethernet&npid=sc-338389&oemName=oqioic%2C%20Inc.&oemid=oqioic%2C%20Inc.&ossku=Professional&smBiosDm=oqioic7%2C1&tl=2&tsu=1537891&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing= HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50583&fs=32099&sc=6X-SDK-HW-TOKEN: t=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&p=Cache-Control: no-cacheMS-CV: 0Ep6OosQx0SFLK2I.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: tch0,m301,m751,mA01,mT01Host: arc.msn.comConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=280815&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:FE8E72D9-9324-F27F-91C7-FEE66B531521&ctry=US&time=20220530T180620Z&lc=en-US&pl=en-US&idtp=mid&uid=8706df6d-9543-4122-b8e1-1fcdd5939be6&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=4bc19ff8854e46e1a5bc0de79b57d181&ctmode=MultiSession&arch=x64&cdm=1&cdmver=10.0.17134.1&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.17134.1&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=1537891&metered=false&nettype=ethernet&npid=sc-280815&oemName=oqioic%2C%20Inc.&oemid=oqioic%2C%20Inc.&ossku=Professional&smBiosDm=oqioic7%2C1&tl=2&tsu=1537891&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing= HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50583&fs=32099&sc=6X-SDK-HW-TOKEN: t=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&p=Cache-Control: no-cacheMS-CV: 0Ep6OosQx0SFLK2I.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: tch0,m301,m751,mA01,mT01Host: arc.msn.comConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Thu, 20 Apr 2017 16:10:39 GMTUser-Agent: Microsoft BITS/7.8Host: fs.microsoft.com |
Source: global traffic | HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=338387&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:FE8E72D9-9324-F27F-91C7-FEE66B531521&ctry=US&time=20220530T180640Z&lc=en-US&pl=en-US&idtp=mid&uid=8706df6d-9543-4122-b8e1-1fcdd5939be6&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=1f3f7b2daad748c0b9cc6fa80c8c314b&ctmode=MultiSession&arch=x64&cdm=1&cdmver=10.0.17134.1&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.17134.1&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=1537891&metered=false&nettype=ethernet&npid=sc-338387&oemName=oqioic%2C%20Inc.&oemid=oqioic%2C%20Inc.&ossku=Professional&rver=2&sc-mode=0&smBiosDm=oqioic7%2C1&tl=2&tsu=1537891&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing= HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50583&fs=32099&sc=6X-SDK-HW-TOKEN: t=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&p=Cache-Control: no-cacheMS-CV: 3Kf5DvDHekuxQHM+.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: tch0,m301,m751,mA01,mT01Host: arc.msn.comConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=338388&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:FE8E72D9-9324-F27F-91C7-FEE66B531521&ctry=US&time=20220530T180640Z&lc=en-US&pl=en-US&idtp=mid&uid=8706df6d-9543-4122-b8e1-1fcdd5939be6&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=4d6575d128834e199744a3f7aaa7e209&ctmode=MultiSession&arch=x64&cdm=1&cdmver=10.0.17134.1&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.17134.1&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=1537891&metered=false&nettype=ethernet&npid=sc-338388&oemName=oqioic%2C%20Inc.&oemid=oqioic%2C%20Inc.&ossku=Professional&rver=2&smBiosDm=oqioic7%2C1&tl=2&tsu=1537891&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing= HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50583&fs=32099&sc=6X-SDK-HW-TOKEN: t=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&p=Cache-Control: no-cacheMS-CV: 3Kf5DvDHekuxQHM+.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: tch0,m301,m751,mA01,mT01Host: arc.msn.comConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /cms/api/am/imageFileData/RE4Ihjj?ver=0f2f HTTP/1.1Accept: */*Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134Host: img-prod-cms-rt-microsoft-com.akamaized.netConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /cms/api/am/imageFileData/RE4IvyQ?ver=fb8b HTTP/1.1Accept: */*Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134Host: img-prod-cms-rt-microsoft-com.akamaized.netConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /cms/api/am/imageFileData/RWyTNz?ver=29f2 HTTP/1.1Accept: */*Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134Host: img-prod-cms-rt-microsoft-com.akamaized.netConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /cms/api/am/imageFileData/RWP8kk?ver=8c62 HTTP/1.1Accept: */*Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134Host: img-prod-cms-rt-microsoft-com.akamaized.netConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /cms/api/am/imageFileData/RWP0UC?ver=2f44 HTTP/1.1Accept: */*Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134Host: img-prod-cms-rt-microsoft-com.akamaized.netConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /cms/api/am/imageFileData/RWyWLx?ver=e813 HTTP/1.1Accept: */*Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134Host: img-prod-cms-rt-microsoft-com.akamaized.netConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=310091&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:FE8E72D9-9324-F27F-91C7-FEE66B531521&ctry=US&time=20220530T180717Z&lc=en-US&pl=en-US&idtp=mid&uid=8706df6d-9543-4122-b8e1-1fcdd5939be6&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=73f134361e284620be6aba1564d149f3&ctmode=MultiSession&arch=x64&cdm=1&cdmver=10.0.17134.1&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.17134.1&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=1537891&metered=false&nettype=ethernet&npid=sc-310091&oemName=oqioic%2C%20Inc.&oemid=oqioic%2C%20Inc.&ossku=Professional&rver=2&smBiosDm=oqioic7%2C1&tl=2&tsu=1537891&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing= HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50583&fs=32099&sc=6X-SDK-HW-TOKEN: t=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&p=Cache-Control: no-cacheMS-CV: a5ILflxJUkW9/ZIK.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: tch0,m301,m751,mA01,mT01Host: arc.msn.comConnection: Keep-Alive |
Source: global traffic | HTTP traffic detected: GET /SLS/%7B9482F4B4-E343-43B6-B170-9A65BC822C77%7D/x64/10.0.17134.1/0?CH=17&L=en-US&P=&PT=0x30&WUA=10.0.17134.1&MK=cwtLHkwEGLyTKwE&MD=hx5yxEAR HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/1.81Host: sls.update.microsoft.com |
Source: global traffic | HTTP traffic detected: GET / HTTP/1.1Host: gfs214n125.userstorage.mega.co.nzConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9 |