Windows Analysis Report
https://forms.gle/sxFUT7YRxjaFsuNq6

Overview

General Information

Sample URL:	https://forms.gle/sxFUT7YRxjaFsuNq6
Analysis ID:	1538462
Infos:

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Detected non-DNS traffic on DNS port

Detected suspicious crossdomain redirect

Classification

Signatures

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.222.162.32:443 -> 192.168.2.4:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.4:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.164.15:443 -> 192.168.2.4:51413 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.4:51414 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:51415 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:51416 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:51419 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.4:51412 -> 162.159.36.2:53

Detected suspicious crossdomain redirect

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

HTTP traffic: Redirect from: forms.gle to https://docs.google.com/forms/d/e/1faipqlseosl99tyv3kv8jimuimrerzjxw_h7xxrefcfbjnsdmd-scja/viewform?usp=send_form

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.164.15
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.164.15

Source: global traffic	HTTP traffic detected: GET /sxFUT7YRxjaFsuNq6 HTTP/1.1Host: forms.gleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /forms/d/e/1FAIpQLSeosl99tYV3KV8jIMUimreRZjxW_h7xXREfcFbjnsdmd-sCjA/viewform?usp=send_form HTTP/1.1Host: docs.google.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /B-vjoRYNSIlQl8HAsCemiW6akJ2yHBC4b2EoA2G3HKhmVs2CcpaqCpP35m7VNUTdetN_2n66_fMVg5s9CuDEBvQYkeP5IkOVv7IwxdcjVEC_JCG9ElXIY26bHMO1MWo2zA=w1200 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://docs.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /B-vjoRYNSIlQl8HAsCemiW6akJ2yHBC4b2EoA2G3HKhmVs2CcpaqCpP35m7VNUTdetN_2n66_fMVg5s9CuDEBvQYkeP5IkOVv7IwxdcjVEC_JCG9ElXIY26bHMO1MWo2zA=w1200 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /forms/d/e/1FAIpQLSeosl99tYV3KV8jIMUimreRZjxW_h7xXREfcFbjnsdmd-sCjA/font/getmetadata HTTP/1.1Host: docs.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: S=spreadsheet_forms=g30FHL1t_D4lRnpGzJDx8jNEVbHITGCtpH_nD9q39A8; COMPASS=spreadsheet_forms=CjIACWuJV5OVrjCVPU0cvRjOgMYHeXD-JL08g72j8BIVcidKH18iK0CGAnQxoB0tCboSchDRzNi4Bho0AAlriVcyYGeNgQLJiOUBrqTURjl_CwsshAOFhsFwT2_jBUAEkDRrKETr31T9TEr2qo55Jw==; NID=518=bxHt4WO5_sV29nt4rFTs_OEeUQyEqyvXGhS0B8Fg_7gAdzbAudnn8jqiMcSuT6QmrDiKii4IeingYHtdLROTeMeo97Cw4HChmYa_ejcC71WT10bPP9ptFK_8qVl4SR5PV3Pr3zibCr8-qHMRBaUgpMejFZ-gakVkySrDRSRfJsx0_OeMI6WQv8O7Cg
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=bxHt4WO5_sV29nt4rFTs_OEeUQyEqyvXGhS0B8Fg_7gAdzbAudnn8jqiMcSuT6QmrDiKii4IeingYHtdLROTeMeo97Cw4HChmYa_ejcC71WT10bPP9ptFK_8qVl4SR5PV3Pr3zibCr8-qHMRBaUgpMejFZ-gakVkySrDRSRfJsx0_OeMI6WQv8O7Cg
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=bxHt4WO5_sV29nt4rFTs_OEeUQyEqyvXGhS0B8Fg_7gAdzbAudnn8jqiMcSuT6QmrDiKii4IeingYHtdLROTeMeo97Cw4HChmYa_ejcC71WT10bPP9ptFK_8qVl4SR5PV3Pr3zibCr8-qHMRBaUgpMejFZ-gakVkySrDRSRfJsx0_OeMI6WQv8O7Cg
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=cS9AprGcEg7pCdO&MD=KDLXwNkd HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /clientwebservice/ping HTTP/1.1Connection: Keep-AliveUser-Agent: DNS resiliency checker/1.0Host: fe3cr.delivery.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /sls/ping HTTP/1.1Connection: Keep-AliveUser-Agent: DNS resiliency checker/1.0Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=cS9AprGcEg7pCdO&MD=KDLXwNkd HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=cS9AprGcEg7pCdO&MD=KDLXwNkd HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: chromecache_159.2.dr, chromecache_153.2.dr

String found in binary or memory: Nf=w(["https://sandbox.google.com/tools/feedback/"]),Of=w(["https://www.google.cn/tools/feedback/"]),Pf=w(["https://help.youtube.com/tools/feedback/"]),Qf=w(["https://asx-frontend-staging.corp.google.com/inapp/"]),Rf=w(["https://asx-frontend-staging.corp.google.com/tools/feedback/"]),Sf=w(["https://localhost.corp.google.com/inapp/"]),Tf=w(["https://localhost.proxy.googlers.com/inapp/"]),Uf=V(wf),Vf=[V(xf),V(yf)],Wf=[V(zf),V(Af),V(Bf),V(Cf),V(Df),V(Ef),V(Ff),V(Gf),V(Hf),V(If)],Xf=[V(Jf),V(Kf)],Yf= equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: forms.gle
Source: global traffic	DNS traffic detected: DNS query: docs.google.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: lh4.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: play.google.com
Source: global traffic	DNS traffic detected: DNS query: 15.164.165.52.in-addr.arpa

Source: unknown

HTTP traffic detected: POST /forms/d/e/1FAIpQLSeosl99tYV3KV8jIMUimreRZjxW_h7xXREfcFbjnsdmd-sCjA/naLogImpressions HTTP/1.1Host: docs.google.comConnection: keep-aliveContent-Length: 5335sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"X-Same-Domain: 1Content-Type: application/x-www-form-urlencoded;charset=UTF-8sec-ch-ua-mobile: ?0X-Client-Deadline-Ms: 20000User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://docs.google.comX-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://docs.google.com/forms/d/e/1FAIpQLSeosl99tYV3KV8jIMUimreRZjxW_h7xXREfcFbjnsdmd-sCjA/viewform?usp=send_formAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: S=spreadsheet_forms=g30FHL1t_D4lRnpGzJDx8jNEVbHITGCtpH_nD9q39A8; COMPASS=spreadsheet_forms=CjIACWuJV5OVrjCVPU0cvRjOgMYHeXD-JL08g72j8BIVcidKH18iK0CGAnQxoB0tCboSchDRzNi4Bho0AAlriVcyYGeNgQLJiOUBrqTURjl_CwsshAOFhsFwT2_jBUAEkDRrKETr31T9TEr2qo55Jw==; NID=518=zMAsN-USReiBZWCmk_wUpgchwj_HoWndImrZCGPCatQyGStYpmyli9ar4YYyQN5MV47an_URnr_TNkXwBpapf71RxnTssEORYC1DMv3-HtFiZ6jJnROyBfN3mcZH5pZE4VNO8wvNPeimXIy_HilFro7ADMGf5Yvz5bSKSxZeM2D8Njuwaw

Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: http://localhost.corp.google.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: http://localhost.proxy.googlers.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://apis.google.com/js/client.js
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/inapp/
Source: chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_153.2.dr	String found in binary or memory: https://feedback-pa.clients6.google.com
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/annotator.css
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/render_frame2.html
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback2-test.corp.google.com/inapp/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback2-test.corp.google.com/tools/feedback/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/inapp/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/tools/feedback/%
Source: chromecache_174.2.dr, chromecache_104.2.dr	String found in binary or memory: https://fonts.google.com/license/googlerestricted
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v60/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RP
Source: chromecache_178.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/materialiconsextended/v151/kJEjBvgX7BgnkSrUwT8UnLVc38YydejYY-oE_LvJ.woff
Source: chromecache_174.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVE9eOcEg.woff2)
Source: chromecache_174.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVF9eO.woff2)
Source: chromecache_174.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVFNeOcEg.woff2)
Source: chromecache_174.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVGdeOcEg.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xEIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xFIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xIIzI.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xLIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBBc4.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCBc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCRc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_153.2.dr	String found in binary or memory: https://gstatic.com/uservoice/surveys/resources/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://help.youtube.com/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://localhost.corp.google.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://localhost.proxy.googlers.com/inapp/
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://play.google.com
Source: chromecache_106.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://sandbox.google.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://sandbox.google.com/inapp/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://scone-pa.clients6.google.com
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://ssl.gstatic.com/docs/common/cleardot.gif
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://ssl.gstatic.com/docs/forms/draft_responses_onboarding.png
Source: chromecache_153.2.dr	String found in binary or memory: https://stagingqual-feedback-pa-googleapis.sandbox.google.com
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://support.google.com
Source: chromecache_153.2.dr	String found in binary or memory: https://support.google.com/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://support.google.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://support.google.com/inapp/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://test-scone-pa-googleapis.sandbox.google.com
Source: chromecache_123.2.dr, chromecache_106.2.dr	String found in binary or memory: https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://www.google.cn/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://www.google.cn/tools/feedback/%
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_153.2.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/%
Source: chromecache_153.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/help_panel_binary.js
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
Source: chromecache_153.2.dr	String found in binary or memory: https://www.gstatic.com/uservoice/feedback/client/web/
Source: chromecache_153.2.dr	String found in binary or memory: https://www.gstatic.com/uservoice/surveys/resources/
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://youtube.com/embed/
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://youtube.com/embed/?rel=0

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51507 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51451 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51474 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51497 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51554 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51531 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 51571 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51548 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51502 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51491 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51565 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51559 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51513 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51480 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51456 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51572 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51524 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51438 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51501 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51467 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51492 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51486 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51566 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51450 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51543 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51518 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51537 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51416 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51529 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51433 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51427 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51560 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51475 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51444 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51461 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51532 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 51490 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51469
Source: unknown	Network traffic detected: HTTP traffic on port 51549 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51484 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51469 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51463
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51464
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51461
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51462
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51467
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51468
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51465
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51466
Source: unknown	Network traffic detected: HTTP traffic on port 51512 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51470
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51471
Source: unknown	Network traffic detected: HTTP traffic on port 51478 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 51550 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 51523 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51441 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51474
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51475
Source: unknown	Network traffic detected: HTTP traffic on port 51435 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51472
Source: unknown	Network traffic detected: HTTP traffic on port 51506 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51473
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51478
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51479
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51476
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51477
Source: unknown	Network traffic detected: HTTP traffic on port 51544 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51561 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51452 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51429 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51481
Source: unknown	Network traffic detected: HTTP traffic on port 51473 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51482
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51480
Source: unknown	Network traffic detected: HTTP traffic on port 51446 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51517 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51538 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51555 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 51440 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 51463 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 51434 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51485
Source: unknown	Network traffic detected: HTTP traffic on port 51505 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51457 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51486
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51483
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51484
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51489
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51487
Source: unknown	Network traffic detected: HTTP traffic on port 51562 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51488
Source: unknown	Network traffic detected: HTTP traffic on port 51528 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51428 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51492
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51493
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51490
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51491
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 51533 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51556 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51573 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51468 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51485 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51496
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51497
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51567 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51495
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51498
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51499
Source: unknown	Network traffic detected: HTTP traffic on port 51511 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51479 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51496 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 51423 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51427
Source: unknown	Network traffic detected: HTTP traffic on port 51488 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51548
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51428
Source: unknown	Network traffic detected: HTTP traffic on port 51465 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51549
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51425
Source: unknown	Network traffic detected: HTTP traffic on port 51442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51522 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51546
Source: unknown	Network traffic detected: HTTP traffic on port 51574 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51426
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51547
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51429
Source: unknown	Network traffic detected: HTTP traffic on port 51459 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51471 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51540
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51420
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51541
Source: unknown	Network traffic detected: HTTP traffic on port 51436 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51568 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51423
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51544
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51424
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51545
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51421
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51542
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51413 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51422
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51543
Source: unknown	Network traffic detected: HTTP traffic on port 51545 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51516 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51539 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51438
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51559
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51439
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51436
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51557
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51437
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51558
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51430
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51551
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51431
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51552
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51550
Source: unknown	Network traffic detected: HTTP traffic on port 51431 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51434
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51555
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51435
Source: unknown	Network traffic detected: HTTP traffic on port 51540 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51556
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51432
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51553
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51433
Source: unknown	Network traffic detected: HTTP traffic on port 51527 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51554
Source: unknown	Network traffic detected: HTTP traffic on port 51477 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51551 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51425 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51534 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51449
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51447
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51568
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51448
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51569
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51441
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51562
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51442
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51563
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51560
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51440
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51561
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51566
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51446
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51567
Source: unknown	Network traffic detected: HTTP traffic on port 51430 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51443
Source: unknown	Network traffic detected: HTTP traffic on port 51509 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51564
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51444
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51565
Source: unknown	Network traffic detected: HTTP traffic on port 51510 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51453 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51570
Source: unknown	Network traffic detected: HTTP traffic on port 51483 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51495 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51447 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51424 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51552 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 51464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51489 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51458
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51459
Source: unknown	Network traffic detected: HTTP traffic on port 51521 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51452
Source: unknown	Network traffic detected: HTTP traffic on port 51458 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51573
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51453
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51574
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51450
Source: unknown	Network traffic detected: HTTP traffic on port 51472 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51571
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51451
Source: unknown	Network traffic detected: HTTP traffic on port 51504 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51572
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51456
Source: unknown	Network traffic detected: HTTP traffic on port 51563 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51457
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51454
Source: unknown	Network traffic detected: HTTP traffic on port 51546 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51575
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51455
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51460
Source: unknown	Network traffic detected: HTTP traffic on port 51515 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51557 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51504
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51505
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51502
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51503
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51508
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51509
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51506
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51507
Source: unknown	Network traffic detected: HTTP traffic on port 51541 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51503 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51526 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51432 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51501
Source: unknown	Network traffic detected: HTTP traffic on port 51564 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51535 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51426 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51558 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51455 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51449 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51481 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51515
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51516
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51513
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51514
Source: unknown	Network traffic detected: HTTP traffic on port 51569 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51519
Source: unknown	Network traffic detected: HTTP traffic on port 51466 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51487 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51517
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51518
Source: unknown	Network traffic detected: HTTP traffic on port 51470 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51511
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51512
Source: unknown	Network traffic detected: HTTP traffic on port 51414 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51510
Source: unknown	Network traffic detected: HTTP traffic on port 51498 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51530 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51421 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51415 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51526
Source: unknown	Network traffic detected: HTTP traffic on port 51547 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51527
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51524
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51525
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51528
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51529
Source: unknown	Network traffic detected: HTTP traffic on port 51520 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51522
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51523
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51520
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51521
Source: unknown	Network traffic detected: HTTP traffic on port 51476 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51499 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51460 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51443 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51514 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51575 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51416
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51537
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51538
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51414
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51535
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51415
Source: unknown	Network traffic detected: HTTP traffic on port 51437 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51536
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51539
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51419
Source: unknown	Network traffic detected: HTTP traffic on port 51493 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51542 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51530
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51533
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51413
Source: unknown	Network traffic detected: HTTP traffic on port 51508 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51534
Source: unknown	Network traffic detected: HTTP traffic on port 51525 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51531
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51532
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51454 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51448 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51482 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51519 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51536 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51553 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51570 -> 443

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.222.162.32:443 -> 192.168.2.4:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.4:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.164.15:443 -> 192.168.2.4:51413 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.4:51414 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:51415 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:51416 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:51419 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@17/188@18/10

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2560 --field-trial-handle=2524,i,986314333724332850,16836519362287794161,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://forms.gle/sxFUT7YRxjaFsuNq6"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2560 --field-trial-handle=2524,i,986314333724332850,16836519362287794161,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
142.250.186.68	www.google.com	United States	15169	GOOGLEUS	false
142.250.185.206	docs.google.com	United States	15169	GOOGLEUS	false
199.36.158.100	forms.gle	United States	15169	GOOGLEUS	false
142.250.181.225	googlehosted.l.googleusercontent.com	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.185.142	play.google.com	United States	15169	GOOGLEUS	false
142.250.184.225	unknown	United States	15169	GOOGLEUS	false
142.250.186.100	unknown	United States	15169	GOOGLEUS	false
172.217.18.110	unknown	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.4

Contacted Domains

Name	IP	Active
docs.google.com	142.250.185.206	true
play.google.com	142.250.185.142	true
s-part-0017.t-0009.t-msedge.net	13.107.246.45	true
forms.gle	199.36.158.100	true
www.google.com	142.250.186.68	true
googlehosted.l.googleusercontent.com	142.250.181.225	true
15.164.165.52.in-addr.arpa	unknown	unknown
lh4.googleusercontent.com	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://forms.gle/sxFUT7YRxjaFsuNq6	false	unknown
https://lh4.googleusercontent.com/B-vjoRYNSIlQl8HAsCemiW6akJ2yHBC4b2EoA2G3HKhmVs2CcpaqCpP35m7VNUTdetN_2n66_fMVg5s9CuDEBvQYkeP5IkOVv7IwxdcjVEC_JCG9ElXIY26bHMO1MWo2zA=w1200	false	unknown
https://docs.google.com/forms/d/e/1FAIpQLSeosl99tYV3KV8jIMUimreRZjxW_h7xXREfcFbjnsdmd-sCjA/viewform	false	unknown
https://play.google.com/log?format=json&hasfast=true&authuser=0	false	unknown
https://docs.google.com/forms/d/e/1FAIpQLSeosl99tYV3KV8jIMUimreRZjxW_h7xXREfcFbjnsdmd-sCjA/viewform?usp=send_form	false	unknown
https://docs.google.com/forms/d/e/1FAIpQLSeosl99tYV3KV8jIMUimreRZjxW_h7xXREfcFbjnsdmd-sCjA/naLogImpressions	false	unknown
https://docs.google.com/forms/d/e/1FAIpQLSeosl99tYV3KV8jIMUimreRZjxW_h7xXREfcFbjnsdmd-sCjA/font/getmetadata	false	unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 100	Web Open Font Format (Version 2), TrueType, length 1664, version 1.0	F19AC4E354F2BCE2E6341B804767E11A	A197ACF3FA097BFBAD358400BD07EAD8865F6FCC	A631F36B97689FFB94AFDAEF8032E78479D469894A2B18F007DEA806DC1172B3
Chrome Cache Entry: 101	Web Open Font Format (Version 2), TrueType, length 45536, version 1.0	3C33061F3F982F2234262844D0FEE4CA	C4BB9DD654244A9EEBE0D6F12ED4C4E853B18252	6504F1B88B6DE335A0FC2D1802EF8B000F6569792F509D4635128DC0915D6D70
Chrome Cache Entry: 102	Web Open Font Format (Version 2), TrueType, length 1748, version 1.0	6DBF91A51C653C0BA098FED5B34ACC55	599EBB3EE593F5C381AF2429993AF2FD01610C0F	39DBC90B7B4C41925E680E6EA13E84E975E936AA8DE9B04A8C401A332FBDE393
Chrome Cache Entry: 103	Web Open Font Format (Version 2), TrueType, length 39708, version 1.0	F311A35802EF8FA61FA06206EF76278C	6179B813223849FAEB0835B285A05E5B2A8A4AD4	FF8C9A38C906236A4025B752DA6A83403DF53F22F0FB8B88155B7B04A5229904
Chrome Cache Entry: 104	ASCII text, with very long lines (1572)	2241684F5D8066C120792F3514BE8163	5FE694D0737BEB7C2661848FFEA58170952CDECF	4B13C0BDCD4FEECF3B5CB1084A565C6800A7BCB38AAF6B2C8CAA9125E0635E89
Chrome Cache Entry: 105	ASCII text, with very long lines (1747)	50E71172EFBEFF3005C2FD7EE2228825	8F8F6DC17A62A8DA0F7500E3E976EBD0E41F715B	DE800FE687E41957CD5A815F2CAF3BA1040EA386DCC402B4EBD4942F0F2AE83E
Chrome Cache Entry: 106	ASCII text, with very long lines (562)	8F931D99C3180329C64417CFD7F19FB2	CCCEA9AD3624065E7BF020B935DDFCA52C229C60	2CBA087163D109C9CB9945531F196A91E3665E8634E7AE81287215BAD7A279F8
Chrome Cache Entry: 107	ASCII text, with very long lines (65536), with no line terminators	4A3B17AA45D2E572568FB33A53EF7161	8B254BDD916DE143EF9486A9666D7E301375CFFB	843E11F0EAF717700DD05E8DAA74678A60F9AA3B39523698A0B0BAF5E3242D6D
Chrome Cache Entry: 108	Web Open Font Format (Version 2), TrueType, length 58892, version 1.0	386F2237074CC59495783195EA1F1295	81B3014B28B6E7EF2FDB39ED73D18EE38F1C36A5	66A070C331573AA324FA2DEAC1A1B42B2D58E9660268555EE382D857E651E33F
Chrome Cache Entry: 109	Web Open Font Format (Version 2), TrueType, length 37488, version 1.0	2A7652831C7699009E0C25DABF93430A	6B0A143D883AFB8FF3CA2BF55B448AF8B68F2F89	C3525FCA875BF7203E92F116E0C5532DD5B5FE0F0CA5E12C6C4C8B9BD77566E2
Chrome Cache Entry: 110	SVG Scalable Vector Graphics image	53BB04865802E54AC8AF8A4B671BFA1A	C330354F2BD383D4A86E0CEB9E93539457E09215	42E25531F7AAC9B4400C3C6E9ED2FF0B60F2972C79553CD09293EFC17B2335AA
Chrome Cache Entry: 111	Web Open Font Format (Version 2), TrueType, length 64164, version 1.0	8C548F65E1DC239D9F8F4F3F52457E59	9A1F4B732127BB53F1F17EA6C905A886A456FD62	1382DECC32857B4DC59FAAFDF57088D9F6917B18ECE82CC47F84010224008C05
Chrome Cache Entry: 112	Web Open Font Format (Version 2), TrueType, length 44316, version 1.0	F4B0DF592BED06B7E1AC275945D8EE61	DBD15D6534D7ADEF8E4AABA1A89E7A2CE22B16FD	C8FB82DF9421FA2DE18E11B89200EECCB188DAB713331F06C6C8782AD5CE5437
Chrome Cache Entry: 113	Web Open Font Format (Version 2), TrueType, length 1256, version 1.0	6DD9A903A2068612E4F0D7572E284077	A87CE7B07CC3C4F09AF54E2310B97F4678935F7F	35015DC730E404653F8B00639C287105BC4D09A58C9235659B99150AA1B220BA
Chrome Cache Entry: 114	Web Open Font Format (Version 2), TrueType, length 72628, version 1.0	0F19855AD401FDEA3E11BFFE0D4E265B	44227668D70FC0289CDF988867A619E8E2960CE5	9A0BEE97B056F9A0972D23BA254990353FD2FA23E11F0B4BD34B25E1AB4A0A4D
Chrome Cache Entry: 115	Web Open Font Format (Version 2), TrueType, length 60648, version 1.0	0E46400F3E919D0CB74068D448D9DAA9	BE7343C9CFB3CE5388F38F2A8D302ED8AE8C7D6D	9FC62F0847BBEB2B050932BC04E8D60087955E2BBE3659FBE89408F4C62F2F7D
Chrome Cache Entry: 116	Web Open Font Format (Version 2), TrueType, length 36840, version 1.0	3603078A7B178210AC17285E145B4A8C	D57FD925F10C47D039FCDA3CC8A2A12D23E134C5	DCBAF64460B4DB78BA16EE6230D2C90215DDA58CE8C285348D624FE32DBC470E
Chrome Cache Entry: 117	Web Open Font Format (Version 2), TrueType, length 34184, version 1.0	1ACA735014A6BB648F468EE476680D5B	6D28E3AE6E42784769199948211E3AA0806FA62C	E563F60814C73C0F4261067BD14C15F2C7F72ED2906670ED4076EBE0D6E9244A
Chrome Cache Entry: 118	Web Open Font Format (Version 2), TrueType, length 41676, version 1.0	C619C10C85CA3DD6D4B57CC59BA2A32A	92A0D8AC165CF6788BE6259F901FBA1994886D91	C129C2C42B2F1D5AF9BD5B9858F0EBA8215EE3EBF61FBC99866E107B2C0AF4B5
Chrome Cache Entry: 119	SVG Scalable Vector Graphics image	CECA603BD198568DAB00E6DFC3120706	871C637521103DCE8F6DF9AAC0D1B62900D511B8	F4AF84EFE90891185D9B29A841181CA9D26D7560864EA47B6CD709D3B964AEE3
Chrome Cache Entry: 120	Web Open Font Format (Version 2), TrueType, length 40412, version 1.0	7332D3B0FA7568125CE6FE9EC4D55151	1822E1EF270F935E5FF8EF83BBE8D0C27CA3CC55	17406C4E4926C81DCD8F3832B79428CCF82F5A3AF17C03AFD0E37F13413851B7
Chrome Cache Entry: 121	Web Open Font Format (Version 2), TrueType, length 41284, version 1.0	87595E01EADD10489540C2BC9532C831	E3EA9372FC50308AFB080F0AA0C1B544873E7896	BED2897761BB0A09F1993AB40B94D35B1E2B3C57039379B888503C6EAC7DCE70
Chrome Cache Entry: 122	Web Open Font Format (Version 2), TrueType, length 1416, version 1.0	E2D07BCC7B3C68F09F3517CD26B496A9	1BC266CB846B248865B43E53CCD7C8117A70B7BA	CC93B0C6CCF01063B9788530CA2389636059624B18599DE8EDEF8D4054255474
Chrome Cache Entry: 123	ASCII text, with very long lines (562)	8F931D99C3180329C64417CFD7F19FB2	CCCEA9AD3624065E7BF020B935DDFCA52C229C60	2CBA087163D109C9CB9945531F196A91E3665E8634E7AE81287215BAD7A279F8
Chrome Cache Entry: 124	Web Open Font Format (Version 2), TrueType, length 1516, version 1.0	314C94C93E0D293F63A2C41F8E82C852	A648B285460C78DEADB882996F09FD75D8ECAB74	CDAAE795074CED24AD382F9F21C4F2E3443D3DC27BF6F75AB5CB43D54F23F009
Chrome Cache Entry: 125	Web Open Font Format (Version 2), TrueType, length 64968, version 1.0	38B24F2C1F13FF0FE4D75754439192B1	B85F7DC43D9DA69F8C5034F682D047EB3C5B6B9A	61514A54C59FA9A216CBD4BB4FC24B58E3956088D4E0FBC85BB63160E874EFCC
Chrome Cache Entry: 126	Web Open Font Format (Version 2), TrueType, length 2484, version 1.0	9160B78EE0B90045C930EC35D1C3A91E	3DA7830A860E809B29AF6A65017D56A1FA121892	BF2174B338F1EEBF563FDD9BD3909F5269B63AE05A9EA26A738870CC6B504B08
Chrome Cache Entry: 127	Web Open Font Format (Version 2), TrueType, length 46840, version 1.0	FA1ADF616690586A617E2F265AB761B0	802AF2A60A925A68A50C3BD3C157D284E1B51362	28AFB7554B3B29A5587799EACC92FD889378089FD568E5C8430B41D83D012B3E
Chrome Cache Entry: 128	Web Open Font Format (Version 2), TrueType, length 3576, version 1.0	3451C91ABE3E05F03BBA52CE59A258E7	19FAFD4F56FECDC013D8AF0DEE6C51E9A338FA5B	D4BA92453033372B440E5E762EEDEC60DEC8B3C32008F599B1C7F46376D64216
Chrome Cache Entry: 129	Web Open Font Format (Version 2), TrueType, length 55204, version 1.0	303F0DEE25055EA1A1C53F8C44B83EDF	552AB5948D02D19FF851777D58DBE0DCF836681C	DB8FAFFB5E867554C1AB9B0EDD0E11E8B5A3D4B9842D860A11646371C2B84D79
Chrome Cache Entry: 130	Web Open Font Format (Version 2), TrueType, length 50664, version 1.0	2EAE80C528D1D7A39C57805DE3E9C799	37ED517E2F44EF14D8F2C4679F9EAD44B050759F	46B9F52EC517DDFAC84DD566720D00CF3C54AEFF1D543AA9C95FFF830985FA13
Chrome Cache Entry: 131	Web Open Font Format (Version 2), TrueType, length 40184, version 1.0	1C31342F0BE5BC0E2B1549932CDE2F81	A5AAB8D96192515329B7D888CFC5B7B113FAD53D	184819CFD66EEE3BBF756A609A0EA8034F09DCF8C68CD817B08358D8E5579CA3
Chrome Cache Entry: 132	GIF image data, version 89a, 1 x 1	FC94FB0C3ED8A8F909DBC7630A0987FF	56D45F8A17F5078A20AF9962C992CA4678450765	2DFE28CBDB83F01C940DE6A88AB86200154FD772D568035AC568664E52068363
Chrome Cache Entry: 133	ASCII text, with very long lines (1747)	50E71172EFBEFF3005C2FD7EE2228825	8F8F6DC17A62A8DA0F7500E3E976EBD0E41F715B	DE800FE687E41957CD5A815F2CAF3BA1040EA386DCC402B4EBD4942F0F2AE83E
Chrome Cache Entry: 134	ASCII text, with very long lines (844)	0CB9F8E4A3FECFD2F8BE20DE4FE16DA2	DB76850823A32E5389D2A3E2A8C9BF05F6399E14	43347A7C737906BCCC0B88AFACC1128E9C8DCDF1A8624C05B76325265EF797C3
Chrome Cache Entry: 135	Web Open Font Format (Version 2), TrueType, length 2708, version 1.0	B12C8BACB108B452B1DBB90C3D1FF1D0	ECF97F8E8FDA216564CFF508D3B9E126D8666372	588A0396D786BB25120D5B559B9D546C3F276BC5E17E9D6ED1AD609DC0871CDE
Chrome Cache Entry: 136	Web Open Font Format (Version 2), TrueType, length 57612, version 1.0	10D2BDFD7A17F5E0210C90D99A8B5ABB	89CF52504233C328782A7250F56DAD603FA74A91	D8977152B314FCD5D04BEC050367C0AAFA91899501593E9ECB0D6090CDAC29A6
Chrome Cache Entry: 137	Web Open Font Format (Version 2), TrueType, length 32644, version 1.0	3F02E1AEEA84F97C26CE78E796009467	3A86908B3E689621F23A326A8F3FD4B794599C00	68425336934A956337B4593A3D47D51D2970D03AC4A9C9FC795596F13EB21775
Chrome Cache Entry: 138	Web Open Font Format (Version 2), TrueType, length 58200, version 1.0	895A08A8F8DE0B5D91F3F6999243B76A	3FB36CEC53FDFD5CE97CBD34FDD0A6E5D8255B50	AADA1AC84EDC0A0F678A12E87B835B9C5A71FC4CEC407CA0420C6561CB53A439
Chrome Cache Entry: 139	ASCII text, with very long lines (844)	0CB9F8E4A3FECFD2F8BE20DE4FE16DA2	DB76850823A32E5389D2A3E2A8C9BF05F6399E14	43347A7C737906BCCC0B88AFACC1128E9C8DCDF1A8624C05B76325265EF797C3
Chrome Cache Entry: 140	Web Open Font Format (Version 2), TrueType, length 41288, version 1.0	C2016E340130CA6E2ABB66D40055B6F4	9A999B20475FE5CA7314918BE5BC09555EA44022	347B8E3E68694A70F4B024CDBEE7FB7ED5F98C19D0DAFEF6B8F237191C796F03
Chrome Cache Entry: 141	SVG Scalable Vector Graphics image	CECA603BD198568DAB00E6DFC3120706	871C637521103DCE8F6DF9AAC0D1B62900D511B8	F4AF84EFE90891185D9B29A841181CA9D26D7560864EA47B6CD709D3B964AEE3
Chrome Cache Entry: 142	Web Open Font Format (Version 2), TrueType, length 116852, version 1.0	9FC7A466292A81DBCEB5B9F194B87757	B9994940CAE8121BB4ACC923972EA0B0B6BF177F	8BA9D0704A43A49CD21D4917C76A1828BF6D60EAB09612A2049199652465BBFA
Chrome Cache Entry: 143	Web Open Font Format (Version 2), TrueType, length 126660, version 1.0	E171410D243718D27D3C6BD5306ACA68	6BCDBCD43497AE839A84A26FB83D68BB07A4D5EE	62205E2E2B22EFD49A3A0D1C10C5F59AFA8F4C59B087825FB904263E73489DDC
Chrome Cache Entry: 144	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced	8DF19EC399BE913884590015105AA584	5502576575AFF37A626934FA655C124291C58AD6	D48A0F5A08249E1768C06ACA31C16D50D1216434E1C91BA322CF5521577A59E3
Chrome Cache Entry: 145	Web Open Font Format (Version 2), TrueType, length 3640, version 1.0	421B045B5EB019D56F6407AE63E57A92	F0D0D18A1887D371B18C1B06B99AD2D3C0923E8D	5DCEBB5EC80A2DDAB469A77F1A37412C34205EF76D054131083B0BF663B786FB
Chrome Cache Entry: 146	Web Open Font Format (Version 2), TrueType, length 26992, version 1.0	92BAE553B71BC6DEDFB17E73BA5029EB	4B581AF52A479729888031EB60722A306A68DA55	49BE4E1A8B5E250DE2A7A738CAC6C157E4148414CAEAB4055D92DA8152D95619
Chrome Cache Entry: 147	ASCII text, with very long lines (572)	D348D09AB2DC99255360DC2984C60521	AB62523A457EE64937583A7E0280FB8842857350	A9FE46A6C4839B2C3176883876ECE77AFB7616BBA848889C1C6F6690C97F0060
Chrome Cache Entry: 148	Web Open Font Format (Version 2), TrueType, length 4344, version 1.0	E5A3502E3717398EE835D98F84874738	75C4C2D0F1A2EDA7E16A16293BA840E19991EF1A	E5ACBE17FD4E63CCA2CE1B72E482FC2411D27D9D534476AD7F0108B9DF087FCE
Chrome Cache Entry: 149	Web Open Font Format (Version 2), TrueType, length 99952, version 1.0	4DC58D8C42A13CD77CF2CD978F639388	221EDE548E9E9CF711595D6511C73CD8EA4EB595	B93F4669CC09016E4D1AD1836A4CD1EBCF832C22979E5FA11DB4F7C3620223AE
Chrome Cache Entry: 150	Web Open Font Format (Version 2), TrueType, length 50264, version 1.0	AB5E010EBED9BCFB98CDB5BD47D3E430	5D1AA4B896BF05AFE8978F74E2E88A53B0D9BB6E	B5477EC958C9F1F06AF0D54F50633B66C76C5E010450283C5620CFC79E57E963
Chrome Cache Entry: 151	Web Open Font Format (Version 2), TrueType, length 64656, version 1.0	28E2B282CBDDE4FBEF925AA25DF6FEA3	764C6B373670D221C28CD5DA0584FCEB1C444905	B1DE6EAC3059CA778E6D2367182C7F11EDC81E09971E56F788DB308A674EA7EC
Chrome Cache Entry: 152	Web Open Font Format (Version 2), TrueType, length 1528, version 1.0	EB7377208715318B001D920F049E318B	9E428185FC78B5F18B11D1B29353433939B08B5B	10505DF86B3638BE7B5707A542C0C7C80ED856F14E037BB1C64BFAF712B0AB75
Chrome Cache Entry: 153	ASCII text, with very long lines (3814)	724D3986846438E2CACA6014024B685D	D521612AA7399E7AF543E96CA734419A6D4D7949	665EB302F730C65C8752A1998114C6F4D7F0D5E0250465C18665772D14500389
Chrome Cache Entry: 154	Web Open Font Format (Version 2), TrueType, length 41584, version 1.0	71151932FDCC1AC7E09BF80A592DDA78	7049019D7FA6D570CA9B57525224313656B36E8D	68C3F849762D80F759A7702F52B6F9C432173951D7D5E830C98CEDFDEBA5E53E
Chrome Cache Entry: 155	Web Open Font Format (Version 2), TrueType, length 41220, version 1.0	C8D3E0F677AC007C9FADBA09A1C4C7BC	83389D80FDF1BEE58E69DB1F38968404EAC57846	A9ED2DC63202E8E1E06CC22EB23D39212A36034D90DBC76274EC7F85DEB1D3C2
Chrome Cache Entry: 156	Web Open Font Format (Version 2), TrueType, length 100756, version 1.0	4498A1A925FD2D5630BA89B78739E194	C757EDCF6538B1F0968F69A7618C564DCAF7150A	54EFCB5570863B2329C2C677749C85C7ED337F5C16BF38CAEA17807196150293
Chrome Cache Entry: 157	ASCII text, with no line terminators	0CCCD828CC09B4A52D2950FDF5CFD649	E1F9AB55F433EF5EA9BD06CB8948262E45FCEAC9	876BC02F507FACA0FF025DAA05A5A40E32D8AF023F7F672816F7E8A9C22EDF68
Chrome Cache Entry: 158	Web Open Font Format (Version 2), TrueType, length 2560, version 1.0	AAD954B1FF4E297C5D137133C4BB36C3	781A7FFB51D787FA807F1D861A4D003BD33E42E8	C28A9A498502C596ED0275021BDAEF2A57225D9460C650706907FC95F7BA6D80
Chrome Cache Entry: 159	ASCII text, with very long lines (3814)	724D3986846438E2CACA6014024B685D	D521612AA7399E7AF543E96CA734419A6D4D7949	665EB302F730C65C8752A1998114C6F4D7F0D5E0250465C18665772D14500389
Chrome Cache Entry: 160	Web Open Font Format (Version 2), TrueType, length 25940, version 1.0	472997FA70DA7203D0AAF11F7B166C93	17B746D4980DF5C0EFFCB129B63FFF1FCBDB8999	5110D967DAD4A4E2D1578B5A1E27E210F03DAD636892CEA6D7F8B1BB617BCF2B
Chrome Cache Entry: 161	Web Open Font Format (Version 2), TrueType, length 84892, version 1.0	0F0BE34D30705D3F21ECCBBFBFCBE983	96A0C04F6610AE014FC1179641861C1A96DD6DD0	E05FD4C39D2671D0FEBCF551364287A41D4889CA4692817722459FF34940AC81
Chrome Cache Entry: 162	Web Open Font Format (Version 2), TrueType, length 50032, version 1.0	3A1D827D4C9CEA1A4D9AC216BF6A3D0B	B3464CCD91897B1DB6CF5EB06E7A4F89F31EDB94	CC7B21390D89052DA348CF014A9F38412956B535BA362D5021CF9B2707F03DF6
Chrome Cache Entry: 163	Web Open Font Format (Version 2), TrueType, length 37800, version 1.0	2B097CB2DC262C764A2C97D4E233918D	83DB49B6B6DDA13ADC82726197CC2B243EF647DC	7615AED2ED8F1361D3ABA2B6CE6612468463E660E8BD4A4302B24C113EC57308
Chrome Cache Entry: 164	GIF image data, version 89a, 1 x 1	FC94FB0C3ED8A8F909DBC7630A0987FF	56D45F8A17F5078A20AF9962C992CA4678450765	2DFE28CBDB83F01C940DE6A88AB86200154FD772D568035AC568664E52068363
Chrome Cache Entry: 165	ASCII text, with very long lines (572)	D348D09AB2DC99255360DC2984C60521	AB62523A457EE64937583A7E0280FB8842857350	A9FE46A6C4839B2C3176883876ECE77AFB7616BBA848889C1C6F6690C97F0060
Chrome Cache Entry: 166	Web Open Font Format (Version 2), TrueType, length 57236, version 1.0	212D9F17F0F5D037532FA3B8FC14B8DE	C332A9F57F2C7931F2A930B5D91BCF244E38FC42	53B183E10D8C5DB234637E82BEF4014117BD41C956C69AF55FA0165A7BE31666
Chrome Cache Entry: 167	Web Open Font Format (Version 2), TrueType, length 37632, version 1.0	1FFAA430DEB705DF128762D9990F8EFE	847F8CA1CF199A602AEF0EF42AEBF5F825584E19	2706DFABCBAAF2DEE90C3A10C168D5F5691CE787DCAE9E77CD038F66B08FC4BA
Chrome Cache Entry: 168	Web Open Font Format (Version 2), TrueType, length 43772, version 1.0	36338672609C9EC1D83AF4E1AFF7B0AD	287BF3611440E9377DD71C0620AA63448D632F06	E268433F792E81D03D24617E0A4D6ECB5728278A805E7D12493E06802AA671A7
Chrome Cache Entry: 169	Web Open Font Format (Version 2), TrueType, length 5044, version 1.0	5E37F6030CF935F9CBD3FF5A22E08D2E	C77AE7DD7501F4F578884BC034004F8619FC3D17	867352B1C82C47D71A11744E3886441A848780DCA87928BAC596E5F3473BFAA3
Chrome Cache Entry: 170	HTML document, Unicode text, UTF-8 text, with very long lines (1136)	FBE36EB2EECF1B90451A3A72701E49D2	AE56EA57C52D1153CEC33CEF91CF935D2D3AF14D	E8F2DED5D74C0EE5F427A20B6715E65BC79ED5C4FC67FB00D89005515C8EFE63
Chrome Cache Entry: 171	Web Open Font Format (Version 2), TrueType, length 142920, version 1.0	643086F598435216DC497F1FE1174F85	FD3050CC2BFCB38D36876B66CAA15D97AD3098BE	15FCE9FC686A7ED24AE85F394838CCA6DC46CA2AA43DF5E35A9EDCD3EAF3577F
Chrome Cache Entry: 172	PNG image data, 1200 x 300, 8-bit colormap, non-interlaced	74EBF5653231DD466BFA4B6885E18DD6	DEE458A4AFF46025FA5F57C468E976DED5B646C6	D548DC57C5443817C5981A9F29C6958CB432A4F9CF1DC334F9F46E9473ED78F9
Chrome Cache Entry: 173	SVG Scalable Vector Graphics image	53BB04865802E54AC8AF8A4B671BFA1A	C330354F2BD383D4A86E0CEB9E93539457E09215	42E25531F7AAC9B4400C3C6E9ED2FF0B60F2972C79553CD09293EFC17B2335AA
Chrome Cache Entry: 174	ASCII text	3941CD60FA643ED248F99441154F151E	9300D366354B80085699A5CAF72F625EB706A19E	0A5A52ACCFFFAFFBACC3FC4F4515ED7B73049FC088786B9B74CCAC76F490DD5B
Chrome Cache Entry: 175	Web Open Font Format (Version 2), TrueType, length 129848, version 1.0	07987CC4A39B31CF6AFFFDE675F1D849	7ADA46987D0E1AAE2D3288272F8C97AABA4792E5	DAE2E505F61E23A088E4FB91523643D2E0B816F29DB2BD57AFB3F56F00D080F3
Chrome Cache Entry: 176	Web Open Font Format (Version 2), TrueType, length 47364, version 1.0	FCC676E93787A8D472AD00BF7F158D88	A28C8050BAA6E17C6ADEC60BCA582715403D500B	1F6B8D8F7D462DC42D48B29E68062A707890AA2DD700C947806949F63D79694A
Chrome Cache Entry: 177	Web Open Font Format (Version 2), TrueType, length 35060, version 1.0	0360DBC6E8C09DCE9183A1FD78F3BE2E	6CD4B65A94707AE941D78B12F082C968CB05EC92	2DB6BC36808D43FA89029C652636E206FA3E889B35ECF71814AB85F8BA944AF3
Chrome Cache Entry: 178	ASCII text	1868068BDC2622CF2C4C607102970B6A	B254679B639C5D7F26BA8662A70E5D7587333ECD	354AA87B02FCDDFAFEE3DB7BA65775E92D271256B7CE8DF3C0BB43467EBA7B3F
Chrome Cache Entry: 179	Web Open Font Format (Version 2), TrueType, length 53884, version 1.0	11E65682C5D363ECD17CDD1CE3615418	89CC3F37B6EBE724BC22045AEA74EF2BC6932DA1	41A98AC11A50E26C91A33CD44D8FF75B7F5963B33CB63AF48099EA48D0BF5E9A
Chrome Cache Entry: 180	GIF image data, version 89a, 1 x 1	FC94FB0C3ED8A8F909DBC7630A0987FF	56D45F8A17F5078A20AF9962C992CA4678450765	2DFE28CBDB83F01C940DE6A88AB86200154FD772D568035AC568664E52068363
Chrome Cache Entry: 181	Web Open Font Format (Version 2), TrueType, length 4280, version 1.0	35F2221688A86314A271F11BBF8E76BD	2E56E5FCCE211EEA8CA3709E0A8B33DD89CEDA92	3C1D1B09AF9EA0E4A497CF8F1BAAF915BB032ECA2AE369869566282D156CB25D
Chrome Cache Entry: 182	Web Open Font Format (Version 2), TrueType, length 105776, version 1.0	DF1878BEEF6F76B3B8B9C3A479BFA5CB	5724CF8D410C6BD487A002A14386231C29C933C6	C7B73DC2A43D6620B4AE7B1E05EEA2342CF309352B4DCAADEB4491C5B72468E5
Chrome Cache Entry: 183	Web Open Font Format (Version 2), TrueType, length 42296, version 1.0	20A5ED564FE91199A53645DD2A8F8BCE	878AB8E8E2A0BBDE4F47359D625DB2B81F7AC0A1	3109801208D4C4B75FF98BB721D0AEE286293C2F0D2F47F778DCFAD779E9F5EE
Chrome Cache Entry: 184	Web Open Font Format (Version 2), TrueType, length 1420, version 1.0	F8FB2BDE26ED2B7A60BA773D42DD2150	70871B9E74126289901A00F44B8271849A125DBD	9DAA921A21820750F7FE6223AC35072394F99209C374409981F6EFD1B2E3DCD5
Chrome Cache Entry: 185	Web Open Font Format (Version 2), TrueType, length 49980, version 1.0	7B69C53249D749F80F5AC911A9F6A416	D6283C043883942BFB577D0F7F2477DB7C7B10B2	AF6B37D5CEC7927D3BDFBCD8C75D7BF80C29C583D71B75ADE321EF706A10BE32
Chrome Cache Entry: 186	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced	8DF19EC399BE913884590015105AA584	5502576575AFF37A626934FA655C124291C58AD6	D48A0F5A08249E1768C06ACA31C16D50D1216434E1C91BA322CF5521577A59E3
Chrome Cache Entry: 187	Web Open Font Format (Version 2), TrueType, length 44980, version 1.0	A32CAE41AA72AD6CA75FF8B5A7A11606	FC29CA3935D5F85C169448D7CC6410C2560D92BC	33EA7445E374A6AAB69F4E13DDBC9FC0E356C731E2D1F093619B93D4281BBE2E
Chrome Cache Entry: 188	Web Open Font Format (Version 2), TrueType, length 54212, version 1.0	DFA374BE8A198433A11856E9967E96F9	9E8D11BA6270CCB1254686C0F24A05F21D33A661	0BC130FEA6C21498BF358680BE297533AF347EBCDBC18576629FF1D89F8638F7
Chrome Cache Entry: 89	Web Open Font Format (Version 2), TrueType, length 72896, version 1.0	8AFBBEF49E32F6382F8C029DDA485679	2FBD600C537D820F23D492D907DAC0BD98F0778E	D4C4F413055D77B989E4D3BCE7E3CBB45427F251387EABFF8F9709F4EE1B2BF0
Chrome Cache Entry: 90	Web Open Font Format (Version 2), TrueType, length 65828, version 1.0	9187B9AF4CD2B2C0080F3E41671E52CF	50810C3D6D3F3AC2155409DEC18086ABC3E17E9C	DDD58F9FE28DBDF8AA84F7F39DDDDEBB4CBFE5B0C74470ED72C7624C7742CC30
Chrome Cache Entry: 91	Web Open Font Format (Version 2), TrueType, length 58012, version 1.0	E88455150169496390368F9DCFC709C6	672607F20C14829A1071441C031A8411196CFEA8	133BB5C5AF6B43D96660FF65F46464F2A03F7D0DEEB8E2A1F8E0AA7CE6770120
Chrome Cache Entry: 92	Web Open Font Format (Version 2), TrueType, length 1360, version 1.0	248816E2428823AA2BA6B223B82EC73B	EC8DD868A619356C0E30606ECA110A239CA0D83D	4524691B7547D0D9F1A34FF172D940BEDAFD7725A14A5BD1121807B7D993BFFA
Chrome Cache Entry: 93	Web Open Font Format (Version 2), TrueType, length 18536, version 1.0	8EFF0B8045FD1959E117F85654AE7770	227FEE13CEB7C410B5C0BB8000258B6643CB6255	89978E658E840B927DDDB5CB3A835C7D8526ECE79933BD9F3096B301FE1A8571
Chrome Cache Entry: 94	Web Open Font Format (Version 2), TrueType, length 31456, version 1.0	8787E52101C989DEA9FEA21E232FA45B	F112710595BAA904A62B68C2066DD34D7103E1E8	D5C4965A6E9C89DEE7D1389167C821976BFBF55D80E7DCDDFBCB5400B1AE01C9
Chrome Cache Entry: 95	Web Open Font Format (Version 2), TrueType, length 42132, version 1.0	2661BDA6D2BA62A920BE11952BB94849	7C1EE90488041D444D2289AE42C06D1958F34584	ADD6DDD7FEE32D58EBA385983AB7DCC9657AD97CDBD4BF4594DB38675847EDB4
Chrome Cache Entry: 96	PNG image data, 1200 x 300, 8-bit colormap, non-interlaced	74EBF5653231DD466BFA4B6885E18DD6	DEE458A4AFF46025FA5F57C468E976DED5B646C6	D548DC57C5443817C5981A9F29C6958CB432A4F9CF1DC334F9F46E9473ED78F9
Chrome Cache Entry: 97	Web Open Font Format (Version 2), TrueType, length 4196, version 1.0	92CFF5BF3D47970DEFEF49EBF56448DB	163E2B870500AC648A075A008408C9FA73922953	AFD7B4CE1230FC5D6CB58DAEBEED6BCD09EBEE1E4414367596BC3BB33F62444C
Chrome Cache Entry: 98	Web Open Font Format (Version 2), TrueType, length 64068, version 1.0	EFD94F0EB81E50A5F75CFAC73257EFC2	E8C4E0A66E8BA85DE2BDACA59CBCC55CED60BBCA	3A6C1001C36D7F2F8AD4DF369BAF38217AF3ADAAE94A5625651C05F4C3A38BD3
Chrome Cache Entry: 99	GIF image data, version 89a, 1 x 1	FC94FB0C3ED8A8F909DBC7630A0987FF	56D45F8A17F5078A20AF9962C992CA4678450765	2DFE28CBDB83F01C940DE6A88AB86200154FD772D568035AC568664E52068363

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.222.162.32:443 -> 192.168.2.4:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.4:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.164.15:443 -> 192.168.2.4:51413 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.4:51414 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:51415 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:51416 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:51419 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.4:51412 -> 162.159.36.2:53

Detected suspicious crossdomain redirect

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

HTTP traffic: Redirect from: forms.gle to https://docs.google.com/forms/d/e/1faipqlseosl99tyv3kv8jimuimrerzjxw_h7xxrefcfbjnsdmd-scja/viewform?usp=send_form

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 52.149.20.212
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.164.15
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.164.15

Source: global traffic	HTTP traffic detected: GET /sxFUT7YRxjaFsuNq6 HTTP/1.1Host: forms.gleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /forms/d/e/1FAIpQLSeosl99tYV3KV8jIMUimreRZjxW_h7xXREfcFbjnsdmd-sCjA/viewform?usp=send_form HTTP/1.1Host: docs.google.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /B-vjoRYNSIlQl8HAsCemiW6akJ2yHBC4b2EoA2G3HKhmVs2CcpaqCpP35m7VNUTdetN_2n66_fMVg5s9CuDEBvQYkeP5IkOVv7IwxdcjVEC_JCG9ElXIY26bHMO1MWo2zA=w1200 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://docs.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /B-vjoRYNSIlQl8HAsCemiW6akJ2yHBC4b2EoA2G3HKhmVs2CcpaqCpP35m7VNUTdetN_2n66_fMVg5s9CuDEBvQYkeP5IkOVv7IwxdcjVEC_JCG9ElXIY26bHMO1MWo2zA=w1200 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /forms/d/e/1FAIpQLSeosl99tYV3KV8jIMUimreRZjxW_h7xXREfcFbjnsdmd-sCjA/font/getmetadata HTTP/1.1Host: docs.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: S=spreadsheet_forms=g30FHL1t_D4lRnpGzJDx8jNEVbHITGCtpH_nD9q39A8; COMPASS=spreadsheet_forms=CjIACWuJV5OVrjCVPU0cvRjOgMYHeXD-JL08g72j8BIVcidKH18iK0CGAnQxoB0tCboSchDRzNi4Bho0AAlriVcyYGeNgQLJiOUBrqTURjl_CwsshAOFhsFwT2_jBUAEkDRrKETr31T9TEr2qo55Jw==; NID=518=bxHt4WO5_sV29nt4rFTs_OEeUQyEqyvXGhS0B8Fg_7gAdzbAudnn8jqiMcSuT6QmrDiKii4IeingYHtdLROTeMeo97Cw4HChmYa_ejcC71WT10bPP9ptFK_8qVl4SR5PV3Pr3zibCr8-qHMRBaUgpMejFZ-gakVkySrDRSRfJsx0_OeMI6WQv8O7Cg
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=bxHt4WO5_sV29nt4rFTs_OEeUQyEqyvXGhS0B8Fg_7gAdzbAudnn8jqiMcSuT6QmrDiKii4IeingYHtdLROTeMeo97Cw4HChmYa_ejcC71WT10bPP9ptFK_8qVl4SR5PV3Pr3zibCr8-qHMRBaUgpMejFZ-gakVkySrDRSRfJsx0_OeMI6WQv8O7Cg
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=bxHt4WO5_sV29nt4rFTs_OEeUQyEqyvXGhS0B8Fg_7gAdzbAudnn8jqiMcSuT6QmrDiKii4IeingYHtdLROTeMeo97Cw4HChmYa_ejcC71WT10bPP9ptFK_8qVl4SR5PV3Pr3zibCr8-qHMRBaUgpMejFZ-gakVkySrDRSRfJsx0_OeMI6WQv8O7Cg
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=cS9AprGcEg7pCdO&MD=KDLXwNkd HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /clientwebservice/ping HTTP/1.1Connection: Keep-AliveUser-Agent: DNS resiliency checker/1.0Host: fe3cr.delivery.mp.microsoft.com
Source: global traffic	HTTP traffic detected: GET /sls/ping HTTP/1.1Connection: Keep-AliveUser-Agent: DNS resiliency checker/1.0Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=cS9AprGcEg7pCdO&MD=KDLXwNkd HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=cS9AprGcEg7pCdO&MD=KDLXwNkd HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: chromecache_159.2.dr, chromecache_153.2.dr

Source: global traffic	DNS traffic detected: DNS query: forms.gle
Source: global traffic	DNS traffic detected: DNS query: docs.google.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: lh4.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: play.google.com
Source: global traffic	DNS traffic detected: DNS query: 15.164.165.52.in-addr.arpa

Source: unknown

Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: http://localhost.corp.google.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: http://localhost.proxy.googlers.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://apis.google.com/js/client.js
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/inapp/
Source: chromecache_153.2.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_153.2.dr	String found in binary or memory: https://feedback-pa.clients6.google.com
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/annotator.css
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/render_frame2.html
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback2-test.corp.google.com/inapp/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback2-test.corp.google.com/tools/feedback/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/inapp/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/tools/feedback/%
Source: chromecache_174.2.dr, chromecache_104.2.dr	String found in binary or memory: https://fonts.google.com/license/googlerestricted
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v60/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RP
Source: chromecache_178.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/materialiconsextended/v151/kJEjBvgX7BgnkSrUwT8UnLVc38YydejYY-oE_LvJ.woff
Source: chromecache_174.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVE9eOcEg.woff2)
Source: chromecache_174.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVF9eO.woff2)
Source: chromecache_174.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVFNeOcEg.woff2)
Source: chromecache_174.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVGdeOcEg.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xEIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xFIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xIIzI.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xLIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBBc4.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCBc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCRc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_104.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_153.2.dr	String found in binary or memory: https://gstatic.com/uservoice/surveys/resources/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://help.youtube.com/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://localhost.corp.google.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://localhost.proxy.googlers.com/inapp/
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://play.google.com
Source: chromecache_106.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://sandbox.google.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://sandbox.google.com/inapp/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://scone-pa.clients6.google.com
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://ssl.gstatic.com/docs/common/cleardot.gif
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://ssl.gstatic.com/docs/forms/draft_responses_onboarding.png
Source: chromecache_153.2.dr	String found in binary or memory: https://stagingqual-feedback-pa-googleapis.sandbox.google.com
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://support.google.com
Source: chromecache_153.2.dr	String found in binary or memory: https://support.google.com/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://support.google.com/inapp/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://support.google.com/inapp/%
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://test-scone-pa-googleapis.sandbox.google.com
Source: chromecache_123.2.dr, chromecache_106.2.dr	String found in binary or memory: https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://www.google.cn/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://www.google.cn/tools/feedback/%
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_153.2.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/
Source: chromecache_159.2.dr, chromecache_153.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/%
Source: chromecache_153.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/help_panel_binary.js
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
Source: chromecache_153.2.dr	String found in binary or memory: https://www.gstatic.com/uservoice/feedback/client/web/
Source: chromecache_153.2.dr	String found in binary or memory: https://www.gstatic.com/uservoice/surveys/resources/
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://youtube.com/embed/
Source: chromecache_134.2.dr, chromecache_139.2.dr	String found in binary or memory: https://youtube.com/embed/?rel=0

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51507 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51451 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51474 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51497 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51554 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51531 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 51571 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51548 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51502 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51491 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51565 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51559 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51513 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51480 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51456 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51572 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51524 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51438 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51501 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51467 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51492 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51486 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51566 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51450 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51543 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51518 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51537 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51416 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51529 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51433 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51427 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51560 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51475 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51444 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51461 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51532 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 51490 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51469
Source: unknown	Network traffic detected: HTTP traffic on port 51549 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51484 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51469 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51463
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51464
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51461
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51462
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51467
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51468
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51465
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51466
Source: unknown	Network traffic detected: HTTP traffic on port 51512 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51470
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51471
Source: unknown	Network traffic detected: HTTP traffic on port 51478 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 51550 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 51523 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51441 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51474
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51475
Source: unknown	Network traffic detected: HTTP traffic on port 51435 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51472
Source: unknown	Network traffic detected: HTTP traffic on port 51506 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51473
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51478
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51479
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51476
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51477
Source: unknown	Network traffic detected: HTTP traffic on port 51544 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51561 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51452 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51429 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51481
Source: unknown	Network traffic detected: HTTP traffic on port 51473 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51482
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51480
Source: unknown	Network traffic detected: HTTP traffic on port 51446 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51517 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51538 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51555 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 51440 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 51463 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 51434 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51485
Source: unknown	Network traffic detected: HTTP traffic on port 51505 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51457 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51486
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51483
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51484
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51489
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51487
Source: unknown	Network traffic detected: HTTP traffic on port 51562 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51488
Source: unknown	Network traffic detected: HTTP traffic on port 51528 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51428 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51492
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51493
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51490
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51491
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 51533 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51556 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51573 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51468 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51485 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51496
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51497
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51567 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51495
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51498
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51499
Source: unknown	Network traffic detected: HTTP traffic on port 51511 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51479 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51496 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 51423 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51427
Source: unknown	Network traffic detected: HTTP traffic on port 51488 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51548
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51428
Source: unknown	Network traffic detected: HTTP traffic on port 51465 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51549
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51425
Source: unknown	Network traffic detected: HTTP traffic on port 51442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51522 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51546
Source: unknown	Network traffic detected: HTTP traffic on port 51574 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51426
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51547
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51429
Source: unknown	Network traffic detected: HTTP traffic on port 51459 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51471 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51540
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51420
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51541
Source: unknown	Network traffic detected: HTTP traffic on port 51436 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51568 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51423
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51544
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51424
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51545
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51421
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51542
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51413 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51422
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51543
Source: unknown	Network traffic detected: HTTP traffic on port 51545 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51516 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51539 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51438
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51559
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51439
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51436
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51557
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51437
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51558
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51430
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51551
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51431
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51552
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51550
Source: unknown	Network traffic detected: HTTP traffic on port 51431 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51434
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51555
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51435
Source: unknown	Network traffic detected: HTTP traffic on port 51540 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51556
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51432
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51553
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51433
Source: unknown	Network traffic detected: HTTP traffic on port 51527 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51554
Source: unknown	Network traffic detected: HTTP traffic on port 51477 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51551 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51425 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51534 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51449
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51447
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51568
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51448
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51569
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51441
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51562
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51442
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51563
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51560
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51440
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51561
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51566
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51446
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51567
Source: unknown	Network traffic detected: HTTP traffic on port 51430 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51443
Source: unknown	Network traffic detected: HTTP traffic on port 51509 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51564
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51444
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51565
Source: unknown	Network traffic detected: HTTP traffic on port 51510 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51453 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51570
Source: unknown	Network traffic detected: HTTP traffic on port 51483 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51495 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51447 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51424 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51552 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 51464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51489 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51458
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51459
Source: unknown	Network traffic detected: HTTP traffic on port 51521 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51452
Source: unknown	Network traffic detected: HTTP traffic on port 51458 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51573
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51453
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51574
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51450
Source: unknown	Network traffic detected: HTTP traffic on port 51472 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51571
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51451
Source: unknown	Network traffic detected: HTTP traffic on port 51504 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51572
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51456
Source: unknown	Network traffic detected: HTTP traffic on port 51563 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51457
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51454
Source: unknown	Network traffic detected: HTTP traffic on port 51546 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51575
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51455
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51460
Source: unknown	Network traffic detected: HTTP traffic on port 51515 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51557 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51504
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51505
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51502
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51503
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51508
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51509
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51506
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51507
Source: unknown	Network traffic detected: HTTP traffic on port 51541 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51503 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51526 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51432 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51501
Source: unknown	Network traffic detected: HTTP traffic on port 51564 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51535 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51426 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51558 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51455 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51449 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51481 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51515
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51516
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51513
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51514
Source: unknown	Network traffic detected: HTTP traffic on port 51569 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51519
Source: unknown	Network traffic detected: HTTP traffic on port 51466 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51487 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51517
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51518
Source: unknown	Network traffic detected: HTTP traffic on port 51470 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51511
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51512
Source: unknown	Network traffic detected: HTTP traffic on port 51414 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51510
Source: unknown	Network traffic detected: HTTP traffic on port 51498 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51530 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51421 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51415 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51526
Source: unknown	Network traffic detected: HTTP traffic on port 51547 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51527
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51524
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51525
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51528
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51529
Source: unknown	Network traffic detected: HTTP traffic on port 51520 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51522
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51523
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51520
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51521
Source: unknown	Network traffic detected: HTTP traffic on port 51476 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51499 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51460 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51443 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51514 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51575 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51416
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51537
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51538
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51414
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51535
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51415
Source: unknown	Network traffic detected: HTTP traffic on port 51437 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51536
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51539
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51419
Source: unknown	Network traffic detected: HTTP traffic on port 51493 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51542 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51530
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51533
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51413
Source: unknown	Network traffic detected: HTTP traffic on port 51508 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51534
Source: unknown	Network traffic detected: HTTP traffic on port 51525 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51531
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51532
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51454 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51448 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51482 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51519 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51536 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51553 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51570 -> 443

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.222.162.32:443 -> 192.168.2.4:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.4:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.164.15:443 -> 192.168.2.4:51413 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.4:51414 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:51415 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:51416 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:51419 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@17/188@18/10

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2560 --field-trial-handle=2524,i,986314333724332850,16836519362287794161,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://forms.gle/sxFUT7YRxjaFsuNq6"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2560 --field-trial-handle=2524,i,986314333724332850,16836519362287794161,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1538462
Product:	CloudBasic
Start time:	10:59:50
Start date:	21.10.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://forms.gle/sxFUT7YRxjaFsuNq6

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://forms.gle/sxFUT7YRxjaFsuNq6

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://forms.gle/sxFUT7YRxjaFsuNq6