Overview

overview

1

Static

static

1

2664574790...8.html

windows7-x64

1

2664574790...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    129s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/05/2024, 19:35 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2664574790cf5c1fa1b476d8a0fa3abc_JaffaCakes118.html

  • Size

    29KB

  • MD5

    2664574790cf5c1fa1b476d8a0fa3abc

  • SHA1

    44f19d20e30e2a584274c908397178bd94a19dba

  • SHA256

    789b3b4a290754c5a4b4a1ba77f9566e6cc1d9c614eb436dd82d759cf13a3bde

  • SHA512

    2a59650e9cc89f230dfb35e7be96be231b3053ce4e01d4f7f42649c75b237fa629f4754dc0b3bc9a6593bd4bfe0a950fd7d2294af5f6019e2acacfe959cf8364

  • SSDEEP

    384:7s+dN3Eit/WRoWosf2uDchdeQ/afs1+9fkhilEwe1xZ7BLP9QjfkiscSVOmm+ltb:lP

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 6 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\2664574790cf5c1fa1b476d8a0fa3abc_JaffaCakes118.html
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:3948
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8d51846f8,0x7ff8d5184708,0x7ff8d5184718
      2⤵
        PID:3100
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2244 /prefetch:2
        2⤵
          PID:5792
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2304 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:2168
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2676 /prefetch:8
          2⤵
            PID:5040
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3228 /prefetch:1
            2⤵
              PID:5340
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3240 /prefetch:1
              2⤵
                PID:2332
              • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5048 /prefetch:8
                2⤵
                  PID:3708
                • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5048 /prefetch:8
                  2⤵
                  • Suspicious behavior: EnumeratesProcesses
                  PID:5144
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5140 /prefetch:1
                  2⤵
                    PID:1564
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5164 /prefetch:1
                    2⤵
                      PID:4088
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3644 /prefetch:1
                      2⤵
                        PID:5532
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5608 /prefetch:1
                        2⤵
                          PID:732
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2212,14403423016064650323,7700983092884887619,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1304 /prefetch:2
                          2⤵
                          • Suspicious behavior: EnumeratesProcesses
                          PID:4216
                      • C:\Windows\System32\CompPkgSrv.exe
                        C:\Windows\System32\CompPkgSrv.exe -Embedding
                        1⤵
                          PID:4388
                        • C:\Windows\System32\CompPkgSrv.exe
                          C:\Windows\System32\CompPkgSrv.exe -Embedding
                          1⤵
                            PID:3972

                          Network

                          • flag-us
                            DNS
                            cdd.net.ua
                            msedge.exe
                            Remote address:
                            8.8.8.8:53
                            Request
                            cdd.net.ua
                            IN A
                            Response
                            cdd.net.ua
                            IN A
                            89.184.88.6
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/stylesheet.css
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/stylesheet.css HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: text/css,*/*;q=0.1
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:23 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/store_logo.png
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/store_logo.png HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:23 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/infobox/corner_left.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/infobox/corner_left.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:23 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/back.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/back.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:23 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/infobox/corner_right_left.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/infobox/corner_right_left.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:23 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/header_checkout.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/header_checkout.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:23 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/header_account.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/header_account.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:23 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/header_cart.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/header_cart.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:23 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/box_write_review.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/box_write_review.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/infobox/arrow_right.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/infobox/arrow_right.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/p.jpg
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/p.jpg HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/infobox/corner_right.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/infobox/corner_right.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_tell_a_friend.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/includes/languages/russian/images/buttons/button_tell_a_friend.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/box_products_notifications.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/box_products_notifications.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/images/pixel_trans.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/images/pixel_trans.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_quick_find.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/includes/languages/russian/images/buttons/button_quick_find.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/includes/languages/russian/images/icon.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/includes/languages/russian/images/icon.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/includes/languages/english/images/icon.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/includes/languages/english/images/icon.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_in_cart.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/includes/languages/russian/images/buttons/button_in_cart.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-pl
                            GET
                            http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_reviews.gif
                            msedge.exe
                            Remote address:
                            89.184.88.6:80
                            Request
                            GET /apothecary/includes/languages/russian/images/buttons/button_reviews.gif HTTP/1.1
                            Host: cdd.net.ua
                            Connection: keep-alive
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            DNT: 1
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Accept-Encoding: gzip, deflate
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 404 Not Found
                            Server: nginx
                            Date: Wed, 08 May 2024 19:35:24 GMT
                            Content-Type: text/html; charset=iso-8859-1
                            Content-Length: 196
                            Connection: keep-alive
                          • flag-us
                            DNS
                            58.55.71.13.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            58.55.71.13.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            75.159.190.20.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            75.159.190.20.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            95.221.229.192.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            95.221.229.192.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            6.88.184.89.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            6.88.184.89.in-addr.arpa
                            IN PTR
                            Response
                            6.88.184.89.in-addr.arpa
                            IN PTR
                            svh16mirohostnet
                          • flag-us
                            DNS
                            228.249.119.40.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            228.249.119.40.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            28.118.140.52.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            28.118.140.52.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            50.23.12.20.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            50.23.12.20.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            171.39.242.20.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            171.39.242.20.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            35.15.31.184.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            35.15.31.184.in-addr.arpa
                            IN PTR
                            Response
                            35.15.31.184.in-addr.arpa
                            IN PTR
                            a184-31-15-35deploystaticakamaitechnologiescom
                          • flag-us
                            DNS
                            88.156.103.20.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            88.156.103.20.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            14.227.111.52.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            14.227.111.52.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            g.bing.com
                            Remote address:
                            8.8.8.8:53
                            Request
                            g.bing.com
                            IN A
                            Response
                            g.bing.com
                            IN CNAME
                            g-bing-com.dual-a-0034.a-msedge.net
                            g-bing-com.dual-a-0034.a-msedge.net
                            IN CNAME
                            dual-a-0034.a-msedge.net
                            dual-a-0034.a-msedge.net
                            IN A
                            204.79.197.237
                            dual-a-0034.a-msedge.net
                            IN A
                            13.107.21.237
                          • flag-us
                            GET
                            https://g.bing.com/neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8QbfsYXjv38iPTapr_DqBGTVUCUxUAyprF-656wjLiCfGA5B8IGrXcVTaNKhB6SMGjIw9OHpVQo2dsBCDzSYPdR4lxPLu0b2slgFBshT-PxKEMgzVc2FZVavPwPqr2O3g5CPbs2blf_EJTMLtSk1dPE_f-fQPJtCl2H2lr8TzI28uVEHY%26u%3DbXN4Ym94JTNhJTJmJTJmZ2FtZSUyZiUzZnByb2R1Y3RJZCUzZDlOMEg2MktaM0JYViUyNm9jaWQlM2RpbnBfcm1jX3hib19zdGFydF9UUHRpdGxlX2VuZ2FnZQ%26rlid%3D2ec46c545dbc1e8c81780a7fee845a2c&TIME=20240508T193626Z&CID=530628298&EID=530628298&tids=15000&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189&muid=DA7A91E17E56FC56DF5DE341A69C2E55
                            Remote address:
                            204.79.197.237:443
                            Request
                            GET /neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8QbfsYXjv38iPTapr_DqBGTVUCUxUAyprF-656wjLiCfGA5B8IGrXcVTaNKhB6SMGjIw9OHpVQo2dsBCDzSYPdR4lxPLu0b2slgFBshT-PxKEMgzVc2FZVavPwPqr2O3g5CPbs2blf_EJTMLtSk1dPE_f-fQPJtCl2H2lr8TzI28uVEHY%26u%3DbXN4Ym94JTNhJTJmJTJmZ2FtZSUyZiUzZnByb2R1Y3RJZCUzZDlOMEg2MktaM0JYViUyNm9jaWQlM2RpbnBfcm1jX3hib19zdGFydF9UUHRpdGxlX2VuZ2FnZQ%26rlid%3D2ec46c545dbc1e8c81780a7fee845a2c&TIME=20240508T193626Z&CID=530628298&EID=530628298&tids=15000&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189&muid=DA7A91E17E56FC56DF5DE341A69C2E55 HTTP/2.0
                            host: g.bing.com
                            accept-encoding: gzip, deflate
                            user-agent: WindowsShellClient/9.0.40929.0 (Windows)
                            Response
                            HTTP/2.0 204
                            cache-control: no-cache, must-revalidate
                            pragma: no-cache
                            expires: Fri, 01 Jan 1990 00:00:00 GMT
                            set-cookie: MUID=10A5F5E22542641927ACE19B24F965E3; domain=.bing.com; expires=Mon, 02-Jun-2025 19:37:00 GMT; path=/; SameSite=None; Secure; Priority=High;
                            strict-transport-security: max-age=31536000; includeSubDomains; preload
                            access-control-allow-origin: *
                            x-cache: CONFIG_NOCACHE
                            accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
                            x-msedge-ref: Ref A: 9D33A9BEC875452CA94D05BABDFC5335 Ref B: LON04EDGE0811 Ref C: 2024-05-08T19:37:00Z
                            date: Wed, 08 May 2024 19:36:59 GMT
                          • flag-us
                            GET
                            https://g.bing.com/neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8QbfsYXjv38iPTapr_DqBGTVUCUxUAyprF-656wjLiCfGA5B8IGrXcVTaNKhB6SMGjIw9OHpVQo2dsBCDzSYPdR4lxPLu0b2slgFBshT-PxKEMgzVc2FZVavPwPqr2O3g5CPbs2blf_EJTMLtSk1dPE_f-fQPJtCl2H2lr8TzI28uVEHY%26u%3DbXN4Ym94JTNhJTJmJTJmZ2FtZSUyZiUzZnByb2R1Y3RJZCUzZDlOMEg2MktaM0JYViUyNm9jaWQlM2RpbnBfcm1jX3hib19zdGFydF9UUHRpdGxlX2VuZ2FnZQ%26rlid%3D2ec46c545dbc1e8c81780a7fee845a2c&TIME=20240508T193626Z&CID=530628298&EID=&tids=15000&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189&muid=DA7A91E17E56FC56DF5DE341A69C2E55
                            Remote address:
                            204.79.197.237:443
                            Request
                            GET /neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8QbfsYXjv38iPTapr_DqBGTVUCUxUAyprF-656wjLiCfGA5B8IGrXcVTaNKhB6SMGjIw9OHpVQo2dsBCDzSYPdR4lxPLu0b2slgFBshT-PxKEMgzVc2FZVavPwPqr2O3g5CPbs2blf_EJTMLtSk1dPE_f-fQPJtCl2H2lr8TzI28uVEHY%26u%3DbXN4Ym94JTNhJTJmJTJmZ2FtZSUyZiUzZnByb2R1Y3RJZCUzZDlOMEg2MktaM0JYViUyNm9jaWQlM2RpbnBfcm1jX3hib19zdGFydF9UUHRpdGxlX2VuZ2FnZQ%26rlid%3D2ec46c545dbc1e8c81780a7fee845a2c&TIME=20240508T193626Z&CID=530628298&EID=&tids=15000&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189&muid=DA7A91E17E56FC56DF5DE341A69C2E55 HTTP/2.0
                            host: g.bing.com
                            accept-encoding: gzip, deflate
                            user-agent: WindowsShellClient/9.0.40929.0 (Windows)
                            cookie: MUID=10A5F5E22542641927ACE19B24F965E3; _EDGE_S=SID=1A0A242AF9016C6005B53053F8AD6D31
                            Response
                            HTTP/2.0 204
                            cache-control: no-cache, must-revalidate
                            pragma: no-cache
                            expires: Fri, 01 Jan 1990 00:00:00 GMT
                            set-cookie: MSPTC=g2EhR0ox81Es7FgRWjbwGcmNn1REK5c-B6uAk9eKaKE; domain=.bing.com; expires=Mon, 02-Jun-2025 19:37:00 GMT; path=/; Partitioned; secure; SameSite=None
                            strict-transport-security: max-age=31536000; includeSubDomains; preload
                            access-control-allow-origin: *
                            x-cache: CONFIG_NOCACHE
                            accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
                            x-msedge-ref: Ref A: C44430AEC56E4EE9BEF7EC55553E3F09 Ref B: LON04EDGE0811 Ref C: 2024-05-08T19:37:00Z
                            date: Wed, 08 May 2024 19:36:59 GMT
                          • flag-be
                            GET
                            https://www.bing.com/aes/c.gif?RG=cf3f11186fd9431a8a85a4c297e7a8dd&med=10&pubId=251978541&tids=15000&type=mv&reqver=1.0&TIME=20240508T193626Z&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189
                            Remote address:
                            2.17.196.73:443
                            Request
                            GET /aes/c.gif?RG=cf3f11186fd9431a8a85a4c297e7a8dd&med=10&pubId=251978541&tids=15000&type=mv&reqver=1.0&TIME=20240508T193626Z&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189 HTTP/2.0
                            host: www.bing.com
                            accept-encoding: gzip, deflate
                            user-agent: WindowsShellClient/9.0.40929.0 (Windows)
                            cookie: MUID=10A5F5E22542641927ACE19B24F965E3
                            Response
                            HTTP/2.0 200
                            cache-control: private,no-store
                            pragma: no-cache
                            vary: Origin
                            p3p: CP=BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo
                            accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
                            x-msedge-ref: Ref A: 8DAA8A14B75146FAB5949ED0B058BD39 Ref B: FRA31EDGE0805 Ref C: 2024-05-08T19:37:00Z
                            content-length: 0
                            date: Wed, 08 May 2024 19:37:00 GMT
                            set-cookie: _EDGE_S=SID=1A0A242AF9016C6005B53053F8AD6D31; path=/; httponly; domain=bing.com
                            set-cookie: MUIDB=10A5F5E22542641927ACE19B24F965E3; path=/; httponly; expires=Mon, 02-Jun-2025 19:37:00 GMT
                            alt-svc: h3=":443"; ma=93600
                            x-cdn-traceid: 0.45c41102.1715197020.38649cf9
                          • flag-us
                            DNS
                            tse1.mm.bing.net
                            Remote address:
                            8.8.8.8:53
                            Request
                            tse1.mm.bing.net
                            IN A
                            Response
                            tse1.mm.bing.net
                            IN CNAME
                            mm-mm.bing.net.trafficmanager.net
                            mm-mm.bing.net.trafficmanager.net
                            IN CNAME
                            dual-a-0001.a-msedge.net
                            dual-a-0001.a-msedge.net
                            IN A
                            204.79.197.200
                            dual-a-0001.a-msedge.net
                            IN A
                            13.107.21.200
                          • flag-us
                            GET
                            https://tse1.mm.bing.net/th?id=OADD2.10239340783932_1JCHO8JLBZ4TPAX49&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90
                            Remote address:
                            204.79.197.200:443
                            Request
                            GET /th?id=OADD2.10239340783932_1JCHO8JLBZ4TPAX49&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
                            host: tse1.mm.bing.net
                            accept: */*
                            accept-encoding: gzip, deflate, br
                            user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041
                            Response
                            HTTP/2.0 200
                            cache-control: public, max-age=2592000
                            content-length: 638730
                            content-type: image/jpeg
                            x-cache: TCP_HIT
                            access-control-allow-origin: *
                            access-control-allow-headers: *
                            access-control-allow-methods: GET, POST, OPTIONS
                            timing-allow-origin: *
                            report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}&ndcParam=QUZE
                            nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
                            accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
                            x-msedge-ref: Ref A: 89C2B420D43345D5997763D9060C10F5 Ref B: LON04EDGE1111 Ref C: 2024-05-08T19:37:00Z
                            date: Wed, 08 May 2024 19:37:00 GMT
                          • flag-us
                            GET
                            https://tse1.mm.bing.net/th?id=OADD2.10239360931611_1SOG5TNNJKE1WH1R0&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90
                            Remote address:
                            204.79.197.200:443
                            Request
                            GET /th?id=OADD2.10239360931611_1SOG5TNNJKE1WH1R0&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
                            host: tse1.mm.bing.net
                            accept: */*
                            accept-encoding: gzip, deflate, br
                            user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041
                            Response
                            HTTP/2.0 200
                            cache-control: public, max-age=2592000
                            content-length: 555746
                            content-type: image/jpeg
                            x-cache: TCP_HIT
                            access-control-allow-origin: *
                            access-control-allow-headers: *
                            access-control-allow-methods: GET, POST, OPTIONS
                            timing-allow-origin: *
                            report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
                            nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
                            accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
                            x-msedge-ref: Ref A: 949CCA98F9E24B039FEE5E1EA263AAE9 Ref B: LON04EDGE1111 Ref C: 2024-05-08T19:37:00Z
                            date: Wed, 08 May 2024 19:37:00 GMT
                          • flag-us
                            GET
                            https://tse1.mm.bing.net/th?id=OADD2.10239340783933_1QOIM48UV8MGOV4SU&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90
                            Remote address:
                            204.79.197.200:443
                            Request
                            GET /th?id=OADD2.10239340783933_1QOIM48UV8MGOV4SU&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
                            host: tse1.mm.bing.net
                            accept: */*
                            accept-encoding: gzip, deflate, br
                            user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041
                            Response
                            HTTP/2.0 200
                            cache-control: public, max-age=2592000
                            content-length: 621794
                            content-type: image/jpeg
                            x-cache: TCP_HIT
                            access-control-allow-origin: *
                            access-control-allow-headers: *
                            access-control-allow-methods: GET, POST, OPTIONS
                            timing-allow-origin: *
                            report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}&ndcParam=QUZE
                            nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
                            accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
                            x-msedge-ref: Ref A: 5D81F1CB07A949DEB13F4F371DE7B403 Ref B: LON04EDGE1111 Ref C: 2024-05-08T19:37:00Z
                            date: Wed, 08 May 2024 19:37:00 GMT
                          • flag-us
                            GET
                            https://tse1.mm.bing.net/th?id=OADD2.10239360931612_153L2SVWUYAQUME4E&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90
                            Remote address:
                            204.79.197.200:443
                            Request
                            GET /th?id=OADD2.10239360931612_153L2SVWUYAQUME4E&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
                            host: tse1.mm.bing.net
                            accept: */*
                            accept-encoding: gzip, deflate, br
                            user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041
                            Response
                            HTTP/2.0 200
                            cache-control: public, max-age=2592000
                            content-length: 659775
                            content-type: image/jpeg
                            x-cache: TCP_HIT
                            access-control-allow-origin: *
                            access-control-allow-headers: *
                            access-control-allow-methods: GET, POST, OPTIONS
                            timing-allow-origin: *
                            report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
                            nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
                            accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
                            x-msedge-ref: Ref A: FE0CA0E5B8744FA595BEED4BD2FCC3CB Ref B: LON04EDGE1111 Ref C: 2024-05-08T19:37:00Z
                            date: Wed, 08 May 2024 19:37:00 GMT
                          • flag-us
                            DNS
                            237.197.79.204.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            237.197.79.204.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            237.197.79.204.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            237.197.79.204.in-addr.arpa
                            IN PTR
                          • flag-us
                            DNS
                            26.35.223.20.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            26.35.223.20.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            73.196.17.2.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            73.196.17.2.in-addr.arpa
                            IN PTR
                            Response
                            73.196.17.2.in-addr.arpa
                            IN PTR
                            a2-17-196-73deploystaticakamaitechnologiescom
                          • flag-be
                            GET
                            https://www.bing.com/th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90
                            Remote address:
                            2.17.196.73:443
                            Request
                            GET /th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90 HTTP/2.0
                            host: www.bing.com
                            accept: */*
                            cookie: MUID=10A5F5E22542641927ACE19B24F965E3; _EDGE_S=SID=1A0A242AF9016C6005B53053F8AD6D31; MSPTC=g2EhR0ox81Es7FgRWjbwGcmNn1REK5c-B6uAk9eKaKE; MUIDB=10A5F5E22542641927ACE19B24F965E3
                            accept-encoding: gzip, deflate, br
                            user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041
                            Response
                            HTTP/2.0 200
                            cache-control: public, max-age=2592000
                            content-type: image/png
                            access-control-allow-origin: *
                            access-control-allow-headers: *
                            access-control-allow-methods: GET, POST, OPTIONS
                            timing-allow-origin: *
                            report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
                            nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
                            content-length: 1107
                            date: Wed, 08 May 2024 19:37:01 GMT
                            alt-svc: h3=":443"; ma=93600
                            x-cdn-traceid: 0.45c41102.1715197021.3864a04e
                          • flag-us
                            DNS
                            200.197.79.204.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            200.197.79.204.in-addr.arpa
                            IN PTR
                            Response
                            200.197.79.204.in-addr.arpa
                            IN PTR
                            a-0001a-msedgenet
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/stylesheet.css
                            http
                            msedge.exe
                            561 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/stylesheet.css

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/store_logo.png
                            http
                            msedge.exe
                            603 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/store_logo.png

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/infobox/corner_left.gif
                            http
                            msedge.exe
                            612 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/infobox/corner_left.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/back.gif
                            http
                            msedge.exe
                            597 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/back.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/infobox/corner_right_left.gif
                            http
                            msedge.exe
                            618 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/infobox/corner_right_left.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/header_checkout.gif
                            http
                            msedge.exe
                            608 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/header_checkout.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/header_account.gif
                            http
                            msedge.exe
                            607 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/header_account.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/header_cart.gif
                            http
                            msedge.exe
                            604 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/header_cart.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/box_write_review.gif
                            http
                            msedge.exe
                            609 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/box_write_review.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/infobox/arrow_right.gif
                            http
                            msedge.exe
                            612 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/infobox/arrow_right.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/p.jpg
                            http
                            msedge.exe
                            594 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/p.jpg

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/infobox/corner_right.gif
                            http
                            msedge.exe
                            613 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/infobox/corner_right.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_tell_a_friend.gif
                            http
                            msedge.exe
                            648 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_tell_a_friend.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/box_products_notifications.gif
                            http
                            msedge.exe
                            619 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/box_products_notifications.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/images/pixel_trans.gif
                            http
                            msedge.exe
                            604 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/images/pixel_trans.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_quick_find.gif
                            http
                            msedge.exe
                            645 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_quick_find.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/includes/languages/russian/images/icon.gif
                            http
                            msedge.exe
                            624 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/includes/languages/russian/images/icon.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/includes/languages/english/images/icon.gif
                            http
                            msedge.exe
                            624 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/includes/languages/english/images/icon.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_in_cart.gif
                            http
                            msedge.exe
                            642 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_in_cart.gif

                            HTTP Response

                            404
                          • 89.184.88.6:80
                            http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_reviews.gif
                            http
                            msedge.exe
                            642 B
                             536 B
                             5
                            4

                            HTTP Request

                            GET http://cdd.net.ua/apothecary/includes/languages/russian/images/buttons/button_reviews.gif

                            HTTP Response

                            404
                          • 204.79.197.237:443
                            https://g.bing.com/neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8QbfsYXjv38iPTapr_DqBGTVUCUxUAyprF-656wjLiCfGA5B8IGrXcVTaNKhB6SMGjIw9OHpVQo2dsBCDzSYPdR4lxPLu0b2slgFBshT-PxKEMgzVc2FZVavPwPqr2O3g5CPbs2blf_EJTMLtSk1dPE_f-fQPJtCl2H2lr8TzI28uVEHY%26u%3DbXN4Ym94JTNhJTJmJTJmZ2FtZSUyZiUzZnByb2R1Y3RJZCUzZDlOMEg2MktaM0JYViUyNm9jaWQlM2RpbnBfcm1jX3hib19zdGFydF9UUHRpdGxlX2VuZ2FnZQ%26rlid%3D2ec46c545dbc1e8c81780a7fee845a2c&TIME=20240508T193626Z&CID=530628298&EID=&tids=15000&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189&muid=DA7A91E17E56FC56DF5DE341A69C2E55
                            tls, http2
                            2.5kB
                             8.9kB
                             19
                            15

                            HTTP Request

                            GET https://g.bing.com/neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8QbfsYXjv38iPTapr_DqBGTVUCUxUAyprF-656wjLiCfGA5B8IGrXcVTaNKhB6SMGjIw9OHpVQo2dsBCDzSYPdR4lxPLu0b2slgFBshT-PxKEMgzVc2FZVavPwPqr2O3g5CPbs2blf_EJTMLtSk1dPE_f-fQPJtCl2H2lr8TzI28uVEHY%26u%3DbXN4Ym94JTNhJTJmJTJmZ2FtZSUyZiUzZnByb2R1Y3RJZCUzZDlOMEg2MktaM0JYViUyNm9jaWQlM2RpbnBfcm1jX3hib19zdGFydF9UUHRpdGxlX2VuZ2FnZQ%26rlid%3D2ec46c545dbc1e8c81780a7fee845a2c&TIME=20240508T193626Z&CID=530628298&EID=530628298&tids=15000&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189&muid=DA7A91E17E56FC56DF5DE341A69C2E55

                            HTTP Response

                            204

                            HTTP Request

                            GET https://g.bing.com/neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8QbfsYXjv38iPTapr_DqBGTVUCUxUAyprF-656wjLiCfGA5B8IGrXcVTaNKhB6SMGjIw9OHpVQo2dsBCDzSYPdR4lxPLu0b2slgFBshT-PxKEMgzVc2FZVavPwPqr2O3g5CPbs2blf_EJTMLtSk1dPE_f-fQPJtCl2H2lr8TzI28uVEHY%26u%3DbXN4Ym94JTNhJTJmJTJmZ2FtZSUyZiUzZnByb2R1Y3RJZCUzZDlOMEg2MktaM0JYViUyNm9jaWQlM2RpbnBfcm1jX3hib19zdGFydF9UUHRpdGxlX2VuZ2FnZQ%26rlid%3D2ec46c545dbc1e8c81780a7fee845a2c&TIME=20240508T193626Z&CID=530628298&EID=&tids=15000&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189&muid=DA7A91E17E56FC56DF5DE341A69C2E55

                            HTTP Response

                            204
                          • 2.17.196.73:443
                            https://www.bing.com/aes/c.gif?RG=cf3f11186fd9431a8a85a4c297e7a8dd&med=10&pubId=251978541&tids=15000&type=mv&reqver=1.0&TIME=20240508T193626Z&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189
                            tls, http2
                            1.4kB
                             5.4kB
                             16
                            11

                            HTTP Request

                            GET https://www.bing.com/aes/c.gif?RG=cf3f11186fd9431a8a85a4c297e7a8dd&med=10&pubId=251978541&tids=15000&type=mv&reqver=1.0&TIME=20240508T193626Z&adUnitId=11730597&localId=w:DA7A91E1-7E56-FC56-DF5D-E341A69C2E55&deviceId=6966564702298189

                            HTTP Response

                            200
                          • 204.79.197.200:443
                            tse1.mm.bing.net
                            tls, http2
                            1.2kB
                             8.1kB
                             16
                            13
                          • 204.79.197.200:443
                            tse1.mm.bing.net
                            tls, http2
                            1.2kB
                             8.1kB
                             16
                            14
                          • 204.79.197.200:443
                            tse1.mm.bing.net
                            tls, http2
                            1.2kB
                             8.1kB
                             16
                            13
                          • 204.79.197.200:443
                            https://tse1.mm.bing.net/th?id=OADD2.10239360931612_153L2SVWUYAQUME4E&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90
                            tls, http2
                            89.4kB
                             2.6MB
                             1872
                            1868

                            HTTP Request

                            GET https://tse1.mm.bing.net/th?id=OADD2.10239340783932_1JCHO8JLBZ4TPAX49&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

                            HTTP Request

                            GET https://tse1.mm.bing.net/th?id=OADD2.10239360931611_1SOG5TNNJKE1WH1R0&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

                            HTTP Request

                            GET https://tse1.mm.bing.net/th?id=OADD2.10239340783933_1QOIM48UV8MGOV4SU&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

                            HTTP Request

                            GET https://tse1.mm.bing.net/th?id=OADD2.10239360931612_153L2SVWUYAQUME4E&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

                            HTTP Response

                            200

                            HTTP Response

                            200

                            HTTP Response

                            200

                            HTTP Response

                            200
                          • 2.17.196.73:443
                            https://www.bing.com/th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90
                            tls, http2
                            1.6kB
                             6.4kB
                             17
                            13

                            HTTP Request

                            GET https://www.bing.com/th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90

                            HTTP Response

                            200
                          • 8.8.8.8:53
                            cdd.net.ua
                            dns
                            msedge.exe
                            56 B
                             72 B
                             1
                            1

                            DNS Request

                            cdd.net.ua

                            DNS Response

                            89.184.88.6

                          • 8.8.8.8:53
                            58.55.71.13.in-addr.arpa
                            dns
                            70 B
                             144 B
                             1
                            1

                            DNS Request

                            58.55.71.13.in-addr.arpa

                          • 8.8.8.8:53
                            75.159.190.20.in-addr.arpa
                            dns
                            72 B
                             158 B
                             1
                            1

                            DNS Request

                            75.159.190.20.in-addr.arpa

                          • 8.8.8.8:53
                            95.221.229.192.in-addr.arpa
                            dns
                            73 B
                             144 B
                             1
                            1

                            DNS Request

                            95.221.229.192.in-addr.arpa

                          • 8.8.8.8:53
                            6.88.184.89.in-addr.arpa
                            dns
                            70 B
                             102 B
                             1
                            1

                            DNS Request

                            6.88.184.89.in-addr.arpa

                          • 8.8.8.8:53
                            228.249.119.40.in-addr.arpa
                            dns
                            73 B
                             159 B
                             1
                            1

                            DNS Request

                            228.249.119.40.in-addr.arpa

                          • 224.0.0.251:5353
                            515 B
                             8
                          • 8.8.8.8:53
                            28.118.140.52.in-addr.arpa
                            dns
                            72 B
                             158 B
                             1
                            1

                            DNS Request

                            28.118.140.52.in-addr.arpa

                          • 8.8.8.8:53
                            50.23.12.20.in-addr.arpa
                            dns
                            70 B
                             156 B
                             1
                            1

                            DNS Request

                            50.23.12.20.in-addr.arpa

                          • 8.8.8.8:53
                            171.39.242.20.in-addr.arpa
                            dns
                            72 B
                             158 B
                             1
                            1

                            DNS Request

                            171.39.242.20.in-addr.arpa

                          • 8.8.8.8:53
                            35.15.31.184.in-addr.arpa
                            dns
                            71 B
                             135 B
                             1
                            1

                            DNS Request

                            35.15.31.184.in-addr.arpa

                          • 8.8.8.8:53
                            88.156.103.20.in-addr.arpa
                            dns
                            72 B
                             158 B
                             1
                            1

                            DNS Request

                            88.156.103.20.in-addr.arpa

                          • 8.8.8.8:53
                            14.227.111.52.in-addr.arpa
                            dns
                            72 B
                             158 B
                             1
                            1

                            DNS Request

                            14.227.111.52.in-addr.arpa

                          • 8.8.8.8:53
                            g.bing.com
                            dns
                            56 B
                             151 B
                             1
                            1

                            DNS Request

                            g.bing.com

                            DNS Response

                            204.79.197.237
                            13.107.21.237

                          • 8.8.8.8:53
                            tse1.mm.bing.net
                            dns
                            62 B
                             173 B
                             1
                            1

                            DNS Request

                            tse1.mm.bing.net

                            DNS Response

                            204.79.197.200
                            13.107.21.200

                          • 8.8.8.8:53
                            237.197.79.204.in-addr.arpa
                            dns
                            146 B
                             143 B
                             2
                            1

                            DNS Request

                            237.197.79.204.in-addr.arpa

                            DNS Request

                            237.197.79.204.in-addr.arpa

                          • 8.8.8.8:53
                            26.35.223.20.in-addr.arpa
                            dns
                            71 B
                             157 B
                             1
                            1

                            DNS Request

                            26.35.223.20.in-addr.arpa

                          • 8.8.8.8:53
                            73.196.17.2.in-addr.arpa
                            dns
                            70 B
                             133 B
                             1
                            1

                            DNS Request

                            73.196.17.2.in-addr.arpa

                          • 8.8.8.8:53
                            200.197.79.204.in-addr.arpa
                            dns
                            73 B
                             106 B
                             1
                            1

                            DNS Request

                            200.197.79.204.in-addr.arpa

                          MITRE ATT&CK Enterprise v15

                          Replay Monitor

                          Loading Replay Monitor...

                          Downloads

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                            Filesize

                            152B

                            MD5

                            4f7152bc5a1a715ef481e37d1c791959

                            SHA1

                            c8a1ed674c62ae4f45519f90a8cc5a81eff3a6d7

                            SHA256

                            704dd4f98d8ca34ec421f23ba1891b178c23c14b3301e4655efc5c02d356c2bc

                            SHA512

                            2e6b02ca35d76a655a17a5f3e9dbd8d7517c7dae24f0095c7350eb9e7bdf9e1256a7009aa8878f96c89d1ea4fe5323a41f72b8c551806dda62880d7ff231ff5c

                            Download Submit

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                            Filesize

                            152B

                            MD5

                            ea98e583ad99df195d29aa066204ab56

                            SHA1

                            f89398664af0179641aa0138b337097b617cb2db

                            SHA256

                            a7abb51435909fa2d75c6f2ff5c69a93d4a0ab276ed579e7d8733b2a63ffbee6

                            SHA512

                            e109be3466e653e5d310b3e402e1626298b09205d223722a82344dd78504f3c33e1e24e8402a02f38cd2c9c50d96a303ce4846bea5a583423937ab018cd5782f

                            Download Submit

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                            Filesize

                            6KB

                            MD5

                            0b01f4734990e749f4679845d920dd6c

                            SHA1

                            6f98239301f81bc069c50f90d58914061e557946

                            SHA256

                            cd5b9b0aba7d6b94d375e7c2b5ce6bb65c844ba6f427862198b4e65809171ad2

                            SHA512

                            1ea7313cb34a5b334944a49ea687c0e511b82492e08f06bb0eae24053d801ea4499ac9289cc8894c2ff5280f9817dba2fd2a5aa02eeb425e1d06bcf61bb72a23

                            Download Submit

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                            Filesize

                            6KB

                            MD5

                            1439c2a52927320bcd0e77ab8da7cee0

                            SHA1

                            14e6810bb14ef82daa0380a0a120a04c79c2fe58

                            SHA256

                            296adf6ef3e915d1988587a0a42176162ed2d6353c38c62f4f538536a3e32b6c

                            SHA512

                            3d64fff5944924202d6b06e8864810d184cb88c3a5e85fbd040a6136eddd9076749a18539e6ab3cb4adabeb491efb040bf4c6f747146f71714696e2b727a653e

                            Download Submit

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
                            Filesize

                            16B

                            MD5

                            206702161f94c5cd39fadd03f4014d98

                            SHA1

                            bd8bfc144fb5326d21bd1531523d9fb50e1b600a

                            SHA256

                            1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

                            SHA512

                            0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

                            Download Submit

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
                            Filesize

                            16B

                            MD5

                            46295cac801e5d4857d09837238a6394

                            SHA1

                            44e0fa1b517dbf802b18faf0785eeea6ac51594b

                            SHA256

                            0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

                            SHA512

                            8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

                            Download Submit

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
                            Filesize

                            11KB

                            MD5

                            07b0d0a02774a5db01866d46392d5087

                            SHA1

                            676bd8a00b36b0b7c7a9d7fed295f65169cf6f8d

                            SHA256

                            153bf8147f249e79139482b9cfdfa34a7b5f62f62416697d29e2ee36d9b244b5

                            SHA512

                            d10f5198582267d8519f1f46d1ae688dde4d3f8a1729dbeda9e33044950626160c449414fb374ea5c55a6707f92a72d44303c81d880edd5a6edebab96d51d1f6

                            Download Submit

                          We care about your privacy.

                          This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.