Windows Analysis Report
https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzN

Overview

General Information

Sample URL:	https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjY
Analysis ID:	1417355
Infos:

Detection

Score:	2
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

HTML body contains password input but no form action

HTML body with high number of large embedded background images detected

Stores files to the Windows start menu directory

Uses insecure TLS / SSL version for HTTPS connection

Classification

Signatures

HTML body contains password input but no form action

Source: https://cloud.malwarebytes.com/auth/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiA

HTTP Parser: <input type="password" .../> found but no <form action="...

HTML body with high number of large embedded background images detected

Source: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiA	HTTP Parser: Total embedded background img size: 720147
Source: https://cloud.malwarebytes.com/auth/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiA	HTTP Parser: Total embedded background img size: 720147

HTTP Parser: <input type="password" .../> found

Source: https://td.doubleclick.net/td/rul/930356311?random=1711678663454&cv=11&fst=1711678663454&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config	HTTP Parser: No favicon
Source: https://td.doubleclick.net/td/rul/407675570?random=1711678663487&cv=11&fst=1711678663487&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config	HTTP Parser: No favicon
Source: https://s.company-target.com/s/sync?exc=lr	HTTP Parser: No favicon
Source: https://apps.apple.com/us/app/threatdown-admin/id1666801296	HTTP Parser: No favicon
Source: https://apps.apple.com/us/app/threatdown-admin/id1666801296	HTTP Parser: No favicon
Source: https://apps.apple.com/us/app/threatdown-admin/id1666801296	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0&co=aHR0cHM6Ly9wbGF5Lmdvb2dsZS5jb206NDQz&hl=en&v=moV1mTgQ6S91nuTnmll4Y9yf&size=invisible&cb=psosspefqez5	HTTP Parser: No favicon
Source: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2F	HTTP Parser: No favicon
Source: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2F	HTTP Parser: No favicon
Source: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863	HTTP Parser: No favicon
Source: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863	HTTP Parser: No favicon
Source: https://td.doubleclick.net/td/rul/930356311?random=1711678706851&cv=11&fst=1711678706851&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config	HTTP Parser: No favicon
Source: https://td.doubleclick.net/td/rul/407675570?random=1711678706881&cv=11&fst=1711678706881&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config	HTTP Parser: No favicon

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49747 version: TLS 1.0

Source: unknown	HTTPS traffic detected: 23.48.10.90:443 -> 192.168.2.5:49720 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.48.10.90:443 -> 192.168.2.5:49729 version: TLS 1.2

Source: chrome.exe

Memory has grown: Private usage: 1MB later: 40MB

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49747 version: TLS 1.0

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiA HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/fontawesome-webfont.woff2 HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://cloud.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /vendors.34e5b5111313629818ff.js?964871b7764ac3d70f0a HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /main.f1770320b6021af0c749.js?964871b7764ac3d70f0a HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /remoteEntry.js?964871b7764ac3d70f0a HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pa-5b632c6e54acd30016000074.js HTTP/1.1Host: rum-static.pingdom.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /agent/static/a12d90ec-73be-4aee-72c5-600a4a967d29/pendo.js HTTP/1.1Host: content.content.cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /292.9ec35c180fd3fd007a8c.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /7778.8d12bd2739d02678442d.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2987.c9173728350a7040cfc1.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1920.55af13dcbd62f39bf5cd.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /6744.c52ed127ab997d4d9782.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /3474.ef6072364c21886db0b9.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /remoteEntry.js HTTP/1.1Host: deployment-module.cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /remoteEntry.js HTTP/1.1Host: sam-module.cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /fonts/Roboto-Regular.woff HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://cloud.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/Roboto-Light.woff HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://cloud.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /451.f3dcfcae91499e158055.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/auth/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1733.2826602ecdd07c3208c5.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/auth/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/favicon-32x32.png HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://cloud.malwarebytes.com/auth/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /img/beacon.gif?id=5b632c6e54acd30016000074&sAW=1280&sAH=984&bIW=1280&bIH=907&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=138&cE=357&dLE=138&dLS=64&fS=7&hS=139&rE=-1&rS=-1&reS=357&resS=606&resE=607&uEE=-1&uES=-1&dL=612&dI=627&dCLES=3098&dCLEE=3098&dC=7591&lES=7592&lEE=7594&s=nt&title=ThreatDown%2C%20powered%20by%20Malwarebytes&path=https%3A%2F%2Fcloud.malwarebytes.com%2Fauth%2Facceptinvite&ref=&sId=wntif8q4&sST=1711678643&sIS=1&rV=0&v=1.4.1 HTTP/1.1Host: rum-collector-2.pingdom.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://cloud.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/favicon-32x32.png HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /img/beacon.gif?id=5b632c6e54acd30016000074&sAW=1280&sAH=984&bIW=1280&bIH=907&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=138&cE=357&dLE=138&dLS=64&fS=7&hS=139&rE=-1&rS=-1&reS=357&resS=606&resE=607&uEE=-1&uES=-1&dL=612&dI=627&dCLES=3098&dCLEE=3098&dC=7591&lES=7592&lEE=7594&s=nt&title=ThreatDown%2C%20powered%20by%20Malwarebytes&path=https%3A%2F%2Fcloud.malwarebytes.com%2Fauth%2Facceptinvite&ref=&sId=wntif8q4&sST=1711678643&sIS=1&rV=0&v=1.4.1 HTTP/1.1Host: rum-collector-2.pingdom.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eula HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /_static/??-eJyNjEsKgDAMBS9kDaX42YhnSTVioWmliRRvb8ELuHzMzIN6mS0npaSgJzEJMMaKhfyjbaAIqYC/Q9wbCanfRDr4V8XgC5YHWgJH0w1WkszU8/ez8mIna8fBjW5+AV5fMxo= HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /j.php?a=622914&u=https%3A%2F%2Fwww.malwarebytes.com%2Feula&vn=2 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Roboto-Regular.b009a76a.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Graphik-Regular.3fdd19ea.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Graphik-Semibold.b023d334.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Graphik-Medium.3ff48deb.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /js/script.js HTTP/1.1Host: plausible.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Roboto-Black.2e8becfc.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /e-202413.js HTTP/1.1Host: stats.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web/djIkdGU6Ny4wOmFzeW5jJWdxdWVyeQ==/tag-3b111c75d9433a455983f12ca040dbdb.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.gif?cd=0&a=622914&d=malwarebytes.com&u=D37510582766F57CE9172FC6B1B42626D&h=71a8d44c7b9bba69e783641e1604b8d0&t=false HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Roboto-Bold.227c9319.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Roboto-Medium.f25d774e.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Graphik-Light.8512717f.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/07/malwarebytes-state-of-malware-report-2023.jpg HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/jquery/jquery.min.js?ver=1.0 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/09/product-menu-screen.webp?w=356 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/src/images/footer-globe.svg HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0
Source: global traffic	HTTP traffic detected: GET /v.gif?cd=0&a=622914&d=malwarebytes.com&u=D37510582766F57CE9172FC6B1B42626D&h=71a8d44c7b9bba69e783641e1604b8d0&t=false HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_static/??-eJyVjlEKwjAQRC9kXUKx9Uc8S5qMdGOSleyW4O0NeAH9HN68Yai/piDVUI1sR4FS8bn7hu1tI3hVmNJ2cI6DcD0nPdFvkrZASQlBSkELoMM4s/FoBJEn44+t74FHA6YovWbxcdj3cnOrc8tlXuZr+gBVQExw HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0
Source: global traffic	HTTP traffic detected: GET /web/djIkYTo0LjA6bm9qcXVlcnksdHI6Ny4w/tag-43de7e3097c45e1309fa8124610650de.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings.js?a=622914&settings_type=1&vn=7.0&exc=1\|48\|3\|4\|161 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/07/malwarebytes-state-of-malware-report-2023.jpg HTTP/1.1Host: www.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%241711678658%3A96.4585075%3A%3A; _vwo_sn=0%3A1
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/09/product-menu-screen.webp?w=356 HTTP/1.1Host: www.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%241711678658%3A96.4585075%3A%3A; _vwo_sn=0%3A1
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/src/images/footer-globe.svg HTTP/1.1Host: www.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%241711678658%3A96.4585075%3A%3A; _vwo_sn=0%3A1
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/82971089-2677-4e1e-8fab-44444f76330b/82971089-2677-4e1e-8fab-44444f76330b.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analysis/worker-70faafffa0475802f5ee03ca5ff74179.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=1&ed=%7B%22tz%22%3A%22Europe%2FZurich%22%2C%22tO%22%3A%22-1%22%2C%22lt%22%3A%221711678659712%22%2C%22r%22%3A%22%22%2C%22ul%22%3A%22en-us%22%2C%22de%22%3A%22UTF-8%22%2C%22sc%22%3A%2224%22%2C%22sr%22%3A%221280x1024%22%7D&cu=https%253A%252F%252Fwww.malwarebytes.com%252Feula&r=0&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&eTime=1711678659723&random=0.0679797350213347 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=1&tags={%22si%22:{%22161%22:%221%22,%221%22:%221%22}}&eg=19,1&update=1&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&_cu=https%3A%2F%2Fwww.malwarebytes.com%2Feula&eTime=1711678659746&random=0.047838305754880794 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=227197325&post=5009&tz=-7&srv=www.malwarebytes.com&hp=vip&j=1%3A13.2.2&host=www.malwarebytes.com&ref=&fcp=1548&rand=0.2851738971534137 HTTP/1.1Host: pixel.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_sn=0%3A1; _vwo_ds=3%241711678658%3A96.4585075%3A%3A%3A%3A1
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=1&ed=%7B%22tz%22%3A%22Europe%2FZurich%22%2C%22tO%22%3A%22-1%22%2C%22lt%22%3A%221711678659712%22%2C%22r%22%3A%22%22%2C%22ul%22%3A%22en-us%22%2C%22de%22%3A%22UTF-8%22%2C%22sc%22%3A%2224%22%2C%22sr%22%3A%221280x1024%22%7D&cu=https%253A%252F%252Fwww.malwarebytes.com%252Feula&r=0&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&eTime=1711678659723&random=0.0679797350213347 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=1&tags={%22si%22:{%22161%22:%221%22,%221%22:%221%22}}&eg=19,1&update=1&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&_cu=https%3A%2F%2Fwww.malwarebytes.com%2Feula&eTime=1711678659746&random=0.047838305754880794 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=32 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_sn=0%3A1%3Ar2.visualwebsiteoptimizer.com%3A1%3A1; _vwo_ds=3%3Aa_1%2Ct_1%3A0%241711678658%3A96.4585075%3A%3A19_1%2C1_1%3A4_1%2C3_1%3A1
Source: global traffic	HTTP traffic detected: GET /analysis/worker-70faafffa0475802f5ee03ca5ff74179.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/82971089-2677-4e1e-8fab-44444f76330b/82971089-2677-4e1e-8fab-44444f76330b.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=227197325&post=5009&tz=-7&srv=www.malwarebytes.com&hp=vip&j=1%3A13.2.2&host=www.malwarebytes.com&ref=&fcp=1548&rand=0.2851738971534137 HTTP/1.1Host: pixel.wp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=32 HTTP/1.1Host: www.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%3Aa_1%2Ct_1%3A0%241711678658%3A96.4585075%3A%3A19_1%2C1_1%3A4_1%2C3_1%3A1; _vwo_sn=0%3A1%3Ar2.visualwebsiteoptimizer.com%3A1%3A1%3Areferrer%3D
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202402.1.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/82971089-2677-4e1e-8fab-44444f76330b/018e2f1e-12b2-7a41-ab63-6c6e010fa4d9/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/82971089-2677-4e1e-8fab-44444f76330b/018e2f1e-12b2-7a41-ab63-6c6e010fa4d9/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202402.1.0/assets/v2/otPcPanel.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202402.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /HWyTnY16.min.js HTTP/1.1Host: scripts.demandbase.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /active/malwarebytes.jsp HTTP/1.1Host: www.upsellit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uwt.js HTTP/1.1Host: static.ads-twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/ot_guard_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/4e1c8bc8-2743-413b-8699-aad2216e8616/3be7f101-47f0-48ab-ae22-e34efabb8a62/9b43fe5c-b22b-40eb-9d38-57e36d038e98/MWB_logo_horizontal_RGB.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/powered_by_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/sync?exc=lr HTTP/1.1Host: s.company-target.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202402.1.0/assets/v2/otPcPanel.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202402.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/ot_guard_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/930356311?random=1711678663454&cv=11&fst=1711678663454&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/407675570?random=1711678663487&cv=11&fst=1711678663487&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /464526.gif HTTP/1.1Host: id.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/4e1c8bc8-2743-413b-8699-aad2216e8616/3be7f101-47f0-48ab-ae22-e34efabb8a62/9b43fe5c-b22b-40eb-9d38-57e36d038e98/MWB_logo_horizontal_RGB.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/powered_by_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-3347303-10&cid=746274578.1711678643&jid=1763037649&uid=3226B7D4-849E-4BE5-B15C-284292B54DCA&gjid=188008371&_gid=859933239.1711678643&_u=SCCAiEAjBAAAAGAAIg~&z=515429881 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=18&expiry=1727576264&external_user_id=2c1f1154-2d99-4eed-a8d3-a0849e7d153c HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sync?UIDM=2c1f1154-2d99-4eed-a8d3-a0849e7d153c HTTP/1.1Host: partners.tremorhub.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /utility/customer_ip.jsp?companyID=11657&si=c8ngeh_1711678664 HTTP/1.1Host: www.upsellit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-3347303-10&cid=746274578.1711678643&jid=1763037649&_u=SCCAiEAjBAAAAGAAIg~&z=1551232403 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /1000.gif?memo=CI6tHBoNCMjJmLAGEgUI6AcQAEIASgA HTTP/1.1Host: id.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rlas3=Sgi4Nm8+jJMqjuS6SpLEJdWqw+hpgdJkKQdHHinLxeY=; pxrc=CAA=
Source: global traffic	HTTP traffic detected: GET /api/v2/ip.json?referrer=&page=https%3A%2F%2Fwww.malwarebytes.com%2Feula&page_title=End%20User%20License%20Agreement%20(EULA) HTTP/1.1Host: api.company-target.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=2c1f1154-2d99-4eed-a8d3-a0849e7d153c; tuuid_lu=1711678664\|ix:0\|mctv:0\|rp:0
Source: global traffic	HTTP traffic detected: GET /bg9s?x-amz-cf-id=zCGjl2-aS-nQLToEGnmaxu_yj9OlXQjvN8_LBlnfqjhpVQQVVUG4MQ==&api-version=v2 HTTP/1.1Host: tag-logger.demandbase.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/930356311/?random=1711678663454&cv=11&fst=1711678663454&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/407675570/?random=1711678663487&cv=11&fst=1711678663487&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=5ac4fd38-cdd0-4459-ba1d-48388739c551&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=246dee9e-ab6c-423f-8fef-9ae121c36dc1&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: t.coConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=5ac4fd38-cdd0-4459-ba1d-48388739c551&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=246dee9e-ab6c-423f-8fef-9ae121c36dc1&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: analytics.twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=18&expiry=1727576264&external_user_id=2c1f1154-2d99-4eed-a8d3-a0849e7d153c&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=ZgYkyNHM720AAH4YADpthAAA; CMPS=399; CMPRO=399
Source: global traffic	HTTP traffic detected: GET /sync?UIDM=2c1f1154-2d99-4eed-a8d3-a0849e7d153c HTTP/1.1Host: partners.tremorhub.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tvid=e3e54fcac79940a192926787a5a434c1; tv_UIDM=2c1f1154-2d99-4eed-a8d3-a0849e7d153c
Source: global traffic	HTTP traffic detected: GET /log?vendor=liveramp&user_id=Xc1297XrPEeffxMkofcQS3LNLUMrFcMjKCBZaz1fqIx72WOZk HTTP/1.1Host: segments.company-target.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=2c1f1154-2d99-4eed-a8d3-a0849e7d153c; tuuid_lu=1711678664\|ix:0\|mctv:0\|rp:0
Source: global traffic	HTTP traffic detected: GET /bg9s?x-amz-cf-id=zCGjl2-aS-nQLToEGnmaxu_yj9OlXQjvN8_LBlnfqjhpVQQVVUG4MQ==&api-version=v2 HTTP/1.1Host: tag-logger.demandbase.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-3347303-10&cid=746274578.1711678643&jid=1763037649&_u=SCCAiEAjBAAAAGAAIg~&z=1551232403 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/407675570/?random=1711678663487&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqaxwbC2eSTpo3rDYK5x-yh6a2CRyV7w&random=2899644059&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=5ac4fd38-cdd0-4459-ba1d-48388739c551&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=246dee9e-ab6c-423f-8fef-9ae121c36dc1&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: t.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: muc_ads=5e01dda0-88a2-4b35-8a35-8e5cbda3c9d3
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=18&expiry=1727576264&external_user_id=2c1f1154-2d99-4eed-a8d3-a0849e7d153c&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=ZgYkyNHM720AAH4YADpthAAA; CMPS=399; CMPRO=399
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/930356311/?random=1711678663454&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqvORPjYJAO0poaUMpHOE1wI7W0Uqnyw&random=3944323661&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=5ac4fd38-cdd0-4459-ba1d-48388739c551&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=246dee9e-ab6c-423f-8fef-9ae121c36dc1&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: analytics.twitter.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: personalization_id="v1_Z4Rb+x6W2Q0ieA486RzPkA=="
Source: global traffic	HTTP traffic detected: GET /log?vendor=liveramp&user_id=Xc1297XrPEeffxMkofcQS3LNLUMrFcMjKCBZaz1fqIx72WOZk HTTP/1.1Host: segments.company-target.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=2c1f1154-2d99-4eed-a8d3-a0849e7d153c; tuuid_lu=1711678664\|ix:0\|mctv:0\|rp:0
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/407675570/?random=1711678663487&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqaxwbC2eSTpo3rDYK5x-yh6a2CRyV7w&random=2899644059&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/930356311/?random=1711678663454&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqvORPjYJAO0poaUMpHOE1wI7W0Uqnyw&random=3944323661&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /store/apps/details?id=com.malwarebytes.nebula HTTP/1.1Host: play.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /4OLX2CSeCT3bm3F829xvbLoCWdvvaGRCQK0Wm0B_kIAeZ0_D2lJ8zZh8U-WZoSQGwhtw=w526-h296-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sYlhcyIn8_ltJJD8rJbVa5wb-qswfo9NxDxQ-egm5ZV9_eZRjetPO81xPacDw-woYFQ=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mci-DJidu4m6pJ3KUouc1jyLenaQ8jmqNzFT4OGDffadDkl5OZCwNTXTxpzvvWVurQ=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /caZl5KdCYwFSaXCuHbkoi-FhhpMuL6ep43NjsTnDcx4MR3tcDao7-EvvN6mdPjdvyb0=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /A5Y2muy9zW4w_cQXKruYg8ONE4wOpAIHXxJETh-RSeSRA9GKUKMfnuLaDcXDSm7ueA=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /taviPm9tQpEKY3ymyZcba0G7OqTfgrJZkSmlBeSpRzf0NYTp6JOQOOSTRaTmg7CRQA=w240-h480-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /IciOnDFecb5Xt50Q2jlcNC0LPI7LEGxNojroo-s3AozcyS-vDCwtq4fn7u3wZmRna8OewG9PBrWC-i7i=w48-h16-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /FJgExuC8tTojG8rfNe7HDV7ODwPKUroMSRPhAJBrPbT8-IxfLt0fK07mflkJ1UgZ6Q=w526-h296-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /iFstqoxDElUVv4T3KxkxP3OTcuFvWF5ZQQjT7aIxy4n2uaVigCCykxeG6EZV9FQ10X1itPj1oORm=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /12USW7aflgz466ifDehKTnMoAep_VHxDmKJ6jEBoDZWCSefOC-ThRX14Mqe0r8KF9XCzrpMqJts=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /W5DPtvB8Fhmkn5LbFZki_OHL3ZI1Rdc-AFul19UK4f7np2NMjLE5QquD6H0HAeEJ977u3WH4yaQ=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /neRBP16KYqhC7f1N3vUT1Q_HMLwAw7vXu8aOWOqvlY3JXNGd8qyXVNyAQyNLpdUdCV0kYEs9BXk=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocKxrS6Wt_Wjxfs-7yK36BjjXHufxR4K4dUJcbgw93ZJ=s32-rw-mo HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1v0Hz36sNBy8ewwSlsJX4Drk-fL1ap0knpGcTVYBCSg9LnsFt6-62HKpL3guQf1UmYBR=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /3_GtIh8x8QpJKaqeJuSKe77yAfuycIv45WfI5BZuORjxOfe-AsfBirzgM9Qxw9VeK-eX=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /I8aTKWVV7z0odeJnIszf9daqh1Wpef6yCljs1u51otXFPxAKmGZtn7VLQF3YTLwDcZDD=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tL3Ii6vPXxDTGKds9HZT2uaOQuVOi6VDQnEZjCE4YuZQfcn0gXWd3l_d-NSfkvRH_p0=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sOmTFy2eNuiytkbV41QWgbIZ9cDX5FQU6HnxmUSuhjMpP_B_WLqOUO3zpsNEFjlzpw=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?trustedtypes=true&render=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /caZl5KdCYwFSaXCuHbkoi-FhhpMuL6ep43NjsTnDcx4MR3tcDao7-EvvN6mdPjdvyb0=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mci-DJidu4m6pJ3KUouc1jyLenaQ8jmqNzFT4OGDffadDkl5OZCwNTXTxpzvvWVurQ=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sYlhcyIn8_ltJJD8rJbVa5wb-qswfo9NxDxQ-egm5ZV9_eZRjetPO81xPacDw-woYFQ=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /A5Y2muy9zW4w_cQXKruYg8ONE4wOpAIHXxJETh-RSeSRA9GKUKMfnuLaDcXDSm7ueA=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /taviPm9tQpEKY3ymyZcba0G7OqTfgrJZkSmlBeSpRzf0NYTp6JOQOOSTRaTmg7CRQA=w240-h480-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /4OLX2CSeCT3bm3F829xvbLoCWdvvaGRCQK0Wm0B_kIAeZ0_D2lJ8zZh8U-WZoSQGwhtw=w526-h296-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /iFstqoxDElUVv4T3KxkxP3OTcuFvWF5ZQQjT7aIxy4n2uaVigCCykxeG6EZV9FQ10X1itPj1oORm=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tools/feedback/chat_load.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /IciOnDFecb5Xt50Q2jlcNC0LPI7LEGxNojroo-s3AozcyS-vDCwtq4fn7u3wZmRna8OewG9PBrWC-i7i=w48-h16-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /12USW7aflgz466ifDehKTnMoAep_VHxDmKJ6jEBoDZWCSefOC-ThRX14Mqe0r8KF9XCzrpMqJts=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /W5DPtvB8Fhmkn5LbFZki_OHL3ZI1Rdc-AFul19UK4f7np2NMjLE5QquD6H0HAeEJ977u3WH4yaQ=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /FJgExuC8tTojG8rfNe7HDV7ODwPKUroMSRPhAJBrPbT8-IxfLt0fK07mflkJ1UgZ6Q=w526-h296-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /neRBP16KYqhC7f1N3vUT1Q_HMLwAw7vXu8aOWOqvlY3JXNGd8qyXVNyAQyNLpdUdCV0kYEs9BXk=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1v0Hz36sNBy8ewwSlsJX4Drk-fL1ap0knpGcTVYBCSg9LnsFt6-62HKpL3guQf1UmYBR=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /3_GtIh8x8QpJKaqeJuSKe77yAfuycIv45WfI5BZuORjxOfe-AsfBirzgM9Qxw9VeK-eX=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocKxrS6Wt_Wjxfs-7yK36BjjXHufxR4K4dUJcbgw93ZJ=s32-rw-mo HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /I8aTKWVV7z0odeJnIszf9daqh1Wpef6yCljs1u51otXFPxAKmGZtn7VLQF3YTLwDcZDD=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0&co=aHR0cHM6Ly9wbGF5Lmdvb2dsZS5jb206NDQz&hl=en&v=moV1mTgQ6S91nuTnmll4Y9yf&size=invisible&cb=psosspefqez5 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-wow64: ?0sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /tL3Ii6vPXxDTGKds9HZT2uaOQuVOi6VDQnEZjCE4YuZQfcn0gXWd3l_d-NSfkvRH_p0=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-19995903-1&cid=1427634313.1711678677&jid=965187526&_u=YEBAAEAAAAAAACgDI~&z=1314983578 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /sOmTFy2eNuiytkbV41QWgbIZ9cDX5FQU6HnxmUSuhjMpP_B_WLqOUO3zpsNEFjlzpw=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-19995903-1&cid=1427634313.1711678677&jid=965187526&_u=YEBAAEAAAAAAACgDI~&z=1314983578 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-19995903-1&cid=1427634313.1711678677&jid=965187526&gjid=1421924411&_gid=677202319.1711678677&_u=YEBAAEAAAAAAACgDI~&z=1471468149 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /js/bg/OMzbJ87gkB5MAUky6mmDB4mflkEza4rQHUJNCD4hS_4.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0&co=aHR0cHM6Ly9wbGF5Lmdvb2dsZS5jb206NDQz&hl=en&v=moV1mTgQ6S91nuTnmll4Y9yf&size=invisible&cb=psosspefqez5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=moV1mTgQ6S91nuTnmll4Y9yf HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0&co=aHR0cHM6Ly9wbGF5Lmdvb2dsZS5jb206NDQz&hl=en&v=moV1mTgQ6S91nuTnmll4Y9yf&size=invisible&cb=psosspefqez5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/reload?k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AH4jZCTEm3-s44sIb2O7K8s0HZYNpYVDOZR3MRCIS0ZLk3VZ3lufj7rwu7DReOcelgkuTi8sU8SGDCzLi8UUs1Y; NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /eula/ HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/css/dist/block-library/style.min.css?m=1710875768g HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_static/??-eJzTLy/QzcxLzilNSS3WzyrWz01NyUxMzUnNTc0rQeEU5CRWphbp5qSmJyZX6uVm5uklFxfr6OPTDpRD5sM02efaGpobGliYm5qbWQIARMsu7g== HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_static/??-eJyVjUEOwjAMBD+EsSIVwQXxCF7QJlYbkcSW7Qj4PaVCXDhxnNXsLt4FIjen5iilz7kZSp9KtkWUzMBIMxmIMrLO14320WyHfzRzi6WnD4wp8erSw3UE5xut8J2GLf458IUqGdYpovmz0Fu41HM4hnA4hWEIL2eXSyE= HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_static/??-eJyNzTEOgzAMheELAYaBph0QZ0HEgNMkRnZC1ds3A0MnxPy+Xw8+e01x9tmiglOwpAkOjJYFyrSz/y7kfTEoqQkUG6cVXESCKxY7JZZackwU8E7293XJN+a3nmIMQ2e69ml683i5Hyk+SjY= HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-assets/build/i18n-loader.js?minify=true&ver=ee939953aa2115e2ca59 HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/logo-header-threatdown-horizontal.svg HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/product-menu-screen.webp HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j.php?a=805334&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&vn=2 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_static/??-eJyNjUEOhCAQBD+07Gg84MX4FoEJEnGYMKDfX8yejBdv3dVJNZysbKKCVIBj9YEEFncsZNEpXxs3mL3inCAGAweSSxm4mhhk5Ywit6JMTHZrChEsArbNf/Jt8QPvzx6Ci16SeZ963fWDHgfd/QBiR0dN HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/px-center.png HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w.js?ver=202413 HTTP/1.1Host: stats.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/CORP_SOM_2024_Resource_TN_2.png HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/x-logo.svg HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/dist/url.min.js?m=1710875769g HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /e-202413.js HTTP/1.1Host: stats.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.js?minify=false&ver=e542366027ed428e7f4c HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.gif?cd=0&a=805334&d=threatdown.com&u=DD81812FF9924922ADBB4749FE017257E&h=517868bf31236160b54cb56557ba6b86&t=false HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web/djIkdGU6Ny4wOmFzeW5jJWdxdWVyeQ==/tag-3b111c75d9433a455983f12ca040dbdb.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.threatdown.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/js/script.min.js?m=1711561442g HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86
Source: global traffic	HTTP traffic detected: GET /_static/??-eJzTLy/QzcxLzilNSS3WzwKiwtLUokoopZebmaeXVayjj0+Rbm5melFiSSpUsX2uraG5oYGFuam5mWUWAK+OIis= HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/threatdown-logo.svg HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/masterpage-svg.svg HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86
Source: global traffic	HTTP traffic detected: GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.7511798042166511 HTTP/1.1Host: pixel.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=220729883&post=247&tz=0&srv=www.threatdown.com&hp=vip&j=1%3A13.2.2&host=www.threatdown.com&ref=&rand=0.4676202923051356 HTTP/1.1Host: pixel.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings.js?a=805334&settings_type=1&vn=7.0&exc=4 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web/djIkYTo0LjA6bm9qcXVlcnksdHI6Ny4w/tag-43de7e3097c45e1309fa8124610650de.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.threatdown.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.gif?cd=0&a=805334&d=threatdown.com&u=DD81812FF9924922ADBB4749FE017257E&h=517868bf31236160b54cb56557ba6b86&t=false HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.css?minify=false&ver=8974e0d29b5e5c14f39c HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.defaultVendors.js?minify=false&ver=80075e4517a23e15184e HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/wp-emoji-release.min.js?ver=6.4.3 HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.js?minify=false&ver=31192f0f7da170d807e1 HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%3Aa_1%2Ct_1%3A0%241711678658%3A96.4585075%3A%3A19_1%2C1_1%3A4_1%2C3_1%3A1; _vwo_sn=0%3A1%3Ar2.visualwebsiteoptimizer.com%3A1%3A1%3Areferrer%3D; _gcl_au=1.1.187328351.1711678662; gaUserID=3226B7D4-849E-4BE5-B15C-284292B54DCA; original_referral_url=malwarebytes.com; most_recent_referral_url=malwarebytes.com; _ga=GA1.1.746274578.1711678643; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Mar+29+2024+03%3A17%3A43+GMT%2B0100+(Central+European+Standard+Time)&version=202402.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=2e0205e2-2a52-4d12-ba26-dbfbe6e4d362&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.malwarebytes.com%2Feula&groups=BG71%3A1%2CC0001%3A1%2CC0003%3A1%2CC0002%3A1%2CC0004%3A1; _dc_gtm_UA-3347303-10=1; _uetsid=86e766b0ed7211eea004ff4328b42c6b; _uetvid=86e7b310ed7211eea9a9495d3a6c3ca0; _ga_K8KCHE3KSC=GS1.1.1711678643.1.1.1711678664.39.0.0; _mkto_trk=id:805-USG-300&token:_mch-malwarebytes.com-1711678664312-94067
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /include/1711678800000/7ghicgw4nish.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=220729883&post=247&tz=0&srv=www.threatdown.com&hp=vip&j=1%3A13.2.2&host=www.threatdown.com&ref=&rand=0.4676202923051356 HTTP/1.1Host: pixel.wp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.7511798042166511 HTTP/1.1Host: pixel.wp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/logo-header-threatdown-horizontal.svg HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/product-menu-screen.webp HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/px-center.png HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/x-logo.svg HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/CORP_SOM_2024_Resource_TN_2.png HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/threatdown-logo.svg HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/masterpage-svg.svg HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /analysis/worker-70faafffa0475802f5ee03ca5ff74179.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=805334&u=DD81812FF9924922ADBB4749FE017257E&s=1711678684&p=1&ed=%7B%22tz%22%3A%22Europe%2FZurich%22%2C%22tO%22%3A%22-1%22%2C%22lt%22%3A%221711678687320%22%2C%22r%22%3A%22%22%2C%22ul%22%3A%22en-us%22%2C%22de%22%3A%22UTF-8%22%2C%22sc%22%3A%2224%22%2C%22sr%22%3A%221280x1024%22%7D&cu=https%253A%252F%252Fwww.threatdown.com%252Feula%252F&r=0&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&eTime=1711678686339&random=0.514061177215668 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/381d1392-b15b-49e3-9cf9-8a5e644c68da/381d1392-b15b-49e3-9cf9-8a5e644c68da.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universalscript/releases/v0.180.1/bundle.js HTTP/1.1Host: assets.ubembed.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/381d1392-b15b-49e3-9cf9-8a5e644c68da/381d1392-b15b-49e3-9cf9-8a5e644c68da.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=805334&u=DD81812FF9924922ADBB4749FE017257E&s=1711678684&p=1&ed=%7B%22tz%22%3A%22Europe%2FZurich%22%2C%22tO%22%3A%22-1%22%2C%22lt%22%3A%221711678687320%22%2C%22r%22%3A%22%22%2C%22ul%22%3A%22en-us%22%2C%22de%22%3A%22UTF-8%22%2C%22sc%22%3A%2224%22%2C%22sr%22%3A%221280x1024%22%7D&cu=https%253A%252F%252Fwww.threatdown.com%252Feula%252F&r=0&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&eTime=1711678686339&random=0.514061177215668 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?codedo=set_html_and_recording&a=805334&e=%7B%7D&title=ThreatDown%20by%20Malwarebytes%20End%20User%20License%20Agreement&url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&referring_url=&session_id=1711678684&recording_id=1&return_visitor=false&ins=true&start_time=1711678687861&end_time=1711678687976&window_width=1263&window_height=907&sh=1024&sw=1280&vn=4.0.270&rand=0.6135672626392656&eTime=1711678686977&scroll_percentage=15&he=%7B%224%22%3A%22DD81812FF9924922ADBB4749FE017257E%22%7D&count=1 HTTP/1.1Host: r1.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2F HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863 HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.1.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/runtime~main.0c9f6301.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://js.driftt.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/9.4a3e9801.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://js.driftt.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/main~493df0b3.9e1d5232.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://js.driftt.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?codedo=set_html_and_recording&a=805334&e=%7B%7D&title=ThreatDown%20by%20Malwarebytes%20End%20User%20License%20Agreement&url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&referring_url=&session_id=1711678684&recording_id=1&return_visitor=false&ins=true&start_time=1711678687861&end_time=1711678687976&window_width=1263&window_height=907&sh=1024&sw=1280&vn=4.0.270&rand=0.6135672626392656&eTime=1711678686977&scroll_percentage=15&he=%7B%224%22%3A%22DD81812FF9924922ADBB4749FE017257E%22%7D&count=1 HTTP/1.1Host: r1.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/381d1392-b15b-49e3-9cf9-8a5e644c68da/018e8128-76c5-7d6e-84c2-7f2bf9e6b2ff/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/8.ab226b4a.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/16.22abfce0.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/52.b1edaf4a.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/35.d0f1ccda.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/22.6b9a301a.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/19.6f85b843.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/43.7ac85d58.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/20.8c21ea18.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.1.0/assets/v2/otPcPanel.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/26.04e7f30b.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/14.e24a6190.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/11.639238ba.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/18.9c1bd1fb.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/381d1392-b15b-49e3-9cf9-8a5e644c68da/018e8128-76c5-7d6e-84c2-7f2bf9e6b2ff/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/50.de3b5864.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/42.f634da7c.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/29.31d09948.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.1.0/assets/v2/otPcPanel.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/21.b8c41db9.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/8.10f90e75.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/ot_guard_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/4e1c8bc8-2743-413b-8699-aad2216e8616/85f0f7b8-8176-4fd4-8f7c-995c26a3cc8e/a525caf3-0c8c-4fa6-8ba9-3e55e388875b/ThreatDown_Horizontal_Reverse_1.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/16.9ef4a519.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/powered_by_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/24.92141a53.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/17.672cdd37.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/4e1c8bc8-2743-413b-8699-aad2216e8616/85f0f7b8-8176-4fd4-8f7c-995c26a3cc8e/a525caf3-0c8c-4fa6-8ba9-3e55e388875b/ThreatDown_Horizontal_Reverse_1.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/27.b5e8f5e1.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/25.c695453b.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/39.11d2b6a7.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/0.0b2ebd4a.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/31.c043863a.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/27.42a90a1f.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-3347303-10&cid=1799710383.1711678692&jid=1219353664&gjid=1169422913&_gid=952106950.1711678692&_u=aGBAiEAjBAAAAGAAIg~&z=633994065 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-3347303-10&cid=1799710383.1711678692&jid=1219353664&_u=aGBAiEAjBAAAAGAAIg~&z=598677895 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /core/assets/js/25.b8d3a33a.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/39.f1d268f5.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/3.07aa08a5.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/1.1bcc8082.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/28.812d5a7c.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/3.2a4c7561.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/1.0ca46fe3.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-3347303-10&cid=1799710383.1711678692&jid=1219353664&_u=aGBAiEAjBAAAAGAAIg~&z=598677895 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /core/assets/js/28.caa75eae.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=805334&url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&session_id=1711678684&recording_id=1&vn=4.0.270&rand=0.7133458348748609&eTime=1711678692281&scroll_percentage=15&fRS=true&he=%7B%224%22%3A%22DD81812FF9924922ADBB4749FE017257E%22%7D&count=2 HTTP/1.1Host: r1.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /widget_bootstrap/ping/v2 HTTP/1.1Host: bootstrap.driftapi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/favicon.svg?w=16 HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; ppc_last_visited_page=https://www.threatdown.com/eula/; _vwo_ds=3%3Aa_1%2Ct_0%3A0%241711678684%3A23.26438022%3A%3A%3A4_1%3A2; tk_ai=224y35VUb7XamKM0hJEVAlk6; _vwo_sn=0%3A1%3Ar1.visualwebsiteoptimizer.com%3A1%3A1%3Areferrer%3D; drift_campaign_refresh=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88; _gcl_au=1.1.2127262202.1711678691; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Mar+29+2024+03%3A18%3A11+GMT%2B0100+(Central+European+Standard+Time)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=220d5b04-c0e8-4538-8c38-2908a72d0900&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&groups=BG75%3A1%2CC0001%3A1%2CC0003%3A1%2CC0002%3A1%2CC0004%3A1; _gid=GA1.2.952106950.1711678692; _local_ga_LTWDK0JK3Z=GS1.1.1711678692.1.0.1711678692.0.0.0; _local_ga=GA1.1.1799710383.1711678692; _ga_K8KCHE3KSC=GS1.1.1711678692.1.0.1711678692.60.0.0; _ga=GA1.1.1799710383.1711678692; _mkto_trk=id:805-USG-300&token:_mch-threatdown.com-1711678692151-48380; _dc_gtm_UA-3347303-10=1; drift_aid=5d9066d7-3282-4dde-9d7c-294f8f5aa053; driftt_aid=5d9066d7-3282-4dde-9d7c-294f8f5aa053
Source: global traffic	HTTP traffic detected: GET /analyze?a=805334&url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&session_id=1711678684&recording_id=1&vn=4.0.270&rand=0.7133458348748609&eTime=1711678692281&scroll_percentage=15&fRS=true&he=%7B%224%22%3A%22DD81812FF9924922ADBB4749FE017257E%22%7D&count=2 HTTP/1.1Host: r1.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: GoTvoKqPIuFsKIVqDv42aQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/favicon.svg?w=16 HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; ppc_last_visited_page=https://www.threatdown.com/eula/; _vwo_ds=3%3Aa_1%2Ct_0%3A0%241711678684%3A23.26438022%3A%3A%3A4_1%3A2; tk_ai=224y35VUb7XamKM0hJEVAlk6; _vwo_sn=0%3A1%3Ar1.visualwebsiteoptimizer.com%3A1%3A1%3Areferrer%3D; drift_campaign_refresh=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88; _gcl_au=1.1.2127262202.1711678691; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Mar+29+2024+03%3A18%3A11+GMT%2B0100+(Central+European+Standard+Time)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=220d5b04-c0e8-4538-8c38-2908a72d0900&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&groups=BG75%3A1%2CC0001%3A1%2CC0003%3A1%2CC0002%3A1%2CC0004%3A1; _gid=GA1.2.952106950.1711678692; _local_ga_LTWDK0JK3Z=GS1.1.1711678692.1.0.1711678692.0.0.0; _local_ga=GA1.1.1799710383.1711678692; _ga_K8KCHE3KSC=GS1.1.1711678692.1.0.1711678692.60.0.0; _ga=GA1.1.1799710383.1711678692; _mkto_trk=id:805-USG-300&token:_mch-threatdown.com-1711678692151-48380; _dc_gtm_UA-3347303-10=1; drift_aid=5d9066d7-3282-4dde-9d7c-294f8f5aa053; driftt_aid=5d9066d7-3282-4dde-9d7c-294f8f5aa053
Source: global traffic	HTTP traffic detected: GET /widget_bootstrap HTTP/1.1Host: bootstrap.driftapi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: tXwqCYVrZEmx3PmZ0k6Ilg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /monitoring/metrics/widget/init/v3 HTTP/1.1Host: metrics.api.drift.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /monitoring/metrics/event3/bulk HTTP/1.1Host: metrics.api.drift.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: bYArZhjaHYxZxTxVicfdjg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /monitoring/metrics/add/bulk/v2 HTTP/1.1Host: metrics.api.drift.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j.php?a=622914&u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&vn=2 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%3Aa_1%2Ct_1%3A0%241711678658%3A96.4585075%3A%3A19_1%2C1_1%3A4_1%2C3_1%3A1; _vwo_sn=0%3A1%3Ar2.visualwebsiteoptimizer.com%3A1%3A1%3Areferrer%3D; _gcl_au=1.1.187328351.1711678662; gaUserID=3226B7D4-849E-4BE5-B15C-284292B54DCA; original_referral_url=malwarebytes.com; most_recent_referral_url=malwarebytes.com; _ga=GA1.1.746274578.1711678643; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Mar+29+2024+03%3A17%3A43+GMT%2B0100+(Central+European+Standard+Time)&version=202402.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=2e0205e2-2a52-4d12-ba26-dbfbe6e4d362&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.malwarebytes.com%2Feula&groups=BG71%3A1%2CC0001%3A1%2CC0003%3A1%2CC0002%3A1%2CC0004%3A1; _dc_gtm_UA-3347303-10=1; _uetsid=86e766b0ed7211eea004ff4328b42c6b; _uetvid=86e7b310ed7211eea9a9495d3a6c3ca0; _ga_K8KCHE3KSC=GS1.1.1711678643.1.1.1711678664.39.0.0; _mkto_trk=id:805-USG-300&token:_mch-malwarebytes.com-1711678664312-94067
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=227197325&post=5009&tz=-7&srv=www.malwarebytes.com&hp=vip&j=1%3A13.2.2&host=www.malwarebytes.com&ref=&fcp=0&rand=0.7827696892364191 HTTP/1.1Host: pixel.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings.js?a=622914&settings_type=1&vn=7.0&exc=1\|48\|3\|4\|161 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: W/"1711665058"
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=2&update=1&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&_cu=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&eTime=1711678705838&random=0.21834115142235433 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: YgkQIlLj6OkpWs1rB4+q3Q==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=227197325&post=5009&tz=-7&srv=www.malwarebytes.com&hp=vip&j=1%3A13.2.2&host=www.malwarebytes.com&ref=&fcp=0&rand=0.7827696892364191 HTTP/1.1Host: pixel.wp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uwt.js HTTP/1.1Host: static.ads-twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "32ad004436155ec972bc50e6238b5b67"If-Modified-Since: Thu, 27 Oct 2022 18:55:37 GMT
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=2&update=1&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&_cu=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&eTime=1711678705838&random=0.21834115142235433 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /464526.gif HTTP/1.1Host: id.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rlas3=no6FWdzAs7UqjuS6SpLEJdWqw+hpgdJkKQdHHinLxeY=; pxrc=CMnJmLAGEgUI6AcQABIGCMrdKhAA
Source: global traffic	HTTP traffic detected: GET /s/sync?exc=lr HTTP/1.1Host: s.company-target.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=2c1f1154-2d99-4eed-a8d3-a0849e7d153c; tuuid_lu=1711678664\|ix:0\|mctv:0\|rp:0
Source: global traffic	HTTP traffic detected: GET /td/rul/930356311?random=1711678706851&cv=11&fst=1711678706851&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/930356311/?random=1711678706851&cv=11&fst=1711678706851&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /td/rul/407675570?random=1711678706881&cv=11&fst=1711678706881&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=dafb3e78-299e-4e50-a33f-5eb621198b65&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5976ebb1-6699-4826-8e11-816c6da6b111&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: t.coConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: muc_ads=5e01dda0-88a2-4b35-8a35-8e5cbda3c9d3
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=dafb3e78-299e-4e50-a33f-5eb621198b65&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5976ebb1-6699-4826-8e11-816c6da6b111&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: analytics.twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: personalization_id="v1_Z4Rb+x6W2Q0ieA486RzPkA=="
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/407675570/?random=1711678706881&cv=11&fst=1711678706881&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /464526.gif HTTP/1.1Host: id.rlcdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pxrc=CMnJmLAGEgUI6AcQABIGCMrdKhAA; rlas3=ttCMlrm87SwqjuS6SpLEJdWqw+hpgdJkKQdHHinLxeY=
Source: global traffic	HTTP traffic detected: GET /bg9s?x-amz-cf-id=_jCSXJtFC5rDPHeXgWpM1fgzZ7nZR0Vbyf8eWJ0UsMjS9gn6xUgwjQ==&api-version=v2 HTTP/1.1Host: tag-logger.demandbase.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/930356311/?random=1711678706851&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtq17Mo52wUKb-cxY9PM6bblEUfllbEAgf8Eu_XD2TxXOnUkrs2&random=2530517859&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/407675570/?random=1711678706881&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtqyuZDiigKBo6nrXEmntLihUliD_aEmzuDTOUSGmnAP2ZbDYAP&random=1224982424&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=dafb3e78-299e-4e50-a33f-5eb621198b65&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5976ebb1-6699-4826-8e11-816c6da6b111&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: analytics.twitter.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: personalization_id="v1_Z4Rb+x6W2Q0ieA486RzPkA=="
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=dafb3e78-299e-4e50-a33f-5eb621198b65&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5976ebb1-6699-4826-8e11-816c6da6b111&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: t.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: muc_ads=5e01dda0-88a2-4b35-8a35-8e5cbda3c9d3
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bg9s?x-amz-cf-id=_jCSXJtFC5rDPHeXgWpM1fgzZ7nZR0Vbyf8eWJ0UsMjS9gn6xUgwjQ==&api-version=v2 HTTP/1.1Host: tag-logger.demandbase.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/930356311/?random=1711678706851&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtq17Mo52wUKb-cxY9PM6bblEUfllbEAgf8Eu_XD2TxXOnUkrs2&random=2530517859&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/407675570/?random=1711678706881&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtqyuZDiigKBo6nrXEmntLihUliD_aEmzuDTOUSGmnAP2ZbDYAP&random=1224982424&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v2/ip.json?referrer=&page=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&page_title=End%20User%20License%20Agreement%20(EULA) HTTP/1.1Host: api.company-target.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=2c1f1154-2d99-4eed-a8d3-a0849e7d153c; tuuid_lu=1711678707\|ix:0\|mctv:0\|rp:0
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 7dHUFwxRVAVUE5Y3DqEq9Q==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.17976688033103216&eTime=1711678720080&recording=mm_13666_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_588_82_635_438&fRS=true&movements=194&clicks=0&duration=2.064&start_time=1711678660410&end_time=1711678674081&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=3 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.17976688033103216&eTime=1711678720080&recording=mm_13666_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_588_82_635_438&fRS=true&movements=194&clicks=0&duration=2.064&start_time=1711678660410&end_time=1711678674081&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=3 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.338907724819423&eTime=1711678724075&recording=mm_17275_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_617_81_664_437%2Cmm_17571_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_670_87_717_443&fRS=true&movements=265&clicks=0&duration=2.404&start_time=1711678660410&end_time=1711678678075&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=4 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.338907724819423&eTime=1711678724075&recording=mm_17275_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_617_81_664_437%2Cmm_17571_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_670_87_717_443&fRS=true&movements=265&clicks=0&duration=2.404&start_time=1711678660410&end_time=1711678678075&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=4 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: fxtsylBgaWobpYcj/oeXrg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.20831884742816742&eTime=1711678728067&recording=mm_20867_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_576_81_623_437%2Cmm_21168_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_518_91_565_447%2Cmm_21467_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_457_102_504_458&fRS=true&movements=352&clicks=0&duration=2.398&start_time=1711678660410&end_time=1711678682067&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=5 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.20831884742816742&eTime=1711678728067&recording=mm_20867_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_576_81_623_437%2Cmm_21168_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_518_91_565_447%2Cmm_21467_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_457_102_504_458&fRS=true&movements=352&clicks=0&duration=2.398&start_time=1711678660410&end_time=1711678682067&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=5 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.3546012810844086&eTime=1711678732068&recording=mm_24775_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_582_85_629_441%2Cmm_25068_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_560_100_607_456%2Cmm_25367_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_536_115_583_471&fRS=true&movements=428&clicks=0&duration=2.695&start_time=1711678660410&end_time=1711678686068&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=7 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.3546012810844086&eTime=1711678732068&recording=mm_24775_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_582_85_629_441%2Cmm_25068_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_560_100_607_456%2Cmm_25367_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_536_115_583_471&fRS=true&movements=428&clicks=0&duration=2.695&start_time=1711678660410&end_time=1711678686068&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=7 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: Z3gafwkV3iaQKh9tiwp+yA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.5755490027692138&eTime=1711678740651&recording=mc_33732_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_323_755_%7B11%7D%2Cmm_33775_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_320_759&rm=%7B%22ct%22%3A%5B11%2C0%5D%7D&mc=mc_33732_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_323_755&fRS=true&movements=584&clicks=1&duration=0.308&start_time=1711678660410&end_time=1711678694651&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=11 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.5755490027692138&eTime=1711678740651&recording=mc_33732_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_323_755_%7B11%7D%2Cmm_33775_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_320_759&rm=%7B%22ct%22%3A%5B11%2C0%5D%7D&mc=mc_33732_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_323_755&fRS=true&movements=584&clicks=1&duration=0.308&start_time=1711678660410&end_time=1711678694651&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=11 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.7600437965002955&eTime=1711678748622&recording=mc_41698_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_128_24_184_776_%7B11%7D%2Cmm_41868_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_128_24_175_783&rm=%7B%22ct%22%3A%5B11%2C0%5D%7D&fRS=true&movements=696&clicks=1&duration=0.3&start_time=1711678660410&end_time=1711678702622&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=14 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: SAxdV3HOIne+2kWThYJeIw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.7600437965002955&eTime=1711678748622&recording=mc_41698_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_128_24_184_776_%7B11%7D%2Cmm_41868_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_128_24_175_783&rm=%7B%22ct%22%3A%5B11%2C0%5D%7D&fRS=true&movements=696&clicks=1&duration=0.3&start_time=1711678660410&end_time=1711678702622&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=14 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_486.1.dr	String found in binary or memory: <a href="https://www.facebook.com/Malwarebytes" id="cta-footer-social-facebook-en" class="social socicon-facebook" target="_blank" rel="noopener"> equals www.facebook.com (Facebook)
Source: chromecache_486.1.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/malwarebytes" id="cta-footer-social-linkedin-en" class="social socicon-linkedin" target="_blank" rel="noopener"> equals www.linkedin.com (Linkedin)
Source: chromecache_486.1.dr	String found in binary or memory: <a href="https://www.youtube.com/user/Malwarebytes" id="cta-footer-social-youtube-en" class="social socicon-youtube" target="_blank" rel="noopener"> equals www.youtube.com (Youtube)
Source: chromecache_533.1.dr	String found in binary or memory: <a id="cta-navblock-social-linkedin-en" class="social socicon-linkedin" href="https://www.linkedin.com/company/threatdown.com/about/" aria-label="Visit Malwarebytes on LinkedIn" target="_blank"> equals www.linkedin.com (Linkedin)
Source: chromecache_533.1.dr	String found in binary or memory: <a id="cta-footer-social-linkedin-en" class="social socicon-linkedin" href="https://www.linkedin.com/company/threatdown.com/about/" aria-label="Visit Malwarebytes on LinkedIn" target="_blank"> equals www.linkedin.com (Linkedin)
Source: chromecache_533.1.dr	String found in binary or memory: <a class=" menu-item menu-item-type-custom menu-item-object-custom" href="https://www.youtube.com/malwarebytes">Product Videos</a> equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: "https://www.facebook.com/AppStore/" equals www.facebook.com (Facebook)
Source: chromecache_467.1.dr	String found in binary or memory: Access all chassis and component information for the entire group when connected to Lead Chassis over Quick Sync 2 (previously this feature was available only over network)\\n \\nFor an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk \\nNote that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number.\",\"releaseDate\":\"2020-06-15\",\"releaseTimestamp\":\"2020-06-15T00:36:25Z\"},{\"versionDisplay\":\"3.3\",\"releaseNotes\":\"OpenManage Mobile now offers more features to securely provision and monitor PowerEdge servers and MX7000 chassis.\\n\\nMX7000: View health overlays for the back of chassis when in Augmented Reality mode. Also, assign backup lead chassis (for lead redundancy).\u2028\\n\\nSecurity: Verify CA certificates from iDRAC automatically.\\n\\nConvenience: Remotely perform a full power cycle on a server. (It is the equivalent of physically detaching and attaching the power cable)\\n\\nAs always, with OpenManage Mobile:\u2028\\n equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: Consoles with Power Manager Plugin installed display power, thermal, and space statistics on the OME dashboard. \\n\\nFor an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk \\n\\nNote that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number. \",\"releaseDate\":\"2022-08-30\",\"releaseTimestamp\":\"2022-08-30T11:32:16Z\"},{\"versionDisplay\":\"4.2\",\"releaseNotes\":\"What equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: Consoles with configured OIDC providers can be accessed by authenticating to the provider instead of a local account. \\n\\nFor an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk \\n\\nNote that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number.\",\"releaseDate\":\"2023-01-13\",\"releaseTimestamp\":\"2023-01-13T05:44:57Z\"},{\"versionDisplay\":\"4.3\",\"releaseNotes\":\"When OMM is connected to OpenManage Enterprise \\n equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: Drill down into a specific set of alerts or devices in your environment easily\\n \\nFor an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk \\nNote that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number.\",\"releaseDate\":\"2020-10-14\",\"releaseTimestamp\":\"2020-10-14T13:19:47Z\"},{\"versionDisplay\":\"4.0\",\"releaseNotes\":\"What equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: displays context relevant videos about the hardware based on available error logs \\n\\nFor any questions, please send an email to OM_Mobile_Feedback@Dell.com \"},\"isStandaloneWithCompanionForWatchOS\":false,\"isAppleWatchSupported\":false,\"requiredCapabilitiesForRealityDevice\":\"arm64 \",\"websiteUrl\":\"http://delltechcenter.com/omm\",\"versionHistory\":[{\"versionDisplay\":\"4.4.1\",\"releaseNotes\":\"OpenManage Mobile 4.4.1 contains some stability fixes and enhancements. For an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk Note that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number.\",\"releaseDate\":\"2023-08-14\",\"releaseTimestamp\":\"2023-08-14T09:45:13Z\"},{\"versionDisplay\":\"4.4\",\"releaseNotes\":\"What equals www.youtube.com (Youtube)
Source: chromecache_486.1.dr	String found in binary or memory: <div class="wp-block-malware-bytes-menu-links menu-links layout-2 has-item-border" id="menu-links-bcd0a65f-6947-4872-b42d-09e853c903d9"><div class="menu-links__item"><div class="menu-links__title">Featured Content</div><ul><li>Activate Malwarebytes Privacy on Windows device.</li></ul><div class="menu-links__cta"><a id="cta-navbar-support-privacy_activation-en-test" href="https://support.malwarebytes.com/hc/en-us/articles/360046199873-Activate-Malwarebytes-Privacy-on-Windows-device">See Content</a></div></div><div class="menu-links__item"><div class="menu-links__title"> </div><div class="menu-links__cta"><a rel="noreferrer noopener" id="cta-navbar-support-support_services-en-test" href="https://www.youtube.com/malwarebytes" target="_blank">Product Videos</a></div></div></div> equals www.youtube.com (Youtube)
Source: chromecache_566.1.dr, chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: Math.round(p);v["gtm.videoCurrentTime"]=Math.round(q);v["gtm.videoElapsedTime"]=Math.round(f);v["gtm.videoPercent"]=r;v["gtm.videoVisible"]=t;return v},Cj:function(){e=yb()},kd:function(){d()}}};var Dc=ia(["data-gtm-yt-inspected-"]),uC=["www.youtube.com","www.youtube-nocookie.com"],vC,wC=!1; equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: \\tEnhanced visuals for AR mode\\n\\nFor an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk\\nNote that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number.\\n\",\"releaseDate\":\"2021-12-14\",\"releaseTimestamp\":\"2021-12-14T16:27:33Z\"},{\"versionDisplay\":\"4.1\",\"releaseNotes\":\"What equals www.youtube.com (Youtube)
Source: chromecache_566.1.dr	String found in binary or memory: c(U[ja],E.te)){iI("https://www.youtube.com/iframe_api");t=!0;break}})}}else H(u.vtp_gtmOnSuccess)}var p=["www.youtube.com","www.youtube-nocookie.com"],q={UNSTARTED:-1,ENDED:0,PLAYING:1,PAUSED:2,BUFFERING:3,CUED:5},r,t=!1;(function(u){Y.__ytl=u;Y.__ytl.o="ytl";Y.__ytl.isVendorTemplate=!0;Y.__ytl.priorityOverride=0;Y.__ytl.isInfrastructure=!1;Y.__ytl.runInSiloedMode=!1})(function(u){u.vtp_triggerStartOption?n(u):Bw(function(){n(u)})})}(); equals www.youtube.com (Youtube)
Source: chromecache_659.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var h=nA(a,c,e);M(121);if("https://www.facebook.com/tr/"===h["gtm.elementUrl"])return M(122),!0;if(d&&f){for(var m=Ib(b,g.length),n=0;n<g.length;++n)g[n](h,m);return m.done}for(var p=0;p<g.length;++p)g[p](h,function(){});return!0},qA=function(){var a=[],b=function(c){return nb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_393.1.dr, chromecache_526.1.dr	String found in binary or memory: function(h){return h.form===g})};return{store:function(g,h){var m=f(g);m?m.button=h:e.push({form:g,button:h})},get:function(g){var h=f(g);return h?h.button:null}}}function d(e,f,g,h,m){var n=Oz("fsl",g?"nv.mwt":"mwt",0),p;p=g?Oz("fsl","nv.ids",[]):Oz("fsl","ids",[]);if(!p.length)return!0;var q=Kz(e,"gtm.formSubmit",p),r=e.action;r&&r.tagName&&(r=e.cloneNode(!1).action);q["gtm.elementUrl"]=r;M(121);if("https://www.facebook.com/tr/"===r)return M(122),!0;m&&(q["gtm.formSubmitElement"]=m);if(h&&n){if(!nI(q, equals www.facebook.com (Facebook)
Source: chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: f\|\|g.length\|\|h.length))return;var n={Ng:d,Lg:e,Mg:f,xh:g,yh:h,te:m,vb:b},p=z.YT,q=function(){CC(n)};if(p)return p.ready&&p.ready(q),b;var r=z.onYouTubeIframeAPIReady;z.onYouTubeIframeAPIReady=function(){r&&r();q()};H(function(){for(var t=D.getElementsByTagName("script"),u=t.length,v=0;v<u;v++){var w=t[v].getAttribute("src");if(FC(w,"iframe_api")\|\|FC(w,"player_api"))return b}for(var x=D.getElementsByTagName("iframe"),y=x.length,B=0;B<y;B++)if(!wC&&DC(x[B],n.te))return Oc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_549.1.dr	String found in binary or memory: gf=u(["https://sandbox.google.com/tools/feedback/"]),hf=u(["https://www.google.cn/tools/feedback/"]),jf=u(["https://help.youtube.com/tools/feedback/"]),kf=u(["https://asx-frontend-staging.corp.google.com/inapp/"]),lf=u(["https://asx-frontend-staging.corp.google.com/tools/feedback/"]),mf=u(["https://localhost.corp.google.com/inapp/"]),nf=u(["https://localhost.proxy.googlers.com/inapp/"]),of=S(Qe),pf=[S(Re),S(Se)],qf=[S(Te),S(Ue),S(Ve),S(We),S(Xe),S(Ye),S(Ze),S($e),S(af),S(bf)],rf=[S(cf),S(df)],sf= equals www.youtube.com (Youtube)
Source: chromecache_629.1.dr	String found in binary or memory: return a=n===l.CARD_DISPLAY_STYLES.appOfTheDay?_:n===l.CARD_DISPLAY_STYLES.gameOfTheDay?P:n===l.CARD_DISPLAY_STYLES.inAppPurchase?O:this.getTitleKey(e),this.i18n.t(a,{appName:r,storyTitle:i,_disableSafeString:!0})}getOGType(){return i.default.meta.og.type.story}getTwitterSite(){return this.appViewState.isMacAppStoreView?this.i18n.t("WEA.EditorialItemProductPages.Twitter.site.macOs",{_disableSafeString:!0}):super.getTwitterSite(...arguments)}getTwitterTitle(){return this.getOGTitle(...arguments)}getSchemaTags(e){const{product:t}=e.viewModel,r=E(t),[i]=r,n=(0,l.hasShelfDisplay)(i,"collectionLockup"),{lastPublishedDate:a}=t,o={"@type":"Organization",name:"Apple Inc",url:"http://www.apple.com",logo:{"@type":"ImageObject",url:"https://www.apple.com/ac/structured-data/images/knowledge_graph_logo.png"}},s=this.getOGImageTags(e).find((e=>"og:image"===e.name))\|\|{},p={"@context":"http://schema.org",name:this.getSeoTitle(e)??this.getTitle(e),description:this.getSeoDescription(e)??this.getDescription(e),image:s.content,author:o,publisher:o,headline:this.getOGTitle(e),dateModified:a,datePublished:a} equals www.twitter.com (Twitter)
Source: chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_659.1.dr, chromecache_421.1.dr	String found in binary or memory: return b}sC.D="internal.enableAutoEventOnTimer";var Dc=ia(["data-gtm-yt-inspected-"]),uC=["www.youtube.com","www.youtube-nocookie.com"],vC,wC=!1; equals www.youtube.com (Youtube)
Source: chromecache_659.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: var HB=function(a,b,c,d,e){var f=Oz("fsl",c?"nv.mwt":"mwt",0),g;g=c?Oz("fsl","nv.ids",[]):Oz("fsl","ids",[]);if(!g.length)return!0;var h=Kz(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);M(121);if("https://www.facebook.com/tr/"===m)return M(122),!0;h["gtm.elementUrl"]=m;h["gtm.formCanceled"]=c;null!=a.getAttribute("name")&&(h["gtm.interactedFormName"]=a.getAttribute("name"));e&&(h["gtm.formSubmitElement"]=e,h["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!Ay(h,By(b, equals www.facebook.com (Facebook)

Source: unknown

DNS traffic detected: queries for: cloud.malwarebytes.com

Source: unknown

HTTP traffic detected: POST /g/collect?v=2&tid=G-K8KCHE3KSC&cid=746274578.1711678643&gtm=45je43r0v872204243za200&aip=1&dma=0&gcd=13l3l3l3l1&npa=0 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveContent-Length: 0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://cloud.malwarebytes.comX-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_411.1.dr	String found in binary or memory: http://127.0.0.1:$
Source: chromecache_467.1.dr	String found in binary or memory: http://delltechcenter.com/omm
Source: chromecache_400.1.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_400.1.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_610.1.dr	String found in binary or memory: http://git.io/yBU2rg
Source: chromecache_519.1.dr	String found in binary or memory: http://jedwatson.github.io/classnames
Source: chromecache_549.1.dr	String found in binary or memory: http://localhost.corp.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: http://localhost.proxy.googlers.com/inapp/
Source: chromecache_629.1.dr	String found in binary or memory: http://reportaproblem.apple.com
Source: chromecache_629.1.dr, chromecache_467.1.dr	String found in binary or memory: http://schema.org
Source: chromecache_629.1.dr	String found in binary or memory: http://schema.org/ItemListOrderAscending
Source: chromecache_312.1.dr	String found in binary or memory: http://support.google.com/googleplay?p=report_review_computer
Source: chromecache_335.1.dr	String found in binary or memory: http://threatdown.com/pricing
Source: chromecache_335.1.dr	String found in binary or memory: http://virustotal.com/
Source: chromecache_312.1.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_629.1.dr	String found in binary or memory: http://www.apple.com
Source: chromecache_467.1.dr	String found in binary or memory: http://www.apple.com/itunes/download/
Source: chromecache_566.1.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_566.1.dr	String found in binary or memory: https://ade.googlesyndication.com
Source: chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk
Source: chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://adservice.googlesyndication.com/pagead/regclk
Source: chromecache_447.1.dr	String found in binary or memory: https://agent.pendo.io/licenses
Source: chromecache_467.1.dr	String found in binary or memory: https://amp-api.apps.apple.com
Source: chromecache_629.1.dr	String found in binary or memory: https://amp-api.books.apple.com/
Source: chromecache_629.1.dr	String found in binary or memory: https://amp.apple.com
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_467.1.dr	String found in binary or memory: https://api-edge.apps.apple.com
Source: chromecache_629.1.dr	String found in binary or memory: https://api.books.apple.com/
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://api.w.org/
Source: chromecache_369.1.dr	String found in binary or memory: https://apis.google.com/js/api.js
Source: chromecache_549.1.dr	String found in binary or memory: https://apis.google.com/js/client.js
Source: chromecache_669.1.dr	String found in binary or memory: https://app.upsellit.com
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://app.vwo.com/visitor-behavior-analysis/dist/codechecker/cc.min.js?r=
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/#organization
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/$
Source: chromecache_548.1.dr	String found in binary or memory: https://apps.apple.com/US/app/id1327105431?mt=8
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/assets/images/knowledge-graph/apps.png
Source: chromecache_629.1.dr, chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/story/id1538632801
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/story/id1539235847
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/story/id1604959672
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/us/app/apple-podcasts/id525463029
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/cyrus-identity-by-malwarebytes/id1541847894
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/cyrus-identity-by-malwarebytes/id1541847894"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/endpoint-central/id1069313634
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/endpoint-central/id1069313634"
Source: chromecache_335.1.dr	String found in binary or memory: https://apps.apple.com/us/app/malwarebytes-admin/id1666801296
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/malwarebytes-mobile-security/id1327105431
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/malwarebytes-mobile-security/id1327105431"
Source: chromecache_548.1.dr, chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/malwarebytes-privacy-vpn/id1504101226
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/malwarebytes-privacy-vpn/id1504101226"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/pax8/id1660025682
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/pax8/id1660025682"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/sonicexpress/id1469304568
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/sonicexpress/id1469304568"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/spiceworks-help-desk/id1582708054
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/spiceworks-help-desk/id1582708054"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/superops/id1629840856
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/superops/id1629840856"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/threatdown-admin/id1666801296
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/threatdown-mobile-security/id1635127079
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/threatdown-mobile-security/id1635127079"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/ubiquiti-portal/id6451146502
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/ubiquiti-portal/id6451146502"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/developer/malwarebytes/id610302098
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/developer/malwarebytes/id610302098"
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/us/story/id1436214772
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/us/story/id1699686830
Source: chromecache_596.1.dr	String found in binary or memory: https://assets.ubembed.com/universalscript/releases/v0.180.1/bundle.js
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_335.1.dr	String found in binary or memory: https://attack.mitre.org/tactics/
Source: chromecache_467.1.dr	String found in binary or memory: https://blog.sonicwall.com/en-us/2020/08/introducing-the-sonicexpress-mobile-app/
Source: chromecache_486.1.dr	String found in binary or memory: https://buy.malwarebytes.com
Source: chromecache_456.1.dr	String found in binary or memory: https://buy.music.apple.com/account/v1/affiliation/association
Source: chromecache_456.1.dr	String found in binary or memory: https://buy.tv.apple.com/account/v1/affiliation/association
Source: chromecache_449.1.dr, chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_631.1.dr	String found in binary or memory: https://cdn.visualwebsiteoptimizer.com/
Source: chromecache_423.1.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_423.1.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_533.1.dr	String found in binary or memory: https://cloud.malwarebytes.com
Source: chromecache_486.1.dr	String found in binary or memory: https://cloud.malwarebytes.com/
Source: chromecache_533.1.dr	String found in binary or memory: https://cloud.malwarebytes.com/auth/login
Source: chromecache_526.1.dr	String found in binary or memory: https://connect.facebook.net/en_US/fbevents.js
Source: chromecache_611.1.dr	String found in binary or memory: https://content.content.cloud.malwarebytes.com/agent/static/
Source: chromecache_447.1.dr	String found in binary or memory: https://content.content.cloud.malwarebytes.com/agent/static/a12d90ec-73be-4aee-72c5-600a4a967d29/pen
Source: chromecache_613.1.dr, chromecache_589.1.dr	String found in binary or memory: https://conversation.api.drift.com
Source: chromecache_613.1.dr, chromecache_589.1.dr	String found in binary or memory: https://customer.api.drift.com
Source: chromecache_467.1.dr	String found in binary or memory: https://cyrus.app/
Source: chromecache_467.1.dr	String found in binary or memory: https://cyrus.app/privacy-policy/
Source: chromecache_467.1.dr	String found in binary or memory: https://cyrus.app/terms-and-conditions/
Source: chromecache_533.1.dr	String found in binary or memory: https://de.malwarebytes.com/business
Source: chromecache_610.1.dr	String found in binary or memory: https://deprecations.emberjs.com/v1.x/#toc_binding-style-attributes.
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/
Source: chromecache_437.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/e.gif?a=
Source: chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/e.gif?a=622914&s=j.php&e=
Source: chromecache_631.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/e.gif?a=805334&s=j.php&e=
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/e.gif?s=mode_det&e=
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/j.php?a=
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/j.php?mode=
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/v.gif?cd=
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/web/djIkYTo0LjA6bm9qcXVlcnksdHI6Ny4w/tag-43de7e3097c45e1309fa
Source: chromecache_423.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_423.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_423.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_645.1.dr, chromecache_528.1.dr, chromecache_410.1.dr, chromecache_487.1.dr	String found in binary or memory: https://developers.marketo.com/MunchkinLicense.pdf
Source: chromecache_548.1.dr	String found in binary or memory: https://downloads.malwarebytes.com/file/mbprivacy-mac
Source: chromecache_486.1.dr	String found in binary or memory: https://ecom.malwarebytes.com
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback-pa.clients6.google.com
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/annotator.css
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/render_frame2.html
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback2-test.corp.google.com/inapp/%
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback2-test.corp.google.com/tools/feedback/%
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/inapp/%
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/tools/feedback/%
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_533.1.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Roboto:ital
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://fonts.gstatic.com
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc-CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc0CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc1CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc2CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc3CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc5CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc6CsQ.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc-CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc0CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc1CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc2CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc3CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc5CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic-CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic0CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic1CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic2CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic3CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic5CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xEIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xFIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xLIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fCBc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fCRc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfABc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfCBc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfCRc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfChc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfCxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_486.1.dr	String found in binary or memory: https://forums.malwarebytes.com/
Source: chromecache_533.1.dr	String found in binary or memory: https://fr.malwarebytes.com/business
Source: chromecache_456.1.dr	String found in binary or memory: https://git.io/fjule
Source: chromecache_456.1.dr	String found in binary or memory: https://git.io/fxCyr
Source: chromecache_313.1.dr	String found in binary or memory: https://github.com/Automattic/themes/tree/master/varia
Source: chromecache_560.1.dr	String found in binary or memory: https://github.com/ashtuchkin/iconv-lite/wiki/Use-Buffers-when-decoding
Source: chromecache_526.1.dr	String found in binary or memory: https://github.com/krux/postscribe/blob/master/LICENSE.
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://gmpg.org/xfn/11
Source: chromecache_335.1.dr	String found in binary or memory: https://go.malwarebytes.com/1123_WB_NA_TheBigRevealRoadmapWebinar.LP.html?utm_source=nebula&utm_medi
Source: chromecache_421.1.dr	String found in binary or memory: https://google.com
Source: chromecache_421.1.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_549.1.dr	String found in binary or memory: https://gstatic.com/uservoice/surveys/resources/
Source: chromecache_549.1.dr	String found in binary or memory: https://help.youtube.com/tools/feedback/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Features116/v4/6b/26/61/6b266131-b03c-10b8-5640-24ed75a1b52
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Features116/v4/6c/bb/46/6cbb4651-ad2b-b7d4-8c0b-da19ece82df
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Features126/v4/22/29/88/222988f5-d687-a390-7bd5-e7ff102c70d
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple112/v4/21/0f/a9/210fa909-dd73-6446-3107-2e3ba7e82889/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple112/v4/70/02/e7/7002e778-5eea-1b5b-7bc9-ba0c01e15000/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple122/v4/9b/dd/69/9bdd69d7-ccbb-8e1a-985c-a607ab06302c/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple122/v4/a0/13/53/a0135348-312e-80a3-7be2-292cae4f59ad/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple126/v4/2d/cd/c9/2dcdc9ad-60f0-b4a1-63b3-db2e9a312de3/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple126/v4/fe/1c/d7/fe1cd75a-9d01-fec4-1ec4-0264b790e83d/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple211/v4/1d/76/5f/1d765faf-d561-d1e1-c4b8-86fce4afd23e/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple211/v4/c7/8f/93/c78f936e-fa3c-2274-a980-69565167d765/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple211/v4/cb/23/b5/cb23b570-b4db-9437-c9f0-2ed24beafafc/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple221/v4/97/80/b0/9780b085-c6a1-8618-6ad0-fab6770eefa4/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple221/v4/c3/54/86/c35486fb-4444-c949-9795-98dddec6afc5/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/PurpleSource112/v4/a3/56/f7/a356f7e2-eb95-ee26-62a3-1e2930e
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/PurpleSource211/v4/31/00/34/310034cd-8578-cf30-33e5-07c6c29
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/PurpleSource211/v4/a6/e5/9b/a6e59be1-e633-7447-537e-9a05eb9
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/PurpleSource211/v4/dd/3e/f5/dd3ef579-345c-23f9-a37e-459fb4f
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/PurpleSource221/v4/55/01/f3/5501f319-b767-b1bf-6bb1-88d688f
Source: chromecache_467.1.dr	String found in binary or memory: https://is2-ssl.mzstatic.com
Source: chromecache_467.1.dr	String found in binary or memory: https://is3-ssl.mzstatic.com
Source: chromecache_467.1.dr	String found in binary or memory: https://is4-ssl.mzstatic.com
Source: chromecache_467.1.dr	String found in binary or memory: https://is5-ssl.mzstatic.com
Source: chromecache_629.1.dr	String found in binary or memory: https://itunes.apple.com$
Source: chromecache_629.1.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStore.woa/wa/viewFeature?id=1476734846&mt=11
Source: chromecache_629.1.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStore.woa/wa/viewTop?cc=
Source: chromecache_629.1.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStore.woa/wa/viewTop?genreId=38&mt=11
Source: chromecache_456.1.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStoreServices.woa/wa/processRedirectUrl
Source: chromecache_467.1.dr	String found in binary or memory: https://itunes.apple.com/subscribe?app=music
Source: chromecache_467.1.dr	String found in binary or memory: https://itunes.apple.com/us/genre/id6000
Source: chromecache_467.1.dr	String found in binary or memory: https://itunes.apple.com/us/genre/id6000"
Source: chromecache_467.1.dr	String found in binary or memory: https://js-cdn.music.apple.com
Source: chromecache_522.1.dr, chromecache_387.1.dr, chromecache_667.1.dr, chromecache_657.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v1/acknowledgements.txt
Source: chromecache_467.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/amp/musickit.js?t=1710446341146
Source: chromecache_467.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/components/musickit-components/
Source: chromecache_467.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/components/musickit-components//musickit-components.esm.j
Source: chromecache_467.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/components/musickit-components//musickit-components.js?t=
Source: chromecache_456.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/media-api
Source: chromecache_613.1.dr, chromecache_589.1.dr	String found in binary or memory: https://js.driftt.com
Source: chromecache_335.1.dr	String found in binary or memory: https://links.malwarebytes.com/support/business/find-pin-id
Source: chromecache_335.1.dr	String found in binary or memory: https://links.malwarebytes.com/support/cloud-add-endpoints
Source: chromecache_335.1.dr	String found in binary or memory: https://links.malwarebytes.com/support/suspicous_activity_epr
Source: chromecache_549.1.dr	String found in binary or memory: https://localhost.corp.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://localhost.proxy.googlers.com/inapp/
Source: chromecache_467.1.dr	String found in binary or memory: https://locate.apple.com/
Source: chromecache_467.1.dr	String found in binary or memory: https://malwarebytes.com/vpn
Source: chromecache_486.1.dr	String found in binary or memory: https://malwarebytes.go-vip.net
Source: chromecache_380.1.dr, chromecache_312.1.dr	String found in binary or memory: https://maps.google.com/?q=
Source: chromecache_613.1.dr, chromecache_589.1.dr	String found in binary or memory: https://metrics.api.drift.com
Source: chromecache_486.1.dr	String found in binary or memory: https://my.malwarebytes.com/en/login
Source: chromecache_486.1.dr	String found in binary or memory: https://my.malwarebytes.com/login
Source: chromecache_508.1.dr	String found in binary or memory: https://myaccount.google.com/termsofservice
Source: chromecache_335.1.dr	String found in binary or memory: https://nvd.nist.gov/vuln/detail/
Source: chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_532.1.dr, chromecache_623.1.dr, chromecache_310.1.dr, chromecache_337.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204/?id=turtlex_join_ig&tx_jig=$
Source: chromecache_449.1.dr, chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://partners.malwarebytes.com/English
Source: chromecache_533.1.dr	String found in binary or memory: https://partners.malwarebytes.com/English/
Source: chromecache_411.1.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js?rk=1
Source: chromecache_411.1.dr	String found in binary or memory: https://payments.sandbox.google.com/payments/v4/js/integrator.js?rk=1
Source: chromecache_447.1.dr	String found in binary or memory: https://pendo-static-6199424469303296.storage.googleapis.com
Source: chromecache_486.1.dr	String found in binary or memory: https://plausible.io/js/script.js
Source: chromecache_312.1.dr	String found in binary or memory: https://play.google.com
Source: chromecache_411.1.dr	String found in binary or memory: https://play.google.com/
Source: chromecache_380.1.dr, chromecache_312.1.dr	String found in binary or memory: https://play.google.com/about/comment-posting-policy?hl=
Source: chromecache_380.1.dr	String found in binary or memory: https://play.google.com/about/play-terms/index.html;target;_blank;class;cOP9Jc
Source: chromecache_380.1.dr	String found in binary or memory: https://play.google.com/googleplaygames
Source: chromecache_380.1.dr	String found in binary or memory: https://play.google.com/googleplaygames;target;_blank;class;cOP9Jc
Source: chromecache_380.1.dr	String found in binary or memory: https://play.google.com/intl/all_
Source: chromecache_312.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_629.1.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.apple.android.music&referrer=utm_source=$
Source: chromecache_335.1.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.malwarebytes.nebula
Source: chromecache_548.1.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=org.malwarebytes.antimalware
Source: chromecache_548.1.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=org.malwarebytes.harpocrates
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/469845959
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/486138202
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/694145904?h=52d3187658
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/742770100
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/757340435?h=8470ed7d4a
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/816688840?badge=0&autopause=0&player_id=0&app_id=58479%22
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/816688840?texttrack=en
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/817779959?texttrack=en
Source: chromecache_380.1.dr, chromecache_508.1.dr	String found in binary or memory: https://policies.google.com/privacy
Source: chromecache_380.1.dr	String found in binary or memory: https://policies.google.com/terms;target;_blank;class;cOP9Jc
Source: chromecache_519.1.dr	String found in binary or memory: https://preactjs.com
Source: chromecache_486.1.dr	String found in binary or memory: https://preprod-www.malwarebytes.com
Source: chromecache_533.1.dr	String found in binary or memory: https://press.malwarebytes.com
Source: chromecache_533.1.dr	String found in binary or memory: https://press.malwarebytes.com/
Source: chromecache_669.1.dr	String found in binary or memory: https://prod.upsellit.com
Source: chromecache_610.1.dr	String found in binary or memory: https://raw.github.com/emberjs/ember.js/master/LICENSE
Source: chromecache_423.1.dr	String found in binary or memory: https://recaptcha.net
Source: chromecache_549.1.dr	String found in binary or memory: https://sandbox.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://sandbox.google.com/inapp/%
Source: chromecache_549.1.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/%
Source: chromecache_380.1.dr, chromecache_533.1.dr, chromecache_486.1.dr, chromecache_467.1.dr	String found in binary or memory: https://schema.org
Source: chromecache_380.1.dr	String found in binary or memory: https://schema.org/InStock
Source: chromecache_380.1.dr, chromecache_312.1.dr	String found in binary or memory: https://schema.org/Offer
Source: chromecache_380.1.dr	String found in binary or memory: https://schema.org/PreOrder
Source: chromecache_549.1.dr	String found in binary or memory: https://scone-pa.clients6.google.com
Source: chromecache_533.1.dr	String found in binary or memory: https://service.malwarebytes.com
Source: chromecache_335.1.dr	String found in binary or memory: https://service.malwarebytes.com/hc/en-us/articles/4413789454995
Source: chromecache_335.1.dr	String found in binary or memory: https://service.malwarebytes.com/hc/en-us/articles/4413799066643
Source: chromecache_526.1.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_448.1.dr	String found in binary or memory: https://ssl.gstatic.com/support/realtime/operator/
Source: chromecache_584.1.dr, chromecache_531.1.dr	String found in binary or memory: https://ssl.gstatic.com/support/realtime/operator/1711440061703/operatordeferred_bin_base.js
Source: chromecache_486.1.dr	String found in binary or memory: https://staging-www-api.malwarebytes.com
Source: chromecache_549.1.dr	String found in binary or memory: https://stagingqual-feedback-pa-googleapis.sandbox.google.com
Source: chromecache_395.1.dr, chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_395.1.dr, chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect?v=2&
Source: chromecache_641.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://stats.wp.com/e-202413.js
Source: chromecache_467.1.dr	String found in binary or memory: https://support.apple.com
Source: chromecache_467.1.dr	String found in binary or memory: https://support.apple.com/HT203046
Source: chromecache_312.1.dr	String found in binary or memory: https://support.google.com
Source: chromecache_549.1.dr, chromecache_448.1.dr	String found in binary or memory: https://support.google.com/
Source: chromecache_411.1.dr	String found in binary or memory: https://support.google.com/googleplay/?p=remote_install_error
Source: chromecache_380.1.dr	String found in binary or memory: https://support.google.com/googleplay/?p=report_content
Source: chromecache_380.1.dr, chromecache_312.1.dr	String found in binary or memory: https://support.google.com/googleplay/answer/10066529
Source: chromecache_411.1.dr	String found in binary or memory: https://support.google.com/googleplay/answer/6014972
Source: chromecache_380.1.dr	String found in binary or memory: https://support.google.com/googleplay?p=eligibility_requirements
Source: chromecache_549.1.dr	String found in binary or memory: https://support.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://support.google.com/inapp/%
Source: chromecache_423.1.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_423.1.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_423.1.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_423.1.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_533.1.dr	String found in binary or memory: https://support.malwarebytes.com
Source: chromecache_486.1.dr	String found in binary or memory: https://support.malwarebytes.com/
Source: chromecache_486.1.dr	String found in binary or memory: https://support.malwarebytes.com/hc/en-us
Source: chromecache_486.1.dr	String found in binary or memory: https://support.malwarebytes.com/hc/en-us/articles/360038524154-Report-a-false-positive-to-Malwareby
Source: chromecache_486.1.dr	String found in binary or memory: https://support.malwarebytes.com/hc/en-us/articles/360046199873-Activate-Malwarebytes-Privacy-on-Win
Source: chromecache_486.1.dr	String found in binary or memory: https://support.threatdown.com
Source: chromecache_467.1.dr	String found in binary or memory: https://support.threatdown.com/
Source: chromecache_533.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/10210956995347
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/14768280542739
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/15917764816403
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/17608312740499
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789306771-Collect-Malwarebytes-Endpoint-Agent-d
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789454995
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789526803
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789526803-Brute-Force-Protection-feature-requir
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789589779
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789774867
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789824787
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789824787-Detections-page-in-Malwarebytes-Nebul
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789904659
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789938195-Manage-Dashboard-widgets-in-Malwareby
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413799066643
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413799118611
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413799166227
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413799266323
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413799273363
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802085139
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802087443-Setup-notifications-in-Malwarebytes-N
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802103955
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802187411
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802216467
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802550547
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802753555
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802805651
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4416306922387
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4417194200723-Apply-operating-system-patch-with-Pat
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4417282329491
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4422355185555
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4422362194451
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4432407537683
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/5804686261523
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/5831081172755-New-navigation-layout-in-Nebula
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/8476896321555
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/8787932508307
Source: chromecache_533.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/p/oneview
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/sections/4422311000083-Patch-Management
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_313.1.dr	String found in binary or memory: https://tailwindcss.com
Source: chromecache_613.1.dr, chromecache_589.1.dr	String found in binary or memory: https://targeting.api.drift.com
Source: chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/bjs
Source: chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/bts
Source: chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/buyer.wasm
Source: chromecache_623.1.dr, chromecache_310.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j177844569
Source: chromecache_623.1.dr, chromecache_310.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j476354832
Source: chromecache_532.1.dr, chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j6777810493
Source: chromecache_532.1.dr, chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j6777810496
Source: chromecache_532.1.dr, chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j6780528686
Source: chromecache_623.1.dr, chromecache_310.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j6979234722
Source: chromecache_623.1.dr, chromecache_310.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j758809157
Source: chromecache_310.1.dr	String found in binary or memory: https://tdsf.doubleclick.net/td/adfetch/gda?adg_id=156241318702
Source: chromecache_549.1.dr	String found in binary or memory: https://test-scone-pa-googleapis.sandbox.google.com
Source: chromecache_411.1.dr	String found in binary or memory: https://tokenized.play.google.com
Source: chromecache_486.1.dr	String found in binary or memory: https://try.malwarebytes.com/2023-state-of-malware/?utm_source=website
Source: chromecache_533.1.dr	String found in binary or memory: https://try.malwarebytes.com/custom-quote/?ref=NAV
Source: chromecache_486.1.dr	String found in binary or memory: https://try.malwarebytes.com/identity-theft-supplemental-terms
Source: chromecache_533.1.dr	String found in binary or memory: https://try.threatdown.com/2024-state-of-malware/?ref=nav
Source: chromecache_629.1.dr	String found in binary or memory: https://tv.apple.com/search?q=
Source: chromecache_467.1.dr	String found in binary or memory: https://twitter.com/AppStore
Source: chromecache_486.1.dr	String found in binary or memory: https://twitter.com/malwarebytes
Source: chromecache_533.1.dr	String found in binary or memory: https://twitter.com/threat_down
Source: chromecache_369.1.dr	String found in binary or memory: https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
Source: chromecache_313.1.dr	String found in binary or memory: https://underscores.me/
Source: chromecache_313.1.dr	String found in binary or memory: https://underscoretw.com/
Source: chromecache_486.1.dr	String found in binary or memory: https://www-api.malwarebytes.com
Source: chromecache_486.1.dr	String found in binary or memory: https://www.adr.org/Rules
Source: chromecache_629.1.dr, chromecache_467.1.dr	String found in binary or memory: https://www.apple.com
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/#organization
Source: chromecache_629.1.dr	String found in binary or memory: https://www.apple.com/ac/structured-data/images/knowledge_graph_logo.png
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/airpods/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/api-www/global-elements/global-header/v1/assets/globalheader.css
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/apple-arcade/
Source: chromecache_629.1.dr	String found in binary or memory: https://www.apple.com/apple-books/
Source: chromecache_629.1.dr	String found in binary or memory: https://www.apple.com/apple-vision-pro/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/choose-country-region/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/entertainment/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/ios/app-store/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/ipad/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/iphone/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/itunes/download/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/legal/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/legal/internet-services/terms/site.html
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/legal/privacy/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/mac/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/macos/mojave-preview/#mac-app-store
Source: chromecache_629.1.dr	String found in binary or memory: https://www.apple.com/osx/apps/app-store/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/retail/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/sitemap/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/tv-home/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/us/shop/goto/buy_accessories
Source: chromecache_629.1.dr, chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/us/shop/goto/help/sales_refunds
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/us/shop/goto/store
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/watch/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.extremenetworks.com/extremecloud-iq/
Source: chromecache_449.1.dr, chromecache_393.1.dr, chromecache_526.1.dr, chromecache_312.1.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_549.1.dr	String found in binary or memory: https://www.google.cn/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://www.google.cn/tools/feedback/%
Source: chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.google.com
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_369.1.dr	String found in binary or memory: https://www.google.com/log?format=json&hasfast=true
Source: chromecache_516.1.dr, chromecache_658.1.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/407675570/?random
Source: chromecache_317.1.dr, chromecache_426.1.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/930356311/?random
Source: chromecache_312.1.dr	String found in binary or memory: https://www.google.com/recaptcha/api.js?trustedtypes=true&render=$
Source: chromecache_423.1.dr, chromecache_497.1.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_549.1.dr, chromecache_448.1.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: chromecache_549.1.dr	String found in binary or memory: https://www.google.com/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://www.google.com/tools/feedback/%
Source: chromecache_549.1.dr	String found in binary or memory: https://www.google.com/tools/feedback/help_panel_binary.js
Source: chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_449.1.dr, chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_449.1.dr, chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_566.1.dr	String found in binary or memory: https://www.googletagmanager.com/dclk/ns/v1.js
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_611.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-3347303-10
Source: chromecache_533.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chromecache_312.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=$
Source: chromecache_533.1.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-MQ92VXZT
Source: chromecache_392.1.dr	String found in binary or memory: https://www.googletagmanager.com/static/exp/keys.json
Source: chromecache_423.1.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/moV1mTgQ6S91nuTnmll4Y9yf/recaptcha__.
Source: chromecache_411.1.dr	String found in binary or memory: https://www.gstatic.com/android/market_images/web/reviews_not_found.png
Source: chromecache_312.1.dr	String found in binary or memory: https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
Source: chromecache_390.1.dr, chromecache_497.1.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/moV1mTgQ6S91nuTnmll4Y9yf/recaptcha__en.js
Source: chromecache_448.1.dr	String found in binary or memory: https://www.gstatic.com/uservoice/feedback/client/web/
Source: chromecache_549.1.dr	String found in binary or memory: https://www.gstatic.com/uservoice/surveys/resources/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.instagram.com/malwarebytesofficial
Source: chromecache_486.1.dr	String found in binary or memory: https://www.linkedin.com/company/malwarebytes
Source: chromecache_533.1.dr	String found in binary or memory: https://www.linkedin.com/company/threatdown.com/about/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/#/schema/logo/image/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/#organization
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/#website
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/?p=5009
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/?s=
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/_static/??-eJyNjEsKgDAMBS9kDaX42YhnSTVioWmliRRvb8ELuHzMzIN6mS0npaSgJzEJ
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/_static/??-eJyVjlEKwjAQRC9kXUKx9Uc8S5qMdGOSleyW4O0NeAH9HN68Yai/piDVUI1s
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/accessibility
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/adwcleaner
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/affiliates
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/android
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/antivirus
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/blog
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/blog/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/blog/threats
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/browserguard
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/bundles
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/academy/?utm_source=nebula&utm_medium=menu&utm_campaign=nebula
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/app-block
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/certifications
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/contact-us?ref=msp
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/custom-quote
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/edr
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/edr-server-security/
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/edr/server-security/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/endpoint-protection
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/endpoint-protection/server-security/
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/ep-server-security
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/integrations
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/integrations/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/managed-detection-and-response
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/mobile-security
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/services
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/solutions
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/solutions/enterprise
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/solutions/mid-market
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/solutions/small-business
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/chromebook
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/company
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/computer-virus
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/cybersecurity
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/digital-footprint
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/eula
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/eula#breadcrumb
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/eula#primaryimage
Source: chromecache_467.1.dr	String found in binary or memory: https://www.malwarebytes.com/eula/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/eula/services-agreement
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/for-home
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/for-home/products
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/getprotection
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/glossary
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/hacker
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/identity-theft-protection
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/ios
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/jobs
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/jobs/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/legal
Source: chromecache_467.1.dr	String found in binary or memory: https://www.malwarebytes.com/legal/privacy-policy
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/legal/privacy-policy/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/mac
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/malware
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/mwb-download
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/newsletter/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners/managed-service-providers
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners/managed-service-providers/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners/resellers
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners/resellers/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/password-generator
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/phishing
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/premium
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/press
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/press/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/pricing
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/pricing/teams
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/ransomware
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources#analyst-reports
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources#reviews
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources/#reviews
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources/casestudies
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources/casestudies/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/scholarship
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/secure
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/secure/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/solutions/ransomware-protection
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/solutions/rootkit-scanner
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/solutions/spyware-scanner
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/solutions/trojan-scanner
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/solutions/virus-scanner
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/support/lifecycle
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/teams
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/techbench
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/techbench/
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/tos
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/vpn
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/what-is-vpn
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/windows
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/themes/malwarebytes/assets/src/images/footer-globe.svg
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2022/03/day-care-logo.svg
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/footer-logo-1.svg
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/icon-facebook.svg?w=1240
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/icon-instagram.svg?w=1240
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/icon-linkedin.svg?w=1240
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/icon-youtube.svg?w=1240
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/malwarebytes-state-of-malware-report
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=18
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=19
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=27
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=32
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/generic.png
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/generic.png?w=1024
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/09/product-menu-screen.webp?w=356
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/11/Malwarebytes-MDR-Service-Overview-No
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2024/01/x-logo.svg?w=1240
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-includes/js/jquery/jquery.min.js?ver=1.0
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-json/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fwww.malwarebytes.com%2Feula
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-json/wp/v2/pages/5009
Source: chromecache_395.1.dr, chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_526.1.dr	String found in binary or memory: https://www.redditstatic.com/ads/pixel.js
Source: chromecache_467.1.dr	String found in binary or memory: https://www.spiceworks.com/free-help-desk-software
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com
Source: chromecache_467.1.dr	String found in binary or memory: https://www.threatdown.com/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/_static/??-eJyNjUEOhCAQBD
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/_static/??-eJyNzTEOgzAMheELAYaBph0QZ0HEgNMkRnZC1ds3A0MnxPy
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/_static/??-eJyVjUEOwjAMBD
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/_static/??-eJzTLy/QzcxLzilNSS3WzwKiwtLUokoopZebmaeXVayjj0
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/_static/??-eJzTLy/QzcxLzilNSS3WzyrWz01NyUxMzUnNTc0rQeEU5CRWphbp5qSmJyZX6u
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/api/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/api/oembed/1.0/embed?url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/api/oembed/1.0/embed?url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/api/wp/v2/pages/247
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/comments/feed/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/contact-us/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/education/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/eula/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/feed/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/glossary/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/legal/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/legal/support-services-agreement
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/lifecycle
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/lifecycle/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/pricing
Source: chromecache_486.1.dr, chromecache_335.1.dr	String found in binary or memory: https://www.threatdown.com/pricing/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/pricing/bundles/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/privacy-policy/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/products/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/products/endpoint-detection-and-response/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/products/managed-detection-and-response/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/products/security-advisor/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/security-advisor
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/series/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/languages/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-asse
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-sear
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/images/logo-header-threatdown-horizontal.svg
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/images/masterpage-svg.svg#svg-globe-icon
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/images/masterpage-svg.svg#svg-linkedin
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/images/threatdown-logo.svg
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/images/x-logo.svg
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/js/script.min.js?m=1711561442g
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2023/11/ThreatDown-MTH-Service-Description-Nov2023.pdf
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2023/11/favicon.svg?w=16
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2023/11/product-menu-screen.webp
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2023/11/px-center.png
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2023/12/ThreatDown-social.png
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2024/02/CORP_SOM_2024_Resource_TN_2.png
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-includes/css/dist/block-library/style.min.css?m=1710875768g
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-includes/js/dist/url.min.js?m=1710875769g
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/xmlrpc.php?rsd
Source: chromecache_669.1.dr	String found in binary or memory: https://www.upsellit.com
Source: chromecache_669.1.dr	String found in binary or memory: https://www.upsellit.com/launch/blank.jsp?aff_click=
Source: chromecache_669.1.dr	String found in binary or memory: https://www.upsellit.com/launch/blank.jsp?malwarebytes_frame=
Source: chromecache_669.1.dr	String found in binary or memory: https://www.upsellit.com/launch/blank.jsp?pixel_found=
Source: chromecache_669.1.dr	String found in binary or memory: https://www.upsellit.com/utility/customer_ip.jsp?companyID=
Source: chromecache_467.1.dr	String found in binary or memory: https://www.wikidata.org/wiki/Q368215
Source: chromecache_566.1.dr, chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.youtube.com/malwarebytes
Source: chromecache_486.1.dr	String found in binary or memory: https://www.youtube.com/user/Malwarebytes
Source: chromecache_467.1.dr	String found in binary or memory: https://www.youtube.com/watch?v=zoAzHI_gykk
Source: chromecache_466.1.dr	String found in binary or memory: https://xp-qa.apple.com
Source: chromecache_466.1.dr, chromecache_467.1.dr	String found in binary or memory: https://xp.apple.com
Source: chromecache_661.1.dr	String found in binary or memory: https://xp.apple.com/config/1/report
Source: chromecache_456.1.dr	String found in binary or memory: https://xp.apple.com/register
Source: chromecache_450.1.dr, chromecache_512.1.dr, chromecache_661.1.dr, chromecache_479.1.dr, chromecache_496.1.dr	String found in binary or memory: https://xp.apple.com/report
Source: chromecache_486.1.dr	String found in binary or memory: https://yoast.com/wordpress/plugins/seo/

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 50282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 50255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50201 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50295
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 50286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 50205 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 50136 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50093
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 50193 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50259
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50254
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50253
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50256
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50255
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50257
Source: unknown	Network traffic detected: HTTP traffic on port 50161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50215 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50265
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50264
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50268
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50264 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50270
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50272
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50271
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50273
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50276
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50278
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50035
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50279
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50242 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50280
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50283
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50282
Source: unknown	Network traffic detected: HTTP traffic on port 50104 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50089 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50203 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50171 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50285
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50284
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50287
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50044
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50288
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50049
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50290
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50292
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50294
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50051
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50293
Source: unknown	Network traffic detected: HTTP traffic on port 50126 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50122 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50219 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50134 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50053 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50272 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50100 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50249 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50294 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50181 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49941
Source: unknown	Network traffic detected: HTTP traffic on port 50229 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50098
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50097
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50099
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50158 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50087 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 50250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50063 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50191 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50217 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50146 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50097 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49993 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50291 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 50142 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 50210 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824

Source: unknown	HTTPS traffic detected: 23.48.10.90:443 -> 192.168.2.5:49720 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.48.10.90:443 -> 192.168.2.5:49729 version: TLS 1.2

Source: classification engine

Classification label: clean2.win@27/677@210/56

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2332,i,3501436823269395625,3289047482278200069,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiA"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6456 --field-trial-handle=2332,i,3501436823269395625,3289047482278200069,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2332,i,3501436823269395625,3289047482278200069,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6456 --field-trial-handle=2332,i,3501436823269395625,3289047482278200069,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Confirm
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Confirm
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: agree
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Run
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Run

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
3.226.105.113	partners-alb-1113315349.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
13.249.39.126	unknown	United States	16509	AMAZON-02US	false
192.28.144.124	805-usg-300.mktoresp.com	United States	15224	OMNITUREUS	false
34.249.249.88	prod-dem-collector-elb-611025824.eu-west-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
35.244.154.8	id.rlcdn.com	United States	15169	GOOGLEUS	false
108.138.85.5	segments.company-target.com	United States	16509	AMAZON-02US	false
13.249.39.4	assets.ubembed.com	United States	16509	AMAZON-02US	false
13.249.39.123	unknown	United States	16509	AMAZON-02US	false
142.251.163.119	unknown	United States	15169	GOOGLEUS	false
142.251.111.139	play.google.com	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
18.165.98.51	d3n8dotypum3qu.cloudfront.net	United States	3	MIT-GATEWAYSUS	false
172.253.62.157	td.doubleclick.net	United States	15169	GOOGLEUS	false
142.251.167.103	unknown	United States	15169	GOOGLEUS	false
13.249.39.41	cloud.malwarebytes.com	United States	16509	AMAZON-02US	false
18.173.132.86	unknown	United States	3	MIT-GATEWAYSUS	false
13.249.39.46	api.company-target.com	United States	16509	AMAZON-02US	false
37.19.207.34	plausible.io	Ukraine	31343	INTERTELECOMUA	false
34.117.39.58	www.upsellit.com	United States	139070	GOOGLE-AS-APGoogleAsiaPacificPteLtdSG	false
44.206.136.150	genesis.malwarebytes.com	United States	14618	AMAZON-AESUS	false
108.138.85.47	unknown	United States	16509	AMAZON-02US	false
104.19.178.52	unknown	United States	13335	CLOUDFLARENETUS	false
192.0.76.3	stats.wp.com	United States	2635	AUTOMATTICUS	false
104.244.42.197	t.co	United States	13414	TWITTERUS	false
142.251.16.99	unknown	United States	15169	GOOGLEUS	false
192.0.66.84	www.threatdown.com	United States	2635	AUTOMATTICUS	false
3.94.218.138	unknown	United States	14618	AMAZON-AESUS	false
146.75.28.157	platform.twitter.map.fastly.net	Sweden	30051	SCCGOVUS	false
172.253.63.155	unknown	United States	15169	GOOGLEUS	false
54.147.21.139	unknown	United States	14618	AMAZON-AESUS	false
104.18.32.137	unknown	United States	13335	CLOUDFLARENETUS	false
13.32.151.13	d1nie5ipy0d64w.cloudfront.net	United States	16509	AMAZON-02US	false
192.0.66.233	www.malwarebytes.com	United States	2635	AUTOMATTICUS	false
34.96.71.22	s.dsp-prod.demandbase.com	United States	15169	GOOGLEUS	false
142.251.16.104	www.google.com	United States	15169	GOOGLEUS	false
104.244.42.131	s.twitter.com	United States	13414	TWITTERUS	false
104.18.36.155	dsum-sec.casalemedia.com	United States	13335	CLOUDFLARENETUS	false
172.64.155.119	geolocation.onetrust.com	United States	13335	CLOUDFLARENETUS	false
13.32.208.17	dl7g9llrghqi1.cloudfront.net	United States	16509	AMAZON-02US	false
172.253.62.119	play-lh.googleusercontent.com	United States	15169	GOOGLEUS	false
54.91.140.120	ee15ba61-wschat-wschatalb-6fcf-2062696737.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
104.19.177.52	cdn.cookielaw.org	United States	13335	CLOUDFLARENETUS	false
142.251.167.99	unknown	United States	15169	GOOGLEUS	false
142.251.111.155	stats.g.doubleclick.net	United States	15169	GOOGLEUS	false
34.96.102.137	dev.visualwebsiteoptimizer.com	United States	15169	GOOGLEUS	false
13.249.39.16	deployment-module.cloud.malwarebytes.com	United States	16509	AMAZON-02US	false
13.249.39.17	sam-module.cloud.malwarebytes.com	United States	16509	AMAZON-02US	false
18.160.10.40	scripts.demandbase.com	United States	3	MIT-GATEWAYSUS	false
142.251.167.156	unknown	United States	15169	GOOGLEUS	false
142.251.167.155	googleads.g.doubleclick.net	United States	15169	GOOGLEUS	false
104.244.42.67	unknown	United States	13414	TWITTERUS	false
35.221.11.9	r2.visualwebsiteoptimizer.com	United States	15169	GOOGLEUS	false
35.245.208.72	r1.visualwebsiteoptimizer.com	United States	15169	GOOGLEUS	false
13.32.151.88	tag-logger.demandbase.com	United States	16509	AMAZON-02US	false
104.22.54.104	rum-static.pingdom.net	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.5

Contacted Domains

Name	IP	Active
stats.wp.com	192.0.76.3	true
afe79c04fd8464db69f453355c110684-6aa967fe209738b1.elb.us-east-1.amazonaws.com	50.16.7.188	true
dev.visualwebsiteoptimizer.com	34.96.102.137	true
segments.company-target.com	108.138.85.5	true
ee15ba61-wschat-wschatalb-6fcf-2062696737.us-east-1.elb.amazonaws.com	54.91.140.120	true
s.dsp-prod.demandbase.com	34.96.71.22	true
805-usg-300.mktoresp.com	192.28.144.124	true
fp2e7a.wpc.phicdn.net	192.229.211.108	true
platform.twitter.map.fastly.net	146.75.28.157	true
stats.g.doubleclick.net	142.251.111.155	true
www.upsellit.com	34.117.39.58	true
dl7g9llrghqi1.cloudfront.net	13.32.208.17	true
rum-static.pingdom.net	104.22.54.104	true
t.co	104.244.42.197	true
www.malwarebytes.com	192.0.66.233	true
play-lh.googleusercontent.com	172.253.62.119	true
www.google.com	142.251.16.104	true
r1.visualwebsiteoptimizer.com	35.245.208.72	true
id.rlcdn.com	35.244.154.8	true
assets.ubembed.com	13.249.39.4	true
tag-logger.demandbase.com	13.32.151.88	true
plausible.io	37.19.207.34	true
www.threatdown.com	192.0.66.84	true
deployment-module.cloud.malwarebytes.com	13.249.39.16	true
google.com	142.251.167.101	true
s.twitter.com	104.244.42.131	true
sam-module.cloud.malwarebytes.com	13.249.39.17	true
r2.visualwebsiteoptimizer.com	35.221.11.9	true
d3n8dotypum3qu.cloudfront.net	18.165.98.51	true
prod-dem-collector-elb-611025824.eu-west-1.elb.amazonaws.com	34.249.249.88	true
dsum-sec.casalemedia.com	104.18.36.155	true
googleads.g.doubleclick.net	142.251.167.155	true
play.google.com	142.251.111.139	true
pixel.wp.com	192.0.76.3	true
d1nie5ipy0d64w.cloudfront.net	13.32.151.13	true
analytics.google.com	142.251.163.100	true
td.doubleclick.net	172.253.62.157	true
api.company-target.com	13.249.39.46	true
genesis.malwarebytes.com	44.206.136.150	true
partners-alb-1113315349.us-east-1.elb.amazonaws.com	3.226.105.113	true
cdn.cookielaw.org	104.19.177.52	true
geolocation.onetrust.com	172.64.155.119	true
scripts.demandbase.com	18.160.10.40	true
cloud.malwarebytes.com	13.249.39.41	true
static.ads-twitter.com	unknown	unknown
is2-ssl.mzstatic.com	unknown	unknown
metrics.api.drift.com	unknown	unknown
is3-ssl.mzstatic.com	unknown	unknown
js.driftt.com	unknown	unknown
bootstrap.driftapi.com	unknown	unknown
conversation.api.drift.com	unknown	unknown
s.company-target.com	unknown	unknown
pixel.rubiconproject.com	unknown	unknown
is4-ssl.mzstatic.com	unknown	unknown
px.ads.linkedin.com	unknown	unknown
munchkin.marketo.net	unknown	unknown
is1-ssl.mzstatic.com	unknown	unknown
partners.tremorhub.com	unknown	unknown
185c650ccfd84b27aad189f19681365b.js.ubembed.com	unknown	unknown
customer.api.drift.com	unknown	unknown
log.api.drift.com	unknown	unknown
www.linkedin.com	unknown	unknown
rum-collector-2.pingdom.net	unknown	unknown
targeting.api.drift.com	unknown	unknown
analytics.twitter.com	unknown	unknown
snap.licdn.com	unknown	unknown
is5-ssl.mzstatic.com	unknown	unknown
content.content.cloud.malwarebytes.com	unknown	unknown
71521-21.chat.api.drift.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://www.threatdown.com/wp-content/uploads/2023/11/favicon.svg?w=16	false	0%, Virustotal, Browse Avira URL Cloud: safe	unknown
https://stats.g.doubleclick.net/g/collect?v=2&tid=G-K8KCHE3KSC&cid=746274578.1711678643&gtm=45je43r0v872204243za200&aip=1&dma=0&gcd=13l3l3l3l1&npa=0	false		high
https://assets.ubembed.com/universalscript/releases/v0.180.1/bundle.js	false	0%, Virustotal, Browse Avira URL Cloud: safe	unknown
https://js.driftt.com/core/assets/js/28.caa75eae.chunk.js	false		high
https://dev.visualwebsiteoptimizer.com/j.php?a=622914&u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&vn=2	false		high
https://t.co/i/adsct?bci=3&eci=2&event_id=dafb3e78-299e-4e50-a33f-5eb621198b65&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5976ebb1-6699-4826-8e11-816c6da6b111&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29	false		high
https://cloud.malwarebytes.com/fonts/Roboto-Regular.woff	false		high
https://partners.tremorhub.com/sync?UIDM=2c1f1154-2d99-4eed-a8d3-a0849e7d153c	false	Avira URL Cloud: safe	unknown
about:blank	false	Avira URL Cloud: safe	low
https://id.rlcdn.com/1000.gif?memo=CI6tHBoNCMjJmLAGEgUI6AcQAEIASgA	false		high
https://dev.visualwebsiteoptimizer.com/j.php?a=805334&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&vn=2	false		high
https://cloud.malwarebytes.com/1920.55af13dcbd62f39bf5cd.js	false		high
https://js.driftt.com/core/assets/js/22.6b9a301a.chunk.js	false		high
https://cdn.cookielaw.org/consent/82971089-2677-4e1e-8fab-44444f76330b/82971089-2677-4e1e-8fab-44444f76330b.json	false		high
https://play-lh.googleusercontent.com/I8aTKWVV7z0odeJnIszf9daqh1Wpef6yCljs1u51otXFPxAKmGZtn7VLQF3YTLwDcZDD=s64-rw	false		high
https://www.threatdown.com/wp-content/uploads/2023/11/product-menu-screen.webp	false	Avira URL Cloud: safe	unknown
https://cdn.cookielaw.org/scripttemplates/202403.1.0/assets/v2/otPcPanel.json	false		high
https://play-lh.googleusercontent.com/12USW7aflgz466ifDehKTnMoAep_VHxDmKJ6jEBoDZWCSefOC-ThRX14Mqe0r8KF9XCzrpMqJts=s20-rw	false		high
https://js.driftt.com/core/assets/js/runtime~main.0c9f6301.js	false		high
https://cdn.cookielaw.org/consent/82971089-2677-4e1e-8fab-44444f76330b/018e2f1e-12b2-7a41-ab63-6c6e010fa4d9/en.json	false		high
https://js.driftt.com/core/assets/css/27.b5e8f5e1.chunk.css	false		high
https://www.malwarebytes.com/wp-content/themes/malwarebytes/assets/build/fonts/Roboto-Medium.f25d774e.woff2	false		high
https://stats.g.doubleclick.net/g/collect?v=2&tid=G-K8KCHE3KSC&cid=1799710383.1711678692&gtm=45je43r0v872204243z89167491076za200&aip=1&dma=0&gcd=13l3l3l3l1&npa=0	false		high
https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-3347303-10&cid=746274578.1711678643&jid=1763037649&_u=SCCAiEAjBAAAAGAAIg~&z=1551232403	false		high
https://dev.visualwebsiteoptimizer.com/s.gif?account_id=805334&u=DD81812FF9924922ADBB4749FE017257E&s=1711678684&p=1&ed=%7B%22tz%22%3A%22Europe%2FZurich%22%2C%22tO%22%3A%22-1%22%2C%22lt%22%3A%221711678687320%22%2C%22r%22%3A%22%22%2C%22ul%22%3A%22en-us%22%2C%22de%22%3A%22UTF-8%22%2C%22sc%22%3A%2224%22%2C%22sr%22%3A%221280x1024%22%7D&cu=https%253A%252F%252Fwww.threatdown.com%252Feula%252F&r=0&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&eTime=1711678686339&random=0.514061177215668	false		high
https://www.threatdown.com/wp-includes/css/dist/block-library/style.min.css?m=1710875768g	false	Avira URL Cloud: safe	unknown
https://www.upsellit.com/active/malwarebytes.jsp	false		high
https://www.malwarebytes.com/wp-content/themes/malwarebytes/assets/build/fonts/Graphik-Light.8512717f.woff2	false		high
https://r2.visualwebsiteoptimizer.com/analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.7600437965002955&eTime=1711678748622&recording=mc_41698_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_128_24_184_776_%7B11%7D%2Cmm_41868_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_128_24_175_783&rm=%7B%22ct%22%3A%5B11%2C0%5D%7D&fRS=true&movements=696&clicks=1&duration=0.3&start_time=1711678660410&end_time=1711678702622&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=14	false		high
https://play-lh.googleusercontent.com/sOmTFy2eNuiytkbV41QWgbIZ9cDX5FQU6HnxmUSuhjMpP_B_WLqOUO3zpsNEFjlzpw=s64-rw	false		high
https://genesis.malwarebytes.com/api/v1/locate	false		high
https://cloud.malwarebytes.com/remoteEntry.js?964871b7764ac3d70f0a	false		high
https://analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=dafb3e78-299e-4e50-a33f-5eb621198b65&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5976ebb1-6699-4826-8e11-816c6da6b111&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29	false		high
https://cdn.cookielaw.org/scripttemplates/otSDKStub.js	false		high
https://www.threatdown.com/wp-content/uploads/2023/11/px-center.png	false	Avira URL Cloud: safe	unknown
https://api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&page_title=End%20User%20License%20Agreement%20(EULA)	false	Avira URL Cloud: safe	unknown

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Mar 29 01:17:16 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	5C8AFDD8CFBE26E2883899A3DE4A6E78	DED131195F88D93ACB9714271680C56D5DB77C96	5ED1949C1AD4898B42936E2AB0A46473B5C597F99AE91D989639CF029253A50C
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Mar 29 01:17:15 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	055DDC5F57C9CD801555C7ED9B85D71B	FF68F00FC13A5D763DEE6EB95CE93959C464F602	23CEED74F6F791DD53D5F568CF6C3414999E34930D3FF245AC4F3AA273619351
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	948D5737A7D5547CCE9E6C76C394A101	08EBA28A645A6759806CE4127E6D475C1845EA7E	B3C2A502D0FB92193320922E2F437CD885E461E2EA37FB9DA985F1D9E36D9045
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Mar 29 01:17:15 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	32EDBB565257BBCC1989893AE1797977	ACC7F7137187DF4D1CB6D386183645D6517FEB84	22DFF71E704B4D426132ECE4D496AFF9F2D957CFB248E4FA554341F318EA89F9
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Mar 29 01:17:16 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	F0999BDB8F84438BC56F1CF9A50ADC79	65CDB03A2E4B53ABA4787DA4DBF299C1007BCB9E	4464EA5BF9E98B674FD657255E0DF9935DBD9F7DA26FB76B85CEF2204230550A
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Mar 29 01:17:15 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	A99D8B13DC490A19096D6F209A1E9287	45D39112B607D05D0C7DAA827D5280CCD7EB6AAF	E03E258955D8D1BEB3D955B34BFB9B036065681E28D8FD8AF370D86F608F9FBE
Chrome Cache Entry: 308	ASCII text, with very long lines (821)	33AF753815E0763128B33C38F393AF19	FD81C07EDD497B91F91629687D2AB6976F287E17	A7A8465112A5F495E5C95139568A59BF35B3116624A5861B71472070520D699E
Chrome Cache Entry: 309	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	77BDBC0CB4DA478BB67C34A58D754A00	C347EA9F6B447FDB1E693D2FAB9CB68302F5CA8D	41659F921F7BF1AE337A7F57F1FE7A1900B15E2CDA4CC5C9B6E3DC444468D43C
Chrome Cache Entry: 310	HTML document, ASCII text, with very long lines (4514), with no line terminators	1049B88D1B61CE190ABE40DC352A06AA	9045BE94E0E37F19400BB352EAB68B41C4DEC899	94D2BB838908FCD6DB23FB5003DC1A6C20C1A06237DFD53A77BBBFA92D80EB68
Chrome Cache Entry: 311	RIFF (little-endian) data, Web/P image	9DEA3CBD9E0F9B455FDE32DCA965B41F	8049A160E77BF9FDD2446113611BB8C99D1E5A53	3A1344E63287114EAD7F90BE694B7FC95370BF7B215D89BE93A54F39C15011CB
Chrome Cache Entry: 312	ASCII text, with very long lines (34807)	CC243EC3DA22278D7689C7C0C0D1B6DC	1BB9C4936E7314BC2DD722F7E40E50E09D1C634A	749641B6FA4D9716E6D47917581559BD7D8935DF5C11537255D4E6910868326F
Chrome Cache Entry: 313	Unicode text, UTF-8 text, with very long lines (60296)	4BD2BCFB176B6F81A9B192349C61E07E	F77D159EE4F2030F8F42059731E78FF7DD869768	3D48BFF2E71F3F8C1DEDC4DAC21C24E38C2181916B6D9198379299941DEC7524
Chrome Cache Entry: 314	ASCII text, with very long lines (706)	0758983E960F6C72E008C14EA20C2C4F	724C2BD72EB316CE0C91EBD6527A7A2BF8526DF5	DD5659FC474EE22CCF21A0356DA7B3E29BE50472B95550DB5C754DC9FFB989DA
Chrome Cache Entry: 315	Unicode text, UTF-8 text, with very long lines (65453)	247C77AEFEE2550D5DA2F10B199B758E	160B2DDBDDF314198B25B789BD0AF954A276EB5C	101A0AB7FBF27B583E6822228FFF411539C3605BB26C782DA7E6D4EB1511C300
Chrome Cache Entry: 316	JSON data	5514FDF20DF3E94C99F871D8A4D08FEF	B3EE298AD312146A6C43D3D96FBA557BCDF2DBAA	0ED759F9B0F407AA73DF997BDDF186C37A1927D2B0F8D2F7031067ECACF7581D
Chrome Cache Entry: 317	ASCII text, with very long lines (2282), with no line terminators	C199EBDEF129596D653634EF6EC3B2CD	C98410C9A166D4383CB391908091FAD945EFDD64	34D4BF3705A5476B4C0B1849EDCA62056FB956F5F5D6A151F9AE6CCDAE89A1CA
Chrome Cache Entry: 318	Web Open Font Format (Version 2), TrueType, length 15860, version 1.0	E9F5AAF547F165386CD313B995DDDD8E	ACDEF5603C2387B0E5BFFD744B679A24A8BC1968	F5AEBDFEA35D1E7656EF4ACC5DB1F243209755AE3300943EF8FC6280F363C860
Chrome Cache Entry: 319	Web Open Font Format (Version 2), TrueType, length 99196, version 1.0	474D73A771E0CC31B43849CD2BAD9CC4	1D973B9CD90543FA43E6E74F164149278B9331FD	AE98C3B1ED18478144791BFA0C71056B422287CD41F9B7D35C99063B04BE58EB
Chrome Cache Entry: 320	ASCII text, with very long lines (8586), with no line terminators	E7107BC29CCB3C6D928F0F8F10A0F22D	7F4B6237B2D74DE5F5A83C77841070A797BA4276	7849BA1748F8188749DF28E9D59CA4E570A8495684353D8DF4715FA70A81E787
Chrome Cache Entry: 321	RIFF (little-endian) data, Web/P image	405EB68AEAF052606B89429B1F1DEE6B	0D26F2E01B404D0385190DF4E39DDFA45A25E100	CA982102B11F87A81DCA0B9980CA824FC0C66D7E68397D043D8927D667F3AE4E
Chrome Cache Entry: 322	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 323	ASCII text, with very long lines (15718)	4CC444663C1E69CB8AC7B909E7192BCA	D00DDC5B9526193FA99BC3995A6D05F995452EA1	4F79A89D16A5F717110FE080C0BF90B7E05FF95A4C4983F64D33110BF5F9C230
Chrome Cache Entry: 324	ASCII text, with very long lines (878)	188415311B33E9DFC79C3CC6147ED47D	486B072C15EA89B3D39F607F92327F1A338254B0	8B3DA2AC016CE7C6F38F10052C50C7958935276BD5885009716FEC7B3D8ED681
Chrome Cache Entry: 325	ASCII text, with very long lines (6042), with no line terminators	9FB1DBA6CC608C4310104F103DB8B0E4	96F8726EC376189982A98185F38F48F480B2C8E3	236FB88931FEEAD5473C70F542473D5DC064578FFB45EA743414720E2AEA3929
Chrome Cache Entry: 326	ASCII text, with no line terminators	F7D59D3BE131AD16CC24D036112D9991	635B8DB4843997BA0331C4C0EDDD2601F4F69698	57CCDE9F4BE6E3F510E37BEFB67BA272AB6D263980802EA18C18F3B78B3DAB32
Chrome Cache Entry: 327	data	C2C4E2A562E06E1CB22293A5B920ACA6	A7B5A369AC4883F1EE7FA701B238D20238B675CA	698E93FE491CC7BBF07A470579A33DBD0DB53C19142B7BE41EBFD39A23AEF11F
Chrome Cache Entry: 328	ASCII text, with very long lines (57596), with no line terminators	32AD004436155EC972BC50E6238B5B67	9B2CDB645C2FA5B98A9D05DCDCA521FED4A17B7B	CF7FCC9F75C8717897BFAEF72F303FAB423CE1B70C98512AEB3677E4AF988DEE
Chrome Cache Entry: 329	RIFF (little-endian) data, Web/P image	2F640AA73D5757BA0FE67B74E5D9F41E	A4D29ADF1BA739285BA35AFBD94D51734425429D	469C936814B431210209150CA7F39A314A333269C07A5C83483D0C3EE0D772D4
Chrome Cache Entry: 330	ASCII text, with very long lines (12788), with no line terminators	EF880BE61458E4E89C9CB9D99D2D300E	C7740F6524CFAB6084682B1CE320B2E5E9C4D4CC	79674B01741C3978417B6B9B4B98D125755E7BB468979D5CD593EAC4B94CDB91
Chrome Cache Entry: 331	RIFF (little-endian) data, Web/P image	80CC740460293B79BA1F000DD9E68C13	9D2B4A4E9D16D7BACC2097D30F8DD16A886D42B5	191F469210A56B90091BC0B0F60698470642BF0C6CF4E0BE7794550A6D0BC66F
Chrome Cache Entry: 332	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 333	ASCII text, with very long lines (27881), with no line terminators	80A16A7469ECE9A85DF7AC8D39605662	54E64975F24647D242FA4DC0E20BA048A603DED2	7236BA4D18121D1C1E55329FD2110EB585B49DED5D66B2FE461F15369C7D3DDA
Chrome Cache Entry: 334	RIFF (little-endian) data, Web/P image	E0F32A1385CEFF73AA387A75EEEFC678	A30F06F2912F308B11396337D78714E8DF77A1F3	F203FBE446CEA0E6492C359DA1E6095DD012CC908D32DE776399CF066609E122
Chrome Cache Entry: 335	Unicode text, UTF-8 text, with very long lines (65445)	1A50ACE87F9924F4B9EE6931175BB62F	7ACD47089F5A785BDF66A52525608CAC05840A9F	1A0B3FD89AE66C099DFA9DDB4A1447105C31DB9D3200B5A9BD9E8F14565C2ECD
Chrome Cache Entry: 336	ASCII text	167951B00DD73BC2744A5537DB8DB2AE	0C9A036C3CC590BA6B7A4DD7E607F46887840DD7	4CADA443235C0DCC63625D206D7B4C68D88C18B1E99ED694120EFE567A007B59
Chrome Cache Entry: 337	HTML document, ASCII text, with very long lines (2632), with no line terminators	B75783DAE791E5F5FB27A5C87AE01AFA	F61AF7CA3E512534FB1C4693F77431CAF622AA1D	02490341648639B1459EA9F87529CB6C1FC58417F4579D73B0B3234AF3311064
Chrome Cache Entry: 338	ASCII text, with very long lines (65536), with no line terminators	04623F173E89AF9728E41011D28223EE	310B4845C2DAD1040EB9E39A4F0BECDCE2C484EB	C7300A39E6B46F5AF982036F991F9C642C4CC55C3F5599FCB1A32A5996E5CB75
Chrome Cache Entry: 339	RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp	03F6B75C92CA83C0BC40ACB595D51050	69EC75C679B486FA7E8F6E8928DAC957F729E127	93FBF640F2EC8332799207BAD5BF82F87503C2224E56FD6747A12E16D7C2822A
Chrome Cache Entry: 340	ASCII text, with very long lines (45138), with no line terminators	3B8BA82E1BAC13EE29E9764A55620D99	D68D0E4A43779884F7FDA72C7FEBEE83BA287E0C	58FDB03FAC3E89E51525A5A45EB777395D1B499BF4483E96201B6BECDDBE516F
Chrome Cache Entry: 341	ASCII text, with very long lines (23897), with no line terminators	CD29B9BC973E48A7FCD0EE7153BDF03B	AC3E5CF1C0D4183B2DF14C34BEBB84B3EE657799	7CB58278C8F54A62C0AFA6DA0C67B3A45AAD637A0BF614E9C0DD42B73CEE266B
Chrome Cache Entry: 342	ASCII text, with very long lines (3114), with no line terminators	B5201FF04DA30312910B71E1DA072DD2	84B0303592849AE0E16C33F9EA4776B22D6F326F	9373A860524D692CE81C1F8F266B511CD597A7F1DBB9FB674C57A303101C21BB
Chrome Cache Entry: 343	RIFF (little-endian) data, Web/P image	B34BD7B947F41D4C121EBB2CB22727AB	580DAE55FA2D6BA5480754109847DF5C7B9980B8	2FC88556DE1EBED9F55AFB87D495D90D43F939A515F3AFA5D59E953B8FC0AB20
Chrome Cache Entry: 344	ASCII text, with very long lines (579)	E62FEA2030907AF7E89AE14B53FFA550	7B4F41FC31DA2F829A183DFF72CDD708EA76665D	F66B859A3A06C27EF58D1CC069E5BA8A9A47B3C7AEAF448EADF1F589582C360B
Chrome Cache Entry: 345	MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel	A217F758EFDFFF14053678DBE58FA4D0	6E0EB512C2F386D645712D7ECBE339EA85CFCA68	F343B3015D0545A7D5B719A434135BCAE2AC766ED459AEEA671E3688B79D1875
Chrome Cache Entry: 346	ASCII text, with very long lines (33943), with no line terminators	F59599741225D241F0A715113E28CBA9	949E13675EAA9E26CD0A7806E558B04602828295	ADBD702FA7260881A92396160BD3E82C064D1EDCB124E8E53AB2B778FDD7D2AB
Chrome Cache Entry: 347	ASCII text, with very long lines (1346), with no line terminators	ABD4E2373B2E8C4DAC2E80159641C5F1	E273656E58CA934D873204E68DD35670FDE657ED	021F0FD27042B279A49E982215C6DC3C3AB84E95B35553A119DFDBD50AF6BE94
Chrome Cache Entry: 348	ASCII text, with very long lines (1335)	0CC3A63FE10060AF4A349E5DF666EEFE	3E8D3925B550345123F2CAB26568221FD4154F9C	92FCA55833F48B4289AC8F1CEDD48752B580FCE4EC4B5D81670B8193D6E51B54
Chrome Cache Entry: 349	RIFF (little-endian) data, Web/P image	790A5E59D48832B48E9DA6CBEC9996DD	270326F8B7B3FA528F6714D31638C546B94346AE	73911D11281F94C94EEA5D36F3F3CD10DA04F7B9B82739C47C6B2A431EE6E9A7
Chrome Cache Entry: 350	ASCII text, with very long lines (31339), with no line terminators	1E97F00F07B87F701D0BF06259F954E4	0FCEDFBE2C5B8AD22E9D69905A0317D81F4B7380	FF8F406B684C6674DBD3705D3F6D2CD10B5EEDBC2C67A7773F235D69EF122D04
Chrome Cache Entry: 351	RIFF (little-endian) data, Web/P image	302DA3FDE61EA51C62CEDF58056835FA	60F96D8C80CD3F9C6D401B77C536AE15EAB633B7	FCEE201BB4D7558843B9BE77611AAE3EC4CCF1833B477C2D6884A0BD61A6C113
Chrome Cache Entry: 352	JSON data	42A9E912A5BD10CFD4D2813DDF34D5CE	447ACD37C8C09BD2CCBD2655B511B405A30FBCE6	010ABC1425A170A391AF2A90F06FF1B98B92C43DC33523ED2C6DAC45AC81E1AB
Chrome Cache Entry: 353	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 354	ASCII text	927047801B445A743D65F1520686C0B2	E02DAFB3C36F1D115B2F952B34BD8853CC940896	5C0DA1815673A0DEE4ECC8600A15CCDFE6171A5DFEBB1F01E6CB04456454D73A
Chrome Cache Entry: 355	Unicode text, UTF-8 text, with very long lines (49252)	27967ECEC126D236F410C2354F0D5D0C	188CE15F6D4333E9F822E94ADD463E44A207924D	85A881FBA590AC097D83E7D5397C82C99D9538AC482AF8F10A3E5886393CFC85
Chrome Cache Entry: 356	PNG image data, 356 x 247, 8-bit/color RGB, non-interlaced	7ACE0BAF5D6AF8B113CD337002678E89	49F666251148009C665D7CC19482F1183331EABA	CBB7E1F795C77FB65676350384D121ECFC9B3B5BBD537010B8EDD0E8D3EF3912
Chrome Cache Entry: 357	ASCII text, with very long lines (8798), with no line terminators	C5EFCDC9E465604F32CF24AF10FD6C13	20FB642D2BFA7B5593CCF14AA11FFF2CCC3E8DF8	862BAE5C822D87DB86D0B893F474177CA1D9A51309354F12CC0AB85CD9BD9CF7
Chrome Cache Entry: 358	PNG image data, 48 x 36, 4-bit colormap, non-interlaced	07505E9DAC6DD922116F038EB58C9B88	4DAB9005E4603F76A6FAD92FE78FB9C92D05B62F	C4DB75F643BB4DD47E39A9601FCC0A14621B588D5E4EBE987EE4828120BDE791
Chrome Cache Entry: 359	PNG image data, 266 x 60, 8-bit/color RGBA, non-interlaced	9C7E345F6563589672B61052D75BFDBB	A85AA206666C9A1C6FA3E03C0D5118B5AA02D61D	C8C32294948F5448C2AC0BCDF5B98909DAB4EE73AC854BE06BFD4A13BCE89363
Chrome Cache Entry: 360	ASCII text, with very long lines (65447)	955C5D8B8207D6F7BABD8BF4FD03512D	B6A538115CCFB20F42D902941302BA4FA4241EAC	ECF7723A32533007EDE558C546FC8BA30F508283223B6E7F49C297B7C63C8B50
Chrome Cache Entry: 361	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 362	ASCII text, with very long lines (36995), with no line terminators	46FA5A7BC37A22544A908E4AD950309C	7C63D2A96EDDD4BC0D2C1D03947DA197B4625804	E0C6F8695589DF90E63442FEE1C9CF14E60DFC4FD8CE7296515B1D6DB41E1D3D
Chrome Cache Entry: 363	RIFF (little-endian) data, Web/P image	F0CD359656CD03EBB2FF23C0B0B1E8E0	9939FE4A7A04030861B76B2C867F060BD7DDD1F1	82DF1909896BEC16E52FC503B1382B1995DE1A55AC8808EE3E4FC42F8F283C11
Chrome Cache Entry: 364	ASCII text, with very long lines (3003)	5F765A4A59A407D5DAA33CC0B48F2A35	44E29FDCCC78BAD49465D30F2AD9D5DE816AE150	5C98E1CF88ADBADBE52321041E084AA2D5BC4DAAFFBF8EC6C45A438E8D393202
Chrome Cache Entry: 365	Unicode text, UTF-8 text, with CRLF, LF line terminators	3AB3496A7BFE9321B3FA0E2FC8668B14	EC704CA797F15BCDC6DE9AF8AB9F8311EB82B2A4	E321803AB120C94CFFB459955214D4F783D14653749A9D9E01D5E81C5358C8D4
Chrome Cache Entry: 366	Web Open Font Format (Version 2), TrueType, length 107832, version 1.0	2D753DE71684CC6C73161B6FE0C5A11C	B9B14B843008B6C9E8D6E933DDF52587CE0E32D7	DC0663A7522F9A0A447DCA9A60A80275EA5906DDE2159B24CEA94A96D81DEE0C
Chrome Cache Entry: 367	ASCII text, with very long lines (3742)	C3E88B836ABB13138D9F3A2821579CA5	688349DBF4452012FC8083DE4953C1F82B9CA895	69FF28925C5F62F6E372C19F90A5A1F8DEA3419EDBC6004BF5DD03033DFE079C
Chrome Cache Entry: 368	C source, ASCII text, with very long lines (65536), with no line terminators	B32CCC4557EBAEAEBC835C96712693C2	5747BD14940CC3A54AF65924CC5421B9C92211D5	D55ABB3750D355B96BB3D095FD440B8F439A83253D66243737F67836077BE254
Chrome Cache Entry: 369	ASCII text, with very long lines (2162)	3A1BBBFFF4D752997E576E6F4C52C703	94F108F7D0645F67EFD483CEEB574FB463FD9F55	7BA53D8F2393A948E7B5299FFBDE5293AEB34F24C88733B589B29E99ED7DF921
Chrome Cache Entry: 370	ASCII text, with very long lines (15387), with no line terminators	3305C113ACC7BE7B8411ABD6ABFA37BA	A186937D8522085D26F50BA351886021919F88A4	B781A271D23F8FCB33421408A4AB099770B32368548F88C651C0FD1C15CB2A0E
Chrome Cache Entry: 371	RIFF (little-endian) data, Web/P image	0923A53B64E64DB75177B6972F016A42	6915D871CBEA8A3B8F4E54367DCA538DA0AC3082	E0106DC1C0490A432C08671994F87FCBB982B7B25B4F9CBB640D49A03BD89CE3
Chrome Cache Entry: 372	Web Open Font Format, TrueType, length 89432, version 2.1101	081B11EBACA8AD30FD092E01451015DC	DB6450746E5DF1EB0636BC84F21AAE94E1CAFEA4	62F8BF9BC3A64FAC882BEDECCCD7E64B6520971B5864FD5A5A2177A4BCC8B735
Chrome Cache Entry: 373	ASCII text, with very long lines (65536), with no line terminators	114785899CEB423273FCC17AAAD202E9	CE53389286218FE6D7CE1EB86208074C024ACCA5	C8C302716CF94980A0D77E614D9FB6C430F166B5EF7C42B7C382771955E52BA6
Chrome Cache Entry: 374	JSON data	5417FEBD02AD2025711E47391CE15CE7	5F202292109E5F5F0555F38763CDE89764FA7121	E1076E28BF1095B534CEC675B71F48F79E71571B0D1E0B6299BFC1598A16B8B3
Chrome Cache Entry: 375	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	77BDBC0CB4DA478BB67C34A58D754A00	C347EA9F6B447FDB1E693D2FAB9CB68302F5CA8D	41659F921F7BF1AE337A7F57F1FE7A1900B15E2CDA4CC5C9B6E3DC444468D43C
Chrome Cache Entry: 376	ASCII text, with very long lines (65536), with no line terminators	DE70ABFC6E6AA19BBF7AF1646D791956	8F692BA91B774B5D6B9577F14F7FDBBE1ACCE98C	211834F4A3102A3B05BAC0802D4E24C8636835D51932BB9DB6E08B363D8AE22F
Chrome Cache Entry: 377	Web Open Font Format (Version 2), TrueType, length 38824, version 1.0	06F39E6344B13D29D1BBECCE524D24FD	7286C18338B38B9A93BBC3D70553E8072F2BB241	9E1C5B7F15BCD940814677515F306113AA93921B6E7F0D184A6DE904D07B6F43
Chrome Cache Entry: 378	ASCII text, with very long lines (35525), with no line terminators	775E66F734AAAF6FF06AED7F583A7328	6E607F9EE948F247E813F3D2DC890CA4436957BD	0CB9D978AE5C181C04F4AB6E86382258B83A199DE47A705775A8CED03D2A2CE4
Chrome Cache Entry: 379	ASCII text, with no line terminators	4A7E157A6DF07A8F848E13647A1F50BD	95E2715124461E84FB01E75A2157917697670D6D	E45C44615E141491E0540FEC7B7A8BE281D4E63E22D71E9F28F8295497C7FB51
Chrome Cache Entry: 380	ASCII text, with very long lines (800)	9606E87B20883753BDE404AFFA2F9197	9BBE4ABBB3C4CCC557593357B2961814C14E618F	0587EA5FCEAB56D4457EA2F1D962AAA0F7FEA9C49049DBD7199C846CA73820DC
Chrome Cache Entry: 381	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 382	RIFF (little-endian) data, Web/P image	318F565AFFFF69F40E87B647E5CC63B7	ABF8FF6B29C87BAD6BAE5F154131F85AD4DCB085	1033555990CDFCE3514A02D4F611DA95196B2C578C1B7D1E1B312B92E4EBAA98
Chrome Cache Entry: 383	ASCII text	0B8CA276A5CBE1AB243B7002CDB74E24	794CF2BA656B9AF6243ABE87658BEC48E3EEA10B	59E336F38655A792692FEF039A6C0B97091C87AE720D223929E2FDDE2F1DF18C
Chrome Cache Entry: 384	ASCII text, with very long lines (41495), with no line terminators	3379597069CE2611B36E23E969ED8E03	4CDEFE2CA2D8C2879BE94D267DAC27E26F63A263	CC47CE56387DB8006CE7035B15C9816C91B8E8800300F041703A228A95765099
Chrome Cache Entry: 385	SVG Scalable Vector Graphics image	46B7DEF3948F54B3A015E46B20A5517C	C5AA2F6C8999ADA86718BD03B45F3FF9A5B3AEA7	9DA2BD1AA1B397EEA1FA3B751FD50E0F624A33761A4E9E9FD660ED3D26F07F1B
Chrome Cache Entry: 386	ASCII text, with very long lines (47358), with no line terminators	2D79B64B95D2AA829A460E0D02CCA148	112031F4E0EB04F10227A437E3A52570C5348680	257CBDCB36FEB3EF9BC1C5BDB9C777AF5AE08F0834ECE8A4CE5D74FBFEB7EA0D
Chrome Cache Entry: 387	ASCII text, with very long lines (12513)	24F387A60FE0B05A15426D721C397D47	012EB578C3C097193F20F123732AC646D2800096	6AD8C8A703856136FEA1D1911FE8C0E09BCE87EDE20F4C8B98AB8F8961462738
Chrome Cache Entry: 388	Web Open Font Format (Version 2), TrueType, length 42000, version 1.0	DD3DDE4397A6F4F61A2D460F58DDC83F	47E5615751F8A96A47405526172AC3896856CE69	039BB21133A0657E78917ED224BC151347123282BBD3BF1E0C5DA81BCCB93DA6
Chrome Cache Entry: 389	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 390	ASCII text, with no line terminators	9F9C09E710BF4B791F895D28BCA13B4E	E83642A8B6872CEBBACD4A3902A7C55D7E6B89BB	BFE921737A9444EA43003FCEE8F7BA1F9BFA429502ED435976605A5A87FA6A18
Chrome Cache Entry: 391	Web Open Font Format, TrueType, length 10380, version 1.0	9CACA193FE7BFF016EF17E26937711D9	121E523FE8F27D18017C2F7A056F2F14BF43BFC9	3B7D2B4C5417A697678081ED3B344955F0B25E694171178B0C01E029B4A18E8B
Chrome Cache Entry: 392	ASCII text, with very long lines (7711)	AD71A046C128483103F4069A7B6A095A	C9D95834C46706D9EB4A7043E25305138D6FB706	B7A5D0AE5A3C2D49D9D8D8EFBF42EC20326D09595BA54509E6E865BC0320AC6F
Chrome Cache Entry: 393	ASCII text, with very long lines (30128)	85D76E0767EB2BD9ECF28E69774C4B11	C692BDC0D14A714DCDC023B4F7C61E34B57944AB	78BDB64A3A2E408278AE4A7C200D6510E2F0CA98F1C4E0832E151E1D757DC432
Chrome Cache Entry: 394	JSON data	0A564CCA1DFFF193E75FEBE32C7924B5	A10B26A7B242A1F14396F01BC8AEB3404D64EE72	84CF9D7AA27D2C03C75B18F00328ED4757CDBB8C37633CFC3C43BF9B4156AD5D
Chrome Cache Entry: 395	ASCII text, with very long lines (5955)	A7AB1A6962F00B2930A49C8D7D556C41	E6D8A49F37174E79BA872E21AD7B9E951DE1AFCB	FE4467B1840B29DF8F5D09676B0319EC61AF517923BCFC9C03AD66DEC580432B
Chrome Cache Entry: 396	Unicode text, UTF-8 text, with very long lines (45050)	4A7162BBFB49C42F9BA734511824AD69	22E2808CF5C907572C6E4D0FABA98505CE63E05B	47BA4BC1501E3717D778816F6C577942876A1796EA75D7798A0C73F8E7E78885
Chrome Cache Entry: 397	ASCII text, with very long lines (65536), with no line terminators	49CE5445DDCF5D24EF3BADC4EB1A11DD	DBE8CF782A53824BAC569AA3EA42992DD21064D6	D70FA5DC6C8BFE9D7824BE31E669528533D0879A2B1600A7DF68B880F4D44296
Chrome Cache Entry: 398	RIFF (little-endian) data, Web/P image	318F565AFFFF69F40E87B647E5CC63B7	ABF8FF6B29C87BAD6BAE5F154131F85AD4DCB085	1033555990CDFCE3514A02D4F611DA95196B2C578C1B7D1E1B312B92E4EBAA98
Chrome Cache Entry: 399	RIFF (little-endian) data, Web/P image	1A105D5D1D0DE57E725D5295BBFE02D6	A5A62026E15D6C4D5B8953AE61AAF357D813FCBF	5B84180CB5AC64C15C2DBFA97CC4EFFD477F5A1F1A1E2B030F0C558402F5779D
Chrome Cache Entry: 400	ASCII text, with very long lines (65536), with no line terminators	0411DC25FA6C1A4564BCE6FB885B994F	7E270C63EDFB05C1398D348A654E2A731A71B0D3	8EB427838DB2B9862069E5C97539461ABFE401E76132BB9E1A8D6C82B5AFE495
Chrome Cache Entry: 401	ASCII text, with very long lines (21778), with no line terminators	73BC4067D312180A1B19A4D883F42D6A	AD328A9A572FBEA43F295E7769835FF08F6FF1FD	D3F7B0EC4DE079928A999641E781E80F33597A392A561BC460276DFB4EFB6EEC
Chrome Cache Entry: 402	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 403	ASCII text, with no line terminators	0C5DAD92482D9A7C7C253510F5082465	534B458F99B4D0BB90C2CF2C4BB3703EF44A52BF	5DBAF0A4FF0F8AC8C1B67550EEE84390B089604FFAF71183E417636C7E183AC5
Chrome Cache Entry: 404	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 405	SVG Scalable Vector Graphics image	49142922E6393F370C6FCD4FA9B40C1B	5859B0676433313AAFADDD78B5EEB66F281A355D	4662962F6A7BA6C6E423763F88AB9AF3EC3FB17EEBA90A673590984319C3E706
Chrome Cache Entry: 406	JPEG image data, progressive, precision 8, 813x392, components 3	C46436E71F63CBF9DD601444FF5A5016	B5FAC937A20597CE9CBE1585738A5CE7C5D92B66	32A0CE8663059AA406B6A9E8D569B840EE324C6AF0F97C57D98EC1A6B6286B01
Chrome Cache Entry: 407	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 408	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 409	RIFF (little-endian) data, Web/P image	762A633F52D13C0D05FF8194DB594A00	C2DFFFFE9834CD4BEC3D964E4CC6B631C7D29B7E	4312EF94BBA93D982841FDE2BB393B6129FC9F4D0DE5349C5202B9E2B7350451
Chrome Cache Entry: 410	ASCII text, with very long lines (521)	CB731CC5C2BD9F31D6BFEB19F3C8B1FF	16ACA1C951A03EDD875B99BB8D04F01FA19104AF	5206536707C84BAA892D3C3231B351985EE828CB8B9C0BD8DB42CD3363995FC4
Chrome Cache Entry: 411	ASCII text, with very long lines (8117)	49E30E479F58348D383C44F6204B0E3A	32D985A624BE4F45CBCE888B8D9D98F8145A8079	D73E2A0D017F0A52407171FE698EA69A36C1D19D619AB8AD2B4CA75AC517C8CA
Chrome Cache Entry: 412	RIFF (little-endian) data, Web/P image	9DEA3CBD9E0F9B455FDE32DCA965B41F	8049A160E77BF9FDD2446113611BB8C99D1E5A53	3A1344E63287114EAD7F90BE694B7FC95370BF7B215D89BE93A54F39C15011CB
Chrome Cache Entry: 413	Unicode text, UTF-8 text, with very long lines (46429), with no line terminators	72BCA04FD669EB89FC65D59052D0FC00	27E60AEF86F0CB1B2F6B6ED9DF9A4E3BA88EFD21	823804A7807864B44093A3843788F4CD076E89CF4A6FDEB8D153AE5C2C2DF721
Chrome Cache Entry: 414	ASCII text, with very long lines (4048)	19001751B23AC3A28D2B2258C40C1F51	C5E735C8E862EF7DEBC57DC478B6D120EB4D54B5	544BDFD0F74D1291DE8E42578BECAD0A5C3B6CBE939B58D3335D181753448903
Chrome Cache Entry: 415	Web Open Font Format (Version 2), TrueType, length 15920, version 1.0	3A44E06EB954B96AA043227F3534189D	23CEF6993DDB2B2979E8E7647FC3763694E2BA7D	B019538234514166EC7665359D097403358F8A4C991901983922FB4D56989F1E
Chrome Cache Entry: 416	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 417	RIFF (little-endian) data, Web/P image	302DA3FDE61EA51C62CEDF58056835FA	60F96D8C80CD3F9C6D401B77C536AE15EAB633B7	FCEE201BB4D7558843B9BE77611AAE3EC4CCF1833B477C2D6884A0BD61A6C113
Chrome Cache Entry: 418	SVG Scalable Vector Graphics image	ABBBFE428A4593A30B0059A2FEF4294B	F7036E641C17398480C067081C3E5199C69BF43E	C9E433ACB7082694E1A6A861AD1BD4F218EA3CDD57FCBFFF823A0967A2AA925E
Chrome Cache Entry: 419	SVG Scalable Vector Graphics image	B57C99C9D1E3C50B2114C6DB053D7FF0	ADA8ABFED92BA8A545BBD9D299D74D5972CC4AE8	691DCDB24853A0F5CE4E6597E5713DEA66799B57FFE2C2A10F28F98E0B569B19
Chrome Cache Entry: 420	ASCII text, with very long lines (56398), with no line terminators	EB4BC511F79F7A1573B45F5775B3A99B	D910FB51AD7316AA54F055079374574698E74B35	7859A62E04B0ACB06516EB12454DE6673883ECFAEAED6C254659BCA7CD59C050
Chrome Cache Entry: 421	ASCII text, with very long lines (4265)	2D3E1031BACC11FB085351D8114D9F9B	0B26918B13637FB1BCF66B3246D0A8B4AFF0B692	02A80CD9ACCC44BAB9F2F906588D37C5BC33F1588ABCC9068BB23AC9110DDAB3
Chrome Cache Entry: 422	ASCII text, with very long lines (21099)	371FE1FDE25DC853ADD509F5D9FE57AC	B6219C34246FA4A3F1F35C64BBD708DC04C463CA	92E4588C227A58321A728574129E52EC244DF30B90FC9A64A30EE65410104C41
Chrome Cache Entry: 423	ASCII text, with very long lines (596)	48C590D47C8B1868CECAB334E9A34CBE	5F1A9F94294EC337F657AC2EBEC1C74E097CE5B3	F3756825DF5194A174B7A55EBD3B484C276766EEF21343D34B053B98ED386801
Chrome Cache Entry: 424	ASCII text, with very long lines (65536), with no line terminators	16D7AE86E21434A32157D3226AC9BB77	6EAA4577EFA2568AA7752B00AA42523BDA14CA95	6C9C6406C9BD9814CF84974221433003377B67F071EC5411FDDBCBA4EC109BCA
Chrome Cache Entry: 425	RIFF (little-endian) data, Web/P image	405EB68AEAF052606B89429B1F1DEE6B	0D26F2E01B404D0385190DF4E39DDFA45A25E100	CA982102B11F87A81DCA0B9980CA824FC0C66D7E68397D043D8927D667F3AE4E
Chrome Cache Entry: 426	ASCII text, with very long lines (2264), with no line terminators	029182C8352D8145E5BED7FE05D483F4	BB0CE195FDA8AF2B35853DE3A35B924953F94856	901B9D38D2ED5B0DBA399B2A8FDA3744BC46EDB0A7594F43A7348337AFAD884D
Chrome Cache Entry: 427	ASCII text, with very long lines (1712)	8EF47EACD41E94C950890950DDF9B42F	C137771655B634269541F0899CB97467C9BFD6A9	E4BDC933BA6FD32CEADE2891831758F1129D41C7F35511BEBD1D997500875434
Chrome Cache Entry: 428	Web Open Font Format (Version 2), TrueType, length 15744, version 1.0	15D9F621C3BD1599F0169DCF0BD5E63E	7CA9C5967F3BB8BFFEAB24B639B49C1E7D03FA52	F6734F8177112C0839B961F96D813FCB189D81B60E96C33278C1983B6F419615
Chrome Cache Entry: 429	RIFF (little-endian) data, Web/P image	5F927B629F1E538DC62E6179F342F52F	F657B520AF565E6BF46197DAB1D4BA30A145B5A3	2E82B5AEFE909FD09CF5C511CD9928F8598AEADE98B096D127C6545BB6FB3B4C
Chrome Cache Entry: 430	SVG Scalable Vector Graphics image	63E737D3544164D2B7F4FBCA416AC807	030370AA38715E4C41589633F69D0BFE8255D46C	5FA00D047ACD959697B9D7772C31DCD37BEC33C70C6FBF80AB8316205D1D286D
Chrome Cache Entry: 431	MS Windows icon resource - 3 icons, 48x48, 24 bits/pixel, 32x32, 24 bits/pixel	87052396F5FFD63B642D1BAB54E7EDB7	F3E75DDE1FAD3A5FE639E3D0C04122FCFAB918E2	EA54FEA4CE7FCA6339E5B437CA43CBD46C84AA46477BE66436608B5FB0A9E02C
Chrome Cache Entry: 432	ASCII text, with very long lines (11808), with no line terminators	C65DB597E762D33246CFBEC56B886523	DE968F5D5A9EBA6F17C47BEECBBAD50430C806C3	DF3B4F7EE9B54DC67162D74792E3906D8888A0A83068B490FB6830CC6954D5C4
Chrome Cache Entry: 433	ASCII text, with very long lines (63529), with no line terminators	02F09379C544BEFA413D22EB57ED41DE	156FF3FBF28D890EB0F79754E436AC3A66B3DE24	E555F4B34B579E6528D6BBD4819620A634C0759B41DFA99520B7CA5AA5117B11
Chrome Cache Entry: 434	RIFF (little-endian) data, Web/P image	588326B1AFFC5F01BBD71F2FAA853E23	76E417D84A740A32116B38CEE1659974B69451D3	8F9D4D762D60E26239F4A884E954BD3CDE67C31B4E6A5F53F500D3588E46633E
Chrome Cache Entry: 435	ASCII text, with very long lines (3742)	64AA3522818FDD6F3ACD02A63B92E94B	19DB4A64CEEE1EE1EC7D9AADAD386E2AAF024499	B951A301BE9C0F6A67793AB1FA1514BEE5D7699AD5F656CEF1FA80CF847FA944
Chrome Cache Entry: 436	SVG Scalable Vector Graphics image	BC4F4BFDD931E007AB096DD1C209C689	9D97DA68C8FE7482E604148596EF8A97792AC08A	03B3A7317370504145583EB221372D6C19C060F84F10CF391459E7441E95C381
Chrome Cache Entry: 437	ASCII text, with very long lines (12955)	2BB24B06E4D3987B601045E46E48ABED	E49BB24BBDC0499578CBBF60675FBE06ABA8B2EF	5EE5A2F885550D98EEB03060C3F575B75A0B9938AC6CA32C19DCDACF162B7F11
Chrome Cache Entry: 438	ASCII text, with very long lines (750)	89F8EE167E82FADB507197C109ED684B	F5A728E7805C71BAE1A8786921AB2735AB07C15E	0B70D5380DCC5A0C4BDD30DE4D68C4B0F598EB4EA92BEEC1B6D5F0852BD96D22
Chrome Cache Entry: 439	RIFF (little-endian) data, Web/P image	E27A07A37EA51A067CEAEC67A1607C16	2C8A28EE48F5C63C0A569EA6909172256CFEDAED	EAC42A1DE301C598112F99635F56A19FA94DA4AA42E061D58CFCD3D9B98948EF
Chrome Cache Entry: 440	SVG Scalable Vector Graphics image	61226AFCAE6A8F2B3D2755728DAAF4F2	8489CAF428F9F579A8B31AEAD973F6C361711414	47EAAEA809BFE2FD94F78F3C94372B6328F37748BC0EEDFD1B2AB937027962CB
Chrome Cache Entry: 441	Unicode text, UTF-8 text, with very long lines (65524), with no line terminators	FEAA1C0619023F29D47853E5FFD5CEC4	45ABA66D24B0F7693EEA179A0B4CA36CA8FC36B7	011C2E9CCA2DD810784F85CCBEE288959B13D10C6A1BD740F4486B75985187AF
Chrome Cache Entry: 442	ASCII text, with very long lines (65536), with no line terminators	3D2EECFEAB24C42F510811F441FC9BCB	54132CD97C80B587F8397D6E721F59C7ABC12DB4	5DC5CDFA5ABE4D19100A5C64466E15878D12979C87845B5CE66F38E1CDE57ECA
Chrome Cache Entry: 443	RIFF (little-endian) data, Web/P image	DF756FF22C107C74296513453A25D8D7	2612DEA2C108B9E371964AF2F35756B7751CB20A	ED9413AB427D555889996F0ADD256D9A161644C97717CC70C6D4C7D54A56EB1F
Chrome Cache Entry: 444	RIFF (little-endian) data, Web/P image	2F640AA73D5757BA0FE67B74E5D9F41E	A4D29ADF1BA739285BA35AFBD94D51734425429D	469C936814B431210209150CA7F39A314A333269C07A5C83483D0C3EE0D772D4
Chrome Cache Entry: 445	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	EA2722D3B676D5CDD4F7225E65695112	97E5E94CFF5B62F60BA76C7DD9F606304AF8B10C	317E5FDAA14E548C0045D5E662709CFE0B692E0384A8396CF22054BF0A1E1C48
Chrome Cache Entry: 446	ASCII text, with very long lines (23865), with no line terminators	4049F38C00ADD1738DC4806148FF8829	0A631D2CCDE970A13F60E147A5B5AEACB6A1B2E0	C501DE88FBB90A445F1754A529BC772E7047071BF653C8C3F0330F7BB736D140
Chrome Cache Entry: 447	ASCII text, with very long lines (65310)	CF459B3FDB6BDE6670D5F73CCD14D484	58AFCB5AA184872540AC11D65FDA2FAD41D2825B	0C3D07864322A1A621D6F2A9D4F43D45990368D041E9C5DEA4117257B83C4AC6
Chrome Cache Entry: 448	ASCII text, with very long lines (2174)	D073629B870B089208C7DC57247E45BD	EB1C93913914680C0574FE0380D98FE95E536CD7	90A3C2D878D911B56CF5B0D69D476C735B323C064877682A96C2C3AFDA4DCD1C
Chrome Cache Entry: 449	ASCII text, with very long lines (1906)	ED628FC1A366D25CE0636909815FB716	0207C67C8C85037FE1AAFF306255930600D10F6B	F4A3EC5F589D87EB7121CE500C255496F178BF69CC7C487D860ACB39E3841395
Chrome Cache Entry: 450	JSON data	662EA2BBC39B50BCDCBE04DC2CD7A087	4705F797D3E54D7953493DEBA121A8B4C397060F	BFA43BCF43FA6CED5E1AF0BA042098DA244E4441A9C1D53E4B7B0DBFE764B1C6
Chrome Cache Entry: 451	MS Windows icon resource - 3 icons, 48x48, 24 bits/pixel, 32x32, 24 bits/pixel	87052396F5FFD63B642D1BAB54E7EDB7	F3E75DDE1FAD3A5FE639E3D0C04122FCFAB918E2	EA54FEA4CE7FCA6339E5B437CA43CBD46C84AA46477BE66436608B5FB0A9E02C
Chrome Cache Entry: 452	ASCII text, with very long lines (7329), with no line terminators	BD2D67186594B0E32223B293FDFCCA55	B797A9D012C850B53A7CCC12211ADCFBCD9AE0BE	4F9F4E2E225088F9CF3B6B54AA421E0F776D1802255505D2F752E1F83F441641
Chrome Cache Entry: 453	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 454	RIFF (little-endian) data, Web/P image	E34E93FE9CBD236929671952691ADD6B	2F4F70F66FDFCD8DD831F675280E78BE4A597B8F	BC48F6D63C43B68B083B43A28928A8C79FA5A940B958F3C82E7CF9DFB20CC713
Chrome Cache Entry: 455	ASCII text, with very long lines (64137)	FE0BEEB27B5EF4F1D757A45F9AD8411E	05E4E960A7C8FBBE29E7C01DBEC2EE14BC47FB69	0D024E9651A09983DF525892F510A806B73B556291EA6310C0A642C716294BFA
Chrome Cache Entry: 456	Unicode text, UTF-8 text, with very long lines (1827)	A9CB7E537707AB2AAA83815F8CB2CA5C	9C311FF38BE0EDC0695C8E8975EF1CFCFD8073E3	DEB6C181DB15C6ACACA699FD64801CE046F55721A7E22514AA4BC190A527C565
Chrome Cache Entry: 457	SVG Scalable Vector Graphics image	99725E512E5E7004F90EFFC817090E64	82B3511B127D4E7FD063FAE0F118178AD68E3B3B	9E36F834EEEF0ED10EF8D2681C179AF354758C4D329F3514AC4CAAE28A7310A9
Chrome Cache Entry: 458	ASCII text, with no line terminators	AFB69DF47958EB78B4E941270772BD6A	D9FE9A625E906FF25C1F165E7872B1D9C731E78E	874809FB1235F80831B706B9E9B903D80BD5662D036B7712CC76F8C684118878
Chrome Cache Entry: 459	ASCII text, with very long lines (65536), with no line terminators	7CA51F1320F363CA768126CA73895E39	F2EEFFA406A0AC405FEFEFE011822377E5E1A0FB	E3CC69A381981C2717F3A867F2D2449593A3F70DAB0CD5DB512CFF9757F6ACB0
Chrome Cache Entry: 460	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 461	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 462	ASCII text, with very long lines (6980), with no line terminators	A3088057AE9CB0626E350D39F09CEFCC	57947802EF1312FB0F0F1C8398EB25DE2034F5C7	EF22F6747D9C3B6752D9B4BE85D3008FF9D28FC6C4E8E3E2AD6011684CDBF0B7
Chrome Cache Entry: 463	ASCII text, with very long lines (33094), with no line terminators	D8739A9FE9A3A42936F5CD86C8727494	4FB60EC9F1C4EFF985C219BF24E4B1F340D62C97	8F0F8792237470EE661C6AFC32CA68200DD74BCC0D544D0FD54C7777AF362EAE
Chrome Cache Entry: 464	SVG Scalable Vector Graphics image	ABBBFE428A4593A30B0059A2FEF4294B	F7036E641C17398480C067081C3E5199C69BF43E	C9E433ACB7082694E1A6A861AD1BD4F218EA3CDD57FCBFFF823A0967A2AA925E
Chrome Cache Entry: 465	Web Open Font Format (Version 2), TrueType, length 15744, version 1.0	15D9F621C3BD1599F0169DCF0BD5E63E	7CA9C5967F3BB8BFFEAB24B639B49C1E7D03FA52	F6734F8177112C0839B961F96D813FCB189D81B60E96C33278C1983B6F419615
Chrome Cache Entry: 466	ASCII text, with very long lines (1283)	3EA70AE6D554F9FC0FFB8CB0281EC0A6	58D41E45856B15260F69F19200B6DE7FDCBC82E6	A5B0CC4EF0FF84660C52A703030A8F948CC8702EF6B0535CC31FF8611823DBB9
Chrome Cache Entry: 467	HTML document, Unicode text, UTF-8 text, with very long lines (19010)	852EE3FBB5DA9BB108F932E0905EA68F	8434E481468AFCC04B4D03DC72E863EBEF057CB5	47764B50D7738BD08895A9DC227C124A485E7B5E5C4C79F9937BDD1B58E34541
Chrome Cache Entry: 468	GIF image data, version 89a, 6 x 5	E4D673A55C5656F19EF81563FB10884C	1F2D8ED221D39329251AD3A6FF1EDB20B7219443	F3A8992ACB9AB911E0FA4AE12F4B85EF8E61008619F13EE51C7A121FF87F63B1
Chrome Cache Entry: 469	ASCII text, with very long lines (65536), with no line terminators	A8CEAC2E3BD2C128D8F2E2F1B0EF0290	A1C4D2B832CE5CFB0D5E46B1EB6A8E708CD7F937	7418C75F5B92AEBD9204DE88288757D6864F8DC8CF782EEE24BB788F9F02C338
Chrome Cache Entry: 470	JSON data	5514FDF20DF3E94C99F871D8A4D08FEF	B3EE298AD312146A6C43D3D96FBA557BCDF2DBAA	0ED759F9B0F407AA73DF997BDDF186C37A1927D2B0F8D2F7031067ECACF7581D
Chrome Cache Entry: 471	RIFF (little-endian) data, Web/P image	0923A53B64E64DB75177B6972F016A42	6915D871CBEA8A3B8F4E54367DCA538DA0AC3082	E0106DC1C0490A432C08671994F87FCBB982B7B25B4F9CBB640D49A03BD89CE3
Chrome Cache Entry: 472	Unicode text, UTF-8 text, with very long lines (20641)	B936A3E96A305A658F1D3EF61DAA1FCA	4ED6D478BF9C8F63B919F02E2F04D5FF24F3F1AF	EBC11B60B54D62445B4841976A70AE28242F30A2A7F39091728E87613BA1338A
Chrome Cache Entry: 473	ASCII text, with very long lines (21778), with no line terminators	73BC4067D312180A1B19A4D883F42D6A	AD328A9A572FBEA43F295E7769835FF08F6FF1FD	D3F7B0EC4DE079928A999641E781E80F33597A392A561BC460276DFB4EFB6EEC
Chrome Cache Entry: 474	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 475	JSON data	5514FDF20DF3E94C99F871D8A4D08FEF	B3EE298AD312146A6C43D3D96FBA557BCDF2DBAA	0ED759F9B0F407AA73DF997BDDF186C37A1927D2B0F8D2F7031067ECACF7581D
Chrome Cache Entry: 476	JSON data	5514FDF20DF3E94C99F871D8A4D08FEF	B3EE298AD312146A6C43D3D96FBA557BCDF2DBAA	0ED759F9B0F407AA73DF997BDDF186C37A1927D2B0F8D2F7031067ECACF7581D
Chrome Cache Entry: 477	RIFF (little-endian) data, Web/P image	F0CD359656CD03EBB2FF23C0B0B1E8E0	9939FE4A7A04030861B76B2C867F060BD7DDD1F1	82DF1909896BEC16E52FC503B1382B1995DE1A55AC8808EE3E4FC42F8F283C11
Chrome Cache Entry: 478	ASCII text, with very long lines (16436), with no line terminators	6F779260053E30787F84DFA7BA6743E5	95E6B54A6B0D402191A7D4656D06A5696EDBBDB8	A03B854D10519FD5BE9CDCBC78FAD3927C1A3DE9E84FA74353C8A19CC20D0501
Chrome Cache Entry: 479	JSON data	CC64BFA00B4B3FF916A983A0C27DEA58	62452E81D49DF7E3EDAE74AE32A3E9A613DCFE86	67CB92C8D3E193BCAC15DEBC8CC34C5D2CE531C9A13D037EBFECDC662679215A
Chrome Cache Entry: 480	ASCII text, with very long lines (52292), with no line terminators	9278783AF26B13EE3ABC5A53BBFDF33D	48CF26F0E57AFDB206B9025AB8FB092B6322567A	07D4487A1399375C5CE8B4697B1E440D8FB6E8F67B607A2F822BF613564E2F74
Chrome Cache Entry: 481	RIFF (little-endian) data, Web/P image	E27A07A37EA51A067CEAEC67A1607C16	2C8A28EE48F5C63C0A569EA6909172256CFEDAED	EAC42A1DE301C598112F99635F56A19FA94DA4AA42E061D58CFCD3D9B98948EF
Chrome Cache Entry: 482	ASCII text, with very long lines (13063), with no line terminators	455157CB49065FB85FED54901DDAEB0E	248D056B36813AE68A2179DF92860E07CECD7A34	7641F066C35D0CA15D4897BFE49D640ED4C143FF8F04030C2020CBB2ACFA7B0B
Chrome Cache Entry: 483	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 484	gzip compressed data, was "worker.js", last modified: Tue Jul 21 10:14:25 2020, from Unix, original size modulo 2^32 47679	35B88482B6E5742604AF3DE8BA01F378	5F9FB43DBA25DB1D4169A37036C0B5A101240BB5	F33C6CDD27C56C4F194C9020DAFF3E8ECBA38AED831E9A9508F1CC20A93126B5
Chrome Cache Entry: 485	ASCII text, with very long lines (8127), with no line terminators	FB5B07F30FE7632D9F64338B7FC09852	86CDC3A0290A61F0E7FB9A4FC910B87AC9502D07	D3CEA162ABA7F0EA9BA772789267AE99B022E3F2162D2DCED997E7AEA03A1644
Chrome Cache Entry: 486	HTML document, ASCII text, with very long lines (33703)	056296AEF89C202DB69E9F8F2A88FFAC	23767D839E0178A183F93432672A89AA10383C3E	49E57C539AC235EA7D0B99D62627A172469B216D15B736F17CAEBD85E9D9083E
Chrome Cache Entry: 487	ASCII text, with very long lines (606)	EA7826F34518D7C2295738F39C7640FA	0095729B4BC2A580E4CE033993DAFE498DB87DF5	68CC280CE370C6F1F51A4FC5950103FC38DF80A429552C549ADD04EBD8BD3A23
Chrome Cache Entry: 488	ASCII text, with very long lines (3175)	8B2EA74C2950F702116F9B02ABC52BCB	AD7455A6E9F0D7E73BA4B80422EF805FC66F7879	FFEA291B7D7F014FDC619350CAC7B5CECF876DD20EFB498EF0D915FE3AC4BA17
Chrome Cache Entry: 489	ASCII text, with very long lines (25600), with no line terminators	48BE1563378F7C36BDADC0F2EB616856	2AA42B08FE8CC7AC0DC371D2309A38D5A465247F	63C035E2F43180086B19EC08F35C8DEEE82B2B804DDFCF92F7F0E6D835957BFE
Chrome Cache Entry: 490	RIFF (little-endian) data, Web/P image	588326B1AFFC5F01BBD71F2FAA853E23	76E417D84A740A32116B38CEE1659974B69451D3	8F9D4D762D60E26239F4A884E954BD3CDE67C31B4E6A5F53F500D3588E46633E
Chrome Cache Entry: 491	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 492	ASCII text, with very long lines (7215), with no line terminators	73B9F4A9EB62A2176090BF9C21A639A7	1C601CF93D1BE4E6B9C55F273DD9EE758076BE00	9DCB7DF984F468CEE4F41F0E76EA672A02601350AEFE9BCCFFA7BD0120782941
Chrome Cache Entry: 493	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 494	RIFF (little-endian) data, Web/P image	5081B9F771D757603E0D15DCC2FFFD18	49AB60F25DEE741FA68DD383ED04B27F0AF1F205	8D3EBA64792D78BD357647529CC578B410FD8E858830B9F595DDC5361A98C856
Chrome Cache Entry: 495	RIFF (little-endian) data, Web/P image	695E9D18FA64BE85CA3C2DAF84824527	EADFB65A6942BA4A41683B15FE09ABBF8D8B7052	E7CB9A3589480E68D19761D2AC1F1E6E369AF5EF6D6E6753BF9F11A4C45602FA
Chrome Cache Entry: 496	JSON data	662EA2BBC39B50BCDCBE04DC2CD7A087	4705F797D3E54D7953493DEBA121A8B4C397060F	BFA43BCF43FA6CED5E1AF0BA042098DA244E4441A9C1D53E4B7B0DBFE764B1C6
Chrome Cache Entry: 497	ASCII text, with very long lines (1406), with no line terminators	0724A2F7DEAA00645D0441A725701F1C	5DD8C0ED637902080F04FB1E80A8D8763A5EDA12	A532EA605D99A92B0471BE49AFF9EEFC1E2E74CAD859A83FA73B916A7B25E791
Chrome Cache Entry: 498	RIFF (little-endian) data, Web/P image	E56C344A49556C2D20A37ECF6D057358	C3E5889FA515A96FD2595B1411A934AC0BB4C850	CA8D75418BDDD951DE03B6697DD67AFB905319C791C133EC9B352F60B7B1E033
Chrome Cache Entry: 499	JSON data	42A9E912A5BD10CFD4D2813DDF34D5CE	447ACD37C8C09BD2CCBD2655B511B405A30FBCE6	010ABC1425A170A391AF2A90F06FF1B98B92C43DC33523ED2C6DAC45AC81E1AB
Chrome Cache Entry: 500	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 501	Unicode text, UTF-8 text, with very long lines (36790), with no line terminators	422F5D81594E57697A6A54B16CA7D371	2C7646D0A1DF669A772ED0A26A717DEA2A454012	9AACD0D773EA2C7B28F914C7C92CAED535113AADF4F946CD6EA1E94A69DD5950
Chrome Cache Entry: 502	RIFF (little-endian) data, Web/P image	80CC740460293B79BA1F000DD9E68C13	9D2B4A4E9D16D7BACC2097D30F8DD16A886D42B5	191F469210A56B90091BC0B0F60698470642BF0C6CF4E0BE7794550A6D0BC66F
Chrome Cache Entry: 503	ASCII text, with very long lines (24823), with no line terminators	E04AD89975C535B30BAE773D0EB0D3B2	0C72555D0FD844150B6EC407A57DA2D29BF380E2	06C0EDBFC1B871FB45195265F5FAAD3E23191305F6FF2125557A9FBC287C8992
Chrome Cache Entry: 504	PNG image data, 3090 x 487, 8-bit/color RGBA, non-interlaced	83AE44E24877D9B6DD48FA927AF025F1	553AE1B035930D07FD4511BA57786564BD249CC7	FDF7A139210AD25E0576A0721D45086E047DEE38F88BA2995CE745643212C532
Chrome Cache Entry: 505	GIF image data, version 89a, 6 x 5	E4D673A55C5656F19EF81563FB10884C	1F2D8ED221D39329251AD3A6FF1EDB20B7219443	F3A8992ACB9AB911E0FA4AE12F4B85EF8E61008619F13EE51C7A121FF87F63B1
Chrome Cache Entry: 506	ASCII text, with very long lines (65447)	826EB77E86B02AB7724FE3D0141FF87C	79CD3587D565AFE290076A8D36C31C305A573D18	CB6F2D32C49D1C2B25E9FFC9AAAFA3F83075346C01BCD4AE6EB187392A4292CF
Chrome Cache Entry: 507	Unicode text, UTF-8 text, with very long lines (8991)	503D31A536C7C0D38BED038D767BBEE7	16C0AC67CF10DC7AB43F90F58B7880F161CAE3B9	65F976CFFE2202CE71F130A2A4496CA28762A5323229D71AE014D1205C4FFDAD
Chrome Cache Entry: 508	ASCII text, with very long lines (1142)	F57B7DF72FBBD5609AB688783384705E	378B8AED04CB9FA292934B9F37DE790E1CD17B8F	743BC730E9D59374A943284BDCCEC2A70AF61B6FFD09276C00A29D032754C260
Chrome Cache Entry: 509	SVG Scalable Vector Graphics image	49142922E6393F370C6FCD4FA9B40C1B	5859B0676433313AAFADDD78B5EEB66F281A355D	4662962F6A7BA6C6E423763F88AB9AF3EC3FB17EEBA90A673590984319C3E706
Chrome Cache Entry: 510	JSON data	0476C84892E6EF90E5FCDD05DE444E4F	CC2CE93978ED7CB78C7FF1E5986F5E886D00444F	D79EECE5BA4BCB6861D1DDE90390D8832285A3C3436107F81D483EAC28F55504
Chrome Cache Entry: 511	ASCII text, with very long lines (1335)	0CC3A63FE10060AF4A349E5DF666EEFE	3E8D3925B550345123F2CAB26568221FD4154F9C	92FCA55833F48B4289AC8F1CEDD48752B580FCE4EC4B5D81670B8193D6E51B54
Chrome Cache Entry: 512	JSON data	CC64BFA00B4B3FF916A983A0C27DEA58	62452E81D49DF7E3EDAE74AE32A3E9A613DCFE86	67CB92C8D3E193BCAC15DEBC8CC34C5D2CE531C9A13D037EBFECDC662679215A
Chrome Cache Entry: 513	ASCII text, with very long lines (365), with no line terminators	06B2963B029C0824382815165BFEA73E	DE23FB128E2589CF384603CFBB7F6B7BEF969B05	EC3A84E593065A50CD77CE9FBA273B4196936940C0813CA248B045DF2E2C8EFF
Chrome Cache Entry: 514	RIFF (little-endian) data, Web/P image	DF756FF22C107C74296513453A25D8D7	2612DEA2C108B9E371964AF2F35756B7751CB20A	ED9413AB427D555889996F0ADD256D9A161644C97717CC70C6D4C7D54A56EB1F
Chrome Cache Entry: 515	ASCII text, with very long lines (6238)	982C601FA1FF2533C409639E21DBF8AF	FF023B0270507C1EB290AAF4F995045D30FDD2E0	A0A8758E49DAB43C5AFC6E1A99CA45D3DB214E9A9CF4F043F3DC64A23E14D812
Chrome Cache Entry: 516	ASCII text, with very long lines (2282), with no line terminators	C6C868F696706C55A0120AF08A1F5134	BD1F6590CF125F0B1A47C39DE632B750D1A3F06E	85EB870C24878FC8C1562B415F254B2685BF7DE67DCED0283BAAD72A600E304B
Chrome Cache Entry: 517	SVG Scalable Vector Graphics image	BC4F4BFDD931E007AB096DD1C209C689	9D97DA68C8FE7482E604148596EF8A97792AC08A	03B3A7317370504145583EB221372D6C19C060F84F10CF391459E7441E95C381
Chrome Cache Entry: 518	RIFF (little-endian) data, Web/P image	2ADDC2ABCA8E78EE04B08436976D2A99	B9D795D532E4BD60B4C213F27967547FA44D7B48	3550CCB88F26B6FDCF2BCA4AC73ACE67FD0C1C4FC2E6C2B39DD35212CBDF38EB
Chrome Cache Entry: 519	ASCII text, with very long lines (65536), with no line terminators	2CB0588B519CA96061BA5C30AAC4511A	22DE2E42A74CA721B55269B6D81E3E9B7D465817	4657EFB3912F2E0FCD1ED177EED282FE799F23E62219C0DEC5230142D51DC530
Chrome Cache Entry: 520	PNG image data, 266 x 60, 8-bit/color RGBA, non-interlaced	9C7E345F6563589672B61052D75BFDBB	A85AA206666C9A1C6FA3E03C0D5118B5AA02D61D	C8C32294948F5448C2AC0BCDF5B98909DAB4EE73AC854BE06BFD4A13BCE89363
Chrome Cache Entry: 521	SVG Scalable Vector Graphics image	B57C99C9D1E3C50B2114C6DB053D7FF0	ADA8ABFED92BA8A545BBD9D299D74D5972CC4AE8	691DCDB24853A0F5CE4E6597E5713DEA66799B57FFE2C2A10F28F98E0B569B19
Chrome Cache Entry: 522	ASCII text	6E2E1951F6008C15C7F4108DA455A5F9	C098C0064EF0779C0D619672AC562A9ECD36F641	F393D44528C335EDC1E24396881FB71FD86A51BB31DC05EF6C63E00ABF53E9A0
Chrome Cache Entry: 523	gzip compressed data, was "tag-3b111c75d9433a455983f12ca040dbdb.js", last modified: Tue Mar 26 12:43:31 2024, from Unix, original size modulo 2^32 188485	3C358C3AA465E3A13B1AEC7080BA9DAA	07B9FA600FC7324F76D4B28A111BDFD739C6CF60	A166AB4D579ABEFD0CF1D0C98ACBB75B6DC2D4BBDF392AE62D914A3DDD64FAE9
Chrome Cache Entry: 524	JSON data	5AB6D4EF7207325687F427AEF8504E38	511316E2A7BC063A77CEDFBD7CFB906AB78C1FB2	432D55B2BB99D6C152CE13DFEDA39F61570071A091BC3462FE7400583D27E09C
Chrome Cache Entry: 525	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 526	ASCII text, with very long lines (46497)	A9A2B3AA7616707B87287E30974CB8F9	A668F95EE51E8BABA8B456B75DBB7C6D7D40EAAD	BCA72F59F6E1DB4E6F3947148620E9546C0896DBDA2BAB29F4E1D16DA0633419
Chrome Cache Entry: 527	Web Open Font Format (Version 2), TrueType, length 77160, version 4.459	AF7AE505A9EED503F8B8E6982036873E	D6F48CBA7D076FB6F2FD6BA993A75B9DC1ECBF0C	2ADEFCBC041E7D18FCF2D417879DC5A09997AA64D675B7A3C4B6CE33DA13F3FE
Chrome Cache Entry: 528	ASCII text, with very long lines (521)	CB731CC5C2BD9F31D6BFEB19F3C8B1FF	16ACA1C951A03EDD875B99BB8D04F01FA19104AF	5206536707C84BAA892D3C3231B351985EE828CB8B9C0BD8DB42CD3363995FC4
Chrome Cache Entry: 529	Web Open Font Format (Version 2), TrueType, length 162924, version 1.0	7F2E1B48B71EC58FDA4539018A2F56CC	507BF81F52FA8C99BF2C5C8BD59A981899CA9995	7F80C4C91054B3D6C80721939242C2D4F68F15E41F251E12641F695D78EB2F35
Chrome Cache Entry: 530	JSON data	D3EAAD6B19E206B3AA4C2B99F167F66A	19036A1DC37B4F9A7FB89F027F2C805EF7902536	C8BD9AA9A411BD3248CEA9F41FA191E5B57A31528DBB92663FB5191375938BCD
Chrome Cache Entry: 531	JSON data	41E6ED4D452676208DCD72DB15A0FB4C	10B71EC511387739049505E0518461149F5C742D	7824EA5A55E5B352433EE72D2004B005DC6FB17DCEC32A74D1BCE057C9D19201
Chrome Cache Entry: 532	HTML document, ASCII text, with very long lines (3559), with no line terminators	75EE8D986126221B9F031782680C14D2	EE5876976E3E96E0520BED2ACD20CE5DD4CECCC6	6CC960ECC59E7EBA34A24C6841F1366960EA614ACDE1E54868445C99ADB8F0AC
Chrome Cache Entry: 533	HTML document, ASCII text, with very long lines (14595), with CRLF, LF line terminators	167DEDA35B09187B0522010BE9C74494	CC9CCE6A85A4A2A44BBF8A063B94443ADA1B0A4E	A556B8AF8BA0AB531B08194064ED70A5B9E8CD2E7E88A82E827BEFCE5AA69D96
Chrome Cache Entry: 534	ASCII text, with very long lines (37284)	BA3E10BD71F7236DFDFF71514234E5BC	B937F8BA03FD5C5D1F36EDFA6A58A2D6B33071DE	4856AC70DC6215864CB41C84DA70A5E4C75D83A73E69B761C7D7D245C6704D18
Chrome Cache Entry: 535	Web Open Font Format (Version 2), TrueType, length 15752, version 1.0	B20371A6DAF29D4A1F2E85DBBF40FB20	0355A01C1CCB45CB728E7E07C41C8EBF456F70BB	7E262106F82CC52663E403F5B73795BBEAB9CA0630C33C03579354FBCD4FAE1E
Chrome Cache Entry: 536	RIFF (little-endian) data, Web/P image	B34BD7B947F41D4C121EBB2CB22727AB	580DAE55FA2D6BA5480754109847DF5C7B9980B8	2FC88556DE1EBED9F55AFB87D495D90D43F939A515F3AFA5D59E953B8FC0AB20
Chrome Cache Entry: 537	ASCII text, with very long lines (21099)	371FE1FDE25DC853ADD509F5D9FE57AC	B6219C34246FA4A3F1F35C64BBD708DC04C463CA	92E4588C227A58321A728574129E52EC244DF30B90FC9A64A30EE65410104C41
Chrome Cache Entry: 538	PNG image data, 712 x 494, 8-bit/color RGBA, non-interlaced	9E932F788976F735ED812FC4D68FA057	8E94F0921B35E8982C27ABEAE1E12E6A33B42693	8703D62D9F908F01D53205B8FE5EF112693C759FE1CBFDE9834B136D87D4758A
Chrome Cache Entry: 539	ASCII text, with very long lines (924)	99468099647DDA2EECA816B42D6D2AE9	8E2739F1A0EF847615E65913437FC12B8717E605	66C2EED2A7857E93540074133F79DDC3BFF1D386A3AD7456078A14A969CD696E
Chrome Cache Entry: 540	gzip compressed data, was "worker.js", last modified: Tue Jul 21 10:14:25 2020, from Unix, original size modulo 2^32 47679	35B88482B6E5742604AF3DE8BA01F378	5F9FB43DBA25DB1D4169A37036C0B5A101240BB5	F33C6CDD27C56C4F194C9020DAFF3E8ECBA38AED831E9A9508F1CC20A93126B5
Chrome Cache Entry: 541	ASCII text, with no line terminators	DF7B0252EA58E070CBD893B2F60A81A0	C45DC7AF7E3E9598F07DF8823F288FCE8453B262	7F3F8D4FF7C19D9176969F7241DFE274490F20476771EBF6B493F06F164CEAA1
Chrome Cache Entry: 542	GIF image data, version 89a, 1 x 1	07FFF40B5DD495ACA2AC4E1C3FBC60AA	E8AC224BA9EE97E87670ED6F3A2F0128B7AF9FE4	A065920DF8CC4016D67C3A464BE90099C9D28FFE7C9E6EE3A18F257EFC58CBD7
Chrome Cache Entry: 543	ASCII text, with very long lines (1566)	CF98EF659A7C40F16FB89858EE051693	F223F862E3DC2347DEC54A932E35C5BC5F794C8D	D1DAC8F97C25357AE55BB0FF7EFAB6349022317CFBC549BB2057C15ED2DD337D
Chrome Cache Entry: 544	Web Open Font Format (Version 2), CFF, length 232676, version 1.0	22A8288D7C3B6989788D2FBCAD4766F7	35E662AB62CF514144D0126E59B667F5BFCEA2E8	9A0782A9B3C97CBE256803FD198D86427E2B1B40B85C93BC3A8E34A1BE6D37BF
Chrome Cache Entry: 545	gzip compressed data, was "tag-43de7e3097c45e1309fa8124610650de.js", last modified: Tue Mar 26 12:43:32 2024, from Unix, original size modulo 2^32 134802	846327CF154E8225C6FA0D0D2170AEBD	816C2A8A0E0934F5785A3D1518D5ED35CC64D01D	958F287EC1E30DE8CA80C936D1F488E2442623A2EDEBFF963BCB558AB88C8FC5
Chrome Cache Entry: 546	RIFF (little-endian) data, Web/P image	1A105D5D1D0DE57E725D5295BBFE02D6	A5A62026E15D6C4D5B8953AE61AAF357D813FCBF	5B84180CB5AC64C15C2DBFA97CC4EFFD477F5A1F1A1E2B030F0C558402F5779D
Chrome Cache Entry: 547	Web Open Font Format (Version 2), TrueType, length 108468, version 1.0	5011345B7AEB8F847CAEF745BB1B464E	B37CE84520A2B9607E19BC0FC9CC7B841BC1C831	27464F709D857A113F9AC53FA038A3F61FD0059F9EF4BD48A58C41EDBFCDD996
Chrome Cache Entry: 548	Unicode text, UTF-8 text, with very long lines (12837)	E806226614DB73244B528443036506CF	CF959D527D43E1D2D4069AC02A7BC384A0157986	E90414AA1211475E27A8EBD5EE0E51747A2D440C64EE3FAEF8D128A6F58A1D25
Chrome Cache Entry: 549	ASCII text, with very long lines (3383)	E41AC0BA188A68D4108C684671A2E178	292C74809642BFABE462D7D72CA6567EB9949DAD	3D4992145D00EF98A24AAB61CB271515FF207FF6BCAC2E27F05222D49523143E
Chrome Cache Entry: 550	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 551	Unicode text, UTF-8 text, with very long lines (664)	853877426A53490ADEDBCB2E1CE9624E	BA2E275A1C0148B2F12CA53F17746BB920B7D555	F3163FB2E48B27F81ECCDB331EEBD4F05AEAF9AF7253765323A35E869D8E5D6B
Chrome Cache Entry: 552	JSON data	D3EAAD6B19E206B3AA4C2B99F167F66A	19036A1DC37B4F9A7FB89F027F2C805EF7902536	C8BD9AA9A411BD3248CEA9F41FA191E5B57A31528DBB92663FB5191375938BCD
Chrome Cache Entry: 553	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 554	SVG Scalable Vector Graphics image	6A8E49260DE35DE28ABA04DB6502CD39	F4532E379B040A0531F5AFC174057DEDB9BF3DC6	17844B6E32A1300BA44A13E98C650FE16E4759364491B8161510E28AA648E79E
Chrome Cache Entry: 555	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 556	ASCII text, with very long lines (15521), with no line terminators	7BF3EFD430A9A0592C41552968D38FF7	2E85EA74DC08DFABB4855E4A087535A335B442F2	3D2C10CF69410C10177FC6E56937D05151B182841FA6AEE36F651D587D91FBB8
Chrome Cache Entry: 557	ASCII text, with very long lines (6881), with no line terminators	D71160B053DB7FEE5D0FAF674619841E	E134C75D98D44D6A98D3C8CBA5F0E090951F3399	0888761460FC2A96C770CFA9276BF6D97BEC5A8E8CE2F6EC1D8298DD80FAA109
Chrome Cache Entry: 558	Unicode text, UTF-8 text, with very long lines (50733)	8CE4FD63F24F0297FD9C6CF0453908AE	086A786727254F8CD6918B12AB1707E01C21624A	DC6DACFF9A56A6947DCF1EEA394B6BBB7C4DA52D6FEBAA470487A37450C41FE6
Chrome Cache Entry: 559	RIFF (little-endian) data, Web/P image	790A5E59D48832B48E9DA6CBEC9996DD	270326F8B7B3FA528F6714D31638C546B94346AE	73911D11281F94C94EEA5D36F3F3CD10DA04F7B9B82739C47C6B2A431EE6E9A7
Chrome Cache Entry: 560	ASCII text, with very long lines (65450)	C5ACABBB62BBBFA30CB232E938630DF9	53879A4C76F9D1C28F6A7CD4A7C75C8C0C5585A4	D79FA473A673A24E21D3FAA93DEA8E57E49EDE838304A2E7CD41A75E1B0623FB
Chrome Cache Entry: 561	Unicode text, UTF-8 text, with very long lines (64931), with no line terminators	2EFA77FA71321611BE9A4742D6234D2A	AA12F30ED8BDC8D7C76A0C0515AF079472FED60E	57599E0FC536A93F8D45659E6EEB2857618552A0DD241B7FD6067E6FA436A1FE
Chrome Cache Entry: 562	ASCII text, with very long lines (65536), with no line terminators	3775D873A6A5676D834D568199365B53	C0AD9D536242771AD72665D57BA8744E6C10AE81	1127EB2C8FAB4A5D4DDB73A9B3CBA75B321B4B1DDEBAC28253402FF294FDCE33
Chrome Cache Entry: 563	ASCII text, with very long lines (2343)	575B5480531DA4D14E7453E2016FE0BC	E5C5F3134FE29E60B591C87EA85951F0AEA36EE1	DE36E50194320A7D3EF1ACE9BD34A875A8BD458B253C061979DD628E9BF49AFD
Chrome Cache Entry: 564	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 565	GIF image data, version 89a, 6 x 5	E4D673A55C5656F19EF81563FB10884C	1F2D8ED221D39329251AD3A6FF1EDB20B7219443	F3A8992ACB9AB911E0FA4AE12F4B85EF8E61008619F13EE51C7A121FF87F63B1
Chrome Cache Entry: 566	ASCII text, with very long lines (12046)	844B3BACCA414362DEE45E478CEAFDEA	263BEEBD94489E06B988BFEA3C911E38F5E49327	3199600D27B705858D90BC8FE02169AF7900067540F64F6C5464D9A2E3439752
Chrome Cache Entry: 567	ASCII text, with very long lines (24823), with no line terminators	E04AD89975C535B30BAE773D0EB0D3B2	0C72555D0FD844150B6EC407A57DA2D29BF380E2	06C0EDBFC1B871FB45195265F5FAAD3E23191305F6FF2125557A9FBC287C8992
Chrome Cache Entry: 568	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 569	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 570	MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel	A217F758EFDFFF14053678DBE58FA4D0	6E0EB512C2F386D645712D7ECBE339EA85CFCA68	F343B3015D0545A7D5B719A434135BCAE2AC766ED459AEEA671E3688B79D1875
Chrome Cache Entry: 571	ASCII text, with very long lines (847)	2A92CDD99A42BFCD7DAB16887539E231	310E2855E334F6F49937490D621710021B15066B	F20C946DA61069DF3F4DC8097FB617DB50F266D25D53758D91FCCBD8341C533C
Chrome Cache Entry: 572	GIF image data, version 89a, 1 x 1	6A43099D5C8FE991A7AA7EBACA53069D	5BCE2F0D57305C58C7B05BFCE29EBB39A18F5570	3B7B8A4B411DDF8DB9BACC2F3AABF406F8E4C0C087829B336CA331C40ADFDFF1
Chrome Cache Entry: 573	HTML document, ASCII text	B54D0452E2FDB8C0D91C455D1C5495F9	DDD85730B9CB4CB9905B1D7E7643F595D2F33CB8	F4138D99EC6E17514BB87CEEAD1C1D2A204219C970864FC85BFF00949EE18082
Chrome Cache Entry: 574	Web Open Font Format (Version 2), TrueType, length 109728, version 1.0	D1883D2801247347DA20FDE4DC14631F	C26710335E7339541609B6B491C6726834C2C275	26B85AE5213566F5E191AA4FBA212EE1DBFA010D5E31E0512A98D3699861C15B
Chrome Cache Entry: 575	RIFF (little-endian) data, Web/P image	461204FBB9CB6D19F763B8EAECDC01D6	95354D81968469C5A9EE2DDEF3C84B9F788802D0	FD29716389D0077F1D88C7ACA6A408FDB9E27A9D33FBD74B265CFF2F6A2E3786
Chrome Cache Entry: 576	RIFF (little-endian) data, Web/P image	A27B43257DE621C9CB07918CD468C48B	CBAA85180DA13F89189F028A60ABDDDABB55B52A	401ECABE49EDB6C178CA34F04C4419AA0E8AA2A1ED4E4A642D0C7B282923B0C7
Chrome Cache Entry: 577	ASCII text, with very long lines (20426), with no line terminators	481AAB9660002090188FEE60921B6EC7	8E2BEAC7E106ED5D0EF7612FA9C360F1407BF138	D51A4C1C5D8E010E04D9EB59E04242C20557BC928BC36E401C157A05C0171788
Chrome Cache Entry: 578	ASCII text, with very long lines (65451)	3AB7906A4D12B7D35C62BAC882D39D74	5D034541D6A9A05B0719C3605880FCFC9229E4B4	15DE250A16CE58A10F84BEBAB59B9005CE36DF4EC8E87C3BB1ACC92726CFA971
Chrome Cache Entry: 579	Web Open Font Format (Version 2), TrueType, length 42556, version 1.0	F427534757749C1A8EF5A5713587C4EC	526E5C6D6D9AC4E319094A4C5F80C9B5C318CF5A	33441B6E44FB33343A5769858CA65653CE482E5E0C58C6EB1CEE0E50AA06DDF6
Chrome Cache Entry: 580	GIF image data, version 89a, 6 x 5	E4D673A55C5656F19EF81563FB10884C	1F2D8ED221D39329251AD3A6FF1EDB20B7219443	F3A8992ACB9AB911E0FA4AE12F4B85EF8E61008619F13EE51C7A121FF87F63B1
Chrome Cache Entry: 581	ASCII text, with very long lines (2783), with no line terminators	87532C4DB85F1429FA6D759BC3332F36	4E576E680C9843DAE6FBBFBAEA10822B3B70158D	E40B6EAE9D66C60B9C750DA70DA6B2BC5D35C2AE9689CC1E9547E300FAC4A3BA
Chrome Cache Entry: 582	RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp	03F6B75C92CA83C0BC40ACB595D51050	69EC75C679B486FA7E8F6E8928DAC957F729E127	93FBF640F2EC8332799207BAD5BF82F87503C2224E56FD6747A12E16D7C2822A
Chrome Cache Entry: 583	ASCII text, with very long lines (65536), with no line terminators	1F3206D2BB76462AA820C152C0515A62	6C2B454B637FFF33FB5A95ABF275EEB7C206BE7C	A0D4A50B4C03F2859F4185BF64AE42576F82FFBE40EE41008BE7E6CC46DD5109
Chrome Cache Entry: 584	JSON data	41E6ED4D452676208DCD72DB15A0FB4C	10B71EC511387739049505E0518461149F5C742D	7824EA5A55E5B352433EE72D2004B005DC6FB17DCEC32A74D1BCE057C9D19201
Chrome Cache Entry: 585	ASCII text, with very long lines (17572)	0C4D3AB97EFA1A507DD8F13E313ABF93	69A2C481F8C5DB9FE2B3AD071EDC08018AD91E73	38CCDB27CEE0901E4C014932EA698307899F9641336B8AD01D424D083E214BFE
Chrome Cache Entry: 586	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 587	ASCII text, with very long lines (8543), with no line terminators	A6E79F61437A17502435D75363EAF1F5	5020D60DB2BCEB3FBFDCA680ACA830C503FCAD72	6A8B3A0A6B4C4719B3E4AD47FCE65B95A714B898A0679B6FF222D82BACDFFD10
Chrome Cache Entry: 588	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	EA2722D3B676D5CDD4F7225E65695112	97E5E94CFF5B62F60BA76C7DD9F606304AF8B10C	317E5FDAA14E548C0045D5E662709CFE0B692E0384A8396CF22054BF0A1E1C48
Chrome Cache Entry: 589	HTML document, ASCII text, with very long lines (1551), with no line terminators	D51C921B7CD2593445428067E1F9E071	672279C5DA34667F965B24DE0366363108CDB19E	315D539976778A7033763CB30D2FA87870B07727A71F5D093AAF6A39B2F64A55
Chrome Cache Entry: 590	ASCII text, with very long lines (65536), with no line terminators	E904CA2E7AED586F525E59F7F859D238	BD50A1EA868373C2C069B7DE97E702D00805F3C7	B2A5E50BC93A01B4DD987643CF8EF1E5C60CB32EF061025461B76936F4E0A49E
Chrome Cache Entry: 591	RIFF (little-endian) data, Web/P image	762A633F52D13C0D05FF8194DB594A00	C2DFFFFE9834CD4BEC3D964E4CC6B631C7D29B7E	4312EF94BBA93D982841FDE2BB393B6129FC9F4D0DE5349C5202B9E2B7350451
Chrome Cache Entry: 592	SVG Scalable Vector Graphics image	63E737D3544164D2B7F4FBCA416AC807	030370AA38715E4C41589633F69D0BFE8255D46C	5FA00D047ACD959697B9D7772C31DCD37BEC33C70C6FBF80AB8316205D1D286D
Chrome Cache Entry: 593	ASCII text, with very long lines (2916)	000BF77A681CAA278875E741369A23FF	E7DE3CB5252E4216574E842F9E6EB26576317906	2799426BFA26DB4838B7A1353CF966379D98DCA1B53C2F244259475C1ECF44C8
Chrome Cache Entry: 594	GIF image data, version 89a, 6 x 5	E4D673A55C5656F19EF81563FB10884C	1F2D8ED221D39329251AD3A6FF1EDB20B7219443	F3A8992ACB9AB911E0FA4AE12F4B85EF8E61008619F13EE51C7A121FF87F63B1
Chrome Cache Entry: 595	SVG Scalable Vector Graphics image	6A8E49260DE35DE28ABA04DB6502CD39	F4532E379B040A0531F5AFC174057DEDB9BF3DC6	17844B6E32A1300BA44A13E98C650FE16E4759364491B8161510E28AA648E79E
Chrome Cache Entry: 596	ASCII text, with very long lines (3165), with no line terminators	A1E85269B1A2AB05A7EC7DF6C8DBA8A4	CAE5CAC30946C4B051249D51A3F8A87DD682A30D	8EA81C8A68E384C63F50C31296D09B124D7B3470D5B71A79F49F279A8A2E0560
Chrome Cache Entry: 597	SVG Scalable Vector Graphics image	46B7DEF3948F54B3A015E46B20A5517C	C5AA2F6C8999ADA86718BD03B45F3FF9A5B3AEA7	9DA2BD1AA1B397EEA1FA3B751FD50E0F624A33761A4E9E9FD660ED3D26F07F1B
Chrome Cache Entry: 598	gzip compressed data, was "worker.js", last modified: Tue Jul 21 10:14:25 2020, from Unix, original size modulo 2^32 47679	35B88482B6E5742604AF3DE8BA01F378	5F9FB43DBA25DB1D4169A37036C0B5A101240BB5	F33C6CDD27C56C4F194C9020DAFF3E8ECBA38AED831E9A9508F1CC20A93126B5
Chrome Cache Entry: 599	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 600	Web Open Font Format (Version 2), TrueType, length 109628, version 1.0	67A9B38ABD1F9F80D5ED943760F1C1E6	9C646D28E62FCF3C4A1ECF7043632FAE3DEA6270	8D73261B2DB18AF30E93ACBC8E8591E0784706FC283C37C465F92012256757D2
Chrome Cache Entry: 601	ASCII text, with very long lines (40693)	1D3FAD5A3838003C8526EEC43F7F47CC	0894AB57399E5C1DCBF3C76114C5F6511ECCF535	5743AF7323CE07B899DD71E7BA8A741991BF134F205A1286D518B36911B4ED48
Chrome Cache Entry: 602	RIFF (little-endian) data, Web/P image	695E9D18FA64BE85CA3C2DAF84824527	EADFB65A6942BA4A41683B15FE09ABBF8D8B7052	E7CB9A3589480E68D19761D2AC1F1E6E369AF5EF6D6E6753BF9F11A4C45602FA
Chrome Cache Entry: 603	ASCII text, with very long lines (17065), with no line terminators	E28EBC3391B56E8F01EA063DC089E9D3	D0EB0EDDB70199DB3533F492E7F2E22BE890A1FA	AFBD41E7209FA3AEF6F53C7A5713AA542A7BE54C432FEC2D690E0DFACCD528D1
Chrome Cache Entry: 604	ASCII text, with very long lines (7119), with no line terminators	91116CEC075865276B3DF0C8C3974A98	6E6F9665231F82175907857C1EE413A829A94A6D	855F38A7E1AC275B42A318004992455982D6B9CC4D149C43DB3DA424C7A2D62E
Chrome Cache Entry: 605	gzip compressed data, was "tag-43de7e3097c45e1309fa8124610650de.js", last modified: Tue Mar 26 12:43:32 2024, from Unix, original size modulo 2^32 134802	846327CF154E8225C6FA0D0D2170AEBD	816C2A8A0E0934F5785A3D1518D5ED35CC64D01D	958F287EC1E30DE8CA80C936D1F488E2442623A2EDEBFF963BCB558AB88C8FC5
Chrome Cache Entry: 606	RIFF (little-endian) data, Web/P image	E56C344A49556C2D20A37ECF6D057358	C3E5889FA515A96FD2595B1411A934AC0BB4C850	CA8D75418BDDD951DE03B6697DD67AFB905319C791C133EC9B352F60B7B1E033
Chrome Cache Entry: 607	PNG image data, 32 x 32, 8-bit colormap, non-interlaced	311A928AD1210A491BF2DDC244E644FB	E236C8551176C4ECFDA845B887B8DC28D99493DC	952F93877FFFD447F8E95A4DD76F10CAEA82D23E22319C3419F6702628647304
Chrome Cache Entry: 608	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 609	ASCII text, with very long lines (35552), with no line terminators	C6F58DD3D60F07462254B842DD4F9CA1	62C507FC6CC05F9732BCD5C593F3D8D0E0A3D7E2	2A8A441D8086F20A64563EDC759ABA1DE84D932E34FF77B8BB0279A730CDB428
Chrome Cache Entry: 610	ASCII text, with very long lines (1015)	F7E4F0D782AA7D65A28B01A77784BD23	56AAE8C1E7957107737AC7ACDEEF5336C3CA0138	4784F949156E9BEAB6C6D15D0448D9C157B37B71F6346583DD0BE5EC2ECF81D3
Chrome Cache Entry: 611	HTML document, ASCII text, with very long lines (2032)	16495ED0A86B33940A1A41D4B971ADBB	BC1ED84915745A7BD16D105622A454499684D79F	0AC7AC1F21A199AA1BD93FC84BEB2ECD59E3D7229CDD9E9DAA13FE90E8F258A6
Chrome Cache Entry: 612	SVG Scalable Vector Graphics image	99725E512E5E7004F90EFFC817090E64	82B3511B127D4E7FD063FAE0F118178AD68E3B3B	9E36F834EEEF0ED10EF8D2681C179AF354758C4D329F3514AC4CAAE28A7310A9
Chrome Cache Entry: 613	HTML document, ASCII text, with very long lines (1551), with no line terminators	D51C921B7CD2593445428067E1F9E071	672279C5DA34667F965B24DE0366363108CDB19E	315D539976778A7033763CB30D2FA87870B07727A71F5D093AAF6A39B2F64A55
Chrome Cache Entry: 614	PNG image data, 48 x 36, 4-bit colormap, non-interlaced	07505E9DAC6DD922116F038EB58C9B88	4DAB9005E4603F76A6FAD92FE78FB9C92D05B62F	C4DB75F643BB4DD47E39A9601FCC0A14621B588D5E4EBE987EE4828120BDE791
Chrome Cache Entry: 615	ASCII text, with very long lines (18871), with no line terminators	62166AB49A02E4980195F2D8C72960DF	352D3E6A7BCD1D54066822D8B19FF16A40528AAB	7327AE0D03F5BC7BA131FA061FBE0FCB23BE4A96A4357C502DE0C4950F69D3FB
Chrome Cache Entry: 616	PNG image data, 356 x 247, 8-bit/color RGBA, non-interlaced	00671C5214327F1F90A632C7B3D97869	0B433CD0AFE198B1F93F4C766693AA17E8DD4890	8A6CC4F9F5400A1A1ECF8A4030F85389EB7434260751553D8E6782FC9E561EF1
Chrome Cache Entry: 617	GIF image data, version 89a, 6 x 5	E4D673A55C5656F19EF81563FB10884C	1F2D8ED221D39329251AD3A6FF1EDB20B7219443	F3A8992ACB9AB911E0FA4AE12F4B85EF8E61008619F13EE51C7A121FF87F63B1
Chrome Cache Entry: 618	HTML document, ASCII text	792E7DA69F9637E2F63C0FD5245DAC86	589F6FE5CE5EFBD111AC635C747838A84475CD6D	F5FC14181849CB5F911A632A9663DD875BD7FA4A0565D05A17D8185CF643853C
Chrome Cache Entry: 619	SVG Scalable Vector Graphics image	61226AFCAE6A8F2B3D2755728DAAF4F2	8489CAF428F9F579A8B31AEAD973F6C361711414	47EAAEA809BFE2FD94F78F3C94372B6328F37748BC0EEDFD1B2AB937027962CB
Chrome Cache Entry: 620	ASCII text, with CRLF line terminators	E66032766D798F211269FB5062F6E381	D2CEA15E2D548973B1C8F5F2FF2077A8CDF0BADA	91A21F6676FFBDCC18292A03EF7D95D195AF3CDCF35D52831059A8906DBE315C
Chrome Cache Entry: 621	ASCII text, with very long lines (17003), with no line terminators	65E5C965272E021AE33FF8BC39565EF5	C5A2C0CDF9C821B6EE43A1EEB52680FFEEA15557	B84595CC8461BB6E8376FE94F0DD23D6657172103B03653534089C5992B058A1
Chrome Cache Entry: 622	JSON data	5417FEBD02AD2025711E47391CE15CE7	5F202292109E5F5F0555F38763CDE89764FA7121	E1076E28BF1095B534CEC675B71F48F79E71571B0D1E0B6299BFC1598A16B8B3
Chrome Cache Entry: 623	HTML document, ASCII text, with very long lines (4514), with no line terminators	47D1BBFC0A18C8EAC1CCBC86D14E3927	55DE8A2685A7AB1FC17FDC22C3EDC95DF3AD8DBF	C7F5A8972D2FD0B242F717F03E7CAD0E53F3AE72C685BDFB4E49D32030DB0AD4
Chrome Cache Entry: 624	ASCII text, with very long lines (40693)	4D6E873EA5061727A741A08679428B5B	921760D616D8D30A97D0A108567CE3E6D8D01CAB	3CDFA9EBD1B4D319825EBE745424C9AA8265CE9029AC883A40CF54D8225FAA05
Chrome Cache Entry: 625	Web Open Font Format (Version 2), TrueType, length 34108, version 1.0	C15D33A9508923BE839D315A999AB9C7	D17F6E786A1464E13D4EC8E842F4EB121B103842	65C99D3B9F1A1B905046E30D00A97F2D4D605E565C32917E7A89A35926E04B98
Chrome Cache Entry: 626	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 627	ASCII text, with very long lines (15050), with no line terminators	4C9DED88F7F21421EB1966E7A685E251	30601736AD78282151C47C1FF6A710D679CEF6EB	55EE25A6323F84E71AB1B39CAC704268BB136E790947B75F7E123348A8DAB8B8
Chrome Cache Entry: 628	ASCII text, with no line terminators	33C91E596C20479D479B40C957906DFC	311F10E6794CE184C244A564AD09AA9E3FBF0CF7	CCD00DEF3E798985A23FBA6F86EDEDA8544939DC0B609883E77A3F42FBD61794
Chrome Cache Entry: 629	Unicode text, UTF-8 text, with very long lines (3857)	E50995DA6D9B2E8959332161F8416CC8	65A7EACA0D70841C0D3752130F1BBDB8861D24BA	53F498CD49DD32E4071498911F8F36BB221C791FC02C24EEC8BCDC5EE0BAE49F
Chrome Cache Entry: 630	HTML document, Unicode text, UTF-8 text, with very long lines (1136)	FBE36EB2EECF1B90451A3A72701E49D2	AE56EA57C52D1153CEC33CEF91CF935D2D3AF14D	E8F2DED5D74C0EE5F427A20B6715E65BC79ED5C4FC67FB00D89005515C8EFE63
Chrome Cache Entry: 631	ASCII text, with very long lines (3239)	72CDC5826BED4D78F16336690969C35A	6C5D8FB2F3438B2B25B571B92C001919EA8A1873	A377FFBE955B666EF225EF7FD99BA3B5106813B1928E0D144C14A4D499D881B3
Chrome Cache Entry: 632	ASCII text, with very long lines (6141), with no line terminators	C039D261F4584081EC6AE300470B89CF	ED5C060C4931E1B16F13D6D52950D57F47C2DC6A	643DAC32A79B8B4D3C36882EFEF75C7E3B11F014D706CD9B5AAC345B7B95AF1A
Chrome Cache Entry: 633	RIFF (little-endian) data, Web/P image	463FFE330A2B0A40762F5F839C803463	FC1E8254E7E10160C0FDEBEB539358A52B4CEB6E	6D1F878259463317E1C90FEA81B4F5D842248E14D3B23FB19DC54CF62F5E7EAC
Chrome Cache Entry: 634	GIF image data, version 89a, 6 x 5	E4D673A55C5656F19EF81563FB10884C	1F2D8ED221D39329251AD3A6FF1EDB20B7219443	F3A8992ACB9AB911E0FA4AE12F4B85EF8E61008619F13EE51C7A121FF87F63B1
Chrome Cache Entry: 635	SVG Scalable Vector Graphics image	0349A44FF6513BE1D48EB0A1556F0626	BF362205AA0A0371EF00FFD97BF71DB0F6CF870A	BF8B6EABEE06732294708B4285C90C685BB297B55151F7EFE37AFD1EAD1D3AB0
Chrome Cache Entry: 636	RIFF (little-endian) data, Web/P image	E0F32A1385CEFF73AA387A75EEEFC678	A30F06F2912F308B11396337D78714E8DF77A1F3	F203FBE446CEA0E6492C359DA1E6095DD012CC908D32DE776399CF066609E122
Chrome Cache Entry: 637	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 638	GIF image data, version 89a, 1 x 1	325472601571F31E1BF00674C368D335	2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A	B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
Chrome Cache Entry: 639	ASCII text, with very long lines (2343)	575B5480531DA4D14E7453E2016FE0BC	E5C5F3134FE29E60B591C87EA85951F0AEA36EE1	DE36E50194320A7D3EF1ACE9BD34A875A8BD458B253C061979DD628E9BF49AFD
Chrome Cache Entry: 640	Web Open Font Format (Version 2), TrueType, length 15552, version 1.0	285467176F7FE6BB6A9C6873B3DAD2CC	EA04E4FF5142DDD69307C183DEF721A160E0A64E	5A8C1E7681318CAA29E9F44E8A6E271F6A4067A2703E9916DFD4FE9099241DB7
Chrome Cache Entry: 641	ASCII text, with very long lines (2343)	575B5480531DA4D14E7453E2016FE0BC	E5C5F3134FE29E60B591C87EA85951F0AEA36EE1	DE36E50194320A7D3EF1ACE9BD34A875A8BD458B253C061979DD628E9BF49AFD
Chrome Cache Entry: 642	Web Open Font Format (Version 2), TrueType, length 15344, version 1.0	5D4AEB4E5F5EF754E307D7FFAEF688BD	06DB651CDF354C64A7383EA9C77024EF4FB4CEF8	3E253B66056519AA065B00A453BAC37AC5ED8F3E6FE7B542E93A9DCDCC11D0BC
Chrome Cache Entry: 643	JSON data	A2B502EF386A57FFE49FCADBEF851878	950160D63EEC1516A7FE61EE3B6B746F53FA220E	9AB949E66396A8D8F98C5BC58D29AFFF0AFAA87ED6C8F77BCFEC3DE84EDC46D3
Chrome Cache Entry: 644	ASCII text, with very long lines (7555), with no line terminators	189AEFFD571884559DABABA22C66D75A	7B8BC38FB8A289535FC0C369E16F241D604828FB	DD09E3BA26066ABE27C4DAD57C8E0C8A63FE23A0BC87E63BCAB94F25E9096459
Chrome Cache Entry: 645	ASCII text, with very long lines (606)	EA7826F34518D7C2295738F39C7640FA	0095729B4BC2A580E4CE033993DAFE498DB87DF5	68CC280CE370C6F1F51A4FC5950103FC38DF80A429552C549ADD04EBD8BD3A23
Chrome Cache Entry: 646	JSON data	A2B502EF386A57FFE49FCADBEF851878	950160D63EEC1516A7FE61EE3B6B746F53FA220E	9AB949E66396A8D8F98C5BC58D29AFFF0AFAA87ED6C8F77BCFEC3DE84EDC46D3
Chrome Cache Entry: 647	Web Open Font Format (Version 2), TrueType, length 15740, version 1.0	B9C29351C46F3E8C8631C4002457F48A	E57E59C5780995FF2937AB2B511A769212974A87	F75911313E1C7802C23345AB57E754D87801581706780C993FB23FF4E0FE62EF
Chrome Cache Entry: 648	ASCII text, with very long lines (7329), with no line terminators	BD2D67186594B0E32223B293FDFCCA55	B797A9D012C850B53A7CCC12211ADCFBCD9AE0BE	4F9F4E2E225088F9CF3B6B54AA421E0F776D1802255505D2F752E1F83F441641
Chrome Cache Entry: 649	RIFF (little-endian) data, Web/P image	2ADDC2ABCA8E78EE04B08436976D2A99	B9D795D532E4BD60B4C213F27967547FA44D7B48	3550CCB88F26B6FDCF2BCA4AC73ACE67FD0C1C4FC2E6C2B39DD35212CBDF38EB
Chrome Cache Entry: 650	SVG Scalable Vector Graphics image	B57C99C9D1E3C50B2114C6DB053D7FF0	ADA8ABFED92BA8A545BBD9D299D74D5972CC4AE8	691DCDB24853A0F5CE4E6597E5713DEA66799B57FFE2C2A10F28F98E0B569B19
Chrome Cache Entry: 651	JSON data	5AB6D4EF7207325687F427AEF8504E38	511316E2A7BC063A77CEDFBD7CFB906AB78C1FB2	432D55B2BB99D6C152CE13DFEDA39F61570071A091BC3462FE7400583D27E09C
Chrome Cache Entry: 652	JSON data	A9C4EEF679A972DBA3F78EADA8E43535	814BA4261445BF5888771B0F6767A99ED3DD578A	12664DFC7031A2D992B7D493A488AD418A4A49521F6E7FCF24708DE2005819FA
Chrome Cache Entry: 653	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 654	Web Open Font Format (Version 2), TrueType, length 42808, version 1.0	48BE6E464FF8EC756C992726B493DE51	E1764AF30E57EB5D7DF59F8B3E8C791385548AF4	FC4C4327594C7559168718F24EFE82754660FDD55F62AA796BAEFEE1E9B8D3D3
Chrome Cache Entry: 655	RIFF (little-endian) data, Web/P image	5081B9F771D757603E0D15DCC2FFFD18	49AB60F25DEE741FA68DD383ED04B27F0AF1F205	8D3EBA64792D78BD357647529CC578B410FD8E858830B9F595DDC5361A98C856
Chrome Cache Entry: 656	GIF image data, version 89a, 6 x 5	E4D673A55C5656F19EF81563FB10884C	1F2D8ED221D39329251AD3A6FF1EDB20B7219443	F3A8992ACB9AB911E0FA4AE12F4B85EF8E61008619F13EE51C7A121FF87F63B1
Chrome Cache Entry: 657	ASCII text, with very long lines (65005)	D3B4B7A75D66FE07910E4554D02C86F0	0751665466657674B719BF778C739E10259E5290	B31F7DC608D185AFD0F3BB40DEA5AA4D0C596ECA6C02F29D64EC1CB7B5C7E84F
Chrome Cache Entry: 658	ASCII text, with very long lines (2264), with no line terminators	AA7014405A07CA4ABB6DF3B23F42575C	B738B8F25FE55D77CBC216704ED8C02D63990B7E	0CED8FB423B660702554E027BDBEFF51E57F99B7542715A427AF2F41D570C0B8
Chrome Cache Entry: 659	ASCII text, with very long lines (4265)	C27CF7D6A12CE7EAC86D7C9858615BD5	2F6B25BDFF7A2822FF60370ED8AAA3E643CBD32F	E99624F72E1C47EBC5377E0B55E6030778D31D1C811A68BFCE18E206EE9FDBE9
Chrome Cache Entry: 660	GIF image data, version 89a, 1 x 1	6A43099D5C8FE991A7AA7EBACA53069D	5BCE2F0D57305C58C7B05BFCE29EBB39A18F5570	3B7B8A4B411DDF8DB9BACC2F3AABF406F8E4C0C087829B336CA331C40ADFDFF1
Chrome Cache Entry: 661	ASCII text, with very long lines (2634)	9BB28E4E947B15C91F9178EFF5B23264	87F5AC3AE29A7455DD00F79435B1D91F664F0395	9FEC8921027F561C8BD0FDF17C244E35F26ABA8E336571597FCCCD9D42D7A0CA
Chrome Cache Entry: 662	Web Open Font Format, TrueType, length 85692, version 1.1	C73EB1CEBA3321A80A0AFF13AD373CB4	3EA2C95E21CC88D82BB111C99883484C64D657DB	18827349C7FEBD4B8D01AA907C67EA9B8011242078326B24703978454FDF351A
Chrome Cache Entry: 663	ASCII text, with very long lines (8404), with no line terminators	CDF596B6A09E2D33415C8429AD5AC858	B7AD84975B629937AF85B055D5CC4E34D85267B6	0558F702BC35AD30CF70512357E17658D9B7E8227E4C5DFB7466830CF3AF6AFE
Chrome Cache Entry: 664	RIFF (little-endian) data, Web/P image, VP8 encoding, 813x392, Scaling: [none]x[none], YUV color, decoders should clamp	FE1AA7149D155D7B861CE9E7D405B44B	6B3E830BD755DE8028412865C7C0B519C42F5256	E25DF2B0E692B1073573A82777E06F56226D0178777A5FF720F34216C4F07325
Chrome Cache Entry: 665	PNG image data, 3090 x 487, 8-bit/color RGBA, non-interlaced	83AE44E24877D9B6DD48FA927AF025F1	553AE1B035930D07FD4511BA57786564BD249CC7	FDF7A139210AD25E0576A0721D45086E047DEE38F88BA2995CE745643212C532
Chrome Cache Entry: 666	ASCII text, with very long lines (65451)	6B979743E4B75A88762893DFD587D6D7	505BEC6656258A9D78A73033BF269DFCD96FA0E6	2E789E43937C7ABC5959EBA06825459F4E08E050FF9EA43AB8EC5A041A3E7558
Chrome Cache Entry: 667	ASCII text, with very long lines (9845)	4BAD021F54B797DACCD44D6C729D0B31	2E9FB3858EA44EACB728012D459778CDF0819A21	5E75D076C91328228593B9F5437B17B8B90466F5C0E026198C083A4CB048D0BA
Chrome Cache Entry: 668	RIFF (little-endian) data, Web/P image	461204FBB9CB6D19F763B8EAECDC01D6	95354D81968469C5A9EE2DDEF3C84B9F788802D0	FD29716389D0077F1D88C7ACA6A408FDB9E27A9D33FBD74B265CFF2F6A2E3786
Chrome Cache Entry: 669	ASCII text, with very long lines (8035), with CRLF, LF line terminators	79DE969DE23174A3149BDC54C29102CA	1861341BC0FAA6B116D261C174E1CB4C487F53ED	6D85F59A18CB947E014183FB218BF7AAB91A6E3D5F73DECEEE375CECA9F80A51
Chrome Cache Entry: 670	SVG Scalable Vector Graphics image	0349A44FF6513BE1D48EB0A1556F0626	BF362205AA0A0371EF00FFD97BF71DB0F6CF870A	BF8B6EABEE06732294708B4285C90C685BB297B55151F7EFE37AFD1EAD1D3AB0
Chrome Cache Entry: 671	ASCII text, with very long lines (65536), with no line terminators	1FAB3E8D98E98FE27B86BDEA9085F17B	D0CFBD4819FECE863D18C58474B759755797C357	77C1FEE067F934F8D9268DFACC3BD33674EFFD759B0AD1B702E2C5DFF710CE21
Chrome Cache Entry: 672	ASCII text, with no line terminators	4C8A26E14EDABDD7D6BFBF1472AFC853	F268C3DB54608F753ED9320CB2411B00A40C8D65	B9224CA870B658AB694ECED1FBB07A971FCE7D0C990E50046929E9968BAF435C
Chrome Cache Entry: 673	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 674	Web Open Font Format (Version 2), TrueType, length 97812, version 1.0	FCF85E1007388C2707C982FB27D09163	1329D694C10F4F8DC05AEF70257E93D0481ECCB5	878C9752B9A516DDE472D30E4E5C57172B2E766CF21F336DF168E2302382CA0E
Chrome Cache Entry: 675	Web Open Font Format (Version 2), TrueType, length 15860, version 1.0	E9F5AAF547F165386CD313B995DDDD8E	ACDEF5603C2387B0E5BFFD744B679A24A8BC1968	F5AEBDFEA35D1E7656EF4ACC5DB1F243209755AE3300943EF8FC6280F363C860
Chrome Cache Entry: 676	ASCII text, with very long lines (65536), with no line terminators	6D77A76055D81227033363AF2F18CAF8	B1B94517954F8F8889A0822886DEA6F5AD7C931F	19473EEBFB0672867A4438E2A015DE79FDED34B9F5AE5598BADE57EB01CF0563
Chrome Cache Entry: 677	PNG image data, 356 x 247, 8-bit/color RGBA, non-interlaced	00671C5214327F1F90A632C7B3D97869	0B433CD0AFE198B1F93F4C766693AA17E8DD4890	8A6CC4F9F5400A1A1ECF8A4030F85389EB7434260751553D8E6782FC9E561EF1
Chrome Cache Entry: 678	GIF image data, version 89a, 1 x 1	28D6814F309EA289F847C69CF91194C6	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
Chrome Cache Entry: 679	gzip compressed data, was "tag-3b111c75d9433a455983f12ca040dbdb.js", last modified: Tue Mar 26 12:43:31 2024, from Unix, original size modulo 2^32 188485	3C358C3AA465E3A13B1AEC7080BA9DAA	07B9FA600FC7324F76D4B28A111BDFD739C6CF60	A166AB4D579ABEFD0CF1D0C98ACBB75B6DC2D4BBDF392AE62D914A3DDD64FAE9
Chrome Cache Entry: 680	RIFF (little-endian) data, Web/P image	5F927B629F1E538DC62E6179F342F52F	F657B520AF565E6BF46197DAB1D4BA30A145B5A3	2E82B5AEFE909FD09CF5C511CD9928F8598AEADE98B096D127C6545BB6FB3B4C
Chrome Cache Entry: 681	JSON data	A9C4EEF679A972DBA3F78EADA8E43535	814BA4261445BF5888771B0F6767A99ED3DD578A	12664DFC7031A2D992B7D493A488AD418A4A49521F6E7FCF24708DE2005819FA
Chrome Cache Entry: 682	ASCII text, with very long lines (57196)	0234D0A7685AEFA6FD06041FBD602928	CBCBA60AA82286DD1F877CB8BD5B5CC047F82CE0	0085ADFD2D08A45F62A06D8F3F969DDC4A94EBE8D226511DB90AA038F11ED180
Chrome Cache Entry: 683	JSON data	A2B502EF386A57FFE49FCADBEF851878	950160D63EEC1516A7FE61EE3B6B746F53FA220E	9AB949E66396A8D8F98C5BC58D29AFFF0AFAA87ED6C8F77BCFEC3DE84EDC46D3
Chrome Cache Entry: 684	SVG Scalable Vector Graphics image	63E737D3544164D2B7F4FBCA416AC807	030370AA38715E4C41589633F69D0BFE8255D46C	5FA00D047ACD959697B9D7772C31DCD37BEC33C70C6FBF80AB8316205D1D286D
Chrome Cache Entry: 685	ASCII text, with no line terminators	7C6777C5806286FC471A00670353D393	1D285EBFA9FD0B91788CC310F31C042FEC5DE126	91365BB66CFAFD448C50164BCF60408256D0E3AFAAA3041F45495C3C8B8E3D4B
Chrome Cache Entry: 686	ASCII text, with no line terminators	4C8A26E14EDABDD7D6BFBF1472AFC853	F268C3DB54608F753ED9320CB2411B00A40C8D65	B9224CA870B658AB694ECED1FBB07A971FCE7D0C990E50046929E9968BAF435C

HTML body contains password input but no form action

HTTP Parser: <input type="password" .../> found but no <form action="...

HTML body with high number of large embedded background images detected

Source: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiA	HTTP Parser: Total embedded background img size: 720147
Source: https://cloud.malwarebytes.com/auth/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiA	HTTP Parser: Total embedded background img size: 720147

HTTP Parser: <input type="password" .../> found

Source: https://td.doubleclick.net/td/rul/930356311?random=1711678663454&cv=11&fst=1711678663454&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config	HTTP Parser: No favicon
Source: https://td.doubleclick.net/td/rul/407675570?random=1711678663487&cv=11&fst=1711678663487&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config	HTTP Parser: No favicon
Source: https://s.company-target.com/s/sync?exc=lr	HTTP Parser: No favicon
Source: https://apps.apple.com/us/app/threatdown-admin/id1666801296	HTTP Parser: No favicon
Source: https://apps.apple.com/us/app/threatdown-admin/id1666801296	HTTP Parser: No favicon
Source: https://apps.apple.com/us/app/threatdown-admin/id1666801296	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0&co=aHR0cHM6Ly9wbGF5Lmdvb2dsZS5jb206NDQz&hl=en&v=moV1mTgQ6S91nuTnmll4Y9yf&size=invisible&cb=psosspefqez5	HTTP Parser: No favicon
Source: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2F	HTTP Parser: No favicon
Source: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2F	HTTP Parser: No favicon
Source: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863	HTTP Parser: No favicon
Source: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863	HTTP Parser: No favicon
Source: https://td.doubleclick.net/td/rul/930356311?random=1711678706851&cv=11&fst=1711678706851&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config	HTTP Parser: No favicon
Source: https://td.doubleclick.net/td/rul/407675570?random=1711678706881&cv=11&fst=1711678706881&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config	HTTP Parser: No favicon

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49747 version: TLS 1.0

Source: unknown	HTTPS traffic detected: 23.48.10.90:443 -> 192.168.2.5:49720 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.48.10.90:443 -> 192.168.2.5:49729 version: TLS 1.2

Source: chrome.exe

Memory has grown: Private usage: 1MB later: 40MB

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49747 version: TLS 1.0

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiA HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/fontawesome-webfont.woff2 HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://cloud.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /vendors.34e5b5111313629818ff.js?964871b7764ac3d70f0a HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /main.f1770320b6021af0c749.js?964871b7764ac3d70f0a HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /remoteEntry.js?964871b7764ac3d70f0a HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pa-5b632c6e54acd30016000074.js HTTP/1.1Host: rum-static.pingdom.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /agent/static/a12d90ec-73be-4aee-72c5-600a4a967d29/pendo.js HTTP/1.1Host: content.content.cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /292.9ec35c180fd3fd007a8c.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /7778.8d12bd2739d02678442d.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2987.c9173728350a7040cfc1.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1920.55af13dcbd62f39bf5cd.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /6744.c52ed127ab997d4d9782.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /3474.ef6072364c21886db0b9.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /remoteEntry.js HTTP/1.1Host: deployment-module.cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /remoteEntry.js HTTP/1.1Host: sam-module.cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /fonts/Roboto-Regular.woff HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://cloud.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/Roboto-Light.woff HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://cloud.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /451.f3dcfcae91499e158055.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/auth/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1733.2826602ecdd07c3208c5.js HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cloud.malwarebytes.com/auth/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/favicon-32x32.png HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://cloud.malwarebytes.com/auth/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiAAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /img/beacon.gif?id=5b632c6e54acd30016000074&sAW=1280&sAH=984&bIW=1280&bIH=907&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=138&cE=357&dLE=138&dLS=64&fS=7&hS=139&rE=-1&rS=-1&reS=357&resS=606&resE=607&uEE=-1&uES=-1&dL=612&dI=627&dCLES=3098&dCLEE=3098&dC=7591&lES=7592&lEE=7594&s=nt&title=ThreatDown%2C%20powered%20by%20Malwarebytes&path=https%3A%2F%2Fcloud.malwarebytes.com%2Fauth%2Facceptinvite&ref=&sId=wntif8q4&sST=1711678643&sIS=1&rV=0&v=1.4.1 HTTP/1.1Host: rum-collector-2.pingdom.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://cloud.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://cloud.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/favicon-32x32.png HTTP/1.1Host: cloud.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /img/beacon.gif?id=5b632c6e54acd30016000074&sAW=1280&sAH=984&bIW=1280&bIH=907&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=138&cE=357&dLE=138&dLS=64&fS=7&hS=139&rE=-1&rS=-1&reS=357&resS=606&resE=607&uEE=-1&uES=-1&dL=612&dI=627&dCLES=3098&dCLEE=3098&dC=7591&lES=7592&lEE=7594&s=nt&title=ThreatDown%2C%20powered%20by%20Malwarebytes&path=https%3A%2F%2Fcloud.malwarebytes.com%2Fauth%2Facceptinvite&ref=&sId=wntif8q4&sST=1711678643&sIS=1&rV=0&v=1.4.1 HTTP/1.1Host: rum-collector-2.pingdom.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eula HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /_static/??-eJyNjEsKgDAMBS9kDaX42YhnSTVioWmliRRvb8ELuHzMzIN6mS0npaSgJzEJMMaKhfyjbaAIqYC/Q9wbCanfRDr4V8XgC5YHWgJH0w1WkszU8/ez8mIna8fBjW5+AV5fMxo= HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /j.php?a=622914&u=https%3A%2F%2Fwww.malwarebytes.com%2Feula&vn=2 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Roboto-Regular.b009a76a.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Graphik-Regular.3fdd19ea.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Graphik-Semibold.b023d334.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Graphik-Medium.3ff48deb.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /js/script.js HTTP/1.1Host: plausible.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Roboto-Black.2e8becfc.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /e-202413.js HTTP/1.1Host: stats.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web/djIkdGU6Ny4wOmFzeW5jJWdxdWVyeQ==/tag-3b111c75d9433a455983f12ca040dbdb.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.gif?cd=0&a=622914&d=malwarebytes.com&u=D37510582766F57CE9172FC6B1B42626D&h=71a8d44c7b9bba69e783641e1604b8d0&t=false HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Roboto-Bold.227c9319.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Roboto-Medium.f25d774e.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/build/fonts/Graphik-Light.8512717f.woff2 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/07/malwarebytes-state-of-malware-report-2023.jpg HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/jquery/jquery.min.js?ver=1.0 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/09/product-menu-screen.webp?w=356 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/src/images/footer-globe.svg HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0
Source: global traffic	HTTP traffic detected: GET /v.gif?cd=0&a=622914&d=malwarebytes.com&u=D37510582766F57CE9172FC6B1B42626D&h=71a8d44c7b9bba69e783641e1604b8d0&t=false HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_static/??-eJyVjlEKwjAQRC9kXUKx9Uc8S5qMdGOSleyW4O0NeAH9HN68Yai/piDVUI1sR4FS8bn7hu1tI3hVmNJ2cI6DcD0nPdFvkrZASQlBSkELoMM4s/FoBJEn44+t74FHA6YovWbxcdj3cnOrc8tlXuZr+gBVQExw HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0
Source: global traffic	HTTP traffic detected: GET /web/djIkYTo0LjA6bm9qcXVlcnksdHI6Ny4w/tag-43de7e3097c45e1309fa8124610650de.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.malwarebytes.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings.js?a=622914&settings_type=1&vn=7.0&exc=1\|48\|3\|4\|161 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/07/malwarebytes-state-of-malware-report-2023.jpg HTTP/1.1Host: www.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%241711678658%3A96.4585075%3A%3A; _vwo_sn=0%3A1
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/09/product-menu-screen.webp?w=356 HTTP/1.1Host: www.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%241711678658%3A96.4585075%3A%3A; _vwo_sn=0%3A1
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/malwarebytes/assets/src/images/footer-globe.svg HTTP/1.1Host: www.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%241711678658%3A96.4585075%3A%3A; _vwo_sn=0%3A1
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/82971089-2677-4e1e-8fab-44444f76330b/82971089-2677-4e1e-8fab-44444f76330b.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analysis/worker-70faafffa0475802f5ee03ca5ff74179.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=1&ed=%7B%22tz%22%3A%22Europe%2FZurich%22%2C%22tO%22%3A%22-1%22%2C%22lt%22%3A%221711678659712%22%2C%22r%22%3A%22%22%2C%22ul%22%3A%22en-us%22%2C%22de%22%3A%22UTF-8%22%2C%22sc%22%3A%2224%22%2C%22sr%22%3A%221280x1024%22%7D&cu=https%253A%252F%252Fwww.malwarebytes.com%252Feula&r=0&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&eTime=1711678659723&random=0.0679797350213347 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=1&tags={%22si%22:{%22161%22:%221%22,%221%22:%221%22}}&eg=19,1&update=1&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&_cu=https%3A%2F%2Fwww.malwarebytes.com%2Feula&eTime=1711678659746&random=0.047838305754880794 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=227197325&post=5009&tz=-7&srv=www.malwarebytes.com&hp=vip&j=1%3A13.2.2&host=www.malwarebytes.com&ref=&fcp=1548&rand=0.2851738971534137 HTTP/1.1Host: pixel.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_sn=0%3A1; _vwo_ds=3%241711678658%3A96.4585075%3A%3A%3A%3A1
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=1&ed=%7B%22tz%22%3A%22Europe%2FZurich%22%2C%22tO%22%3A%22-1%22%2C%22lt%22%3A%221711678659712%22%2C%22r%22%3A%22%22%2C%22ul%22%3A%22en-us%22%2C%22de%22%3A%22UTF-8%22%2C%22sc%22%3A%2224%22%2C%22sr%22%3A%221280x1024%22%7D&cu=https%253A%252F%252Fwww.malwarebytes.com%252Feula&r=0&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&eTime=1711678659723&random=0.0679797350213347 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=1&tags={%22si%22:{%22161%22:%221%22,%221%22:%221%22}}&eg=19,1&update=1&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&_cu=https%3A%2F%2Fwww.malwarebytes.com%2Feula&eTime=1711678659746&random=0.047838305754880794 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=32 HTTP/1.1Host: www.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/eulaAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_sn=0%3A1%3Ar2.visualwebsiteoptimizer.com%3A1%3A1; _vwo_ds=3%3Aa_1%2Ct_1%3A0%241711678658%3A96.4585075%3A%3A19_1%2C1_1%3A4_1%2C3_1%3A1
Source: global traffic	HTTP traffic detected: GET /analysis/worker-70faafffa0475802f5ee03ca5ff74179.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/82971089-2677-4e1e-8fab-44444f76330b/82971089-2677-4e1e-8fab-44444f76330b.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=227197325&post=5009&tz=-7&srv=www.malwarebytes.com&hp=vip&j=1%3A13.2.2&host=www.malwarebytes.com&ref=&fcp=1548&rand=0.2851738971534137 HTTP/1.1Host: pixel.wp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=32 HTTP/1.1Host: www.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _ga_K8KCHE3KSC=GS1.1.1711678643.1.0.1711678643.60.0.0; _ga=GA1.1.746274578.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%3Aa_1%2Ct_1%3A0%241711678658%3A96.4585075%3A%3A19_1%2C1_1%3A4_1%2C3_1%3A1; _vwo_sn=0%3A1%3Ar2.visualwebsiteoptimizer.com%3A1%3A1%3Areferrer%3D
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202402.1.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/82971089-2677-4e1e-8fab-44444f76330b/018e2f1e-12b2-7a41-ab63-6c6e010fa4d9/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/82971089-2677-4e1e-8fab-44444f76330b/018e2f1e-12b2-7a41-ab63-6c6e010fa4d9/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202402.1.0/assets/v2/otPcPanel.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202402.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /HWyTnY16.min.js HTTP/1.1Host: scripts.demandbase.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /active/malwarebytes.jsp HTTP/1.1Host: www.upsellit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uwt.js HTTP/1.1Host: static.ads-twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/ot_guard_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/4e1c8bc8-2743-413b-8699-aad2216e8616/3be7f101-47f0-48ab-ae22-e34efabb8a62/9b43fe5c-b22b-40eb-9d38-57e36d038e98/MWB_logo_horizontal_RGB.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/powered_by_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/sync?exc=lr HTTP/1.1Host: s.company-target.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202402.1.0/assets/v2/otPcPanel.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202402.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/ot_guard_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/930356311?random=1711678663454&cv=11&fst=1711678663454&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/407675570?random=1711678663487&cv=11&fst=1711678663487&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /464526.gif HTTP/1.1Host: id.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/4e1c8bc8-2743-413b-8699-aad2216e8616/3be7f101-47f0-48ab-ae22-e34efabb8a62/9b43fe5c-b22b-40eb-9d38-57e36d038e98/MWB_logo_horizontal_RGB.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/powered_by_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-3347303-10&cid=746274578.1711678643&jid=1763037649&uid=3226B7D4-849E-4BE5-B15C-284292B54DCA&gjid=188008371&_gid=859933239.1711678643&_u=SCCAiEAjBAAAAGAAIg~&z=515429881 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=18&expiry=1727576264&external_user_id=2c1f1154-2d99-4eed-a8d3-a0849e7d153c HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sync?UIDM=2c1f1154-2d99-4eed-a8d3-a0849e7d153c HTTP/1.1Host: partners.tremorhub.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /utility/customer_ip.jsp?companyID=11657&si=c8ngeh_1711678664 HTTP/1.1Host: www.upsellit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-3347303-10&cid=746274578.1711678643&jid=1763037649&_u=SCCAiEAjBAAAAGAAIg~&z=1551232403 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /1000.gif?memo=CI6tHBoNCMjJmLAGEgUI6AcQAEIASgA HTTP/1.1Host: id.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rlas3=Sgi4Nm8+jJMqjuS6SpLEJdWqw+hpgdJkKQdHHinLxeY=; pxrc=CAA=
Source: global traffic	HTTP traffic detected: GET /api/v2/ip.json?referrer=&page=https%3A%2F%2Fwww.malwarebytes.com%2Feula&page_title=End%20User%20License%20Agreement%20(EULA) HTTP/1.1Host: api.company-target.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=2c1f1154-2d99-4eed-a8d3-a0849e7d153c; tuuid_lu=1711678664\|ix:0\|mctv:0\|rp:0
Source: global traffic	HTTP traffic detected: GET /bg9s?x-amz-cf-id=zCGjl2-aS-nQLToEGnmaxu_yj9OlXQjvN8_LBlnfqjhpVQQVVUG4MQ==&api-version=v2 HTTP/1.1Host: tag-logger.demandbase.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/930356311/?random=1711678663454&cv=11&fst=1711678663454&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/407675570/?random=1711678663487&cv=11&fst=1711678663487&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=5ac4fd38-cdd0-4459-ba1d-48388739c551&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=246dee9e-ab6c-423f-8fef-9ae121c36dc1&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: t.coConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=5ac4fd38-cdd0-4459-ba1d-48388739c551&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=246dee9e-ab6c-423f-8fef-9ae121c36dc1&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: analytics.twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=18&expiry=1727576264&external_user_id=2c1f1154-2d99-4eed-a8d3-a0849e7d153c&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=ZgYkyNHM720AAH4YADpthAAA; CMPS=399; CMPRO=399
Source: global traffic	HTTP traffic detected: GET /sync?UIDM=2c1f1154-2d99-4eed-a8d3-a0849e7d153c HTTP/1.1Host: partners.tremorhub.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tvid=e3e54fcac79940a192926787a5a434c1; tv_UIDM=2c1f1154-2d99-4eed-a8d3-a0849e7d153c
Source: global traffic	HTTP traffic detected: GET /log?vendor=liveramp&user_id=Xc1297XrPEeffxMkofcQS3LNLUMrFcMjKCBZaz1fqIx72WOZk HTTP/1.1Host: segments.company-target.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=2c1f1154-2d99-4eed-a8d3-a0849e7d153c; tuuid_lu=1711678664\|ix:0\|mctv:0\|rp:0
Source: global traffic	HTTP traffic detected: GET /bg9s?x-amz-cf-id=zCGjl2-aS-nQLToEGnmaxu_yj9OlXQjvN8_LBlnfqjhpVQQVVUG4MQ==&api-version=v2 HTTP/1.1Host: tag-logger.demandbase.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-3347303-10&cid=746274578.1711678643&jid=1763037649&_u=SCCAiEAjBAAAAGAAIg~&z=1551232403 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/407675570/?random=1711678663487&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqaxwbC2eSTpo3rDYK5x-yh6a2CRyV7w&random=2899644059&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=5ac4fd38-cdd0-4459-ba1d-48388739c551&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=246dee9e-ab6c-423f-8fef-9ae121c36dc1&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: t.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: muc_ads=5e01dda0-88a2-4b35-8a35-8e5cbda3c9d3
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=18&expiry=1727576264&external_user_id=2c1f1154-2d99-4eed-a8d3-a0849e7d153c&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=ZgYkyNHM720AAH4YADpthAAA; CMPS=399; CMPRO=399
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/930356311/?random=1711678663454&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqvORPjYJAO0poaUMpHOE1wI7W0Uqnyw&random=3944323661&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=5ac4fd38-cdd0-4459-ba1d-48388739c551&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=246dee9e-ab6c-423f-8fef-9ae121c36dc1&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: analytics.twitter.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: personalization_id="v1_Z4Rb+x6W2Q0ieA486RzPkA=="
Source: global traffic	HTTP traffic detected: GET /log?vendor=liveramp&user_id=Xc1297XrPEeffxMkofcQS3LNLUMrFcMjKCBZaz1fqIx72WOZk HTTP/1.1Host: segments.company-target.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=2c1f1154-2d99-4eed-a8d3-a0849e7d153c; tuuid_lu=1711678664\|ix:0\|mctv:0\|rp:0
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/407675570/?random=1711678663487&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqaxwbC2eSTpo3rDYK5x-yh6a2CRyV7w&random=2899644059&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/930356311/?random=1711678663454&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqvORPjYJAO0poaUMpHOE1wI7W0Uqnyw&random=3944323661&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /store/apps/details?id=com.malwarebytes.nebula HTTP/1.1Host: play.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /4OLX2CSeCT3bm3F829xvbLoCWdvvaGRCQK0Wm0B_kIAeZ0_D2lJ8zZh8U-WZoSQGwhtw=w526-h296-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sYlhcyIn8_ltJJD8rJbVa5wb-qswfo9NxDxQ-egm5ZV9_eZRjetPO81xPacDw-woYFQ=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mci-DJidu4m6pJ3KUouc1jyLenaQ8jmqNzFT4OGDffadDkl5OZCwNTXTxpzvvWVurQ=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /caZl5KdCYwFSaXCuHbkoi-FhhpMuL6ep43NjsTnDcx4MR3tcDao7-EvvN6mdPjdvyb0=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /A5Y2muy9zW4w_cQXKruYg8ONE4wOpAIHXxJETh-RSeSRA9GKUKMfnuLaDcXDSm7ueA=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /taviPm9tQpEKY3ymyZcba0G7OqTfgrJZkSmlBeSpRzf0NYTp6JOQOOSTRaTmg7CRQA=w240-h480-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /IciOnDFecb5Xt50Q2jlcNC0LPI7LEGxNojroo-s3AozcyS-vDCwtq4fn7u3wZmRna8OewG9PBrWC-i7i=w48-h16-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /FJgExuC8tTojG8rfNe7HDV7ODwPKUroMSRPhAJBrPbT8-IxfLt0fK07mflkJ1UgZ6Q=w526-h296-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /iFstqoxDElUVv4T3KxkxP3OTcuFvWF5ZQQjT7aIxy4n2uaVigCCykxeG6EZV9FQ10X1itPj1oORm=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /12USW7aflgz466ifDehKTnMoAep_VHxDmKJ6jEBoDZWCSefOC-ThRX14Mqe0r8KF9XCzrpMqJts=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /W5DPtvB8Fhmkn5LbFZki_OHL3ZI1Rdc-AFul19UK4f7np2NMjLE5QquD6H0HAeEJ977u3WH4yaQ=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /neRBP16KYqhC7f1N3vUT1Q_HMLwAw7vXu8aOWOqvlY3JXNGd8qyXVNyAQyNLpdUdCV0kYEs9BXk=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocKxrS6Wt_Wjxfs-7yK36BjjXHufxR4K4dUJcbgw93ZJ=s32-rw-mo HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1v0Hz36sNBy8ewwSlsJX4Drk-fL1ap0knpGcTVYBCSg9LnsFt6-62HKpL3guQf1UmYBR=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /3_GtIh8x8QpJKaqeJuSKe77yAfuycIv45WfI5BZuORjxOfe-AsfBirzgM9Qxw9VeK-eX=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /I8aTKWVV7z0odeJnIszf9daqh1Wpef6yCljs1u51otXFPxAKmGZtn7VLQF3YTLwDcZDD=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tL3Ii6vPXxDTGKds9HZT2uaOQuVOi6VDQnEZjCE4YuZQfcn0gXWd3l_d-NSfkvRH_p0=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sOmTFy2eNuiytkbV41QWgbIZ9cDX5FQU6HnxmUSuhjMpP_B_WLqOUO3zpsNEFjlzpw=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?trustedtypes=true&render=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /caZl5KdCYwFSaXCuHbkoi-FhhpMuL6ep43NjsTnDcx4MR3tcDao7-EvvN6mdPjdvyb0=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mci-DJidu4m6pJ3KUouc1jyLenaQ8jmqNzFT4OGDffadDkl5OZCwNTXTxpzvvWVurQ=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sYlhcyIn8_ltJJD8rJbVa5wb-qswfo9NxDxQ-egm5ZV9_eZRjetPO81xPacDw-woYFQ=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /A5Y2muy9zW4w_cQXKruYg8ONE4wOpAIHXxJETh-RSeSRA9GKUKMfnuLaDcXDSm7ueA=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /taviPm9tQpEKY3ymyZcba0G7OqTfgrJZkSmlBeSpRzf0NYTp6JOQOOSTRaTmg7CRQA=w240-h480-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /4OLX2CSeCT3bm3F829xvbLoCWdvvaGRCQK0Wm0B_kIAeZ0_D2lJ8zZh8U-WZoSQGwhtw=w526-h296-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /iFstqoxDElUVv4T3KxkxP3OTcuFvWF5ZQQjT7aIxy4n2uaVigCCykxeG6EZV9FQ10X1itPj1oORm=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tools/feedback/chat_load.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /IciOnDFecb5Xt50Q2jlcNC0LPI7LEGxNojroo-s3AozcyS-vDCwtq4fn7u3wZmRna8OewG9PBrWC-i7i=w48-h16-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /12USW7aflgz466ifDehKTnMoAep_VHxDmKJ6jEBoDZWCSefOC-ThRX14Mqe0r8KF9XCzrpMqJts=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /W5DPtvB8Fhmkn5LbFZki_OHL3ZI1Rdc-AFul19UK4f7np2NMjLE5QquD6H0HAeEJ977u3WH4yaQ=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /FJgExuC8tTojG8rfNe7HDV7ODwPKUroMSRPhAJBrPbT8-IxfLt0fK07mflkJ1UgZ6Q=w526-h296-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /neRBP16KYqhC7f1N3vUT1Q_HMLwAw7vXu8aOWOqvlY3JXNGd8qyXVNyAQyNLpdUdCV0kYEs9BXk=s20-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1v0Hz36sNBy8ewwSlsJX4Drk-fL1ap0knpGcTVYBCSg9LnsFt6-62HKpL3guQf1UmYBR=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /3_GtIh8x8QpJKaqeJuSKe77yAfuycIv45WfI5BZuORjxOfe-AsfBirzgM9Qxw9VeK-eX=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocKxrS6Wt_Wjxfs-7yK36BjjXHufxR4K4dUJcbgw93ZJ=s32-rw-mo HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /I8aTKWVV7z0odeJnIszf9daqh1Wpef6yCljs1u51otXFPxAKmGZtn7VLQF3YTLwDcZDD=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0&co=aHR0cHM6Ly9wbGF5Lmdvb2dsZS5jb206NDQz&hl=en&v=moV1mTgQ6S91nuTnmll4Y9yf&size=invisible&cb=psosspefqez5 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-wow64: ?0sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /tL3Ii6vPXxDTGKds9HZT2uaOQuVOi6VDQnEZjCE4YuZQfcn0gXWd3l_d-NSfkvRH_p0=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-19995903-1&cid=1427634313.1711678677&jid=965187526&_u=YEBAAEAAAAAAACgDI~&z=1314983578 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://play.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /sOmTFy2eNuiytkbV41QWgbIZ9cDX5FQU6HnxmUSuhjMpP_B_WLqOUO3zpsNEFjlzpw=s64-rw HTTP/1.1Host: play-lh.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-19995903-1&cid=1427634313.1711678677&jid=965187526&_u=YEBAAEAAAAAAACgDI~&z=1314983578 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-19995903-1&cid=1427634313.1711678677&jid=965187526&gjid=1421924411&_gid=677202319.1711678677&_u=YEBAAEAAAAAAACgDI~&z=1471468149 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /js/bg/OMzbJ87gkB5MAUky6mmDB4mflkEza4rQHUJNCD4hS_4.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0&co=aHR0cHM6Ly9wbGF5Lmdvb2dsZS5jb206NDQz&hl=en&v=moV1mTgQ6S91nuTnmll4Y9yf&size=invisible&cb=psosspefqez5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=moV1mTgQ6S91nuTnmll4Y9yf HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCNy9zQEI2sPNAQjpxc0BCLnKzQEIv9HNAQiK080BCNDWzQEIqNjNAQj5wNQVGI/OzQEYutLNARjC2M0BGOuNpRc=Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0&co=aHR0cHM6Ly9wbGF5Lmdvb2dsZS5jb206NDQz&hl=en&v=moV1mTgQ6S91nuTnmll4Y9yf&size=invisible&cb=psosspefqez5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/reload?k=6LcA2tEZAAAAAJj7FTYTF9cZ4NL3ShgBCBfkWov0 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AH4jZCTEm3-s44sIb2O7K8s0HZYNpYVDOZR3MRCIS0ZLk3VZ3lufj7rwu7DReOcelgkuTi8sU8SGDCzLi8UUs1Y; NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /eula/ HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/css/dist/block-library/style.min.css?m=1710875768g HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_static/??-eJzTLy/QzcxLzilNSS3WzyrWz01NyUxMzUnNTc0rQeEU5CRWphbp5qSmJyZX6uVm5uklFxfr6OPTDpRD5sM02efaGpobGliYm5qbWQIARMsu7g== HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_static/??-eJyVjUEOwjAMBD+EsSIVwQXxCF7QJlYbkcSW7Qj4PaVCXDhxnNXsLt4FIjen5iilz7kZSp9KtkWUzMBIMxmIMrLO14320WyHfzRzi6WnD4wp8erSw3UE5xut8J2GLf458IUqGdYpovmz0Fu41HM4hnA4hWEIL2eXSyE= HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_static/??-eJyNzTEOgzAMheELAYaBph0QZ0HEgNMkRnZC1ds3A0MnxPy+Xw8+e01x9tmiglOwpAkOjJYFyrSz/y7kfTEoqQkUG6cVXESCKxY7JZZackwU8E7293XJN+a3nmIMQ2e69ml683i5Hyk+SjY= HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-assets/build/i18n-loader.js?minify=true&ver=ee939953aa2115e2ca59 HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/logo-header-threatdown-horizontal.svg HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/product-menu-screen.webp HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j.php?a=805334&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&vn=2 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_static/??-eJyNjUEOhCAQBD+07Gg84MX4FoEJEnGYMKDfX8yejBdv3dVJNZysbKKCVIBj9YEEFncsZNEpXxs3mL3inCAGAweSSxm4mhhk5Ywit6JMTHZrChEsArbNf/Jt8QPvzx6Ci16SeZ963fWDHgfd/QBiR0dN HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/px-center.png HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w.js?ver=202413 HTTP/1.1Host: stats.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/CORP_SOM_2024_Resource_TN_2.png HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/x-logo.svg HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/dist/url.min.js?m=1710875769g HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /e-202413.js HTTP/1.1Host: stats.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.js?minify=false&ver=e542366027ed428e7f4c HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.gif?cd=0&a=805334&d=threatdown.com&u=DD81812FF9924922ADBB4749FE017257E&h=517868bf31236160b54cb56557ba6b86&t=false HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web/djIkdGU6Ny4wOmFzeW5jJWdxdWVyeQ==/tag-3b111c75d9433a455983f12ca040dbdb.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.threatdown.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/js/script.min.js?m=1711561442g HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86
Source: global traffic	HTTP traffic detected: GET /_static/??-eJzTLy/QzcxLzilNSS3WzwKiwtLUokoopZebmaeXVayjj0+Rbm5melFiSSpUsX2uraG5oYGFuam5mWUWAK+OIis= HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/threatdown-logo.svg HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/masterpage-svg.svg HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86
Source: global traffic	HTTP traffic detected: GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.7511798042166511 HTTP/1.1Host: pixel.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=220729883&post=247&tz=0&srv=www.threatdown.com&hp=vip&j=1%3A13.2.2&host=www.threatdown.com&ref=&rand=0.4676202923051356 HTTP/1.1Host: pixel.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings.js?a=805334&settings_type=1&vn=7.0&exc=4 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web/djIkYTo0LjA6bm9qcXVlcnksdHI6Ny4w/tag-43de7e3097c45e1309fa8124610650de.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.threatdown.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.gif?cd=0&a=805334&d=threatdown.com&u=DD81812FF9924922ADBB4749FE017257E&h=517868bf31236160b54cb56557ba6b86&t=false HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.css?minify=false&ver=8974e0d29b5e5c14f39c HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.defaultVendors.js?minify=false&ver=80075e4517a23e15184e HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/wp-emoji-release.min.js?ver=6.4.3 HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.js?minify=false&ver=31192f0f7da170d807e1 HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%3Aa_1%2Ct_1%3A0%241711678658%3A96.4585075%3A%3A19_1%2C1_1%3A4_1%2C3_1%3A1; _vwo_sn=0%3A1%3Ar2.visualwebsiteoptimizer.com%3A1%3A1%3Areferrer%3D; _gcl_au=1.1.187328351.1711678662; gaUserID=3226B7D4-849E-4BE5-B15C-284292B54DCA; original_referral_url=malwarebytes.com; most_recent_referral_url=malwarebytes.com; _ga=GA1.1.746274578.1711678643; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Mar+29+2024+03%3A17%3A43+GMT%2B0100+(Central+European+Standard+Time)&version=202402.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=2e0205e2-2a52-4d12-ba26-dbfbe6e4d362&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.malwarebytes.com%2Feula&groups=BG71%3A1%2CC0001%3A1%2CC0003%3A1%2CC0002%3A1%2CC0004%3A1; _dc_gtm_UA-3347303-10=1; _uetsid=86e766b0ed7211eea004ff4328b42c6b; _uetvid=86e7b310ed7211eea9a9495d3a6c3ca0; _ga_K8KCHE3KSC=GS1.1.1711678643.1.1.1711678664.39.0.0; _mkto_trk=id:805-USG-300&token:_mch-malwarebytes.com-1711678664312-94067
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /include/1711678800000/7ghicgw4nish.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=220729883&post=247&tz=0&srv=www.threatdown.com&hp=vip&j=1%3A13.2.2&host=www.threatdown.com&ref=&rand=0.4676202923051356 HTTP/1.1Host: pixel.wp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.7511798042166511 HTTP/1.1Host: pixel.wp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/logo-header-threatdown-horizontal.svg HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/product-menu-screen.webp HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/px-center.png HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/x-logo.svg HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/CORP_SOM_2024_Resource_TN_2.png HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/threatdown-logo.svg HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/mbc/images/masterpage-svg.svg HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; _vwo_ds=3%241711678684%3A23.26438022%3A%3A; _vwo_sn=0%3A1; ppc_last_visited_page=https://www.threatdown.com/eula/
Source: global traffic	HTTP traffic detected: GET /analysis/worker-70faafffa0475802f5ee03ca5ff74179.js HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=805334&u=DD81812FF9924922ADBB4749FE017257E&s=1711678684&p=1&ed=%7B%22tz%22%3A%22Europe%2FZurich%22%2C%22tO%22%3A%22-1%22%2C%22lt%22%3A%221711678687320%22%2C%22r%22%3A%22%22%2C%22ul%22%3A%22en-us%22%2C%22de%22%3A%22UTF-8%22%2C%22sc%22%3A%2224%22%2C%22sr%22%3A%221280x1024%22%7D&cu=https%253A%252F%252Fwww.threatdown.com%252Feula%252F&r=0&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&eTime=1711678686339&random=0.514061177215668 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/381d1392-b15b-49e3-9cf9-8a5e644c68da/381d1392-b15b-49e3-9cf9-8a5e644c68da.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /universalscript/releases/v0.180.1/bundle.js HTTP/1.1Host: assets.ubembed.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/381d1392-b15b-49e3-9cf9-8a5e644c68da/381d1392-b15b-49e3-9cf9-8a5e644c68da.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=805334&u=DD81812FF9924922ADBB4749FE017257E&s=1711678684&p=1&ed=%7B%22tz%22%3A%22Europe%2FZurich%22%2C%22tO%22%3A%22-1%22%2C%22lt%22%3A%221711678687320%22%2C%22r%22%3A%22%22%2C%22ul%22%3A%22en-us%22%2C%22de%22%3A%22UTF-8%22%2C%22sc%22%3A%2224%22%2C%22sr%22%3A%221280x1024%22%7D&cu=https%253A%252F%252Fwww.threatdown.com%252Feula%252F&r=0&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&eTime=1711678686339&random=0.514061177215668 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?codedo=set_html_and_recording&a=805334&e=%7B%7D&title=ThreatDown%20by%20Malwarebytes%20End%20User%20License%20Agreement&url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&referring_url=&session_id=1711678684&recording_id=1&return_visitor=false&ins=true&start_time=1711678687861&end_time=1711678687976&window_width=1263&window_height=907&sh=1024&sw=1280&vn=4.0.270&rand=0.6135672626392656&eTime=1711678686977&scroll_percentage=15&he=%7B%224%22%3A%22DD81812FF9924922ADBB4749FE017257E%22%7D&count=1 HTTP/1.1Host: r1.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2F HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863 HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.1.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/runtime~main.0c9f6301.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://js.driftt.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/9.4a3e9801.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://js.driftt.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/main~493df0b3.9e1d5232.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://js.driftt.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?codedo=set_html_and_recording&a=805334&e=%7B%7D&title=ThreatDown%20by%20Malwarebytes%20End%20User%20License%20Agreement&url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&referring_url=&session_id=1711678684&recording_id=1&return_visitor=false&ins=true&start_time=1711678687861&end_time=1711678687976&window_width=1263&window_height=907&sh=1024&sw=1280&vn=4.0.270&rand=0.6135672626392656&eTime=1711678686977&scroll_percentage=15&he=%7B%224%22%3A%22DD81812FF9924922ADBB4749FE017257E%22%7D&count=1 HTTP/1.1Host: r1.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/381d1392-b15b-49e3-9cf9-8a5e644c68da/018e8128-76c5-7d6e-84c2-7f2bf9e6b2ff/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/8.ab226b4a.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/16.22abfce0.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/52.b1edaf4a.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/35.d0f1ccda.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/22.6b9a301a.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/19.6f85b843.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/43.7ac85d58.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/20.8c21ea18.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.1.0/assets/v2/otPcPanel.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/26.04e7f30b.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/14.e24a6190.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/11.639238ba.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/18.9c1bd1fb.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/381d1392-b15b-49e3-9cf9-8a5e644c68da/018e8128-76c5-7d6e-84c2-7f2bf9e6b2ff/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/50.de3b5864.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/42.f634da7c.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/29.31d09948.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.1.0/assets/v2/otPcPanel.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/21.b8c41db9.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/8.10f90e75.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/ot_guard_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.threatdown.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/4e1c8bc8-2743-413b-8699-aad2216e8616/85f0f7b8-8176-4fd4-8f7c-995c26a3cc8e/a525caf3-0c8c-4fa6-8ba9-3e55e388875b/ThreatDown_Horizontal_Reverse_1.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/16.9ef4a519.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/powered_by_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/24.92141a53.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/17.672cdd37.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/4e1c8bc8-2743-413b-8699-aad2216e8616/85f0f7b8-8176-4fd4-8f7c-995c26a3cc8e/a525caf3-0c8c-4fa6-8ba9-3e55e388875b/ThreatDown_Horizontal_Reverse_1.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/27.b5e8f5e1.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/25.c695453b.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/39.11d2b6a7.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/0.0b2ebd4a.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/31.c043863a.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/27.42a90a1f.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-3347303-10&cid=1799710383.1711678692&jid=1219353664&gjid=1169422913&_gid=952106950.1711678692&_u=aGBAiEAjBAAAAGAAIg~&z=633994065 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-3347303-10&cid=1799710383.1711678692&jid=1219353664&_u=aGBAiEAjBAAAAGAAIg~&z=598677895 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /core/assets/js/25.b8d3a33a.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core?d=1&embedId=7ghicgw4nish&eId=7ghicgw4nish&region=US&forceShow=false&skipCampaigns=false&sessionId=8e5404ad-1215-4a76-8015-9ec3e22e29fa&sessionStarted=1711678688.763&campaignRefreshToken=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88&hideController=false&pageLoadStartTime=1711678683863&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fwww.threatdown.com%2Feula%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/39.f1d268f5.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/3.07aa08a5.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/1.1bcc8082.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/css/28.812d5a7c.chunk.css HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/3.2a4c7561.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/assets/js/1.0ca46fe3.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-3347303-10&cid=1799710383.1711678692&jid=1219353664&_u=aGBAiEAjBAAAAGAAIg~&z=598677895 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /core/assets/js/28.caa75eae.chunk.js HTTP/1.1Host: js.driftt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.driftt.com/core/chat?d=1&region=US&driftEnableLog=false&pageLoadStartTime=1711678683863Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=805334&url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&session_id=1711678684&recording_id=1&vn=4.0.270&rand=0.7133458348748609&eTime=1711678692281&scroll_percentage=15&fRS=true&he=%7B%224%22%3A%22DD81812FF9924922ADBB4749FE017257E%22%7D&count=2 HTTP/1.1Host: r1.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /widget_bootstrap/ping/v2 HTTP/1.1Host: bootstrap.driftapi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/favicon.svg?w=16 HTTP/1.1Host: www.threatdown.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.threatdown.com/eula/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; ppc_last_visited_page=https://www.threatdown.com/eula/; _vwo_ds=3%3Aa_1%2Ct_0%3A0%241711678684%3A23.26438022%3A%3A%3A4_1%3A2; tk_ai=224y35VUb7XamKM0hJEVAlk6; _vwo_sn=0%3A1%3Ar1.visualwebsiteoptimizer.com%3A1%3A1%3Areferrer%3D; drift_campaign_refresh=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88; _gcl_au=1.1.2127262202.1711678691; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Mar+29+2024+03%3A18%3A11+GMT%2B0100+(Central+European+Standard+Time)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=220d5b04-c0e8-4538-8c38-2908a72d0900&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&groups=BG75%3A1%2CC0001%3A1%2CC0003%3A1%2CC0002%3A1%2CC0004%3A1; _gid=GA1.2.952106950.1711678692; _local_ga_LTWDK0JK3Z=GS1.1.1711678692.1.0.1711678692.0.0.0; _local_ga=GA1.1.1799710383.1711678692; _ga_K8KCHE3KSC=GS1.1.1711678692.1.0.1711678692.60.0.0; _ga=GA1.1.1799710383.1711678692; _mkto_trk=id:805-USG-300&token:_mch-threatdown.com-1711678692151-48380; _dc_gtm_UA-3347303-10=1; drift_aid=5d9066d7-3282-4dde-9d7c-294f8f5aa053; driftt_aid=5d9066d7-3282-4dde-9d7c-294f8f5aa053
Source: global traffic	HTTP traffic detected: GET /analyze?a=805334&url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&session_id=1711678684&recording_id=1&vn=4.0.270&rand=0.7133458348748609&eTime=1711678692281&scroll_percentage=15&fRS=true&he=%7B%224%22%3A%22DD81812FF9924922ADBB4749FE017257E%22%7D&count=2 HTTP/1.1Host: r1.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: GoTvoKqPIuFsKIVqDv42aQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/favicon.svg?w=16 HTTP/1.1Host: www.threatdown.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _vwo_uuid_v2=DD81812FF9924922ADBB4749FE017257E\|517868bf31236160b54cb56557ba6b86; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=DD81812FF9924922ADBB4749FE017257E; ppc_last_visited_page=https://www.threatdown.com/eula/; _vwo_ds=3%3Aa_1%2Ct_0%3A0%241711678684%3A23.26438022%3A%3A%3A4_1%3A2; tk_ai=224y35VUb7XamKM0hJEVAlk6; _vwo_sn=0%3A1%3Ar1.visualwebsiteoptimizer.com%3A1%3A1%3Areferrer%3D; drift_campaign_refresh=74ebbc85-7cea-4bed-8d04-0a00c1fc4a88; _gcl_au=1.1.2127262202.1711678691; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Mar+29+2024+03%3A18%3A11+GMT%2B0100+(Central+European+Standard+Time)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=220d5b04-c0e8-4538-8c38-2908a72d0900&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&groups=BG75%3A1%2CC0001%3A1%2CC0003%3A1%2CC0002%3A1%2CC0004%3A1; _gid=GA1.2.952106950.1711678692; _local_ga_LTWDK0JK3Z=GS1.1.1711678692.1.0.1711678692.0.0.0; _local_ga=GA1.1.1799710383.1711678692; _ga_K8KCHE3KSC=GS1.1.1711678692.1.0.1711678692.60.0.0; _ga=GA1.1.1799710383.1711678692; _mkto_trk=id:805-USG-300&token:_mch-threatdown.com-1711678692151-48380; _dc_gtm_UA-3347303-10=1; drift_aid=5d9066d7-3282-4dde-9d7c-294f8f5aa053; driftt_aid=5d9066d7-3282-4dde-9d7c-294f8f5aa053
Source: global traffic	HTTP traffic detected: GET /widget_bootstrap HTTP/1.1Host: bootstrap.driftapi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: tXwqCYVrZEmx3PmZ0k6Ilg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /monitoring/metrics/widget/init/v3 HTTP/1.1Host: metrics.api.drift.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /monitoring/metrics/event3/bulk HTTP/1.1Host: metrics.api.drift.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: bYArZhjaHYxZxTxVicfdjg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /monitoring/metrics/add/bulk/v2 HTTP/1.1Host: metrics.api.drift.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j.php?a=622914&u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&vn=2 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/locate HTTP/1.1Host: genesis.malwarebytes.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gid=GA1.2.859933239.1711678643; _vwo_uuid_v2=D37510582766F57CE9172FC6B1B42626D\|71a8d44c7b9bba69e783641e1604b8d0; _vis_opt_s=1%7C; _vis_opt_test_cookie=1; _vwo_uuid=D37510582766F57CE9172FC6B1B42626D; _vwo_ds=3%3Aa_1%2Ct_1%3A0%241711678658%3A96.4585075%3A%3A19_1%2C1_1%3A4_1%2C3_1%3A1; _vwo_sn=0%3A1%3Ar2.visualwebsiteoptimizer.com%3A1%3A1%3Areferrer%3D; _gcl_au=1.1.187328351.1711678662; gaUserID=3226B7D4-849E-4BE5-B15C-284292B54DCA; original_referral_url=malwarebytes.com; most_recent_referral_url=malwarebytes.com; _ga=GA1.1.746274578.1711678643; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Mar+29+2024+03%3A17%3A43+GMT%2B0100+(Central+European+Standard+Time)&version=202402.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=2e0205e2-2a52-4d12-ba26-dbfbe6e4d362&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.malwarebytes.com%2Feula&groups=BG71%3A1%2CC0001%3A1%2CC0003%3A1%2CC0002%3A1%2CC0004%3A1; _dc_gtm_UA-3347303-10=1; _uetsid=86e766b0ed7211eea004ff4328b42c6b; _uetvid=86e7b310ed7211eea9a9495d3a6c3ca0; _ga_K8KCHE3KSC=GS1.1.1711678643.1.1.1711678664.39.0.0; _mkto_trk=id:805-USG-300&token:_mch-malwarebytes.com-1711678664312-94067
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=227197325&post=5009&tz=-7&srv=www.malwarebytes.com&hp=vip&j=1%3A13.2.2&host=www.malwarebytes.com&ref=&fcp=0&rand=0.7827696892364191 HTTP/1.1Host: pixel.wp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings.js?a=622914&settings_type=1&vn=7.0&exc=1\|48\|3\|4\|161 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: W/"1711665058"
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=2&update=1&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&_cu=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&eTime=1711678705838&random=0.21834115142235433 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: YgkQIlLj6OkpWs1rB4+q3Q==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /g.gif?v=ext&blog=227197325&post=5009&tz=-7&srv=www.malwarebytes.com&hp=vip&j=1%3A13.2.2&host=www.malwarebytes.com&ref=&fcp=0&rand=0.7827696892364191 HTTP/1.1Host: pixel.wp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uwt.js HTTP/1.1Host: static.ads-twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "32ad004436155ec972bc50e6238b5b67"If-Modified-Since: Thu, 27 Oct 2022 18:55:37 GMT
Source: global traffic	HTTP traffic detected: GET /s.gif?account_id=622914&u=D37510582766F57CE9172FC6B1B42626D&s=1711678658&p=2&update=1&cq=1&vn=7.0.340&vns=undefined&vno=4.0.270&_cu=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&eTime=1711678705838&random=0.21834115142235433 HTTP/1.1Host: dev.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /464526.gif HTTP/1.1Host: id.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rlas3=no6FWdzAs7UqjuS6SpLEJdWqw+hpgdJkKQdHHinLxeY=; pxrc=CMnJmLAGEgUI6AcQABIGCMrdKhAA
Source: global traffic	HTTP traffic detected: GET /s/sync?exc=lr HTTP/1.1Host: s.company-target.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=2c1f1154-2d99-4eed-a8d3-a0849e7d153c; tuuid_lu=1711678664\|ix:0\|mctv:0\|rp:0
Source: global traffic	HTTP traffic detected: GET /td/rul/930356311?random=1711678706851&cv=11&fst=1711678706851&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/930356311/?random=1711678706851&cv=11&fst=1711678706851&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /td/rul/407675570?random=1711678706881&cv=11&fst=1711678706881&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=dafb3e78-299e-4e50-a33f-5eb621198b65&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5976ebb1-6699-4826-8e11-816c6da6b111&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: t.coConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: muc_ads=5e01dda0-88a2-4b35-8a35-8e5cbda3c9d3
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=dafb3e78-299e-4e50-a33f-5eb621198b65&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5976ebb1-6699-4826-8e11-816c6da6b111&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: analytics.twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: personalization_id="v1_Z4Rb+x6W2Q0ieA486RzPkA=="
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/407675570/?random=1711678706881&cv=11&fst=1711678706881&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&hn=www.googleadservices.com&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&did=dYWJhMj&gdid=dYWJhMj&npa=0&pscdl=noapi&auid=187328351.1711678662&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /464526.gif HTTP/1.1Host: id.rlcdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pxrc=CMnJmLAGEgUI6AcQABIGCMrdKhAA; rlas3=ttCMlrm87SwqjuS6SpLEJdWqw+hpgdJkKQdHHinLxeY=
Source: global traffic	HTTP traffic detected: GET /bg9s?x-amz-cf-id=_jCSXJtFC5rDPHeXgWpM1fgzZ7nZR0Vbyf8eWJ0UsMjS9gn6xUgwjQ==&api-version=v2 HTTP/1.1Host: tag-logger.demandbase.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.malwarebytes.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/930356311/?random=1711678706851&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtq17Mo52wUKb-cxY9PM6bblEUfllbEAgf8Eu_XD2TxXOnUkrs2&random=2530517859&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/407675570/?random=1711678706881&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtqyuZDiigKBo6nrXEmntLihUliD_aEmzuDTOUSGmnAP2ZbDYAP&random=1224982424&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=dafb3e78-299e-4e50-a33f-5eb621198b65&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5976ebb1-6699-4826-8e11-816c6da6b111&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: analytics.twitter.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: personalization_id="v1_Z4Rb+x6W2Q0ieA486RzPkA=="
Source: global traffic	HTTP traffic detected: GET /i/adsct?bci=3&eci=2&event_id=dafb3e78-299e-4e50-a33f-5eb621198b65&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5976ebb1-6699-4826-8e11-816c6da6b111&tw_document_href=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o1m5j&type=javascript&version=2.3.29 HTTP/1.1Host: t.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: muc_ads=5e01dda0-88a2-4b35-8a35-8e5cbda3c9d3
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bg9s?x-amz-cf-id=_jCSXJtFC5rDPHeXgWpM1fgzZ7nZR0Vbyf8eWJ0UsMjS9gn6xUgwjQ==&api-version=v2 HTTP/1.1Host: tag-logger.demandbase.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/930356311/?random=1711678706851&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtq17Mo52wUKb-cxY9PM6bblEUfllbEAgf8Eu_XD2TxXOnUkrs2&random=2530517859&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/407675570/?random=1711678706881&cv=11&fst=1711677600000&bg=ffffff&guid=ON&async=1&gtm=45be43r0v9137103858za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&frm=0&tiba=End%20User%20License%20Agreement%20(EULA)&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtqyuZDiigKBo6nrXEmntLihUliD_aEmzuDTOUSGmnAP2ZbDYAP&random=1224982424&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlaHLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=511=Ef5vPFGw-MZYo5hwe-0ThAVslbxbmvdVZwcHnqVzWHAU14v53MN1VvwvQq8baYfg2-IAtqZBV5NOL5rvj2NWIqrz377UhLdHtOgE-tJaBlUBYJEhuGsQdqni3oTJg0brqv1djdiLJyvTSUhdK-c5JWadCSsULPLzhSx-F-6wOg4
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v2/ip.json?referrer=&page=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&page_title=End%20User%20License%20Agreement%20(EULA) HTTP/1.1Host: api.company-target.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=2c1f1154-2d99-4eed-a8d3-a0849e7d153c; tuuid_lu=1711678707\|ix:0\|mctv:0\|rp:0
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 7dHUFwxRVAVUE5Y3DqEq9Q==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.17976688033103216&eTime=1711678720080&recording=mm_13666_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_588_82_635_438&fRS=true&movements=194&clicks=0&duration=2.064&start_time=1711678660410&end_time=1711678674081&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=3 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.17976688033103216&eTime=1711678720080&recording=mm_13666_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_588_82_635_438&fRS=true&movements=194&clicks=0&duration=2.064&start_time=1711678660410&end_time=1711678674081&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=3 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.338907724819423&eTime=1711678724075&recording=mm_17275_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_617_81_664_437%2Cmm_17571_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_670_87_717_443&fRS=true&movements=265&clicks=0&duration=2.404&start_time=1711678660410&end_time=1711678678075&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=4 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.338907724819423&eTime=1711678724075&recording=mm_17275_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_617_81_664_437%2Cmm_17571_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_670_87_717_443&fRS=true&movements=265&clicks=0&duration=2.404&start_time=1711678660410&end_time=1711678678075&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=4 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: fxtsylBgaWobpYcj/oeXrg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.20831884742816742&eTime=1711678728067&recording=mm_20867_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_576_81_623_437%2Cmm_21168_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_518_91_565_447%2Cmm_21467_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_457_102_504_458&fRS=true&movements=352&clicks=0&duration=2.398&start_time=1711678660410&end_time=1711678682067&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=5 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.20831884742816742&eTime=1711678728067&recording=mm_20867_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_576_81_623_437%2Cmm_21168_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_518_91_565_447%2Cmm_21467_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_457_102_504_458&fRS=true&movements=352&clicks=0&duration=2.398&start_time=1711678660410&end_time=1711678682067&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=5 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.3546012810844086&eTime=1711678732068&recording=mm_24775_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_582_85_629_441%2Cmm_25068_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_560_100_607_456%2Cmm_25367_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_536_115_583_471&fRS=true&movements=428&clicks=0&duration=2.695&start_time=1711678660410&end_time=1711678686068&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=7 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.3546012810844086&eTime=1711678732068&recording=mm_24775_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_582_85_629_441%2Cmm_25068_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_560_100_607_456%2Cmm_25367_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P_1170_130_536_115_583_471&fRS=true&movements=428&clicks=0&duration=2.695&start_time=1711678660410&end_time=1711678686068&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=7 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: Z3gafwkV3iaQKh9tiwp+yA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.5755490027692138&eTime=1711678740651&recording=mc_33732_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_323_755_%7B11%7D%2Cmm_33775_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_320_759&rm=%7B%22ct%22%3A%5B11%2C0%5D%7D&mc=mc_33732_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_323_755&fRS=true&movements=584&clicks=1&duration=0.308&start_time=1711678660410&end_time=1711678694651&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=11 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.5755490027692138&eTime=1711678740651&recording=mc_33732_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_323_755_%7B11%7D%2Cmm_33775_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_320_759&rm=%7B%22ct%22%3A%5B11%2C0%5D%7D&mc=mc_33732_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_273_0_323_755&fRS=true&movements=584&clicks=1&duration=0.308&start_time=1711678660410&end_time=1711678694651&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=11 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.7600437965002955&eTime=1711678748622&recording=mc_41698_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_128_24_184_776_%7B11%7D%2Cmm_41868_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_128_24_175_783&rm=%7B%22ct%22%3A%5B11%2C0%5D%7D&fRS=true&movements=696&clicks=1&duration=0.3&start_time=1711678660410&end_time=1711678702622&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=14 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.malwarebytes.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATNzE1MjEtMjE0NTE4NzA0MzctNGQABm9yZ19pZG0AAAAFNzE1MjFkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsyMTQ1MTg3MDQzN2QACXVzZXJfdHlwZWQABGxlYWRuBgDtKACIjgFiAAFRgA.t-D6mTPvOvdBQpgql8_-j5bZ4u9z5FVtldIVNEfdIDU&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1Host: 71521-21.chat.api.drift.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://js.driftt.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: SAxdV3HOIne+2kWThYJeIw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /analyze?a=622914&url=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary&session_id=1711678658&recording_id=2&vn=4.0.270&rand=0.7600437965002955&eTime=1711678748622&recording=mc_41698_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_128_24_184_776_%7B11%7D%2Cmm_41868_BODY%20%3E%20DIV%23page.site%20%3E%20A.skip-link%3Afirst-child%20%2B%20HEADER%23masthead.site-header%20%2B%20MAIN%23primary.site-main%20%3E%20ARTICLE%23post-5009.malwarebytes-post-article%20%3E%20DIV.entry-content%3Afirst-child%20%3E%20DIV.has-global-padding%3Afirst-child%20%3E%20H1%23h-malwarebytes-software-license-agreement.wp-block-heading%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P%20%2B%20P_1170_260_128_24_175_783&rm=%7B%22ct%22%3A%5B11%2C0%5D%7D&fRS=true&movements=696&clicks=1&duration=0.3&start_time=1711678660410&end_time=1711678702622&re=%7B%224%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&he=%7B%223%22%3A%22D37510582766F57CE9172FC6B1B42626D%22%7D&count=14 HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analyze?_a=622914&_u=https%3A%2F%2Fwww.malwarebytes.com%2Feula%23primary HTTP/1.1Host: r2.visualwebsiteoptimizer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_486.1.dr	String found in binary or memory: <a href="https://www.facebook.com/Malwarebytes" id="cta-footer-social-facebook-en" class="social socicon-facebook" target="_blank" rel="noopener"> equals www.facebook.com (Facebook)
Source: chromecache_486.1.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/malwarebytes" id="cta-footer-social-linkedin-en" class="social socicon-linkedin" target="_blank" rel="noopener"> equals www.linkedin.com (Linkedin)
Source: chromecache_486.1.dr	String found in binary or memory: <a href="https://www.youtube.com/user/Malwarebytes" id="cta-footer-social-youtube-en" class="social socicon-youtube" target="_blank" rel="noopener"> equals www.youtube.com (Youtube)
Source: chromecache_533.1.dr	String found in binary or memory: <a id="cta-navblock-social-linkedin-en" class="social socicon-linkedin" href="https://www.linkedin.com/company/threatdown.com/about/" aria-label="Visit Malwarebytes on LinkedIn" target="_blank"> equals www.linkedin.com (Linkedin)
Source: chromecache_533.1.dr	String found in binary or memory: <a id="cta-footer-social-linkedin-en" class="social socicon-linkedin" href="https://www.linkedin.com/company/threatdown.com/about/" aria-label="Visit Malwarebytes on LinkedIn" target="_blank"> equals www.linkedin.com (Linkedin)
Source: chromecache_533.1.dr	String found in binary or memory: <a class=" menu-item menu-item-type-custom menu-item-object-custom" href="https://www.youtube.com/malwarebytes">Product Videos</a> equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: "https://www.facebook.com/AppStore/" equals www.facebook.com (Facebook)
Source: chromecache_467.1.dr	String found in binary or memory: Access all chassis and component information for the entire group when connected to Lead Chassis over Quick Sync 2 (previously this feature was available only over network)\\n \\nFor an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk \\nNote that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number.\",\"releaseDate\":\"2020-06-15\",\"releaseTimestamp\":\"2020-06-15T00:36:25Z\"},{\"versionDisplay\":\"3.3\",\"releaseNotes\":\"OpenManage Mobile now offers more features to securely provision and monitor PowerEdge servers and MX7000 chassis.\\n\\nMX7000: View health overlays for the back of chassis when in Augmented Reality mode. Also, assign backup lead chassis (for lead redundancy).\u2028\\n\\nSecurity: Verify CA certificates from iDRAC automatically.\\n\\nConvenience: Remotely perform a full power cycle on a server. (It is the equivalent of physically detaching and attaching the power cable)\\n\\nAs always, with OpenManage Mobile:\u2028\\n equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: Consoles with Power Manager Plugin installed display power, thermal, and space statistics on the OME dashboard. \\n\\nFor an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk \\n\\nNote that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number. \",\"releaseDate\":\"2022-08-30\",\"releaseTimestamp\":\"2022-08-30T11:32:16Z\"},{\"versionDisplay\":\"4.2\",\"releaseNotes\":\"What equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: Consoles with configured OIDC providers can be accessed by authenticating to the provider instead of a local account. \\n\\nFor an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk \\n\\nNote that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number.\",\"releaseDate\":\"2023-01-13\",\"releaseTimestamp\":\"2023-01-13T05:44:57Z\"},{\"versionDisplay\":\"4.3\",\"releaseNotes\":\"When OMM is connected to OpenManage Enterprise \\n equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: Drill down into a specific set of alerts or devices in your environment easily\\n \\nFor an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk \\nNote that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number.\",\"releaseDate\":\"2020-10-14\",\"releaseTimestamp\":\"2020-10-14T13:19:47Z\"},{\"versionDisplay\":\"4.0\",\"releaseNotes\":\"What equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: displays context relevant videos about the hardware based on available error logs \\n\\nFor any questions, please send an email to OM_Mobile_Feedback@Dell.com \"},\"isStandaloneWithCompanionForWatchOS\":false,\"isAppleWatchSupported\":false,\"requiredCapabilitiesForRealityDevice\":\"arm64 \",\"websiteUrl\":\"http://delltechcenter.com/omm\",\"versionHistory\":[{\"versionDisplay\":\"4.4.1\",\"releaseNotes\":\"OpenManage Mobile 4.4.1 contains some stability fixes and enhancements. For an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk Note that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number.\",\"releaseDate\":\"2023-08-14\",\"releaseTimestamp\":\"2023-08-14T09:45:13Z\"},{\"versionDisplay\":\"4.4\",\"releaseNotes\":\"What equals www.youtube.com (Youtube)
Source: chromecache_486.1.dr	String found in binary or memory: <div class="wp-block-malware-bytes-menu-links menu-links layout-2 has-item-border" id="menu-links-bcd0a65f-6947-4872-b42d-09e853c903d9"><div class="menu-links__item"><div class="menu-links__title">Featured Content</div><ul><li>Activate Malwarebytes Privacy on Windows device.</li></ul><div class="menu-links__cta"><a id="cta-navbar-support-privacy_activation-en-test" href="https://support.malwarebytes.com/hc/en-us/articles/360046199873-Activate-Malwarebytes-Privacy-on-Windows-device">See Content</a></div></div><div class="menu-links__item"><div class="menu-links__title"> </div><div class="menu-links__cta"><a rel="noreferrer noopener" id="cta-navbar-support-support_services-en-test" href="https://www.youtube.com/malwarebytes" target="_blank">Product Videos</a></div></div></div> equals www.youtube.com (Youtube)
Source: chromecache_566.1.dr, chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: Math.round(p);v["gtm.videoCurrentTime"]=Math.round(q);v["gtm.videoElapsedTime"]=Math.round(f);v["gtm.videoPercent"]=r;v["gtm.videoVisible"]=t;return v},Cj:function(){e=yb()},kd:function(){d()}}};var Dc=ia(["data-gtm-yt-inspected-"]),uC=["www.youtube.com","www.youtube-nocookie.com"],vC,wC=!1; equals www.youtube.com (Youtube)
Source: chromecache_467.1.dr	String found in binary or memory: \\tEnhanced visuals for AR mode\\n\\nFor an overview of OpenManage Mobile, please view: https://www.youtube.com/watch?v=zoAzHI_gykk\\nNote that some OMM features will vary by what is being accessed (iDRAC, MX7000 or OpenManage Enterprise), how it is being accessed (over the network or via Quick Sync 2) and the PowerEdge server model number.\\n\",\"releaseDate\":\"2021-12-14\",\"releaseTimestamp\":\"2021-12-14T16:27:33Z\"},{\"versionDisplay\":\"4.1\",\"releaseNotes\":\"What equals www.youtube.com (Youtube)
Source: chromecache_566.1.dr	String found in binary or memory: c(U[ja],E.te)){iI("https://www.youtube.com/iframe_api");t=!0;break}})}}else H(u.vtp_gtmOnSuccess)}var p=["www.youtube.com","www.youtube-nocookie.com"],q={UNSTARTED:-1,ENDED:0,PLAYING:1,PAUSED:2,BUFFERING:3,CUED:5},r,t=!1;(function(u){Y.__ytl=u;Y.__ytl.o="ytl";Y.__ytl.isVendorTemplate=!0;Y.__ytl.priorityOverride=0;Y.__ytl.isInfrastructure=!1;Y.__ytl.runInSiloedMode=!1})(function(u){u.vtp_triggerStartOption?n(u):Bw(function(){n(u)})})}(); equals www.youtube.com (Youtube)
Source: chromecache_659.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var h=nA(a,c,e);M(121);if("https://www.facebook.com/tr/"===h["gtm.elementUrl"])return M(122),!0;if(d&&f){for(var m=Ib(b,g.length),n=0;n<g.length;++n)g[n](h,m);return m.done}for(var p=0;p<g.length;++p)g[p](h,function(){});return!0},qA=function(){var a=[],b=function(c){return nb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_393.1.dr, chromecache_526.1.dr	String found in binary or memory: function(h){return h.form===g})};return{store:function(g,h){var m=f(g);m?m.button=h:e.push({form:g,button:h})},get:function(g){var h=f(g);return h?h.button:null}}}function d(e,f,g,h,m){var n=Oz("fsl",g?"nv.mwt":"mwt",0),p;p=g?Oz("fsl","nv.ids",[]):Oz("fsl","ids",[]);if(!p.length)return!0;var q=Kz(e,"gtm.formSubmit",p),r=e.action;r&&r.tagName&&(r=e.cloneNode(!1).action);q["gtm.elementUrl"]=r;M(121);if("https://www.facebook.com/tr/"===r)return M(122),!0;m&&(q["gtm.formSubmitElement"]=m);if(h&&n){if(!nI(q, equals www.facebook.com (Facebook)
Source: chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: f\|\|g.length\|\|h.length))return;var n={Ng:d,Lg:e,Mg:f,xh:g,yh:h,te:m,vb:b},p=z.YT,q=function(){CC(n)};if(p)return p.ready&&p.ready(q),b;var r=z.onYouTubeIframeAPIReady;z.onYouTubeIframeAPIReady=function(){r&&r();q()};H(function(){for(var t=D.getElementsByTagName("script"),u=t.length,v=0;v<u;v++){var w=t[v].getAttribute("src");if(FC(w,"iframe_api")\|\|FC(w,"player_api"))return b}for(var x=D.getElementsByTagName("iframe"),y=x.length,B=0;B<y;B++)if(!wC&&DC(x[B],n.te))return Oc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_549.1.dr	String found in binary or memory: gf=u(["https://sandbox.google.com/tools/feedback/"]),hf=u(["https://www.google.cn/tools/feedback/"]),jf=u(["https://help.youtube.com/tools/feedback/"]),kf=u(["https://asx-frontend-staging.corp.google.com/inapp/"]),lf=u(["https://asx-frontend-staging.corp.google.com/tools/feedback/"]),mf=u(["https://localhost.corp.google.com/inapp/"]),nf=u(["https://localhost.proxy.googlers.com/inapp/"]),of=S(Qe),pf=[S(Re),S(Se)],qf=[S(Te),S(Ue),S(Ve),S(We),S(Xe),S(Ye),S(Ze),S($e),S(af),S(bf)],rf=[S(cf),S(df)],sf= equals www.youtube.com (Youtube)
Source: chromecache_629.1.dr	String found in binary or memory: return a=n===l.CARD_DISPLAY_STYLES.appOfTheDay?_:n===l.CARD_DISPLAY_STYLES.gameOfTheDay?P:n===l.CARD_DISPLAY_STYLES.inAppPurchase?O:this.getTitleKey(e),this.i18n.t(a,{appName:r,storyTitle:i,_disableSafeString:!0})}getOGType(){return i.default.meta.og.type.story}getTwitterSite(){return this.appViewState.isMacAppStoreView?this.i18n.t("WEA.EditorialItemProductPages.Twitter.site.macOs",{_disableSafeString:!0}):super.getTwitterSite(...arguments)}getTwitterTitle(){return this.getOGTitle(...arguments)}getSchemaTags(e){const{product:t}=e.viewModel,r=E(t),[i]=r,n=(0,l.hasShelfDisplay)(i,"collectionLockup"),{lastPublishedDate:a}=t,o={"@type":"Organization",name:"Apple Inc",url:"http://www.apple.com",logo:{"@type":"ImageObject",url:"https://www.apple.com/ac/structured-data/images/knowledge_graph_logo.png"}},s=this.getOGImageTags(e).find((e=>"og:image"===e.name))\|\|{},p={"@context":"http://schema.org",name:this.getSeoTitle(e)??this.getTitle(e),description:this.getSeoDescription(e)??this.getDescription(e),image:s.content,author:o,publisher:o,headline:this.getOGTitle(e),dateModified:a,datePublished:a} equals www.twitter.com (Twitter)
Source: chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_659.1.dr, chromecache_421.1.dr	String found in binary or memory: return b}sC.D="internal.enableAutoEventOnTimer";var Dc=ia(["data-gtm-yt-inspected-"]),uC=["www.youtube.com","www.youtube-nocookie.com"],vC,wC=!1; equals www.youtube.com (Youtube)
Source: chromecache_659.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: var HB=function(a,b,c,d,e){var f=Oz("fsl",c?"nv.mwt":"mwt",0),g;g=c?Oz("fsl","nv.ids",[]):Oz("fsl","ids",[]);if(!g.length)return!0;var h=Kz(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);M(121);if("https://www.facebook.com/tr/"===m)return M(122),!0;h["gtm.elementUrl"]=m;h["gtm.formCanceled"]=c;null!=a.getAttribute("name")&&(h["gtm.interactedFormName"]=a.getAttribute("name"));e&&(h["gtm.formSubmitElement"]=e,h["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!Ay(h,By(b, equals www.facebook.com (Facebook)

Source: unknown

DNS traffic detected: queries for: cloud.malwarebytes.com

Source: unknown

Source: chromecache_411.1.dr	String found in binary or memory: http://127.0.0.1:$
Source: chromecache_467.1.dr	String found in binary or memory: http://delltechcenter.com/omm
Source: chromecache_400.1.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_400.1.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_610.1.dr	String found in binary or memory: http://git.io/yBU2rg
Source: chromecache_519.1.dr	String found in binary or memory: http://jedwatson.github.io/classnames
Source: chromecache_549.1.dr	String found in binary or memory: http://localhost.corp.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: http://localhost.proxy.googlers.com/inapp/
Source: chromecache_629.1.dr	String found in binary or memory: http://reportaproblem.apple.com
Source: chromecache_629.1.dr, chromecache_467.1.dr	String found in binary or memory: http://schema.org
Source: chromecache_629.1.dr	String found in binary or memory: http://schema.org/ItemListOrderAscending
Source: chromecache_312.1.dr	String found in binary or memory: http://support.google.com/googleplay?p=report_review_computer
Source: chromecache_335.1.dr	String found in binary or memory: http://threatdown.com/pricing
Source: chromecache_335.1.dr	String found in binary or memory: http://virustotal.com/
Source: chromecache_312.1.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_629.1.dr	String found in binary or memory: http://www.apple.com
Source: chromecache_467.1.dr	String found in binary or memory: http://www.apple.com/itunes/download/
Source: chromecache_566.1.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_566.1.dr	String found in binary or memory: https://ade.googlesyndication.com
Source: chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk
Source: chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://adservice.googlesyndication.com/pagead/regclk
Source: chromecache_447.1.dr	String found in binary or memory: https://agent.pendo.io/licenses
Source: chromecache_467.1.dr	String found in binary or memory: https://amp-api.apps.apple.com
Source: chromecache_629.1.dr	String found in binary or memory: https://amp-api.books.apple.com/
Source: chromecache_629.1.dr	String found in binary or memory: https://amp.apple.com
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_467.1.dr	String found in binary or memory: https://api-edge.apps.apple.com
Source: chromecache_629.1.dr	String found in binary or memory: https://api.books.apple.com/
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://api.w.org/
Source: chromecache_369.1.dr	String found in binary or memory: https://apis.google.com/js/api.js
Source: chromecache_549.1.dr	String found in binary or memory: https://apis.google.com/js/client.js
Source: chromecache_669.1.dr	String found in binary or memory: https://app.upsellit.com
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://app.vwo.com/visitor-behavior-analysis/dist/codechecker/cc.min.js?r=
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/#organization
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/$
Source: chromecache_548.1.dr	String found in binary or memory: https://apps.apple.com/US/app/id1327105431?mt=8
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/assets/images/knowledge-graph/apps.png
Source: chromecache_629.1.dr, chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/story/id1538632801
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/story/id1539235847
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/story/id1604959672
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/us/app/apple-podcasts/id525463029
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/cyrus-identity-by-malwarebytes/id1541847894
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/cyrus-identity-by-malwarebytes/id1541847894"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/endpoint-central/id1069313634
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/endpoint-central/id1069313634"
Source: chromecache_335.1.dr	String found in binary or memory: https://apps.apple.com/us/app/malwarebytes-admin/id1666801296
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/malwarebytes-mobile-security/id1327105431
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/malwarebytes-mobile-security/id1327105431"
Source: chromecache_548.1.dr, chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/malwarebytes-privacy-vpn/id1504101226
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/malwarebytes-privacy-vpn/id1504101226"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/pax8/id1660025682
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/pax8/id1660025682"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/sonicexpress/id1469304568
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/sonicexpress/id1469304568"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/spiceworks-help-desk/id1582708054
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/spiceworks-help-desk/id1582708054"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/superops/id1629840856
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/superops/id1629840856"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/threatdown-admin/id1666801296
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/threatdown-mobile-security/id1635127079
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/threatdown-mobile-security/id1635127079"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/ubiquiti-portal/id6451146502
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/app/ubiquiti-portal/id6451146502"
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/developer/malwarebytes/id610302098
Source: chromecache_467.1.dr	String found in binary or memory: https://apps.apple.com/us/developer/malwarebytes/id610302098"
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/us/story/id1436214772
Source: chromecache_629.1.dr	String found in binary or memory: https://apps.apple.com/us/story/id1699686830
Source: chromecache_596.1.dr	String found in binary or memory: https://assets.ubembed.com/universalscript/releases/v0.180.1/bundle.js
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_335.1.dr	String found in binary or memory: https://attack.mitre.org/tactics/
Source: chromecache_467.1.dr	String found in binary or memory: https://blog.sonicwall.com/en-us/2020/08/introducing-the-sonicexpress-mobile-app/
Source: chromecache_486.1.dr	String found in binary or memory: https://buy.malwarebytes.com
Source: chromecache_456.1.dr	String found in binary or memory: https://buy.music.apple.com/account/v1/affiliation/association
Source: chromecache_456.1.dr	String found in binary or memory: https://buy.tv.apple.com/account/v1/affiliation/association
Source: chromecache_449.1.dr, chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_631.1.dr	String found in binary or memory: https://cdn.visualwebsiteoptimizer.com/
Source: chromecache_423.1.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_423.1.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_533.1.dr	String found in binary or memory: https://cloud.malwarebytes.com
Source: chromecache_486.1.dr	String found in binary or memory: https://cloud.malwarebytes.com/
Source: chromecache_533.1.dr	String found in binary or memory: https://cloud.malwarebytes.com/auth/login
Source: chromecache_526.1.dr	String found in binary or memory: https://connect.facebook.net/en_US/fbevents.js
Source: chromecache_611.1.dr	String found in binary or memory: https://content.content.cloud.malwarebytes.com/agent/static/
Source: chromecache_447.1.dr	String found in binary or memory: https://content.content.cloud.malwarebytes.com/agent/static/a12d90ec-73be-4aee-72c5-600a4a967d29/pen
Source: chromecache_613.1.dr, chromecache_589.1.dr	String found in binary or memory: https://conversation.api.drift.com
Source: chromecache_613.1.dr, chromecache_589.1.dr	String found in binary or memory: https://customer.api.drift.com
Source: chromecache_467.1.dr	String found in binary or memory: https://cyrus.app/
Source: chromecache_467.1.dr	String found in binary or memory: https://cyrus.app/privacy-policy/
Source: chromecache_467.1.dr	String found in binary or memory: https://cyrus.app/terms-and-conditions/
Source: chromecache_533.1.dr	String found in binary or memory: https://de.malwarebytes.com/business
Source: chromecache_610.1.dr	String found in binary or memory: https://deprecations.emberjs.com/v1.x/#toc_binding-style-attributes.
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/
Source: chromecache_437.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/e.gif?a=
Source: chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/e.gif?a=622914&s=j.php&e=
Source: chromecache_631.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/e.gif?a=805334&s=j.php&e=
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/e.gif?s=mode_det&e=
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/j.php?a=
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/j.php?mode=
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/v.gif?cd=
Source: chromecache_631.1.dr, chromecache_435.1.dr, chromecache_367.1.dr	String found in binary or memory: https://dev.visualwebsiteoptimizer.com/web/djIkYTo0LjA6bm9qcXVlcnksdHI6Ny4w/tag-43de7e3097c45e1309fa
Source: chromecache_423.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_423.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_423.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_645.1.dr, chromecache_528.1.dr, chromecache_410.1.dr, chromecache_487.1.dr	String found in binary or memory: https://developers.marketo.com/MunchkinLicense.pdf
Source: chromecache_548.1.dr	String found in binary or memory: https://downloads.malwarebytes.com/file/mbprivacy-mac
Source: chromecache_486.1.dr	String found in binary or memory: https://ecom.malwarebytes.com
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback-pa.clients6.google.com
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/annotator.css
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/render_frame2.html
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback2-test.corp.google.com/inapp/%
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback2-test.corp.google.com/tools/feedback/%
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/inapp/%
Source: chromecache_549.1.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/tools/feedback/%
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_533.1.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Roboto:ital
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://fonts.gstatic.com
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc-CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc0CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc1CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc2CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc3CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc5CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TLBCc6CsQ.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc-CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc0CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc1CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc2CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc3CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc5CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic-CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic0CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic1CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic2CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic3CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic5CsTKlA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xEIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xFIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xLIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fCBc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fCRc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfABc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfCBc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfCRc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfChc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfCxc4EsA.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_383.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_486.1.dr	String found in binary or memory: https://forums.malwarebytes.com/
Source: chromecache_533.1.dr	String found in binary or memory: https://fr.malwarebytes.com/business
Source: chromecache_456.1.dr	String found in binary or memory: https://git.io/fjule
Source: chromecache_456.1.dr	String found in binary or memory: https://git.io/fxCyr
Source: chromecache_313.1.dr	String found in binary or memory: https://github.com/Automattic/themes/tree/master/varia
Source: chromecache_560.1.dr	String found in binary or memory: https://github.com/ashtuchkin/iconv-lite/wiki/Use-Buffers-when-decoding
Source: chromecache_526.1.dr	String found in binary or memory: https://github.com/krux/postscribe/blob/master/LICENSE.
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://gmpg.org/xfn/11
Source: chromecache_335.1.dr	String found in binary or memory: https://go.malwarebytes.com/1123_WB_NA_TheBigRevealRoadmapWebinar.LP.html?utm_source=nebula&utm_medi
Source: chromecache_421.1.dr	String found in binary or memory: https://google.com
Source: chromecache_421.1.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_549.1.dr	String found in binary or memory: https://gstatic.com/uservoice/surveys/resources/
Source: chromecache_549.1.dr	String found in binary or memory: https://help.youtube.com/tools/feedback/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Features116/v4/6b/26/61/6b266131-b03c-10b8-5640-24ed75a1b52
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Features116/v4/6c/bb/46/6cbb4651-ad2b-b7d4-8c0b-da19ece82df
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Features126/v4/22/29/88/222988f5-d687-a390-7bd5-e7ff102c70d
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple112/v4/21/0f/a9/210fa909-dd73-6446-3107-2e3ba7e82889/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple112/v4/70/02/e7/7002e778-5eea-1b5b-7bc9-ba0c01e15000/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple122/v4/9b/dd/69/9bdd69d7-ccbb-8e1a-985c-a607ab06302c/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple122/v4/a0/13/53/a0135348-312e-80a3-7be2-292cae4f59ad/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple126/v4/2d/cd/c9/2dcdc9ad-60f0-b4a1-63b3-db2e9a312de3/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple126/v4/fe/1c/d7/fe1cd75a-9d01-fec4-1ec4-0264b790e83d/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple211/v4/1d/76/5f/1d765faf-d561-d1e1-c4b8-86fce4afd23e/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple211/v4/c7/8f/93/c78f936e-fa3c-2274-a980-69565167d765/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple211/v4/cb/23/b5/cb23b570-b4db-9437-c9f0-2ed24beafafc/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple221/v4/97/80/b0/9780b085-c6a1-8618-6ad0-fab6770eefa4/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple221/v4/c3/54/86/c35486fb-4444-c949-9795-98dddec6afc5/
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/PurpleSource112/v4/a3/56/f7/a356f7e2-eb95-ee26-62a3-1e2930e
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/PurpleSource211/v4/31/00/34/310034cd-8578-cf30-33e5-07c6c29
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/PurpleSource211/v4/a6/e5/9b/a6e59be1-e633-7447-537e-9a05eb9
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/PurpleSource211/v4/dd/3e/f5/dd3ef579-345c-23f9-a37e-459fb4f
Source: chromecache_467.1.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/PurpleSource221/v4/55/01/f3/5501f319-b767-b1bf-6bb1-88d688f
Source: chromecache_467.1.dr	String found in binary or memory: https://is2-ssl.mzstatic.com
Source: chromecache_467.1.dr	String found in binary or memory: https://is3-ssl.mzstatic.com
Source: chromecache_467.1.dr	String found in binary or memory: https://is4-ssl.mzstatic.com
Source: chromecache_467.1.dr	String found in binary or memory: https://is5-ssl.mzstatic.com
Source: chromecache_629.1.dr	String found in binary or memory: https://itunes.apple.com$
Source: chromecache_629.1.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStore.woa/wa/viewFeature?id=1476734846&mt=11
Source: chromecache_629.1.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStore.woa/wa/viewTop?cc=
Source: chromecache_629.1.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStore.woa/wa/viewTop?genreId=38&mt=11
Source: chromecache_456.1.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStoreServices.woa/wa/processRedirectUrl
Source: chromecache_467.1.dr	String found in binary or memory: https://itunes.apple.com/subscribe?app=music
Source: chromecache_467.1.dr	String found in binary or memory: https://itunes.apple.com/us/genre/id6000
Source: chromecache_467.1.dr	String found in binary or memory: https://itunes.apple.com/us/genre/id6000"
Source: chromecache_467.1.dr	String found in binary or memory: https://js-cdn.music.apple.com
Source: chromecache_522.1.dr, chromecache_387.1.dr, chromecache_667.1.dr, chromecache_657.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v1/acknowledgements.txt
Source: chromecache_467.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/amp/musickit.js?t=1710446341146
Source: chromecache_467.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/components/musickit-components/
Source: chromecache_467.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/components/musickit-components//musickit-components.esm.j
Source: chromecache_467.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/components/musickit-components//musickit-components.js?t=
Source: chromecache_456.1.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/media-api
Source: chromecache_613.1.dr, chromecache_589.1.dr	String found in binary or memory: https://js.driftt.com
Source: chromecache_335.1.dr	String found in binary or memory: https://links.malwarebytes.com/support/business/find-pin-id
Source: chromecache_335.1.dr	String found in binary or memory: https://links.malwarebytes.com/support/cloud-add-endpoints
Source: chromecache_335.1.dr	String found in binary or memory: https://links.malwarebytes.com/support/suspicous_activity_epr
Source: chromecache_549.1.dr	String found in binary or memory: https://localhost.corp.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://localhost.proxy.googlers.com/inapp/
Source: chromecache_467.1.dr	String found in binary or memory: https://locate.apple.com/
Source: chromecache_467.1.dr	String found in binary or memory: https://malwarebytes.com/vpn
Source: chromecache_486.1.dr	String found in binary or memory: https://malwarebytes.go-vip.net
Source: chromecache_380.1.dr, chromecache_312.1.dr	String found in binary or memory: https://maps.google.com/?q=
Source: chromecache_613.1.dr, chromecache_589.1.dr	String found in binary or memory: https://metrics.api.drift.com
Source: chromecache_486.1.dr	String found in binary or memory: https://my.malwarebytes.com/en/login
Source: chromecache_486.1.dr	String found in binary or memory: https://my.malwarebytes.com/login
Source: chromecache_508.1.dr	String found in binary or memory: https://myaccount.google.com/termsofservice
Source: chromecache_335.1.dr	String found in binary or memory: https://nvd.nist.gov/vuln/detail/
Source: chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_532.1.dr, chromecache_623.1.dr, chromecache_310.1.dr, chromecache_337.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204/?id=turtlex_join_ig&tx_jig=$
Source: chromecache_449.1.dr, chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://partners.malwarebytes.com/English
Source: chromecache_533.1.dr	String found in binary or memory: https://partners.malwarebytes.com/English/
Source: chromecache_411.1.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js?rk=1
Source: chromecache_411.1.dr	String found in binary or memory: https://payments.sandbox.google.com/payments/v4/js/integrator.js?rk=1
Source: chromecache_447.1.dr	String found in binary or memory: https://pendo-static-6199424469303296.storage.googleapis.com
Source: chromecache_486.1.dr	String found in binary or memory: https://plausible.io/js/script.js
Source: chromecache_312.1.dr	String found in binary or memory: https://play.google.com
Source: chromecache_411.1.dr	String found in binary or memory: https://play.google.com/
Source: chromecache_380.1.dr, chromecache_312.1.dr	String found in binary or memory: https://play.google.com/about/comment-posting-policy?hl=
Source: chromecache_380.1.dr	String found in binary or memory: https://play.google.com/about/play-terms/index.html;target;_blank;class;cOP9Jc
Source: chromecache_380.1.dr	String found in binary or memory: https://play.google.com/googleplaygames
Source: chromecache_380.1.dr	String found in binary or memory: https://play.google.com/googleplaygames;target;_blank;class;cOP9Jc
Source: chromecache_380.1.dr	String found in binary or memory: https://play.google.com/intl/all_
Source: chromecache_312.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_629.1.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.apple.android.music&referrer=utm_source=$
Source: chromecache_335.1.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.malwarebytes.nebula
Source: chromecache_548.1.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=org.malwarebytes.antimalware
Source: chromecache_548.1.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=org.malwarebytes.harpocrates
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/469845959
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/486138202
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/694145904?h=52d3187658
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/742770100
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/757340435?h=8470ed7d4a
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/816688840?badge=0&autopause=0&player_id=0&app_id=58479%22
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/816688840?texttrack=en
Source: chromecache_335.1.dr	String found in binary or memory: https://player.vimeo.com/video/817779959?texttrack=en
Source: chromecache_380.1.dr, chromecache_508.1.dr	String found in binary or memory: https://policies.google.com/privacy
Source: chromecache_380.1.dr	String found in binary or memory: https://policies.google.com/terms;target;_blank;class;cOP9Jc
Source: chromecache_519.1.dr	String found in binary or memory: https://preactjs.com
Source: chromecache_486.1.dr	String found in binary or memory: https://preprod-www.malwarebytes.com
Source: chromecache_533.1.dr	String found in binary or memory: https://press.malwarebytes.com
Source: chromecache_533.1.dr	String found in binary or memory: https://press.malwarebytes.com/
Source: chromecache_669.1.dr	String found in binary or memory: https://prod.upsellit.com
Source: chromecache_610.1.dr	String found in binary or memory: https://raw.github.com/emberjs/ember.js/master/LICENSE
Source: chromecache_423.1.dr	String found in binary or memory: https://recaptcha.net
Source: chromecache_549.1.dr	String found in binary or memory: https://sandbox.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://sandbox.google.com/inapp/%
Source: chromecache_549.1.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/%
Source: chromecache_380.1.dr, chromecache_533.1.dr, chromecache_486.1.dr, chromecache_467.1.dr	String found in binary or memory: https://schema.org
Source: chromecache_380.1.dr	String found in binary or memory: https://schema.org/InStock
Source: chromecache_380.1.dr, chromecache_312.1.dr	String found in binary or memory: https://schema.org/Offer
Source: chromecache_380.1.dr	String found in binary or memory: https://schema.org/PreOrder
Source: chromecache_549.1.dr	String found in binary or memory: https://scone-pa.clients6.google.com
Source: chromecache_533.1.dr	String found in binary or memory: https://service.malwarebytes.com
Source: chromecache_335.1.dr	String found in binary or memory: https://service.malwarebytes.com/hc/en-us/articles/4413789454995
Source: chromecache_335.1.dr	String found in binary or memory: https://service.malwarebytes.com/hc/en-us/articles/4413799066643
Source: chromecache_526.1.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_448.1.dr	String found in binary or memory: https://ssl.gstatic.com/support/realtime/operator/
Source: chromecache_584.1.dr, chromecache_531.1.dr	String found in binary or memory: https://ssl.gstatic.com/support/realtime/operator/1711440061703/operatordeferred_bin_base.js
Source: chromecache_486.1.dr	String found in binary or memory: https://staging-www-api.malwarebytes.com
Source: chromecache_549.1.dr	String found in binary or memory: https://stagingqual-feedback-pa-googleapis.sandbox.google.com
Source: chromecache_395.1.dr, chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_395.1.dr, chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect?v=2&
Source: chromecache_641.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://stats.wp.com/e-202413.js
Source: chromecache_467.1.dr	String found in binary or memory: https://support.apple.com
Source: chromecache_467.1.dr	String found in binary or memory: https://support.apple.com/HT203046
Source: chromecache_312.1.dr	String found in binary or memory: https://support.google.com
Source: chromecache_549.1.dr, chromecache_448.1.dr	String found in binary or memory: https://support.google.com/
Source: chromecache_411.1.dr	String found in binary or memory: https://support.google.com/googleplay/?p=remote_install_error
Source: chromecache_380.1.dr	String found in binary or memory: https://support.google.com/googleplay/?p=report_content
Source: chromecache_380.1.dr, chromecache_312.1.dr	String found in binary or memory: https://support.google.com/googleplay/answer/10066529
Source: chromecache_411.1.dr	String found in binary or memory: https://support.google.com/googleplay/answer/6014972
Source: chromecache_380.1.dr	String found in binary or memory: https://support.google.com/googleplay?p=eligibility_requirements
Source: chromecache_549.1.dr	String found in binary or memory: https://support.google.com/inapp/
Source: chromecache_549.1.dr	String found in binary or memory: https://support.google.com/inapp/%
Source: chromecache_423.1.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_423.1.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_423.1.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_423.1.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_533.1.dr	String found in binary or memory: https://support.malwarebytes.com
Source: chromecache_486.1.dr	String found in binary or memory: https://support.malwarebytes.com/
Source: chromecache_486.1.dr	String found in binary or memory: https://support.malwarebytes.com/hc/en-us
Source: chromecache_486.1.dr	String found in binary or memory: https://support.malwarebytes.com/hc/en-us/articles/360038524154-Report-a-false-positive-to-Malwareby
Source: chromecache_486.1.dr	String found in binary or memory: https://support.malwarebytes.com/hc/en-us/articles/360046199873-Activate-Malwarebytes-Privacy-on-Win
Source: chromecache_486.1.dr	String found in binary or memory: https://support.threatdown.com
Source: chromecache_467.1.dr	String found in binary or memory: https://support.threatdown.com/
Source: chromecache_533.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/10210956995347
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/14768280542739
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/15917764816403
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/17608312740499
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789306771-Collect-Malwarebytes-Endpoint-Agent-d
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789454995
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789526803
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789526803-Brute-Force-Protection-feature-requir
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789589779
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789774867
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789824787
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789824787-Detections-page-in-Malwarebytes-Nebul
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789904659
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413789938195-Manage-Dashboard-widgets-in-Malwareby
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413799066643
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413799118611
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413799166227
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413799266323
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413799273363
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802085139
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802087443-Setup-notifications-in-Malwarebytes-N
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802103955
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802187411
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802216467
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802550547
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802753555
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4413802805651
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4416306922387
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4417194200723-Apply-operating-system-patch-with-Pat
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4417282329491
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4422355185555
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4422362194451
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/4432407537683
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/5804686261523
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/5831081172755-New-navigation-layout-in-Nebula
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/8476896321555
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/articles/8787932508307
Source: chromecache_533.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/p/oneview
Source: chromecache_335.1.dr	String found in binary or memory: https://support.threatdown.com/hc/en-us/sections/4422311000083-Patch-Management
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_313.1.dr	String found in binary or memory: https://tailwindcss.com
Source: chromecache_613.1.dr, chromecache_589.1.dr	String found in binary or memory: https://targeting.api.drift.com
Source: chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/bjs
Source: chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/bts
Source: chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/buyer.wasm
Source: chromecache_623.1.dr, chromecache_310.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j177844569
Source: chromecache_623.1.dr, chromecache_310.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j476354832
Source: chromecache_532.1.dr, chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j6777810493
Source: chromecache_532.1.dr, chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j6777810496
Source: chromecache_532.1.dr, chromecache_337.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j6780528686
Source: chromecache_623.1.dr, chromecache_310.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j6979234722
Source: chromecache_623.1.dr, chromecache_310.1.dr	String found in binary or memory: https://td.doubleclick.net/td/update?ig_name=1j758809157
Source: chromecache_310.1.dr	String found in binary or memory: https://tdsf.doubleclick.net/td/adfetch/gda?adg_id=156241318702
Source: chromecache_549.1.dr	String found in binary or memory: https://test-scone-pa-googleapis.sandbox.google.com
Source: chromecache_411.1.dr	String found in binary or memory: https://tokenized.play.google.com
Source: chromecache_486.1.dr	String found in binary or memory: https://try.malwarebytes.com/2023-state-of-malware/?utm_source=website
Source: chromecache_533.1.dr	String found in binary or memory: https://try.malwarebytes.com/custom-quote/?ref=NAV
Source: chromecache_486.1.dr	String found in binary or memory: https://try.malwarebytes.com/identity-theft-supplemental-terms
Source: chromecache_533.1.dr	String found in binary or memory: https://try.threatdown.com/2024-state-of-malware/?ref=nav
Source: chromecache_629.1.dr	String found in binary or memory: https://tv.apple.com/search?q=
Source: chromecache_467.1.dr	String found in binary or memory: https://twitter.com/AppStore
Source: chromecache_486.1.dr	String found in binary or memory: https://twitter.com/malwarebytes
Source: chromecache_533.1.dr	String found in binary or memory: https://twitter.com/threat_down
Source: chromecache_369.1.dr	String found in binary or memory: https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
Source: chromecache_313.1.dr	String found in binary or memory: https://underscores.me/
Source: chromecache_313.1.dr	String found in binary or memory: https://underscoretw.com/
Source: chromecache_486.1.dr	String found in binary or memory: https://www-api.malwarebytes.com
Source: chromecache_486.1.dr	String found in binary or memory: https://www.adr.org/Rules
Source: chromecache_629.1.dr, chromecache_467.1.dr	String found in binary or memory: https://www.apple.com
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/#organization
Source: chromecache_629.1.dr	String found in binary or memory: https://www.apple.com/ac/structured-data/images/knowledge_graph_logo.png
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/airpods/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/api-www/global-elements/global-header/v1/assets/globalheader.css
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/apple-arcade/
Source: chromecache_629.1.dr	String found in binary or memory: https://www.apple.com/apple-books/
Source: chromecache_629.1.dr	String found in binary or memory: https://www.apple.com/apple-vision-pro/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/choose-country-region/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/entertainment/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/ios/app-store/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/ipad/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/iphone/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/itunes/download/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/legal/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/legal/internet-services/terms/site.html
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/legal/privacy/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/mac/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/macos/mojave-preview/#mac-app-store
Source: chromecache_629.1.dr	String found in binary or memory: https://www.apple.com/osx/apps/app-store/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/retail/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/sitemap/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/tv-home/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/us/shop/goto/buy_accessories
Source: chromecache_629.1.dr, chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/us/shop/goto/help/sales_refunds
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/us/shop/goto/store
Source: chromecache_467.1.dr	String found in binary or memory: https://www.apple.com/watch/
Source: chromecache_467.1.dr	String found in binary or memory: https://www.extremenetworks.com/extremecloud-iq/
Source: chromecache_449.1.dr, chromecache_393.1.dr, chromecache_526.1.dr, chromecache_312.1.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_549.1.dr	String found in binary or memory: https://www.google.cn/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://www.google.cn/tools/feedback/%
Source: chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.google.com
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_369.1.dr	String found in binary or memory: https://www.google.com/log?format=json&hasfast=true
Source: chromecache_516.1.dr, chromecache_658.1.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/407675570/?random
Source: chromecache_317.1.dr, chromecache_426.1.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/930356311/?random
Source: chromecache_312.1.dr	String found in binary or memory: https://www.google.com/recaptcha/api.js?trustedtypes=true&render=$
Source: chromecache_423.1.dr, chromecache_497.1.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_549.1.dr, chromecache_448.1.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: chromecache_549.1.dr	String found in binary or memory: https://www.google.com/tools/feedback/
Source: chromecache_549.1.dr	String found in binary or memory: https://www.google.com/tools/feedback/%
Source: chromecache_549.1.dr	String found in binary or memory: https://www.google.com/tools/feedback/help_panel_binary.js
Source: chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_449.1.dr, chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_449.1.dr, chromecache_393.1.dr, chromecache_526.1.dr, chromecache_395.1.dr, chromecache_566.1.dr, chromecache_601.1.dr, chromecache_659.1.dr, chromecache_624.1.dr, chromecache_421.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_566.1.dr	String found in binary or memory: https://www.googletagmanager.com/dclk/ns/v1.js
Source: chromecache_563.1.dr, chromecache_639.1.dr, chromecache_641.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_611.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-3347303-10
Source: chromecache_533.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chromecache_312.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=$
Source: chromecache_533.1.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-MQ92VXZT
Source: chromecache_392.1.dr	String found in binary or memory: https://www.googletagmanager.com/static/exp/keys.json
Source: chromecache_423.1.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/moV1mTgQ6S91nuTnmll4Y9yf/recaptcha__.
Source: chromecache_411.1.dr	String found in binary or memory: https://www.gstatic.com/android/market_images/web/reviews_not_found.png
Source: chromecache_312.1.dr	String found in binary or memory: https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
Source: chromecache_390.1.dr, chromecache_497.1.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/moV1mTgQ6S91nuTnmll4Y9yf/recaptcha__en.js
Source: chromecache_448.1.dr	String found in binary or memory: https://www.gstatic.com/uservoice/feedback/client/web/
Source: chromecache_549.1.dr	String found in binary or memory: https://www.gstatic.com/uservoice/surveys/resources/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.instagram.com/malwarebytesofficial
Source: chromecache_486.1.dr	String found in binary or memory: https://www.linkedin.com/company/malwarebytes
Source: chromecache_533.1.dr	String found in binary or memory: https://www.linkedin.com/company/threatdown.com/about/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/#/schema/logo/image/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/#organization
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/#website
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/?p=5009
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/?s=
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/_static/??-eJyNjEsKgDAMBS9kDaX42YhnSTVioWmliRRvb8ELuHzMzIN6mS0npaSgJzEJ
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/_static/??-eJyVjlEKwjAQRC9kXUKx9Uc8S5qMdGOSleyW4O0NeAH9HN68Yai/piDVUI1s
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/accessibility
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/adwcleaner
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/affiliates
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/android
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/antivirus
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/blog
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/blog/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/blog/threats
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/browserguard
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/bundles
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/academy/?utm_source=nebula&utm_medium=menu&utm_campaign=nebula
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/app-block
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/certifications
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/contact-us?ref=msp
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/custom-quote
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/edr
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/edr-server-security/
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/edr/server-security/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/endpoint-protection
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/endpoint-protection/server-security/
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/ep-server-security
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/integrations
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/integrations/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/managed-detection-and-response
Source: chromecache_335.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/mobile-security
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/services
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/solutions
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/solutions/enterprise
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/solutions/mid-market
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/business/solutions/small-business
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/chromebook
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/company
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/computer-virus
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/cybersecurity
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/digital-footprint
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/eula
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/eula#breadcrumb
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/eula#primaryimage
Source: chromecache_467.1.dr	String found in binary or memory: https://www.malwarebytes.com/eula/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/eula/services-agreement
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/for-home
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/for-home/products
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/getprotection
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/glossary
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/hacker
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/identity-theft-protection
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/ios
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/jobs
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/jobs/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/legal
Source: chromecache_467.1.dr	String found in binary or memory: https://www.malwarebytes.com/legal/privacy-policy
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/legal/privacy-policy/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/mac
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/malware
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/mwb-download
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/newsletter/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners/managed-service-providers
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners/managed-service-providers/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners/resellers
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/partners/resellers/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/password-generator
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/phishing
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/premium
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/press
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/press/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/pricing
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/pricing/teams
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/ransomware
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources#analyst-reports
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources#reviews
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources/#reviews
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources/casestudies
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/resources/casestudies/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/scholarship
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/secure
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/secure/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/solutions/ransomware-protection
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/solutions/rootkit-scanner
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/solutions/spyware-scanner
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/solutions/trojan-scanner
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/solutions/virus-scanner
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/support/lifecycle
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/teams
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/techbench
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/techbench/
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/tos
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/vpn
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/what-is-vpn
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/windows
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/themes/malwarebytes/assets/src/images/footer-globe.svg
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2022/03/day-care-logo.svg
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/footer-logo-1.svg
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/icon-facebook.svg?w=1240
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/icon-instagram.svg?w=1240
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/icon-linkedin.svg?w=1240
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/icon-youtube.svg?w=1240
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/07/malwarebytes-state-of-malware-report
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=18
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=19
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=27
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/cropped-favicon-512x512-1-1.png?w=32
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/generic.png
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/generic.png?w=1024
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/09/product-menu-screen.webp?w=356
Source: chromecache_533.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/11/Malwarebytes-MDR-Service-Overview-No
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-content/uploads/sites/2/2024/01/x-logo.svg?w=1240
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-includes/js/jquery/jquery.min.js?ver=1.0
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-json/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fwww.malwarebytes.com%2Feula
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fwww.malwarebytes.com%2Feula&
Source: chromecache_486.1.dr	String found in binary or memory: https://www.malwarebytes.com/wp-json/wp/v2/pages/5009
Source: chromecache_395.1.dr, chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_526.1.dr	String found in binary or memory: https://www.redditstatic.com/ads/pixel.js
Source: chromecache_467.1.dr	String found in binary or memory: https://www.spiceworks.com/free-help-desk-software
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com
Source: chromecache_467.1.dr	String found in binary or memory: https://www.threatdown.com/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/_static/??-eJyNjUEOhCAQBD
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/_static/??-eJyNzTEOgzAMheELAYaBph0QZ0HEgNMkRnZC1ds3A0MnxPy
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/_static/??-eJyVjUEOwjAMBD
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/_static/??-eJzTLy/QzcxLzilNSS3WzwKiwtLUokoopZebmaeXVayjj0
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/_static/??-eJzTLy/QzcxLzilNSS3WzyrWz01NyUxMzUnNTc0rQeEU5CRWphbp5qSmJyZX6u
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/api/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/api/oembed/1.0/embed?url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/api/oembed/1.0/embed?url=https%3A%2F%2Fwww.threatdown.com%2Feula%2F&
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/api/wp/v2/pages/247
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/comments/feed/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/contact-us/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/education/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/eula/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/feed/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/glossary/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/legal/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/legal/support-services-agreement
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/lifecycle
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/lifecycle/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/pricing
Source: chromecache_486.1.dr, chromecache_335.1.dr	String found in binary or memory: https://www.threatdown.com/pricing/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/pricing/bundles/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/privacy-policy/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/products/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/products/endpoint-detection-and-response/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/products/managed-detection-and-response/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/products/security-advisor/
Source: chromecache_486.1.dr	String found in binary or memory: https://www.threatdown.com/security-advisor
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/series/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/languages/
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-asse
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/mu-plugins/jetpack-13.2/jetpack_vendor/automattic/jetpack-sear
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/images/logo-header-threatdown-horizontal.svg
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/images/masterpage-svg.svg#svg-globe-icon
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/images/masterpage-svg.svg#svg-linkedin
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/images/threatdown-logo.svg
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/images/x-logo.svg
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/themes/mbc/js/script.min.js?m=1711561442g
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2023/11/ThreatDown-MTH-Service-Description-Nov2023.pdf
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2023/11/favicon.svg?w=16
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2023/11/product-menu-screen.webp
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2023/11/px-center.png
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2023/12/ThreatDown-social.png
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-content/uploads/2024/02/CORP_SOM_2024_Resource_TN_2.png
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-includes/css/dist/block-library/style.min.css?m=1710875768g
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/wp-includes/js/dist/url.min.js?m=1710875769g
Source: chromecache_533.1.dr	String found in binary or memory: https://www.threatdown.com/xmlrpc.php?rsd
Source: chromecache_669.1.dr	String found in binary or memory: https://www.upsellit.com
Source: chromecache_669.1.dr	String found in binary or memory: https://www.upsellit.com/launch/blank.jsp?aff_click=
Source: chromecache_669.1.dr	String found in binary or memory: https://www.upsellit.com/launch/blank.jsp?malwarebytes_frame=
Source: chromecache_669.1.dr	String found in binary or memory: https://www.upsellit.com/launch/blank.jsp?pixel_found=
Source: chromecache_669.1.dr	String found in binary or memory: https://www.upsellit.com/utility/customer_ip.jsp?companyID=
Source: chromecache_467.1.dr	String found in binary or memory: https://www.wikidata.org/wiki/Q368215
Source: chromecache_566.1.dr, chromecache_601.1.dr, chromecache_624.1.dr, chromecache_392.1.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chromecache_533.1.dr, chromecache_486.1.dr	String found in binary or memory: https://www.youtube.com/malwarebytes
Source: chromecache_486.1.dr	String found in binary or memory: https://www.youtube.com/user/Malwarebytes
Source: chromecache_467.1.dr	String found in binary or memory: https://www.youtube.com/watch?v=zoAzHI_gykk
Source: chromecache_466.1.dr	String found in binary or memory: https://xp-qa.apple.com
Source: chromecache_466.1.dr, chromecache_467.1.dr	String found in binary or memory: https://xp.apple.com
Source: chromecache_661.1.dr	String found in binary or memory: https://xp.apple.com/config/1/report
Source: chromecache_456.1.dr	String found in binary or memory: https://xp.apple.com/register
Source: chromecache_450.1.dr, chromecache_512.1.dr, chromecache_661.1.dr, chromecache_479.1.dr, chromecache_496.1.dr	String found in binary or memory: https://xp.apple.com/report
Source: chromecache_486.1.dr	String found in binary or memory: https://yoast.com/wordpress/plugins/seo/

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 50282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 50255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50201 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50295
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 50286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 50205 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 50136 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50093
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 50193 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50259
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50254
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50253
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50256
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50255
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50257
Source: unknown	Network traffic detected: HTTP traffic on port 50161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50215 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50265
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50264
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50268
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50264 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50270
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50272
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50271
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50273
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50276
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50278
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50035
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50279
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50242 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50280
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50283
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50282
Source: unknown	Network traffic detected: HTTP traffic on port 50104 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50089 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50203 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50171 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50285
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50284
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50287
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50044
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50288
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50049
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50290
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50292
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50294
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50051
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50293
Source: unknown	Network traffic detected: HTTP traffic on port 50126 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50122 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50219 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50134 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50053 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50272 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50100 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50249 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50294 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50181 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49941
Source: unknown	Network traffic detected: HTTP traffic on port 50229 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50098
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50097
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50099
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50158 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50087 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 50250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50063 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50191 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50217 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50146 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50097 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49993 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50291 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 50142 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 50210 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824

Source: unknown	HTTPS traffic detected: 23.48.10.90:443 -> 192.168.2.5:49720 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.48.10.90:443 -> 192.168.2.5:49729 version: TLS 1.2

Source: classification engine

Classification label: clean2.win@27/677@210/56

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2332,i,3501436823269395625,3289047482278200069,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://cloud.malwarebytes.com/acceptinvite?token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOiIyMDI0LTA0LTEyVDAxOjA3OjUzWiIsInMiOjIsInYiOjEsInQiOiJ1aSIsImtpZCI6ImRlZmF1bHQiLCJkIjp7InVpZCI6ImU4MjFjYTFhLTg3M2ItNDcxMC1iZjY4LWMzMGE0ZGQ2ODM4ZCIsImFpZCI6IjdiNTVhOThmLTIwZjItNGRkNy04NzQyLTI5NGQyMTJmYTIzNSJ9fQ.RMb-gySVwHkg_KF8vViZgrCYGr_0a9NLVvjtfOYigHr0Vk9AROkUys-o6EXcKjanSUYKPP4OqqNppY8iufTSiA"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6456 --field-trial-handle=2332,i,3501436823269395625,3289047482278200069,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2332,i,3501436823269395625,3289047482278200069,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6456 --field-trial-handle=2332,i,3501436823269395625,3289047482278200069,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Confirm
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Confirm
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: agree
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Run
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Run

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1417355
Product:	CloudBasic
Start time:	03:16:30
Start date:	29.03.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Software Vulnerabilities

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs