Windows Analysis Report
https://www.dropbox.com/l/scl/AAD-yDt9mP1aiTsUKdpN5XkGmSRGv_2ETnk

Overview

General Information

Sample URL:	https://www.dropbox.com/l/scl/AAD-yDt9mP1aiTsUKdpN5XkGmSRGv_2ETnk
Analysis ID:	1427015
Infos:

Detection

Score:	3
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

Found iframes

HTML body contains low number of good links

HTML body contains password input but no form action

HTML title does not match URL

HTTP GET or POST without a user agent

Stores files to the Windows start menu directory

Classification

Signatures

Found iframes

Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://dropboxcaptcha.com
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://www.dropbox.com/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=true
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://dropboxcaptcha.com
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://www.dropbox.com/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=true
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en

HTML body contains low number of good links

Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en

HTTP Parser: Number of links: 0

HTML body contains password input but no form action

Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0

HTTP Parser: <input type="password" .../> found but no <form action="...

HTML title does not match URL

HTTP Parser: Title: Sign up to view this shared file does not match URL

HTTP Parser: <input type="password" .../> found

Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No favicon
Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No favicon
Source: https://dropboxcaptcha.com/	HTTP Parser: No favicon

Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No <meta name="author".. found
Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No <meta name="author".. found
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: No <meta name="author".. found
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: No <meta name="author".. found

Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No <meta name="copyright".. found
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: No <meta name="copyright".. found
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.17:49855 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.17:49896 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.17:49897 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.17:49913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.29.6:443 -> 192.168.2.17:49916 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:49917 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 204.79.197.200:443 -> 192.168.2.17:49918 version: TLS 1.2

HTTP GET or POST without a user agent

Source: global traffic

HTTP traffic detected: GET /ab HTTP/1.1Host: evoke-windowsservices-tas.msedge.netCache-Control: no-store, no-cacheX-PHOTOS-CALLERID: 9NMPJ99VJBWVX-EVOKE-RING: X-WINNEXT-RING: PublicX-WINNEXT-TELEMETRYLEVEL: BasicX-WINNEXT-OSVERSION: 10.0.19045.0X-WINNEXT-APPVERSION: 1.23082.131.0X-WINNEXT-PLATFORM: DesktopX-WINNEXT-CANTAILOR: FalseX-MSEDGE-CLIENTID: {c1afbad7-f7da-40f2-92f9-8846a91d69bd}X-WINNEXT-PUBDEVICEID: dbfen2nYS7HW6ON4OdOknKxxv2CCI5LJBTojzDztjwI=If-None-Match: 2056388360_-1434155563Accept-Encoding: gzip, deflate, br

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108

Source: global traffic	HTTP traffic detected: GET /l/scl/AAD-yDt9mP1aiTsUKdpN5XkGmSRGv_2ETnk HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?dl=0&oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1 HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D
Source: global traffic	HTTP traffic detected: GET /page_success/end?edison_page_name=scl_invitation_signup&path=%2Fscl%2Ffi%2Ft43c0einrh377rm9dtyva%2FInvoice-0786.pdf&request_id=94973927328f48bc90f3a86eccb3af0f&time=1713298092 HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.dropbox.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?dl=0&oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /2/client_metrics/record HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=true HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.dropbox.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /en/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=true HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://www.dropbox.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /web-grpc/edison/prompt.PromptEdisonFetch/EdisonPromptPropsFetch HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /page_success/end?edison_page_name=ccpa_iframe&path=%2Fen%2Fccpa_iframe&request_id=8897cfc2bf474bc2b5440b4de5ca7d80&time=1713298096 HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.dropbox.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.dropbox.com/en/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=trueAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /2/auth_logger/log_auth_event HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /2/campaigns_toolkit/get_best_campaigns_for_user HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /jse HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /sso_state HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /2/account/check_user_with_email_exists HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /CrbU/a8tlQRW/kdnryYu/iOjwI?q=hSrgVEjs3amxLolocQ18 HTTP/1.1Host: fp.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.dropbox.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.dropbox.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2/pap_event_logging/log_events HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /web-grpc/edison/fingerprintjs.FingerPrintJSService/FetchConstants HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /CrbU/a8tlQRW/kdnryYu/iOjwI?q=hSrgVEjs3amxLolocQ18 HTTP/1.1Host: fp.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: t=ReUI7oB54eFRG9-sGlJXBmCx; locale=en
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=VmfxbbkHsZ7DPxc&MD=osDo5xyD HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?hl=en&onload=recaptchaOnloadCallback&render=explicit HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIk6HLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.dropbox.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pithos/api_helper_validation HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.dropbox.com/en/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=trueAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /pithos/host%3Awww.dropbox.com/api_helper_validation HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.dropbox.com/en/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=trueAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: dropboxcaptcha.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.dropbox.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /funcaptcha.js HTTP/1.1Host: dropboxcaptcha.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://dropboxcaptcha.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pithos_api_helper_validation HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /2/pap_event_logging/log_events HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /jse HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /alternate_wtl_browser_performance_info HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /log_js_sw_data HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /alternate_wtl HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /log_js_sw_data HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /log_js_sw_data HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /log_js_sw_data HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:27.334Z","expireDate":"2024-10-16T20:08:27.334Z","consentMonths":6,"categories":{"strictly necessary":true,"general marketing and advertising":true,"analytics":true,"performance and functionality":true,"social media advertising":true},"userInteracted":true,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIk6HLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2/udcl/log_timing HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:27.334Z","expireDate":"2024-10-16T20:08:27.334Z","consentMonths":6,"categories":{"strictly necessary":true,"general marketing and advertising":true,"analytics":true,"performance and functionality":true,"social media advertising":true},"userInteracted":true,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=VmfxbbkHsZ7DPxc&MD=osDo5xyD HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /ab HTTP/1.1Host: evoke-windowsservices-tas.msedge.netCache-Control: no-store, no-cacheX-PHOTOS-CALLERID: 9NMPJ99VJBWVX-EVOKE-RING: X-WINNEXT-RING: PublicX-WINNEXT-TELEMETRYLEVEL: BasicX-WINNEXT-OSVERSION: 10.0.19045.0X-WINNEXT-APPVERSION: 1.23082.131.0X-WINNEXT-PLATFORM: DesktopX-WINNEXT-CANTAILOR: FalseX-MSEDGE-CLIENTID: {c1afbad7-f7da-40f2-92f9-8846a91d69bd}X-WINNEXT-PUBDEVICEID: dbfen2nYS7HW6ON4OdOknKxxv2CCI5LJBTojzDztjwI=If-None-Match: 2056388360_-1434155563Accept-Encoding: gzip, deflate, br
Source: global traffic	HTTP traffic detected: GET /client/config?cc=CH&setlang=en-CH HTTP/1.1X-Search-CortanaAvailableCapabilities: NoneX-Search-SafeSearch: ModerateAccept-Encoding: gzip, deflateX-Device-MachineId: {92C86F7C-DB2B-4F6A-95AD-98B4A2AE008A}X-UserAgeClass: UnknownX-BM-Market: CHX-BM-DateFormat: dd/MM/yyyyX-Device-OSSKU: 48X-BM-DTZ: 120X-DeviceID: 01000A41090080B6X-BM-WindowsFlights: FX:117B9872,FX:119E26AD,FX:11C0E96C,FX:11C6E5C2,FX:11C7EB6A,FX:11C9408A,FX:11C940DB,FX:11CB9A9F,FX:11CB9AC1,FX:11CC111C,FX:11D5BFCD,FX:11DF5B12,FX:11DF5B75,FX:1240931B,FX:124B38D0,FX:127FC878,FX:1283FFE8,FX:12840617,FX:128979F9,FX:128EBD7E,FX:129135BB,FX:129E053F,FX:12A74DB5,FX:12AB734D,FX:12B8450E,FX:12BD6E73,FX:12C3331B,FX:12C7D66EX-Search-TimeZone: Bias=-60; DaylightBias=-60; TimeZoneKeyName=W. Europe Standard TimeX-BM-Theme: 000000;0078d7X-Search-RPSToken: t%3DEwDYAkR8BAAUcvamItSE/vUHpyZRp3BeyOJPQDsAAZ018joKFt9ONlJduRp0qgN4q0hEVgbtyzwhNOAQGHdiJ/WvF5CgahoZEynXJhIj56iTukhgVUPTic3eRyYR66fmSTdDW3LZw/IwxowvJNO42yNYmggOVq0grbDpD4QdDBVM9tWomORZ6Yhc//Dhybj55G1bMVl6gWid3LX185%2BHPvRzCdiW7tPCZaapPO7gKeTL3oDg104em5KKXTB%2BceyTUab5TPh2hCfSfz3ROVCrQakad6ZQ37pn7Jq55%2B49mfT4CA7pYaH/XGU53tm06AVeElWzPkyU/J4Yr1r8h47zRUwOcxGjC0T6BxpX7IwaaJwfyVT2Tevj23PMjumVtDYDZgAACPxIXebpGL%2BGqAGO2uVUIArwYVaEkhQ22OfhliGLM6ZzUHPcq8OgtEdhPx9a2KM7kV/RwIGjE2EaapB0tt9sgi2DzczVtNbBciuvDyQhmON3mDa1QDzs/rOIXlh4sYR9zv7uexEljV/Imrk%2B/sJT99cLZwVV7PMvd1F75eHIs4pX1BFkLWpqZNETz4fG4HhgXcUZelhm/bcvV1vX49JeogYTt2yiFUOMkY5tR4q28QjWv%2B1R691qg7cHA2JVSATROi1m/RUl6KBLCiACeckPxMzA6kQovWH%2ByRmDxA9ra27P9aO9CW75tKVB/3eKzk4rS28lqzzWYSUjYjkYDnCWOo6hDi/m2h1Dt%2BRXipZMn/BGku0N6WS8mtDNm2EzBNliNDUAhKqoAkUnmRP61pvZjFSi/aTpkXR/x8SfYv14rWHbUs9gyYkSjM1N3VP/7siZSJSl1OyMh3vaC8SGfSZrFSlQKjhgXAbTSfEQoWEBjSVKcudN6yE8YHqv4WtfvpibO/Clm/vLeQhq0fDv3br5Mj5jA5mQS7xg53GzMzhJNGn7pMUQ8cMvUPfsCbtlGq6eZAJ62AE%3D%26p%3DX-Agent-DeviceId: 01000A41090080B6X-BM-CBT: 1713298150User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045X-Device-isOptin: falseAccept-language: en-GB, en, en-USX-Device-Touch: falseX-Device-ClientSession: E5BE7027061746948210979DA4705F6EX-Search-AppId: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUIHost: www.bing.comConnection: Keep-AliveCookie: SRCHUID=V=2&GUID=C4EAB6C130004333A34B5668AE4E4D10&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=en; MUID=4590362BB5CF472B95BBEDB3112D4B7B; MUIDB=4590362BB5CF472B95BBEDB3112D4B7B
Source: global traffic	HTTP traffic detected: GET /2/client_metrics/record HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:27.334Z","expireDate":"2024-10-16T20:08:27.334Z","consentMonths":6,"categories":{"strictly necessary":true,"general marketing and advertising":true,"analytics":true,"performance and functionality":true,"social media advertising":true},"userInteracted":true,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /log_js_sw_data HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:27.334Z","expireDate":"2024-10-16T20:08:27.334Z","consentMonths":6,"categories":{"strictly necessary":true,"general marketing and advertising":true,"analytics":true,"performance and functionality":true,"social media advertising":true},"userInteracted":true,"numDots":1}

Source: unknown

DNS traffic detected: queries for: www.dropbox.com

Source: unknown

HTTP traffic detected: POST /2/client_metrics/record HTTP/1.1Host: www.dropbox.comConnection: keep-aliveContent-Length: 381sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"X-CSRF-Token: ReUI7oB54eFRG9-sGlJXBmCxX-Dropbox-Uid: -1sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/jsonx-dropbox-client-yaps-attribution: edison_atlasservlet.file_viewer-edison:prodsec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.dropbox.comSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: emptyReferer: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?dl=0&oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 16 Apr 2024 20:08:16 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: c92d750b05674c378f4d0a82c3335f82Connection: closeContent-Length: 0
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:17 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 3dd69dfb1cdf4e5c86584e2065b501f5Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:19 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 0ee750066ffd4294af98f6bb7b9d3146Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:19 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 5a52b9499d664f4c9b21e538a5cd805dConnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 16 Apr 2024 20:08:20 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: f1f630910e434c50ad5a00dd70a5600fConnection: closeContent-Length: 0
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:27 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 3320c6c4a7964f9ca3f988ceec3ea74aConnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:28 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: a53b67a944504dc29b0ffcb56520cdbfConnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:28 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 17701f1a2c3e4c9b8c722e513d3fd923Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:28 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 51d3485c78704030a8efca8662f52437Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:28 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: dfb90949983945d5b7557ddf41d579f2Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:29 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: b48fa8801d2a46e390e2298315a46b01Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:30 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 98edb8971b374203ba4e879deaf767dfConnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:09:28 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 506e3f072f7c4399bae9a738d05ee719Connection: close

Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/button
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/fedcm.json
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/fedcmcsp?client_id=
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/iframe/select
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/log
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/revoke
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/select
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/status
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/style
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/iframe
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/v2/auth
Source: chromecache_262.1.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_262.1.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_217.1.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#cross_origin)
Source: chromecache_217.1.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#display_moment
Source: chromecache_217.1.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#layout
Source: chromecache_217.1.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#skipped_moment
Source: chromecache_262.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_262.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_262.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_238.1.dr	String found in binary or memory: https://dropbox-api.arkoselabs.com/v2/
Source: chromecache_265.1.dr	String found in binary or memory: https://dropbox.com/ux_analytics
Source: chromecache_217.1.dr	String found in binary or memory: https://oauth2.googleapis.com/revoke
Source: chromecache_262.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_164.1.dr, chromecache_223.1.dr, chromecache_239.1.dr, chromecache_168.1.dr	String found in binary or memory: https://reactjs.org/docs/error-decoder.html?invariant=
Source: chromecache_168.1.dr	String found in binary or memory: https://reactjs.org/link/react-polyfills
Source: chromecache_262.1.dr	String found in binary or memory: https://recaptcha.net
Source: chromecache_262.1.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_262.1.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_262.1.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_262.1.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_192.1.dr	String found in binary or memory: https://www.dropbox.com
Source: chromecache_278.1.dr, chromecache_262.1.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_262.1.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__.
Source: chromecache_278.1.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49680 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49691 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.17:49855 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.17:49896 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.17:49897 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.17:49913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.29.6:443 -> 192.168.2.17:49916 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:49917 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 204.79.197.200:443 -> 192.168.2.17:49918 version: TLS 1.2

Source: classification engine

Classification label: clean3.win@22/248@33/13

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://www.dropbox.com/l/scl/AAD-yDt9mP1aiTsUKdpN5XkGmSRGv_2ETnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2040 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5748 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6064 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2040 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5748 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6064 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
162.125.9.18	www-env.dropbox-dns.com	United States	19679	DROPBOXUS	false
142.251.15.101	play.google.com	United States	15169	GOOGLEUS	false
74.125.250.129	stun-anycast.l.google.com	United States	15169	GOOGLEUS	false
18.160.48.194	dropboxcaptcha.com	United States	3	MIT-GATEWAYSUS	false
64.233.177.106	unknown	United States	15169	GOOGLEUS	false
64.233.177.104	www.google.com	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
18.165.116.50	fp.dropbox.com	United States	3	MIT-GATEWAYSUS	false
64.233.177.102	unknown	United States	15169	GOOGLEUS	false
18.165.116.52	unknown	United States	3	MIT-GATEWAYSUS	false

Private

IP
192.168.2.17
192.168.2.4
192.168.2.5

Contacted Domains

Name	IP	Active
stun-anycast.l.google.com	74.125.250.129	true
play.google.com	142.251.15.101	true
dropboxcaptcha.com	18.160.48.194	true
www-env.dropbox-dns.com	162.125.9.18	true
www.google.com	64.233.177.104	true
fp.dropbox.com	18.165.116.50	true
stun.fpapi.io	unknown	unknown
www.dropbox.com	unknown	unknown
cfl.dropboxstatic.com	unknown	unknown
stun.l.google.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://fp.dropbox.com/CrbU/a8tlQRW/kdnryYu/iOjwI?q=hSrgVEjs3amxLolocQ18	false		high
https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	false		high
https://dropboxcaptcha.com/funcaptcha.js	false	URL Reputation: safe	unknown
https://www.dropbox.com/2/auth_logger/log_auth_event	false		high
https://www.dropbox.com/log/ux_analytics	false		high
https://www.dropbox.com/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=true	false		high
https://www.dropbox.com/page_success/end?edison_page_name=scl_invitation_signup&path=%2Fscl%2Ffi%2Ft43c0einrh377rm9dtyva%2FInvoice-0786.pdf&request_id=94973927328f48bc90f3a86eccb3af0f&time=1713298092	false		high
https://www.dropbox.com/2/client_metrics/record	false		high
https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?dl=0&oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1	false		high
https://www.dropbox.com/en/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=true	false		high
https://www.dropbox.com/log/telemetry	false		high
https://www.dropbox.com/jse	false		high
https://www.dropbox.com/2/pap_event_logging/log_events	false		high
https://www.dropbox.com/2/udcl/log_timing	false		high
https://dropboxcaptcha.com/	false	URL Reputation: safe	unknown
https://www.dropbox.com/web-grpc/edison/prompt.PromptEdisonFetch/EdisonPromptPropsFetch	false		high
https://play.google.com/log?format=json&hasfast=true&authuser=0	false		high
https://www.dropbox.com/log_js_sw_data	false		high
https://www.dropbox.com/pithos_api_helper_validation	false		high
https://www.dropbox.com/l/scl/AAD-yDt9mP1aiTsUKdpN5XkGmSRGv_2ETnk	false		high
https://www.dropbox.com/page_success/end?edison_page_name=ccpa_iframe&path=%2Fen%2Fccpa_iframe&request_id=8897cfc2bf474bc2b5440b4de5ca7d80&time=1713298096	false		high
https://www.dropbox.com/sso_state	false		high
https://www.dropbox.com/web-grpc/edison/fingerprintjs.FingerPrintJSService/FetchConstants	false		high
https://www.dropbox.com/2/campaigns_toolkit/get_best_campaigns_for_user	false		high
https://www.dropbox.com/2/account/check_user_with_email_exists	false		high
https://www.dropbox.com/alternate_wtl_browser_performance_info	false		high
https://www.dropbox.com/alternate_wtl	false		high
https://www.dropbox.com/pithos/api_helper_validation	false		high
https://www.dropbox.com/pithos/host%3Awww.dropbox.com/api_helper_validation	false		high

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 19:08:10 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	93FB8DFBA672A68C643A5BFA296AD218	97875640D83532A8DBB1E5F8F83159BB1D81D907	34998504C6015A8EB4CA730D3F7102C4CD3E467A1A9E69D89CFBBBB2CA080ACA
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 19:08:10 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	763445A6D95CAE2855B1468BDB75D971	EFD9730D7C5FAFF108F6ACEB15E4F152F0AD93F4	6C14091E8399B8F73613E7EE47B15AE71192A625C9931BC6B95AC7BAD8B6C7BE
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:54:41 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	33A1ED21D4C62920D1CC6857ACEA916B	2F2E3F0C099231FBA00498085F4B39B402B0F143	CBC4F118408B3ED6CC9A9EB89DBE3EABEDAD0B9B5792DFA9F27426F290D8DE3F
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 19:08:10 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	260B30DB472D9ABD8479B958F37100EE	11914611B62584BD0E34A0110234FFA240EB2E9C	25BE7245AE1799CEE53BB5A7BE8D57844966F0A9D16C6E3F804A8EFEDAC2FAEA
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 19:08:10 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	F8D13AE5D07852652A9CF7278768DDD7	99F0093599332DE080F21373DA309302963E6C9E	3DFCBC0F74B88C42FD3FFEC42F360EDF7AE002446E0BE4585AF081580AD751F9
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Apr 16 19:08:10 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	72E403700A7765C4E13372FAFE45D28B	BF48B750EF4D206C5154348D194CCF3D2101444B	C9D1A5133268FF94EE0C7113D068DCD0A8335CE595668B943361A44819DC11DC
Chrome Cache Entry: 161	ASCII text, with very long lines (4720)	366641E9CB419315F25D1AD2BF70936B	B789F141CB7EA723E10CB6F24428B760977FB9A2	D8A348DF23957CF3F7400C5A160B6D276D7DF0F16C46B673FD722391E5583586
Chrome Cache Entry: 162	ASCII text, with very long lines (65536), with no line terminators	D7A3C32094B126EA229D11DF4960ED0C	AB37565FF9EAAECB989D64CE99197486FFB28C67	973219C3D63CD492A44CE0C43D9C792DA4E82D4EE52D5884E0FE747D3DADC0CA
Chrome Cache Entry: 163	ASCII text	3E904D06E56BD470498071EF9F7403BE	F99226A89C61F90A6FA6E3601E7B933DAD057A11	AC66E676723D630FDEC99090F7F476E9F933773409EEE8B4CC9157A3E3856794
Chrome Cache Entry: 164	ASCII text, with very long lines (605)	23BFE7E99565EE8F34AFD63C06F4C24B	BF08B8AD1AD73C12A7C9CB211926CE23A861DB07	9DB33292007AB6C38527B39D5663E976A305564E19B2A5A8713EA2B2C00F505D
Chrome Cache Entry: 165	ASCII text, with very long lines (3491)	5A9A1990481F6C4B0AFF64192A3D2DC8	D0EE02BA86BCE2EAAC7F9463BBEDD46068B73084	E2F54D98C3200FEC2547F0A73B5FA041D766F5C65EBFF38FA2A5A3BF2E4EC8EC
Chrome Cache Entry: 166	ASCII text, with very long lines (52402)	2D38135994C678D7640482640774DE39	28D6E93C409A6DF7408CA134D04A788B17499828	D15AF9827C1B2B2E300C8A04FBF14717BD643FE77E36621CD3523AB432124978
Chrome Cache Entry: 167	ASCII text, with very long lines (4787)	1DB6D4FD47F26888CB9787D97FC00EC0	7E0F0236E67678426A357D5CDC7F75773F5A4E44	85CC4203336C5900A1D094989172DF90925D5704EFCB314F5EB7633CDC811137
Chrome Cache Entry: 168	ASCII text, with very long lines (544)	61699B70CF57ABE63FDF5F4007D36EC1	6C05189CC2D08BB2A7609C002F0675C9C670D362	229BBF4D0E7488209564152C6723497F1AC3934136CA1684233D2FA88FA4146F
Chrome Cache Entry: 169	ASCII text, with very long lines (21663)	10F3FA701AF7A3CB6F9E8054D4AEBC62	A18AFB404DC5405CCBB850D4371AAB5119779302	40CF8DA6EAE259A4BC031CEDBE0844AB5B09D2A78ADE4A30B4FCB86237186CBB
Chrome Cache Entry: 170	ASCII text, with very long lines (65536), with no line terminators	D7BF2E3664A1A5ADAF7DFD357CA59B1F	A3417D40B8BD1416F2A8F49A59D23A4049373EC9	1467A8637A285BE8D2AED1D81D2528D4C89821C1080EF85371284D34BEF2552C
Chrome Cache Entry: 171	ASCII text, with very long lines (1353)	4D83CD35A5B3138D895EA13588222C8F	2C86E768E75EB2F2846502D5D20C142A9912A590	90FD413CA296A562B99A32806EC8AA799455B0D252DEC24B2580FA45F621881A
Chrome Cache Entry: 172	ASCII text, with very long lines (9688)	506A9584ABD4EAA99B53D76D6BA0144B	5B6450A6339306D3F925CB188CDB6A7A0337838F	EEF1B33343539D8827847D82CCA73783B894C6CB877A5C57C184C1B72D027912
Chrome Cache Entry: 173	ASCII text, with very long lines (54939)	250DD7BB2E374710798456A4C572D310	9B3D1D22932D5FAFD6DD05FD06D1885FE6CE6691	F79612EE221ED657AD63B4ED70673AC24DEA5F4027078EF287686F3EDCFE90D2
Chrome Cache Entry: 174	ASCII text, with very long lines (667)	391DF6D8943BD72729FFAE6D12FFCC1F	639C7997CD036AA108FFD006750974C3EDB421C9	D0891DBFBD95E964CB336D1006DD9ADDEAA7E3450ED687A30C445D9BA0090E22
Chrome Cache Entry: 175	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 176	ASCII text, with very long lines (1052)	16689ACAEF4F6C3A7036903379D21499	789D214DBA3F828C508FA9869E0C16BC38F7457D	AC1F0921885A2805CBDE3B2A45FE69AAA4C131A6B3D25200C95FEFA8A9544B2E
Chrome Cache Entry: 177	ASCII text, with very long lines (57485)	9344C1ACA08405FF26D245EA6D33379D	ACB6C050B2830F8FC108B5174F6A138D49C9974A	8D9948E65D622C35A926726F17860B9F76A87FAD28CA7FFEEE697F6241D6A2AE
Chrome Cache Entry: 178	ASCII text, with very long lines (362)	7D3C66659E01077F47CBDD74349E60FA	86EC17A2B340E0E3BD6B84E38CE741D0867C0B9F	B4374EBF2AD5928DC936BB92738388059F1A6DF117AA47FB33F741B8DA23F864
Chrome Cache Entry: 179	ASCII text	D6C32610BC01D28D09392E8CAE4869E6	1A248754B2853D6FFA0381BBA3C4CA65C1AF19C5	107F84EDAF1294B3B3681D48FAFE9DE85165493D55EA9C361FA08ECBD7994148
Chrome Cache Entry: 180	ASCII text, with no line terminators	8D9EE6476597D6CAE766C651D343B976	D31AB7FE6B025778D3C5CE424ADEF5F2B91F55D5	7E0C92C1D2D2620896D6FDD3927E6C83FD56309612A05B05956686E2005CA7AD
Chrome Cache Entry: 181	ASCII text, with very long lines (2099)	F77250E0EFE74549BDB944F47C9FCB47	BB9407BB3E11799F95B829271637913AAF1177DD	B8F5E9440EA0ACE133BC11771970A4D105A24584AD118CD8D73758A58894D0CD
Chrome Cache Entry: 182	ASCII text, with very long lines (51287)	2B78FC32690682B2275760850331C4D5	F2C36B7D5C6BB25688FA42FCAE3576BDD06CF05E	5C07793D2FF05D2894BFFB5A9EEB2674BBADE259CBB857E4E330521340F9F8AC
Chrome Cache Entry: 183	ASCII text, with very long lines (2314)	61444FC69EEE497F28D680EE0C9157E7	D72A2EC487F48C1C8C6AAB7B316FCBB6F2ADD7BF	6E6CC053B72069322499F1716187D1C81889190DE9E22D00ADC3231A7FFF90D6
Chrome Cache Entry: 184	ASCII text, with very long lines (21694)	2968EA53455F7060CDE6EE7B77B65BB4	12872D8072A63D0E680705FD54353967B4FF5966	22B6A22B68B4E7F934729EF432A9A9FEAABF07E64838EAE43D8C7F680975467C
Chrome Cache Entry: 185	ASCII text, with very long lines (4828)	E6C7B1B5B48D9989C48C543C3EA5ABC6	2109AF7D0C10FF2D93FF2B58802C7F01B93B485F	AF3DF2BE4EA805F2A8A8C43951C7EB8BB8CA60E16AA24A3868206156B4B7667E
Chrome Cache Entry: 186	ASCII text, with very long lines (41553)	C715D5135A3F304F19BC34A3954F7937	782A003978640B50552F7D841C142512B76F1DBA	D4913CB47DA91CB6110D06E8FF9BFE439502D4494C219FF895480974A3358576
Chrome Cache Entry: 187	C source, ASCII text, with very long lines (710)	09C0D53AF2879162B43B03734FEC35B2	BC603C2186F1808BE5A7085055F0557F7DF4866B	CDFD069A981E8373C2F2EC1FEAF286D8273F2A20A0865831DE93592F15F091E2
Chrome Cache Entry: 188	Web Open Font Format (Version 2), TrueType, length 43308, version 1.66	93B6F18EC99BCB7C3FA7EA570A75E240	60B9E3062FE532CBC18B897FAC542C56A03544C7	43693F7BDD6146E783FAB3F75BA0A51AA3CF9530ADBF790DBD686FC8A17AA3DB
Chrome Cache Entry: 189	MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel	F25511F4158C2DFAB6AA11A07D026E4A	99F63CF1694FA5E52F43EB967462EA0D9EEF7513	C0906D540D89DBE1F09B24F17B7F35B81350E8D381C1558B075C28EA913C450D
Chrome Cache Entry: 190	ASCII text	2FDFFDD1608FE3ED35E7827066DA9FD1	9D6516E47029DEAB1CB5158E9CC9C2D7562280EC	A6DADDC200534ED549A179751B36B35F63D2AE229CF7191E9623945EABF0604A
Chrome Cache Entry: 191	ASCII text, with very long lines (25701)	6147FC8D260EB9D681C80F3D974C713D	FDE6BE0942C18722FB467FA9AD3FF90D431966CE	DFE4ED256A5C75579163A390549BE9EE31E0ED6E6CD368880AADDA48AEA912A3
Chrome Cache Entry: 192	C source, ASCII text, with very long lines (1803)	4ADDF5E9272BD4FE3138862368434369	B9B339BB0495D1346BCFF1180D2D9CA3CD9EB6F6	BA1EA83AACDFEC164A3161871E51026876A3BD863B46BB494C3EFFAE037B5007
Chrome Cache Entry: 193	ASCII text, with very long lines (10533)	151644207B52C049454C572377EE3E83	3BF4661205268520A40DA52C8D2E87F0F9B4BBA4	8BB9C7C60AFCCF29AE2F7CFC9A613619677105D1C698E0343287225080FADFB2
Chrome Cache Entry: 194	ASCII text, with very long lines (4934)	F89735DD18CC42E63140917E07CF2C99	FDA8163CA3BD87016D4376CF094B0AE4EFB993D5	FBF67DBB48D74A501DD35F15EF6E5E2D015DA5E07B5E556C9DA237CD8F1717B0
Chrome Cache Entry: 195	ASCII text, with very long lines (40379)	45BD73696958F0863F8B7F9265D054A9	1C943197E7CDB6AE422BF8CEFD4602B68EA38E44	C20C06F0D8A322B788147CF62C0D1DC173C36AF0B113A055BD1F503590606859
Chrome Cache Entry: 196	ASCII text, with very long lines (26312)	B81161543399CE8985A244004D3BF2BE	546775FDB5068A331F2217702DFABCF44EEA0F36	D78B91BA7FA509896508F7C3BE2A409D4F6E8C43DF1CF6904D296431FE5D2044
Chrome Cache Entry: 197	MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel	F25511F4158C2DFAB6AA11A07D026E4A	99F63CF1694FA5E52F43EB967462EA0D9EEF7513	C0906D540D89DBE1F09B24F17B7F35B81350E8D381C1558B075C28EA913C450D
Chrome Cache Entry: 198	ASCII text, with very long lines (8406)	26AAC2A148655859CD7464BAAA808AE8	FAFABB4EF231C4D08C6FDE13503BC16B193CB32C	A800D6B2E4BE85662AB2E5FE5E10E46CA1EBC1AF29A27269CFBDF26CFC6325D3
Chrome Cache Entry: 199	TrueType Font data, 16 tables, 1st "GDEF", 19 names, Microsoft, language 0x409	F9ABED3D3D7E0B5A0A5A303B113C53F4	8DEA33D500E929B878CED36C5980745C0BF13DB9	2BB6585B06B56D32AA48AC85F698AEA00A96B5E32B944C9FBA5022CD90F97DCF
Chrome Cache Entry: 200	ASCII text, with very long lines (6506)	4A0F62C20280F479F751116AAF6FF004	92E3963DEE944C49A5CF1F9BCC0E668D307CCABD	B16431F6654C40FDCD3D12717AB8E23CAC760678A5DB6063D3C3DA35316451F9
Chrome Cache Entry: 201	ASCII text, with very long lines (519)	C2591593FFBD92E16276E86068DB913A	E7B7B89E0FFB6C5E1CD91BB81AA418E1E9BD77D1	64CFD9646AFC31C4E5D1E3E6753194DCE4F385B017B1227DE2248730DE2DC0C0
Chrome Cache Entry: 202	ASCII text, with very long lines (1563)	7B08E15668E6293DED274A0E43734BD4	84CC2086318F411FA109744A702B5B04271D7658	6A8AD86F86D2671FDF62C01740FDC191743F39E124EE7401857E238144329881
Chrome Cache Entry: 203	ASCII text, with very long lines (5602)	CA16D5CAE96CA2371692E4019505C217	438924A22E5C1272240AD7CDC8523FE98A82551F	A5DF177C3AB72BAB2BDFD61E71281E3AF2553E222AE02A89548DED7DAF6753A3
Chrome Cache Entry: 204	ASCII text	A3A2554444A71B125FBF14F91125D2E7	7212DDC0E5552AF5BF29C82351474F88A3C99CB8	C5D544593946BDB983EADD3A6BA179CBD317C5D98409C3DD00C1D19444FC44EB
Chrome Cache Entry: 205	ASCII text, with very long lines (65536), with no line terminators	9399F55783480DB822CF654BA10EF050	05890E089C22CBF65878D08E5D4F2B7125FD7FFD	A679E10D76F51E53F19137FEF3DD0D39973DD3CE4C693312C4D316E2059DA52C
Chrome Cache Entry: 206	ASCII text, with very long lines (37813)	E8610524A37C783C12736026210E54F8	B771D988771F01270E63C1CCD89135A4D6FF8C47	CF24DA1C7EFC209200ADDA31BAF434A0A846BA41B7992273B9DC1B65E2C6BC0C
Chrome Cache Entry: 207	ASCII text, with no line terminators	513F1D1684F5F5F96983E4AFDE6A12A9	9EE5B819E26671328A7B58526C7B5885EE053F1E	BFC7DC4C0C556175F63B2D19A5BDB021D04A3160EEBFD0DAD90E4B3F019A6C5B
Chrome Cache Entry: 208	ASCII text, with very long lines (4143)	6D7F12ED56D5FAFDFB141EAAF437F237	CC722F807C215B6B90A005A8405E0C18E63564C7	229FF7E74BF376A04E7DAE2B3A8A6DA04DF25A07D5B0300FCEFDA8FC821F8FF9
Chrome Cache Entry: 209	ASCII text, with very long lines (304)	4E2CC091FAC48A36F2EB401FA6ECE06B	AC35B42D5B1FF5B592A44574459A1C6CE6DFBE44	EA511EB41E9199AEC50864F7CD7862DEF7BE3AE5C232DBC066AC353EA56FEC8D
Chrome Cache Entry: 210	ASCII text, with very long lines (729)	75ED595D4A569CF9073CD6EEE308B3B3	13F9416A70CEEA9033A496A6AA5B922B72A6FBE2	34BA9C679427ACA43C1321759FAE0373E54B68661E8D12FB59BDB1F3D93ED1E8
Chrome Cache Entry: 211	ASCII text	00E3748EF6EF9B75F69F6AC20471BC85	713BD618ADFC43F6EC695CFE3788D19708666FB1	5E49FEF385C5BDA41E5FD72F0D0FB2E76722A5C156CAC7AFDBDCD9C6B9B9648A
Chrome Cache Entry: 212	ASCII text, with very long lines (2051)	72F9A26C26C1A681AD75A7E270550788	5579A02442ADFE9980A87BF495B18260927CD146	F4024DCE9F70735047ADC3A8CF7E8AC9FD2E1D4BFF6ABFC4158A1810EDFCE45F
Chrome Cache Entry: 213	ASCII text, with very long lines (40817)	5A34B03CB884671743BEEBC13F7C1399	12D69902E44C7661FA1CC50AF7D2D020EAB6F3A0	1CE473D6A4749E63F8BBFE0EE1B3B591FF6A13C08E71EF01425A716758EB885B
Chrome Cache Entry: 214	Unicode text, UTF-8 text, with very long lines (12419)	1B7D50BF09D1E7435809F79E4EBD6018	65F4FE988615E501E5DF0704C958B68BC2FB7627	F33EDEA12C404010889EA01BF0A34425AC66952BC8A71EBE9690C178B2736E76
Chrome Cache Entry: 215	ASCII text, with very long lines (16982)	4015C8AEA03713850B2ED6A120A7B947	81627FB8CD488CC6652D0A5EB9B85D164EC66DC8	E2105D63158F5AB48345741B47916947BF9078522FF0A4F84737D33DE6478205
Chrome Cache Entry: 216	ASCII text	98070F1CF7C37AF35E411C1EAE73D5C3	652F4EC37768D55F02BA12617D3058E3A3436761	2DD3B640A7C87526BB0B29205D1FD3253AA5B779BDCCBF8A6F4C082FE909BE90
Chrome Cache Entry: 217	ASCII text, with very long lines (2903)	935A57D7B3A664FF798C18C5A490705A	63CD6CC42F98DD53CC45346B772673EC5F628ED1	7D29FAA43BD29762C126E7C044C9E950D37C1DEDE7E37D5EB5380F20010ADE31
Chrome Cache Entry: 218	ASCII text, with very long lines (519)	C2591593FFBD92E16276E86068DB913A	E7B7B89E0FFB6C5E1CD91BB81AA418E1E9BD77D1	64CFD9646AFC31C4E5D1E3E6753194DCE4F385B017B1227DE2248730DE2DC0C0
Chrome Cache Entry: 219	ASCII text, with no line terminators	9787D8E52A897B135A9229B55B793894	DC17BDE436C7037472EDDD9DD66008DA8377CA55	E44007295A1109B3EE9F07737B97B9E1EB58AA578307953F62776069F6DE3BA4
Chrome Cache Entry: 220	ASCII text	4985A0F29951864A832BB9471CF2B43F	B1D80D67A0A506CBB31B459E0A155138E887EC75	4A644362AC51EC790ADA2283D0762D6F24775F815B7ADAAEFE6F7CA4F9A7AE89
Chrome Cache Entry: 221	ASCII text	46CAC945E491B87E2835B2D5E8EC8804	2D072C5E3A12ABD4733DD429709C8DBCB5D3D50B	5A2D87CA902230E9900DF89430987C8F17B22FF184820DD40C8C6FBE777A5FC1
Chrome Cache Entry: 222	ASCII text, with very long lines (8486)	2B550C403E2A5FE12C846A9C2931F7C8	D9D69852E8B9F3F66A5E2CFEF60D40664B368286	72BDE476747B0BB5613AFFF1C51476F46BA3D1D481994838690C1786A9BD025A
Chrome Cache Entry: 223	ASCII text, with very long lines (605)	23BFE7E99565EE8F34AFD63C06F4C24B	BF08B8AD1AD73C12A7C9CB211926CE23A861DB07	9DB33292007AB6C38527B39D5663E976A305564E19B2A5A8713EA2B2C00F505D
Chrome Cache Entry: 224	ASCII text, with very long lines (10662)	BAD44F3FF516D5115FD80389FF48F251	BA4ED3A47A79EF4D2D44543734132D029F674347	C5BE44FE054D18F7EDDD32ECA1DC6C4AADD7951694440683F0CB503FF800564A
Chrome Cache Entry: 225	ASCII text, with very long lines (9586)	53A288476541A8A0E790FC62E77B6FB9	FFB02CE6E09E61EB494BDE86E21A225F01C58EDA	FB41B7F75A350B961521693271414222486CB98B099D0D68DFF83765F412CA94
Chrome Cache Entry: 226	C source, ASCII text, with very long lines (725)	42A9D428891E55709CBCC278E1AE4005	30D29986E8567445705FF03CBD57DC82D2AB5619	2785B93267B43EF84EB328F3F50AEDECE658149CDCEED2F0B3EE5384759BE2B5
Chrome Cache Entry: 227	ASCII text, with very long lines (2962)	4D8313A7B6900F61AE9BFE51DDF4F67B	8B528784DBBE02C32F5F844953563C9B30178600	BFF7C9A7A1D2C6B47613859610EBA689A43C53189917DB1E81B5826B21B6C957
Chrome Cache Entry: 228	ASCII text, with very long lines (65155)	369DC6BC585DE3225DD8F7A2E3875AF3	2E316D6E7D6CE9B6BCC76800327EE8F00D0D6536	4C02ADF2AE56429E877AB87CDFFBBAB270170AD3B4A32D4DCA0E99B96AF614B2
Chrome Cache Entry: 229	ASCII text, with very long lines (8391)	CEF3AFAC3BB3869958AE9EADA3A9E2D0	E19153C14CDC86ADDA25922707DEC307D7EAEA18	557B5C5A37612D8B42057A42C52D372546C51AAD7B3C8FF89E652EFAF6DAD603
Chrome Cache Entry: 230	ASCII text, with very long lines (2334)	D7102E61F8A55FE25337F4C956CCEF24	5B45C74151E3ADB6E9AA71428347060BA2098CA3	B3B2C6C4B2857BD79700FD042D4250538368ED5D1628FF82EAC6E7391D96DA86
Chrome Cache Entry: 231	Web Open Font Format, TrueType, length 58239, version 0.0	83BB5AE3E28AFB23B4ED2EF74C272312	C79EC10C6AB82271C588B59A0DD26DC57DE54843	B1F18FD551241D3EFD5B9D114317F1D52C0C19677D3ECE876CE75249A1E067A6
Chrome Cache Entry: 232	ASCII text, with very long lines (47981)	AC75D2758BF3E040611814872A174121	CC5AF2F2D44FEF889E3779F768CFEC8713D4F386	7314EB1E0738878F2BACCF1B901FCD3E438834902A0146BC21B54D1521E62A3D
Chrome Cache Entry: 233	HTML document, ASCII text	00F53700C90A2EDF60A83C7C3B959710	270A7C333D4BDE912992993FBDB7D2EC579E9B1B	C23F75F5147BEDB59DE93A0559B52C5303702B063C8D665C27CD8F40FE329B8B
Chrome Cache Entry: 234	ASCII text, with very long lines (5082)	0E80CBB2EF9225FDC2B4DEFA7D321901	BD0862DEAD0CDAD41CC33D88856225717C6B173E	E34014DB1E6DA64AE844602B85DAFC41024F5694E49058A6F138DC7415E0AD25
Chrome Cache Entry: 235	ASCII text, with very long lines (48054)	9A4D33E9F93F1ED9DA898D73B532A9E6	1350A5CBE24B1CB428FA1033DBC9A47EA2E07151	1C3BD03F8C5D3EB2450C490C1679A36E7CD9488D127A74433BB57DD691E8F8B3
Chrome Cache Entry: 236	ASCII text, with very long lines (2845)	0E3B3B3216D852E1ADEABC8B6E7FC27B	5D2CC55D2D9738CBCBDFE2CC350ABF2A3BF0EFA0	5585BCC97733AF2B7DC9F697D3BA3B7D4AF58484C38117DECD68F75E8407ADFE
Chrome Cache Entry: 237	ASCII text, with very long lines (33947)	EB9D1E82831ED22126CDDF837D2089E3	2D3DBDABBBA3083677BBDA0004F00561F4F300AB	7F3EE892CEC382DDBB792661DEFB495C844F1D6C11103C383A60B74CA7D428E0
Chrome Cache Entry: 238	ASCII text, with very long lines (2102), with no line terminators	FFF8E4C34D574BE9AC43718EE5ACCD9E	A88F5AAC146D4726FE7A7DC60BDF6BF3236CF187	851BAAFA4D75A31942B8D7F752909C9BD63873DD2B2D9E3C5B69439FC1F645A2
Chrome Cache Entry: 239	ASCII text, with very long lines (544)	61699B70CF57ABE63FDF5F4007D36EC1	6C05189CC2D08BB2A7609C002F0675C9C670D362	229BBF4D0E7488209564152C6723497F1AC3934136CA1684233D2FA88FA4146F
Chrome Cache Entry: 240	ASCII text, with very long lines (31230)	7C750AAD2B692C1D3E448FD3B3404136	67CE2AB7109B50856F58D42E8BDE38A9D071213F	53B3A32379965955CC752FEC0C709ED86910370368E9824BCEFEAA731E54C725
Chrome Cache Entry: 241	ASCII text, with very long lines (16909)	313C3A6F8BD31B6BF355EF74CF3F819D	08A271D9551636E72D071433E8EBB0F2975D7A7E	C5FE6187E5DA574D6D694A83BE523993E62DAC5F89D165283F38EB92C830F992
Chrome Cache Entry: 242	ASCII text, with very long lines (655)	9E909F5DC4EB2917A092969CFA8C1C1B	EC5795627579E606612250BE3E30690F3A70E3CF	C174E839D663E6F9ED38C7901711B911FF058A033154BCDE3DF30208DF454C74
Chrome Cache Entry: 243	ASCII text, with very long lines (33484)	99EB0DE2B72A849BCAB77B4AB0CA030B	1273CD3F0776E5A43F00065FBFF954FF243C837F	F3560B927CD30017511D2623F2F3FF299BCAA3A09167742BC3DA3AE417D1F852
Chrome Cache Entry: 244	ASCII text, with very long lines (5341)	757A6AB0DD9C36D34560BA29F8A2E990	FA23336FD64AFC6218933D458A1FEFEDC6F56838	5A600EA33AB9E0371DB4C3BAE67E8917DF17A05B3D55B1DB58B2B33B6B81258C
Chrome Cache Entry: 245	ASCII text, with no line terminators	9F7470B5888050C3F71BB2ADE4A69E62	E6FD80EED8FF7C97A026FB642884A8AF8071EABC	124B86BFF02777CBD47DC3590E05F259EBF7BB4352CFCE34F90620767BBD1C0B
Chrome Cache Entry: 246	ASCII text, with very long lines (65536), with no line terminators	34A33B69C4625F4DEA22F157C0B8AB80	D6CB50B5BC02949D6F20FEFE18EFCC4F9FF329FA	93B9169CF31B33F679CF2BDEBE4EBD42CF9251AFDD03304DF9A72481EDAD5A1F
Chrome Cache Entry: 247	Unicode text, UTF-8 text, with very long lines (65529), with no line terminators	DD3A63D89A120D21CAEEF592A6D402F4	8E4FF005C1D1DF7A9A336A6F3AD8B06A5F5BA657	FC1D7B30F08DF466E74C29408525FD5DD625E2136B48FD5ADB5690DA179928E1
Chrome Cache Entry: 248	ASCII text, with very long lines (54939)	A29E7349DF7F27236744ED6B2BFEE49D	CDF68B71360616D7BC8A0A0790C48AEDD566CB31	75E7061852C164158192444025245780550CE3AD81C634831EE9128DB0782DE5
Chrome Cache Entry: 249	ASCII text	E9B97DB6D2E8DA79AA3E750F28E1BF56	1EDD4B6BB950948139840936828FED909BE6B8B8	A28E9054559B06E3D1520ED9058715B6511F6ADDFF73690FF35C90CB9332BE25
Chrome Cache Entry: 250	ASCII text, with very long lines (623)	B8BE0AEA05D076DD5B710F6DED7565B0	65F0CF4F7D35B7EC22F2E244A11A30E39BEF57BD	6437CDA00E26052D776AFE662A06DDF8FE9981DD79AB0F9D3F2360D694AC319E
Chrome Cache Entry: 251	ASCII text, with very long lines (1025)	20DEA3DFDE3B9352F8294408ADC604E9	C21EDD35DB63CD8852790ECE8323957643928648	0DA537469F646AEA2AB5EAFE2641AA33C329A7D17F2751B63D93D39722BFB21C
Chrome Cache Entry: 252	ASCII text	D3216D824D821C8026C31566767B57E4	03F460961D787EAB26DDD334BF740332E1113B54	ED5175A8E6813F9CB849D8E0DAE03CDCBC8F76C8E2C6328135E9AA648F95FA70
Chrome Cache Entry: 253	ASCII text, with very long lines (1281)	68B92CF8F7C6D25796C695153614D004	718B985F5FA2A0FB44A5418FAF206B0BCBC07ABA	432741E746A4433ED39843670574A69AE8724BAB0DE5A8992510B99C34646D12
Chrome Cache Entry: 254	ASCII text, with very long lines (345)	A1782CB302D36D94A8F5904841B1F9CD	F489819205A11E879A7CBD37D906B7476040F5D9	2B1903F4A4FA1A2C629480FCDDD60D673D3CEE3BE8C13C6D198419757FB6E228
Chrome Cache Entry: 255	ASCII text, with very long lines (1641)	565B12C7B3FFC7D46032C040A23A9A66	270406F09279BD6E8A571E07DB52516F6EBDAFCC	99C4895C9154E53837084897DFDEF1602258DE6D205F58746CF0DEA9027ADD6C
Chrome Cache Entry: 256	ASCII text, with very long lines (2400)	378E23080E33101EC0F14BB272F93C71	48EDB3E9EB0E21A2C83DE0ECE2EF2FECA76B72C8	824FBE7B7A51A605872358102B842AC0DD268A638E63142EBBEA8859EDF5FB42
Chrome Cache Entry: 257	ASCII text	68C8F81D9FDD45D2F65BCEE949F4AD28	EBE2733E978AF725E227EDE139BA61E776A44ADC	D6F848FB0E9C27FF1C2DD18CF2D0096AEE107068F8D3E4B6F9087837D14BD46C
Chrome Cache Entry: 258	ASCII text, with very long lines (30425)	69991038140966BA9AD01815DA736FB3	AC46284A7C3AB7DF07EA4CD3EB9F093538AB65D2	FC593D1C8965D82E5A2800E995F28891E02FBCA92E6CFD143799170C9145A39D
Chrome Cache Entry: 259	ASCII text	8B7FB34E0EC9ECFD6C2523036161EFEF	A241AAB257D9E4B2F606E0AB94E4E8E9333B2369	092F05A37727D13D22048C83B9928E9A17D878F216C1C2EC2090D0C404D2340B
Chrome Cache Entry: 260	HTML document, Unicode text, UTF-8 text, with very long lines (1136)	FBE36EB2EECF1B90451A3A72701E49D2	AE56EA57C52D1153CEC33CEF91CF935D2D3AF14D	E8F2DED5D74C0EE5F427A20B6715E65BC79ED5C4FC67FB00D89005515C8EFE63
Chrome Cache Entry: 261	ASCII text, with very long lines (12494)	0CCE36E0D631A9F9391326766FA604CC	32C7AC701C52A87238CF4F6A36AD8A8D517B9C72	090502C741FCE96E98551F7BB6CC3C89B14F55B2A2DD5F87BAF7856B5A699249
Chrome Cache Entry: 262	ASCII text, with very long lines (554)	E9CCB3DBDE79BA5FFDF9CAD4B32D59FD	3A8CD67ADC7C885BDF683F1E7F491E6A4A50679F	8F2C6777C7CCC01AB67290FA8ACD5A4C4866BE64129F39DFAEB9197DFA15E137
Chrome Cache Entry: 263	ASCII text, with very long lines (15368)	62E594328005F6A1C6E0EDBCAFA712B0	69404C43961EA5224B6DF433C9424C07679A08BD	2C79A0244A616AC9449EE94382007A3631AF38C5BE7BC6B91CC1B9F9C9F99513
Chrome Cache Entry: 264	ASCII text, with very long lines (1327)	03EA710579B2A03B4874E2AC684B72F4	1BAA6ACAAB61033E0702993D7BDD1204AA3FBE5A	67DB7A1710B395F92D3328FF8ABD8AA1C280C577B631D1F4013B975E88E986C4
Chrome Cache Entry: 265	ASCII text, with very long lines (2792)	77A115D3A09DC29A146902DD0A75A3BC	67FF8B3F8E44B4ADC666B6605B84160CD0BEEAF2	22E5825BE132E56D6A435331B14689B3C4A935C9F46808ABBDB6F6B7BC1792A8
Chrome Cache Entry: 266	Web Open Font Format (Version 2), TrueType, length 46188, version 1.66	DFC5E24CBC1B134E0C00C61E84EC999A	D3B1A8EF1D0F6F9162986479252570525719F203	B5DB3E633EC765FC01A19C06B0955D56C2503285E59D8D348D08EC34ABBFEAF3
Chrome Cache Entry: 267	ASCII text, with very long lines (24978)	CEE4D421195F1B0AD85FC8FF00E7D989	0A63D271F7312F98A6117AAC1B6CACBC81ABDD0F	CB5A487968DB52967A9E2E3E772B8E977A1B219D7941BC5F1221AD93C0A5F955
Chrome Cache Entry: 268	ASCII text, with very long lines (533), with no line terminators	FEB698008C36A09DFE88AB06A1C3E3B9	A871FBCBBE298AE7078D06627708B2C106A0FAF3	1C4E7E389D73C6ACF7F19CC812514E71230740791FDE8A018C1D7EDCCF1590AE
Chrome Cache Entry: 269	ASCII text, with very long lines (744)	FFA4A8CEE985A798CFF48D450F8436AD	0584E9A89D7DCE5DA4AC9084DC91297237BB3B94	45526D8DCBFAE6EE2E386F518184BC65B459B3F207FF8E82A89C8FBFABB249F4
Chrome Cache Entry: 270	ASCII text, with very long lines (665)	A0EF15CB4F52D5F152A361C4A4208C73	62E8A6612C09E571E1266353758F61DC379401B0	7EB159511D44A621FB5DC9FF210E67E3621EC4000806F3D9255920F8A7B3DBF6
Chrome Cache Entry: 271	ASCII text, with very long lines (3657)	24D4EF1243188608BCB4FE06409FC18E	905ADE43BFA098039C735D832BE08A98D585843D	E07EDDEB71ACD2969392459A0EF77D768AB517BB090F15ECB4C268FCA0B3BCD6
Chrome Cache Entry: 272	ASCII text, with very long lines (12980)	48E3CF3B41636EF6A51CDBC950C4EB1D	6AFCA96B7FBD0F0E467B28D5314305BF0339FAAF	071A37CB10715EAFA60E1388A4F466E8CABE50B4F90288768D73A37F6D6CD4B1
Chrome Cache Entry: 273	ASCII text, with very long lines (11110)	FF1CE802509E2FAD7F5D9E5B2C6A4569	B76A581B129BD8B4DFB72631CCC2F571158DFC8D	476D028A8E77E5C0F8B9CECF57FE68345B94AF5E54982539213CC71BE7B1CD85
Chrome Cache Entry: 274	ASCII text, with very long lines (30422)	43CC9DFF703848C5EC4DED5560DA6DD9	E9F7D74671E37EA0F7161E39518586F629D01A81	A82524C3A0208F8F53FD611D23DEAEF0A952D83614A452548D73C5FBF919D370
Chrome Cache Entry: 275	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 276	ASCII text, with very long lines (65536), with no line terminators	A8B1690E8D79F1F171627F72378B92F8	1DA2E0BE4B366DFAE8B6D2A66691C8516CA394F3	08DFC14154A8BEE625908184ACE24AE961800B7DBB9E05CA0505C5C412B27D2E
Chrome Cache Entry: 277	ASCII text, with very long lines (57547)	EDB1B6F279D6A33DED91AA34B23CEE63	A9C604D641C90B95124A20EAF411FD8968054E53	60C2622F549664EEF7622C8B121EB1E705B013D1943B8BF872703FA5425C5641
Chrome Cache Entry: 278	ASCII text, with very long lines (1290), with no line terminators	0D866C424BA99C756DD2588CD38BF519	584471F2D282A4B2973CDDDC6E5CF5A6FF00B317	8C54B2BEC97CF664E35560189EEE5195967E5C525DFBAD366364B2CE71EF4083
Chrome Cache Entry: 279	ASCII text, with very long lines (21020)	F3FC7E84C200E23061AFBB9EFFEC4EDA	117852AD6C4C8F33FCC7A79A5FB1FC3481E8E50D	AD461001D7C4618C5CE70C1C9AF1E0C9CF5C85AF48B19CA02E52AE35EE91760E
Chrome Cache Entry: 280	ASCII text, with very long lines (65536), with no line terminators	8DBC0706F5212D80C502A8051C043EDA	77752E8212625EB7616A13E4DC95B6FF206DD5BC	9878701B53780F1FDF10A1783651826BA3571C2FB28FDA3F2E6FC0952F080BB0
Chrome Cache Entry: 281	ASCII text, with very long lines (565)	6D92292A133E794F5C1FADC6361DD5AC	9F9C7C2DB732A64AB4A014E2AFDA0AA446D3A04B	DC21D296459DD21437B246D4768E05C86DAE1180277C8A5AAC07E241665CF8B5
Chrome Cache Entry: 282	Web Open Font Format (Version 2), TrueType, length 54666, version 1.0	EBEE194A9B773F166DC16096F8614AAA	9D6A893AF295C90E9E9792D7E54A80034192255B	00F90DB31F42975FCDC5FA1F70660568BE68792EC11BE2AAC36362F435A6E555
Chrome Cache Entry: 283	ASCII text	5CDC20BEC764EEDD4CB5275BF0AAF4D0	A6DF9646C37996C4F8A118621B404925EEA353EE	05E1FBE4401829DB2CA3ECB53F1F748CA2F47E7907A8D2E90D1641E0FC6CFB7C

Found iframes

Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://dropboxcaptcha.com
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://www.dropbox.com/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=true
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://dropboxcaptcha.com
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://www.dropbox.com/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=true
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en

HTML body contains low number of good links

HTTP Parser: Number of links: 0

HTML body contains password input but no form action

HTTP Parser: <input type="password" .../> found but no <form action="...

HTML title does not match URL

HTTP Parser: Title: Sign up to view this shared file does not match URL

HTTP Parser: <input type="password" .../> found

Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No favicon
Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No favicon
Source: https://dropboxcaptcha.com/	HTTP Parser: No favicon

Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No <meta name="author".. found
Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No <meta name="author".. found
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: No <meta name="author".. found
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: No <meta name="author".. found

Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.google.com/gsi/button?text=continue_with&width=350&logo_alignment=left&click_listener=()%3D%3E%7Bvar%20e%2Ct%3Bthis.hasPendingAuthFlow%26%26(null%3D%3D%3D(e%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3De%7C%7Ce.logLoginCancel(!1))%2Cthis.hasPendingAuthFlow%3D!0%2Cnull%3D%3D%3D(t%3Dthis.logger)%7C%7Cvoid%200%3D%3D%3Dt%7C%7Ct.logLoginStart(!1)%7D&client_id=801668726815.apps.googleusercontent.com&iframe_id=gsi_98501_657541&as=httAMoMYFWpnkUmNgT3bFw&hl=en	HTTP Parser: No <meta name="copyright".. found
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: No <meta name="copyright".. found
Source: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1&dl=0	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.17:49855 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.17:49896 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.17:49897 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.17:49913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.29.6:443 -> 192.168.2.17:49916 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:49917 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 204.79.197.200:443 -> 192.168.2.17:49918 version: TLS 1.2

HTTP GET or POST without a user agent

Source: global traffic

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108

Source: global traffic	HTTP traffic detected: GET /l/scl/AAD-yDt9mP1aiTsUKdpN5XkGmSRGv_2ETnk HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?dl=0&oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1 HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D
Source: global traffic	HTTP traffic detected: GET /page_success/end?edison_page_name=scl_invitation_signup&path=%2Fscl%2Ffi%2Ft43c0einrh377rm9dtyva%2FInvoice-0786.pdf&request_id=94973927328f48bc90f3a86eccb3af0f&time=1713298092 HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.dropbox.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.dropbox.com/scl/fi/t43c0einrh377rm9dtyva/Invoice-0786.pdf?dl=0&oref=e&r=ACLdpbjsqQL4A_3g7DqYnOUidjH4UL2a_NTTRih-IqKfo3eaEw-qjeW01cWgp7NqXyIGW0g3FReuZ9fUiMuWxqkIcJs_oURE48W30Qy_3xwZGQiwR1kHjrtOgmO9w5wkurDHUU405L4kU8UpgL7y_ga2F_tIuVm5Yw5KJKHPboLVlzrX1m0K4n5VFXKI5lAdku_OCpJ36GVKOe0ZfU-d0lURuNRiOl1a6I-k1v_zjuEgVw&sm=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /2/client_metrics/record HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=true HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.dropbox.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /en/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=true HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://www.dropbox.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /web-grpc/edison/prompt.PromptEdisonFetch/EdisonPromptPropsFetch HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /page_success/end?edison_page_name=ccpa_iframe&path=%2Fen%2Fccpa_iframe&request_id=8897cfc2bf474bc2b5440b4de5ca7d80&time=1713298096 HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.dropbox.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.dropbox.com/en/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=trueAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /2/auth_logger/log_auth_event HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /2/campaigns_toolkit/get_best_campaigns_for_user HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /jse HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /sso_state HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /2/account/check_user_with_email_exists HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /CrbU/a8tlQRW/kdnryYu/iOjwI?q=hSrgVEjs3amxLolocQ18 HTTP/1.1Host: fp.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.dropbox.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.dropbox.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2/pap_event_logging/log_events HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /web-grpc/edison/fingerprintjs.FingerPrintJSService/FetchConstants HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /CrbU/a8tlQRW/kdnryYu/iOjwI?q=hSrgVEjs3amxLolocQ18 HTTP/1.1Host: fp.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: t=ReUI7oB54eFRG9-sGlJXBmCx; locale=en
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=VmfxbbkHsZ7DPxc&MD=osDo5xyD HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?hl=en&onload=recaptchaOnloadCallback&render=explicit HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIk6HLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.dropbox.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pithos/api_helper_validation HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.dropbox.com/en/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=trueAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB
Source: global traffic	HTTP traffic detected: GET /pithos/host%3Awww.dropbox.com/api_helper_validation HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.dropbox.com/en/ccpa_iframe?hide_gdpr=false&is_ccpa_enabled=true&should_disable_banner=false&gpc_signal=false&origin=https%253A%252F%252Fwww.dropbox.com&sandbox_redirect=false&locale_override=en&should_auto_open_options=false&privacy_consent_upgrade_flag=trueAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: dropboxcaptcha.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.dropbox.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /funcaptcha.js HTTP/1.1Host: dropboxcaptcha.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://dropboxcaptcha.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pithos_api_helper_validation HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /2/pap_event_logging/log_events HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /jse HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /alternate_wtl_browser_performance_info HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /log_js_sw_data HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /alternate_wtl HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /log_js_sw_data HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /log_js_sw_data HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:23.898Z","expireDate":"2024-10-16T20:08:23.898Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /log_js_sw_data HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:27.334Z","expireDate":"2024-10-16T20:08:27.334Z","consentMonths":6,"categories":{"strictly necessary":true,"general marketing and advertising":true,"analytics":true,"performance and functionality":true,"social media advertising":true},"userInteracted":true,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIk6HLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2/udcl/log_timing HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:27.334Z","expireDate":"2024-10-16T20:08:27.334Z","consentMonths":6,"categories":{"strictly necessary":true,"general marketing and advertising":true,"analytics":true,"performance and functionality":true,"social media advertising":true},"userInteracted":true,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=VmfxbbkHsZ7DPxc&MD=osDo5xyD HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /ab HTTP/1.1Host: evoke-windowsservices-tas.msedge.netCache-Control: no-store, no-cacheX-PHOTOS-CALLERID: 9NMPJ99VJBWVX-EVOKE-RING: X-WINNEXT-RING: PublicX-WINNEXT-TELEMETRYLEVEL: BasicX-WINNEXT-OSVERSION: 10.0.19045.0X-WINNEXT-APPVERSION: 1.23082.131.0X-WINNEXT-PLATFORM: DesktopX-WINNEXT-CANTAILOR: FalseX-MSEDGE-CLIENTID: {c1afbad7-f7da-40f2-92f9-8846a91d69bd}X-WINNEXT-PUBDEVICEID: dbfen2nYS7HW6ON4OdOknKxxv2CCI5LJBTojzDztjwI=If-None-Match: 2056388360_-1434155563Accept-Encoding: gzip, deflate, br
Source: global traffic	HTTP traffic detected: GET /client/config?cc=CH&setlang=en-CH HTTP/1.1X-Search-CortanaAvailableCapabilities: NoneX-Search-SafeSearch: ModerateAccept-Encoding: gzip, deflateX-Device-MachineId: {92C86F7C-DB2B-4F6A-95AD-98B4A2AE008A}X-UserAgeClass: UnknownX-BM-Market: CHX-BM-DateFormat: dd/MM/yyyyX-Device-OSSKU: 48X-BM-DTZ: 120X-DeviceID: 01000A41090080B6X-BM-WindowsFlights: FX:117B9872,FX:119E26AD,FX:11C0E96C,FX:11C6E5C2,FX:11C7EB6A,FX:11C9408A,FX:11C940DB,FX:11CB9A9F,FX:11CB9AC1,FX:11CC111C,FX:11D5BFCD,FX:11DF5B12,FX:11DF5B75,FX:1240931B,FX:124B38D0,FX:127FC878,FX:1283FFE8,FX:12840617,FX:128979F9,FX:128EBD7E,FX:129135BB,FX:129E053F,FX:12A74DB5,FX:12AB734D,FX:12B8450E,FX:12BD6E73,FX:12C3331B,FX:12C7D66EX-Search-TimeZone: Bias=-60; DaylightBias=-60; TimeZoneKeyName=W. Europe Standard TimeX-BM-Theme: 000000;0078d7X-Search-RPSToken: t%3DEwDYAkR8BAAUcvamItSE/vUHpyZRp3BeyOJPQDsAAZ018joKFt9ONlJduRp0qgN4q0hEVgbtyzwhNOAQGHdiJ/WvF5CgahoZEynXJhIj56iTukhgVUPTic3eRyYR66fmSTdDW3LZw/IwxowvJNO42yNYmggOVq0grbDpD4QdDBVM9tWomORZ6Yhc//Dhybj55G1bMVl6gWid3LX185%2BHPvRzCdiW7tPCZaapPO7gKeTL3oDg104em5KKXTB%2BceyTUab5TPh2hCfSfz3ROVCrQakad6ZQ37pn7Jq55%2B49mfT4CA7pYaH/XGU53tm06AVeElWzPkyU/J4Yr1r8h47zRUwOcxGjC0T6BxpX7IwaaJwfyVT2Tevj23PMjumVtDYDZgAACPxIXebpGL%2BGqAGO2uVUIArwYVaEkhQ22OfhliGLM6ZzUHPcq8OgtEdhPx9a2KM7kV/RwIGjE2EaapB0tt9sgi2DzczVtNbBciuvDyQhmON3mDa1QDzs/rOIXlh4sYR9zv7uexEljV/Imrk%2B/sJT99cLZwVV7PMvd1F75eHIs4pX1BFkLWpqZNETz4fG4HhgXcUZelhm/bcvV1vX49JeogYTt2yiFUOMkY5tR4q28QjWv%2B1R691qg7cHA2JVSATROi1m/RUl6KBLCiACeckPxMzA6kQovWH%2ByRmDxA9ra27P9aO9CW75tKVB/3eKzk4rS28lqzzWYSUjYjkYDnCWOo6hDi/m2h1Dt%2BRXipZMn/BGku0N6WS8mtDNm2EzBNliNDUAhKqoAkUnmRP61pvZjFSi/aTpkXR/x8SfYv14rWHbUs9gyYkSjM1N3VP/7siZSJSl1OyMh3vaC8SGfSZrFSlQKjhgXAbTSfEQoWEBjSVKcudN6yE8YHqv4WtfvpibO/Clm/vLeQhq0fDv3br5Mj5jA5mQS7xg53GzMzhJNGn7pMUQ8cMvUPfsCbtlGq6eZAJ62AE%3D%26p%3DX-Agent-DeviceId: 01000A41090080B6X-BM-CBT: 1713298150User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045X-Device-isOptin: falseAccept-language: en-GB, en, en-USX-Device-Touch: falseX-Device-ClientSession: E5BE7027061746948210979DA4705F6EX-Search-AppId: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUIHost: www.bing.comConnection: Keep-AliveCookie: SRCHUID=V=2&GUID=C4EAB6C130004333A34B5668AE4E4D10&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=en; MUID=4590362BB5CF472B95BBEDB3112D4B7B; MUIDB=4590362BB5CF472B95BBEDB3112D4B7B
Source: global traffic	HTTP traffic detected: GET /2/client_metrics/record HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:27.334Z","expireDate":"2024-10-16T20:08:27.334Z","consentMonths":6,"categories":{"strictly necessary":true,"general marketing and advertising":true,"analytics":true,"performance and functionality":true,"social media advertising":true},"userInteracted":true,"numDots":1}
Source: global traffic	HTTP traffic detected: GET /log_js_sw_data HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=MjA4NDM5OTY2MjI0MTM3Njg4NTc5OTIwMDYxNDAwNzc4NjYxNzIw; t=ReUI7oB54eFRG9-sGlJXBmCx; __Host-js_csrf=ReUI7oB54eFRG9-sGlJXBmCx; __Host-ss=W8NDtkCu28; locale=en; ets=AcVtlBvn5q15i2RcY0Ivwa6WKlfMexLj1J0xBDgYaPgh81%2B2n6ozSjqfFWtS4oWY4%2B8FAlMtuaY8S9FJOwfagP0Y3xjXZFUu5ZcSXKN7eO/55NKg%2BW0AXUS9MQ67ftPK%2BLMu8mlj0nsGfL/WuGZAfzMTW1w7K8xBJq5EE8r6/k076Q%3D%3D; __Host-logged-out-session=ChCwKZ7PZXwSEnuQstJiMfWkEKu1+7AGGi5BSm5BcVhOTjh2eGtJUlZ0ZDNlc0NsejFuY2NnVlItR2FPWWpZS05nUlYzT1hB; __Secure-dbx_consent={"consentType":1,"consentDate":"2024-04-16T20:08:27.334Z","expireDate":"2024-10-16T20:08:27.334Z","consentMonths":6,"categories":{"strictly necessary":true,"general marketing and advertising":true,"analytics":true,"performance and functionality":true,"social media advertising":true},"userInteracted":true,"numDots":1}

Source: unknown

DNS traffic detected: queries for: www.dropbox.com

Source: unknown

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 16 Apr 2024 20:08:16 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: c92d750b05674c378f4d0a82c3335f82Connection: closeContent-Length: 0
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:17 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 3dd69dfb1cdf4e5c86584e2065b501f5Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:19 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 0ee750066ffd4294af98f6bb7b9d3146Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:19 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 5a52b9499d664f4c9b21e538a5cd805dConnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 16 Apr 2024 20:08:20 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: f1f630910e434c50ad5a00dd70a5600fConnection: closeContent-Length: 0
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:27 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 3320c6c4a7964f9ca3f988ceec3ea74aConnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:28 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: a53b67a944504dc29b0ffcb56520cdbfConnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:28 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 17701f1a2c3e4c9b8c722e513d3fd923Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:28 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 51d3485c78704030a8efca8662f52437Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:28 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: dfb90949983945d5b7557ddf41d579f2Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:29 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: b48fa8801d2a46e390e2298315a46b01Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:08:30 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 98edb8971b374203ba4e879deaf767dfConnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundStrict-Transport-Security: max-age=31536000; includeSubDomainsX-Dropbox-Is-Upstream-Batch: trueContent-Length: 1233Content-Type: text/htmlDate: Tue, 16 Apr 2024 20:09:28 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomainsCache-Control: no-cache, no-storeVary: Accept-EncodingX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 506e3f072f7c4399bae9a738d05ee719Connection: close

Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/button
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/fedcm.json
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/fedcmcsp?client_id=
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/iframe/select
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/log
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/revoke
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/select
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/status
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/gsi/style
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/iframe
Source: chromecache_217.1.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/v2/auth
Source: chromecache_262.1.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_262.1.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_217.1.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#cross_origin)
Source: chromecache_217.1.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#display_moment
Source: chromecache_217.1.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#layout
Source: chromecache_217.1.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#skipped_moment
Source: chromecache_262.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_262.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_262.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_238.1.dr	String found in binary or memory: https://dropbox-api.arkoselabs.com/v2/
Source: chromecache_265.1.dr	String found in binary or memory: https://dropbox.com/ux_analytics
Source: chromecache_217.1.dr	String found in binary or memory: https://oauth2.googleapis.com/revoke
Source: chromecache_262.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_164.1.dr, chromecache_223.1.dr, chromecache_239.1.dr, chromecache_168.1.dr	String found in binary or memory: https://reactjs.org/docs/error-decoder.html?invariant=
Source: chromecache_168.1.dr	String found in binary or memory: https://reactjs.org/link/react-polyfills
Source: chromecache_262.1.dr	String found in binary or memory: https://recaptcha.net
Source: chromecache_262.1.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_262.1.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_262.1.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_262.1.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_192.1.dr	String found in binary or memory: https://www.dropbox.com
Source: chromecache_278.1.dr, chromecache_262.1.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_262.1.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__.
Source: chromecache_278.1.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49680 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49691 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.17:49855 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.17:49896 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.17:49897 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.17:49913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.29.6:443 -> 192.168.2.17:49916 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:49917 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 204.79.197.200:443 -> 192.168.2.17:49918 version: TLS 1.2

Source: classification engine

Classification label: clean3.win@22/248@33/13

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://www.dropbox.com/l/scl/AAD-yDt9mP1aiTsUKdpN5XkGmSRGv_2ETnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2040 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5748 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6064 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2040 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5748 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6064 --field-trial-handle=1952,i,3938342680590147736,1522734001170735203,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1427015
Product:	CloudBasic
Start time:	22:07:36
Start date:	16.04.2024
Cookbook:	defaultwindowsinteractivecookbook.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://www.dropbox.com/l/scl/AAD-yDt9mP1aiTsUKdpN5XkGmSRGv_2ETnk

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://www.dropbox.com/l/scl/AAD-yDt9mP1aiTsUKdpN5XkGmSRGv_2ETnk

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://www.dropbox.com/l/scl/AAD-yDt9mP1aiTsUKdpN5XkGmSRGv_2ETnk