Windows Analysis Report
https://znixulyp.com/vGgw6o

Overview

General Information

Sample URL: https://znixulyp.com/vGgw6o
Analysis ID: 1428296
Infos:

Detection

HTMLPhisher
Score: 72
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

Phishing site detected (based on favicon image match)
Yara detected HtmlPhish10
Yara detected HtmlPhish29
Phishing site detected (based on image similarity)
Phishing site or detected (based on various text indicators)
HTML body contains low number of good links
HTML body contains password input but no form action
HTML body with high number of embedded images detected
HTML page contains hidden URLs or javascript code
HTML title does not match URL
Invalid 'forgot password' link found

Classification

Phishing
barindex
Phishing site detected (based on favicon image match)
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html Matcher: Template: microsoft matched with high similarity
Yara detected HtmlPhish10
Source: Yara match File source: 2.4.pages.csv, type: HTML
Yara detected HtmlPhish29
Source: Yara match File source: 1.11.pages.csv, type: HTML
Source: Yara match File source: 1.1.pages.csv, type: HTML
Phishing site detected (based on image similarity)
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html Matcher: Found strong image similarity, brand: MICROSOFT
Phishing site or detected (based on various text indicators)
Source: Chrome DOM: 1.11 OCR Text: Doc Home Book Now x Cookie Policy This website uses cookies. You can find more information on the types of cookies Access incoming fax document used as well as enable individual cookies Fax ID: 01721232534562 in their respective categories. You can Types: PDF Reference: Scanned Document Read more Pages: 3 Date: Thursday, April 13, 2024 Imprint Privacy Policy O Strictly necessary Click to Review Document Acxept all Reject all Accept only selected JIMDO BUILT WITH
HTML body contains low number of good links
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html HTTP Parser: Number of links: 0
HTML body contains password input but no form action
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html HTTP Parser: <input type="password" .../> found but no <form action="...
HTML body with high number of embedded images detected
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html HTTP Parser: Total embedded image size: 31111
HTML page contains hidden URLs or javascript code
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html HTTP Parser: Base64 decoded: https://grupoej.com/awazwwazq/host%5b24.0%5d/dd49311.php
HTML title does not match URL
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html HTTP Parser: Title: Sign in to Best Productivity Provider! does not match URL
Invalid 'forgot password' link found
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html HTTP Parser: Invalid link: Forgot my password
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html HTTP Parser: <input type="password" .../> found
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html HTTP Parser: No favicon
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html HTTP Parser: No <meta name="author".. found
Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html HTTP Parser: No <meta name="copyright".. found
Source: unknown HTTPS traffic detected: 23.44.104.130:443 -> 192.168.2.4:49753 version: TLS 1.2
Source: unknown HTTPS traffic detected: 23.44.104.130:443 -> 192.168.2.4:49762 version: TLS 1.2
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global traffic HTTP traffic detected: GET /vGgw6o HTTP/1.1Host: znixulyp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /renderer/static/d330293187a93ee79023.css HTTP/1.1Host: jimdo-dolphin-static-assets-prod.freetls.fastly.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://doc-36.jimdosite.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /renderer/static/b98099b58f789b786e66.js HTTP/1.1Host: jimdo-dolphin-static-assets-prod.freetls.fastly.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://doc-36.jimdosite.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /image/454238981/23f5ed5a-6c3b-4b7b-a128-0fd6b1efd2a9.png?quality=80,90&auto=webp&disable=upscale&width=320&height=320 HTTP/1.1Host: jimdo-storage.freetls.fastly.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://doc-36.jimdosite.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /renderer/static/default-website-favicon.1a874ea70dbf3a4b0e0e..png HTTP/1.1Host: jimdo-dolphin-static-assets-prod.freetls.fastly.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://doc-36.jimdosite.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic HTTP traffic detected: GET /image/454238981/23f5ed5a-6c3b-4b7b-a128-0fd6b1efd2a9.png?quality=80,90&auto=webp&disable=upscale&width=320&height=320 HTTP/1.1Host: jimdo-storage.freetls.fastly.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /renderer/static/default-website-favicon.1a874ea70dbf3a4b0e0e..png HTTP/1.1Host: jimdo-dolphin-static-assets-prod.freetls.fastly.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /index.html HTTP/1.1Host: pub-06c7664497d24b6cb36a093c4426dcca.r2.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /awazwwazq/host%5b24.0%5d/admin/js/sc.php?r=ZW0sZW1haWwsYWRk HTTP/1.1Host: grupoej.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /turnstile/v0/g/54ea73d52131/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ajax/libs/crypto-js/4.0.0/crypto-js.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /jquery-3.1.1.min.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: pub-06c7664497d24b6cb36a093c4426dcca.r2.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /awazwwazq/host%5b24.0%5d/dd49311.php HTTP/1.1Host: grupoej.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.devsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_sms_27a6d18b56f46818420e60a773c36d4e.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_call_fe87496cc7a44412f7893a72099c120a.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_fluent_authenticator_b59c16ca9bf156438a8a96d45e33db64.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_sms_27a6d18b56f46818420e60a773c36d4e.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_call_fe87496cc7a44412f7893a72099c120a.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_fluent_authenticator_b59c16ca9bf156438a8a96d45e33db64.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ui/loader.js HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ui/v/3.12.1/cmp.cd839b23.js HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ui/v/3.12.1/BrowserSdk.lib.7fd92bef.js HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /latest/core/k1JwB2Dk_ HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.jimdo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /session/1px.png?settingsId=k1JwB2Dk_ HTTP/1.1Host: app.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /cdcs/v/1.0.0/index.html HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /latest/core/k1JwB2Dk_ HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /latest/1/cmp/en/GDPR/k1JwB2Dk_/263.83.372/263.83.372?isOutsideEu=true HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.jimdo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /session/1px.png?settingsId=k1JwB2Dk_ HTTP/1.1Host: app.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /feature-flags?shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635&custom=%7B%22language%22%3A%22en%22%2C%22isMobileLayout%22%3Afalse%2C%22jimdoApp%22%3A%22lp%22%2C%22isAffiliate%22%3Afalse%7D HTTP/1.1Host: feature-flags-proxy.prod.jimdo.systemsConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.jimdo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ui/v/3.12.1/GdprCmpController.3f26e812.js HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /latest/1/cmp/en/GDPR/k1JwB2Dk_/263.83.372/263.83.372?isOutsideEu=true HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /openid/authorize?client_id=lc-website&redirect_uri=https://www.jimdo.com/oidc-silent-callback/&response_type=id_token&scope=openid%20email%20profile&state=256b7a98da7746ca9ff5752a1b68e60e&nonce=7640dc06b94045b186e893193bb13880&prompt=none HTTP/1.1Host: account.e.jimdo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635; jLang=en; _dd_s=logs=0&expire=1713462876327&lock=060b6a1f-b6e8-420b-976a-387b96d51465
Source: global traffic HTTP traffic detected: GET /app/price/index/country HTTP/1.1Host: a.jimdo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.jimdo.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /feature-flags?shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635&custom=%7B%22language%22%3A%22en%22%2C%22isMobileLayout%22%3Afalse%2C%22jimdoApp%22%3A%22lp%22%2C%22isAffiliate%22%3Afalse%7D HTTP/1.1Host: feature-flags-proxy.prod.jimdo.systemsConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ui/v/3.12.1/UcGdprCmpView.5cabf3a0.js HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /app/price/index/country HTTP/1.1Host: a.jimdo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635; jLang=en; _dd_s=logs=0&expire=1713462876327&lock=cd983e3e-7e07-43a9-8539-092df37cdaa9
Source: global traffic HTTP traffic detected: GET /latest/i18n/en/GDPR/k1JwB2Dk_/263.83.372 HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.jimdo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /latest/i18n/en/GDPR/k1JwB2Dk_/263.83.372 HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /uct?v=2&sid=k1JwB2Dk_&t=1&abv=&r=https%3A%2F%2Fwww.jimdo.com%2F%3Futm_source%3Ddol-doc-36%2520en-US%26utm_medium%3Dfooter%2520ad%26utm_campaign%3Downads%2520webview&cb=1713461979163 HTTP/1.1Host: uct.service.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /uct?v=2&sid=k1JwB2Dk_&t=1&abv=&r=https%3A%2F%2Fwww.jimdo.com%2F%3Futm_source%3Ddol-doc-36%2520en-US%26utm_medium%3Dfooter%2520ad%26utm_campaign%3Downads%2520webview&cb=1713461979163 HTTP/1.1Host: uct.service.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /.well-known/web-identity HTTP/1.1Host: google.comConnection: keep-aliveAccept: application/jsonSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: webidentityUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /.well-known/web-identity HTTP/1.1Host: www.google.comConnection: keep-aliveAccept: application/jsonSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: webidentityUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /uct?v=2&sid=k1JwB2Dk_&t=1&abv=&r=https%3A%2F%2Fwww.jimdo.com%2F%3Futm_source%3Ddol-doc-36%2520en-US%26utm_medium%3Dfooter%2520ad%26utm_campaign%3Downads%2520webview&cb=1713461994702 HTTP/1.1Host: uct.service.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /feature-flags?shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635&custom=%7B%22language%22%3A%22en%22%2C%22isMobileLayout%22%3Afalse%2C%22jimdoApp%22%3A%22lp%22%2C%22isAffiliate%22%3Afalse%7D HTTP/1.1Host: feature-flags-proxy.prod.jimdo.systemsConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.jimdo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: W/"2495-u8KIc9+qb9mJNCMKah/oanTPalo"
Source: global traffic HTTP traffic detected: GET /uct?v=2&sid=k1JwB2Dk_&t=1&abv=&r=https%3A%2F%2Fwww.jimdo.com%2F%3Futm_source%3Ddol-doc-36%2520en-US%26utm_medium%3Dfooter%2520ad%26utm_campaign%3Downads%2520webview&cb=1713461994702 HTTP/1.1Host: uct.service.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /feature-flags?shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635&custom=%7B%22language%22%3A%22en%22%2C%22isMobileLayout%22%3Afalse%2C%22jimdoApp%22%3A%22lp%22%2C%22isAffiliate%22%3Afalse%7D HTTP/1.1Host: feature-flags-proxy.prod.jimdo.systemsConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: W/"2495-u8KIc9+qb9mJNCMKah/oanTPalo"
Source: global traffic HTTP traffic detected: GET /openid/authorize?client_id=lc-website&redirect_uri=https://www.jimdo.com/oidc-silent-callback/&response_type=id_token&scope=openid%20email%20profile&state=256b7a98da7746ca9ff5752a1b68e60e&nonce=7640dc06b94045b186e893193bb13880&prompt=none HTTP/1.1Host: account.e.jimdo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635; jLang=en; _dd_s=logs=0&expire=1713462876327&lock=cd983e3e-7e07-43a9-8539-092df37cdaa9
Source: global traffic HTTP traffic detected: GET /app/price/index/country HTTP/1.1Host: a.jimdo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.jimdo.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /.well-known/web-identity HTTP/1.1Host: google.comConnection: keep-aliveAccept: application/jsonSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: webidentityUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /app/price/index/country HTTP/1.1Host: a.jimdo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635; jLang=en; _dd_s=logs=0&expire=1713462876327&lock=cd983e3e-7e07-43a9-8539-092df37cdaa9
Source: global traffic HTTP traffic detected: GET /.well-known/web-identity HTTP/1.1Host: www.google.comConnection: keep-aliveAccept: application/jsonSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: webidentityUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: chromecache_128.2.dr String found in binary or memory: we make it easy for you. Create your online store with ease - we do not charge fees on your sales. Or get your service running with your booking tool.","title":"The easy way to get your first transaction"},"community":{"linkHref":"https://www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fgroups%2F551693728784465%2F%3Fref%3Dshare%26paipv%3D0%26eav%3DAfZ416FHK-1vGrRMXO0KFWEc6dIc0LztRgMYPAuusG8HTZr_5dY-ohooTUxZ75VvJkI","linkLabel":"Join the community","text":"The Jimdo Community is a place where you can benefit from the experiences of other entrepreneurs. Get answers to all your questions and take your business to the next level.","title":"Your support from other business owners"},"domains":{"linkHref":"https://www.jimdo.com/website/domain/","linkLabel":"Get your domain now","text":"Your website appears professional and trustworthy: with a domain including HTTPS encryption, hosting, and the added benefit of being more easily found through search engines like Google.","title":"Your own domain in just three clicks"},"website":{"buttonLabel":"Get started","linkHref":"https://www.jimdo.com/website/how-to-create/","linkLabel":"Learn more","text":"Build your professional website with the power of the Jimdo Artificial Intelligence. Whatever you need for your business and website, our AI simplifies it, speeds it up and knows exactly what you need to be successful.","title":"Your website without all the bells and whistles but with everything you need"}},"TeaserSplit":{"shop-teaser":{"buttonHref":"/pricing/onlineshop/","buttonLabel":"Let's get started","imageAlt":"Man prepares a shipment from his online store","linkHref":"/website/online-store/","linkLabel":"How to create an online store","listItems":[{"text":"No transaction fees (your products, your profit)"},{"text":"Offer shipping and local pickup options"},{"text":"Book appointments right on your site"},{"text":"Take payments via PayPal or Stripe"},{"text":"Manage all your orders in one place"},{"text":"Sell on Instagram and Facebook"},{"text":"Boost your store with sales & discounts"}],"text":"Create an independent online store equals www.facebook.com (Facebook)
Source: chromecache_155.2.dr String found in binary or memory: d like to find out more about the cookies we use and set your individual cookie preferences, please review our [{cookiesPolicyPageName}]({cookiesPolicyLink}).",cmsCookieBannerText2020June:"This website uses cookies. You can find more information on the types of cookies used as well as enable individual cookies in their respective categories. You can adjust your settings at any time through the link in the footer of this website.",cmsCookieBannerTiktokPostCookiePolicyUrl:"https://www.tiktok.com/legal/cookie-policy?lang=en",cmsCookieBannerTiktokPostPrivacyPolicy:"https://www.tiktok.com/legal/privacy-policy-eea?lang=de",cmsCookieBannerTitle:"Cookie Policy",cmsCookieBannerToggleButtonEnableAllText:"Enable all",cmsCookieBannerTumblrCookiePolicyUrl:"https://www.tumblr.com/privacy",cmsCookieBannerTumblrPrivacyPolicy:"https://www.tumblr.com/privacy",cmsCookieBannerTwitchVideoCookiePolicyUrl:"https://www.twitch.tv/p/de-de/legal/cookie-notice/",cmsCookieBannerTwitchVideoPrivacyPolicy:"https://www.twitch.tv/p/de-de/legal/privacy-notice/",cmsCookieBannerTwitterPostCookiePolicyUrl:"https://help.twitter.com/en/rules-and-policies/twitter-cookies",cmsCookieBannerTwitterPostPrivacyPolicy:"https://twitter.com/en/privacy",cmsCookieBannerTypeFormCookiePolicyUrl:"https://admin.typeform.com/to/dwk6gt/?typeform-source=www.typeform.com",cmsCookieBannerTypeFormPrivacyPolicy:"https://admin.typeform.com/to/dwk6gt/?typeform-source=www.typeform.com",cmsCookieBannerVimeoCookiePolicyUrl:"https://vimeo.com/cookie_policy",cmsCookieBannerVimeoDescription:"This cookie is used to unlock and display Vimeo content on this website. \n\nProvider: Vimeo, Inc., 555 West 18th Street, New York, New York 10011 USA\n\nCookie Names and Lifetimes: muxData (Lifetime: 20 years), _ssid (Lifetime: 10 years), language (Lifetime: 10 years), vimeo_gdpr_optin (Lifetime: 10 years), player (Lifetime: 1 year), _qca (Lifetime: 3 months), continuous_play_v3 (Lifetime: 2 months), vuid (Lifetime: 2 years), _derived_epik (Lifetime: 2 months), _ga (Lifetime: 2 years)",cmsCookieBannerVimeoPrivacyPolicyUrl:"https://vimeo.com/privacy",cmsCookieBannerVimeoTitle:"Vimeo",cmsCookieBannerVimeoVideoCookiePolicyUrl:"https://vimeo.com/cookie_policy",cmsCookieBannerVimeoVideoPrivacyPolicy:"https://vimeo.com/privacy",cmsCookieBannerWebStoreStateDescription:"Essential local storage for the correct functioning of this store and for the continued saving of the visitor equals www.twitter.com (Twitter)
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: ll get access to:","title":"Create your\nJimdo account"},"socialButtonList":{"facebook":{"href":"https://www.facebook.com/Jimdo","label":"Visit Jimdo equals www.facebook.com (Facebook)
Source: chromecache_170.2.dr String found in binary or memory: return b}oC.H="internal.enableAutoEventOnTimer";var gc=ia(["data-gtm-yt-inspected-"]),qC=["www.youtube.com","www.youtube-nocookie.com"],rC,sC=!1; equals www.youtube.com (Youtube)
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: s Facebook page"},"instagram":{"href":"https://www.instagram.com/jimdo_global/","label":"Visit Jimdo equals www.facebook.com (Facebook)
Source: chromecache_155.2.dr String found in binary or memory: s IP address, and operating system info.",cmsCookieBannerIFrameAppTypeFormDescription:"Typeform is for building online forms and surveys. To provide this service, it collects the data that the website visitor enters into the online form or survey, as well as the date and time of their visit, duration, IP address, and email address. Cookie Name(s) and Lifetimes: __cf_bm(lifetime: 30mins), attribution_user_id(lifetime: 1 year)",cmsCookieBannerIFrameAppVimeoVideoDescription:"This cookie is used to unlock and display Vimeo content on this website. Provider: Vimeo, Inc., 555 West 18th Street, New York, New York 10011 USA Cookie Names and Lifetimes: muxData (Lifetime: 20 years), _ssid (Lifetime: 10 years), language (Lifetime: 10 years), vimeo_gdpr_optin (Lifetime: 10 years), player (Lifetime: 1 year), _qca (Lifetime: 3 months), continuous_play_v3 (Lifetime: 2 months), vuid (Lifetime: 2 years), _derived_epik (Lifetime: 2 months), _ga (Lifetime: 2 years)",cmsCookieBannerIFrameAppYoutubeVideoDescription:'These cookies are set via embedded YouTube videos. They register anonymous statistical data, e.g. how often the video is shown and which settings are used for playback. No personal data is collected unless the user logs in to their Google Account. In this case, their selections are associated with their account, such as when they click "Like" on a video. \nCookie Name(s) and Lifetimes: YSC(valid for one session), secure-HSID,(lifetime:2 months) Secure-SSID(lifetime:2 months), Secure-APSID(lifetime:2 months), VISITORINFO1LIVE(lifetime:5 months), SIDCC(lifetime: 1 year), LOGIN_INFO(lifetime: 2 years),PREF(lifetime: 2 years), SID(lifetime: 2 years), _Secure-3PSID(lifetime: 2 years), HSID(lifetime: 2 years), SSID(lifetime: 2 years), APISID(lifetime: 2 years), SAPISID(lifetime: 2 years), _Secure-3PAPISID(lifetime: 2 years), Consent (lifetime: 28 years).',cmsCookieBannerInstagramPostCookiePolicyUrl:"https://help.instagram.com/1896641480634370?ref=ig",cmsCookieBannerInstagramPostPrivacyPolicy:"https://help.instagram.com/519522125107875",cmsCookieBannerItunesCookiePolicyUrl:"https://www.apple.com/legal/privacy/de-ww/cookies/",cmsCookieBannerItunesDescription:"This cookie is used to unlock and display Apple Music content on this website.\n\nProvider: Apple Inc., Infinite Loop, Cupertino, CA 95014 USA.\n\nCookie Names and Lifetime:_lost-sound_session (Lifetime: session), JESSIONID (Lifetime: Session)",cmsCookieBannerItunesPrivacyPolicyUrl:"https://www.apple.com/legal/privacy/",cmsCookieBannerItunesTitle:"iTunes",cmsCookieBannerPaypalCookiePolicyUrl:"https://www.paypal.com/ie/webapps/mpp/ua/cookie-full",cmsCookieBannerPaypalDescription:"This is essential in order to enable payments powered by Paypal via this store. \n\nProvider:PayPal (Europe) S. equals www.youtube.com (Youtube)
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: s Twitter page"},"youTube":{"href":"https://www.youtube.com/user/jimdo","label":"Visit Jimdo equals www.twitter.com (Twitter)
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: s Twitter page"},"youTube":{"href":"https://www.youtube.com/user/jimdo","label":"Visit Jimdo equals www.youtube.com (Youtube)
Source: chromecache_215.2.dr String found in binary or memory: s device as listed below.","title":"Stored Information","url":""},"consentHistoryContent":{"title":"History","decisionHeader":"Decision","dateHeader":"Date","yes":"yes","yesImplicit":"yes (website default)","no":"no","noImplicit":"no (website default)","noHistory":"Sorry, we could not load the required information.","serviceId":"nB9FrU5TO"}}},"2fGlUzLWYMeDj5":{"description":"This is a Tracking technology offered by Facebook and used by other Facebook services. It is used to track interactions of visitors with websites (\"Events\") after they have clicked on an ad placed on Facebook or other services provided by Meta (\"Conversion\").\n","id":"2fGlUzLWYMeDj5","legalBasis":["Art. 6 para. 1 s. 1 lit. a GDPR"],"name":"Facebook Pixel","details":{"genericContent":[{"id":"description","description":"This is a Tracking technology offered by Facebook and used by other Facebook services. It is used to track interactions of visitors with websites (\"Events\") after they have clicked on an ad placed on Facebook or other services provided by Meta (\"Conversion\").\n","title":"Description of Service"},{"body":{"type":"text","value":"4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland"},"id":"processingCompany","description":"Meta Platforms Ireland Ltd.","title":"Processing Company"},{"body":{"type":"link","value":"https://www.facebook.com/help/contact/1650115808681298"},"id":"dataProtectionOfficer","description":"Below you can find the email address of the data protection officer of the processing company.","title":"Data Protection Officer of Processing Company"},{"body":{"type":"tag","value":[{"label":"Analytics","id":"dp0"},{"label":"Marketing","id":"dp1"},{"label":"Retargeting","id":"dp2"},{"label":"Advertisement","id":"dp3"},{"label":"Conversion Tracking","id":"dp4"},{"label":"Personalisation","id":"dp5"}]},"description":"This list represents the purposes of the data collection and processing.","id":"dataPurposes","title":"Data Purposes"},{"body":{"type":"tag","value":[{"label":"Cookies","id":"tu0"},{"label":"Pixel","id":"tu1"}]},"description":"This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.","id":"techonologiesUsed","title":"Technologies Used"},{"body":{"type":"tag","value":[{"label":"Ads viewed","id":"dc0"},{"label":"Content viewed","id":"dc1"},{"label":"Device information","id":"dc2"},{"label":"Geographic location","id":"dc3"},{"label":"HTTP-header","id":"dc4"},{"label":"Interactions with advertisement, services, and products","id":"dc5"},{"label":"IP address","id":"dc6"},{"label":"Items clicked","id":"dc7"},{"label":"Marketing information","id":"dc8"},{"label":"Pages visited","id":"dc9"},{"label":"Pixel ID","id":"dc10"},{"label":"Referrer URL","id":"dc11"},{"label":"Usage data","id":"dc12"},{"label":"User behaviour","id":"dc13"},{"label":"Facebook cookie information","id":"dc14"},{"label":"Facebook user ID","id":"dc15"},{"label":"Usage/click
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: s interactions tracked on websites will not be stored longer than for two years. However, the data will be deleted as soon as they are no longer needed for the processing purposes.","id":"rp0"}]},"description":"The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.","id":"retentionPeriod","title":"Retention Period"},{"body":{"type":"tag","value":[{"label":"Meta Platforms Ireland Ltd., Meta Platforms Inc. ","id":"dr0"}]},"description":"In the following the recipients of the data collected are listed.","id":"dataRecipients","title":"Data Recipients"},{"body":{"type":"link","value":"https://www.facebook.com/privacy/explanation"},"id":"privacyPolicy","title":"Click here to read the privacy policy of the data processor"},{"body":{"type":"list","value":[{"label":"Maximum age of cookie storage: 1 year","id":"si0"}]},"description":"Below you can see the longest potential duration for storage on a device, as set when using the cookie method of storage and if there are any other methods used.","id":"storageInformation","title":"Storage Information"}],"storedInfoContent":{"id":"storedInformation","description":"This service uses different means of storing information on a user equals www.facebook.com (Facebook)
Source: chromecache_155.2.dr String found in binary or memory: ssig sind, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland\nCookie-Namen und Lebenszeiten: _fbp (Lebensdauer: 2 Jahre), _fbc(Lebensdauer: 2 Jahre)",cmsCookieBannerFacebookPixelPolicyUrl:"https://www.facebook.com/policies/cookies",cmsCookieBannerFacebookPixelPrivacyPolicy:"https://www.facebook.com/policy.php",cmsCookieBannerFacebookPixelTitle:"Facebook",cmsCookieBannerGADescription:"Diese Cookies sammeln anonymisierte Informationen zu Analysezwecken equals www.facebook.com (Facebook)
Source: unknown DNS traffic detected: queries for: znixulyp.com
Source: unknown HTTP traffic detected: POST /anon HTTP/1.1Host: at.prod.jimdo.systemsConnection: keep-aliveContent-Length: 307sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plain;charset=UTF-8Accept: */*Origin: https://doc-36.jimdosite.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://doc-36.jimdosite.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 18 Apr 2024 17:39:19 GMTContent-Type: text/htmlContent-Length: 27242Connection: closeServer: cloudflareCF-RAY: 87666efecb88135b-ATL
Source: chromecache_137.2.dr String found in binary or memory: http://fontawesome.io
Source: chromecache_137.2.dr String found in binary or memory: http://fontawesome.io/license
Source: chromecache_212.2.dr String found in binary or memory: http://github.com/janl/mustache.js
Source: chromecache_155.2.dr String found in binary or memory: http://tools.google.com/dlpage/gaoptout
Source: chromecache_128.2.dr String found in binary or memory: https://account.e.jimdo.com/login
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://account.e.jimdo.com/signup/apple
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://account.e.jimdo.com/signup/email
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://account.e.jimdo.com/signup/facebook
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://account.e.jimdo.com/signup/google
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/gsi/
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/gsi/button
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/gsi/fedcm.json
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/gsi/fedcmcsp?client_id=
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/gsi/iframe/select
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/gsi/log
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/gsi/revoke
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/gsi/select
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/gsi/status
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/gsi/style
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/o/oauth2/iframe
Source: chromecache_203.2.dr String found in binary or memory: https://accounts.google.com/o/oauth2/v2/auth
Source: chromecache_155.2.dr String found in binary or memory: https://admin.typeform.com/to/dwk6gt/?typeform-source=www.typeform.com
Source: chromecache_170.2.dr String found in binary or memory: https://adservice.google.com/pagead/regclk
Source: chromecache_170.2.dr String found in binary or memory: https://adservice.googlesyndication.com/pagead/regclk
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://aka.ms/privacyresponse
Source: chromecache_155.2.dr String found in binary or memory: https://bandcamp.com/privacy_shield
Source: chromecache_201.2.dr String found in binary or memory: https://careers.jimdo.com/
Source: chromecache_170.2.dr String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_120.2.dr String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/crypto-js/4.0.0/crypto-js.min.js
Source: chromecache_150.2.dr String found in binary or memory: https://challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback
Source: chromecache_170.2.dr String found in binary or memory: https://connect.facebook.net/en_US/fbevents.js
Source: chromecache_170.2.dr String found in binary or memory: https://deploy.mopinion.com/js/pastease.js
Source: chromecache_162.2.dr String found in binary or memory: https://developers.cloudflare.com/r2/data-access/public-buckets/
Source: chromecache_203.2.dr String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#cross_origin)
Source: chromecache_203.2.dr String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#display_moment
Source: chromecache_203.2.dr String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#layout
Source: chromecache_203.2.dr String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#skipped_moment
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr String found in binary or memory: https://fonts.jimstatic.com/
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Poppins:600
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Roboto:400
Source: chromecache_204.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2)
Source: chromecache_204.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2)
Source: chromecache_204.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2)
Source: chromecache_204.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_182.2.dr String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_201.2.dr String found in binary or memory: https://forschungswerkstatt.jimdo.com/
Source: chromecache_170.2.dr String found in binary or memory: https://google.com
Source: chromecache_170.2.dr String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_150.2.dr String found in binary or memory: https://grupoej.com/awazwwazq/host%5b24.0%5d/admin/js/sc.php?r=ZW0sZW1haWwsYWRk
Source: chromecache_201.2.dr String found in binary or memory: https://help.business.jimdo.com/hc/de
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://help.hotjar.com/hc/en-us/articles/115011789248-Hotjar-Cookies
Source: chromecache_155.2.dr String found in binary or memory: https://help.instagram.com/1896641480634370?ref=ig
Source: chromecache_155.2.dr String found in binary or memory: https://help.instagram.com/519522125107875
Source: chromecache_155.2.dr String found in binary or memory: https://help.twitter.com/en/rules-and-policies/twitter-cookies
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://impact.com/privacy-policy/
Source: chromecache_201.2.dr String found in binary or memory: https://jimdo-community-events.jimdosite.com/events/
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/b98099b58f789b786e66.js
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/d330293187a93ee79023.css
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/default-website-favicon.
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr String found in binary or memory: https://jimdo-storage.freetls.fastly.net/
Source: chromecache_139.2.dr String found in binary or memory: https://jimdo-storage.freetls.fastly.net/image/454238981/23f5ed5a-6c3b-4b7b-a128-0fd6b1efd2a9.png?qu
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://launchdarkly.com/policies/privacy/
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://logo.e.jimdo.com/?lng=en
Source: chromecache_203.2.dr String found in binary or memory: https://oauth2.googleapis.com/revoke
Source: chromecache_170.2.dr String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_170.2.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_155.2.dr String found in binary or memory: https://policies.google.com/)
Source: chromecache_155.2.dr String found in binary or memory: https://policies.google.com/privacy?hl=de
Source: chromecache_215.2.dr String found in binary or memory: https://policies.google.com/privacy?hl=en
Source: chromecache_155.2.dr String found in binary or memory: https://policies.google.com/privacy?hl=es
Source: chromecache_155.2.dr String found in binary or memory: https://policies.google.com/privacy?hl=fr
Source: chromecache_155.2.dr String found in binary or memory: https://policies.google.com/privacy?hl=it
Source: chromecache_155.2.dr String found in binary or memory: https://policies.google.com/privacy?hl=ja
Source: chromecache_155.2.dr String found in binary or memory: https://policies.google.com/privacy?hl=nl
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://policy.pinterest.com/en-gb/privacy-policy
Source: chromecache_155.2.dr String found in binary or memory: https://policy.pinterest.com/en/cookies
Source: chromecache_155.2.dr String found in binary or memory: https://policy.pinterest.com/en/privacy-policy
Source: chromecache_201.2.dr String found in binary or memory: https://presse.jimdo.com/
Source: chromecache_139.2.dr String found in binary or memory: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html
Source: chromecache_170.2.dr String found in binary or memory: https://s.pinimg.com/ct/core.js
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://safety.google/privacy/privacy-controls/
Source: chromecache_155.2.dr String found in binary or memory: https://soundcloud.com/pages/privacy
Source: chromecache_170.2.dr String found in binary or memory: https://static.ads-twitter.com/uwt.js
Source: chromecache_155.2.dr String found in binary or memory: https://stripe.com/cookies-policy/legal
Source: chromecache_155.2.dr String found in binary or memory: https://stripe.com/privacy
Source: chromecache_215.2.dr String found in binary or memory: https://support.google.com/policies/contact/general_privacy_form
Source: chromecache_170.2.dr String found in binary or memory: https://td.doubleclick.net
Source: chromecache_155.2.dr String found in binary or memory: https://tools.google.com/dlpage/gaoptout)
Source: chromecache_155.2.dr, chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://twitter.com/en/privacy
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://twitter.com/jimdo
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://twitter.com/personalization
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://twitter.ethicspointvp.com/custom/twitter/forms/data/form_data.asp
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://usercentrics.com/privacy-policy/
Source: chromecache_155.2.dr String found in binary or memory: https://vimeo.com/api/oembed.json?url=
Source: chromecache_155.2.dr String found in binary or memory: https://vimeo.com/cookie_policy
Source: chromecache_155.2.dr String found in binary or memory: https://vimeo.com/privacy
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://vwo.com/compliance/privacy-principles/
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://vwo.com/opt-out/
Source: chromecache_155.2.dr String found in binary or memory: https://www.apple.com/de/legal/privacy/
Source: chromecache_155.2.dr String found in binary or memory: https://www.apple.com/legal/privacy/
Source: chromecache_155.2.dr String found in binary or memory: https://www.apple.com/legal/privacy/de-ww/cookies/
Source: chromecache_155.2.dr String found in binary or memory: https://www.apple.com/legal/privacy/es/
Source: chromecache_155.2.dr String found in binary or memory: https://www.apple.com/legal/privacy/fr-ww/
Source: chromecache_155.2.dr String found in binary or memory: https://www.apple.com/legal/privacy/it/
Source: chromecache_155.2.dr String found in binary or memory: https://www.apple.com/legal/privacy/jp/
Source: chromecache_155.2.dr, chromecache_189.2.dr, chromecache_163.2.dr, chromecache_215.2.dr String found in binary or memory: https://www.cloudflare.com/cookie-policy/
Source: chromecache_162.2.dr String found in binary or memory: https://www.cloudflare.com/favicon.ico
Source: chromecache_155.2.dr String found in binary or memory: https://www.cloudflare.com/ja-jp/cookie-policy/
Source: chromecache_155.2.dr String found in binary or memory: https://www.cloudflare.com/ja-jp/privacypolicy/
Source: chromecache_189.2.dr, chromecache_163.2.dr, chromecache_215.2.dr String found in binary or memory: https://www.cloudflare.com/privacypolicy/
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://www.cognigy.com/privacy-policy
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://www.datadoghq.com/legal/privacy/
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://www.fullstory.com/legal/privacy/
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://www.fullstory.com/optout
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://www.getbeamer.com/privacy-policy/#third-parties-transfers
Source: chromecache_170.2.dr String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_170.2.dr String found in binary or memory: https://www.google.com
Source: chromecache_155.2.dr String found in binary or memory: https://www.google.com/analytics/terms)
Source: chromecache_170.2.dr String found in binary or memory: https://www.googleadservices.com
Source: chromecache_170.2.dr String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://www.hotjar.com/legal/policies/privacy
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://www.instagram.com/jimdo_global/
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo-status.com/)
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo-status.com/).
Source: chromecache_144.2.dr, chromecache_181.2.dr String found in binary or memory: https://www.jimdo.com
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/addon/legal-text-generator/)
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/de/
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/de/addon/legal-text-generator)
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/es/
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/es/addon/legal-text-generator/)
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/es/addon/legal-text-generator/).
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/fr/
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/fr/addon/legal-text-generator/)
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/info/privacy/)
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/it/addon/legal-text-generator/)
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/jp/
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/jp/news/)
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/nl/
Source: chromecache_155.2.dr String found in binary or memory: https://www.jimdo.com/nl/addon/legal-text-generator/)
Source: chromecache_128.2.dr String found in binary or memory: https://www.jimdo.com/website/how-to-create/
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://www.jimdo.com/website/online-store/
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://www.jimdo.com/website/portfolio/
Source: chromecache_155.2.dr String found in binary or memory: https://www.kddi-webcommunications.co.jp/privacy)
Source: chromecache_155.2.dr String found in binary or memory: https://www.paypal.com/ie/webapps/mpp/ua/cookie-full
Source: chromecache_155.2.dr String found in binary or memory: https://www.paypal.com/ie/webapps/mpp/ua/privacy-full
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://www.pinterest.de/JimdoEN/
Source: chromecache_155.2.dr String found in binary or memory: https://www.spotify.com/de/legal/privacy-policy/
Source: chromecache_155.2.dr String found in binary or memory: https://www.spotify.com/es/legal/privacy-policy/
Source: chromecache_155.2.dr String found in binary or memory: https://www.spotify.com/fr/legal/privacy-policy/
Source: chromecache_155.2.dr String found in binary or memory: https://www.spotify.com/it/legal/privacy-policy/
Source: chromecache_155.2.dr String found in binary or memory: https://www.spotify.com/jp/legal/privacy-policy/
Source: chromecache_155.2.dr String found in binary or memory: https://www.spotify.com/legal/cookies-policy/
Source: chromecache_155.2.dr String found in binary or memory: https://www.spotify.com/legal/privacy-policy/
Source: chromecache_155.2.dr String found in binary or memory: https://www.tiktok.com/legal/cookie-policy?lang=en
Source: chromecache_155.2.dr String found in binary or memory: https://www.tiktok.com/legal/privacy-policy-eea?lang=de
Source: chromecache_189.2.dr, chromecache_215.2.dr String found in binary or memory: https://www.tiktok.com/legal/privacy-policy?lang=en#section-1
Source: chromecache_155.2.dr String found in binary or memory: https://www.tumblr.com/privacy
Source: chromecache_155.2.dr String found in binary or memory: https://www.twitch.tv/p/de-de/legal/cookie-notice/
Source: chromecache_155.2.dr String found in binary or memory: https://www.twitch.tv/p/de-de/legal/privacy-notice/
Source: chromecache_146.2.dr, chromecache_128.2.dr String found in binary or memory: https://www.youtube.com/user/jimdo
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown Network traffic detected: HTTP traffic on port 50017 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49979 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49999 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50000
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50035 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49953 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50022 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49974 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50032 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown Network traffic detected: HTTP traffic on port 49939 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50000 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50035
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49940 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50042
Source: unknown Network traffic detected: HTTP traffic on port 49962 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49970 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50042 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49935 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49981 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49947 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50031 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49992 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49969 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49994 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50020 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49939
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49938
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49936
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49935
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49934
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49936 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49960 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown Network traffic detected: HTTP traffic on port 50029 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50019 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49982 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown Network traffic detected: HTTP traffic on port 49937 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49959 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown Network traffic detected: HTTP traffic on port 50030 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown Network traffic detected: HTTP traffic on port 49993 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown HTTPS traffic detected: 23.44.104.130:443 -> 192.168.2.4:49753 version: TLS 1.2
Source: unknown HTTPS traffic detected: 23.44.104.130:443 -> 192.168.2.4:49762 version: TLS 1.2
Source: classification engine Classification label: mal72.phis.win@33/172@84/24
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2576 --field-trial-handle=2544,i,8162842687041464593,4945717451503963078,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://znixulyp.com/vGgw6o"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2576 --field-trial-handle=2544,i,8162842687041464593,4945717451503963078,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Automated click: Accept
Source: Window Recorder Window detected: More than 3 window changes detected
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 signatures2 2 Behavior Graph ID: 1428296 URL: https://znixulyp.com/vGgw6o Startdate: 18/04/2024 Architecture: WINDOWS Score: 72 24 Phishing site detected (based on favicon image match) 2->24 26 Yara detected HtmlPhish29 2->26 28 Yara detected HtmlPhish10 2->28 30 2 other signatures 2->30 6 chrome.exe 1 2->6         started        9 chrome.exe 2->9         started        process3 dnsIp4 14 192.168.2.4, 138, 443, 49617 unknown unknown 6->14 16 239.255.255.250 unknown Reserved 6->16 11 chrome.exe 6->11         started        process5 dnsIp6 18 grupoej.com 192.185.144.111, 443, 49777, 49782 UNIFIEDLAYER-AS-1US United States 11->18 20 part-0012.t-0009.t-msedge.net 13.107.213.40, 443, 49790, 49791 MICROSOFT-CORP-MSN-AS-BLOCKUS United States 11->20 22 30 other IPs or domains 11->22
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
172.217.215.100
 google.com United States
15169 GOOGLEUS false
13.107.246.41
 part-0013.t-0009.t-msedge.net United States
8068 MICROSOFT-CORP-MSN-AS-BLOCKUS false
54.72.164.245
 feature-flags-proxy.prod.jimdo.systems United States
16509 AMAZON-02US false
104.18.3.35
 pub-06c7664497d24b6cb36a093c4426dcca.r2.dev United States
13335 CLOUDFLARENETUS false
142.250.9.106
 unknown United States
15169 GOOGLEUS false
151.101.130.137
 code.jquery.com United States
54113 FASTLYUS false
34.149.254.14
 web.cmp.usercentrics.eu United States
2686 ATGS-MMD-ASUS false
13.107.213.40
 part-0012.t-0009.t-msedge.net United States
8068 MICROSOFT-CORP-MSN-AS-BLOCKUS false
54.217.4.226
 at.prod.jimdo.systems United States
16509 AMAZON-02US false
52.2.56.64
 znixulyp.com United States
14618 AMAZON-AESUS false
104.17.24.14
 cdnjs.cloudflare.com United States
13335 CLOUDFLARENETUS false
18.200.162.103
 account.prod.jimdo.systems United States
16509 AMAZON-02US false
172.217.215.139
 unknown United States
15169 GOOGLEUS false
34.95.108.180
 uct.service.usercentrics.eu United States
15169 GOOGLEUS false
192.185.144.111
 grupoej.com United States
46606 UNIFIEDLAYER-AS-1US false
142.250.105.106
 unknown United States
15169 GOOGLEUS false
151.101.2.79
 jimdo-dolphin-static-assets-prod.freetls.fastly.net United States
54113 FASTLYUS false
64.233.177.105
 www.google.com United States
15169 GOOGLEUS false
35.190.14.188
 app.usercentrics.eu United States
15169 GOOGLEUS false
239.255.255.250
 unknown Reserved
unknown unknown false
34.102.170.124
 v1.api.service.cmp.usercentrics.eu United States
15169 GOOGLEUS false
35.201.111.240
 consent-api.service.consent.usercentrics.eu United States
15169 GOOGLEUS false
104.17.2.184
 challenges.cloudflare.com United States
13335 CLOUDFLARENETUS false

Private

IP
192.168.2.4

Contacted Domains

Name IP Active
znixulyp.com 52.2.56.64 true
app.usercentrics.eu 35.190.14.188 true
google.com 172.217.215.100 true
at.prod.jimdo.systems 54.217.4.226 true
web.cmp.usercentrics.eu 34.149.254.14 true
feature-flags-proxy.prod.jimdo.systems 54.72.164.245 true
account.prod.jimdo.systems 18.200.162.103 true
fp2e7a.wpc.phicdn.net 192.229.211.108 true
jimdo-dolphin-static-assets-prod.freetls.fastly.net 151.101.2.79 true
part-0013.t-0009.t-msedge.net 13.107.246.41 true
code.jquery.com 151.101.130.137 true
uct.service.usercentrics.eu 34.95.108.180 true
pub-06c7664497d24b6cb36a093c4426dcca.r2.dev 104.18.3.35 true
cdnjs.cloudflare.com 104.17.24.14 true
consent-api.service.consent.usercentrics.eu 35.201.111.240 true
jimdo-storage.freetls.fastly.net 151.101.2.79 true
challenges.cloudflare.com 104.17.2.184 true
www.google.com 64.233.177.105 true
grupoej.com 192.185.144.111 true
part-0012.t-0009.t-msedge.net 13.107.213.40 true
v1.api.service.cmp.usercentrics.eu 34.102.170.124 true
a.prod.jimdo.systems 18.200.162.103 true
account.e.jimdo.com unknown unknown
doc-36.jimdosite.com unknown unknown
country.jimdo.com unknown unknown
a.jimdo.com unknown unknown
fonts.jimstatic.com unknown unknown
www.jimdo.com unknown unknown

Contacted URLs

Name Malicious Antivirus Detection Reputation
https://uct.service.usercentrics.eu/uct?v=2&sid=k1JwB2Dk_&t=1&abv=&r=https%3A%2F%2Fwww.jimdo.com%2F%3Futm_source%3Ddol-doc-36%2520en-US%26utm_medium%3Dfooter%2520ad%26utm_campaign%3Downads%2520webview&cb=1713461994702 false
    		unknown
    https://consent-api.service.consent.usercentrics.eu/consent/uw/3 false
      		unknown
      https://web.cmp.usercentrics.eu/ui/v/3.12.1/cmp.cd839b23.js false
        		unknown
        https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html true
          		unknown
          https://feature-flags-proxy.prod.jimdo.systems/feature-flags?shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635&custom=%7B%22language%22%3A%22en%22%2C%22isMobileLayout%22%3Afalse%2C%22jimdoApp%22%3A%22lp%22%2C%22isAffiliate%22%3Afalse%7D false
            		unknown
            about:blank false
              		low
              https://doc-36.jimdosite.com/imprint/ false
                		high
                https://jimdo-storage.freetls.fastly.net/image/454238981/23f5ed5a-6c3b-4b7b-a128-0fd6b1efd2a9.png?quality=80,90&auto=webp&disable=upscale&width=320&height=320 false
                  		unknown
                  https://grupoej.com/awazwwazq/host%5b24.0%5d/dd49311.php false
                    		unknown
                    https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/b98099b58f789b786e66.js false
                      		unknown
                      https://at.prod.jimdo.systems/anon false
                        		unknown
                        https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.css false
                          		high
                          https://doc-36.jimdosite.com/ false
                            		high
                            https://a.jimdo.com/app/price/index/country false
                              		high
                              https://challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js?onload=onloadTurnstileCallback false
                                		high
                                https://account.e.jimdo.com/openid/authorize?client_id=lc-website&redirect_uri=https://www.jimdo.com/oidc-silent-callback/&response_type=id_token&scope=openid%20email%20profile&state=256b7a98da7746ca9ff5752a1b68e60e&nonce=7640dc06b94045b186e893193bb13880&prompt=none false
                                  		high
                                  https://challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback false
                                    		high
                                    https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/default-website-favicon.1a874ea70dbf3a4b0e0e..png false
                                      		unknown
                                      https://web.cmp.usercentrics.eu/ui/v/3.12.1/UcGdprCmpView.5cabf3a0.js false
                                        		unknown
                                        https://at.prod.jimdo.systems/cf false
                                          		unknown
                                          https://web.cmp.usercentrics.eu/ui/loader.js false
                                            		unknown
                                            https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/d330293187a93ee79023.css false
                                              		unknown
                                              https://v1.api.service.cmp.usercentrics.eu/latest/core/k1JwB2Dk_ false
                                                		unknown
                                                https://www.google.com/.well-known/web-identity false
                                                  		high
                                                  https://at.prod.jimdo.systems/rich false
                                                    		unknown
                                                    https://web.cmp.usercentrics.eu/ui/v/3.12.1/GdprCmpController.3f26e812.js false
                                                      		unknown
                                                      https://www.jimdo.com/oidc-silent-callback/#error=login_required&error_description=The%20Authorization%20Server%20requires%20End-User%20authentication&state=256b7a98da7746ca9ff5752a1b68e60e false
                                                        		high