Windows Analysis Report
https://librospy.com/

Overview

General Information

Sample URL:	https://librospy.com/
Analysis ID:	1428525
Infos:

Detection

Score:	56
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Phishing site detected (based on favicon image match)

Sample execution stops while process was sleeping (likely an evasion)

Classification

Signatures

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://librospy.com/

SlashNext: detection malicious, Label: Credential Stealing type: Phishing & Social Engineering

Phishing

Phishing site detected (based on favicon image match)

Source: https://mellowfast.digital	Matcher: Template: fedex matched with high similarity
Source: https://mellowfast.digital/tiz/auth/delivery.php	Matcher: Template: fedex matched with high similarity

Source: https://cdn.bfldr.com/I22OPSFM/at/kjcgfjhvjf9jh6h3shmsgms7/icon_arrow_down_blue_16x16.svg	HTTP Parser: No favicon
Source: https://td.doubleclick.net/td/rul/863238793?random=1713499584571&cv=11&fst=1713499584571&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&hn=www.googleadservices.com&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&pscdl=noapi&auid=862245534.1713499585&fledge=1&data=event%3Dgtag.config	HTTP Parser: No favicon
Source: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0	HTTP Parser: No favicon
Source: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 23.33.136.127:443 -> 192.168.2.4:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.33.136.127:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.4:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.4:49854 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: librospy.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: librospy.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://librospy.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.librospy.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://librospy.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.librospy.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tiz/ HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://librospy.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tiz/auth/index.php HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://librospy.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tiz/auth/delivery.php HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://librospy.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-dependencies.min.73b7c9d10f170d7443363bf773dcaee6.css HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-base.min.39eb5ce80591e480ff075bb8c3f07a3e.css HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-xf.min.b059365f0128729ca91fd6fdbbb83fd6.css HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/virtualagent-us.min.css HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-dependencies.min.7e0397849f3bb9ae52ab042b377426e5.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/secureCheck.min.94caf758834f763f9ff19cb0c7fcd189.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/shipping-routing.min.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/virtualagent.min.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/200-es5.000d3c4beff2cf0185d2.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/11.49f0b3e462d2d1363ad2.chunk.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /libs/granite/csrf/token.json HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/logo.png HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-appInit.min.404cc2e560c53e989033d0cd6cd5515b_002.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-appInit.min.404cc2e560c53e989033d0cd6cd5515b.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlibs.min.300d161de90feabc95f06858b1de7d3d.css HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/logo.png HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /libs/granite/csrf/token.json HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlibs.min.b51957cb1a5cdd48612865b09756fab7.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/Gradient%20Announcement%20Icon.png HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /content/dam/fedex/us-united-states/FedEx-Office/images/2022/q1/tracking-modify-deliveries01.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/Gradient%20Announcement%20Icon.png HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/FED03799_TrackingLPUpdate_MobileAppPod_727x463.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/Location3-FED03799_TrackingLPUpdate_ConsumerGroundShipPod_72.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/FED03799_TrackingLPUpdate_MobileAppPod_727x463.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/Location3-FED03799_TrackingLPUpdate_ConsumerGroundShipPod_72.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=2LHvL8scypFrW4V&MD=N5HtAvpV HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/gdl-fedex.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /etc/clientlibs/fedex/common/css/resources/fonts/Roboto-Bold.ttf HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://mellowfast.digitalsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-base.min.39eb5ce80591e480ff075bb8c3f07a3e.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /etc/clientlibs/fedex/common/css/resources/fonts/Roboto-Regular.ttf HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://mellowfast.digitalsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-base.min.39eb5ce80591e480ff075bb8c3f07a3e.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /etc/clientlibs/fedex/common/css/resources/fonts/Roboto-Light.ttf HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://mellowfast.digitalsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-base.min.39eb5ce80591e480ff075bb8c3f07a3e.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /etc.clientlibs/clientlibs/fedex/images/resources/menu-sprite.png HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-base.min.39eb5ce80591e480ff075bb8c3f07a3e.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/js.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/1033577797/?random=1666344761857&cv=11&fst=1666344761857&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&hn=www.googleadservices.com&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/1033577797/?random=1666344762477&cv=11&fst=1666344762477&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&hn=www.googleadservices.com&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/RC578cf853036549a9b97caed6bbcc18ad-source.min.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/RC29b78eba84b348c9b1dcd3bbe152e1e6-source.min.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/kids-christmas-presents.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /etc.clientlibs/clientlibs/fedex/images/resources/menu-sprite.png HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p; Nina-nina-fedex-session=%7B%22loginStatus%22%3A%22loggedOut%22%7D; gdl-clientId=23648864-c755-4dc1-a7cc-e795ed142b85; s_invisit=true; g_sref=librospy.com/; g_stime=1713499523125; s_vnum=1713563999999&vn=1
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/1033577797/?random=1666344762477&cv=11&fst=1666342800000&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&fmt=3&is_vtc=1&cid=CAQSGwB7FLtq3IXTCb52qV82NbNyiGiAQysIyIxAdg&random=557058968&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/1033577797/?random=1666344761857&cv=11&fst=1666342800000&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqatjEs-QwdTZAW64wxmAKN54Su4u40A&random=64880253&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/kids-christmas-presents.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p; Nina-nina-fedex-session=%7B%22loginStatus%22%3A%22loggedOut%22%7D; gdl-clientId=23648864-c755-4dc1-a7cc-e795ed142b85; s_invisit=true; g_sref=librospy.com/; g_stime=1713499523125; s_vnum=1713563999999&vn=1
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/1033577797/?random=1666344762477&cv=11&fst=1666342800000&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&fmt=3&is_vtc=1&cid=CAQSGwB7FLtq3IXTCb52qV82NbNyiGiAQysIyIxAdg&random=557058968&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/1033577797/?random=1666344761857&cv=11&fst=1666342800000&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqatjEs-QwdTZAW64wxmAKN54Su4u40A&random=64880253&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=2LHvL8scypFrW4V&MD=N5HtAvpV HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=1E22171B520E93BF0A490D44%40AdobeOrg&d_nsid=2&ts=1713499582324 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/x-www-form-urlencodedAccept: /Origin: https://www.fedex.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /id/rd?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=1E22171B520E93BF0A490D44%40AdobeOrg&d_nsid=2&ts=1713499582324 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/x-www-form-urlencodedAccept: /Origin: https://www.fedex.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /id/rd?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=1E22171B520E93BF0A490D44%40AdobeOrg&d_nsid=2&ts=1713499582324 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /dest5.html?d_nsid=2 HTTP/1.1Host: fedex.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=5.0.1&d_fieldgroup=A&mcorgid=1E22171B520E93BF0A490D44%40AdobeOrg&mid=62520134664917519204071722462971135089&ts=1713499583578 HTTP/1.1Host: smetrics.fedex.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/x-www-form-urlencodedAccept: /Origin: https://www.fedex.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: siteDC=edc; xacc=US; fdx_cbid=30375628281713499536095780029921; fdx_locale=en_US; fdx_redirect=en-us; cc_path=us; isTablet=false; isMobile=false; isWireless=false; aemserver=PROD-P-dotcom; PIM-SESSION-ID=j8c5zU0DbH8Cjcv5; bm_sz=D05C51329A285DC5358C75E692B31241~YAAQiZfAFx8QXeeOAQAASHaI9BcrL+PqiDpDGq6BsaWmhozmBBdT4x6v/uCtOpvb1ihC9j9dQ2mitYfvVDqJngR6x1GjTjyzl/CNgyLStBszOu26JdPp24w3xR+iU422MjoJSfp8rCxXEyS/nkz6gsRL4NTrcJW3eiC/DZksfZSLxyseMB3oYKeqgw00xPoSH0oKnqDPxhVUC70fQcgH6HhGeycS+OPXih8M3sjl71LGs1VpjRW3PjYGTxdQ4RedDLLis8n8lrNlxQ5WyvA9ssF7hJESmDl1RnMwfb3c7FQ3JtiNQTymSGKZqb/w39ZR135n/8cMPOPkDAbIcYqOS8jeFfDREwwQ7rN4oBfLGrBno8J6wDgprdPccyEuoWy3mZFlpb9nmq1Rxw==~4473136~3749176; _abck=4460E30727B6CD22BD0D688F4824C390~0~YAAQiZfAFw0TXeeOAQAAAa+I9AscCCYp4+TbJe+Lz6DRbYeeUGJqp7SBw+DP/NMfpmvVe5zSxWTtXicN5mojESTI8RwD2O0PTh0hylyUB38qisKHLqv2x6hOcW6LkG/C3MjYZPx+aQjfk/p4uTNSdNhOnWqLdimYW1lwPfZebaMX2+/eugSi4eGODXehDIdN8d4uc6d9KaIMx41OlF93HCK2cTdfzga/CK76c3y/17cr8ulSwGVe/oP83iQgbA7raYDLh92rkyG8NK6snnVTUlFrnadMki5z4IhyWQyO3cl5DTwOWfpe/cG3/vJTXb2B5BUQ3FLn5uVfR11FbJD9gZ/H5FqY0zesjLk16cQss1OrBOEdMw/q4OvASnWmydM3yAb+ewtT7/wfCxzg5Co26Xukb0ulogA=~-1~-1~-1; gdl-clientId=a9674903-9b4b-4a2b-bab7-437425ae9b37; s_invisit=true; g_sref=(direct); g_stime=1713499582268; s_vnum=1713563999999&vn=1; at_check=true; mbox=session#bbce809c7012486c84d79a3473b6dbb5#1713501443; AMCVS_1E22171B520E93BF0A490D44%40AdobeOrg=1; AMCV_1E22171B520E93BF0A490D44%40AdobeOrg=359503849%7CMCIDTS%7C19833%7CMCMID%7C62520134664917519204071722462971135089%7CMCAAMLH-1714104383%7C7%7CMCAAMB-1714104383%7CRKhpRz8krg2tLO6pguXWp5olkAcUniQYPHaMWWgdJ3xzPWQmdj0y%7CMCOPTOUT-1713506783s%7CNONE%7CvVersion%7C5.0.1
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=411&dpuuid=ZiHtwAAAAH94BQN2 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=5.0.1&d_fieldgroup=A&mcorgid=1E22171B520E93BF0A490D44%40AdobeOrg&mid=62520134664917519204071722462971135089&ts=1713499583578 HTTP/1.1Host: smetrics.fedex.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: siteDC=edc; xacc=US; fdx_cbid=30375628281713499536095780029921; fdx_locale=en_US; fdx_redirect=en-us; cc_path=us; isTablet=false; isMobile=false; isWireless=false; aemserver=PROD-P-dotcom; PIM-SESSION-ID=j8c5zU0DbH8Cjcv5; bm_sz=D05C51329A285DC5358C75E692B31241~YAAQiZfAFx8QXeeOAQAASHaI9BcrL+PqiDpDGq6BsaWmhozmBBdT4x6v/uCtOpvb1ihC9j9dQ2mitYfvVDqJngR6x1GjTjyzl/CNgyLStBszOu26JdPp24w3xR+iU422MjoJSfp8rCxXEyS/nkz6gsRL4NTrcJW3eiC/DZksfZSLxyseMB3oYKeqgw00xPoSH0oKnqDPxhVUC70fQcgH6HhGeycS+OPXih8M3sjl71LGs1VpjRW3PjYGTxdQ4RedDLLis8n8lrNlxQ5WyvA9ssF7hJESmDl1RnMwfb3c7FQ3JtiNQTymSGKZqb/w39ZR135n/8cMPOPkDAbIcYqOS8jeFfDREwwQ7rN4oBfLGrBno8J6wDgprdPccyEuoWy3mZFlpb9nmq1Rxw==~4473136~3749176; _abck=4460E30727B6CD22BD0D688F4824C390~0~YAAQiZfAFw0TXeeOAQAAAa+I9AscCCYp4+TbJe+Lz6DRbYeeUGJqp7SBw+DP/NMfpmvVe5zSxWTtXicN5mojESTI8RwD2O0PTh0hylyUB38qisKHLqv2x6hOcW6LkG/C3MjYZPx+aQjfk/p4uTNSdNhOnWqLdimYW1lwPfZebaMX2+/eugSi4eGODXehDIdN8d4uc6d9KaIMx41OlF93HCK2cTdfzga/CK76c3y/17cr8ulSwGVe/oP83iQgbA7raYDLh92rkyG8NK6snnVTUlFrnadMki5z4IhyWQyO3cl5DTwOWfpe/cG3/vJTXb2B5BUQ3FLn5uVfR11FbJD9gZ/H5FqY0zesjLk16cQss1OrBOEdMw/q4OvASnWmydM3yAb+ewtT7/wfCxzg5Co26Xukb0ulogA=~-1~-1~-1; gdl-clientId=a9674903-9b4b-4a2b-bab7-437425ae9b37; s_invisit=true; g_sref=(direct); g_stime=1713499582268; s_vnum=1713563999999&vn=1; at_check=true; AMCVS_1E22171B520E93BF0A490D44%40AdobeOrg=1; mbox=session#bbce809c7012486c84d79a3473b6dbb5#1713501444; s_ecid=MCMID%7C62520134664917519204071722462971135089; AMCV_1E22171B520E93BF0A490D44%40AdobeOrg=359503849%7CMCIDTS%7C19833%7CMCMID%7C62520134664917519204071722462971135089%7CMCAAMLH-1714104383%7C7%7CMCAAMB-1714104383%7CRKhpRz8krg2tLO6pguXWp5olkAcUniQYPHaMWWgdJ3xzPWQmdj0y%7CMCOPTOUT-1713506784s%7CNONE%7CMCAID%7CNONE%7CvVersion%7C5.0.1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=adobe_dmp&google_cm&gdpr=0&gdpr_consent=&google_hm=NjIzODkwMTQzNTA5MjE4OTMzNzQwOTU3OTYwNjcwMjA2MjIxMDQ= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://fedex.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /rest/v1/delivery?client=fedex&sessionId=bbce809c7012486c84d79a3473b6dbb5&version=2.8.2 HTTP/1.1Host: fedex.tt.omtrdc.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /b/ss/fedexglbl/10/JS-2.22.0/s76741845197920?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=19%2F3%2F2024%206%3A6%3A24%205%20-120&d.&nsid=2&jsonv=1&.d&sdid=3C589679D2DEF1BA-3FB9C0700529D741&mid=62520134664917519204071722462971135089&aamlh=7&ce=UTF-8&pageName=fedex%2Fshipping%2Fmobile&g=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&aamb=RKhpRz8krg2tLO6pguXWp5olkAcUniQYPHaMWWgdJ3xzPWQmdj0y&h1=fedex%2Fshipping%2Fmobile&c2=us&c3=en&c4=D%3Dv4&v4=Never%20Logged%20In&c5=us&c6=D%3Dv6&c7=D%3Dv7&v7=11%3A00PM%7CThursday&c12=D%3Dv2&c13=1109&v13=30375628281713499536095780029921&c24=ootb%3Apage&c29=2024-04-19%2006%3A06%3A22&v30=largeViewPort&c31=62520134664917519204071722462971135089&c33=productpage&c35=D%3DAccept-Language&c38=D%3Dv38&v38=D%3DpageName&c40=D%3Devents&v40=D%3Devents&c41=D%3Dv41&v41=1&c43=D%3Dv43&v43=P%3Afedex%2Fshipping%2Fmobile&c46=D%3DpageName&v46=D%3DpageName&c47=www.fedex.com&c48=AA%3A2.22.0%20%7C%20GDL%3A4.57.0&c50=fedexglbl&v50=www.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&c52=2024-04-19&v52=2024-04-19&c55=gdpr%3Ano%3A4&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=907&mcorgid=1E22171B520E93BF0A490D44%40AdobeOrg&AQE=1 HTTP/1.1Host: smetrics.fedex.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: siteDC=edc; xacc=US; fdx_cbid=30375628281713499536095780029921; fdx_locale=en_US; fdx_redirect=en-us; cc_path=us; isTablet=false; isMobile=false; isWireless=false; aemserver=PROD-P-dotcom; PIM-SESSION-ID=j8c5zU0DbH8Cjcv5; bm_sz=D05C51329A285DC5358C75E692B31241~YAAQiZfAFx8QXeeOAQAASHaI9BcrL+PqiDpDGq6BsaWmhozmBBdT4x6v/uCtOpvb1ihC9j9dQ2mitYfvVDqJngR6x1GjTjyzl/CNgyLStBszOu26JdPp24w3xR+iU422MjoJSfp8rCxXEyS/nkz6gsRL4NTrcJW3eiC/DZksfZSLxyseMB3oYKeqgw00xPoSH0oKnqDPxhVUC70fQcgH6HhGeycS+OPXih8M3sjl71LGs1VpjRW3PjYGTxdQ4RedDLLis8n8lrNlxQ5WyvA9ssF7hJESmDl1RnMwfb3c7FQ3JtiNQTymSGKZqb/w39ZR135n/8cMPOPkDAbIcYqOS8jeFfDREwwQ7rN4oBfLGrBno8J6wDgprdPccyEuoWy3mZFlpb9nmq1Rxw==~4473136~3749176; _abck=4460E30727B6CD22BD0D688F4824C390~0~YAAQiZfAFw0TXeeOAQAAAa+I9AscCCYp4+TbJe+Lz6DRbYeeUGJqp7SBw+DP/NMfpmvVe5zSxWTtXicN5mojESTI8RwD2O0PTh0hylyUB38qisKHLqv2x6hOcW6LkG/C3MjYZPx+aQjfk/p4uTNSdNhOnWqLdimYW1lwPfZebaMX2+/eugSi4eGODXehDIdN8d4uc6d9KaIMx41OlF93HCK2cTdfzga/CK76c3y/17cr8ulSwGVe/oP83iQgbA7raYDLh92rkyG8NK6snnVTUlFrnadMki5z4IhyWQyO3cl5DTwOWfpe/cG3/vJTXb2B5BUQ3FLn5uVfR11FbJD9gZ/H5FqY0zesjLk16cQss1OrBOEdMw/q4OvASnWmydM3yAb+ewtT7/wfCxzg5Co26Xukb0ulogA=~-1~-1~-1; gdl-clientId=a9674903-9b4b-4a2b-bab7-437425ae9b37; s_invisit=true; g_sref=(direct); g_stime=1713499582268; s_vnum=1713563999999&vn=1; at_check=tru
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=411&dpuuid=ZiHtwAAAAH94BQN2 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104; dextp=771-1-1713499584272\|903-1-1713499584508; dpm=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /track/cmf/generic?ttd_pid=aam&gdpr=0&gdpr_consent=&domain=www.fedex.com&ttd_tpi=1 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://fedex.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/863238793?random=1713499584571&cv=11&fst=1713499584571&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&hn=www.googleadservices.com&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&pscdl=noapi&auid=862245534.1713499585&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=771&dpuuid=CAESENuFHFS4eYNQMpS5QNZnWOk&google_cver=1?gdpr=0&gdpr_consent= HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://fedex.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104; dextp=771-1-1713499584272\|903-1-1713499584508; dpm=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/863238793/?random=1713499584571&cv=11&fst=1713499584571&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&hn=www.googleadservices.com&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&pscdl=noapi&auid=862245534.1713499585&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUnPxFuIVv-lsRTjwMSJQIR3YFmUyRrAxqEcn3LFimR1ylqTzXDqWt-7KJCEj84
Source: global traffic	HTTP traffic detected: GET /track/cmf/generic?ttd_pid=aam&gdpr=0&gdpr_consent=&domain=www.fedex.com&ttd_tpi=1 HTTP/1.1Host: match.adsrvr.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=771&dpuuid=CAESENuFHFS4eYNQMpS5QNZnWOk&google_cver=1?gdpr=0&gdpr_consent= HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104; dextp=771-1-1713499584272\|903-1-1713499584508; dpm=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /beacon/fedexcorp/fedex_prod/scripts/evergage.min.js HTTP/1.1Host: cdn.evgnet.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/chatLoader.min.js?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/site_10006050_default_helper.js?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/site_10006050_default_jssdk.js?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/all_10006050.json?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.fedex.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/tcFramework_jssdk.min.js?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/all_10006050.json?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/863238793/?random=1713499584571&cv=11&fst=1713499200000&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtqCU8hYJLWjorfFawrJbeBVlPXZ0UYRqR1diSbx3kmWjue8L3M&random=492994337&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/863238793/?random=1713499584571&cv=11&fst=1713499200000&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtqCU8hYJLWjorfFawrJbeBVlPXZ0UYRqR1diSbx3kmWjue8L3M&random=492994337&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: <a href="https://www.facebook.com/FedEx/" target="_self" aria-label="FedEx on Facebook" class="fxg-link fxg-icon--facebook equals www.facebook.com (Facebook)
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/fedex" target="_self" aria-label="FedEx on LinkedIn" class="fxg-link fxg-icon--linkedin equals www.linkedin.com (Linkedin)
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: <a href="https://www.youtube.com/fedex" target="_self" aria-label="FedEx on YouTube" class="fxg-link fxg-icon--youtube equals www.youtube.com (Youtube)
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: "https://www.facebook.com/FedEx/", equals www.facebook.com (Facebook)
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: "https://www.linkedin.com/company/fedex", equals www.linkedin.com (Linkedin)
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: "https://www.youtube.com/fedex", equals www.youtube.com (Youtube)
Source: chromecache_279.2.dr	String found in binary or memory: $("."+FDX.SECONDARYMEMU.socialDropdownClass).toggle()},socialShare:function(a){var c=encodeURIComponent(window.location.href),e="width\x3d600,height\x3d400,resizable\x3dno,top\x3d"+(screen.height/2-200)+",left\x3d"+(screen.width/2-300);switch(a){case "twitter":window.open("http://twitter.com/intent/tweet?\x26text\x3d"+encodeURIComponent($("head").find('meta[name\x3d"twitter:description"]').attr("content"))+"\x26url\x3d"+c+"\x26hashtags\x3d","",e).trigger("focus");break;case "linkedin":window.open("http://www.linkedin.com/shareArticle?mini\x3dtrue\x26url\x3d"+ equals www.linkedin.com (Linkedin)
Source: chromecache_279.2.dr	String found in binary or memory: $("."+FDX.SECONDARYMEMU.socialDropdownClass).toggle()},socialShare:function(a){var c=encodeURIComponent(window.location.href),e="width\x3d600,height\x3d400,resizable\x3dno,top\x3d"+(screen.height/2-200)+",left\x3d"+(screen.width/2-300);switch(a){case "twitter":window.open("http://twitter.com/intent/tweet?\x26text\x3d"+encodeURIComponent($("head").find('meta[name\x3d"twitter:description"]').attr("content"))+"\x26url\x3d"+c+"\x26hashtags\x3d","",e).trigger("focus");break;case "linkedin":window.open("http://www.linkedin.com/shareArticle?mini\x3dtrue\x26url\x3d"+ equals www.twitter.com (Twitter)
Source: chromecache_279.2.dr	String found in binary or memory: (function(a){var c=function(b,c,e){if(b)return e=e\|\|"","object"===typeof e&&(e=a.param(e,!0)),a.each(c,function(a,c){b=b.replace("$"+a,c\|\|"")}),e.length&&(b+=(0<b.indexOf("?")?"\x26":"?")+e),b},e={youtube:{matcher:/(youtube\.com\|youtu\.be\|youtube\-nocookie\.com)\/(watch\?(.&)?v=\|v\/\|u\/\|embed\/?)?(videoseries\?list=(.)\|[\w-]{11}\|\?listType=(.)&list=(.))(.*)/i,params:{autoplay:1,autohide:1,fs:1,rel:0,hd:1,wmode:"transparent",enablejsapi:1,html5:1},paramPlace:8,type:"iframe",url:"//www.youtube.com/embed/$4", equals www.youtube.com (Youtube)
Source: chromecache_279.2.dr	String found in binary or memory: (function(a,c){function e(a){var b={"\x26":"\x26amp;","\x3c":"\x26lt;","\x3e":"\x26gt;",'"':"\x26quot;","'":"\x26#39;","/":"\x26#x2F;","`":"\x26#x60;","\x3d":"\x26#x3D;"};return String(a).replace(/[&<>"'`=\/]/g,function(a){return b[a]})}c.extend(!0,c.fxModalBox.defaults,{btnTpl:{share:'\x3cbutton data-fxModalBox-share class\x3d"fxModalBox-button fxModalBox-button--share" title\x3d"{{SHARE}}"\x3e\x3csvg viewBox\x3d"0 0 40 40"\x3e\x3cpath d\x3d"M6,30 C8,18 19,16 23,16 L23,16 L23,10 L33,20 L23,29 L23,24 C19,24 8,27 6,30 Z"\x3e\x3c/svg\x3e\x3c/button\x3e'},share:{tpl:'\x3cdiv class\x3d"fxModalBox-share"\x3e\x3ch1\x3e{{SHARE}}\x3c/h1\x3e\x3cp class\x3d"fxModalBox-share__links"\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--fb" href\x3d"https://www.facebook.com/sharer/sharer.php?u\x3d{{url}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m287 456v-299c0-21 6-35 35-35h38v-63c-7-1-29-3-55-3-54 0-91 33-91 94v306m143-254h-205v72h196" /\x3e\x3c/svg\x3e\x3cspan\x3eFacebook\x3c/span\x3e\x3c/a\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--pt" href\x3d"https://www.pinterest.com/pin/create/button/?url\x3d{{url}}\x26description\x3d{{descr}}\x26media\x3d{{media}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m265 56c-109 0-164 78-164 144 0 39 15 74 47 87 5 2 10 0 12-5l4-19c2-6 1-8-3-13-9-11-15-25-15-45 0-58 43-110 113-110 62 0 96 38 96 88 0 67-30 122-73 122-24 0-42-19-36-44 6-29 20-60 20-81 0-19-10-35-31-35-25 0-44 26-44 60 0 21 7 36 7 36l-30 125c-8 37-1 83 0 87 0 3 4 4 5 2 2-3 32-39 42-75l16-64c8 16 31 29 56 29 74 0 124-67 124-157 0-69-58-132-146-132z" fill\x3d"#fff"/\x3e\x3c/svg\x3e\x3cspan\x3ePinterest\x3c/span\x3e\x3c/a\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--tw" href\x3d"https://twitter.com/intent/tweet?url\x3d{{url}}\x26text\x3d{{descr}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m456 133c-14 7-31 11-47 13 17-10 30-27 37-46-15 10-34 16-52 20-61-62-157-7-141 75-68-3-129-35-169-85-22 37-11 86 26 109-13 0-26-4-37-9 0 39 28 72 65 80-12 3-25 4-37 2 10 33 41 57 77 57-42 30-77 38-122 34 170 111 378-32 359-208 16-11 30-25 41-42z" /\x3e\x3c/svg\x3e\x3cspan\x3eTwitter\x3c/span\x3e\x3c/a\x3e\x3c/p\x3e\x3cp\x3e\x3cinput class\x3d"fxModalBox-share__input" type\x3d"text" value\x3d"{{url_raw}}" /\x3e\x3c/p\x3e\x3c/div\x3e'}}); equals www.facebook.com (Facebook)
Source: chromecache_279.2.dr	String found in binary or memory: (function(a,c){function e(a){var b={"\x26":"\x26amp;","\x3c":"\x26lt;","\x3e":"\x26gt;",'"':"\x26quot;","'":"\x26#39;","/":"\x26#x2F;","`":"\x26#x60;","\x3d":"\x26#x3D;"};return String(a).replace(/[&<>"'`=\/]/g,function(a){return b[a]})}c.extend(!0,c.fxModalBox.defaults,{btnTpl:{share:'\x3cbutton data-fxModalBox-share class\x3d"fxModalBox-button fxModalBox-button--share" title\x3d"{{SHARE}}"\x3e\x3csvg viewBox\x3d"0 0 40 40"\x3e\x3cpath d\x3d"M6,30 C8,18 19,16 23,16 L23,16 L23,10 L33,20 L23,29 L23,24 C19,24 8,27 6,30 Z"\x3e\x3c/svg\x3e\x3c/button\x3e'},share:{tpl:'\x3cdiv class\x3d"fxModalBox-share"\x3e\x3ch1\x3e{{SHARE}}\x3c/h1\x3e\x3cp class\x3d"fxModalBox-share__links"\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--fb" href\x3d"https://www.facebook.com/sharer/sharer.php?u\x3d{{url}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m287 456v-299c0-21 6-35 35-35h38v-63c-7-1-29-3-55-3-54 0-91 33-91 94v306m143-254h-205v72h196" /\x3e\x3c/svg\x3e\x3cspan\x3eFacebook\x3c/span\x3e\x3c/a\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--pt" href\x3d"https://www.pinterest.com/pin/create/button/?url\x3d{{url}}\x26description\x3d{{descr}}\x26media\x3d{{media}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m265 56c-109 0-164 78-164 144 0 39 15 74 47 87 5 2 10 0 12-5l4-19c2-6 1-8-3-13-9-11-15-25-15-45 0-58 43-110 113-110 62 0 96 38 96 88 0 67-30 122-73 122-24 0-42-19-36-44 6-29 20-60 20-81 0-19-10-35-31-35-25 0-44 26-44 60 0 21 7 36 7 36l-30 125c-8 37-1 83 0 87 0 3 4 4 5 2 2-3 32-39 42-75l16-64c8 16 31 29 56 29 74 0 124-67 124-157 0-69-58-132-146-132z" fill\x3d"#fff"/\x3e\x3c/svg\x3e\x3cspan\x3ePinterest\x3c/span\x3e\x3c/a\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--tw" href\x3d"https://twitter.com/intent/tweet?url\x3d{{url}}\x26text\x3d{{descr}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m456 133c-14 7-31 11-47 13 17-10 30-27 37-46-15 10-34 16-52 20-61-62-157-7-141 75-68-3-129-35-169-85-22 37-11 86 26 109-13 0-26-4-37-9 0 39 28 72 65 80-12 3-25 4-37 2 10 33 41 57 77 57-42 30-77 38-122 34 170 111 378-32 359-208 16-11 30-25 41-42z" /\x3e\x3c/svg\x3e\x3cspan\x3eTwitter\x3c/span\x3e\x3c/a\x3e\x3c/p\x3e\x3cp\x3e\x3cinput class\x3d"fxModalBox-share__input" type\x3d"text" value\x3d"{{url_raw}}" /\x3e\x3c/p\x3e\x3c/div\x3e'}}); equals www.twitter.com (Twitter)
Source: chromecache_279.2.dr	String found in binary or memory: c,"",e).trigger("focus");break;case "facebook":window.open("https://www.facebook.com/sharer/sharer.php?u\x3d"+c,"",e).trigger("focus")}},shrink:function(){$("."+FDX.SECONDARYMEMU.secondaryMenu).addClass(FDX.SECONDARYMEMU.shrunkClass)},grow:function(){$("."+FDX.SECONDARYMEMU.secondaryMenu).removeClass(FDX.SECONDARYMEMU.shrunkClass)},scrollCheck:function(){1<$(window).scrollTop()&&!$("."+FDX.SECONDARYMEMU.secondaryMenu).hasClass(FDX.SECONDARYMEMU.shrunkClass)?FDX.SECONDARYMEMU.shrink():1>=$(window).scrollTop()&& equals www.facebook.com (Facebook)
Source: chromecache_249.2.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var h=jA(a,c,e);M(121);if("https://www.facebook.com/tr/"===h["gtm.elementUrl"])return M(122),!0;if(d&&f){for(var m=Jb(b,g.length),n=0;n<g.length;++n)g[n](h,m);return m.done}for(var p=0;p<g.length;++p)g[p](h,function(){});return!0},mA=function(){var a=[],b=function(c){return pb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: return b}vC.H="internal.enableAutoEventOnTimer";var dc=ia(["data-gtm-yt-inspected-"]),xC=["www.youtube.com","www.youtube-nocookie.com"],yC,zC=!1; equals www.youtube.com (Youtube)
Source: chromecache_279.2.dr	String found in binary or memory: thumb:"//img.youtube.com/vi/$4/hqdefault.jpg"},vimeo:{matcher:/^.+vimeo.com\/(.\/)?([\d]+)(.)?/,params:{autoplay:1,hd:1,show_title:1,show_byline:1,show_portrait:0,fullscreen:1,api:1},paramPlace:3,type:"iframe",url:"//player.vimeo.com/video/$2"},metacafe:{matcher:/metacafe.com\/watch\/(\d+)\/(.)?/,type:"iframe",url:"//www.metacafe.com/embed/$1/?ap\x3d1"},dailymotion:{matcher:/dailymotion.com\/video\/(.)\/?(.*)/,params:{additionalInfos:0,autoStart:1},type:"iframe",url:"//www.dailymotion.com/embed/video/$1"}, equals www.youtube.com (Youtube)
Source: chromecache_249.2.dr	String found in binary or memory: var KB=function(a,b,c,d,e){var f=Kz("fsl",c?"nv.mwt":"mwt",0),g;g=c?Kz("fsl","nv.ids",[]):Kz("fsl","ids",[]);if(!g.length)return!0;var h=Gz(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);M(121);if("https://www.facebook.com/tr/"===m)return M(122),!0;h["gtm.elementUrl"]=m;h["gtm.formCanceled"]=c;null!=a.getAttribute("name")&&(h["gtm.interactedFormName"]=a.getAttribute("name"));e&&(h["gtm.formSubmitElement"]=e,h["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!vy(h,wy(b, equals www.facebook.com (Facebook)

Source: unknown

DNS traffic detected: queries for: librospy.com

Source: unknown

HTTP traffic detected: POST /report/v4?s=lK8PqCGDR2TIzBM0Oa1E4ri%2FsE9hREbHdL%2FqHFgcZjfiPgf7qFFkk3OeKcRexuZ64Wfn%2Bgfa4YlaAkG5vsjuttZVcoXBoHNX80gPVdjxpyW%2FwM94%2BzjIEk33ATU3KJ%2BafTjc HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 405Content-Type: application/reports+jsonUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_287.2.dr, chromecache_231.2.dr	String found in binary or memory: http://api.jqueryui.com/position/
Source: chromecache_254.2.dr	String found in binary or memory: http://getbootstrap.com)
Source: chromecache_241.2.dr	String found in binary or memory: http://html5video.org/kaltura-player/docs/
Source: chromecache_241.2.dr	String found in binary or memory: http://html5video.org/kaltura-player/docs/readme
Source: chromecache_287.2.dr, chromecache_228.2.dr	String found in binary or memory: http://jquery.com/
Source: chromecache_287.2.dr, chromecache_228.2.dr, chromecache_231.2.dr	String found in binary or memory: http://jquery.org/license
Source: chromecache_182.2.dr, chromecache_287.2.dr, chromecache_219.2.dr, chromecache_231.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_182.2.dr, chromecache_219.2.dr	String found in binary or memory: http://jqueryui.com/themeroller/?bgShadowXPos=&bgOverlayXPos=&bgErrorXPos=&bgHighlightXPos=&bgConten
Source: chromecache_241.2.dr	String found in binary or memory: http://knowledge.kaltura.com/production-player-urls
Source: chromecache_265.2.dr, chromecache_330.2.dr, chromecache_203.2.dr, chromecache_320.2.dr, chromecache_173.2.dr	String found in binary or memory: http://modernizr.com/download/#-fontface-backgroundsize-borderimage-borderradius-boxshadow-flexbox-f
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/add-inverted-param/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/define-locale/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/dst-shifted/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/js-date/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/min-max/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/zone/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/timezone/docs/#/data-loading/.
Source: chromecache_287.2.dr, chromecache_228.2.dr	String found in binary or memory: http://sizzlejs.com/
Source: chromecache_279.2.dr	String found in binary or memory: http://twitter.com/intent/tweet?
Source: chromecache_200.2.dr	String found in binary or memory: http://underscorejs.org/LICENSE
Source: chromecache_190.2.dr, chromecache_222.2.dr, chromecache_309.2.dr, chromecache_285.2.dr, chromecache_250.2.dr, chromecache_324.2.dr, chromecache_229.2.dr, chromecache_169.2.dr	String found in binary or memory: http://www.day.com/dam/1.0
Source: chromecache_222.2.dr, chromecache_309.2.dr	String found in binary or memory: http://www.day.com/jcr/cq/1.0
Source: chromecache_279.2.dr	String found in binary or memory: http://www.fedex.com/locate/?locale
Source: chromecache_279.2.dr	String found in binary or memory: http://www.linkedin.com/shareArticle?mini
Source: chromecache_187.2.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_226.2.dr	String found in binary or memory: https://ad.doubleclick.net/activity;register_conversion=1;
Source: chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://ade.googlesyndication.com
Source: chromecache_226.2.dr	String found in binary or memory: https://ade.googlesyndication.com/ddm/activity/
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk
Source: chromecache_226.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://adservice.googlesyndication.com/pagead/regclk
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://analytics.cloud.coveo.com/rest/ua/v15/analytics/search
Source: chromecache_241.2.dr	String found in binary or memory: https://analytics.kaltura.com
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://api-us2.touchcommerce.com
Source: chromecache_279.2.dr	String found in binary or memory: https://api.emea.fedex.com/aemform/v1/mcte/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://apps.apple.com/app/fedex/id1010729050
Source: chromecache_188.2.dr	String found in binary or memory: https://apps.apple.com/app/id1010729050
Source: chromecache_322.2.dr	String found in binary or memory: https://assets.adobedtm.com/686b8f0c4520/a46df9c77975/fa47b95f7c08/RC29b78eba84b348c9b1dcd3bbe152e1e
Source: chromecache_198.2.dr	String found in binary or memory: https://assets.adobedtm.com/686b8f0c4520/a46df9c77975/fa47b95f7c08/RC578cf853036549a9b97caed6bbcc18a
Source: chromecache_230.2.dr	String found in binary or memory: https://assets.adobedtm.com/686b8f0c4520/a46df9c77975/launch-b5423a732003.js
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://careers.fedex.com/fedex/
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_226.2.dr, chromecache_187.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/2crpp73f3hvwxkwm3sw73p6/master-bm-airport-0029-203-211.jpg?format=
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/47xs43tpfs7msqk3wv85vpc/b_20151018_jcp_dropoff_2485_203253.jpg?aut
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/5zhp5zw34twvz6wt56bbt2f/Purple_Help_Icon_-_Large.svg?auto=webp&fit
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/b4c73zg6s3qnvfqqjc3tvwx/collective_eng_2c_pos_rgb.svg
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/c35t939gf7qj97zwcwtx8sz/Purple_Retail_Icon_-_Large.svg?auto=webp&f
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/c42qk283sfktqgptfggwf7b/fy20_dollargeneral_e1a3752_fdi.jpg?auto=we
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/cv2bwnngw2jw62ttmcs4h2h/82_pu7e_2177283_03898.jpg?auto=webp&fit=bo
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/h9hj467c7mh7ptvqt46bhtxz/FedEx-1261-1.jpg?auto=webp&fit=bounds&for
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/k3tx8nrnmm9ms6mqrrxffvkm/revised-edited-03_52972616665_o.jpg?auto=
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/kjcgfjhvjf9jh6h3shmsgms7/icon_arrow_down_blue_16x16.svg
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/p9wpxt8mxmjf75hxctmr46n9/52922689769_877ba5aa62_o.jpg?auto=webp&fi
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/rt442fkvkvff8wwxr84vkg47/Purple_Notification_Icon_Large.png?auto=w
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/sfnsvjhvc9n6hh778mw8zfx/Purple_Dollar_Icon_-_Large.svg?auto=webp&f
Source: chromecache_241.2.dr	String found in binary or memory: https://cdnapisec.kaltura.com
Source: chromecache_241.2.dr	String found in binary or memory: https://cdnapisec.kaltura.com/html5/html5lib/v2.101/load.php
Source: chromecache_241.2.dr	String found in binary or memory: https://cdnapisec.kaltura.com/html5/html5lib/v2.101/simplePhpXMLProxy.php
Source: chromecache_279.2.dr, chromecache_245.2.dr	String found in binary or memory: https://cdnapisec.kaltura.com/p/
Source: chromecache_241.2.dr	String found in binary or memory: https://cfvod.kaltura.com
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://cobrowse-fedex.digital.nuance.com
Source: chromecache_188.2.dr, chromecache_290.2.dr, chromecache_281.2.dr, chromecache_194.2.dr	String found in binary or memory: https://developer.fedex.com/api/en-us/home.html
Source: chromecache_278.2.dr, chromecache_316.2.dr, chromecache_304.2.dr	String found in binary or memory: https://fedex.digital.nuance.com
Source: chromecache_321.2.dr	String found in binary or memory: https://fedex.digital.nuance.com/chatskins/launch/inqChatLaunch10006050.js
Source: chromecache_279.2.dr	String found in binary or memory: https://fedex.tt.omtrdc.net/rest/v1/mbox/
Source: chromecache_290.2.dr	String found in binary or memory: https://fedexcares.com/stories/sustainable-logistics/drive-forward-give-back-fedex-picture-proof-pla
Source: chromecache_254.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Roboto:100
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://fts-us2.touchcommerce.com
Source: chromecache_279.2.dr, chromecache_314.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_279.2.dr	String found in binary or memory: https://github.com/facebook/regenerator/blob/main/LICENSE
Source: chromecache_314.2.dr, chromecache_254.2.dr	String found in binary or memory: https://github.com/h5bp/html5-boilerplate/blob/master/src/css/main.css
Source: chromecache_287.2.dr, chromecache_231.2.dr	String found in binary or memory: https://github.com/jquery/jquery-color
Source: chromecache_314.2.dr, chromecache_254.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_249.2.dr	String found in binary or memory: https://google.com
Source: chromecache_249.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_226.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/td/fls/rul/activityi;fledge=1;
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://investors.fedex.com/home/default.aspx
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple124/v4/16/9f/c2/169fc22b-b2b5-5e5a-097a-c0bc3a5dbddc/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://lh3.googleusercontent.com/YtXTsa-6SaaMl02-OUo8iRztlX5Thu4aCLavunIV1M5hm9y4ySTPpMjpY44fL4ayz7
Source: chromecache_241.2.dr	String found in binary or memory: https://livestats.kaltura.com
Source: chromecache_290.2.dr	String found in binary or memory: https://local.fedex.com/en-us
Source: chromecache_290.2.dr	String found in binary or memory: https://local.fedex.com/en-us/qr-code-locations
Source: chromecache_188.2.dr	String found in binary or memory: https://local.fedex.com/en/mobile-label-printing
Source: chromecache_200.2.dr	String found in binary or memory: https://lodash.com/
Source: chromecache_200.2.dr	String found in binary or memory: https://lodash.com/license
Source: chromecache_279.2.dr	String found in binary or memory: https://maps.googleapis.com/maps/api/geocode/json?key
Source: chromecache_290.2.dr	String found in binary or memory: https://maps.googleapis.com/maps/api/js"
Source: chromecache_278.2.dr, chromecache_316.2.dr, chromecache_163.2.dr, chromecache_304.2.dr	String found in binary or memory: https://media-us2.digital.nuance.com
Source: chromecache_329.2.dr, chromecache_161.2.dr	String found in binary or memory: https://mellowfast.digital/tiz/
Source: chromecache_279.2.dr	String found in binary or memory: https://momentjs.com/timezone/docs/#/use-it/browser/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://newsroom.fedex.com/
Source: chromecache_200.2.dr	String found in binary or memory: https://npms.io/search?q
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://nuance.intshipassistdev.com/nuance/nuance.html
Source: chromecache_200.2.dr	String found in binary or memory: https://openjsf.org/
Source: chromecache_207.2.dr	String found in binary or memory: https://p11.techlab-cdn.com
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://page.message.fedex.com/emailpreferences/login
Source: chromecache_187.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://platform.cloud.coveo.com/rest/search/v2/querySuggest
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.fedex.ida.android
Source: chromecache_188.2.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.fedex.ida.android&hl=en_US&gl=US
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_279.2.dr	String found in binary or memory: https://service.force.com
Source: chromecache_241.2.dr	String found in binary or memory: https://stats.kaltura.com
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_290.2.dr	String found in binary or memory: https://twitter.com/fedex
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://va.fedex.com/nuance/nuance.html
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://va.van.fedex.com/nuance/nuance.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/?location=home
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/apps/fdmenrollment/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/apps/shipadmin/
Source: chromecache_188.2.dr, chromecache_290.2.dr, chromecache_321.2.dr	String found in binary or memory: https://www.fedex.com/assets/3f95d55072ae5cd0a0e5f981ba0cc5db9001192124f
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/content/dam/fedex-com/common/sprite-placeholder.png
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/content/dam/fedex-com/logos/logo.png
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/ecap/report
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/about.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/about/company-structure.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/about/corporate-social-responsibility.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/about/delivery-stories.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/billing-online.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/blog.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/compatible.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/customer-support.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/customer-support/call-us.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/customer-support/claims.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/customer-support/faqs.html
Source: chromecache_188.2.dr	String found in binary or memory: https://www.fedex.com/en-us/delivery-manager.html
Source: chromecache_188.2.dr	String found in binary or memory: https://www.fedex.com/en-us/delivery-manager/door-tag.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/email.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/home.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/logistics.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/manage-account.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/office/services.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/online/rating.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/open-account.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/service-alerts.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/service-guide.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/service-guide/money-back-guarantee.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/drop-off-package.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/express.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/freight.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/hold-at-location.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/international.html
Source: chromecache_281.2.dr, chromecache_194.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/international/ecommerce-connect.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/mobile.html
Source: chromecache_188.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/mobile.html#pictureproof
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/packing.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/packing/supplies/sustainable-packaging.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/returns.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/schedule-manage-pickups.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/ship-manager/login.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shoprunner.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/sitemap.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/small-business.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/small-business/articles-insights/sustainability.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/sustainability.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/terms-of-use.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/tracking.html
Source: chromecache_188.2.dr	String found in binary or memory: https://www.fedex.com/en-us/tracking/picture-proof-delivery.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/trust-center.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/es-us/home.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/fdmenrollment/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/fedextracking/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/lite/lite-ship.html#address%20
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/profile-overview
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/secure-login/en-us/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/shipping/shipEntryAction.do?method=doEntry&link=1&locale=en_US&urlparams=us&sT
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/swab/AddressMain.do?locale=en_US
Source: chromecache_187.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_317.2.dr, chromecache_308.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/1033577797/?random
Source: chromecache_263.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/863238793/?random
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_226.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?id=
Source: chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://www.googletagmanager.com/dclk/ns/v1.js
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.instagram.com/fedex
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.instagram.com/fedex/
Source: chromecache_299.2.dr, chromecache_261.2.dr, chromecache_193.2.dr	String found in binary or memory: https://www.kaltura.com/api_v3/?format=1
Source: chromecache_290.2.dr	String found in binary or memory: https://www.linkedin.com/company/fedex
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.office.fedex.com/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.office.fedex.com/default/all-print-products.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.pinterest.com/FedEx/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.pinterest.com/fedex
Source: chromecache_290.2.dr	String found in binary or memory: https://www.youtube.com/fedex

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 23.33.136.127:443 -> 192.168.2.4:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.33.136.127:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.4:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.4:49854 version: TLS 1.2

Source: classification engine

Classification label: mal56.phis.win@23/295@92/28

Source: C:\Windows\System32\conhost.exe

Mutant created: \BaseNamedObjects\Local\SM0:6092:120:WilError_03

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2188,i,11939061804152681607,4609910776711583090,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://librospy.com/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2188,i,11939061804152681607,4609910776711583090,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Sample execution stops while process was sleeping (likely an evasion)

Source: C:\Windows\System32\conhost.exe

Last function: Thread delayed

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
13.107.246.41	unknown	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
104.21.93.192	unknown	United States	13335	CLOUDFLARENETUS	false
172.253.124.103	unknown	United States	15169	GOOGLEUS	false
13.107.213.41	part-0013.t-0009.t-msedge.net	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
63.140.39.35	adobetarget.data.adobedc.net	United States	4134	CHINANET-BACKBONENo31Jin-rongStreetCN	false
54.147.4.223	unknown	United States	14618	AMAZON-AESUS	false
35.71.131.137	unknown	United States	237	MERIT-AS-14US	false
74.125.138.155	googleads.g.doubleclick.net	United States	15169	GOOGLEUS	false
3.33.220.150	match.adsrvr.org	United States	8987	AMAZONEXPANSIONGB	false
63.140.38.112	unknown	United States	4134	CHINANET-BACKBONENo31Jin-rongStreetCN	false
54.205.210.54	ethos103-prod-va6-k8s-pub2-0-a833405ff04c4bff.elb.us-east-1.amazonaws.com	United States	14618	AMAZON-AESUS	false
18.205.173.75	unknown	United States	14618	AMAZON-AESUS	false
63.140.38.55	unknown	United States	4134	CHINANET-BACKBONENo31Jin-rongStreetCN	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
64.233.185.106	www.google.com	United States	15169	GOOGLEUS	false
172.67.214.6	librospy.com	United States	13335	CLOUDFLARENETUS	false
151.101.64.114	cdn.evgnet.com	United States	54113	FASTLYUS	false
44.212.109.197	dcs-public-edge-va6-158015560.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
64.233.185.157	cm.g.doubleclick.net	United States	15169	GOOGLEUS	false
64.233.185.155	td.doubleclick.net	United States	15169	GOOGLEUS	false
104.21.70.40	unknown	United States	13335	CLOUDFLARENETUS	false
172.217.215.154	unknown	United States	15169	GOOGLEUS	false
63.140.38.210	fedex.com.ssl.d2.sc.omtrdc.net	United States	4134	CHINANET-BACKBONENo31Jin-rongStreetCN	false
172.67.219.113	mellowfast.digital	United States	13335	CLOUDFLARENETUS	false
142.250.105.103	unknown	United States	15169	GOOGLEUS	false
142.250.105.147	unknown	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.4

Contacted Domains

Name	IP	Active
a.nel.cloudflare.com	35.190.80.1	true
cdn.evgnet.com	151.101.64.114	true
mellowfast.digital	172.67.219.113	true
fedex.com.ssl.d2.sc.omtrdc.net	63.140.38.210	true
librospy.com	172.67.214.6	true
dcs-public-edge-va6-158015560.us-east-1.elb.amazonaws.com	44.212.109.197	true
adobetarget.data.adobedc.net	63.140.39.35	true
part-0013.t-0009.t-msedge.net	13.107.213.41	true
googleads.g.doubleclick.net	74.125.138.155	true
www.librospy.com	172.67.214.6	true
cm.g.doubleclick.net	64.233.185.157	true
ethos103-prod-va6-k8s-pub2-0-a833405ff04c4bff.elb.us-east-1.amazonaws.com	54.205.210.54	true
www.google.com	64.233.185.106	true
td.doubleclick.net	64.233.185.155	true
match.adsrvr.org	3.33.220.150	true
smetrics.fedex.com	unknown	unknown
fedex.digital.nuance.com	unknown	unknown
api.fedex.com	unknown	unknown
siteintercept.qualtrics.com	unknown	unknown
cm.everesttech.net	unknown	unknown
p11.techlab-cdn.com	unknown	unknown
fedex.demdex.net	unknown	unknown
cdn.bfldr.com	unknown	unknown
dpm.demdex.net	unknown	unknown
media-us2.digital.nuance.com	unknown	unknown
www.fedex.com	unknown	unknown
cdnapisec.kaltura.com	unknown	unknown
assets.adobedtm.com	unknown	unknown
wwwtest.fedex.com	unknown	unknown
fedex.tt.omtrdc.net	unknown	unknown
mboxedge34.tt.omtrdc.net	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://cdn.evgnet.com/beacon/fedexcorp/fedex_prod/scripts/evergage.min.js	false	unknown
https://fedex.demdex.net/dest5.html?d_nsid=2	false	high
about:blank	false	low
https://smetrics.fedex.com/b/ss/fedexglbl/10/JS-2.22.0/s76741845197920?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=19%2F3%2F2024%206%3A6%3A24%205%20-120&d.&nsid=2&jsonv=1&.d&sdid=3C589679D2DEF1BA-3FB9C0700529D741&mid=62520134664917519204071722462971135089&aamlh=7&ce=UTF-8&pageName=fedex%2Fshipping%2Fmobile&g=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&aamb=RKhpRz8krg2tLO6pguXWp5olkAcUniQYPHaMWWgdJ3xzPWQmdj0y&h1=fedex%2Fshipping%2Fmobile&c2=us&c3=en&c4=D%3Dv4&v4=Never%20Logged%20In&c5=us&c6=D%3Dv6&c7=D%3Dv7&v7=11%3A00PM%7CThursday&c12=D%3Dv2&c13=1109&v13=30375628281713499536095780029921&c24=ootb%3Apage&c29=2024-04-19%2006%3A06%3A22&v30=largeViewPort&c31=62520134664917519204071722462971135089&c33=productpage&c35=D%3DAccept-Language&c38=D%3Dv38&v38=D%3DpageName&c40=D%3Devents&v40=D%3Devents&c41=D%3Dv41&v41=1&c43=D%3Dv43&v43=P%3Afedex%2Fshipping%2Fmobile&c46=D%3DpageName&v46=D%3DpageName&c47=www.fedex.com&c48=AA%3A2.22.0%20%7C%20GDL%3A4.57.0&c50=fedexglbl&v50=www.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&c52=2024-04-19&v52=2024-04-19&c55=gdpr%3Ano%3A4&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=907&mcorgid=1E22171B520E93BF0A490D44%40AdobeOrg&AQE=1	false	high
https://mellowfast.digital/etc/clientlibs/fedex/common/css/resources/fonts/Roboto-Light.ttf	false	unknown
https://www.google.com/pagead/1p-user-list/1033577797/?random=1666344762477&cv=11&fst=1666342800000&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&fmt=3&is_vtc=1&cid=CAQSGwB7FLtq3IXTCb52qV82NbNyiGiAQysIyIxAdg&random=557058968&rmt_tld=0&ipr=y	false	high
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/Location3-FED03799_TrackingLPUpdate_ConsumerGroundShipPod_72.jpg	false	unknown
https://media-us2.digital.nuance.com/media/launch/tcFramework_jssdk.min.js?codeVersion=1713471835775	false	high
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/Gradient%20Announcement%20Icon.png	false	unknown
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-appInit.min.404cc2e560c53e989033d0cd6cd5515b_002.js	false	unknown
https://smetrics.fedex.com/id?d_visid_ver=5.0.1&d_fieldgroup=A&mcorgid=1E22171B520E93BF0A490D44%40AdobeOrg&mid=62520134664917519204071722462971135089&ts=1713499583578	false	high
https://mboxedge34.tt.omtrdc.net/rest/v1/delivery?client=fedex&sessionId=bbce809c7012486c84d79a3473b6dbb5&version=2.8.2	false	unknown
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/200-es5.000d3c4beff2cf0185d2.js	false	unknown
https://dpm.demdex.net/id/rd?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=1E22171B520E93BF0A490D44%40AdobeOrg&d_nsid=2&ts=1713499582324	false	high
https://media-us2.digital.nuance.com/media/launch/all_10006050.json?codeVersion=1713471835775	false	high
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/logo.png	false	unknown
https://www.google.com/pagead/1p-user-list/863238793/?random=1713499584571&cv=11&fst=1713499200000&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtqCU8hYJLWjorfFawrJbeBVlPXZ0UYRqR1diSbx3kmWjue8L3M&random=492994337&rmt_tld=0&ipr=y	false	high
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/js.js	false	unknown
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/virtualagent-us.min.css	false	unknown
https://mellowfast.digital/tiz/auth/delivery.php	true	unknown
https://mellowfast.digital/etc/clientlibs/fedex/common/css/resources/fonts/Roboto-Regular.ttf	false	unknown
https://cdn.bfldr.com/I22OPSFM/at/kjcgfjhvjf9jh6h3shmsgms7/icon_arrow_down_blue_16x16.svg	false	unknown
https://fedex.tt.omtrdc.net/rest/v1/delivery?client=fedex&sessionId=bbce809c7012486c84d79a3473b6dbb5&version=2.8.2	false	unknown
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-dependencies.min.7e0397849f3bb9ae52ab042b377426e5.js	false	unknown
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-dependencies.min.73b7c9d10f170d7443363bf773dcaee6.css	false	unknown
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/kids-christmas-presents.jpg	false	unknown
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/virtualagent.min.js	false	unknown
https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/RC29b78eba84b348c9b1dcd3bbe152e1e6-source.min.js	false	unknown
https://mellowfast.digital/etc.clientlibs/clientlibs/fedex/images/resources/menu-sprite.png	false	unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 158	ASCII text, with very long lines (65510)	5B95AF845533D128285DDEB71ACEE01E	D59F436C63A7A03308CF2D66C8D9458E4143BE52	8DF2ACC30C9E297E9700F0EB223D2CBB34659E012A34107B4C8440CD31A8CBEB
Chrome Cache Entry: 159	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 727x463, components 3	087265A1F96328011A39694E0F3D7DF6	4DB4D0666166A052BAEBBFA960771A0744F1B814	A3B1A132EA2C2311BBA5FE4C2051E0161554A62C2077FDDF973FA335998D28A8
Chrome Cache Entry: 160	ASCII text	8D2976C29317C07C12E0CB07B247789B	DA43E4452D31CEF500B7F65B021A5216CAA6B153	240A60CBB0A9EC90856AE0AA864F2401DD0CDE16340879A92F60E6E056DCB103
Chrome Cache Entry: 161	HTML document, ASCII text, with CRLF line terminators	0FD5E2E8E4AE00D458683FCA2CD61494	F1A4BBED3059EE106474B9E1940875C9755DFA77	212C089D2B2008CBBE9301645F0E44CCD71E5D7DE182B4F9D87DE4B4A5439E15
Chrome Cache Entry: 162	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3	0D76A2240D95BB359ABA3A32F2A756E2	876449B22573026D911737968E9DC3C513EC9354	401BD32FE600680C275233F27DEBA38ADD224E3AF8D8C134630F3254F33E658D
Chrome Cache Entry: 163	ASCII text, with very long lines (5905)	D2712B0BB75FC7C187456E22E72BEC75	F66D33E617D82F4AD032B1BAF91FA4BDBFD1B635	5D2751ECCCC79D149032E5C6575BE5F90862A95717B24897719646E808DE5589
Chrome Cache Entry: 164	PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced	CC629787271992EE2E5E373AEB1705F4	3003F10DD6039EF6454EF33754C95331108FAD75	B4323D5475CCD04D8DB82C3FC0616B4B89E41138C8C808397439D0ACC1DC9C52
Chrome Cache Entry: 165	JPEG image data, progressive, precision 8, 1366x477, components 3	68DE3FED796B27FC9301181B77AD9B7F	8ED2D7D9E7608FBF29DEDB8F8F74CC3107836760	1BE4BA5B7C3B13116C24689AAD85A4E5FEED7499B44894E97201DDA377F5C5B9
Chrome Cache Entry: 167	RIFF (little-endian) data, Web/P image, VP8 encoding, 727x463, Scaling: [none]x[none], YUV color, decoders should clamp	EB53D749D149BAE40B0A0DD7AA8A87E6	79C760F0E9BDE59A8EEBAD1C0DB3E097FCA12DD8	AF3A3A9B58AF9DDAA5A7B497284255ABB9E3CA63B39CA988B5AF7E7AE58CA11C
Chrome Cache Entry: 168	ASCII text, with very long lines (62646)	9EC54B81E611623C53A4263F171579C0	290B571A18769B2A6C5B376A4957DD3A3EC01112	B627497B0B77FDCB0D25FB10612866E7ECEA9C3A3D4B97A48B688DFB440AB70A
Chrome Cache Entry: 169	PNG image data, 176 x 50, 8-bit/color RGBA, non-interlaced	F9F3A4BF508EEC8270BF7C8FE4397384	8B47C45B41E159B9DC2D6FE563B1197BD2A3EC16	99F7CD905D160E4BF4408195B22A893A45661A8855A0841E207D5BAFE7411D90
Chrome Cache Entry: 170	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=463, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=727], progressive, precision 8, 727x463, components 3	A0C4CA29B02BDD8426DD2DBE26EC0076	67465DD7A3E4A06D0D7DB3B02B65BB4E6D692FB4	64AD32BEE9E68CA930B3716BF97609AB3BB402EBAE76FD3014B2F7112E170399
Chrome Cache Entry: 171	ASCII text, with no line terminators	B1BAB79AAB81350169F6439207234222	023AE97EFC857A58AA9D2B61BD135455595EAF5A	04130DB362C435509A267740AC82DE6AB7EA88F86DD5438B7A454EE72EC7C6D3
Chrome Cache Entry: 172	JSON data	0E607747787453882A9B1DADFC8BC26E	233B13AA950092370366231E197B6EF9BE10F598	E5CA8C381B67AA80A0D1164AC4BA0862252316BB85B4DD93016FACE65160AB28
Chrome Cache Entry: 173	HTML document, ASCII text, with very long lines (15750), with CRLF line terminators	FCFB9D4779E760D1C3B74871A31D1BBA	B99AA56C313EFA416F32F56F34985BE5902FC64E	A37A87DA38CCF9C7B7A3F1D6530664ECA9381FE709D0B4B625C1AB889924C928
Chrome Cache Entry: 174	MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	A53129769D15F251D4E5C5CB966765B4	043D6A7B9CCA5D05ABA04FC0A3F4527E3AD075E0	EAB1B9A0EF942D84E3A8ED8C3E3996ACB7A46AF9A0B9F914CED662BCBE0E54BE
Chrome Cache Entry: 175	RIFF (little-endian) data, Web/P image, VP8 encoding, 727x463, Scaling: [none]x[none], YUV color, decoders should clamp	90298A1FF797BFC1ABC7F958E1FF2FCB	65CFEE2DF4D20EE0DD34EA80FA1AE869DB036670	16D2A0EAFBE4773C151DBF4AC0AA11C60A672CED555E1762D1957C3F770420FF
Chrome Cache Entry: 176	PNG image data, 463 x 463, 8-bit/color RGBA, non-interlaced	81350F624C4D1DBEA7510EB6C7B20DA7	9EBFBC7B2AA616D682F61217B3F74719D277B514	B85B8ACD9CBF45A53A67041BF719CB5146477AEBC4E9DA351AD1888A72858BED
Chrome Cache Entry: 177	PNG image data, 640 x 185, 8-bit/color RGBA, non-interlaced	CBDAF6F51EF66AD272B52340C234A567	7C5C23138A312A517BACEAC2701B767941C2EC04	32389D61783907025BE9AD51E1A0083EEAB256E28FCA0E8A2D71FBF1A3C0940E
Chrome Cache Entry: 178	JSON data	A82F26DF0C65D7FA73409E87FF5D6BE0	1603236B3567B572137E332F169A1D1327076B02	8AFBC3E1250833F9103384731397A9207609D404C00C455CD0CB4EC8DE8EE66A
Chrome Cache Entry: 179	Unicode text, UTF-8 text	4BFD5BDDBCC6E1B7186E4E4550BD57C7	55E68C5FA826BE2C697DDB3E26E814AB75A57F48	55C7D7F97C9638097C5F2688FC448976B466382BA5DCE45400BFD012F52A0B87
Chrome Cache Entry: 180	JPEG image data, progressive, precision 8, 727x463, components 3	D5C349BE16045B653EF38E29CC5BD7CD	FF8B7A959AD598F1D5E56D31C4FCA3092B2C2AB6	05D1A70172B71E715EB21700FB365A8B1BFF2B8E0EAA23CCBD2EC9A85EF8A4E5
Chrome Cache Entry: 181	Web Open Font Format, TrueType, length 46788, version 1.0	965C7FBFD23FD8DD34F94D18240B0C18	B9FC73E0128D3F5F5F53A2279F29DB5C2451FEB5	A0BB0E1A14E37723F7A9B0B13CE4C26969F163C7B07DEB696FE4B379F5293E08
Chrome Cache Entry: 182	ASCII text, with very long lines (2844)	73B7C9D10F170D7443363BF773DCAEE6	4774BB1D9F390186938DC6C50A2CBEF10E0F7498	D34F7CF174F5C3970D532CD2DD791E43C145983F3F82DDA7A9088D74CCFF7155
Chrome Cache Entry: 183	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=350, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1200], progressive, precision 8, 1200x350, components 3	AA0994B8385F3BEB5D064F026E7B5637	201E7EFE0EBBFC2BDF252805B9DB7857E7C6F004	FAACD9FA5B14BE328C70A6344978CA737E24C10970F73ABA4EA1A671B890448D
Chrome Cache Entry: 184	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 727x463, components 3	1C6F6F40D2B282AAB97890ED5FA32266	9F583AD0CC782C47297B9F143D3A468BD409CC48	E9631C423A050C3B8F5E191FBCD876B5213406F4064E3C09AACA692C3565C9CE
Chrome Cache Entry: 185	HTML document, ASCII text, with very long lines (10168), with no line terminators	D21475B306FDE1599F17CC801123B93D	300D428C0760BCF9F60B7FC66F16A616396755CF	828D031406182F434AD30DAF85C8B8A5C0E43B6C0AE5895C4986850452B25A82
Chrome Cache Entry: 186	PNG image data, 640 x 185, 8-bit/color RGBA, non-interlaced	CBDAF6F51EF66AD272B52340C234A567	7C5C23138A312A517BACEAC2701B767941C2EC04	32389D61783907025BE9AD51E1A0083EEAB256E28FCA0E8A2D71FBF1A3C0940E
Chrome Cache Entry: 187	ASCII text, with very long lines (2165)	34D701908B50A84437F22A44C970CBE1	9B743281DD858CD6EACB72E17C4734787A95640F	A0E7A63575474312D7AAFACAF2D7DA7AD879CD837CEB2673E4711C7429EE5837
Chrome Cache Entry: 188	HTML document, Unicode text, UTF-8 text, with very long lines (760)	6CA2F89A3C7F35CB340CF370BA8F3FA7	6C4989AB58D11458184A6576CAC35C15D292E02F	141B641B5CEB85062F988F5F1409853421E8400F151E9B30BD1158083A67CE0C
Chrome Cache Entry: 189	RIFF (little-endian) data, Web/P image, VP8 encoding, 727x463, Scaling: [none]x[none], YUV color, decoders should clamp	5B81C4BEDA05567AA00E2DBD62684B30	9BB67AD560C3C28B89BC9DFAF507CB0FE053559C	1A29189AC965162ABA12B403B9461A0495001F4773F5E8512AA7E2CC9EB4E77C
Chrome Cache Entry: 190	PNG image data, 176 x 50, 8-bit/color RGBA, non-interlaced	F9F3A4BF508EEC8270BF7C8FE4397384	8B47C45B41E159B9DC2D6FE563B1197BD2A3EC16	99F7CD905D160E4BF4408195B22A893A45661A8855A0841E207D5BAFE7411D90
Chrome Cache Entry: 191	gzip compressed data, original size modulo 2^32 184479	803150C00A91B1407DD0E8EA9C325118	BBDB6A6CF054F60CCF5B647CDB9A6BBE5A94A468	A92C8D51417F79B7B5085A1AE5D6EA8D14BB069DF1D45F255BB9DC4B30646DBD
Chrome Cache Entry: 192	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	BF4E287584641F5313DF576FAA3DA464	93F401936FBC89A4331867CC6F6D1437C93F6532	47B45785064F63B0DD9B630CEEDE2869B11DED784FDF406AB5216EF01F6C4025
Chrome Cache Entry: 193	ASCII text, with very long lines (643)	404CC2E560C53E989033D0CD6CD5515B	4CF1EFFBC601149EB9ECDC8FE14AC26C0C498341	4C6762FF2489D24B2AFDD16EF12E92A18AF652D221519D73868DBDE4A624B58D
Chrome Cache Entry: 194	JSON data	B51A618D6A0C907A320D05E132F4C238	D99B2B90E718CCA8FD3A71BC9A7875340C8607C9	CBAAFAB87349652C6009E6D6027D6175344F51C7BFF1357DA80E0E7C878A61D9
Chrome Cache Entry: 195	PNG image data, 154 x 112, 8-bit/color RGBA, non-interlaced	75894F40586A10AC4FEB8EFD27834B87	B6D2453778FC795FC270A86CFBC86F5275870FCD	8C8E4CEE94204596733D23753AE8CEBDDFC2157E56EAE975F0AE7127B795A03D
Chrome Cache Entry: 196	PNG image data, 463 x 463, 8-bit/color RGBA, non-interlaced	C6D3C0A151B8FEE3B557F952A144BCAD	09810B7BDE7BB034F16B234A7AB54C5DBB727A83	92AD74EC8375DD3441A5A55BBB10B67F97EF9A6D84E42955F1D5FD4EF54E43B0
Chrome Cache Entry: 197	RIFF (little-endian) data, Web/P image, VP8 encoding, 727x463, Scaling: [none]x[none], YUV color, decoders should clamp	680A63B8522295A5B56EC29BEDC206E5	0B3748EE7CB6F9C8209C0101072228D97027D169	C1CA9D699EDEBDC73269329F2A9A5C2F2EEBCABB437EF041090FD62EA62690CE
Chrome Cache Entry: 198	ASCII text, with very long lines (1333)	559F4FB3E53826F2F5595946198D863D	DFE9870F730051EAFA3D68AABCB666EB35D3D9B7	57F1E97B3F34ACB741F789FEC812FC015D124DB30E6622EA9E087421A9DEBF3E
Chrome Cache Entry: 199	ASCII text	300D161DE90FEABC95F06858B1DE7D3D	55667F004C930318D316FBDEB2BF48B23EA39928	41A2352A39A65EC1AB18D4ED10C9370C382A9B0E7D3589F4D7E777873437D124
Chrome Cache Entry: 200	ASCII text, with very long lines (2027)	E28E248B4E0415A2B71A079B26D7055D	9E77F2DF841B9C579CC0292546ECE3FF5C4406C0	8389D82260A0A0482A3A0F240F927E3C0B6B6A7357F94BF2997FA19D14697E28
Chrome Cache Entry: 201	ASCII text, with very long lines (62689), with no line terminators	0B975E2F310204871D9B49F7490121D5	79FAAC8A9D5F098E5CBF51E0CBB25645E2894B13	711E4F7AE971755DED70FDCB76FB9D44E4ED166B0C94380D0CF9F876168B3C6E
Chrome Cache Entry: 202	SVG Scalable Vector Graphics image	002F1974B4782C1621C4081B51FDB3B5	A88C8834FD19B60A9DE4927500414FE1570797BF	BC293439E612D7E2CB6FA675A02A32A4EBD20593784B6DBDB3A74506F8C19C45
Chrome Cache Entry: 203	HTML document, ASCII text, with very long lines (15750), with CRLF line terminators	FCFB9D4779E760D1C3B74871A31D1BBA	B99AA56C313EFA416F32F56F34985BE5902FC64E	A37A87DA38CCF9C7B7A3F1D6530664ECA9381FE709D0B4B625C1AB889924C928
Chrome Cache Entry: 204	JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 727x463, components 3	015CAB7CF5C8C11D269B56EA7639846A	500B4CBCFAA05225283B523475992E6CA3D0B20D	74494B55F2FDE49D5F984765BFBC80E40922E7268C5608FA99F76AAEFDA0F4CC
Chrome Cache Entry: 205	PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced	19B227F196DBD70D0864E925EC2241F8	2F057C9EC4063A0CAD6763FE3E18608A7DF05619	5DFB6F22FC5A025718D9ADFD12482B7AFBFFA794E7994FE43D7B1A0EEC55A270
Chrome Cache Entry: 206	ASCII text, with very long lines (519)	EEB74615EFBF636CC7B78B17C6A933C7	34BF4DC348CF19180C5A022D7AB98B221D60DAD2	74A7A53097F5335E794968F4F7C27D089701FD635C8698C5F5FDA7F30356CACB
Chrome Cache Entry: 207	ASCII text, with very long lines (1096)	8A62239E68012587479539815CAD612F	5F85B3CA8CA668D62F50DC3B02DC26C07C202A01	29670EE20658E03E8758E14B5E57D87E783A5EB0CA07547D02270D0B4C1551D0
Chrome Cache Entry: 208	PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced	CC629787271992EE2E5E373AEB1705F4	3003F10DD6039EF6454EF33754C95331108FAD75	B4323D5475CCD04D8DB82C3FC0616B4B89E41138C8C808397439D0ACC1DC9C52
Chrome Cache Entry: 209	ASCII text, with very long lines (507)	0E7BC16532936D718F36DC47D8FEB332	A2C67B619FAAC3A4ABA0407CB4F34D844F4D2071	422AA4E7BA5FF626A830DBBEE358CB5055122A03B5C36B5F7608E1B34999E529
Chrome Cache Entry: 210	JSON data	8A80554C91D9FCA8ACB82F023DE02F11	5F36B2EA290645EE34D943220A14B54EE5EA5BE5	CA3D163BAB055381827226140568F3BEF7EAAC187CEBD76878E0B63E9E442356
Chrome Cache Entry: 211	PNG image data, 64 x 65, 8-bit/color RGBA, non-interlaced	E27B96C3636627830A50673B7FFACEB8	93D74A8E6C8CF3EAD04430BD8F7641BC5AEFD865	DD263999AEF1A759CFAAEB319AF3924D1FE366F3F24F07EEC4E438E4492EC51C
Chrome Cache Entry: 212	GIF image data, version 89a, 1 x 1	58A7930CD4577FC33C35828C271EAB8F	406E57F86DC101E10F3A57BE1E2F7B93C4580474	8D70B3E6BADB6973663B398D297BB32EAEDD08826A1AF98D0A1CFCE5324FFCE0
Chrome Cache Entry: 213	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x350, components 3	92428728C23C384EC1A488109E2D0D03	D824EC38B2FA6ADA6961B37D82EF754E0F56407D	A6D670CC6587B88D80AA71CDC92F136B38A5DA548FDED0E37F494352443B4006
Chrome Cache Entry: 215	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x350, components 3	92428728C23C384EC1A488109E2D0D03	D824EC38B2FA6ADA6961B37D82EF754E0F56407D	A6D670CC6587B88D80AA71CDC92F136B38A5DA548FDED0E37F494352443B4006
Chrome Cache Entry: 216	ASCII text	300D161DE90FEABC95F06858B1DE7D3D	55667F004C930318D316FBDEB2BF48B23EA39928	41A2352A39A65EC1AB18D4ED10C9370C382A9B0E7D3589F4D7E777873437D124
Chrome Cache Entry: 217	JPEG image data, progressive, precision 8, 727x463, components 3	8556006DB1FE0F2AA4619B3A532ECD68	AA945668A35CD73F5C51B845BDB23E35D69B0EFC	60F00E320849FFBB772BB651BF3A11609461CD49CE240DF07EDE36C4257165CE
Chrome Cache Entry: 218	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	98533FCA8D7822E0D40F85FF900DF909	C454F47E8FC88FA05379AB480A72385622F57D4E	F4198A6C9208FE18FE32FF0BD9EE7064FCF5627EAECF5D5FFDAEC11CA0512CDE
Chrome Cache Entry: 219	ASCII text, with very long lines (2844)	540FCC94430CFA0D851397DC0476D5C4	1748D4EAA7454485D72DF98BCE0D331623816115	B89A0EB444111DEDF614D1CA44BA1D18A01FA004CBA0747F6D2EE165ED9F5CD7
Chrome Cache Entry: 220	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3	1940C7BAB48032027D54135C83020FEA	911E14D2AA85C346104F61E31EB72E159FBC6D4F	8A033C049093DFF4C3868165DEA686DC21AC5E9DE1955AE37999FA4065AC2AAB
Chrome Cache Entry: 221	SVG Scalable Vector Graphics image	61FA964317010FF072A365285E283F40	A8A15727C7F6C764881AE2E152E3E8AB05F557F0	6C8FFCE21F1CFA9C7712D49B7D25E181DC8CB3FD646195257328F87DA73CA2E3
Chrome Cache Entry: 222	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2018:03:16 16:17:51], baseline, precision 8, 727x463, components 3	999CF7132D00D0493454846493B1D3CF	C87DBCD150D3F6DFDE52841489F69218E84E20F6	E08BBD30B25C89F6DB1DC380BA48070F55CBF80D349C44CF43603FE357E0B2C7
Chrome Cache Entry: 223	JPEG image data, progressive, precision 8, 727x463, components 3	C953F9913E429BDC2FBED1923A1DAA50	7403EEF72FC6DC57CA385FF650D83587746998DD	74B3F8585BE4B124030528DC5B4484776F0E251C0CB05E649061AF1D766D3C1E
Chrome Cache Entry: 224	Unicode text, UTF-8 text, with very long lines (2192)	91B88FE9526A9DE0C47DD50103C83BA0	BEE91D19C979B8F339748C13E3540BA4B7D9142F	2DAE280027ABFEADE7367CF104CFAF3D8B93384984883CD9892DD6848BAEAD6F
Chrome Cache Entry: 225	ASCII text, with very long lines (4879), with no line terminators	414F1E375BD927D6166C9EAA6E38DD13	B2C1EB77C9C79BCAB27E5892E11ACBD74898E50E	78A37757C165E672EDA69F69D745AB86D78FD6D9B66B157CB9B032E479FAAB11
Chrome Cache Entry: 226	ASCII text, with very long lines (1934)	298DC8421C652BD9250BA97653A2F9F0	7B5ED33C7CC2A95DB6E5C7E058C856CDC334EA6B	F471A07681D95A28B900538B4FE7EA6AA0129F0E62F88654D8AC88A2D1C33232
Chrome Cache Entry: 227	PNG image data, 640 x 185, 8-bit/color RGBA, non-interlaced	CCE64505E07E8A08B683A3AE202D8540	9538C28D54113556C791A40C20C339E9A273EEA4	29AF48F41262C4E30BB24E7482AA4623C903574FDB80A9E2D278CE8DFD0DDA42
Chrome Cache Entry: 228	ASCII text, with very long lines (651)	CEE8557E8779D371FE722BBCDD3B3EB7	73C8A8E4E812E4BABC0E9937A49DB89841352794	D8A75D918DDD574026D721058790DD07FC7424AD500E3D9F5BE856E921BE08F1
Chrome Cache Entry: 229	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	0AFD3659921554DD2451A00C8A90A402	402EBBEF8B8A086BAFA3B8DBF15F40BA63B72E69	6F46E13AB4B86DA0407A98685E6CDF678AA732E29335FE0F441C2B816DDF0E46
Chrome Cache Entry: 230	ASCII text, with very long lines (32761)	90B040FAFC103C4D2614604F2750270C	79955E2AD17538A3A676DE56403E4AA812836A24	82EE7D0B45A5EA3AA8884635E897D448ADEE0C4EAC4DEA7EF2AD881C779EB3DB
Chrome Cache Entry: 231	ASCII text, with very long lines (1001)	469D1C31FDAC07987F7D1A31DC71ACC5	E2B1458798F5427A98DBC7C74B9035A7D0E18D5A	86B6A911E735A715593A8B054F26D3FF705AEA75E9D46E01ABD4E67EE002C6F1
Chrome Cache Entry: 232	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3	F6A245005D8EF93706011903590E4ABB	11CD6120934D03765440D3172F75B70A0F1A4719	E68DFA41A0803CCAEF18C542755668E90CD96B3E03B47FD6F278C4F1949B06EF
Chrome Cache Entry: 233	RIFF (little-endian) data, Web/P image, VP8 encoding, 727x463, Scaling: [none]x[none], YUV color, decoders should clamp	B4F7C2798BDDC3B2956F48E79A410236	AFA8056E5A67A2052D1C26930EA6BB6461853F59	98A060D288E1273F66AD2259E643773A773D950201834A987A7658062E211DA9
Chrome Cache Entry: 234	PNG image data, 128 x 128, 8-bit colormap, non-interlaced	A4FF79369B619B8D1F36B9A1E84F2E50	C6731FED706129CE1024A28B30F3F5491E034924	4455C6E29459B3079B4BFFE77E4513B5875A7172AA6BC97CC8798D2EB4B9176A
Chrome Cache Entry: 235	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3	8B3B8638F64F2380EECD484222D50332	A46B67C5EA62A7E6E59FED2F1F6DF894998A9CF1	BC3D0602151529D0072D890EC04AD108A9F53BA03B1630F99E3C2CF74E24D72B
Chrome Cache Entry: 236	ASCII text, with very long lines (519)	EEB74615EFBF636CC7B78B17C6A933C7	34BF4DC348CF19180C5A022D7AB98B221D60DAD2	74A7A53097F5335E794968F4F7C27D089701FD635C8698C5F5FDA7F30356CACB
Chrome Cache Entry: 237	JSON data	8A80554C91D9FCA8ACB82F023DE02F11	5F36B2EA290645EE34D943220A14B54EE5EA5BE5	CA3D163BAB055381827226140568F3BEF7EAAC187CEBD76878E0B63E9E442356
Chrome Cache Entry: 238	RIFF (little-endian) data, Web/P image	4E29D73DD932AED40B0AFD041A67D433	71F2CB1B583F59BACC869F2CA367B079AD79C145	5F1E6AAB878072C7998E49C1814E3E6AE63E698B1BB412998EE06C3C940E9A1B
Chrome Cache Entry: 239	Web Open Font Format, TrueType, length 45484, version 1.0	449C745B78495E0B82221CF55BBCD717	8982E3F3EC432F1AA6829D27AB966A5AC69BC6F8	B6EB141C02454BB6E59981E13C9936DD3B30F84F3D0831A3585C67F7FD1534E2
Chrome Cache Entry: 240	ASCII text, with very long lines (65510)	647DE52796ACB9AD31A3DA27373427CF	78EA2FC988DC9AAFE37B093C8F9FA189CD5CBBCC	F068D165E0783E25BE145493359E3963490ACE824A01C065E5642BA828AEF11D
Chrome Cache Entry: 241	HTML document, ASCII text, with very long lines (1008), with CRLF, LF line terminators	3B8ED5081AA573FB3FDB38B37111C3BB	02B8A5CB7A25699056D7D78FD3CACDB57355EACF	74F0907034F3EA10ADF7F30EAF365E8A287B2FAFF35BAC3407555536B4D63360
Chrome Cache Entry: 242	ASCII text	B51957CB1A5CDD48612865B09756FAB7	FFAC531A63A6F51538CAF126C66EF652B7290DDF	F0690AA5D8B27A2E6D041092A951E935E16D9BC9465A93CA1F28786122260EC6
Chrome Cache Entry: 243	ASCII text, with no line terminators	EB0D78B88E4B2297D78818988E678724	A2B5F021807EDE5ED194E88B26B889DF7CFA01E5	243A0142DC1041CB18AC0E73821DE17C9FAE74DA52EDEF200EBBCC2511ECF185
Chrome Cache Entry: 244	JSON data	A82F26DF0C65D7FA73409E87FF5D6BE0	1603236B3567B572137E332F169A1D1327076B02	8AFBC3E1250833F9103384731397A9207609D404C00C455CD0CB4EC8DE8EE66A
Chrome Cache Entry: 245	ASCII text, with very long lines (434), with no line terminators	CF84C88E6C9D4D520360D70DC9DE91D0	777D96E615DA75EF03CAF9A7E748E63F63E33A73	969326370716D75404E6E48F20A1ED31E0D731F3C66651903CAB2BA9492C9CDA
Chrome Cache Entry: 246	JSON data	2BC7D60121EA5F176B70E7760C9845B4	CAA016AB0A8C1A89DA1F6853F08DA0902E826ADC	86F3437DFB307E565F4397BDB1BD6460B7D784898A5F6B148E918C35F4B0AA38
Chrome Cache Entry: 247	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3	A97E1040D4341B9278724698FDBC369D	2FDF23CF1BE93D6EEB796FA5B43A5E08F5F23241	38F2C9A2B279264FF811FD45C6BDA001B4AF7657B2C58FBDAD475BAF6CA7E1F9
Chrome Cache Entry: 248	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=463, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=727], progressive, precision 8, 727x463, components 3	B8A0784199DD1D54D17A01C99A4AE08D	6262707257895F916E58E8007EDA0EDEC8B43063	03BA47F8875AA270A9EA2661622230DC18494F1DAA980632380CFEF96ED733C9
Chrome Cache Entry: 249	ASCII text, with very long lines (17927)	79A40C63868A2D004CC03560A1F630E7	478DAD577378A086161260CC3EF76EF87B373E2B	8E78C12585527B15074406655DB81D18AED1D9AF5E03A1C37295FEA11D8218F8
Chrome Cache Entry: 250	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	0AFD3659921554DD2451A00C8A90A402	402EBBEF8B8A086BAFA3B8DBF15F40BA63B72E69	6F46E13AB4B86DA0407A98685E6CDF678AA732E29335FE0F441C2B816DDF0E46
Chrome Cache Entry: 251	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=463, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=463], progressive, precision 8, 463x463, components 3	7A653227B677FDC1533A3BC10F7B2FCF	420E9E201EA5B77DB52635CCB39193626858CE75	68C2B4FCDCB2F683380BCCCF432EA417BA4679F71A948E153CF2516C5F52D5B0
Chrome Cache Entry: 253	ASCII text, with very long lines (507)	0E7BC16532936D718F36DC47D8FEB332	A2C67B619FAAC3A4ABA0407CB4F34D844F4D2071	422AA4E7BA5FF626A830DBBEE358CB5055122A03B5C36B5F7608E1B34999E529
Chrome Cache Entry: 254	ASCII text, with very long lines (1469)	39EB5CE80591E480FF075BB8C3F07A3E	EA94A330E3CB60308E0C23BC79446A8F8840385F	B4B6CF38A10E4450902935A1BF8CFA60CCF758AD789FA734C760D9434C7A8AAB
Chrome Cache Entry: 255	RIFF (little-endian) data, Web/P image	C10FDFEF6FD0419B66303680244C2F34	FF57E205C4A40F29602391F0ABEC1F2DF67B0810	77A917944518CB08389BDB086721756E95771AB19D00391820D51CED447DABD0
Chrome Cache Entry: 256	SVG Scalable Vector Graphics image	61FA964317010FF072A365285E283F40	A8A15727C7F6C764881AE2E152E3E8AB05F557F0	6C8FFCE21F1CFA9C7712D49B7D25E181DC8CB3FD646195257328F87DA73CA2E3
Chrome Cache Entry: 257	RIFF (little-endian) data, Web/P image, VP8 encoding, 727x463, Scaling: [none]x[none], YUV color, decoders should clamp	06A9F982B6AE2670A8EAEE2CE3303A4C	550E094443648B1A2AC2F59AEE6B85268F75565F	30B4081162491B0C3F2A885932584C204F06D3DD78C269E0CA676B375360E20F
Chrome Cache Entry: 258	JPEG image data, progressive, precision 8, 1366x477, components 3	68DE3FED796B27FC9301181B77AD9B7F	8ED2D7D9E7608FBF29DEDB8F8F74CC3107836760	1BE4BA5B7C3B13116C24689AAD85A4E5FEED7499B44894E97201DDA377F5C5B9
Chrome Cache Entry: 259	JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 727x463, components 3	015CAB7CF5C8C11D269B56EA7639846A	500B4CBCFAA05225283B523475992E6CA3D0B20D	74494B55F2FDE49D5F984765BFBC80E40922E7268C5608FA99F76AAEFDA0F4CC
Chrome Cache Entry: 260	Web Open Font Format, TrueType, length 45540, version 1.0	41CA1C3FF04D34A92C854CD71D3B4169	C524488E48A1F5EF53C2B790EA499D61FF5B5732	D46D1003C4270BF35C35B7B92A20B730129CD37E701A40BA4909E91ECE9BF3AB
Chrome Cache Entry: 261	ASCII text, with very long lines (643)	404CC2E560C53E989033D0CD6CD5515B	4CF1EFFBC601149EB9ECDC8FE14AC26C0C498341	4C6762FF2489D24B2AFDD16EF12E92A18AF652D221519D73868DBDE4A624B58D
Chrome Cache Entry: 262	SVG Scalable Vector Graphics image	FEAA58C283AEB800108FBC1BE1D1842D	50996D769564AE7FD25052EFEBE773C082E0D4AA	0D05BEBB44F6460ECDDF35FA4AAF94C41390F3474F254C53A51A10222DD302BF
Chrome Cache Entry: 263	ASCII text, with very long lines (2333), with no line terminators	D159B47D2AC3CF4A8B56F7EB5E987AE7	8587AC8E0DA7801E149CE0B5677EA6640161C9E7	7578B542AABFD0C671E8701005FCE575D5FD735199988DA69E50CF8F92751036
Chrome Cache Entry: 264	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3	FBBEA715BCABE69C34C138583D96F0DA	0C71B45B4311CAF09308C7B29983B4F63EF07901	25B467BD071F43F7974D4A593DEF127422293A32B4B2EFA7658D6A2F62E3D831
Chrome Cache Entry: 265	HTML document, ASCII text, with very long lines (15750), with CRLF line terminators	FCFB9D4779E760D1C3B74871A31D1BBA	B99AA56C313EFA416F32F56F34985BE5902FC64E	A37A87DA38CCF9C7B7A3F1D6530664ECA9381FE709D0B4B625C1AB889924C928
Chrome Cache Entry: 266	PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced	033F4207051289FE2E2411580D666B8C	9180E04E5B431C686C339E16FB99E8A60AC01D2D	CD339D543F8022A6604228C8E3437E4CCC4EFE6D9A78681233EDBA340B95969E
Chrome Cache Entry: 267	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=463, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=727], progressive, precision 8, 727x463, components 3	CADD454003F61D5D56EA657180B45836	B1052DD1DF625A79859A8528244C1A45EBE5EE5F	ECB0ACC4099BFD530D4B859DCA6BBE70C2E9A66E8B2838C7135B500242DC712B
Chrome Cache Entry: 268	ASCII text, with no line terminators	AF57B453E906C1524BB8B02BF1EC7E91	224B0B705595DE6D103D3BCCD01DBD5769197140	CA8071F5FB5823C3B3537AC1C8D58A09E9C44A1BCE3A397DCDB605DBA5AB19C6
Chrome Cache Entry: 269	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	98533FCA8D7822E0D40F85FF900DF909	C454F47E8FC88FA05379AB480A72385622F57D4E	F4198A6C9208FE18FE32FF0BD9EE7064FCF5627EAECF5D5FFDAEC11CA0512CDE
Chrome Cache Entry: 270	ASCII text, with very long lines (552)	6BCEBE0A0A189E0649DED7203D9E95BE	52515EBF89C687E6319F6646D070CBE1F47BE829	2E3068A02AC934D82B62F4BBDD4E6CAAF40B0B5840CC883F87EF96144BF48AF6
Chrome Cache Entry: 271	RIFF (little-endian) data, Web/P image	557AE07A4791155B08DE1D91DB877A8A	A013476D9C3E25AD6766CEBA195A0B3A0E938982	DD3F3F1680A3D4BF40242496232A5778BCF125850ACFF08ABBED7504D746DBC6
Chrome Cache Entry: 272	data	B46020FD833E4827ACC6619D571BD31F	4B16C37D813A7E8CE495C789B2DA628D575B60B1	0F1ACF5410A0D23FEB610E6AD3F8BD689B3423A98669F52440D7A21F8C06CD99
Chrome Cache Entry: 273	SVG Scalable Vector Graphics image	002F1974B4782C1621C4081B51FDB3B5	A88C8834FD19B60A9DE4927500414FE1570797BF	BC293439E612D7E2CB6FA675A02A32A4EBD20593784B6DBDB3A74506F8C19C45
Chrome Cache Entry: 274	JPEG image data, progressive, precision 8, 707x205, components 3	00385D95C74B21C6AD61CF4D8369B0BF	84F2A0F068A9533A82ECA085A4AFC5D641C38A1C	DFDEA70133F6DD989C1390CFDE7C1E04140F3007C82B8B9E81E401E9A92A273F
Chrome Cache Entry: 275	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 727x463, components 3	1C6F6F40D2B282AAB97890ED5FA32266	9F583AD0CC782C47297B9F143D3A468BD409CC48	E9631C423A050C3B8F5E191FBCD876B5213406F4064E3C09AACA692C3565C9CE
Chrome Cache Entry: 276	ASCII text	3A768A0252E06BDAEF85DE7037DACEEF	A8D142A07D9A226200759FEDFB59FA944C73ABF9	521A7497FA7B0938F428DEDFB773A97876091DCC92567006B6F3636E70FD24AD
Chrome Cache Entry: 277	HTML document, Unicode text, UTF-8 text, with very long lines (8170)	D3597BED08CA6A0A61C8502BF99A039B	8A8FD79746F5A8D01107D1C5E54A8A540D6AC1CF	38A4E07E5F1E002A35A380DA5798D625793174DA74662ADDC409D6436884E567
Chrome Cache Entry: 278	Unicode text, UTF-8 text	954E01353C1F3F604A9A95C1C9CB1829	3125CC2850CAFF4C9704E775D520B996AA989085	409A04359C8BBC74EB759078C6E2A6CC6A276BA5280FC648653AD99CDE925F05
Chrome Cache Entry: 279	ASCII text, with very long lines (590)	ACF172D07A6DF0782DA2F60BA62EAB49	2300A93384C6CAADF9595CF90E62B1336705C13B	7BE6E6B9721EE2AF3201E142135EA26F74780D0CD49EE8C6098E5DE18C0DA05D
Chrome Cache Entry: 280	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 727x463, components 3	087265A1F96328011A39694E0F3D7DF6	4DB4D0666166A052BAEBBFA960771A0744F1B814	A3B1A132EA2C2311BBA5FE4C2051E0161554A62C2077FDDF973FA335998D28A8
Chrome Cache Entry: 281	JSON data	B51A618D6A0C907A320D05E132F4C238	D99B2B90E718CCA8FD3A71BC9A7875340C8607C9	CBAAFAB87349652C6009E6D6027D6175344F51C7BFF1357DA80E0E7C878A61D9
Chrome Cache Entry: 282	ASCII text, with very long lines (65536), with no line terminators	0CEE5817E391DFBC975D907C1D84AC23	C1CA522DF25CE56ECEE6CA0D9E024C5013E4ADE1	3B5677878C1544852D481BE943F859B0DFC0A3E7554E0C9405F0BA137120DE8F
Chrome Cache Entry: 283	Web Open Font Format, TrueType, length 45080, version 1.0	54A4A46EADF2BAD915DBA79458AAC017	D234584F867218DE98A78A481570273919F35B49	C361FE5762F2ACD3432BF233C0012887C1C2C3523314872675D1924D33B47098
Chrome Cache Entry: 284	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	BF4E287584641F5313DF576FAA3DA464	93F401936FBC89A4331867CC6F6D1437C93F6532	47B45785064F63B0DD9B630CEEDE2869B11DED784FDF406AB5216EF01F6C4025
Chrome Cache Entry: 285	PNG image data, 176 x 50, 8-bit/color RGBA, non-interlaced	F9F3A4BF508EEC8270BF7C8FE4397384	8B47C45B41E159B9DC2D6FE563B1197BD2A3EC16	99F7CD905D160E4BF4408195B22A893A45661A8855A0841E207D5BAFE7411D90
Chrome Cache Entry: 286	RIFF (little-endian) data, Web/P image	595AFA0E01EE58F4EC596A1EFD910C61	CD15B21953A7C427D2BBC3C5F9BFE1EE840756AF	7A7CF8033C99B57A238E8DE557B678BA602AD95465A9A37378B1DC5E23239C0C
Chrome Cache Entry: 287	ASCII text, with very long lines (1001)	7E0397849F3BB9AE52AB042B377426E5	8CDB9B1C4AD44E326BB328D9EF9F7D7D134AAB3A	C83499D2CBC610F65C9D4E6A0FA2E38560BE75D3E570C62A91F155E8DEE6B3C8
Chrome Cache Entry: 288	Unicode text, UTF-8 text, with very long lines (2192)	91B88FE9526A9DE0C47DD50103C83BA0	BEE91D19C979B8F339748C13E3540BA4B7D9142F	2DAE280027ABFEADE7367CF104CFAF3D8B93384984883CD9892DD6848BAEAD6F
Chrome Cache Entry: 289	ASCII text, with very long lines (45825)	15F3F19CE5F224711E4E317791900841	519D1B24D76BF6F108EECC348211FE02352A1CA6	4E5ABD4A0506BB0C5426FDDDE67167E2F86CDAD465D7FB77CE459988D26964CA
Chrome Cache Entry: 290	HTML document, ASCII text, with very long lines (5441)	0DEE5E84CEFB4C2E0BEE7C916E51BB4B	FBB42FC6EABB96AB1CA74AB641B46707F4CDACC1	1C8100B3943CA3F7541FBA9E500B3E9553DE2274928C61442701285388DC3E7C
Chrome Cache Entry: 291	ASCII text, with very long lines (552)	6BCEBE0A0A189E0649DED7203D9E95BE	52515EBF89C687E6319F6646D070CBE1F47BE829	2E3068A02AC934D82B62F4BBDD4E6CAAF40B0B5840CC883F87EF96144BF48AF6
Chrome Cache Entry: 292	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=350, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1200], progressive, precision 8, 1200x350, components 3	AA0994B8385F3BEB5D064F026E7B5637	201E7EFE0EBBFC2BDF252805B9DB7857E7C6F004	FAACD9FA5B14BE328C70A6344978CA737E24C10970F73ABA4EA1A671B890448D
Chrome Cache Entry: 293	GIF image data, version 89a, 1 x 1	58A7930CD4577FC33C35828C271EAB8F	406E57F86DC101E10F3A57BE1E2F7B93C4580474	8D70B3E6BADB6973663B398D297BB32EAEDD08826A1AF98D0A1CFCE5324FFCE0
Chrome Cache Entry: 294	PNG image data, 640 x 185, 8-bit/color RGBA, non-interlaced	CCE64505E07E8A08B683A3AE202D8540	9538C28D54113556C791A40C20C339E9A273EEA4	29AF48F41262C4E30BB24E7482AA4623C903574FDB80A9E2D278CE8DFD0DDA42
Chrome Cache Entry: 295	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3	86E4EBADE1B43CE14DD0AA0244B9874E	92272F09BFA45166C39007DAFE8821B4A27660C3	CB19D4127EC8E05816F8C412424B767BE8699B9F3EF6FE209A2DC30764411268
Chrome Cache Entry: 296	PNG image data, 154 x 112, 8-bit/color RGBA, non-interlaced	75894F40586A10AC4FEB8EFD27834B87	B6D2453778FC795FC270A86CFBC86F5275870FCD	8C8E4CEE94204596733D23753AE8CEBDDFC2157E56EAE975F0AE7127B795A03D
Chrome Cache Entry: 297	JSON data	0E607747787453882A9B1DADFC8BC26E	233B13AA950092370366231E197B6EF9BE10F598	E5CA8C381B67AA80A0D1164AC4BA0862252316BB85B4DD93016FACE65160AB28
Chrome Cache Entry: 298	JPEG image data, progressive, precision 8, 727x463, components 3	D5C349BE16045B653EF38E29CC5BD7CD	FF8B7A959AD598F1D5E56D31C4FCA3092B2C2AB6	05D1A70172B71E715EB21700FB365A8B1BFF2B8E0EAA23CCBD2EC9A85EF8A4E5
Chrome Cache Entry: 299	ASCII text, with very long lines (643)	404CC2E560C53E989033D0CD6CD5515B	4CF1EFFBC601149EB9ECDC8FE14AC26C0C498341	4C6762FF2489D24B2AFDD16EF12E92A18AF652D221519D73868DBDE4A624B58D
Chrome Cache Entry: 300	ASCII text, with very long lines (2165)	9C1F1FF6203A939F11B6200E3CFFDBC8	DDAA6C9C72902980F0322C8443E2453D7EE05420	6B4684D83FE56FADB2E22A322686EF038AFD2A4B5EBA45607DA77BB75BB60B47
Chrome Cache Entry: 301	ASCII text	94CAF758834F763F9FF19CB0C7FCD189	B800CAFFB9F0062830BD673CC075692B847C9F8A	2972F4813C10ACF4C4CF5E55EEDC18A5A0B871FD3F8091B11DB8D0FDC4722929
Chrome Cache Entry: 302	RIFF (little-endian) data, Web/P image, VP8 encoding, 727x463, Scaling: [none]x[none], YUV color, decoders should clamp	F81332ED196E76550A07DFA399C2CE4E	861A3FB84E7E9704EE9ABE91FE0E2B2F6AD4C69F	0FE48FE96816B171E42B6496C86685447A2A8CAD92B3E2CDFAD31C3E0170F2F6
Chrome Cache Entry: 303	ASCII text	B059365F0128729CA91FD6FDBBB83FD6	317C9DE19B69844078E92EC7D9EA1F639FE47282	C667BE1AAAA96F05BB8F74A91E8946F52A4A5343654E947366D510BCE310F86A
Chrome Cache Entry: 304	Unicode text, UTF-8 text	954E01353C1F3F604A9A95C1C9CB1829	3125CC2850CAFF4C9704E775D520B996AA989085	409A04359C8BBC74EB759078C6E2A6CC6A276BA5280FC648653AD99CDE925F05
Chrome Cache Entry: 305	ASCII text, with very long lines (522)	3D6CD618CFE68B918F8CE0BD5C70CAEA	38C35FFCFDB0A4EFD9F58790B5086A79F3738A6E	C7D9B13EFC27F8911EEEA8BED8CEC7BE8CF8DE7ECEB200D189F5E7BD9BA1544A
Chrome Cache Entry: 306	PNG image data, 64 x 65, 8-bit/color RGBA, non-interlaced	E27B96C3636627830A50673B7FFACEB8	93D74A8E6C8CF3EAD04430BD8F7641BC5AEFD865	DD263999AEF1A759CFAAEB319AF3924D1FE366F3F24F07EEC4E438E4492EC51C
Chrome Cache Entry: 307	JPEG image data, progressive, precision 8, 727x463, components 3	1CCCA8CA1F552BA2FCA03F11E2293907	64E5D3DB2C5ED1A080C5FD8742B1BCB410FF7072	82CC9CF8787BD4E7B303FA92E2BB3D07EF45AF6D0B6E1A46CFE485D7B5AD24D0
Chrome Cache Entry: 308	ASCII text, with very long lines (2278), with no line terminators	D65F03CE71AC191FF9FA3EBB538675C6	84EB254926041B6DC894FBC21489ABCF3B8150B2	4803A9C149B4269FA2A56F2F4B7D8B2380D27B641A6286B05144BBC86354ECDA
Chrome Cache Entry: 309	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2018:03:16 16:17:51], baseline, precision 8, 727x463, components 3	999CF7132D00D0493454846493B1D3CF	C87DBCD150D3F6DFDE52841489F69218E84E20F6	E08BBD30B25C89F6DB1DC380BA48070F55CBF80D349C44CF43603FE357E0B2C7
Chrome Cache Entry: 310	ASCII text, with very long lines (45825)	15F3F19CE5F224711E4E317791900841	519D1B24D76BF6F108EECC348211FE02352A1CA6	4E5ABD4A0506BB0C5426FDDDE67167E2F86CDAD465D7FB77CE459988D26964CA
Chrome Cache Entry: 311	JPEG image data, progressive, precision 8, 727x463, components 3	8556006DB1FE0F2AA4619B3A532ECD68	AA945668A35CD73F5C51B845BDB23E35D69B0EFC	60F00E320849FFBB772BB651BF3A11609461CD49CE240DF07EDE36C4257165CE
Chrome Cache Entry: 312	Unicode text, UTF-8 text, with very long lines (65468)	1FEC581A5ABEDA63AADE96FCE868C931	19E319F5DE987C789E3F265E5AF1B648ACE3D008	37AF0A1CA71F487AB61CB9CCFE1573FF9282A58E9BDD80CF0216B05D8374194B
Chrome Cache Entry: 313	HTML document, ASCII text, with very long lines (22333)	A410800EFF62302AF338BC665988EE1B	A6F61F9359DB19142F20B11E2AB1049D2D54C09A	2B55D57C97138BDC965FE2214CFA5101F06FAC526E7E3400E76EBC12472B0780
Chrome Cache Entry: 314	ASCII text, with very long lines (1469)	EF6ADE3A88938270FDD7D46F404A3130	C0E1161FC7BD3E5342D26C8F6277714E70E837DA	619ACC393E131E81B6E916CACE73CAE66AE05AFB4819B365DD23A496C763A635
Chrome Cache Entry: 315	PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced	19B227F196DBD70D0864E925EC2241F8	2F057C9EC4063A0CAD6763FE3E18608A7DF05619	5DFB6F22FC5A025718D9ADFD12482B7AFBFFA794E7994FE43D7B1A0EEC55A270
Chrome Cache Entry: 316	ASCII text, with very long lines (1025)	394724A8371EFF81078EA5C03215A455	57E005B1FE159142D3BDDE527AADE52BA6CC54FD	927DA4EA7A2044965629EA465264421E8CEA338DD9B85AFA65C0906832B6C14D
Chrome Cache Entry: 317	ASCII text, with very long lines (2277), with no line terminators	9A7BDF17C4A556105F5269B4CB5F01D2	2F09A4E37D941506950100C2F6A1D8E6A095DA00	00CB88A574E8DE6A90EBC60FB9ECA477ED0BFA98D5B9FB8C8CCF49A68E38E27D
Chrome Cache Entry: 318	ASCII text, with very long lines (1293), with no line terminators	5D5AB7B25DCD132883A697B21639D156	B000963B633DB5035B84A7256708B8178934F8EE	A4C98DF33D55510104C93BEA61D38EE6B77A16A7BA165DD493EB5EA1177DD3D5
Chrome Cache Entry: 319	ASCII text, with very long lines (535)	E129916EA1C4FE60F471264360D3E686	CF31A9D01769EA06005404078DBF17AEBBBB1971	A33FB6053C6C52DD3C4146E3B94F576261C86C40C0E8E19B54CEFDB852FCA331
Chrome Cache Entry: 320	HTML document, ASCII text, with very long lines (15750), with CRLF line terminators	FCFB9D4779E760D1C3B74871A31D1BBA	B99AA56C313EFA416F32F56F34985BE5902FC64E	A37A87DA38CCF9C7B7A3F1D6530664ECA9381FE709D0B4B625C1AB889924C928
Chrome Cache Entry: 321	HTML document, ASCII text, with CRLF line terminators	9FE75B262B1A9137EF65388257CFCB23	18D4365951197E1CBF8A6D0CF86D3DF53E696F1A	99EF72129841D6F2B69B3113AC1C991C49B8EC6665BBC4C29E1AA9C536FAEF4F
Chrome Cache Entry: 322	ASCII text	43BA25E3B6D0AAAE1BF4F266DD7DD059	A3E020530A8E2D5C93D1E9DB95C5EF81A2FE4F26	9C569DA723C8BB238C21BF1124059D5A9F6EC571B94F5B7A015B230DB5EC143F
Chrome Cache Entry: 323	PNG image data, 463 x 463, 8-bit/color RGBA, non-interlaced	7DBAFEAA46697701EE14B6AD4C39EA90	AC045969D497E36EEACB7754FFF9CBFFE0787AAE	933A05FC0F589422646172703CBE369A9444325B45F714AE35ADA391C0E0EB11
Chrome Cache Entry: 324	PNG image data, 176 x 50, 8-bit/color RGBA, non-interlaced	F9F3A4BF508EEC8270BF7C8FE4397384	8B47C45B41E159B9DC2D6FE563B1197BD2A3EC16	99F7CD905D160E4BF4408195B22A893A45661A8855A0841E207D5BAFE7411D90
Chrome Cache Entry: 325	ASCII text, with very long lines (10321), with no line terminators	22AAC985DB6BC24D7CEA0A12CFB7969C	FBEE956D467E051104E10DC22CA487B3EE8FD590	4951ACEB7D36FD4B83758A9558838D56D705ACD10E37796815D49C41B8F8466A
Chrome Cache Entry: 326	JSON data	4916B7566095824869E4D67332717D7F	4CD90804152A57AA2711FF813F979F3A34664990	749C17D770E83C1257199569BC4ED4D55E752E4A1F23D5342FC185D3C10674BC
Chrome Cache Entry: 327	Unicode text, UTF-8 text, with very long lines (65468)	E1FA56B8E06E0981BE54EDE5F2D9636C	6AEE112F4A8807078CE028540E1ABFCBF6A053B3	6794A370EB3F5ABFA6743EEAA677D4B4E144632BFF04A113349FC5067C8CAE4B
Chrome Cache Entry: 328	PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced	033F4207051289FE2E2411580D666B8C	9180E04E5B431C686C339E16FB99E8A60AC01D2D	CD339D543F8022A6604228C8E3437E4CCC4EFE6D9A78681233EDBA340B95969E
Chrome Cache Entry: 329	HTML document, ASCII text, with CRLF line terminators	0FD5E2E8E4AE00D458683FCA2CD61494	F1A4BBED3059EE106474B9E1940875C9755DFA77	212C089D2B2008CBBE9301645F0E44CCD71E5D7DE182B4F9D87DE4B4A5439E15
Chrome Cache Entry: 330	HTML document, ASCII text, with very long lines (15750), with CRLF line terminators	FCFB9D4779E760D1C3B74871A31D1BBA	B99AA56C313EFA416F32F56F34985BE5902FC64E	A37A87DA38CCF9C7B7A3F1D6530664ECA9381FE709D0B4B625C1AB889924C928
Chrome Cache Entry: 331	MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	A53129769D15F251D4E5C5CB966765B4	043D6A7B9CCA5D05ABA04FC0A3F4527E3AD075E0	EAB1B9A0EF942D84E3A8ED8C3E3996ACB7A46AF9A0B9F914CED662BCBE0E54BE

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://librospy.com/

SlashNext: detection malicious, Label: Credential Stealing type: Phishing & Social Engineering

Phishing

Phishing site detected (based on favicon image match)

Source: https://mellowfast.digital	Matcher: Template: fedex matched with high similarity
Source: https://mellowfast.digital/tiz/auth/delivery.php	Matcher: Template: fedex matched with high similarity

Source: https://cdn.bfldr.com/I22OPSFM/at/kjcgfjhvjf9jh6h3shmsgms7/icon_arrow_down_blue_16x16.svg	HTTP Parser: No favicon
Source: https://td.doubleclick.net/td/rul/863238793?random=1713499584571&cv=11&fst=1713499584571&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&hn=www.googleadservices.com&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&pscdl=noapi&auid=862245534.1713499585&fledge=1&data=event%3Dgtag.config	HTTP Parser: No favicon
Source: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0	HTTP Parser: No favicon
Source: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 23.33.136.127:443 -> 192.168.2.4:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.33.136.127:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.4:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.4:49854 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 23.33.136.127
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	TCP traffic detected without corresponding DNS query: 40.127.169.103
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: librospy.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: librospy.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://librospy.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.librospy.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://librospy.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.librospy.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tiz/ HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://librospy.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tiz/auth/index.php HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://librospy.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tiz/auth/delivery.php HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://librospy.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-dependencies.min.73b7c9d10f170d7443363bf773dcaee6.css HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-base.min.39eb5ce80591e480ff075bb8c3f07a3e.css HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-xf.min.b059365f0128729ca91fd6fdbbb83fd6.css HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/virtualagent-us.min.css HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-dependencies.min.7e0397849f3bb9ae52ab042b377426e5.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/secureCheck.min.94caf758834f763f9ff19cb0c7fcd189.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/shipping-routing.min.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/virtualagent.min.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/200-es5.000d3c4beff2cf0185d2.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/11.49f0b3e462d2d1363ad2.chunk.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /libs/granite/csrf/token.json HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/logo.png HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-appInit.min.404cc2e560c53e989033d0cd6cd5515b_002.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-appInit.min.404cc2e560c53e989033d0cd6cd5515b.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlibs.min.300d161de90feabc95f06858b1de7d3d.css HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/logo.png HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /libs/granite/csrf/token.json HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlibs.min.b51957cb1a5cdd48612865b09756fab7.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/Gradient%20Announcement%20Icon.png HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /content/dam/fedex/us-united-states/FedEx-Office/images/2022/q1/tracking-modify-deliveries01.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/Gradient%20Announcement%20Icon.png HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/FED03799_TrackingLPUpdate_MobileAppPod_727x463.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/Location3-FED03799_TrackingLPUpdate_ConsumerGroundShipPod_72.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/FED03799_TrackingLPUpdate_MobileAppPod_727x463.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/Location3-FED03799_TrackingLPUpdate_ConsumerGroundShipPod_72.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=2LHvL8scypFrW4V&MD=N5HtAvpV HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/gdl-fedex.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /etc/clientlibs/fedex/common/css/resources/fonts/Roboto-Bold.ttf HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://mellowfast.digitalsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-base.min.39eb5ce80591e480ff075bb8c3f07a3e.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /etc/clientlibs/fedex/common/css/resources/fonts/Roboto-Regular.ttf HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://mellowfast.digitalsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-base.min.39eb5ce80591e480ff075bb8c3f07a3e.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /etc/clientlibs/fedex/common/css/resources/fonts/Roboto-Light.ttf HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://mellowfast.digitalsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-base.min.39eb5ce80591e480ff075bb8c3f07a3e.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /etc.clientlibs/clientlibs/fedex/images/resources/menu-sprite.png HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/clientlib-base.min.39eb5ce80591e480ff075bb8c3f07a3e.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/js.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/1033577797/?random=1666344761857&cv=11&fst=1666344761857&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&hn=www.googleadservices.com&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/1033577797/?random=1666344762477&cv=11&fst=1666344762477&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&hn=www.googleadservices.com&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/RC578cf853036549a9b97caed6bbcc18ad-source.min.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/RC29b78eba84b348c9b1dcd3bbe152e1e6-source.min.js HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/kids-christmas-presents.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/tiz/auth/delivery.phpAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p
Source: global traffic	HTTP traffic detected: GET /etc.clientlibs/clientlibs/fedex/images/resources/menu-sprite.png HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p; Nina-nina-fedex-session=%7B%22loginStatus%22%3A%22loggedOut%22%7D; gdl-clientId=23648864-c755-4dc1-a7cc-e795ed142b85; s_invisit=true; g_sref=librospy.com/; g_stime=1713499523125; s_vnum=1713563999999&vn=1
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/1033577797/?random=1666344762477&cv=11&fst=1666342800000&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&fmt=3&is_vtc=1&cid=CAQSGwB7FLtq3IXTCb52qV82NbNyiGiAQysIyIxAdg&random=557058968&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/1033577797/?random=1666344761857&cv=11&fst=1666342800000&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqatjEs-QwdTZAW64wxmAKN54Su4u40A&random=64880253&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mellowfast.digital/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tiz/auth/Tracking%20Your%20Shipment%20or%20Packages%20FedEx_files/kids-christmas-presents.jpg HTTP/1.1Host: mellowfast.digitalConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=p7htl4prrg5mvqobcm620m6n7p; Nina-nina-fedex-session=%7B%22loginStatus%22%3A%22loggedOut%22%7D; gdl-clientId=23648864-c755-4dc1-a7cc-e795ed142b85; s_invisit=true; g_sref=librospy.com/; g_stime=1713499523125; s_vnum=1713563999999&vn=1
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/1033577797/?random=1666344762477&cv=11&fst=1666342800000&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&fmt=3&is_vtc=1&cid=CAQSGwB7FLtq3IXTCb52qV82NbNyiGiAQysIyIxAdg&random=557058968&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/1033577797/?random=1666344761857&cv=11&fst=1666342800000&bg=ffffff&guid=ON&async=1&gtm=2oaaj0&u_w=1920&u_h=1080&frm=0&url=file%3A%2F%2F%2Fhome%2Fsnoopy%2FDocuments%2Ffed_arab%2Fauth%2Fparcel.html&tiba=Tracking%20Your%20Shipment%20or%20Packages%20%7C%20FedEx&data=event%3Dconversion%3Ballow_custom_scripts%3Dfalse&fmt=3&is_vtc=1&cid=CAQSGwB7FLtqatjEs-QwdTZAW64wxmAKN54Su4u40A&random=64880253&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=2LHvL8scypFrW4V&MD=N5HtAvpV HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=1E22171B520E93BF0A490D44%40AdobeOrg&d_nsid=2&ts=1713499582324 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/x-www-form-urlencodedAccept: /Origin: https://www.fedex.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /id/rd?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=1E22171B520E93BF0A490D44%40AdobeOrg&d_nsid=2&ts=1713499582324 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/x-www-form-urlencodedAccept: /Origin: https://www.fedex.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /id/rd?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=1E22171B520E93BF0A490D44%40AdobeOrg&d_nsid=2&ts=1713499582324 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /dest5.html?d_nsid=2 HTTP/1.1Host: fedex.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=5.0.1&d_fieldgroup=A&mcorgid=1E22171B520E93BF0A490D44%40AdobeOrg&mid=62520134664917519204071722462971135089&ts=1713499583578 HTTP/1.1Host: smetrics.fedex.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/x-www-form-urlencodedAccept: /Origin: https://www.fedex.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: siteDC=edc; xacc=US; fdx_cbid=30375628281713499536095780029921; fdx_locale=en_US; fdx_redirect=en-us; cc_path=us; isTablet=false; isMobile=false; isWireless=false; aemserver=PROD-P-dotcom; PIM-SESSION-ID=j8c5zU0DbH8Cjcv5; bm_sz=D05C51329A285DC5358C75E692B31241~YAAQiZfAFx8QXeeOAQAASHaI9BcrL+PqiDpDGq6BsaWmhozmBBdT4x6v/uCtOpvb1ihC9j9dQ2mitYfvVDqJngR6x1GjTjyzl/CNgyLStBszOu26JdPp24w3xR+iU422MjoJSfp8rCxXEyS/nkz6gsRL4NTrcJW3eiC/DZksfZSLxyseMB3oYKeqgw00xPoSH0oKnqDPxhVUC70fQcgH6HhGeycS+OPXih8M3sjl71LGs1VpjRW3PjYGTxdQ4RedDLLis8n8lrNlxQ5WyvA9ssF7hJESmDl1RnMwfb3c7FQ3JtiNQTymSGKZqb/w39ZR135n/8cMPOPkDAbIcYqOS8jeFfDREwwQ7rN4oBfLGrBno8J6wDgprdPccyEuoWy3mZFlpb9nmq1Rxw==~4473136~3749176; _abck=4460E30727B6CD22BD0D688F4824C390~0~YAAQiZfAFw0TXeeOAQAAAa+I9AscCCYp4+TbJe+Lz6DRbYeeUGJqp7SBw+DP/NMfpmvVe5zSxWTtXicN5mojESTI8RwD2O0PTh0hylyUB38qisKHLqv2x6hOcW6LkG/C3MjYZPx+aQjfk/p4uTNSdNhOnWqLdimYW1lwPfZebaMX2+/eugSi4eGODXehDIdN8d4uc6d9KaIMx41OlF93HCK2cTdfzga/CK76c3y/17cr8ulSwGVe/oP83iQgbA7raYDLh92rkyG8NK6snnVTUlFrnadMki5z4IhyWQyO3cl5DTwOWfpe/cG3/vJTXb2B5BUQ3FLn5uVfR11FbJD9gZ/H5FqY0zesjLk16cQss1OrBOEdMw/q4OvASnWmydM3yAb+ewtT7/wfCxzg5Co26Xukb0ulogA=~-1~-1~-1; gdl-clientId=a9674903-9b4b-4a2b-bab7-437425ae9b37; s_invisit=true; g_sref=(direct); g_stime=1713499582268; s_vnum=1713563999999&vn=1; at_check=true; mbox=session#bbce809c7012486c84d79a3473b6dbb5#1713501443; AMCVS_1E22171B520E93BF0A490D44%40AdobeOrg=1; AMCV_1E22171B520E93BF0A490D44%40AdobeOrg=359503849%7CMCIDTS%7C19833%7CMCMID%7C62520134664917519204071722462971135089%7CMCAAMLH-1714104383%7C7%7CMCAAMB-1714104383%7CRKhpRz8krg2tLO6pguXWp5olkAcUniQYPHaMWWgdJ3xzPWQmdj0y%7CMCOPTOUT-1713506783s%7CNONE%7CvVersion%7C5.0.1
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=411&dpuuid=ZiHtwAAAAH94BQN2 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=5.0.1&d_fieldgroup=A&mcorgid=1E22171B520E93BF0A490D44%40AdobeOrg&mid=62520134664917519204071722462971135089&ts=1713499583578 HTTP/1.1Host: smetrics.fedex.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: siteDC=edc; xacc=US; fdx_cbid=30375628281713499536095780029921; fdx_locale=en_US; fdx_redirect=en-us; cc_path=us; isTablet=false; isMobile=false; isWireless=false; aemserver=PROD-P-dotcom; PIM-SESSION-ID=j8c5zU0DbH8Cjcv5; bm_sz=D05C51329A285DC5358C75E692B31241~YAAQiZfAFx8QXeeOAQAASHaI9BcrL+PqiDpDGq6BsaWmhozmBBdT4x6v/uCtOpvb1ihC9j9dQ2mitYfvVDqJngR6x1GjTjyzl/CNgyLStBszOu26JdPp24w3xR+iU422MjoJSfp8rCxXEyS/nkz6gsRL4NTrcJW3eiC/DZksfZSLxyseMB3oYKeqgw00xPoSH0oKnqDPxhVUC70fQcgH6HhGeycS+OPXih8M3sjl71LGs1VpjRW3PjYGTxdQ4RedDLLis8n8lrNlxQ5WyvA9ssF7hJESmDl1RnMwfb3c7FQ3JtiNQTymSGKZqb/w39ZR135n/8cMPOPkDAbIcYqOS8jeFfDREwwQ7rN4oBfLGrBno8J6wDgprdPccyEuoWy3mZFlpb9nmq1Rxw==~4473136~3749176; _abck=4460E30727B6CD22BD0D688F4824C390~0~YAAQiZfAFw0TXeeOAQAAAa+I9AscCCYp4+TbJe+Lz6DRbYeeUGJqp7SBw+DP/NMfpmvVe5zSxWTtXicN5mojESTI8RwD2O0PTh0hylyUB38qisKHLqv2x6hOcW6LkG/C3MjYZPx+aQjfk/p4uTNSdNhOnWqLdimYW1lwPfZebaMX2+/eugSi4eGODXehDIdN8d4uc6d9KaIMx41OlF93HCK2cTdfzga/CK76c3y/17cr8ulSwGVe/oP83iQgbA7raYDLh92rkyG8NK6snnVTUlFrnadMki5z4IhyWQyO3cl5DTwOWfpe/cG3/vJTXb2B5BUQ3FLn5uVfR11FbJD9gZ/H5FqY0zesjLk16cQss1OrBOEdMw/q4OvASnWmydM3yAb+ewtT7/wfCxzg5Co26Xukb0ulogA=~-1~-1~-1; gdl-clientId=a9674903-9b4b-4a2b-bab7-437425ae9b37; s_invisit=true; g_sref=(direct); g_stime=1713499582268; s_vnum=1713563999999&vn=1; at_check=true; AMCVS_1E22171B520E93BF0A490D44%40AdobeOrg=1; mbox=session#bbce809c7012486c84d79a3473b6dbb5#1713501444; s_ecid=MCMID%7C62520134664917519204071722462971135089; AMCV_1E22171B520E93BF0A490D44%40AdobeOrg=359503849%7CMCIDTS%7C19833%7CMCMID%7C62520134664917519204071722462971135089%7CMCAAMLH-1714104383%7C7%7CMCAAMB-1714104383%7CRKhpRz8krg2tLO6pguXWp5olkAcUniQYPHaMWWgdJ3xzPWQmdj0y%7CMCOPTOUT-1713506784s%7CNONE%7CMCAID%7CNONE%7CvVersion%7C5.0.1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=adobe_dmp&google_cm&gdpr=0&gdpr_consent=&google_hm=NjIzODkwMTQzNTA5MjE4OTMzNzQwOTU3OTYwNjcwMjA2MjIxMDQ= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://fedex.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /rest/v1/delivery?client=fedex&sessionId=bbce809c7012486c84d79a3473b6dbb5&version=2.8.2 HTTP/1.1Host: fedex.tt.omtrdc.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /b/ss/fedexglbl/10/JS-2.22.0/s76741845197920?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=19%2F3%2F2024%206%3A6%3A24%205%20-120&d.&nsid=2&jsonv=1&.d&sdid=3C589679D2DEF1BA-3FB9C0700529D741&mid=62520134664917519204071722462971135089&aamlh=7&ce=UTF-8&pageName=fedex%2Fshipping%2Fmobile&g=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&aamb=RKhpRz8krg2tLO6pguXWp5olkAcUniQYPHaMWWgdJ3xzPWQmdj0y&h1=fedex%2Fshipping%2Fmobile&c2=us&c3=en&c4=D%3Dv4&v4=Never%20Logged%20In&c5=us&c6=D%3Dv6&c7=D%3Dv7&v7=11%3A00PM%7CThursday&c12=D%3Dv2&c13=1109&v13=30375628281713499536095780029921&c24=ootb%3Apage&c29=2024-04-19%2006%3A06%3A22&v30=largeViewPort&c31=62520134664917519204071722462971135089&c33=productpage&c35=D%3DAccept-Language&c38=D%3Dv38&v38=D%3DpageName&c40=D%3Devents&v40=D%3Devents&c41=D%3Dv41&v41=1&c43=D%3Dv43&v43=P%3Afedex%2Fshipping%2Fmobile&c46=D%3DpageName&v46=D%3DpageName&c47=www.fedex.com&c48=AA%3A2.22.0%20%7C%20GDL%3A4.57.0&c50=fedexglbl&v50=www.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&c52=2024-04-19&v52=2024-04-19&c55=gdpr%3Ano%3A4&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=907&mcorgid=1E22171B520E93BF0A490D44%40AdobeOrg&AQE=1 HTTP/1.1Host: smetrics.fedex.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: siteDC=edc; xacc=US; fdx_cbid=30375628281713499536095780029921; fdx_locale=en_US; fdx_redirect=en-us; cc_path=us; isTablet=false; isMobile=false; isWireless=false; aemserver=PROD-P-dotcom; PIM-SESSION-ID=j8c5zU0DbH8Cjcv5; bm_sz=D05C51329A285DC5358C75E692B31241~YAAQiZfAFx8QXeeOAQAASHaI9BcrL+PqiDpDGq6BsaWmhozmBBdT4x6v/uCtOpvb1ihC9j9dQ2mitYfvVDqJngR6x1GjTjyzl/CNgyLStBszOu26JdPp24w3xR+iU422MjoJSfp8rCxXEyS/nkz6gsRL4NTrcJW3eiC/DZksfZSLxyseMB3oYKeqgw00xPoSH0oKnqDPxhVUC70fQcgH6HhGeycS+OPXih8M3sjl71LGs1VpjRW3PjYGTxdQ4RedDLLis8n8lrNlxQ5WyvA9ssF7hJESmDl1RnMwfb3c7FQ3JtiNQTymSGKZqb/w39ZR135n/8cMPOPkDAbIcYqOS8jeFfDREwwQ7rN4oBfLGrBno8J6wDgprdPccyEuoWy3mZFlpb9nmq1Rxw==~4473136~3749176; _abck=4460E30727B6CD22BD0D688F4824C390~0~YAAQiZfAFw0TXeeOAQAAAa+I9AscCCYp4+TbJe+Lz6DRbYeeUGJqp7SBw+DP/NMfpmvVe5zSxWTtXicN5mojESTI8RwD2O0PTh0hylyUB38qisKHLqv2x6hOcW6LkG/C3MjYZPx+aQjfk/p4uTNSdNhOnWqLdimYW1lwPfZebaMX2+/eugSi4eGODXehDIdN8d4uc6d9KaIMx41OlF93HCK2cTdfzga/CK76c3y/17cr8ulSwGVe/oP83iQgbA7raYDLh92rkyG8NK6snnVTUlFrnadMki5z4IhyWQyO3cl5DTwOWfpe/cG3/vJTXb2B5BUQ3FLn5uVfR11FbJD9gZ/H5FqY0zesjLk16cQss1OrBOEdMw/q4OvASnWmydM3yAb+ewtT7/wfCxzg5Co26Xukb0ulogA=~-1~-1~-1; gdl-clientId=a9674903-9b4b-4a2b-bab7-437425ae9b37; s_invisit=true; g_sref=(direct); g_stime=1713499582268; s_vnum=1713563999999&vn=1; at_check=tru
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=411&dpuuid=ZiHtwAAAAH94BQN2 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104; dextp=771-1-1713499584272\|903-1-1713499584508; dpm=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /track/cmf/generic?ttd_pid=aam&gdpr=0&gdpr_consent=&domain=www.fedex.com&ttd_tpi=1 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://fedex.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/863238793?random=1713499584571&cv=11&fst=1713499584571&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&hn=www.googleadservices.com&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&pscdl=noapi&auid=862245534.1713499585&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=771&dpuuid=CAESENuFHFS4eYNQMpS5QNZnWOk&google_cver=1?gdpr=0&gdpr_consent= HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://fedex.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104; dextp=771-1-1713499584272\|903-1-1713499584508; dpm=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/863238793/?random=1713499584571&cv=11&fst=1713499584571&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&hn=www.googleadservices.com&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&pscdl=noapi&auid=862245534.1713499585&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUnPxFuIVv-lsRTjwMSJQIR3YFmUyRrAxqEcn3LFimR1ylqTzXDqWt-7KJCEj84
Source: global traffic	HTTP traffic detected: GET /track/cmf/generic?ttd_pid=aam&gdpr=0&gdpr_consent=&domain=www.fedex.com&ttd_tpi=1 HTTP/1.1Host: match.adsrvr.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=771&dpuuid=CAESENuFHFS4eYNQMpS5QNZnWOk&google_cver=1?gdpr=0&gdpr_consent= HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=62389014350921893374095796067020622104; dextp=771-1-1713499584272\|903-1-1713499584508; dpm=62389014350921893374095796067020622104
Source: global traffic	HTTP traffic detected: GET /beacon/fedexcorp/fedex_prod/scripts/evergage.min.js HTTP/1.1Host: cdn.evgnet.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/chatLoader.min.js?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/site_10006050_default_helper.js?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/site_10006050_default_jssdk.js?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/all_10006050.json?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.fedex.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/tcFramework_jssdk.min.js?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fedex.com/nuance/nuance.html?IFRAME&nuance-frame-ac=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/launch/all_10006050.json?codeVersion=1713471835775 HTTP/1.1Host: media-us2.digital.nuance.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/863238793/?random=1713499584571&cv=11&fst=1713499200000&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtqCU8hYJLWjorfFawrJbeBVlPXZ0UYRqR1diSbx3kmWjue8L3M&random=492994337&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fedex.com/en-us/shipping/mobile.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/863238793/?random=1713499584571&cv=11&fst=1713499200000&bg=ffffff&guid=ON&async=1&gtm=45be44h0v878431205za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.fedex.com%2Fen-us%2Fshipping%2Fmobile.html&frm=0&tiba=Tracking%20and%20Shipping%20With%20the%20FedEx%20Mobile%20App%20%7C%20FedEx&npa=0&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSKQB7FLtqCU8hYJLWjorfFawrJbeBVlPXZ0UYRqR1diSbx3kmWjue8L3M&random=492994337&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: <a href="https://www.facebook.com/FedEx/" target="_self" aria-label="FedEx on Facebook" class="fxg-link fxg-icon--facebook equals www.facebook.com (Facebook)
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/fedex" target="_self" aria-label="FedEx on LinkedIn" class="fxg-link fxg-icon--linkedin equals www.linkedin.com (Linkedin)
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: <a href="https://www.youtube.com/fedex" target="_self" aria-label="FedEx on YouTube" class="fxg-link fxg-icon--youtube equals www.youtube.com (Youtube)
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: "https://www.facebook.com/FedEx/", equals www.facebook.com (Facebook)
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: "https://www.linkedin.com/company/fedex", equals www.linkedin.com (Linkedin)
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: "https://www.youtube.com/fedex", equals www.youtube.com (Youtube)
Source: chromecache_279.2.dr	String found in binary or memory: $("."+FDX.SECONDARYMEMU.socialDropdownClass).toggle()},socialShare:function(a){var c=encodeURIComponent(window.location.href),e="width\x3d600,height\x3d400,resizable\x3dno,top\x3d"+(screen.height/2-200)+",left\x3d"+(screen.width/2-300);switch(a){case "twitter":window.open("http://twitter.com/intent/tweet?\x26text\x3d"+encodeURIComponent($("head").find('meta[name\x3d"twitter:description"]').attr("content"))+"\x26url\x3d"+c+"\x26hashtags\x3d","",e).trigger("focus");break;case "linkedin":window.open("http://www.linkedin.com/shareArticle?mini\x3dtrue\x26url\x3d"+ equals www.linkedin.com (Linkedin)
Source: chromecache_279.2.dr	String found in binary or memory: $("."+FDX.SECONDARYMEMU.socialDropdownClass).toggle()},socialShare:function(a){var c=encodeURIComponent(window.location.href),e="width\x3d600,height\x3d400,resizable\x3dno,top\x3d"+(screen.height/2-200)+",left\x3d"+(screen.width/2-300);switch(a){case "twitter":window.open("http://twitter.com/intent/tweet?\x26text\x3d"+encodeURIComponent($("head").find('meta[name\x3d"twitter:description"]').attr("content"))+"\x26url\x3d"+c+"\x26hashtags\x3d","",e).trigger("focus");break;case "linkedin":window.open("http://www.linkedin.com/shareArticle?mini\x3dtrue\x26url\x3d"+ equals www.twitter.com (Twitter)
Source: chromecache_279.2.dr	String found in binary or memory: (function(a){var c=function(b,c,e){if(b)return e=e\|\|"","object"===typeof e&&(e=a.param(e,!0)),a.each(c,function(a,c){b=b.replace("$"+a,c\|\|"")}),e.length&&(b+=(0<b.indexOf("?")?"\x26":"?")+e),b},e={youtube:{matcher:/(youtube\.com\|youtu\.be\|youtube\-nocookie\.com)\/(watch\?(.&)?v=\|v\/\|u\/\|embed\/?)?(videoseries\?list=(.)\|[\w-]{11}\|\?listType=(.)&list=(.))(.*)/i,params:{autoplay:1,autohide:1,fs:1,rel:0,hd:1,wmode:"transparent",enablejsapi:1,html5:1},paramPlace:8,type:"iframe",url:"//www.youtube.com/embed/$4", equals www.youtube.com (Youtube)
Source: chromecache_279.2.dr	String found in binary or memory: (function(a,c){function e(a){var b={"\x26":"\x26amp;","\x3c":"\x26lt;","\x3e":"\x26gt;",'"':"\x26quot;","'":"\x26#39;","/":"\x26#x2F;","`":"\x26#x60;","\x3d":"\x26#x3D;"};return String(a).replace(/[&<>"'`=\/]/g,function(a){return b[a]})}c.extend(!0,c.fxModalBox.defaults,{btnTpl:{share:'\x3cbutton data-fxModalBox-share class\x3d"fxModalBox-button fxModalBox-button--share" title\x3d"{{SHARE}}"\x3e\x3csvg viewBox\x3d"0 0 40 40"\x3e\x3cpath d\x3d"M6,30 C8,18 19,16 23,16 L23,16 L23,10 L33,20 L23,29 L23,24 C19,24 8,27 6,30 Z"\x3e\x3c/svg\x3e\x3c/button\x3e'},share:{tpl:'\x3cdiv class\x3d"fxModalBox-share"\x3e\x3ch1\x3e{{SHARE}}\x3c/h1\x3e\x3cp class\x3d"fxModalBox-share__links"\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--fb" href\x3d"https://www.facebook.com/sharer/sharer.php?u\x3d{{url}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m287 456v-299c0-21 6-35 35-35h38v-63c-7-1-29-3-55-3-54 0-91 33-91 94v306m143-254h-205v72h196" /\x3e\x3c/svg\x3e\x3cspan\x3eFacebook\x3c/span\x3e\x3c/a\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--pt" href\x3d"https://www.pinterest.com/pin/create/button/?url\x3d{{url}}\x26description\x3d{{descr}}\x26media\x3d{{media}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m265 56c-109 0-164 78-164 144 0 39 15 74 47 87 5 2 10 0 12-5l4-19c2-6 1-8-3-13-9-11-15-25-15-45 0-58 43-110 113-110 62 0 96 38 96 88 0 67-30 122-73 122-24 0-42-19-36-44 6-29 20-60 20-81 0-19-10-35-31-35-25 0-44 26-44 60 0 21 7 36 7 36l-30 125c-8 37-1 83 0 87 0 3 4 4 5 2 2-3 32-39 42-75l16-64c8 16 31 29 56 29 74 0 124-67 124-157 0-69-58-132-146-132z" fill\x3d"#fff"/\x3e\x3c/svg\x3e\x3cspan\x3ePinterest\x3c/span\x3e\x3c/a\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--tw" href\x3d"https://twitter.com/intent/tweet?url\x3d{{url}}\x26text\x3d{{descr}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m456 133c-14 7-31 11-47 13 17-10 30-27 37-46-15 10-34 16-52 20-61-62-157-7-141 75-68-3-129-35-169-85-22 37-11 86 26 109-13 0-26-4-37-9 0 39 28 72 65 80-12 3-25 4-37 2 10 33 41 57 77 57-42 30-77 38-122 34 170 111 378-32 359-208 16-11 30-25 41-42z" /\x3e\x3c/svg\x3e\x3cspan\x3eTwitter\x3c/span\x3e\x3c/a\x3e\x3c/p\x3e\x3cp\x3e\x3cinput class\x3d"fxModalBox-share__input" type\x3d"text" value\x3d"{{url_raw}}" /\x3e\x3c/p\x3e\x3c/div\x3e'}}); equals www.facebook.com (Facebook)
Source: chromecache_279.2.dr	String found in binary or memory: (function(a,c){function e(a){var b={"\x26":"\x26amp;","\x3c":"\x26lt;","\x3e":"\x26gt;",'"':"\x26quot;","'":"\x26#39;","/":"\x26#x2F;","`":"\x26#x60;","\x3d":"\x26#x3D;"};return String(a).replace(/[&<>"'`=\/]/g,function(a){return b[a]})}c.extend(!0,c.fxModalBox.defaults,{btnTpl:{share:'\x3cbutton data-fxModalBox-share class\x3d"fxModalBox-button fxModalBox-button--share" title\x3d"{{SHARE}}"\x3e\x3csvg viewBox\x3d"0 0 40 40"\x3e\x3cpath d\x3d"M6,30 C8,18 19,16 23,16 L23,16 L23,10 L33,20 L23,29 L23,24 C19,24 8,27 6,30 Z"\x3e\x3c/svg\x3e\x3c/button\x3e'},share:{tpl:'\x3cdiv class\x3d"fxModalBox-share"\x3e\x3ch1\x3e{{SHARE}}\x3c/h1\x3e\x3cp class\x3d"fxModalBox-share__links"\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--fb" href\x3d"https://www.facebook.com/sharer/sharer.php?u\x3d{{url}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m287 456v-299c0-21 6-35 35-35h38v-63c-7-1-29-3-55-3-54 0-91 33-91 94v306m143-254h-205v72h196" /\x3e\x3c/svg\x3e\x3cspan\x3eFacebook\x3c/span\x3e\x3c/a\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--pt" href\x3d"https://www.pinterest.com/pin/create/button/?url\x3d{{url}}\x26description\x3d{{descr}}\x26media\x3d{{media}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m265 56c-109 0-164 78-164 144 0 39 15 74 47 87 5 2 10 0 12-5l4-19c2-6 1-8-3-13-9-11-15-25-15-45 0-58 43-110 113-110 62 0 96 38 96 88 0 67-30 122-73 122-24 0-42-19-36-44 6-29 20-60 20-81 0-19-10-35-31-35-25 0-44 26-44 60 0 21 7 36 7 36l-30 125c-8 37-1 83 0 87 0 3 4 4 5 2 2-3 32-39 42-75l16-64c8 16 31 29 56 29 74 0 124-67 124-157 0-69-58-132-146-132z" fill\x3d"#fff"/\x3e\x3c/svg\x3e\x3cspan\x3ePinterest\x3c/span\x3e\x3c/a\x3e\x3ca class\x3d"fxModalBox-share__button fxModalBox-share__button--tw" href\x3d"https://twitter.com/intent/tweet?url\x3d{{url}}\x26text\x3d{{descr}}"\x3e\x3csvg viewBox\x3d"0 0 512 512" xmlns\x3d"http://www.w3.org/2000/svg"\x3e\x3cpath d\x3d"m456 133c-14 7-31 11-47 13 17-10 30-27 37-46-15 10-34 16-52 20-61-62-157-7-141 75-68-3-129-35-169-85-22 37-11 86 26 109-13 0-26-4-37-9 0 39 28 72 65 80-12 3-25 4-37 2 10 33 41 57 77 57-42 30-77 38-122 34 170 111 378-32 359-208 16-11 30-25 41-42z" /\x3e\x3c/svg\x3e\x3cspan\x3eTwitter\x3c/span\x3e\x3c/a\x3e\x3c/p\x3e\x3cp\x3e\x3cinput class\x3d"fxModalBox-share__input" type\x3d"text" value\x3d"{{url_raw}}" /\x3e\x3c/p\x3e\x3c/div\x3e'}}); equals www.twitter.com (Twitter)
Source: chromecache_279.2.dr	String found in binary or memory: c,"",e).trigger("focus");break;case "facebook":window.open("https://www.facebook.com/sharer/sharer.php?u\x3d"+c,"",e).trigger("focus")}},shrink:function(){$("."+FDX.SECONDARYMEMU.secondaryMenu).addClass(FDX.SECONDARYMEMU.shrunkClass)},grow:function(){$("."+FDX.SECONDARYMEMU.secondaryMenu).removeClass(FDX.SECONDARYMEMU.shrunkClass)},scrollCheck:function(){1<$(window).scrollTop()&&!$("."+FDX.SECONDARYMEMU.secondaryMenu).hasClass(FDX.SECONDARYMEMU.shrunkClass)?FDX.SECONDARYMEMU.shrink():1>=$(window).scrollTop()&& equals www.facebook.com (Facebook)
Source: chromecache_249.2.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var h=jA(a,c,e);M(121);if("https://www.facebook.com/tr/"===h["gtm.elementUrl"])return M(122),!0;if(d&&f){for(var m=Jb(b,g.length),n=0;n<g.length;++n)g[n](h,m);return m.done}for(var p=0;p<g.length;++p)g[p](h,function(){});return!0},mA=function(){var a=[],b=function(c){return pb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: return b}vC.H="internal.enableAutoEventOnTimer";var dc=ia(["data-gtm-yt-inspected-"]),xC=["www.youtube.com","www.youtube-nocookie.com"],yC,zC=!1; equals www.youtube.com (Youtube)
Source: chromecache_279.2.dr	String found in binary or memory: thumb:"//img.youtube.com/vi/$4/hqdefault.jpg"},vimeo:{matcher:/^.+vimeo.com\/(.\/)?([\d]+)(.)?/,params:{autoplay:1,hd:1,show_title:1,show_byline:1,show_portrait:0,fullscreen:1,api:1},paramPlace:3,type:"iframe",url:"//player.vimeo.com/video/$2"},metacafe:{matcher:/metacafe.com\/watch\/(\d+)\/(.)?/,type:"iframe",url:"//www.metacafe.com/embed/$1/?ap\x3d1"},dailymotion:{matcher:/dailymotion.com\/video\/(.)\/?(.*)/,params:{additionalInfos:0,autoStart:1},type:"iframe",url:"//www.dailymotion.com/embed/video/$1"}, equals www.youtube.com (Youtube)
Source: chromecache_249.2.dr	String found in binary or memory: var KB=function(a,b,c,d,e){var f=Kz("fsl",c?"nv.mwt":"mwt",0),g;g=c?Kz("fsl","nv.ids",[]):Kz("fsl","ids",[]);if(!g.length)return!0;var h=Gz(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);M(121);if("https://www.facebook.com/tr/"===m)return M(122),!0;h["gtm.elementUrl"]=m;h["gtm.formCanceled"]=c;null!=a.getAttribute("name")&&(h["gtm.interactedFormName"]=a.getAttribute("name"));e&&(h["gtm.formSubmitElement"]=e,h["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!vy(h,wy(b, equals www.facebook.com (Facebook)

Source: unknown

DNS traffic detected: queries for: librospy.com

Source: unknown

Source: chromecache_287.2.dr, chromecache_231.2.dr	String found in binary or memory: http://api.jqueryui.com/position/
Source: chromecache_254.2.dr	String found in binary or memory: http://getbootstrap.com)
Source: chromecache_241.2.dr	String found in binary or memory: http://html5video.org/kaltura-player/docs/
Source: chromecache_241.2.dr	String found in binary or memory: http://html5video.org/kaltura-player/docs/readme
Source: chromecache_287.2.dr, chromecache_228.2.dr	String found in binary or memory: http://jquery.com/
Source: chromecache_287.2.dr, chromecache_228.2.dr, chromecache_231.2.dr	String found in binary or memory: http://jquery.org/license
Source: chromecache_182.2.dr, chromecache_287.2.dr, chromecache_219.2.dr, chromecache_231.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_182.2.dr, chromecache_219.2.dr	String found in binary or memory: http://jqueryui.com/themeroller/?bgShadowXPos=&bgOverlayXPos=&bgErrorXPos=&bgHighlightXPos=&bgConten
Source: chromecache_241.2.dr	String found in binary or memory: http://knowledge.kaltura.com/production-player-urls
Source: chromecache_265.2.dr, chromecache_330.2.dr, chromecache_203.2.dr, chromecache_320.2.dr, chromecache_173.2.dr	String found in binary or memory: http://modernizr.com/download/#-fontface-backgroundsize-borderimage-borderradius-boxshadow-flexbox-f
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/add-inverted-param/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/define-locale/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/dst-shifted/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/js-date/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/min-max/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/zone/
Source: chromecache_279.2.dr	String found in binary or memory: http://momentjs.com/timezone/docs/#/data-loading/.
Source: chromecache_287.2.dr, chromecache_228.2.dr	String found in binary or memory: http://sizzlejs.com/
Source: chromecache_279.2.dr	String found in binary or memory: http://twitter.com/intent/tweet?
Source: chromecache_200.2.dr	String found in binary or memory: http://underscorejs.org/LICENSE
Source: chromecache_190.2.dr, chromecache_222.2.dr, chromecache_309.2.dr, chromecache_285.2.dr, chromecache_250.2.dr, chromecache_324.2.dr, chromecache_229.2.dr, chromecache_169.2.dr	String found in binary or memory: http://www.day.com/dam/1.0
Source: chromecache_222.2.dr, chromecache_309.2.dr	String found in binary or memory: http://www.day.com/jcr/cq/1.0
Source: chromecache_279.2.dr	String found in binary or memory: http://www.fedex.com/locate/?locale
Source: chromecache_279.2.dr	String found in binary or memory: http://www.linkedin.com/shareArticle?mini
Source: chromecache_187.2.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_226.2.dr	String found in binary or memory: https://ad.doubleclick.net/activity;register_conversion=1;
Source: chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://ade.googlesyndication.com
Source: chromecache_226.2.dr	String found in binary or memory: https://ade.googlesyndication.com/ddm/activity/
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk
Source: chromecache_226.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://adservice.googlesyndication.com/pagead/regclk
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://analytics.cloud.coveo.com/rest/ua/v15/analytics/search
Source: chromecache_241.2.dr	String found in binary or memory: https://analytics.kaltura.com
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://api-us2.touchcommerce.com
Source: chromecache_279.2.dr	String found in binary or memory: https://api.emea.fedex.com/aemform/v1/mcte/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://apps.apple.com/app/fedex/id1010729050
Source: chromecache_188.2.dr	String found in binary or memory: https://apps.apple.com/app/id1010729050
Source: chromecache_322.2.dr	String found in binary or memory: https://assets.adobedtm.com/686b8f0c4520/a46df9c77975/fa47b95f7c08/RC29b78eba84b348c9b1dcd3bbe152e1e
Source: chromecache_198.2.dr	String found in binary or memory: https://assets.adobedtm.com/686b8f0c4520/a46df9c77975/fa47b95f7c08/RC578cf853036549a9b97caed6bbcc18a
Source: chromecache_230.2.dr	String found in binary or memory: https://assets.adobedtm.com/686b8f0c4520/a46df9c77975/launch-b5423a732003.js
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://careers.fedex.com/fedex/
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_226.2.dr, chromecache_187.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/2crpp73f3hvwxkwm3sw73p6/master-bm-airport-0029-203-211.jpg?format=
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/47xs43tpfs7msqk3wv85vpc/b_20151018_jcp_dropoff_2485_203253.jpg?aut
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/5zhp5zw34twvz6wt56bbt2f/Purple_Help_Icon_-_Large.svg?auto=webp&fit
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/b4c73zg6s3qnvfqqjc3tvwx/collective_eng_2c_pos_rgb.svg
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/c35t939gf7qj97zwcwtx8sz/Purple_Retail_Icon_-_Large.svg?auto=webp&f
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/c42qk283sfktqgptfggwf7b/fy20_dollargeneral_e1a3752_fdi.jpg?auto=we
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/cv2bwnngw2jw62ttmcs4h2h/82_pu7e_2177283_03898.jpg?auto=webp&fit=bo
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/h9hj467c7mh7ptvqt46bhtxz/FedEx-1261-1.jpg?auto=webp&fit=bounds&for
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/k3tx8nrnmm9ms6mqrrxffvkm/revised-edited-03_52972616665_o.jpg?auto=
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/kjcgfjhvjf9jh6h3shmsgms7/icon_arrow_down_blue_16x16.svg
Source: chromecache_290.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/p9wpxt8mxmjf75hxctmr46n9/52922689769_877ba5aa62_o.jpg?auto=webp&fi
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/rt442fkvkvff8wwxr84vkg47/Purple_Notification_Icon_Large.png?auto=w
Source: chromecache_188.2.dr	String found in binary or memory: https://cdn.bfldr.com/I22OPSFM/at/sfnsvjhvc9n6hh778mw8zfx/Purple_Dollar_Icon_-_Large.svg?auto=webp&f
Source: chromecache_241.2.dr	String found in binary or memory: https://cdnapisec.kaltura.com
Source: chromecache_241.2.dr	String found in binary or memory: https://cdnapisec.kaltura.com/html5/html5lib/v2.101/load.php
Source: chromecache_241.2.dr	String found in binary or memory: https://cdnapisec.kaltura.com/html5/html5lib/v2.101/simplePhpXMLProxy.php
Source: chromecache_279.2.dr, chromecache_245.2.dr	String found in binary or memory: https://cdnapisec.kaltura.com/p/
Source: chromecache_241.2.dr	String found in binary or memory: https://cfvod.kaltura.com
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://cobrowse-fedex.digital.nuance.com
Source: chromecache_188.2.dr, chromecache_290.2.dr, chromecache_281.2.dr, chromecache_194.2.dr	String found in binary or memory: https://developer.fedex.com/api/en-us/home.html
Source: chromecache_278.2.dr, chromecache_316.2.dr, chromecache_304.2.dr	String found in binary or memory: https://fedex.digital.nuance.com
Source: chromecache_321.2.dr	String found in binary or memory: https://fedex.digital.nuance.com/chatskins/launch/inqChatLaunch10006050.js
Source: chromecache_279.2.dr	String found in binary or memory: https://fedex.tt.omtrdc.net/rest/v1/mbox/
Source: chromecache_290.2.dr	String found in binary or memory: https://fedexcares.com/stories/sustainable-logistics/drive-forward-give-back-fedex-picture-proof-pla
Source: chromecache_254.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Roboto:100
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://fts-us2.touchcommerce.com
Source: chromecache_279.2.dr, chromecache_314.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_279.2.dr	String found in binary or memory: https://github.com/facebook/regenerator/blob/main/LICENSE
Source: chromecache_314.2.dr, chromecache_254.2.dr	String found in binary or memory: https://github.com/h5bp/html5-boilerplate/blob/master/src/css/main.css
Source: chromecache_287.2.dr, chromecache_231.2.dr	String found in binary or memory: https://github.com/jquery/jquery-color
Source: chromecache_314.2.dr, chromecache_254.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_249.2.dr	String found in binary or memory: https://google.com
Source: chromecache_249.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_226.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/td/fls/rul/activityi;fledge=1;
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://investors.fedex.com/home/default.aspx
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://is1-ssl.mzstatic.com/image/thumb/Purple124/v4/16/9f/c2/169fc22b-b2b5-5e5a-097a-c0bc3a5dbddc/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://lh3.googleusercontent.com/YtXTsa-6SaaMl02-OUo8iRztlX5Thu4aCLavunIV1M5hm9y4ySTPpMjpY44fL4ayz7
Source: chromecache_241.2.dr	String found in binary or memory: https://livestats.kaltura.com
Source: chromecache_290.2.dr	String found in binary or memory: https://local.fedex.com/en-us
Source: chromecache_290.2.dr	String found in binary or memory: https://local.fedex.com/en-us/qr-code-locations
Source: chromecache_188.2.dr	String found in binary or memory: https://local.fedex.com/en/mobile-label-printing
Source: chromecache_200.2.dr	String found in binary or memory: https://lodash.com/
Source: chromecache_200.2.dr	String found in binary or memory: https://lodash.com/license
Source: chromecache_279.2.dr	String found in binary or memory: https://maps.googleapis.com/maps/api/geocode/json?key
Source: chromecache_290.2.dr	String found in binary or memory: https://maps.googleapis.com/maps/api/js"
Source: chromecache_278.2.dr, chromecache_316.2.dr, chromecache_163.2.dr, chromecache_304.2.dr	String found in binary or memory: https://media-us2.digital.nuance.com
Source: chromecache_329.2.dr, chromecache_161.2.dr	String found in binary or memory: https://mellowfast.digital/tiz/
Source: chromecache_279.2.dr	String found in binary or memory: https://momentjs.com/timezone/docs/#/use-it/browser/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://newsroom.fedex.com/
Source: chromecache_200.2.dr	String found in binary or memory: https://npms.io/search?q
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://nuance.intshipassistdev.com/nuance/nuance.html
Source: chromecache_200.2.dr	String found in binary or memory: https://openjsf.org/
Source: chromecache_207.2.dr	String found in binary or memory: https://p11.techlab-cdn.com
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://page.message.fedex.com/emailpreferences/login
Source: chromecache_187.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://platform.cloud.coveo.com/rest/search/v2/querySuggest
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.fedex.ida.android
Source: chromecache_188.2.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.fedex.ida.android&hl=en_US&gl=US
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_279.2.dr	String found in binary or memory: https://service.force.com
Source: chromecache_241.2.dr	String found in binary or memory: https://stats.kaltura.com
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_290.2.dr	String found in binary or memory: https://twitter.com/fedex
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://va.fedex.com/nuance/nuance.html
Source: chromecache_278.2.dr, chromecache_304.2.dr	String found in binary or memory: https://va.van.fedex.com/nuance/nuance.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/?location=home
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/apps/fdmenrollment/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/apps/shipadmin/
Source: chromecache_188.2.dr, chromecache_290.2.dr, chromecache_321.2.dr	String found in binary or memory: https://www.fedex.com/assets/3f95d55072ae5cd0a0e5f981ba0cc5db9001192124f
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/content/dam/fedex-com/common/sprite-placeholder.png
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/content/dam/fedex-com/logos/logo.png
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/ecap/report
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/about.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/about/company-structure.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/about/corporate-social-responsibility.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/about/delivery-stories.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/billing-online.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/blog.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/compatible.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/customer-support.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/customer-support/call-us.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/customer-support/claims.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/customer-support/faqs.html
Source: chromecache_188.2.dr	String found in binary or memory: https://www.fedex.com/en-us/delivery-manager.html
Source: chromecache_188.2.dr	String found in binary or memory: https://www.fedex.com/en-us/delivery-manager/door-tag.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/email.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/home.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/logistics.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/manage-account.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/office/services.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/online/rating.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/open-account.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/service-alerts.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/service-guide.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/service-guide/money-back-guarantee.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/drop-off-package.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/express.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/freight.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/hold-at-location.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/international.html
Source: chromecache_281.2.dr, chromecache_194.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/international/ecommerce-connect.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/mobile.html
Source: chromecache_188.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/mobile.html#pictureproof
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/packing.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/packing/supplies/sustainable-packaging.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/returns.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/schedule-manage-pickups.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shipping/ship-manager/login.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/shoprunner.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/sitemap.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/small-business.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/small-business/articles-insights/sustainability.html
Source: chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/sustainability.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/terms-of-use.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/tracking.html
Source: chromecache_188.2.dr	String found in binary or memory: https://www.fedex.com/en-us/tracking/picture-proof-delivery.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/en-us/trust-center.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/es-us/home.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/fdmenrollment/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/fedextracking/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/lite/lite-ship.html#address%20
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/profile-overview
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/secure-login/en-us/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/shipping/shipEntryAction.do?method=doEntry&link=1&locale=en_US&urlparams=us&sT
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.fedex.com/swab/AddressMain.do?locale=en_US
Source: chromecache_187.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_317.2.dr, chromecache_308.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/1033577797/?random
Source: chromecache_263.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/863238793/?random
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_249.2.dr, chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_226.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?id=
Source: chromecache_300.2.dr, chromecache_187.2.dr	String found in binary or memory: https://www.googletagmanager.com/dclk/ns/v1.js
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.instagram.com/fedex
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.instagram.com/fedex/
Source: chromecache_299.2.dr, chromecache_261.2.dr, chromecache_193.2.dr	String found in binary or memory: https://www.kaltura.com/api_v3/?format=1
Source: chromecache_290.2.dr	String found in binary or memory: https://www.linkedin.com/company/fedex
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.office.fedex.com/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.office.fedex.com/default/all-print-products.html
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.pinterest.com/FedEx/
Source: chromecache_188.2.dr, chromecache_290.2.dr	String found in binary or memory: https://www.pinterest.com/fedex
Source: chromecache_290.2.dr	String found in binary or memory: https://www.youtube.com/fedex

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 23.33.136.127:443 -> 192.168.2.4:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.33.136.127:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.4:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.4:49854 version: TLS 1.2

Source: classification engine

Classification label: mal56.phis.win@23/295@92/28

Source: C:\Windows\System32\conhost.exe

Mutant created: \BaseNamedObjects\Local\SM0:6092:120:WilError_03

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2188,i,11939061804152681607,4609910776711583090,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://librospy.com/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2188,i,11939061804152681607,4609910776711583090,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Sample execution stops while process was sleeping (likely an evasion)

Source: C:\Windows\System32\conhost.exe

Last function: Thread delayed

ID:	1428525
Product:	CloudBasic
Start time:	06:04:12
Start date:	19.04.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://librospy.com/

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Malware Analysis System Evasion

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://librospy.com/

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Malware Analysis System Evasion

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://librospy.com/