Windows Analysis Report
https://content.amanet.org/?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584

Overview

General Information

Sample URL:	https://content.amanet.org/?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584
Analysis ID:	1431576
Infos:

Detection

HtmlDropper, HTMLPhisher

Score:	76
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus detection for URL or domain

Yara detected Html Dropper

Yara detected HtmlPhish10

Phishing site detected (based on image similarity)

Phishing site detected (based on logo match)

Phishing site or detected (based on various text indicators)

HTML body contains low number of good links

HTML page contains hidden URLs or javascript code

HTML title does not match URL

Invalid 'sign-in options' or 'sign-up' link found

Stores files to the Windows start menu directory

Classification

Signatures

AV Detection

Antivirus detection for URL or domain

Source: https://denbi.icu/favicon.ico	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/cdn-cgi/challenge-platform/h/b/flow/ov1/226112177:1714040833:U4DRbnTZp4YDU1MNl1u-FnCR3OpoqYzBk-koO7KD038/879dfd0dff8c7bc9/67a6192f214b52a	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=879dfd0dff8c7bc9	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/x/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17efe	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/boot/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33568	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/ASSETS/img/sig-op.svg	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/APP-bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17ef8/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17ef9	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/1	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/ASSETS/img/m_.svg	Avira URL Cloud: Label: phishing
Source: https://denbi.icu	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/o/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c180c7	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/jq/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33565	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/js/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33569	Avira URL Cloud: Label: phishing

Phishing

Yara detected HtmlPhish10

Source: Yara match

File source: 4.8.pages.csv, type: HTML

Phishing site detected (based on image similarity)

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

Matcher: Found strong image similarity, brand: MICROSOFT

Phishing site detected (based on logo match)

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

Matcher: Template: microsoft matched

Phishing site or detected (based on various text indicators)

Source: Chrome DOM: 1.1

OCR Text: DocuSign You have a wlding document to review and sign. REVIEW DOCUMENT

HTML body contains low number of good links

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

HTTP Parser: Number of links: 0

HTML page contains hidden URLs or javascript code

Source: https://denbi.icu/

HTTP Parser: Base64 decoded: https://denbi.icu/

HTML title does not match URL

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

HTTP Parser: Title: b89be2c4d1d50441c0d3ed089cc48af6662a3e597b823 does not match URL

Invalid 'sign-in options' or 'sign-up' link found

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

HTTP Parser: Invalid link: get a new Microsoft account

Source: https://control.mailblaze.com/index.php/survey/ps97367sjy584	HTTP Parser: No favicon
Source: https://denbi.icu/	HTTP Parser: No favicon
Source: https://denbi.icu/	HTTP Parser: No favicon
Source: https://denbi.icu/	HTTP Parser: No favicon
Source: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normal	HTTP Parser: No favicon
Source: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normal	HTTP Parser: No favicon
Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e	HTTP Parser: No favicon

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

HTTP Parser: No <meta name="author".. found

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49804 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.63.206.91:443 -> 192.168.2.16:49806 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.16:49807 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49831 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10

Source: global traffic	HTTP traffic detected: GET /?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584 HTTP/1.1Host: content.amanet.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: content.amanet.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://content.amanet.org/?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /index.php/survey/ps97367sjy584 HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://content.amanet.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/mb_global.css?367 HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/js/mb_global.js?367 HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /fe/assets/files/customer/df893omgtsfb4/logo-330520.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /fe/assets/files/customer/df893omgtsfb4/logo-330520.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: rochellejacob.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://control.mailblaze.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://rochellejacob.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=879dfd0dff8c7bc9 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://denbi.icu/?__cf_chl_rt_tk=yqZbO6ajJpEP_21m30NMI9fNkHzVmgLEc84UoXJCn5U-1714044495-0.0.1.1-1557Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://denbi.icusec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/226112177:1714040833:U4DRbnTZp4YDU1MNl1u-FnCR3OpoqYzBk-koO7KD038/879dfd0dff8c7bc9/67a6192f214b52a HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=879dfd191ba41385 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1682563341:1714040781:VVhv4n5s5Ch7l6kwUgd1KpeAeyZHXMIzoL570jS7kDA/879dfd191ba41385/ebd29cb8a01490a HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/879dfd191ba41385/1714044498327/ix4H4Iic5Mn8k5c HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/879dfd191ba41385/1714044498327/ix4H4Iic5Mn8k5c HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/pat/879dfd191ba41385/1714044498331/6af76a8fa43975a69098d47b00d3efeeea8e4a63640f88feb6dda8015588cfb3/q64-gj4mKW82-gq HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=pKBlGl3A+M2K+Fg&MD=9c3roekX HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1682563341:1714040781:VVhv4n5s5Ch7l6kwUgd1KpeAeyZHXMIzoL570jS7kDA/879dfd191ba41385/ebd29cb8a01490a HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1682563341:1714040781:VVhv4n5s5Ch7l6kwUgd1KpeAeyZHXMIzoL570jS7kDA/879dfd191ba41385/ebd29cb8a01490a HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/226112177:1714040833:U4DRbnTZp4YDU1MNl1u-FnCR3OpoqYzBk-koO7KD038/879dfd0dff8c7bc9/67a6192f214b52a HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/?__cf_chl_tk=yqZbO6ajJpEP_21m30NMI9fNkHzVmgLEc84UoXJCn5U-1714044495-0.0.1.1-1557Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e HTTP/1.1Host: denbi.icuConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Referer: https://denbi.icu/?__cf_chl_tk=yqZbO6ajJpEP_21m30NMI9fNkHzVmgLEc84UoXJCn5U-1714044495-0.0.1.1-1557Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /jq/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33565 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /boot/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33568 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /js/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33569 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /1 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /1 HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /APP-bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17ef8/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17ef9 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /o/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c180c7 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /ASSETS/img/m_.svg HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /ASSETS/img/sig-op.svg HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /x/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17efe HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /o/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c180c7 HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /ASSETS/img/m_.svg HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /ASSETS/img/sig-op.svg HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /x/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17efe HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=pKBlGl3A+M2K+Fg&MD=9c3roekX HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com

Source: global traffic	DNS traffic detected: DNS query: content.amanet.org
Source: global traffic	DNS traffic detected: DNS query: control.mailblaze.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: rochellejacob.com
Source: global traffic	DNS traffic detected: DNS query: denbi.icu
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com

Source: unknown

HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/b/flow/ov1/226112177:1714040833:U4DRbnTZp4YDU1MNl1u-FnCR3OpoqYzBk-koO7KD038/879dfd0dff8c7bc9/67a6192f214b52a HTTP/1.1Host: denbi.icuConnection: keep-aliveContent-Length: 1959sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: 67a6192f214b52asec-ch-ua-platform: "Windows"Accept: */*Origin: https://denbi.icuSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://denbi.icu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 25 Apr 2024 11:28:08 GMTContent-Type: text/htmlContent-Length: 1245Connection: closeX-Content-Type-Options: nosniffX-Robots-Tag: noindex, nofollow
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 25 Apr 2024 11:28:15 GMTContent-Type: text/html; charset=UTF-8Content-Length: 16527Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Frame-Options: SAMEORIGINcf-mitigated: challengecf-chl-out: NZh4/mUONvgXWufRz0fswxVt+2Up0lOFMzvmJQgMevqyFItgIgtCS1Ck8uE+NzWunxXXOcShNhmzr5IMlVmBSI98mAfzj6afywvMDGIjmqJlKyjM4AVPffkOpvtnokywsikIH6mKAtq0YHxqxJECSw==$Dq7RFukIO3Mr6XltrxHFHQ==Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Expires: Thu, 01 Jan 1970 00:00:01 GMT
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 25 Apr 2024 11:28:16 GMTContent-Type: text/html; charset=UTF-8Content-Length: 16682Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Frame-Options: SAMEORIGINcf-mitigated: challengecf-chl-out: /AZsgcHZM25aQ5K+/LQ97Sq9FNGcnP8mDbpmxY0mtby8F3xrY3K6lPQv+Q1QUMc4utfKtqY8HViU+vUdmPU0MP6WqBaMrRLDjro3DN9qwl8QK9GiPKnLCGFouh3Ws4wQkx4XpIHI3ilCDZaaHZPP6w==$hZUJ1vDptFi5oLdSkUa9Zw==Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Expires: Thu, 01 Jan 1970 00:00:01 GMT
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 25 Apr 2024 11:28:18 GMTContent-Type: text/html; charset=UTF-8Content-Length: 16661Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Frame-Options: SAMEORIGINcf-mitigated: challengecf-chl-out: hBSO/HRkPICxBb4XLPI4LDw6CantUKrt2zkaLoimFrp3TuLlbSkHgroC8o9qIBKVOIAz/QsFZUxO8CcvbSDix+Oe29JmusxFoTsiCg6WOh1h8ZoZd2jkihXyfPO86U7OnEkfAwUdw7TukvvNCDznzA==$g2dXx9NaUZGavT5TMOMnyw==Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Expires: Thu, 01 Jan 1970 00:00:01 GMT
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 25 Apr 2024 11:28:24 GMTContent-Type: text/html; charset=UTF-8Content-Length: 16789Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Frame-Options: SAMEORIGINcf-mitigated: challengecf-chl-out: sa0xfGnFhyovqdU88S7PKXASJGb2RnjyTJOA6hJWCj4FnnW2MRuHpXUv7vIOC31emQitSScm+l/Hrf86DQG5tO3WXyzvFnvbo/D0cnR0Y+BHN1F3ztjC+lkDeRyucAj1NUgKHaGFeU9jHcMBwBSGcQ==$iHNyEArPUDjxc82xarnk3g==Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Expires: Thu, 01 Jan 1970 00:00:01 GMT
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 25 Apr 2024 11:28:28 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=14400CF-Cache-Status: EXPIREDReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B8tf4YRz9K02%2BLGxJv%2F2z0Vm9kBFp%2BZADlFBip1A7K1hMYhx8W%2BPB%2B79rDQO3jfuUg8H5mISsLkitVaBPz%2BIW1zCeTpGUKP2GF0yzwJwTQKLLIP2Xzvn%2FPLtMEc%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 879dfd5e6b7517f7-ATLalt-svc: h3=":443"; ma=86400

Source: chromecache_113.1.dr	String found in binary or memory: http://benalman.com/about/license/
Source: chromecache_113.1.dr	String found in binary or memory: http://benalman.com/projects/jquery-bbq-plugin/
Source: chromecache_113.1.dr	String found in binary or memory: http://benalman.com/projects/jquery-hashchange-plugin/
Source: chromecache_113.1.dr	String found in binary or memory: http://brandon.aaron.sh)
Source: chromecache_113.1.dr	String found in binary or memory: http://fronteed.com
Source: chromecache_113.1.dr	String found in binary or memory: http://git.io/arlzeA
Source: chromecache_113.1.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_113.1.dr	String found in binary or memory: http://mths.be/punycode
Source: chromecache_113.1.dr, chromecache_80.1.dr	String found in binary or memory: http://plugins.krajee.com/file-input
Source: chromecache_80.1.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_113.1.dr, chromecache_80.1.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0)
Source: chromecache_113.1.dr	String found in binary or memory: http://www.yiiframework.com/
Source: chromecache_113.1.dr	String found in binary or memory: http://www.yiiframework.com/license/
Source: chromecache_101.1.dr	String found in binary or memory: https://control.mailblaze.com/index.php/survey/ps97367sjy584
Source: chromecache_97.1.dr	String found in binary or memory: https://denbi.icu
Source: chromecache_80.1.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_80.1.dr	String found in binary or memory: https://fontawesome.com/license
Source: chromecache_80.1.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Titillium
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGIVzY4SY.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGIVzY4SY.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYqz_wNahGAdqQ43Rh_eZDkv_1w4A.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYqz_wNahGAdqQ43Rh_eZDlv_1w4A.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYqz_wNahGAdqQ43Rh_eZDrv_0.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_c6Dpp_k.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_cqDpp_k.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2)
Source: chromecache_75.1.dr, chromecache_80.1.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_113.1.dr, chromecache_80.1.dr	String found in binary or memory: https://github.com/kartik-v/bootstrap-fileinput/blob/master/LICENSE.md
Source: chromecache_75.1.dr, chromecache_80.1.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_75.1.dr	String found in binary or memory: https://github.com/twbs/bootstrap/graphs/contributors)
Source: chromecache_113.1.dr, chromecache_80.1.dr	String found in binary or memory: https://github.com/uxsolutions/bootstrap-datepicker)
Source: chromecache_113.1.dr	String found in binary or memory: https://www.chartjs.org

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49688 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443

Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49804 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.63.206.91:443 -> 192.168.2.16:49806 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.16:49807 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49831 version: TLS 1.2

Source: classification engine

Classification label: mal76.phis.troj.win@21/145@24/11

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://content.amanet.org/?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 --field-trial-handle=1928,i,13018938029787253105,7239922200359380652,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 --field-trial-handle=1928,i,13018938029787253105,7239922200359380652,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Data Obfuscation

Yara detected Html Dropper

Source: Yara match

File source: 4.8.pages.csv, type: HTML

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.67.179.248	unknown	United States	13335	CLOUDFLARENETUS	false
172.67.211.43	denbi.icu	United States	13335	CLOUDFLARENETUS	false
172.217.215.147	www.google.com	United States	15169	GOOGLEUS	false
104.17.3.184	unknown	United States	13335	CLOUDFLARENETUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
52.52.107.112	ama-content.e.alterian.net	United States	16509	AMAZON-02US	false
104.21.31.210	control.mailblaze.com	United States	13335	CLOUDFLARENETUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
162.241.114.35	rochellejacob.com	United States	46606	UNIFIEDLAYER-AS-1US	false
104.17.2.184	challenges.cloudflare.com	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.16

Contacted Domains

Name	IP	Active
a.nel.cloudflare.com	35.190.80.1	true
rochellejacob.com	162.241.114.35	true
challenges.cloudflare.com	104.17.2.184	true
www.google.com	172.217.215.147	true
denbi.icu	172.67.211.43	true
control.mailblaze.com	104.21.31.210	true
ama-content.e.alterian.net	52.52.107.112	true
content.amanet.org	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://control.mailblaze.com/assets/img/editor/rating/star-emoji/1.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-rating/4.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-round/0.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-round/1.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-emoji/2.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-rating/5.png	false	Avira URL Cloud: safe	unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/879dfd191ba41385/1714044498331/6af76a8fa43975a69098d47b00d3efeeea8e4a63640f88feb6dda8015588cfb3/q64-gj4mKW82-gq	false		high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1682563341:1714040781:VVhv4n5s5Ch7l6kwUgd1KpeAeyZHXMIzoL570jS7kDA/879dfd191ba41385/ebd29cb8a01490a	false		high
https://control.mailblaze.com/assets/img/editor/rating/star-emoji/0.png	false	Avira URL Cloud: safe	unknown
https://denbi.icu/favicon.ico	false	Avira URL Cloud: phishing	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-round/2.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/css/mb_global.css?367	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-emoji/3.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-rating/2.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/js/mb_global.js?367	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/emoji-round/5.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-round/3.png	false	Avira URL Cloud: safe	unknown
https://denbi.icu/cdn-cgi/challenge-platform/h/b/flow/ov1/226112177:1714040833:U4DRbnTZp4YDU1MNl1u-FnCR3OpoqYzBk-koO7KD038/879dfd0dff8c7bc9/67a6192f214b52a	false	Avira URL Cloud: phishing	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-simple/5.png	false	Avira URL Cloud: safe	unknown
https://denbi.icu/	false		unknown
https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e	true		unknown
https://content.amanet.org/favicon.ico	false		high
https://control.mailblaze.com/assets/img/editor/rating/star-emoji/4.png	false	Avira URL Cloud: safe	unknown
https://denbi.icu/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=879dfd0dff8c7bc9	false	Avira URL Cloud: phishing	unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=879dfd191ba41385	false		high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D	false		high
https://control.mailblaze.com/assets/img/editor/rating/star-simple/4.png	false	Avira URL Cloud: safe	unknown
https://denbi.icu/x/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17efe	false	Avira URL Cloud: phishing	unknown
https://control.mailblaze.com/assets/img/editor/rating/emoji-round/4.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-rating/3.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/index.php/survey/ps97367sjy584	false		unknown
https://control.mailblaze.com/assets/img/editor/rating/star-round/4.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-emoji/5.png	false	Avira URL Cloud: safe	unknown
https://denbi.icu/boot/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33568	false	Avira URL Cloud: phishing	unknown
https://denbi.icu/ASSETS/img/sig-op.svg	false	Avira URL Cloud: phishing	unknown
https://a.nel.cloudflare.com/report/v4?s=zbnbuwu%2BUkinjpfXraUFoQcFTB%2B%2FrxumXsmbuVnS4bTWTPC9LmQ9f8V1R5%2F%2F3fBS9jNGjW6c5%2F0lPhmrM232kSjE7sIskSbOHRK3pGFjCobrwnLj1GML%2FhSUI18%3D	false		high
https://denbi.icu/APP-bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17ef8/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17ef9	false	Avira URL Cloud: phishing	unknown
https://control.mailblaze.com/assets/img/editor/rating/emoji-round/2.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-round/5.png	false	Avira URL Cloud: safe	unknown
https://content.amanet.org/?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584	false		high
https://control.mailblaze.com/assets/img/editor/rating/star-simple/3.png	false	Avira URL Cloud: safe	unknown
https://a.nel.cloudflare.com/report/v4?s=HCY%2BUTWEHX9V2j%2Br0iLQIP3IMkICusryo639rjz109I42ih2W2CbZ058Jy%2F2LH7aRx9xj0Czwy1W6fULiUdVw%2FlJpAVKytBShX8X18YT7erSjX%2FPlDuAMTWXghc%3D	false		high
https://denbi.icu/1	false	Avira URL Cloud: phishing	unknown
https://rochellejacob.com/	false	0%, Virustotal, Browse Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/emoji-round/3.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-simple/2.png	false	Avira URL Cloud: safe	unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/879dfd191ba41385/1714044498327/ix4H4Iic5Mn8k5c	false		high
https://control.mailblaze.com/assets/img/editor/rating/emoji-round/0.png	false	Avira URL Cloud: safe	unknown
https://denbi.icu/ASSETS/img/m_.svg	false	Avira URL Cloud: phishing	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-rating/1.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-simple/1.png	false	Avira URL Cloud: safe	unknown
https://control.mailblaze.com/fe/assets/files/customer/df893omgtsfb4/logo-330520.png	false	Avira URL Cloud: safe	unknown
https://denbi.icu/o/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c180c7	false	Avira URL Cloud: phishing	unknown
https://control.mailblaze.com/assets/img/editor/rating/star-rating/0.png	false	Avira URL Cloud: safe	unknown
https://denbi.icu/jq/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33565	false	Avira URL Cloud: phishing	unknown
https://control.mailblaze.com/assets/img/editor/rating/emoji-round/1.png	false	Avira URL Cloud: safe	unknown
https://denbi.icu/js/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33569	false	Avira URL Cloud: phishing	unknown
https://a.nel.cloudflare.com/report/v4?s=gwYyeJ4ioK2JQntgrkm32LaaeazzCVQuReh7maQasEmMAwqNdLfdOrucvNKj7RCth0Q%2BhE9zmMNiISINj%2BVCvc6iHQqSbb6pRS2EkMC3lxfsmGiCL4%2Fd3WY8Hxw%3D	false		high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normal	false		high
https://control.mailblaze.com/assets/img/editor/rating/star-simple/0.png	false	Avira URL Cloud: safe	unknown

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 25 10:28:08 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	B389EA3B0FFD6BB95858A597C85E5E05	FAF121AE76DA13D07B39922C9B7C06F18ACDA864	743516FB7D19E24D14BDDF1B176C27D367D597CA51E0412B63A88F332DF1442B
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 25 10:28:08 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	FBE61FC84A72DF139ABE16CA7BE508CF	3A7F6DC3E428DF3CF582763D74CEAE14932951D7	BC86900D9F179D8CD3039FD870D5EACDE95F7918A054A575E75B7F1BD0380718
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	F212FC1C0529BAE3F34B1B2F113DF000	6D7A99471C5D857E10AD12E35DF761CCA0014966	129EDF3E2C99F85792C2A5317585B5770724122C0E8FAB1F32251A4718515A85
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 25 10:28:08 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	45AC8DD824ADE254935DFC9BC200008D	7279B4AD6614604954477E0E53B8DAEA7D5237B8	4E786C81070BD46DC068DEDF35B4AE8D8F524F53E3506CD5FD2A63CD5D37E7AB
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 25 10:28:08 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	397F90D01E0CA6E3C84D47E5EC67D169	5810DDF9019A59636E25BA9893FD57EC5E1E267A	E878976B75A496FE4CBBAF345DCC5903D82E5DAE2388BE0D56A52582F3937CB8
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 25 10:28:08 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	00C1E8F6ECC9896F53D3F007A958CAE4	CF2BCD35B1873477BFD8157EAACCFCE0D287023E	393477EC5E827601A838D8A5542ED896AB0069FCEC294AA5C3BF7508E62FFD9E
Chrome Cache Entry: 100	PNG image data, 371 x 99, 8-bit colormap, non-interlaced	4AF2288585F467E1B93A78D846D341BD	8E353E5735D24E56DD058656637F3CB638B84FC7	4376FFB0CD1540704158F486134C2B00B5FE25F1D1A009C46FD3A5CB9BD97651
Chrome Cache Entry: 101	HTML document, ASCII text, with no line terminators	6AB3CB20A5C389B2C52D0AC827B2A73F	9EAC1E5A5373140A4388AD28BFD119FE19B8322C	8B295EE1222CB831EE6853D0AEC27AB3F0E6AA1DA9878FAEFBD1E82A89D27DB1
Chrome Cache Entry: 102	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	5E0BA9D0BBA23AD21C22A10BF1147932	DE8A91E985B2461CF75C0C7B1AD11C8C11AFA78E	DEDF1E19DE63EF3BC1EA4C552D72E2F70C381940316946653F054A4F1C2CCD07
Chrome Cache Entry: 103	PNG image data, 275 x 46, 8-bit colormap, non-interlaced	73828E094E5C5729B6737820C6B59086	A7A5BB33279F757CEFECAF94DDD5463E84B47EC2	E33E3A4860370318DA6BA18F8CF9F897CE69DBDCF5616549349E85225C0C82C4
Chrome Cache Entry: 104	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	919453CCF3AA9A48EC9DB5AFE0D92E24	754511412A01F0804F1E67696063C77A725A51DA	747EC60F932FDAB1D4FD87DCBD01B716817DEF5730909A8F5D22C111E600BA2B
Chrome Cache Entry: 105	ASCII text, with very long lines (42414)	F94A2211CE789A95A7C67E8C660D63E8	F1FC19B6BCB96D0A905BF3192AAFF0885FF9F36F	926DC3302F99EC05E4206E965DDEB7250F5910A8C38E82C7BEAFB724BBAAF37B
Chrome Cache Entry: 106	PNG image data, 250 x 70, 8-bit colormap, non-interlaced	59285221DD2852A9A43EEB3B937DFD39	101FE97E9BFE29A6F75182693F11B101C4A02811	8A44BA06B539A63B2D2CE0256849E7AD5BA871B2B9D26D23BDBC8820F5BCAA50
Chrome Cache Entry: 107	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	31797137C9A84DDAE06D859F4E6D695D	39E608079877218C31296B249058B15F70B4195B	787EDDEBCF455D19E4C7CE7402F88677FE944E5400C39625197CCB809C5CA0F7
Chrome Cache Entry: 108	PNG image data, 322 x 35, 8-bit colormap, non-interlaced	660C3D1C54C75A0D837286BBD8A4156A	CDD6A09C52B814D6AEBFEEDD2DB5784A270F8EF0	8216F45D46E5424A67A2416D3A2B475152981BEE1BAE74BAAB4681D240BD325D
Chrome Cache Entry: 109	PNG image data, 250 x 70, 8-bit colormap, non-interlaced	4053B78B4FCE79C6F3DC5399C5A30CC9	6B41BE0948574A26AD0EA83075D5F48B029D32E7	0264001A6A2A144430A1CBEE1BDA969DFFB59F5022DA5C1E2AECF4E33469341A
Chrome Cache Entry: 110	PNG image data, 275 x 46, 8-bit colormap, non-interlaced	9FF52BEA4ADF4E6B3981F2EADD8E10B2	E36FA99FB8D600EBAEA348BE7FDBAAAAA0B42F1B	951BD96FAD65AD964A26DC846AE867AD91B47C90A339F3E5676150BF84E0AF7F
Chrome Cache Entry: 111	PNG image data, 338 x 35, 8-bit colormap, non-interlaced	80E2C3DA54F451E8CBA5BC24A61B046F	B257E9F870555F06E8A77F6418C4D82D4DA8DC7F	E2FCA4BB91E1B892D2A6EF531AD3CCA2E4638F33BC0FFB2925EAA22E47B64617
Chrome Cache Entry: 112	PNG image data, 277 x 35, 8-bit colormap, non-interlaced	8CF44A06D9014B99B5C44958446EC170	2A5E92482006B171692838D2BD7D1161E1147360	709C7E3B3652397841BEC6BDAD83DC493FDCACD03456736DB8CCCA651A058924
Chrome Cache Entry: 113	Unicode text, UTF-8 text, with very long lines (65449)	CA098947FFE208E7454B0B777D7E76A5	8322947CB38356225C24D8FE4FA20F01CBA9DEEA	685D99D66DE9B4E08F4AE65DA8F65518F1D3CDD06F033854B0CC480619127890
Chrome Cache Entry: 114	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	3A3F7B6A24BC6358A1B2AC49257969F4	EB2D19E47440649DACAF61118E81F9D34F1B5A0A	29437E473BE33663460C21647C56A7F1132A7607B668494F28E9B5BD7BBD87E2
Chrome Cache Entry: 115	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	3A3F7B6A24BC6358A1B2AC49257969F4	EB2D19E47440649DACAF61118E81F9D34F1B5A0A	29437E473BE33663460C21647C56A7F1132A7607B668494F28E9B5BD7BBD87E2
Chrome Cache Entry: 116	HTML document, ASCII text, with very long lines (4020)	B2CDE6618F4F1B37E116456596074427	B425934BBAE3B3809DBFEA23984C134A85F17665	6F6430714DAEDAAD61EB731F1316317061EAA11D6A98676870136EE110770316
Chrome Cache Entry: 117	PNG image data, 275 x 45, 8-bit colormap, non-interlaced	804FE3AD78F2326471E56B4D8B3462F2	615CC5CF204261E6F2FF01B15F281CDB007FBD68	2D286F3BC481D5FF19E50FF89A5D5323D68C5945F1EC6454EEB6BD1C0A1F98FC
Chrome Cache Entry: 118	PNG image data, 371 x 100, 8-bit colormap, non-interlaced	CA0D7456174C8171C1CC02F168D41B02	F46A6EA8DB1E4134DC08A2DDF32AE38D88F94396	681F6CA55F1F7FBA868AFA4B93D332BA2F226BB1D73BB0159BC3B90AD93D898F
Chrome Cache Entry: 119	PNG image data, 413 x 34, 8-bit colormap, non-interlaced	43C87E47CBF6F018697B1776EF284857	98FDB7153603DAADBF896AEBB5E612FE1A97FDD1	F762B6B6230CFF869BB9662CD577B5A1FEFFC144B191D6B46E8D38458A0E6FF1
Chrome Cache Entry: 120	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	BFC9016F92E8E1383E3C493A300968B9	E333E7FC500505DAFFEA7CBCCE190FC9A9850979	40AF0513A60E87D026EA80C28A740741947F8F6C6B01DF3F7AD9860867619C1B
Chrome Cache Entry: 121	HTML document, ASCII text, with CRLF line terminators	5343C1A8B203C162A3BF3870D9F50FD4	04B5B886C20D88B57EEA6D8FF882624A4AC1E51D	DC1D54DAB6EC8C00F70137927504E4F222C8395F10760B6BEECFCFA94E08249F
Chrome Cache Entry: 122	PNG image data, 275 x 46, 8-bit colormap, non-interlaced	068B8721C85E314DBEB68A8374C90A38	4CFFE8B855C3633DC982ECA33089E70C96E6CFD4	7D66AA6558C740E857757B0BB92AF163F9D2243B0DF260C09981426763D1F8FB
Chrome Cache Entry: 123	SVG Scalable Vector Graphics image	EE5C8D9FB6248C938FD0DC19370E90BD	D01A22720918B781338B5BBF9202B241A5F99EE4	04D29248EE3A13A074518C93A18D6EFC491BF1F298F9B87FC989A6AE4B9FAD7A
Chrome Cache Entry: 124	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	5E0BA9D0BBA23AD21C22A10BF1147932	DE8A91E985B2461CF75C0C7B1AD11C8C11AFA78E	DEDF1E19DE63EF3BC1EA4C552D72E2F70C381940316946653F054A4F1C2CCD07
Chrome Cache Entry: 125	PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced	9246CCA8FC3C00F50035F28E9F6B7F7D	3AA538440F70873B574F40CD793060F53EC17A5D	C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84
Chrome Cache Entry: 126	PNG image data, 389 x 99, 8-bit colormap, non-interlaced	7BBDEAF3038F4D86CE1CBCD4EE57B0E9	02096DDE709A3924073C6F726D7569739964406E	3068188D7F73BFB24CBB2E1E4E984306195CF62ADB0FBDAE498DF2BEFE60A43A
Chrome Cache Entry: 127	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	5D72653EBD8F63AA763903425516C22A	43E342A633A2FB0E6D4F5A8DB50620A2BDD8D08B	898DCB99B5B3BFF6E04C0EC626BA188CB7C431160087FE7F1334E629919ACB0D
Chrome Cache Entry: 128	PNG image data, 250 x 70, 8-bit colormap, non-interlaced	22A1003D2FE785CC9EB229CE874E2292	6D002EFF33D8F99706F3BBA745E49093A542086C	7EF3D8F42941FA81847B32E0F4BEA9F2DCEC530F8AF56B224BC1DB550843CF5C
Chrome Cache Entry: 129	PNG image data, 250 x 70, 8-bit colormap, non-interlaced	59285221DD2852A9A43EEB3B937DFD39	101FE97E9BFE29A6F75182693F11B101C4A02811	8A44BA06B539A63B2D2CE0256849E7AD5BA871B2B9D26D23BDBC8820F5BCAA50
Chrome Cache Entry: 130	SVG Scalable Vector Graphics image	EE5C8D9FB6248C938FD0DC19370E90BD	D01A22720918B781338B5BBF9202B241A5F99EE4	04D29248EE3A13A074518C93A18D6EFC491BF1F298F9B87FC989A6AE4B9FAD7A
Chrome Cache Entry: 131	PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced	9246CCA8FC3C00F50035F28E9F6B7F7D	3AA538440F70873B574F40CD793060F53EC17A5D	C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84
Chrome Cache Entry: 132	PNG image data, 252 x 70, 8-bit colormap, non-interlaced	0196DED24CB1DBD9BE7EA2401E009798	A057DF5AF354CFCC6AB96B46811267A6EBF58CF4	C28EF611FAA4D9EFB8E4884948B245F01D8795B366DFF25AE559F20D87BAB7C7
Chrome Cache Entry: 133	SVG Scalable Vector Graphics image	4E48046CE74F4B89D45037C90576BFAC	4A41B3B51ED787F7B33294202DA72220C7CD2C32	8E6DB1634F1812D42516778FC890010AA57F3E39914FB4803DF2C38ABBF56D93
Chrome Cache Entry: 134	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	31797137C9A84DDAE06D859F4E6D695D	39E608079877218C31296B249058B15F70B4195B	787EDDEBCF455D19E4C7CE7402F88677FE944E5400C39625197CCB809C5CA0F7
Chrome Cache Entry: 135	PNG image data, 131 x 23, 8-bit colormap, non-interlaced	A2CAC8A5ACE4D6A6A9E7357737094875	3723A2FC2DD741D6CF6B643C0BF5DA79B00E14A3	CCBCDF6A8701C3B154842A0E1EEF2175E750BBECE517DC1142FE058DDA0393B7
Chrome Cache Entry: 136	PNG image data, 250 x 70, 8-bit colormap, non-interlaced	AD0A17D990335334A8964B0744EA3D49	226E3CC53A26EC5B9D4E0B85EB162A584537FFC9	3E3554D948805C67C9151240116A0895C6E98A746A2002BC47BD025245849CDB
Chrome Cache Entry: 137	PNG image data, 371 x 100, 8-bit colormap, non-interlaced	CA0D7456174C8171C1CC02F168D41B02	F46A6EA8DB1E4134DC08A2DDF32AE38D88F94396	681F6CA55F1F7FBA868AFA4B93D332BA2F226BB1D73BB0159BC3B90AD93D898F
Chrome Cache Entry: 138	PNG image data, 6 x 29, 8-bit/color RGB, non-interlaced	DBF5F48CD386D2BF7099FC7198BD128D	9A364CCCEF96D2EDBC75F403874F81D56F14B080	196FFB47C53E68510D508896A8E8D3DEDE18A387569AEA9427EF4928C05ED971
Chrome Cache Entry: 139	ASCII text, with no line terminators	011B17B116126E6E0C4A9B0DE9145805	DF63A6EB731FFCE96F79802EFF6D53D00CDA42BC	3418E6E704387A99F1611EB7BB883328A438BA600971E6D692E8BEA60F10B179
Chrome Cache Entry: 140	PNG image data, 250 x 70, 8-bit colormap, non-interlaced	4053B78B4FCE79C6F3DC5399C5A30CC9	6B41BE0948574A26AD0EA83075D5F48B029D32E7	0264001A6A2A144430A1CBEE1BDA969DFFB59F5022DA5C1E2AECF4E33469341A
Chrome Cache Entry: 141	PNG image data, 338 x 35, 8-bit colormap, non-interlaced	80E2C3DA54F451E8CBA5BC24A61B046F	B257E9F870555F06E8A77F6418C4D82D4DA8DC7F	E2FCA4BB91E1B892D2A6EF531AD3CCA2E4638F33BC0FFB2925EAA22E47B64617
Chrome Cache Entry: 142	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	919453CCF3AA9A48EC9DB5AFE0D92E24	754511412A01F0804F1E67696063C77A725A51DA	747EC60F932FDAB1D4FD87DCBD01B716817DEF5730909A8F5D22C111E600BA2B
Chrome Cache Entry: 143	SVG Scalable Vector Graphics image	EE5C8D9FB6248C938FD0DC19370E90BD	D01A22720918B781338B5BBF9202B241A5F99EE4	04D29248EE3A13A074518C93A18D6EFC491BF1F298F9B87FC989A6AE4B9FAD7A
Chrome Cache Entry: 144	PNG image data, 252 x 70, 8-bit colormap, non-interlaced	0196DED24CB1DBD9BE7EA2401E009798	A057DF5AF354CFCC6AB96B46811267A6EBF58CF4	C28EF611FAA4D9EFB8E4884948B245F01D8795B366DFF25AE559F20D87BAB7C7
Chrome Cache Entry: 145	SVG Scalable Vector Graphics image	4E48046CE74F4B89D45037C90576BFAC	4A41B3B51ED787F7B33294202DA72220C7CD2C32	8E6DB1634F1812D42516778FC890010AA57F3E39914FB4803DF2C38ABBF56D93
Chrome Cache Entry: 146	HTML document, ASCII text	A34AC19F4AFAE63ADC5D2F7BC970C07F	A82190FC530C265AA40A045C21770D967F4767B8	D5A89E26BEAE0BC03AD18A0B0D1D3D75F87C32047879D25DA11970CB5C4662A3
Chrome Cache Entry: 147	PNG image data, 275 x 46, 8-bit colormap, non-interlaced	9FF52BEA4ADF4E6B3981F2EADD8E10B2	E36FA99FB8D600EBAEA348BE7FDBAAAAA0B42F1B	951BD96FAD65AD964A26DC846AE867AD91B47C90A339F3E5676150BF84E0AF7F
Chrome Cache Entry: 148	PNG image data, 843 x 535, 8-bit/color RGBA, non-interlaced	4C60B0C7926D26F76E7F2A6DD7E920BE	80E84E47C0FEA788510CED0621AA1BCFF52DB010	13D096FC2995A925CADCC9107E79961B152F5F962D4D215FC06486FF674880D8
Chrome Cache Entry: 149	PNG image data, 393 x 99, 8-bit colormap, non-interlaced	C1374515D45A8298432D0B6AD83A02A3	85B7767F096E57194E1EA28EB6D222E7C79272F4	E9106FA58CD2DCE980EBB2249EA21EF2CDDFA66B7D00B4F99971E4B09B0929FC
Chrome Cache Entry: 150	PNG image data, 322 x 35, 8-bit colormap, non-interlaced	660C3D1C54C75A0D837286BBD8A4156A	CDD6A09C52B814D6AEBFEEDD2DB5784A270F8EF0	8216F45D46E5424A67A2416D3A2B475152981BEE1BAE74BAAB4681D240BD325D
Chrome Cache Entry: 151	PNG image data, 275 x 46, 8-bit colormap, non-interlaced	E0677025FED71AB5B3A6F3D208E9CD07	380B14E09175E3FF1A96AACBB824424B7A33EE3E	62CB052213E053B88A9A21D9A54B61C4A59C26E5F7169541D9FE3B0B6ADBE1A1
Chrome Cache Entry: 152	PNG image data, 371 x 102, 8-bit colormap, non-interlaced	1F2D9F7768CB96EE4A4BBF734C1E1B16	D0CB800CA2109749ABDA1D3EC7765A4B9271D45D	96BC963FF06DBC4A8FCCB6BD20D44EB6C527F4387F070F8739FE7019B707390E
Chrome Cache Entry: 153	PNG image data, 277 x 35, 8-bit colormap, non-interlaced	8CF44A06D9014B99B5C44958446EC170	2A5E92482006B171692838D2BD7D1161E1147360	709C7E3B3652397841BEC6BDAD83DC493FDCACD03456736DB8CCCA651A058924
Chrome Cache Entry: 154	PNG image data, 371 x 102, 8-bit colormap, non-interlaced	1F2D9F7768CB96EE4A4BBF734C1E1B16	D0CB800CA2109749ABDA1D3EC7765A4B9271D45D	96BC963FF06DBC4A8FCCB6BD20D44EB6C527F4387F070F8739FE7019B707390E
Chrome Cache Entry: 155	SVG Scalable Vector Graphics image	BC3D32A696895F78C19DF6C717586A5D	9191CB156A30A3ED79C44C0A16C95159E8FF689D	0E88B6FCBB8591EDFD28184FA70A04B6DD3AF8A14367C628EDD7CABA32E58C68
Chrome Cache Entry: 156	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	5D72653EBD8F63AA763903425516C22A	43E342A633A2FB0E6D4F5A8DB50620A2BDD8D08B	898DCB99B5B3BFF6E04C0EC626BA188CB7C431160087FE7F1334E629919ACB0D
Chrome Cache Entry: 157	PNG image data, 275 x 46, 8-bit colormap, non-interlaced	C4921A5498E690F97E98864A868B2448	0E5B3CA39D73F77370960CC2CA33402909D19155	CE411FC03C4D8D13370E1A39542843215B2BF3C856B418FAAC7D20CD4E1B2874
Chrome Cache Entry: 158	PNG image data, 379 x 52, 8-bit colormap, non-interlaced	BFC9016F92E8E1383E3C493A300968B9	E333E7FC500505DAFFEA7CBCCE190FC9A9850979	40AF0513A60E87D026EA80C28A740741947F8F6C6B01DF3F7AD9860867619C1B
Chrome Cache Entry: 159	PNG image data, 275 x 46, 8-bit colormap, non-interlaced	73828E094E5C5729B6737820C6B59086	A7A5BB33279F757CEFECAF94DDD5463E84B47EC2	E33E3A4860370318DA6BA18F8CF9F897CE69DBDCF5616549349E85225C0C82C4
Chrome Cache Entry: 72	PNG image data, 843 x 535, 8-bit/color RGBA, non-interlaced	4C60B0C7926D26F76E7F2A6DD7E920BE	80E84E47C0FEA788510CED0621AA1BCFF52DB010	13D096FC2995A925CADCC9107E79961B152F5F962D4D215FC06486FF674880D8
Chrome Cache Entry: 73	PNG image data, 275 x 45, 8-bit colormap, non-interlaced	804FE3AD78F2326471E56B4D8B3462F2	615CC5CF204261E6F2FF01B15F281CDB007FBD68	2D286F3BC481D5FF19E50FF89A5D5323D68C5945F1EC6454EEB6BD1C0A1F98FC
Chrome Cache Entry: 74	SVG Scalable Vector Graphics image	BC3D32A696895F78C19DF6C717586A5D	9191CB156A30A3ED79C44C0A16C95159E8FF689D	0E88B6FCBB8591EDFD28184FA70A04B6DD3AF8A14367C628EDD7CABA32E58C68
Chrome Cache Entry: 75	ASCII text, with very long lines (50758)	67176C242E1BDC20603C878DEE836DF3	27A71B00383D61EF3C489326B3564D698FC1227C	56C12A125B021D21A69E61D7190CEFA168D6C28CE715265CEA1B3B0112D169C4
Chrome Cache Entry: 76	SVG Scalable Vector Graphics image	EE5C8D9FB6248C938FD0DC19370E90BD	D01A22720918B781338B5BBF9202B241A5F99EE4	04D29248EE3A13A074518C93A18D6EFC491BF1F298F9B87FC989A6AE4B9FAD7A
Chrome Cache Entry: 77	PNG image data, 250 x 70, 8-bit colormap, non-interlaced	AD0A17D990335334A8964B0744EA3D49	226E3CC53A26EC5B9D4E0B85EB162A584537FFC9	3E3554D948805C67C9151240116A0895C6E98A746A2002BC47BD025245849CDB
Chrome Cache Entry: 78	PNG image data, 389 x 99, 8-bit colormap, non-interlaced	7BBDEAF3038F4D86CE1CBCD4EE57B0E9	02096DDE709A3924073C6F726D7569739964406E	3068188D7F73BFB24CBB2E1E4E984306195CF62ADB0FBDAE498DF2BEFE60A43A
Chrome Cache Entry: 79	PNG image data, 410 x 34, 8-bit colormap, non-interlaced	B027161DA44AD0F9FA4AD206399F6A20	D7D09DAFB759C5A8C9C2D6767FAEFB0982C49E83	99B47DF6B9552BFA53DE71EC2E503069CC4CAF5262AFCF2DF8189A53A11F835A
Chrome Cache Entry: 80	ASCII text, with very long lines (31437)	0D5D998CC4F5B6C2616ABB84E1AB9D44	DAFCA53EE3D9E16C899E6CE9BBDE7C2F4844C4D5	72596872A75FF82D5D940477C327D292DC43D32DE0DB8556D2667BAB00940C74
Chrome Cache Entry: 81	PNG image data, 275 x 46, 8-bit colormap, non-interlaced	068B8721C85E314DBEB68A8374C90A38	4CFFE8B855C3633DC982ECA33089E70C96E6CFD4	7D66AA6558C740E857757B0BB92AF163F9D2243B0DF260C09981426763D1F8FB
Chrome Cache Entry: 82	PNG image data, 131 x 23, 8-bit colormap, non-interlaced	A2CAC8A5ACE4D6A6A9E7357737094875	3723A2FC2DD741D6CF6B643C0BF5DA79B00E14A3	CCBCDF6A8701C3B154842A0E1EEF2175E750BBECE517DC1142FE058DDA0393B7
Chrome Cache Entry: 83	PNG image data, 252 x 70, 8-bit colormap, non-interlaced	C1A90AA9B7C52502C94D94A4D916A070	EE48C81EFB4D0D5BC31C252F07A284FBE899C3F4	DFC5EB1E3ED8DB27AD329FC6ADF80A8264AFFCADD84A114AF519EFEA584EEBD5
Chrome Cache Entry: 84	PNG image data, 413 x 34, 8-bit colormap, non-interlaced	43C87E47CBF6F018697B1776EF284857	98FDB7153603DAADBF896AEBB5E612FE1A97FDD1	F762B6B6230CFF869BB9662CD577B5A1FEFFC144B191D6B46E8D38458A0E6FF1
Chrome Cache Entry: 85	PNG image data, 371 x 68, 8-bit colormap, non-interlaced	C7941942857B56A1816F83F8539BFB7F	340CE7E1D30841F8C5766D5641E77CA715A7A660	E2833EE858D4962E28B96BAE87F8DE371BA092D49F96E85465FFCCFA3E35E1A7
Chrome Cache Entry: 86	ASCII text, with very long lines (65536), with no line terminators	8E6B0F88563F9C33F78BCE65CF287DF7	EF7765CD2A7D64ED27DD7344702597AFF6F8C397	A7057BEBFFF43E7281CA31DA00D40BD88C8D02D1576B9C45891DD56A3853269A
Chrome Cache Entry: 87	ASCII text	93E9ABABA8CEEACBF853DFDAED39F41F	1D4E2241DC8CBC1C47168BA95B1C9D81651BA1AC	7986FAF0790287FAEF6029B4ECC5F9CC66FA728636E8D69A8E16367FB79D0147
Chrome Cache Entry: 88	PNG image data, 410 x 34, 8-bit colormap, non-interlaced	B027161DA44AD0F9FA4AD206399F6A20	D7D09DAFB759C5A8C9C2D6767FAEFB0982C49E83	99B47DF6B9552BFA53DE71EC2E503069CC4CAF5262AFCF2DF8189A53A11F835A
Chrome Cache Entry: 89	PNG image data, 371 x 99, 8-bit colormap, non-interlaced	4AF2288585F467E1B93A78D846D341BD	8E353E5735D24E56DD058656637F3CB638B84FC7	4376FFB0CD1540704158F486134C2B00B5FE25F1D1A009C46FD3A5CB9BD97651
Chrome Cache Entry: 90	PNG image data, 275 x 46, 8-bit colormap, non-interlaced	C4921A5498E690F97E98864A868B2448	0E5B3CA39D73F77370960CC2CA33402909D19155	CE411FC03C4D8D13370E1A39542843215B2BF3C856B418FAAC7D20CD4E1B2874
Chrome Cache Entry: 91	ASCII text, with very long lines (32065)	2F6B11A7E914718E0290410E85366FE9	69BB69E25CA7D5EF0935317584E6153F3FD9A88C	05B85D96F41FFF14D8F608DAD03AB71E2C1017C2DA0914D7C59291BAD7A54F8E
Chrome Cache Entry: 92	PNG image data, 6 x 29, 8-bit/color RGB, non-interlaced	DBF5F48CD386D2BF7099FC7198BD128D	9A364CCCEF96D2EDBC75F403874F81D56F14B080	196FFB47C53E68510D508896A8E8D3DEDE18A387569AEA9427EF4928C05ED971
Chrome Cache Entry: 93	PNG image data, 250 x 70, 8-bit colormap, non-interlaced	22A1003D2FE785CC9EB229CE874E2292	6D002EFF33D8F99706F3BBA745E49093A542086C	7EF3D8F42941FA81847B32E0F4BEA9F2DCEC530F8AF56B224BC1DB550843CF5C
Chrome Cache Entry: 94	PNG image data, 371 x 68, 8-bit colormap, non-interlaced	C7941942857B56A1816F83F8539BFB7F	340CE7E1D30841F8C5766D5641E77CA715A7A660	E2833EE858D4962E28B96BAE87F8DE371BA092D49F96E85465FFCCFA3E35E1A7
Chrome Cache Entry: 95	PNG image data, 252 x 70, 8-bit colormap, non-interlaced	C1A90AA9B7C52502C94D94A4D916A070	EE48C81EFB4D0D5BC31C252F07A284FBE899C3F4	DFC5EB1E3ED8DB27AD329FC6ADF80A8264AFFCADD84A114AF519EFEA584EEBD5
Chrome Cache Entry: 96	PNG image data, 275 x 46, 8-bit colormap, non-interlaced	E0677025FED71AB5B3A6F3D208E9CD07	380B14E09175E3FF1A96AACBB824424B7A33EE3E	62CB052213E053B88A9A21D9A54B61C4A59C26E5F7169541D9FE3B0B6ADBE1A1
Chrome Cache Entry: 97	HTML document, ASCII text, with CRLF line terminators	5A398150E7B37D35FC2A7A2F18F8D581	0492D212EFE66429FFDE5EFB0A91EB66AF451572	FF49C0F6F4380AD44F3A690FFEC9A9D907FB98233F09B997CC94F8ECB2AEC692
Chrome Cache Entry: 98	ASCII text, with very long lines (7043), with no line terminators	B6C202188699B897BB727A68EDD24665	FF3B891E06C983DCA277C1D7D874C8EB8084EB96	184A034CB9202937BF012AFF8C81E0747B7CA8F8F9E6115556FDB09D5BAEC419
Chrome Cache Entry: 99	PNG image data, 393 x 99, 8-bit colormap, non-interlaced	C1374515D45A8298432D0B6AD83A02A3	85B7767F096E57194E1EA28EB6D222E7C79272F4	E9106FA58CD2DCE980EBB2249EA21EF2CDDFA66B7D00B4F99971E4B09B0929FC

AV Detection

Antivirus detection for URL or domain

Source: https://denbi.icu/favicon.ico	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/cdn-cgi/challenge-platform/h/b/flow/ov1/226112177:1714040833:U4DRbnTZp4YDU1MNl1u-FnCR3OpoqYzBk-koO7KD038/879dfd0dff8c7bc9/67a6192f214b52a	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=879dfd0dff8c7bc9	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/x/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17efe	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/boot/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33568	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/ASSETS/img/sig-op.svg	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/APP-bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17ef8/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17ef9	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/1	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/ASSETS/img/m_.svg	Avira URL Cloud: Label: phishing
Source: https://denbi.icu	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/o/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c180c7	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/jq/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33565	Avira URL Cloud: Label: phishing
Source: https://denbi.icu/js/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33569	Avira URL Cloud: Label: phishing

Phishing

Yara detected HtmlPhish10

Source: Yara match

File source: 4.8.pages.csv, type: HTML

Phishing site detected (based on image similarity)

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

Matcher: Found strong image similarity, brand: MICROSOFT

Phishing site detected (based on logo match)

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

Matcher: Template: microsoft matched

Phishing site or detected (based on various text indicators)

Source: Chrome DOM: 1.1

OCR Text: DocuSign You have a wlding document to review and sign. REVIEW DOCUMENT

HTML body contains low number of good links

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

HTTP Parser: Number of links: 0

HTML page contains hidden URLs or javascript code

Source: https://denbi.icu/

HTTP Parser: Base64 decoded: https://denbi.icu/

HTML title does not match URL

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

HTTP Parser: Title: b89be2c4d1d50441c0d3ed089cc48af6662a3e597b823 does not match URL

Invalid 'sign-in options' or 'sign-up' link found

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

HTTP Parser: Invalid link: get a new Microsoft account

Source: https://control.mailblaze.com/index.php/survey/ps97367sjy584	HTTP Parser: No favicon
Source: https://denbi.icu/	HTTP Parser: No favicon
Source: https://denbi.icu/	HTTP Parser: No favicon
Source: https://denbi.icu/	HTTP Parser: No favicon
Source: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normal	HTTP Parser: No favicon
Source: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normal	HTTP Parser: No favicon
Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e	HTTP Parser: No favicon

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

HTTP Parser: No <meta name="author".. found

Source: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e

HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49804 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.63.206.91:443 -> 192.168.2.16:49806 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.16:49807 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49831 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.63.206.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.201.212.130
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10

Source: global traffic	HTTP traffic detected: GET /?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584 HTTP/1.1Host: content.amanet.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: content.amanet.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://content.amanet.org/?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /index.php/survey/ps97367sjy584 HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://content.amanet.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/css/mb_global.css?367 HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/js/mb_global.js?367 HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /fe/assets/files/customer/df893omgtsfb4/logo-330520.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/emoji-round/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /fe/assets/files/customer/df893omgtsfb4/logo-330520.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-emoji/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-rating/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/0.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://control.mailblaze.com/index.php/survey/ps97367sjy584Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-round/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/1.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/2.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/3.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/5.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET /assets/img/editor/rating/star-simple/4.png HTTP/1.1Host: control.mailblaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mwsid=ojmnl8v3q8pd8537vr30km1di3; csrf_token=6de2adc6cf5fdb746e90df4a3ef4a62f9566fa42s%3A88%3A%22WFlaM3JzTWhSVDN1VG5EaFh-TWVuaWdYS0liNlI5TWfya0vAOtEpFxWYeqFvpMa2zXnSpSABIWWXGs2x1ijsgw%3D%3D%22%3B
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: rochellejacob.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://control.mailblaze.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://rochellejacob.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=879dfd0dff8c7bc9 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://denbi.icu/?__cf_chl_rt_tk=yqZbO6ajJpEP_21m30NMI9fNkHzVmgLEc84UoXJCn5U-1714044495-0.0.1.1-1557Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://denbi.icusec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/226112177:1714040833:U4DRbnTZp4YDU1MNl1u-FnCR3OpoqYzBk-koO7KD038/879dfd0dff8c7bc9/67a6192f214b52a HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=879dfd191ba41385 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1682563341:1714040781:VVhv4n5s5Ch7l6kwUgd1KpeAeyZHXMIzoL570jS7kDA/879dfd191ba41385/ebd29cb8a01490a HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/879dfd191ba41385/1714044498327/ix4H4Iic5Mn8k5c HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/879dfd191ba41385/1714044498327/ix4H4Iic5Mn8k5c HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/pat/879dfd191ba41385/1714044498331/6af76a8fa43975a69098d47b00d3efeeea8e4a63640f88feb6dda8015588cfb3/q64-gj4mKW82-gq HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8f2vm/0x4AAAAAAADnPIDROrmt1Wwj/light/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=pKBlGl3A+M2K+Fg&MD=9c3roekX HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1682563341:1714040781:VVhv4n5s5Ch7l6kwUgd1KpeAeyZHXMIzoL570jS7kDA/879dfd191ba41385/ebd29cb8a01490a HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1682563341:1714040781:VVhv4n5s5Ch7l6kwUgd1KpeAeyZHXMIzoL570jS7kDA/879dfd191ba41385/ebd29cb8a01490a HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/226112177:1714040833:U4DRbnTZp4YDU1MNl1u-FnCR3OpoqYzBk-koO7KD038/879dfd0dff8c7bc9/67a6192f214b52a HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/?__cf_chl_tk=yqZbO6ajJpEP_21m30NMI9fNkHzVmgLEc84UoXJCn5U-1714044495-0.0.1.1-1557Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84e HTTP/1.1Host: denbi.icuConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Referer: https://denbi.icu/?__cf_chl_tk=yqZbO6ajJpEP_21m30NMI9fNkHzVmgLEc84UoXJCn5U-1714044495-0.0.1.1-1557Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /jq/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33565 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /boot/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33568 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /js/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5a33569 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /1 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /1 HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /APP-bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17ef8/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17ef9 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /o/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c180c7 HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /ASSETS/img/m_.svg HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /ASSETS/img/sig-op.svg HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /x/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17efe HTTP/1.1Host: denbi.icuConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://denbi.icu/7d719490e0f1a74c929a6fbc76695143662a3e597b84dLOG7d719490e0f1a74c929a6fbc76695143662a3e597b84eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /o/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c180c7 HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /ASSETS/img/m_.svg HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /ASSETS/img/sig-op.svg HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /x/bdd9318c6a6b8c7c6fe0973052ccb488662a3e5c17efe HTTP/1.1Host: denbi.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=zYCUuT2KuSF2g8ue_OUrSZbFGplqTBTBuu7xBzd2xvU-1714044495-1.0.1.1-qzx9jDf1vGzqJG4ieQO1vMx0uwijluwY6UPLFiFCQles7lxv9nSFdpsmBnUEwAz34HH2y2gm8qke11WDhyNJQw; PHPSESSID=bf3e2a3948c0ce5195523b5e9b042011
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=pKBlGl3A+M2K+Fg&MD=9c3roekX HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com

Source: global traffic	DNS traffic detected: DNS query: content.amanet.org
Source: global traffic	DNS traffic detected: DNS query: control.mailblaze.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: rochellejacob.com
Source: global traffic	DNS traffic detected: DNS query: denbi.icu
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com

Source: unknown

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 25 Apr 2024 11:28:08 GMTContent-Type: text/htmlContent-Length: 1245Connection: closeX-Content-Type-Options: nosniffX-Robots-Tag: noindex, nofollow
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 25 Apr 2024 11:28:15 GMTContent-Type: text/html; charset=UTF-8Content-Length: 16527Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Frame-Options: SAMEORIGINcf-mitigated: challengecf-chl-out: NZh4/mUONvgXWufRz0fswxVt+2Up0lOFMzvmJQgMevqyFItgIgtCS1Ck8uE+NzWunxXXOcShNhmzr5IMlVmBSI98mAfzj6afywvMDGIjmqJlKyjM4AVPffkOpvtnokywsikIH6mKAtq0YHxqxJECSw==$Dq7RFukIO3Mr6XltrxHFHQ==Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Expires: Thu, 01 Jan 1970 00:00:01 GMT
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 25 Apr 2024 11:28:16 GMTContent-Type: text/html; charset=UTF-8Content-Length: 16682Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Frame-Options: SAMEORIGINcf-mitigated: challengecf-chl-out: /AZsgcHZM25aQ5K+/LQ97Sq9FNGcnP8mDbpmxY0mtby8F3xrY3K6lPQv+Q1QUMc4utfKtqY8HViU+vUdmPU0MP6WqBaMrRLDjro3DN9qwl8QK9GiPKnLCGFouh3Ws4wQkx4XpIHI3ilCDZaaHZPP6w==$hZUJ1vDptFi5oLdSkUa9Zw==Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Expires: Thu, 01 Jan 1970 00:00:01 GMT
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 25 Apr 2024 11:28:18 GMTContent-Type: text/html; charset=UTF-8Content-Length: 16661Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Frame-Options: SAMEORIGINcf-mitigated: challengecf-chl-out: hBSO/HRkPICxBb4XLPI4LDw6CantUKrt2zkaLoimFrp3TuLlbSkHgroC8o9qIBKVOIAz/QsFZUxO8CcvbSDix+Oe29JmusxFoTsiCg6WOh1h8ZoZd2jkihXyfPO86U7OnEkfAwUdw7TukvvNCDznzA==$g2dXx9NaUZGavT5TMOMnyw==Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Expires: Thu, 01 Jan 1970 00:00:01 GMT
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 25 Apr 2024 11:28:24 GMTContent-Type: text/html; charset=UTF-8Content-Length: 16789Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Frame-Options: SAMEORIGINcf-mitigated: challengecf-chl-out: sa0xfGnFhyovqdU88S7PKXASJGb2RnjyTJOA6hJWCj4FnnW2MRuHpXUv7vIOC31emQitSScm+l/Hrf86DQG5tO3WXyzvFnvbo/D0cnR0Y+BHN1F3ztjC+lkDeRyucAj1NUgKHaGFeU9jHcMBwBSGcQ==$iHNyEArPUDjxc82xarnk3g==Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Expires: Thu, 01 Jan 1970 00:00:01 GMT
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 25 Apr 2024 11:28:28 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeCache-Control: max-age=14400CF-Cache-Status: EXPIREDReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B8tf4YRz9K02%2BLGxJv%2F2z0Vm9kBFp%2BZADlFBip1A7K1hMYhx8W%2BPB%2B79rDQO3jfuUg8H5mISsLkitVaBPz%2BIW1zCeTpGUKP2GF0yzwJwTQKLLIP2Xzvn%2FPLtMEc%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 879dfd5e6b7517f7-ATLalt-svc: h3=":443"; ma=86400

Source: chromecache_113.1.dr	String found in binary or memory: http://benalman.com/about/license/
Source: chromecache_113.1.dr	String found in binary or memory: http://benalman.com/projects/jquery-bbq-plugin/
Source: chromecache_113.1.dr	String found in binary or memory: http://benalman.com/projects/jquery-hashchange-plugin/
Source: chromecache_113.1.dr	String found in binary or memory: http://brandon.aaron.sh)
Source: chromecache_113.1.dr	String found in binary or memory: http://fronteed.com
Source: chromecache_113.1.dr	String found in binary or memory: http://git.io/arlzeA
Source: chromecache_113.1.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_113.1.dr	String found in binary or memory: http://mths.be/punycode
Source: chromecache_113.1.dr, chromecache_80.1.dr	String found in binary or memory: http://plugins.krajee.com/file-input
Source: chromecache_80.1.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_113.1.dr, chromecache_80.1.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0)
Source: chromecache_113.1.dr	String found in binary or memory: http://www.yiiframework.com/
Source: chromecache_113.1.dr	String found in binary or memory: http://www.yiiframework.com/license/
Source: chromecache_101.1.dr	String found in binary or memory: https://control.mailblaze.com/index.php/survey/ps97367sjy584
Source: chromecache_97.1.dr	String found in binary or memory: https://denbi.icu
Source: chromecache_80.1.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_80.1.dr	String found in binary or memory: https://fontawesome.com/license
Source: chromecache_80.1.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Titillium
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGIVzY4SY.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGIVzY4SY.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYqz_wNahGAdqQ43Rh_eZDkv_1w4A.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYqz_wNahGAdqQ43Rh_eZDlv_1w4A.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYqz_wNahGAdqQ43Rh_eZDrv_0.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_c6Dpp_k.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_cqDpp_k.woff2)
Source: chromecache_87.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2)
Source: chromecache_75.1.dr, chromecache_80.1.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_113.1.dr, chromecache_80.1.dr	String found in binary or memory: https://github.com/kartik-v/bootstrap-fileinput/blob/master/LICENSE.md
Source: chromecache_75.1.dr, chromecache_80.1.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_75.1.dr	String found in binary or memory: https://github.com/twbs/bootstrap/graphs/contributors)
Source: chromecache_113.1.dr, chromecache_80.1.dr	String found in binary or memory: https://github.com/uxsolutions/bootstrap-datepicker)
Source: chromecache_113.1.dr	String found in binary or memory: https://www.chartjs.org

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49688 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443

Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49804 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.63.206.91:443 -> 192.168.2.16:49806 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.201.212.130:443 -> 192.168.2.16:49807 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.16:49831 version: TLS 1.2

Source: classification engine

Classification label: mal76.phis.troj.win@21/145@24/11

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://content.amanet.org/?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 --field-trial-handle=1928,i,13018938029787253105,7239922200359380652,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 --field-trial-handle=1928,i,13018938029787253105,7239922200359380652,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Data Obfuscation

Yara detected Html Dropper

Source: Yara match

File source: 4.8.pages.csv, type: HTML

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1431576
Product:	CloudBasic
Start time:	13:27:39
Start date:	25.04.2024
Cookbook:	defaultwindowsinteractivecookbook.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://content.amanet.org/?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Data Obfuscation

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://content.amanet.org/?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Data Obfuscation

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://content.amanet.org/?m=CiGW.81UwlU3LD6ZH5M4ZoUXv03dAeWfC&r=https://control.mailblaze.com/index.php/survey/ps97367sjy584