Windows Analysis Report
https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl

Overview

General Information

Sample URL:	https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl
Analysis ID:	1432387
Infos:

Detection

Score:	48
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus detection for URL or domain

Classification

Signatures

AV Detection

Antivirus detection for URL or domain

Source: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai	Avira URL Cloud: Label: malware
Source: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/api.php	Avira URL Cloud: Label: malware
Source: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/favicon.ico	Avira URL Cloud: Label: malware
Source: https://wvijwiyjap.xn--90at1dc.xn--p1ai	Avira URL Cloud: Label: malware

Source: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl	HTTP Parser: No favicon
Source: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/GPauFfog/rsxWYORE/ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=	HTTP Parser: No favicon
Source: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM#+&_x_tr_sl=KyfoXVwc&_x_tr_tl=KjEjYzeF#8654:8654	HTTP Parser: No favicon
Source: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM#+&_x_tr_sl=KyfoXVwc&_x_tr_tl=KjEjYzeF#8654:8654	HTTP Parser: No favicon
Source: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM#+&_x_tr_sl=KyfoXVwc&_x_tr_tl=KjEjYzeF#8654:8654	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b&co=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&s=2BNqQRFdEF1GslQOKoko3a8uVuFIxpg8c82277SL89A7-PHS3ElSw6fV8vgzB4Xpkkz_veIhgwP5OdS7rvIeaY405TKQb11MxSAWnP9JCOaD2kOplI2AJyYafdyujFGmUI48Tkan_F2SnZp12eXCRV1ZOIKcNa5wD1zHzN8ZbLdE5RcuyUK1XGE1KQeHG0gCuQMuwzxORvtRVxgnJpq16UWIvmIu22GxUfDtB1nCbO9j0za2uP4o_IPJSyaMaDCUGUQGHPNUz6fI5Lp3ups022LC5yWoFu4&cb=yzlvonrgl3v6	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b&co=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&s=2BNqQRFdEF1GslQOKoko3a8uVuFIxpg8c82277SL89A7-PHS3ElSw6fV8vgzB4Xpkkz_veIhgwP5OdS7rvIeaY405TKQb11MxSAWnP9JCOaD2kOplI2AJyYafdyujFGmUI48Tkan_F2SnZp12eXCRV1ZOIKcNa5wD1zHzN8ZbLdE5RcuyUK1XGE1KQeHG0gCuQMuwzxORvtRVxgnJpq16UWIvmIu22GxUfDtB1nCbO9j0za2uP4o_IPJSyaMaDCUGUQGHPNUz6fI5Lp3ups022LC5yWoFu4&cb=yzlvonrgl3v6	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.4:49759 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 72.21.81.240
Source: unknown	TCP traffic detected without corresponding DNS query: 72.21.81.240
Source: unknown	TCP traffic detected without corresponding DNS query: 72.21.81.240
Source: unknown	TCP traffic detected without corresponding DNS query: 72.21.81.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai.translate.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /project_modules/max_1200/e8605269321565.5ba1e199ba5a8.gif HTTP/1.1Host: mir-s3-cdn-cf.behance.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jquery-3.5.1.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /translate_a/element.js?cb=gtElInit&hl&client=wt HTTP/1.1Host: translate.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /websitetranslationui?parent=https%3A%2F%2Fwvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog&pfu=https%3A%2F%2Fwvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog%2Fhdiw%2Fzqteil%2Fefdfdqgb%3FZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20%3D%2B%26_x_tr_sch%3Dhttp%26_x_tr_sl%3Ddosderma%26_x_tr_tl%3Dbempjhrl&u=http%3A%2F%2Fwvijwiyjap.%D1%8F%D0%BB%D1%8E%D0%B1.%D1%80%D1%84%2Fhdiw%2Fzqteil%2Fefdfdqgb%3FZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20%3D%2B&sl=dosderma&tl=bempjhrl&opu=https%3A%2F%2Ftranslate.google.com%2Fwebsite%3Fsl%3Ddosderma%26tl%3Dbempjhrl%26hl%26u%3Dhttp%3A%2F%2Fwvijwiyjap.%25D1%258F%25D0%25BB%25D1%258E%25D0%25B1.%25D1%2580%25D1%2584%2Fhdiw%2Fzqteil%2Fefdfdqgb%3FZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20%253D%252B%26anno%3D2&client=tr HTTP/1.1Host: translate.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /GPauFfog/rsxWYORE/ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20= HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /project_modules/max_1200/e8605269321565.5ba1e199ba5a8.gif HTTP/1.1Host: mir-s3-cdn-cf.behance.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /jquery-3.5.1.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /project_modules/max_1200/e8605269321565.5ba1e199ba5a8.gif HTTP/1.1Host: mir-s3-cdn-cf.behance.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/GPauFfog/rsxWYORE/ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=tskclra6sm8igoo4v2e8nkds4f
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w
Source: global traffic	HTTP traffic detected: GET /sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM HTTP/1.1Host: www.google.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUMAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /api.php HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=tskclra6sm8igoo4v2e8nkds4f
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=tskclra6sm8igoo4v2e8nkds4f
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b&co=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&s=2BNqQRFdEF1GslQOKoko3a8uVuFIxpg8c82277SL89A7-PHS3ElSw6fV8vgzB4Xpkkz_veIhgwP5OdS7rvIeaY405TKQb11MxSAWnP9JCOaD2kOplI2AJyYafdyujFGmUI48Tkan_F2SnZp12eXCRV1ZOIKcNa5wD1zHzN8ZbLdE5RcuyUK1XGE1KQeHG0gCuQMuwzxORvtRVxgnJpq16UWIvmIu22GxUfDtB1nCbO9j0za2uP4o_IPJSyaMaDCUGUQGHPNUz6fI5Lp3ups022LC5yWoFu4&cb=yzlvonrgl3v6 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUMAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b&co=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&s=2BNqQRFdEF1GslQOKoko3a8uVuFIxpg8c82277SL89A7-PHS3ElSw6fV8vgzB4Xpkkz_veIhgwP5OdS7rvIeaY405TKQb11MxSAWnP9JCOaD2kOplI2AJyYafdyujFGmUI48Tkan_F2SnZp12eXCRV1ZOIKcNa5wD1zHzN8ZbLdE5RcuyUK1XGE1KQeHG0gCuQMuwzxORvtRVxgnJpq16UWIvmIu22GxUfDtB1nCbO9j0za2uP4o_IPJSyaMaDCUGUQGHPNUz6fI5Lp3ups022LC5yWoFu4&cb=yzlvonrgl3v6Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b&co=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&s=2BNqQRFdEF1GslQOKoko3a8uVuFIxpg8c82277SL89A7-PHS3ElSw6fV8vgzB4Xpkkz_veIhgwP5OdS7rvIeaY405TKQb11MxSAWnP9JCOaD2kOplI2AJyYafdyujFGmUI48Tkan_F2SnZp12eXCRV1ZOIKcNa5wD1zHzN8ZbLdE5RcuyUK1XGE1KQeHG0gCuQMuwzxORvtRVxgnJpq16UWIvmIu22GxUfDtB1nCbO9j0za2uP4o_IPJSyaMaDCUGUQGHPNUz6fI5Lp3ups022LC5yWoFu4&cb=yzlvonrgl3v6Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUMAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUMAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/payload?p=06AFcWeA5SYlORcKxJ5egyGh9El91Jfki6_IrmloeyiYSC2SMfUkrI0gAJbTNB6oIBRBdYK8CGKfO0ms_2MwJNM7zw-Z84kF3hBuChl0N2_vit9e5WiWFqjRy8uxY8J8MQAD5OGVvNDgzuO-vpke6P93oUFVp9ogCu-yXyDz5dwKQPYy6aUvnT-puDtzdyhpsLxDaaU-joRNugBvDU1gt2jgLh2oTJYn7-aA&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1bAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AEdsM9M0OYEEyvm0XW7l8rNFZN5ZJ0CNv9j13Zi66wI9o6hK5oPvYvzJUxka3smTU050FIkuatgsWFOhXiue1MM; NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/reload?k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AEdsM9M0OYEEyvm0XW7l8rNFZN5ZJ0CNv9j13Zi66wI9o6hK5oPvYvzJUxka3smTU050FIkuatgsWFOhXiue1MM; NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/payload?p=06AFcWeA5SYlORcKxJ5egyGh9El91Jfki6_IrmloeyiYSC2SMfUkrI0gAJbTNB6oIBRBdYK8CGKfO0ms_2MwJNM7zw-Z84kF3hBuChl0N2_vit9e5WiWFqjRy8uxY8J8MQAD5OGVvNDgzuO-vpke6P93oUFVp9ogCu-yXyDz5dwKQPYy6aUvnT-puDtzdyhpsLxDaaU-joRNugBvDU1gt2jgLh2oTJYn7-aA&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AEdsM9M0OYEEyvm0XW7l8rNFZN5ZJ0CNv9j13Zi66wI9o6hK5oPvYvzJUxka3smTU050FIkuatgsWFOhXiue1MM; NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g

Source: chromecache_90.2.dr

String found in binary or memory: ff=u(["https://sandbox.google.com/tools/feedback/"]),gf=u(["https://www.google.cn/tools/feedback/"]),hf=u(["https://help.youtube.com/tools/feedback/"]),jf=u(["https://asx-frontend-staging.corp.google.com/inapp/"]),kf=u(["https://asx-frontend-staging.corp.google.com/tools/feedback/"]),lf=u(["https://localhost.corp.google.com/inapp/"]),mf=u(["https://localhost.proxy.googlers.com/inapp/"]),nf=S(Pe),of=[S(Qe),S(Re)],pf=[S(Se),S(Te),S(Ue),S(Ve),S(We),S(Xe),S(Ye),S(Ze),S($e),S(af)],qf=[S(bf),S(cf)],rf= equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog
Source: global traffic	DNS traffic detected: DNS query: mir-s3-cdn-cf.behance.net
Source: global traffic	DNS traffic detected: DNS query: code.jquery.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: translate.google.com
Source: global traffic	DNS traffic detected: DNS query: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai

Source: unknown

HTTP traffic detected: POST /api.php HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1aiConnection: keep-aliveContent-Length: 54sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*Content-Type: application/x-www-form-urlencoded; charset=UTF-8X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1aiSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/GPauFfog/rsxWYORE/ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=tskclra6sm8igoo4v2e8nkds4f

Source: chromecache_90.2.dr	String found in binary or memory: http://localhost.corp.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: http://localhost.proxy.googlers.com/inapp/
Source: chromecache_84.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_110.2.dr	String found in binary or memory: https://apis.google.com/js/api.js
Source: chromecache_90.2.dr	String found in binary or memory: https://apis.google.com/js/client.js
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=378607
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=449857
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=470258
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=589347
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.jquery.com/ticket/12359
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.jquery.com/ticket/13378
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.jquery.com/ticket/13393
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.jquery.com/ticket/4833
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=136851
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=137337
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=29084
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=687787
Source: chromecache_75.2.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_75.2.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_80.2.dr, chromecache_97.2.dr, chromecache_111.2.dr, chromecache_85.2.dr	String found in binary or memory: https://code.jquery.com/jquery-3.5.1.js
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/CSS/display
Source: chromecache_75.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_75.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_75.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://drafts.csswg.org/cssom/#common-serializing-idioms
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://drafts.csswg.org/cssom/#resolved-values
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback-pa.clients6.google.com
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/annotator.css
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/render_frame2.html
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback2-test.corp.google.com/inapp/%
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback2-test.corp.google.com/tools/feedback/%
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/inapp/%
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/tools/feedback/%
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://github.com/jquery/jquery/pull/557)
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://github.com/jquery/sizzle/pull/225
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://github.com/jrburke/requirejs/wiki/Updating-existing-libraries#wiki-anon
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://github.com/whatwg/html/issues/2369
Source: chromecache_90.2.dr	String found in binary or memory: https://gstatic.com/uservoice/surveys/resources/
Source: chromecache_90.2.dr	String found in binary or memory: https://help.youtube.com/tools/feedback/
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/#nonce-attributes
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/#strip-and-collapse-whitespace
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/forms.html#category-listed
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/forms.html#concept-fe-disabled
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/forms.html#concept-option-disabled
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/scripting.html#selector-disabled
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/scripting.html#selector-enabled
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/syntax.html#attributes-2
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://infra.spec.whatwg.org/#strip-and-collapse-ascii-whitespace
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://jquery.com/
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://jquery.org/license
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://js.foundation/
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://jsperf.com/getall-vs-sizzle/2
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://jsperf.com/thor-indexof-vs-for/5
Source: chromecache_90.2.dr	String found in binary or memory: https://localhost.corp.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://localhost.proxy.googlers.com/inapp/
Source: chromecache_80.2.dr, chromecache_97.2.dr, chromecache_111.2.dr, chromecache_85.2.dr	String found in binary or memory: https://mir-s3-cdn-cf.behance.net/project_modules/max_1200/e8605269321565.5ba1e199ba5a8.gif
Source: chromecache_104.2.dr	String found in binary or memory: https://play.google.com
Source: chromecache_91.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-48
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-54
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-57
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-59
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-61
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-64
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-75
Source: chromecache_75.2.dr	String found in binary or memory: https://recaptcha.net
Source: chromecache_90.2.dr	String found in binary or memory: https://sandbox.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://sandbox.google.com/inapp/%
Source: chromecache_90.2.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/%
Source: chromecache_90.2.dr	String found in binary or memory: https://scone-pa.clients6.google.com
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://sizzlejs.com/
Source: chromecache_90.2.dr	String found in binary or memory: https://stagingqual-feedback-pa-googleapis.sandbox.google.com
Source: chromecache_104.2.dr	String found in binary or memory: https://support.google.com
Source: chromecache_90.2.dr, chromecache_104.2.dr	String found in binary or memory: https://support.google.com/
Source: chromecache_90.2.dr	String found in binary or memory: https://support.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://support.google.com/inapp/%
Source: chromecache_75.2.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_75.2.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_75.2.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_75.2.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_90.2.dr	String found in binary or memory: https://test-scone-pa-googleapis.sandbox.google.com
Source: chromecache_104.2.dr	String found in binary or memory: https://translate-autopush.corp.google.com/websitetranslationui
Source: chromecache_104.2.dr	String found in binary or memory: https://translate-daily-1.corp.google.com/websitetranslationui
Source: chromecache_104.2.dr	String found in binary or memory: https://translate-dev.corp.google.com/websitetranslationui
Source: chromecache_84.2.dr	String found in binary or memory: https://translate.google.com
Source: chromecache_80.2.dr	String found in binary or memory: https://translate.google.com/translate_a/element.js?cb=gtElInit&hl&client=wt
Source: chromecache_80.2.dr	String found in binary or memory: https://translate.google.com/website?sl=dosderma&tl=bempjhrl&hl&u=http://wvijwiyjap.%D1%
Source: chromecache_104.2.dr	String found in binary or memory: https://translate.google.com/websitetranslationui
Source: chromecache_84.2.dr	String found in binary or memory: https://translate.googleapis.com/element/log?format=json&hasfast=true
Source: chromecache_110.2.dr, chromecache_120.2.dr	String found in binary or memory: https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://web.archive.org/web/20100324014747/http://blindsignals.com/index.php/2009/07/jquery-delay/
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://web.archive.org/web/20141116233347/http://fluidproject.org/blog/2008/01/09/getting-setting-a
Source: chromecache_97.2.dr, chromecache_111.2.dr, chromecache_85.2.dr	String found in binary or memory: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai
Source: chromecache_80.2.dr	String found in binary or memory: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog
Source: chromecache_80.2.dr	String found in binary or memory: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdW
Source: chromecache_80.2.dr	String found in binary or memory: https://wvijwiyjap.xn--90at1dc.xn--p1ai
Source: chromecache_75.2.dr	String found in binary or memory: https://www.apache.org/licenses/
Source: chromecache_90.2.dr	String found in binary or memory: https://www.google.cn/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://www.google.cn/tools/feedback/%
Source: chromecache_104.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_84.2.dr	String found in binary or memory: https://www.google.com/images/cleardot.gif
Source: chromecache_95.2.dr, chromecache_75.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_84.2.dr	String found in binary or memory: https://www.google.com/support/translate
Source: chromecache_90.2.dr, chromecache_104.2.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: chromecache_90.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/%
Source: chromecache_90.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/help_panel_binary.js
Source: chromecache_75.2.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__.
Source: chromecache_80.2.dr	String found in binary or memory: https://www.gstatic.com/_/translate_http/_/js/k=translate_http.tr.en_US.RKFQ23Bs3nc.O/am=wA/d=1/exm=
Source: chromecache_80.2.dr	String found in binary or memory: https://www.gstatic.com/_/translate_http/_/js/k=translate_http.tr.en_US.RKFQ23Bs3nc.O/am=wA/d=1/rs=A
Source: chromecache_104.2.dr	String found in binary or memory: https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
Source: chromecache_84.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
Source: chromecache_84.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
Source: chromecache_84.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/1x/translate_24dp.png
Source: chromecache_95.2.dr, chromecache_76.2.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
Source: chromecache_104.2.dr	String found in binary or memory: https://www.gstatic.com/uservoice/feedback/client/web/
Source: chromecache_90.2.dr	String found in binary or memory: https://www.gstatic.com/uservoice/surveys/resources/

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443

Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.4:49759 version: TLS 1.2

Source: classification engine

Classification label: mal48.win@19/84@24/13

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2564 --field-trial-handle=2524,i,14151249613376846125,12011158937383823995,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2564 --field-trial-handle=2524,i,14151249613376846125,12011158937383823995,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.67.187.112	unknown	United States	13335	CLOUDFLARENETUS	false
104.21.40.165	wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai	United States	13335	CLOUDFLARENETUS	false
151.101.130.137	unknown	United States	54113	FASTLYUS	false
142.251.40.110	www3.l.google.com	United States	15169	GOOGLEUS	false
142.251.32.100	unknown	United States	15169	GOOGLEUS	false
18.164.116.64	d1j922qg8gqp2e.cloudfront.net	United States	3	MIT-GATEWAYSUS	false
151.101.66.137	code.jquery.com	United States	54113	FASTLYUS	false
18.164.116.119	unknown	United States	3	MIT-GATEWAYSUS	false
142.251.40.164	www.google.com	United States	15169	GOOGLEUS	false
142.250.65.206	unknown	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.65.225	wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.4

Contacted Domains

Name	IP	Active
code.jquery.com	151.101.66.137	true
www3.l.google.com	142.251.40.110	true
www.google.com	142.251.40.164	true
wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai	104.21.40.165	true
d1j922qg8gqp2e.cloudfront.net	18.164.116.64	true
wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog	142.250.65.225	true
fp2e7a.wpc.phicdn.net	192.229.211.108	true
windowsupdatebg.s.llnwi.net	69.164.46.0	true
translate.google.com	unknown	unknown
mir-s3-cdn-cf.behance.net	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/api.php	false	Avira URL Cloud: malware	unknown
about:blank	false	Avira URL Cloud: safe	low
https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl	false		unknown
https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/favicon.ico	false	Avira URL Cloud: malware	unknown
https://www.google.com/favicon.ico	false		high
https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM#+&_x_tr_sl=KyfoXVwc&_x_tr_tl=KjEjYzeF#8654:8654	false		high
https://translate.google.com/websitetranslationui?parent=https%3A%2F%2Fwvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog&pfu=https%3A%2F%2Fwvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog%2Fhdiw%2Fzqteil%2Fefdfdqgb%3FZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20%3D%2B%26_x_tr_sch%3Dhttp%26_x_tr_sl%3Ddosderma%26_x_tr_tl%3Dbempjhrl&u=http%3A%2F%2Fwvijwiyjap.%D1%8F%D0%BB%D1%8E%D0%B1.%D1%80%D1%84%2Fhdiw%2Fzqteil%2Fefdfdqgb%3FZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20%3D%2B&sl=dosderma&tl=bempjhrl&opu=https%3A%2F%2Ftranslate.google.com%2Fwebsite%3Fsl%3Ddosderma%26tl%3Dbempjhrl%26hl%26u%3Dhttp%3A%2F%2Fwvijwiyjap.%25D1%258F%25D0%25BB%25D1%258E%25D0%25B1.%25D1%2580%25D1%2584%2Fhdiw%2Fzqteil%2Fefdfdqgb%3FZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20%253D%252B%26anno%3D2&client=tr	false		high
https://www.google.com/	false		high
https://www.google.com/recaptcha/api2/reload?k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b	false		high
https://www.google.com/recaptcha/api2/payload?p=06AFcWeA5SYlORcKxJ5egyGh9El91Jfki6_IrmloeyiYSC2SMfUkrI0gAJbTNB6oIBRBdYK8CGKfO0ms_2MwJNM7zw-Z84kF3hBuChl0N2_vit9e5WiWFqjRy8uxY8J8MQAD5OGVvNDgzuO-vpke6P93oUFVp9ogCu-yXyDz5dwKQPYy6aUvnT-puDtzdyhpsLxDaaU-joRNugBvDU1gt2jgLh2oTJYn7-aA&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b	false		high
https://translate.google.com/translate_a/element.js?cb=gtElInit&hl&client=wt	false		high
https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/GPauFfog/rsxWYORE/ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=	false		unknown
https://www.google.com/recaptcha/api.js	false		high
https://code.jquery.com/jquery-3.5.1.js	false		high
https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM	false		high
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m	false		high

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 100	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced	EF9941290C50CD3866E2BA6B793F010D	4736508C795667DCEA21F8D864233031223B7832	1B9EFB22C938500971AAC2B2130A475FA23684DD69E43103894968DF83145B8A
Chrome Cache Entry: 101	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	0F2A4639B8A4CB30C76E8333C00D30A6	57E273A270BB864970D747C74B3F0A7C8E515B13	44B988703019CD6BFA86C91840FECF2A42B611B364E3EEA2F4EB63BF62714E98
Chrome Cache Entry: 102	GIF image data, version 89a, 800 x 600	000E707A2DF67AE91B50C6C1CF885189	D01F99D1CB0A2DC8B54E8203E3FB9D175DECB1BB	1CF2CCB9C27254CAC6EE70622A2776AB3AEB7C7708557DDAF3134963A07A8687
Chrome Cache Entry: 103	GIF image data, version 89a, 800 x 600	000E707A2DF67AE91B50C6C1CF885189	D01F99D1CB0A2DC8B54E8203E3FB9D175DECB1BB	1CF2CCB9C27254CAC6EE70622A2776AB3AEB7C7708557DDAF3134963A07A8687
Chrome Cache Entry: 104	ASCII text, with very long lines (2073)	D4B58BEEB899A4E5B649E9710B80FF98	A5F67471FFE589BD76D6FAFD26A047A6C478A96D	A20E924780654B054CD4EC0645FC24C3A0E06EB81A023DCB67297D008B6448D8
Chrome Cache Entry: 105	ASCII text, with very long lines (56412), with no line terminators	2C00B9F417B688224937053CD0C284A5	17B4C18EBC129055DD25F214C3F11E03E9DF2D82	1E754B107428162C65A26D399B66DB3DAAEA09616BF8620D9DE4BC689CE48EED
Chrome Cache Entry: 106	JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x450, components 3	A7B1BDCC5D91C67AEE9BA5E732E41439	D67B092432978E75A3D047AB8B24E1EF293AF1B9	734D9906B6A845C4492635AA8954AE4D9271CE0895759DB12878F635B2FA1456
Chrome Cache Entry: 107	SVG Scalable Vector Graphics image	554640F465EB3ED903B543DAE0A1BCAC	E0E6E2C8939008217EB76A3B3282CA75F3DC401A	99BF4AA403643A6D41C028E5DB29C79C17CBC815B3E10CD5C6B8F90567A03E52
Chrome Cache Entry: 108	GIF image data, version 89a, 64 x 64	CAD066AA5000D5318EC2AEB1FF09FC92	874E026942B1621477EC77C0DC2443B8222E19D5	F1C19DEF8ABE99D6E922755FC028D2CF35BF3419B020D7F955F1C202D2C7936C
Chrome Cache Entry: 109	Web Open Font Format (Version 2), TrueType, length 15340, version 1.0	19B7A0ADFDD4F808B53AF7E2CE2AD4E5	81D5D4C7B5035AD10CCE63CF7100295E0C51FDDA	C912A9CE0C3122D4B2B29AD26BFE06B0390D1A5BDAA5D6128692C0BEFD1DFBBD
Chrome Cache Entry: 110	ASCII text, with very long lines (2473)	C262F84F1205F789D58AD72166156097	ECDBBB7F13D62B3301F20A8A7B0C74329F2B4643	6EB7D63E8A8E922862C4FD6C2102E39A967F58EF814BF23B228B86DD2C3C8364
Chrome Cache Entry: 111	HTML document, ASCII text	2E7278708D3C04543AFB6C03F4E93A0E	12B468223F394BFF0FB8DA85086899BDA8957A2F	9F60989ED2B3E48FED8BA9642A085AC71F797310AC6F08898DF9E891EE4909D7
Chrome Cache Entry: 112	ASCII text	23C7C5D2D1317508E807A6C7F777D6ED	AD16C4A132AD2A03B4951185FED46D55397B5E88	416A3B2C3BF16D64F6B5B6D0F7B079DF2267614DD6847FC2F3271B4409233C37
Chrome Cache Entry: 113	GIF image data, version 89a, 800 x 600	000E707A2DF67AE91B50C6C1CF885189	D01F99D1CB0A2DC8B54E8203E3FB9D175DECB1BB	1CF2CCB9C27254CAC6EE70622A2776AB3AEB7C7708557DDAF3134963A07A8687
Chrome Cache Entry: 114	Web Open Font Format (Version 2), TrueType, length 15552, version 1.0	285467176F7FE6BB6A9C6873B3DAD2CC	EA04E4FF5142DDD69307C183DEF721A160E0A64E	5A8C1E7681318CAA29E9F44E8A6E271F6A4067A2703E9916DFD4FE9099241DB7
Chrome Cache Entry: 115	Web Open Font Format (Version 2), TrueType, length 15344, version 1.0	5D4AEB4E5F5EF754E307D7FFAEF688BD	06DB651CDF354C64A7383EA9C77024EF4FB4CEF8	3E253B66056519AA065B00A453BAC37AC5ED8F3E6FE7B542E93A9DCDCC11D0BC
Chrome Cache Entry: 116	SVG Scalable Vector Graphics image	554640F465EB3ED903B543DAE0A1BCAC	E0E6E2C8939008217EB76A3B3282CA75F3DC401A	99BF4AA403643A6D41C028E5DB29C79C17CBC815B3E10CD5C6B8F90567A03E52
Chrome Cache Entry: 117	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	88E0F42C9FA4F94AA8BCD54D1685C180	5AD9D47A49B82718BAA3BE88550A0B3350270C42	89C62095126FCA89EA1511CF35B49B8306162946B0C26D6F60C5506C51D85992
Chrome Cache Entry: 118	Web Open Font Format (Version 2), TrueType, length 31568, version 1.0	EB11BFB369775FF0739DABB3A5F379CC	2EEBAEA2F7080C0B256FBFC70AB91473243AF0F8	2E0BDC192134BB3950A1BA4C1148901E39EBD8D2D01F64EF23106E90A9F771B0
Chrome Cache Entry: 119	HTML document, ASCII text	B54D0452E2FDB8C0D91C455D1C5495F9	DDD85730B9CB4CB9905B1D7E7643F595D2F33CB8	F4138D99EC6E17514BB87CEEAD1C1D2A204219C970864FC85BFF00949EE18082
Chrome Cache Entry: 120	ASCII text, with very long lines (2064)	C4847CF1CB6FD15F848643ADE37FCF90	5F0178548FFDB37A98FAF34A2D81EE6DD46439A0	F2EA38D4EAEBBE5DF73DF9B9687E828D4FD4A734ACE87FD08E8F0AA1DA552585
Chrome Cache Entry: 121	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	88E0F42C9FA4F94AA8BCD54D1685C180	5AD9D47A49B82718BAA3BE88550A0B3350270C42	89C62095126FCA89EA1511CF35B49B8306162946B0C26D6F60C5506C51D85992
Chrome Cache Entry: 122	ASCII text, with no line terminators	AFB69DF47958EB78B4E941270772BD6A	D9FE9A625E906FF25C1F165E7872B1D9C731E78E	874809FB1235F80831B706B9E9B903D80BD5662D036B7712CC76F8C684118878
Chrome Cache Entry: 74	GIF image data, version 89a, 64 x 64	CAD066AA5000D5318EC2AEB1FF09FC92	874E026942B1621477EC77C0DC2443B8222E19D5	F1C19DEF8ABE99D6E922755FC028D2CF35BF3419B020D7F955F1C202D2C7936C
Chrome Cache Entry: 75	ASCII text, with very long lines (631)	E2E79D6B927169D9E0E57E3BAECC0993	1299473950B2999BA0B7F39BD5E4A60EAFD1819D	231336ED913A5EBD4445B85486E053CAF2B81CAB91318241375F3F7A245B6C6B
Chrome Cache Entry: 76	ASCII text, with no line terminators	284B36421A1CF446F32CB8F7987B1091	EB14D6298C9DA3FB26D75B54C087EA2DF9F3F05F	94AB2BE973685680D0BE9C08D4E1A7465F3C09053CF631126BD33F49CC2F939B
Chrome Cache Entry: 77	GIF image data, version 89a, 64 x 64	672BFA55B918B562F6F1DE38EDDFBC93	481B9A02CD93EC8B3D03A386AF43312352D1D6A4	6F260BF3EACB674168155CFB377A8DF06DA619FD7CC6B62F406ACE0113F81ECC
Chrome Cache Entry: 78	SVG Scalable Vector Graphics image	67C66ECFC5021AE0CFBDF32BDEE91688	2D7B977111E97DF855D96DAF2E5CA7F07EE8CC43	99294FAD3E114681D7504CAD26B5D425BF7BB98C82BB4ABCE603E145BA2E3E17
Chrome Cache Entry: 79	SVG Scalable Vector Graphics image	2BD5C073A88B83ED74DB88282A56DDFB	D0EBFC376F8C6A44A8D4CD216817DCD7D0C33650	AB5C23A05E39DEED14D9D8262B0DCE9F024F86105A27196CAD37D14A3F516E09
Chrome Cache Entry: 80	HTML document, Unicode text, UTF-8 text, with very long lines (1092)	02F5B7B29E046C917A1830AC14517B3C	81F65E221BDCAC550CE1BC13751117F37CA6B10B	6E52C5CDBB4F3A5C899A14F569C42C73F48018BD54B04750B3783B360DBBD6C8
Chrome Cache Entry: 81	MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	F3418A443E7D841097C714D69EC4BCB8	49263695F6B0CDD72F45CF1B775E660FDC36C606	6DA5620880159634213E197FAFCA1DDE0272153BE3E4590818533FAB8D040770
Chrome Cache Entry: 82	ASCII text, with very long lines (22367), with no line terminators	B0B46B807EEE39AF0AAD8F5FEFC9B3A2	0FB04F15599BC0844063A6AB776C86E73CB9FBFC	71CA2652E2B3FFD3C0EC966958604714CE6C7AF01D961B44ADC438518EB58CB3
Chrome Cache Entry: 83	JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x450, components 3	A7B1BDCC5D91C67AEE9BA5E732E41439	D67B092432978E75A3D047AB8B24E1EF293AF1B9	734D9906B6A845C4492635AA8954AE4D9271CE0895759DB12878F635B2FA1456
Chrome Cache Entry: 84	ASCII text, with very long lines (2297)	12487A9B7A04B957648956D8E195E2FA	DB8C446B1516D76BE812BA7BC1EBF455C090EF01	B005774FD9D7DDF333C0C90B728C59DB1A08BE979A9D64A267E00C5FC37686C2
Chrome Cache Entry: 85	HTML document, ASCII text	2E7278708D3C04543AFB6C03F4E93A0E	12B468223F394BFF0FB8DA85086899BDA8957A2F	9F60989ED2B3E48FED8BA9642A085AC71F797310AC6F08898DF9E891EE4909D7
Chrome Cache Entry: 86	SVG Scalable Vector Graphics image	67C66ECFC5021AE0CFBDF32BDEE91688	2D7B977111E97DF855D96DAF2E5CA7F07EE8CC43	99294FAD3E114681D7504CAD26B5D425BF7BB98C82BB4ABCE603E145BA2E3E17
Chrome Cache Entry: 87	ASCII text	23C7C5D2D1317508E807A6C7F777D6ED	AD16C4A132AD2A03B4951185FED46D55397B5E88	416A3B2C3BF16D64F6B5B6D0F7B079DF2267614DD6847FC2F3271B4409233C37
Chrome Cache Entry: 88	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	0F2A4639B8A4CB30C76E8333C00D30A6	57E273A270BB864970D747C74B3F0A7C8E515B13	44B988703019CD6BFA86C91840FECF2A42B611B364E3EEA2F4EB63BF62714E98
Chrome Cache Entry: 89	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	07BF314AAB04047B9E9A959EE6F63DA3	17BEF6602672E2FD9956381E01356245144003E5	55EAF62CB05DA20088DC12B39D7D254D046CB1FD61DDF3AE641F1439EFD0A5EE
Chrome Cache Entry: 90	ASCII text, with very long lines (3383)	B1603D0E9433907B5F5AC30B5018DD45	E9F09D93B13340342F82D3346AAC0F844FC0A1FE	1FB71328DF3633BEACAD3165E7A28463FFD4A5B3BEE5C2969041DA8591E760BF
Chrome Cache Entry: 91	ASCII text, with very long lines (2297)	D8B0BCFBCCE84121BA471EB87831DE66	91A9DAEED8217ABBD54C31C7F8584668379AC3BA	358EDDFFCE99A2872E20913ED2D9174B6CD88D6D381DD0EA12590295812FFA68
Chrome Cache Entry: 92	MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	F3418A443E7D841097C714D69EC4BCB8	49263695F6B0CDD72F45CF1B775E660FDC36C606	6DA5620880159634213E197FAFCA1DDE0272153BE3E4590818533FAB8D040770
Chrome Cache Entry: 93	GIF image data, version 89a, 64 x 64	672BFA55B918B562F6F1DE38EDDFBC93	481B9A02CD93EC8B3D03A386AF43312352D1D6A4	6F260BF3EACB674168155CFB377A8DF06DA619FD7CC6B62F406ACE0113F81ECC
Chrome Cache Entry: 94	ASCII text, with very long lines (17649)	85EFF967B6703760E0E562179E7EF0EF	A4567DB32AE2EA7049209561D2EDDE3D26FBEF88	6D4771B008D3008CD1483EFB86FCC459A7D965AFDD5A93F002C3ACD805DE1F68
Chrome Cache Entry: 95	ASCII text, with very long lines (1222), with no line terminators	463D838587C8B5873CB6E4E942B770C9	E69DCF383A6F3F51F123CA2D86F19FC4BE09E612	1448EC1B3F30A554233BD280AA99A7EAF690D1098647E7DDDEA286C757884F9C
Chrome Cache Entry: 96	SVG Scalable Vector Graphics image	2BD5C073A88B83ED74DB88282A56DDFB	D0EBFC376F8C6A44A8D4CD216817DCD7D0C33650	AB5C23A05E39DEED14D9D8262B0DCE9F024F86105A27196CAD37D14A3F516E09
Chrome Cache Entry: 97	HTML document, ASCII text	2E7278708D3C04543AFB6C03F4E93A0E	12B468223F394BFF0FB8DA85086899BDA8957A2F	9F60989ED2B3E48FED8BA9642A085AC71F797310AC6F08898DF9E891EE4909D7
Chrome Cache Entry: 98	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	07BF314AAB04047B9E9A959EE6F63DA3	17BEF6602672E2FD9956381E01356245144003E5	55EAF62CB05DA20088DC12B39D7D254D046CB1FD61DDF3AE641F1439EFD0A5EE
Chrome Cache Entry: 99	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced	EF9941290C50CD3866E2BA6B793F010D	4736508C795667DCEA21F8D864233031223B7832	1B9EFB22C938500971AAC2B2130A475FA23684DD69E43103894968DF83145B8A

AV Detection

Antivirus detection for URL or domain

Source: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai	Avira URL Cloud: Label: malware
Source: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/api.php	Avira URL Cloud: Label: malware
Source: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/favicon.ico	Avira URL Cloud: Label: malware
Source: https://wvijwiyjap.xn--90at1dc.xn--p1ai	Avira URL Cloud: Label: malware

Source: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl	HTTP Parser: No favicon
Source: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/GPauFfog/rsxWYORE/ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=	HTTP Parser: No favicon
Source: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM#+&_x_tr_sl=KyfoXVwc&_x_tr_tl=KjEjYzeF#8654:8654	HTTP Parser: No favicon
Source: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM#+&_x_tr_sl=KyfoXVwc&_x_tr_tl=KjEjYzeF#8654:8654	HTTP Parser: No favicon
Source: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM#+&_x_tr_sl=KyfoXVwc&_x_tr_tl=KjEjYzeF#8654:8654	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b&co=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&s=2BNqQRFdEF1GslQOKoko3a8uVuFIxpg8c82277SL89A7-PHS3ElSw6fV8vgzB4Xpkkz_veIhgwP5OdS7rvIeaY405TKQb11MxSAWnP9JCOaD2kOplI2AJyYafdyujFGmUI48Tkan_F2SnZp12eXCRV1ZOIKcNa5wD1zHzN8ZbLdE5RcuyUK1XGE1KQeHG0gCuQMuwzxORvtRVxgnJpq16UWIvmIu22GxUfDtB1nCbO9j0za2uP4o_IPJSyaMaDCUGUQGHPNUz6fI5Lp3ups022LC5yWoFu4&cb=yzlvonrgl3v6	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b&co=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&s=2BNqQRFdEF1GslQOKoko3a8uVuFIxpg8c82277SL89A7-PHS3ElSw6fV8vgzB4Xpkkz_veIhgwP5OdS7rvIeaY405TKQb11MxSAWnP9JCOaD2kOplI2AJyYafdyujFGmUI48Tkan_F2SnZp12eXCRV1ZOIKcNa5wD1zHzN8ZbLdE5RcuyUK1XGE1KQeHG0gCuQMuwzxORvtRVxgnJpq16UWIvmIu22GxUfDtB1nCbO9j0za2uP4o_IPJSyaMaDCUGUQGHPNUz6fI5Lp3ups022LC5yWoFu4&cb=yzlvonrgl3v6	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b	HTTP Parser: No favicon
Source: https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.4:49759 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 72.21.81.240
Source: unknown	TCP traffic detected without corresponding DNS query: 72.21.81.240
Source: unknown	TCP traffic detected without corresponding DNS query: 72.21.81.240
Source: unknown	TCP traffic detected without corresponding DNS query: 72.21.81.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai.translate.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /project_modules/max_1200/e8605269321565.5ba1e199ba5a8.gif HTTP/1.1Host: mir-s3-cdn-cf.behance.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jquery-3.5.1.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /translate_a/element.js?cb=gtElInit&hl&client=wt HTTP/1.1Host: translate.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /websitetranslationui?parent=https%3A%2F%2Fwvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog&pfu=https%3A%2F%2Fwvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog%2Fhdiw%2Fzqteil%2Fefdfdqgb%3FZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20%3D%2B%26_x_tr_sch%3Dhttp%26_x_tr_sl%3Ddosderma%26_x_tr_tl%3Dbempjhrl&u=http%3A%2F%2Fwvijwiyjap.%D1%8F%D0%BB%D1%8E%D0%B1.%D1%80%D1%84%2Fhdiw%2Fzqteil%2Fefdfdqgb%3FZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20%3D%2B&sl=dosderma&tl=bempjhrl&opu=https%3A%2F%2Ftranslate.google.com%2Fwebsite%3Fsl%3Ddosderma%26tl%3Dbempjhrl%26hl%26u%3Dhttp%3A%2F%2Fwvijwiyjap.%25D1%258F%25D0%25BB%25D1%258E%25D0%25B1.%25D1%2580%25D1%2584%2Fhdiw%2Fzqteil%2Fefdfdqgb%3FZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20%253D%252B%26anno%3D2&client=tr HTTP/1.1Host: translate.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /GPauFfog/rsxWYORE/ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20= HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /project_modules/max_1200/e8605269321565.5ba1e199ba5a8.gif HTTP/1.1Host: mir-s3-cdn-cf.behance.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /jquery-3.5.1.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /project_modules/max_1200/e8605269321565.5ba1e199ba5a8.gif HTTP/1.1Host: mir-s3-cdn-cf.behance.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/GPauFfog/rsxWYORE/ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=tskclra6sm8igoo4v2e8nkds4f
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w
Source: global traffic	HTTP traffic detected: GET /sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM HTTP/1.1Host: www.google.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUMAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /api.php HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=tskclra6sm8igoo4v2e8nkds4f
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=tskclra6sm8igoo4v2e8nkds4f
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b&co=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&s=2BNqQRFdEF1GslQOKoko3a8uVuFIxpg8c82277SL89A7-PHS3ElSw6fV8vgzB4Xpkkz_veIhgwP5OdS7rvIeaY405TKQb11MxSAWnP9JCOaD2kOplI2AJyYafdyujFGmUI48Tkan_F2SnZp12eXCRV1ZOIKcNa5wD1zHzN8ZbLdE5RcuyUK1XGE1KQeHG0gCuQMuwzxORvtRVxgnJpq16UWIvmIu22GxUfDtB1nCbO9j0za2uP4o_IPJSyaMaDCUGUQGHPNUz6fI5Lp3ups022LC5yWoFu4&cb=yzlvonrgl3v6 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUMAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b&co=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&s=2BNqQRFdEF1GslQOKoko3a8uVuFIxpg8c82277SL89A7-PHS3ElSw6fV8vgzB4Xpkkz_veIhgwP5OdS7rvIeaY405TKQb11MxSAWnP9JCOaD2kOplI2AJyYafdyujFGmUI48Tkan_F2SnZp12eXCRV1ZOIKcNa5wD1zHzN8ZbLdE5RcuyUK1XGE1KQeHG0gCuQMuwzxORvtRVxgnJpq16UWIvmIu22GxUfDtB1nCbO9j0za2uP4o_IPJSyaMaDCUGUQGHPNUz6fI5Lp3ups022LC5yWoFu4&cb=yzlvonrgl3v6Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b&co=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&s=2BNqQRFdEF1GslQOKoko3a8uVuFIxpg8c82277SL89A7-PHS3ElSw6fV8vgzB4Xpkkz_veIhgwP5OdS7rvIeaY405TKQb11MxSAWnP9JCOaD2kOplI2AJyYafdyujFGmUI48Tkan_F2SnZp12eXCRV1ZOIKcNa5wD1zHzN8ZbLdE5RcuyUK1XGE1KQeHG0gCuQMuwzxORvtRVxgnJpq16UWIvmIu22GxUfDtB1nCbO9j0za2uP4o_IPJSyaMaDCUGUQGHPNUz6fI5Lp3ups022LC5yWoFu4&cb=yzlvonrgl3v6Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUMAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.google.com/sorry/index?continue=https://www.google.com/&q=EgSaEMC5GNTOsLEGIjCDy6UY34DMnKy8kdeioExFcvcoDN307v4plj2ScONJgBGzSn2x2uCW_8G_m2PU_hYyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUMAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/payload?p=06AFcWeA5SYlORcKxJ5egyGh9El91Jfki6_IrmloeyiYSC2SMfUkrI0gAJbTNB6oIBRBdYK8CGKfO0ms_2MwJNM7zw-Z84kF3hBuChl0N2_vit9e5WiWFqjRy8uxY8J8MQAD5OGVvNDgzuO-vpke6P93oUFVp9ogCu-yXyDz5dwKQPYy6aUvnT-puDtzdyhpsLxDaaU-joRNugBvDU1gt2jgLh2oTJYn7-aA&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1bAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AEdsM9M0OYEEyvm0XW7l8rNFZN5ZJ0CNv9j13Zi66wI9o6hK5oPvYvzJUxka3smTU050FIkuatgsWFOhXiue1MM; NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/reload?k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AEdsM9M0OYEEyvm0XW7l8rNFZN5ZJ0CNv9j13Zi66wI9o6hK5oPvYvzJUxka3smTU050FIkuatgsWFOhXiue1MM; NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/payload?p=06AFcWeA5SYlORcKxJ5egyGh9El91Jfki6_IrmloeyiYSC2SMfUkrI0gAJbTNB6oIBRBdYK8CGKfO0ms_2MwJNM7zw-Z84kF3hBuChl0N2_vit9e5WiWFqjRy8uxY8J8MQAD5OGVvNDgzuO-vpke6P93oUFVp9ogCu-yXyDz5dwKQPYy6aUvnT-puDtzdyhpsLxDaaU-joRNugBvDU1gt2jgLh2oTJYn7-aA&k=6LfwuyUTAAAAAOAmoS0fdqijC2PbbdH4kjq62Y1b HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AEdsM9M0OYEEyvm0XW7l8rNFZN5ZJ0CNv9j13Zi66wI9o6hK5oPvYvzJUxka3smTU050FIkuatgsWFOhXiue1MM; NID=513=GLnrkuO0RseCpaYDh8OvVjxpPl6rfMllDDvPOwTA9eiZiH0vWPMbTbOHo_oviV5M2RH1jWBU9uuwOW6nI1xWVquPQ8ROpo7E5_N7OSQUojgahHrNP9XbWoN_r1qVXYImoUKxLNLUv36cAKedXj6yXxCVZJ4VQb0E9wlvh8bQj3w; AEC=AQTF6HwWgDlYchdKPIAcChIk_OA43-DP_IjztDnfQHSnW-_dcEgJtbol9g

Source: chromecache_90.2.dr

Source: global traffic	DNS traffic detected: DNS query: wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog
Source: global traffic	DNS traffic detected: DNS query: mir-s3-cdn-cf.behance.net
Source: global traffic	DNS traffic detected: DNS query: code.jquery.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: translate.google.com
Source: global traffic	DNS traffic detected: DNS query: wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai

Source: unknown

Source: chromecache_90.2.dr	String found in binary or memory: http://localhost.corp.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: http://localhost.proxy.googlers.com/inapp/
Source: chromecache_84.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_110.2.dr	String found in binary or memory: https://apis.google.com/js/api.js
Source: chromecache_90.2.dr	String found in binary or memory: https://apis.google.com/js/client.js
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=378607
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=449857
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=470258
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=589347
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.jquery.com/ticket/12359
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.jquery.com/ticket/13378
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.jquery.com/ticket/13393
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.jquery.com/ticket/4833
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=136851
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=137337
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=29084
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=687787
Source: chromecache_75.2.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_75.2.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_80.2.dr, chromecache_97.2.dr, chromecache_111.2.dr, chromecache_85.2.dr	String found in binary or memory: https://code.jquery.com/jquery-3.5.1.js
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/CSS/display
Source: chromecache_75.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_75.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_75.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://drafts.csswg.org/cssom/#common-serializing-idioms
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://drafts.csswg.org/cssom/#resolved-values
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback-pa.clients6.google.com
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/annotator.css
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/render_frame2.html
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback2-test.corp.google.com/inapp/%
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback2-test.corp.google.com/tools/feedback/%
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/inapp/%
Source: chromecache_90.2.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/tools/feedback/%
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_84.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://github.com/jquery/jquery/pull/557)
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://github.com/jquery/sizzle/pull/225
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://github.com/jrburke/requirejs/wiki/Updating-existing-libraries#wiki-anon
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://github.com/whatwg/html/issues/2369
Source: chromecache_90.2.dr	String found in binary or memory: https://gstatic.com/uservoice/surveys/resources/
Source: chromecache_90.2.dr	String found in binary or memory: https://help.youtube.com/tools/feedback/
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/#nonce-attributes
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/#strip-and-collapse-whitespace
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/forms.html#category-listed
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/forms.html#concept-fe-disabled
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/forms.html#concept-option-disabled
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/scripting.html#selector-disabled
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/scripting.html#selector-enabled
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://html.spec.whatwg.org/multipage/syntax.html#attributes-2
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://infra.spec.whatwg.org/#strip-and-collapse-ascii-whitespace
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://jquery.com/
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://jquery.org/license
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://js.foundation/
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://jsperf.com/getall-vs-sizzle/2
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://jsperf.com/thor-indexof-vs-for/5
Source: chromecache_90.2.dr	String found in binary or memory: https://localhost.corp.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://localhost.proxy.googlers.com/inapp/
Source: chromecache_80.2.dr, chromecache_97.2.dr, chromecache_111.2.dr, chromecache_85.2.dr	String found in binary or memory: https://mir-s3-cdn-cf.behance.net/project_modules/max_1200/e8605269321565.5ba1e199ba5a8.gif
Source: chromecache_104.2.dr	String found in binary or memory: https://play.google.com
Source: chromecache_91.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-48
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-54
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-57
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-59
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-61
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-64
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://promisesaplus.com/#point-75
Source: chromecache_75.2.dr	String found in binary or memory: https://recaptcha.net
Source: chromecache_90.2.dr	String found in binary or memory: https://sandbox.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://sandbox.google.com/inapp/%
Source: chromecache_90.2.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/%
Source: chromecache_90.2.dr	String found in binary or memory: https://scone-pa.clients6.google.com
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://sizzlejs.com/
Source: chromecache_90.2.dr	String found in binary or memory: https://stagingqual-feedback-pa-googleapis.sandbox.google.com
Source: chromecache_104.2.dr	String found in binary or memory: https://support.google.com
Source: chromecache_90.2.dr, chromecache_104.2.dr	String found in binary or memory: https://support.google.com/
Source: chromecache_90.2.dr	String found in binary or memory: https://support.google.com/inapp/
Source: chromecache_90.2.dr	String found in binary or memory: https://support.google.com/inapp/%
Source: chromecache_75.2.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_75.2.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_75.2.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_75.2.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_90.2.dr	String found in binary or memory: https://test-scone-pa-googleapis.sandbox.google.com
Source: chromecache_104.2.dr	String found in binary or memory: https://translate-autopush.corp.google.com/websitetranslationui
Source: chromecache_104.2.dr	String found in binary or memory: https://translate-daily-1.corp.google.com/websitetranslationui
Source: chromecache_104.2.dr	String found in binary or memory: https://translate-dev.corp.google.com/websitetranslationui
Source: chromecache_84.2.dr	String found in binary or memory: https://translate.google.com
Source: chromecache_80.2.dr	String found in binary or memory: https://translate.google.com/translate_a/element.js?cb=gtElInit&hl&client=wt
Source: chromecache_80.2.dr	String found in binary or memory: https://translate.google.com/website?sl=dosderma&tl=bempjhrl&hl&u=http://wvijwiyjap.%D1%
Source: chromecache_104.2.dr	String found in binary or memory: https://translate.google.com/websitetranslationui
Source: chromecache_84.2.dr	String found in binary or memory: https://translate.googleapis.com/element/log?format=json&hasfast=true
Source: chromecache_110.2.dr, chromecache_120.2.dr	String found in binary or memory: https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://web.archive.org/web/20100324014747/http://blindsignals.com/index.php/2009/07/jquery-delay/
Source: chromecache_112.2.dr, chromecache_87.2.dr	String found in binary or memory: https://web.archive.org/web/20141116233347/http://fluidproject.org/blog/2008/01/09/getting-setting-a
Source: chromecache_97.2.dr, chromecache_111.2.dr, chromecache_85.2.dr	String found in binary or memory: https://wvijwiyjap-xn----90at1dc-xn----p1ai-translate.xn--90at1dc.xn--p1ai
Source: chromecache_80.2.dr	String found in binary or memory: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog
Source: chromecache_80.2.dr	String found in binary or memory: https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdW
Source: chromecache_80.2.dr	String found in binary or memory: https://wvijwiyjap.xn--90at1dc.xn--p1ai
Source: chromecache_75.2.dr	String found in binary or memory: https://www.apache.org/licenses/
Source: chromecache_90.2.dr	String found in binary or memory: https://www.google.cn/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://www.google.cn/tools/feedback/%
Source: chromecache_104.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_84.2.dr	String found in binary or memory: https://www.google.com/images/cleardot.gif
Source: chromecache_95.2.dr, chromecache_75.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_84.2.dr	String found in binary or memory: https://www.google.com/support/translate
Source: chromecache_90.2.dr, chromecache_104.2.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: chromecache_90.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/
Source: chromecache_90.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/%
Source: chromecache_90.2.dr	String found in binary or memory: https://www.google.com/tools/feedback/help_panel_binary.js
Source: chromecache_75.2.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__.
Source: chromecache_80.2.dr	String found in binary or memory: https://www.gstatic.com/_/translate_http/_/js/k=translate_http.tr.en_US.RKFQ23Bs3nc.O/am=wA/d=1/exm=
Source: chromecache_80.2.dr	String found in binary or memory: https://www.gstatic.com/_/translate_http/_/js/k=translate_http.tr.en_US.RKFQ23Bs3nc.O/am=wA/d=1/rs=A
Source: chromecache_104.2.dr	String found in binary or memory: https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
Source: chromecache_84.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
Source: chromecache_84.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
Source: chromecache_84.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/1x/translate_24dp.png
Source: chromecache_95.2.dr, chromecache_76.2.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
Source: chromecache_104.2.dr	String found in binary or memory: https://www.gstatic.com/uservoice/feedback/client/web/
Source: chromecache_90.2.dr	String found in binary or memory: https://www.gstatic.com/uservoice/surveys/resources/

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443

Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.4:49759 version: TLS 1.2

Source: classification engine

Classification label: mal48.win@19/84@24/13

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2564 --field-trial-handle=2524,i,14151249613376846125,12011158937383823995,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2564 --field-trial-handle=2524,i,14151249613376846125,12011158937383823995,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1432387
Product:	CloudBasic
Start time:	00:13:33
Start date:	27.04.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://wvijwiyjap-xn----90at1dc-xn----p1ai.translate.goog/hdiw/zqteil/efdfdqgb?ZEdOcFFIUmtZMm91ZEdWNFlYTXVaMjkyOml5YXBpdndiY20=+&_x_tr_sch=http&_x_tr_sl=dosderma&_x_tr_tl=bempjhrl