Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
Setup.exe

Overview

General Information

Sample name:Setup.exe
Analysis ID:1635751
MD5:0f9131f87fb905a6a13c584a4011fdd3
SHA1:78368e5a662bc88ce0621045cc3b43cc83aab0ac
SHA256:0a4a1f6ec75b4d44a2c1444d8cca746c99a36662684abc6a67838006e2e4ad84
Infos:

Detection

Score:54
Range:0 - 100
Confidence:100%

Compliance

Score:20
Range:0 - 100

Signatures

Multi AV Scanner detection for dropped file
Multi AV Scanner detection for submitted file
Checks for kernel code integrity (NtQuerySystemInformation(CodeIntegrityInformation))
Creates multiple autostart registry keys
Queries sensitive disk information (via WMI, Win32_DiskDrive, often done to detect virtual machines)
Tries to delay execution (extensive OutputDebugStringW loop)
Checks for kernel debuggers (NtQuerySystemInformation(SystemKernelDebuggerInformation))
Checks if Antivirus/Antispyware/Firewall program is installed (via WMI)
Contains functionality for read data from the clipboard
Contains functionality to check if a connection to the internet is available
Contains functionality to check if a debugger is running (IsDebuggerPresent)
Contains functionality to check if a debugger is running (OutputDebugString,GetLastError)
Contains functionality to download and execute PE files
Contains functionality to download and launch executables
Contains functionality to dynamically determine API calls
Contains functionality to launch a program with higher privileges
Contains functionality to modify clipboard data
Contains functionality to query CPU information (cpuid)
Contains functionality to query locales information (e.g. system language)
Contains functionality to shutdown / reboot the system
Contains functionality to simulate keystroke presses
Contains functionality which may be used to detect a debugger (GetProcessHeap)
Contains long sleeps (>= 3 min)
Creates a process in suspended mode (likely to inject code)
Detected potential crypto function
Drops PE files
EXE planting / hijacking vulnerabilities found
Found a high number of Window / User specific system calls (may be a loop to detect user behavior)
Found dropped PE file which has not been started or loaded
Found evasive API chain (date check)
Found potential string decryption / allocating functions
HTTP GET or POST without a user agent
IP address seen in connection with other malware
JA3 SSL client fingerprint seen in connection with other malware
May sleep (evasive loops) to hinder dynamic analysis
PE file contains an invalid checksum
Queries sensitive BIOS Information (via WMI, Win32_Bios & Win32_BaseBoard, often done to detect virtual machines)
Queries sensitive Operating System Information (via WMI, Win32_ComputerSystem, often done to detect virtual machines)
Queries sensitive processor information (via WMI, Win32_Processor, often done to detect virtual machines)
Queries the volume information (name, serial number etc) of a device
Sigma detected: CurrentVersion Autorun Keys Modification
Stores files to the Windows start menu directory
Suricata IDS alerts with low severity for network traffic
Uses 32bit PE files
Uses insecure TLS / SSL version for HTTPS connection

Classification

Process Tree

  • System is w10x64native
  • Setup.exe (PID: 7320 cmdline: "C:\Users\user\Desktop\Setup.exe" MD5: 0F9131F87FB905A6A13C584A4011FDD3)
    • chrome.exe (PID: 2800 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://pcapp.store/installing.php?guid=00000000-0000-0000-0000-D05099DB2397&winver=19042&version=fa.2009&nocache=20250311183822.790&_fcid=1741726344365755 MD5: BB7C48CDDDE076E7EB44022520F40F77)
      • chrome.exe (PID: 8228 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-subproc-heap-profiling --field-trial-handle=2224,i,2944380752885039033,4318830463388120158,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20240909-180142.416000 --mojo-platform-channel-handle=2236 /prefetch:3 MD5: BB7C48CDDDE076E7EB44022520F40F77)
      • chrome.exe (PID: 9136 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --video-capture-use-gpu-memory-buffer --no-subproc-heap-profiling --field-trial-handle=5256,i,2944380752885039033,4318830463388120158,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20240909-180142.416000 --mojo-platform-channel-handle=5192 /prefetch:8 MD5: BB7C48CDDDE076E7EB44022520F40F77)
      • chrome.exe (PID: 9144 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --no-subproc-heap-profiling --field-trial-handle=4912,i,2944380752885039033,4318830463388120158,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20240909-180142.416000 --mojo-platform-channel-handle=5156 /prefetch:8 MD5: BB7C48CDDDE076E7EB44022520F40F77)
    • PcAppStore.exe (PID: 8532 cmdline: "C:\Users\user\PCAppStore\PcAppStore.exe" /init default MD5: 1D7B2E853186125A599F5E2476D28E6B)
      • PcAppStore.exe (PID: 4732 cmdline: "C:\Users\user\PCAppStore\PcAppStore.exe" /init default /restart MD5: 1D7B2E853186125A599F5E2476D28E6B)
        • PcAppStore.exe (PID: 7052 cmdline: MD5: 1D7B2E853186125A599F5E2476D28E6B)
          • PcAppStore.exe (PID: 4996 cmdline: MD5: 1D7B2E853186125A599F5E2476D28E6B)
            • PcAppStore.exe (PID: 9240 cmdline: MD5: 1D7B2E853186125A599F5E2476D28E6B)
    • Watchdog.exe (PID: 8680 cmdline: "C:\Users\user\PCAppStore\Watchdog.exe" /guid=00000000-0000-0000-0000-D05099DB2397 /rid=20250311183824.35219733171 /ver=fa.2009 MD5: 00D28AB96B6CB2D936922FF7AB7006BE)
  • PcAppStore.exe (PID: 9724 cmdline: "C:\Users\user\PCAppStore\PCAppStore.exe" /init default MD5: 1D7B2E853186125A599F5E2476D28E6B)
  • AutoUpdater.exe (PID: 9884 cmdline: "C:\Users\user\PCAppStore\AutoUpdater.exe" /i MD5: 45DF180325C19906E6C3332F72226586)
  • Watchdog.exe (PID: 9988 cmdline: "C:\Users\user\PCAppStore\Watchdog.exe" /guid=00000000-0000-0000-0000-D05099DB2397 /rid=20250311183824.35219733171 /ver=fa.2009 MD5: 00D28AB96B6CB2D936922FF7AB7006BE)
  • PcAppStore.exe (PID: 10136 cmdline: "C:\Users\user\PCAppStore\PCAppStore.exe" /init default MD5: 1D7B2E853186125A599F5E2476D28E6B)
  • AutoUpdater.exe (PID: 3468 cmdline: "C:\Users\user\PCAppStore\AutoUpdater.exe" /i MD5: 45DF180325C19906E6C3332F72226586)
  • Watchdog.exe (PID: 9500 cmdline: "C:\Users\user\PCAppStore\Watchdog.exe" /guid=00000000-0000-0000-0000-D05099DB2397 /rid=20250311183824.35219733171 /ver=fa.2009 MD5: 00D28AB96B6CB2D936922FF7AB7006BE)
  • cleanup

Malware Configuration

No configs have been found

Yara Signatures

No yara matches

Sigma Signatures

Sigma detected: CurrentVersion Autorun Keys Modification
Source: Registry Key setAuthor: Victor Sergeev, Daniil Yugoslavskiy, Gleb Sukhodolskiy, Timur Zinniatullin, oscd.community, Tim Shelton, frack113 (split): Data: Details: "C:\Users\user\PCAppStore\PCAppStore.exe" /init default, EventID: 13, EventType: SetValue, Image: C:\Users\user\Desktop\Setup.exe, ProcessId: 7320, TargetObject: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\PCAppStore

Suricata Signatures

TimestampSIDSeverityClasstypeSource IPSource PortDestination IPDestination PortProtocol
2025-03-11T23:38:10.237446+010020283713Unknown Traffic192.168.11.2050007159.223.126.41443TCP
2025-03-11T23:38:26.474414+010020283713Unknown Traffic192.168.11.2049798159.223.126.41443TCP
2025-03-11T23:38:38.916191+010020283713Unknown Traffic192.168.11.2049894159.223.126.41443TCP
2025-03-11T23:38:40.321995+010020283713Unknown Traffic192.168.11.2049898159.223.126.41443TCP
2025-03-11T23:38:41.733666+010020283713Unknown Traffic192.168.11.2049901159.223.126.41443TCP
2025-03-11T23:38:42.149213+010020283713Unknown Traffic192.168.11.2049903159.223.126.41443TCP
2025-03-11T23:38:43.019141+010020283713Unknown Traffic192.168.11.2049907159.223.126.41443TCP
2025-03-11T23:38:43.928425+010020283713Unknown Traffic192.168.11.2049910159.223.126.41443TCP
2025-03-11T23:38:45.171956+010020283713Unknown Traffic192.168.11.2049913159.223.126.41443TCP
2025-03-11T23:38:46.591361+010020283713Unknown Traffic192.168.11.2049916159.223.126.41443TCP
2025-03-11T23:38:49.345710+010020283713Unknown Traffic192.168.11.2049923159.223.126.41443TCP
2025-03-11T23:38:50.011848+010020283713Unknown Traffic192.168.11.2049925159.223.126.41443TCP
2025-03-11T23:38:51.427531+010020283713Unknown Traffic192.168.11.2049932159.223.126.41443TCP
2025-03-11T23:38:54.767516+010020283713Unknown Traffic192.168.11.2049945159.223.126.41443TCP
2025-03-11T23:38:55.850998+010020283713Unknown Traffic192.168.11.2049951159.223.126.41443TCP
2025-03-11T23:38:57.267690+010020283713Unknown Traffic192.168.11.2049957159.223.126.41443TCP
2025-03-11T23:39:00.197014+010020283713Unknown Traffic192.168.11.2049969159.223.126.41443TCP
2025-03-11T23:39:00.687289+010020283713Unknown Traffic192.168.11.2049972159.223.126.41443TCP
2025-03-11T23:39:02.104583+010020283713Unknown Traffic192.168.11.2049979159.223.126.41443TCP
2025-03-11T23:39:05.610219+010020283713Unknown Traffic192.168.11.2049992159.223.126.41443TCP
2025-03-11T23:39:06.407714+010020283713Unknown Traffic192.168.11.2049997159.223.126.41443TCP
2025-03-11T23:39:06.543400+010020283713Unknown Traffic192.168.11.2049998159.223.126.41443TCP
2025-03-11T23:39:07.295679+010020283713Unknown Traffic192.168.11.2050004159.223.126.41443TCP
2025-03-11T23:39:11.034499+010020283713Unknown Traffic192.168.11.2050020159.223.126.41443TCP
2025-03-11T23:39:16.555607+010020283713Unknown Traffic192.168.11.2050045159.223.126.41443TCP
2025-03-11T23:39:21.982104+010020283713Unknown Traffic192.168.11.2050079159.223.126.41443TCP
2025-03-11T23:39:27.400787+010020283713Unknown Traffic192.168.11.2050114159.223.126.41443TCP
2025-03-11T23:39:32.822792+010020283713Unknown Traffic192.168.11.2050148159.223.126.41443TCP
2025-03-11T23:39:38.341818+010020283713Unknown Traffic192.168.11.2050183159.223.126.41443TCP
2025-03-11T23:39:43.767738+010020283713Unknown Traffic192.168.11.2050216159.223.126.41443TCP
2025-03-11T23:39:49.190566+010020283713Unknown Traffic192.168.11.2050249159.223.126.41443TCP
2025-03-11T23:39:54.610910+010020283713Unknown Traffic192.168.11.2050282159.223.126.41443TCP
2025-03-11T23:39:55.134865+010020283713Unknown Traffic192.168.11.2050286159.223.126.41443TCP
2025-03-11T23:39:55.545629+010020283713Unknown Traffic192.168.11.2050291159.223.126.41443TCP
2025-03-11T23:39:57.297673+010020283713Unknown Traffic192.168.11.2050303159.223.126.41443TCP
2025-03-11T23:40:09.726669+010020283713Unknown Traffic192.168.11.2050390159.223.126.41443TCP
2025-03-11T23:40:11.143944+010020283713Unknown Traffic192.168.11.2050401159.223.126.41443TCP
2025-03-11T23:40:12.560775+010020283713Unknown Traffic192.168.11.2050410159.223.126.41443TCP
2025-03-11T23:40:13.977353+010020283713Unknown Traffic192.168.11.2050421159.223.126.41443TCP
2025-03-11T23:40:14.449949+010020283713Unknown Traffic192.168.11.2050426159.223.126.41443TCP
2025-03-11T23:40:15.398121+010020283713Unknown Traffic192.168.11.2050434159.223.126.41443TCP
2025-03-11T23:40:16.813758+010020283713Unknown Traffic192.168.11.2050443159.223.126.41443TCP
2025-03-11T23:40:19.874515+010020283713Unknown Traffic192.168.11.2050465159.223.126.41443TCP
2025-03-11T23:40:21.239146+010020283713Unknown Traffic192.168.11.2050475159.223.126.41443TCP
2025-03-11T23:40:22.653225+010020283713Unknown Traffic192.168.11.2050485159.223.126.41443TCP
2025-03-11T23:40:25.295056+010020283713Unknown Traffic192.168.11.2050507159.223.126.41443TCP
2025-03-11T23:40:26.074123+010020283713Unknown Traffic192.168.11.2050514159.223.126.41443TCP
2025-03-11T23:40:27.491642+010020283713Unknown Traffic192.168.11.2050525159.223.126.41443TCP
2025-03-11T23:40:30.712319+010020283713Unknown Traffic192.168.11.2050553159.223.126.41443TCP
2025-03-11T23:40:31.923322+010020283713Unknown Traffic192.168.11.2050564159.223.126.41443TCP
2025-03-11T23:40:33.348783+010020283713Unknown Traffic192.168.11.2050577159.223.126.41443TCP
2025-03-11T23:40:36.134982+010020283713Unknown Traffic192.168.11.2050599159.223.126.41443TCP
2025-03-11T23:40:36.769253+010020283713Unknown Traffic192.168.11.2050605159.223.126.41443TCP
2025-03-11T23:40:38.185781+010020283713Unknown Traffic192.168.11.2050618159.223.126.41443TCP
2025-03-11T23:40:41.558599+010020283713Unknown Traffic192.168.11.2050646159.223.126.41443TCP
2025-03-11T23:40:42.607589+010020283713Unknown Traffic192.168.11.2050656159.223.126.41443TCP
2025-03-11T23:40:44.027707+010020283713Unknown Traffic192.168.11.2050669159.223.126.41443TCP
2025-03-11T23:40:47.079022+010020283713Unknown Traffic192.168.11.2050694159.223.126.41443TCP
2025-03-11T23:40:48.449365+010020283713Unknown Traffic192.168.11.2050707159.223.126.41443TCP
2025-03-11T23:40:49.863544+010020283713Unknown Traffic192.168.11.2050722159.223.126.41443TCP
2025-03-11T23:40:52.503463+010020283713Unknown Traffic192.168.11.2050747159.223.126.41443TCP
2025-03-11T23:40:53.285986+010020283713Unknown Traffic192.168.11.2050756159.223.126.41443TCP
2025-03-11T23:40:54.704791+010020283713Unknown Traffic192.168.11.2050769159.223.126.41443TCP
2025-03-11T23:40:57.923058+010020283713Unknown Traffic192.168.11.2050799159.223.126.41443TCP
2025-03-11T23:40:59.124911+010020283713Unknown Traffic192.168.11.2050810159.223.126.41443TCP
2025-03-11T23:41:00.540247+010020283713Unknown Traffic192.168.11.2050824159.223.126.41443TCP
2025-03-11T23:41:03.348221+010020283713Unknown Traffic192.168.11.2050850159.223.126.41443TCP
2025-03-11T23:41:03.961402+010020283713Unknown Traffic192.168.11.2050857159.223.126.41443TCP
2025-03-11T23:41:05.379719+010020283713Unknown Traffic192.168.11.2050871159.223.126.41443TCP
2025-03-11T23:41:08.869315+010020283713Unknown Traffic192.168.11.2050904159.223.126.41443TCP
2025-03-11T23:41:09.819355+010020283713Unknown Traffic192.168.11.2050911159.223.126.41443TCP
2025-03-11T23:41:11.236208+010020283713Unknown Traffic192.168.11.2050922159.223.126.41443TCP
2025-03-11T23:41:14.290964+010020283713Unknown Traffic192.168.11.2050952159.223.126.41443TCP
2025-03-11T23:41:15.658929+010020283713Unknown Traffic192.168.11.2050966159.223.126.41443TCP
2025-03-11T23:41:17.075623+010020283713Unknown Traffic192.168.11.2050981159.223.126.41443TCP
2025-03-11T23:41:19.712952+010020283713Unknown Traffic192.168.11.2051007159.223.126.41443TCP
2025-03-11T23:41:20.499403+010020283713Unknown Traffic192.168.11.2051015159.223.126.41443TCP
2025-03-11T23:41:21.926875+010020283713Unknown Traffic192.168.11.2051030159.223.126.41443TCP
2025-03-11T23:41:25.153838+010020283713Unknown Traffic192.168.11.2051061159.223.126.41443TCP
2025-03-11T23:41:25.668415+010020283713Unknown Traffic192.168.11.2051068159.223.126.41443TCP
2025-03-11T23:41:26.078858+010020283713Unknown Traffic192.168.11.2051073159.223.126.41443TCP
2025-03-11T23:41:26.354137+010020283713Unknown Traffic192.168.11.2051077159.223.126.41443TCP
2025-03-11T23:41:27.789518+010020283713Unknown Traffic192.168.11.2051093159.223.126.41443TCP
2025-03-11T23:41:40.235086+010020283713Unknown Traffic192.168.11.2051224159.223.126.41443TCP
2025-03-11T23:41:41.650469+010020283713Unknown Traffic192.168.11.2051239159.223.126.41443TCP
2025-03-11T23:41:43.069235+010020283713Unknown Traffic192.168.11.2051254159.223.126.41443TCP
2025-03-11T23:41:44.487616+010020283713Unknown Traffic192.168.11.2051271159.223.126.41443TCP
2025-03-11T23:41:44.922137+010020283713Unknown Traffic192.168.11.2051275159.223.126.41443TCP
2025-03-11T23:41:45.905004+010020283713Unknown Traffic192.168.11.2051287159.223.126.41443TCP
2025-03-11T23:41:47.323642+010020283713Unknown Traffic192.168.11.2051302159.223.126.41443TCP
2025-03-11T23:41:50.345296+010020283713Unknown Traffic192.168.11.2051335159.223.126.41443TCP
2025-03-11T23:41:51.743988+010020283713Unknown Traffic192.168.11.2051350159.223.126.41443TCP
2025-03-11T23:41:53.161480+010020283713Unknown Traffic192.168.11.2051367159.223.126.41443TCP
2025-03-11T23:41:55.936984+010020283713Unknown Traffic192.168.11.2051398159.223.126.41443TCP
2025-03-11T23:41:56.583384+010020283713Unknown Traffic192.168.11.2051407159.223.126.41443TCP
2025-03-11T23:41:58.049147+010020283713Unknown Traffic192.168.11.2051424159.223.126.41443TCP
2025-03-11T23:42:01.353473+010020283713Unknown Traffic192.168.11.2051461159.223.126.41443TCP
2025-03-11T23:42:02.472747+010020283713Unknown Traffic192.168.11.2051475159.223.126.41443TCP
2025-03-11T23:42:03.890364+010020283713Unknown Traffic192.168.11.2051490159.223.126.41443TCP
2025-03-11T23:42:06.778103+010020283713Unknown Traffic192.168.11.2051524159.223.126.41443TCP
2025-03-11T23:42:07.310438+010020283713Unknown Traffic192.168.11.2051529159.223.126.41443TCP
2025-03-11T23:42:08.728219+010020283713Unknown Traffic192.168.11.2051547159.223.126.41443TCP
2025-03-11T23:42:12.200751+010020283713Unknown Traffic192.168.11.2051587159.223.126.41443TCP
2025-03-11T23:42:13.147837+010020283713Unknown Traffic192.168.11.2051597159.223.126.41443TCP
2025-03-11T23:42:14.567640+010020283713Unknown Traffic192.168.11.2051614159.223.126.41443TCP
2025-03-11T23:42:17.728812+010020283713Unknown Traffic192.168.11.2051651159.223.126.41443TCP
2025-03-11T23:42:18.987082+010020283713Unknown Traffic192.168.11.2051667159.223.126.41443TCP
2025-03-11T23:42:20.405104+010020283713Unknown Traffic192.168.11.2051685159.223.126.41443TCP
2025-03-11T23:42:23.142452+010020283713Unknown Traffic192.168.11.2051716159.223.126.41443TCP
2025-03-11T23:42:23.826838+010020283713Unknown Traffic192.168.11.2051725159.223.126.41443TCP
2025-03-11T23:42:25.252001+010020283713Unknown Traffic192.168.11.2051741159.223.126.41443TCP
2025-03-11T23:42:28.630561+010020283713Unknown Traffic192.168.11.2051782159.223.126.41443TCP
2025-03-11T23:42:29.664861+010020283713Unknown Traffic192.168.11.2051795159.223.126.41443TCP
2025-03-11T23:42:31.081883+010020283713Unknown Traffic192.168.11.2051813159.223.126.41443TCP
2025-03-11T23:42:34.053277+010020283713Unknown Traffic192.168.11.2051850159.223.126.41443TCP
2025-03-11T23:42:34.502547+010020283713Unknown Traffic192.168.11.2051856159.223.126.41443TCP
2025-03-11T23:42:35.922146+010020283713Unknown Traffic192.168.11.2051874159.223.126.41443TCP
2025-03-11T23:42:39.575134+010020283713Unknown Traffic192.168.11.2051918159.223.126.41443TCP
2025-03-11T23:42:40.344085+010020283713Unknown Traffic192.168.11.2051928159.223.126.41443TCP
2025-03-11T23:42:41.760886+010020283713Unknown Traffic192.168.11.2051946159.223.126.41443TCP
2025-03-11T23:42:44.999493+010020283713Unknown Traffic192.168.11.2051986159.223.126.41443TCP
2025-03-11T23:42:46.181940+010020283713Unknown Traffic192.168.11.2052001159.223.126.41443TCP
2025-03-11T23:42:47.601642+010020283713Unknown Traffic192.168.11.2052019159.223.126.41443TCP
2025-03-11T23:42:50.420880+010020283713Unknown Traffic192.168.11.2052055159.223.126.41443TCP
2025-03-11T23:42:51.020043+010020283713Unknown Traffic192.168.11.2052062159.223.126.41443TCP
2025-03-11T23:42:52.438827+010020283713Unknown Traffic192.168.11.2052081159.223.126.41443TCP
2025-03-11T23:42:55.843427+010020283713Unknown Traffic192.168.11.2052123159.223.126.41443TCP
2025-03-11T23:42:56.360290+010020283713Unknown Traffic192.168.11.2052130159.223.126.41443TCP
2025-03-11T23:42:56.790521+010020283713Unknown Traffic192.168.11.2052136159.223.126.41443TCP
2025-03-11T23:42:56.860356+010020283713Unknown Traffic192.168.11.2052137159.223.126.41443TCP
2025-03-11T23:42:58.564284+010020283713Unknown Traffic192.168.11.2052161159.223.126.41443TCP
2025-03-11T23:43:10.991356+010020283713Unknown Traffic192.168.11.2052317159.223.126.41443TCP
2025-03-11T23:43:12.410888+010020283713Unknown Traffic192.168.11.2052336159.223.126.41443TCP
2025-03-11T23:43:13.828464+010020283713Unknown Traffic192.168.11.2052355159.223.126.41443TCP
2025-03-11T23:43:15.245515+010020283713Unknown Traffic192.168.11.2052373159.223.126.41443TCP
2025-03-11T23:43:15.712601+010020283713Unknown Traffic192.168.11.2052380159.223.126.41443TCP
2025-03-11T23:43:16.664402+010020283713Unknown Traffic192.168.11.2052394159.223.126.41443TCP
2025-03-11T23:43:18.083382+010020283713Unknown Traffic192.168.11.2052413159.223.126.41443TCP
2025-03-11T23:43:21.221111+010020283713Unknown Traffic192.168.11.2052454159.223.126.41443TCP
2025-03-11T23:43:22.507365+010020283713Unknown Traffic192.168.11.2052472159.223.126.41443TCP
2025-03-11T23:43:23.970864+010020283713Unknown Traffic192.168.11.2052493159.223.126.41443TCP
2025-03-11T23:43:26.658576+010020283713Unknown Traffic192.168.11.2052527159.223.126.41443TCP
2025-03-11T23:43:27.392001+010020283713Unknown Traffic192.168.11.2052539159.223.126.41443TCP
2025-03-11T23:43:28.876361+010020283713Unknown Traffic192.168.11.2052558159.223.126.41443TCP
2025-03-11T23:43:32.075243+010020283713Unknown Traffic192.168.11.2052602159.223.126.41443TCP
2025-03-11T23:43:33.297761+010020283713Unknown Traffic192.168.11.2052618159.223.126.41443TCP
2025-03-11T23:43:34.715469+010020283713Unknown Traffic192.168.11.2052637159.223.126.41443TCP
2025-03-11T23:43:37.487088+010020283713Unknown Traffic192.168.11.2052675159.223.126.41443TCP
2025-03-11T23:43:38.136162+010020283713Unknown Traffic192.168.11.2052685159.223.126.41443TCP
2025-03-11T23:43:39.554084+010020283713Unknown Traffic192.168.11.2052704159.223.126.41443TCP
2025-03-11T23:43:42.906192+010020283713Unknown Traffic192.168.11.2052749159.223.126.41443TCP
2025-03-11T23:43:43.974759+010020283713Unknown Traffic192.168.11.2052764159.223.126.41443TCP
2025-03-11T23:43:45.383795+010020283713Unknown Traffic192.168.11.2052785159.223.126.41443TCP
2025-03-11T23:43:48.434001+010020283713Unknown Traffic192.168.11.2052825159.223.126.41443TCP
2025-03-11T23:43:49.799382+010020283713Unknown Traffic192.168.11.2052845159.223.126.41443TCP
2025-03-11T23:43:51.216227+010020283713Unknown Traffic192.168.11.2052864159.223.126.41443TCP
2025-03-11T23:43:53.852660+010020283713Unknown Traffic192.168.11.2052899159.223.126.41443TCP
2025-03-11T23:43:54.633955+010020283713Unknown Traffic192.168.11.2052910159.223.126.41443TCP
2025-03-11T23:43:56.053557+010020283713Unknown Traffic192.168.11.2052930159.223.126.41443TCP
2025-03-11T23:43:59.274618+010020283713Unknown Traffic192.168.11.2052974159.223.126.41443TCP
2025-03-11T23:44:00.493242+010020283713Unknown Traffic192.168.11.2052991159.223.126.41443TCP
2025-03-11T23:44:01.910856+010020283713Unknown Traffic192.168.11.2053012159.223.126.41443TCP
2025-03-11T23:44:04.696443+010020283713Unknown Traffic192.168.11.2053050159.223.126.41443TCP
2025-03-11T23:44:05.329296+010020283713Unknown Traffic192.168.11.2053060159.223.126.41443TCP
2025-03-11T23:44:06.745936+010020283713Unknown Traffic192.168.11.2053079159.223.126.41443TCP
2025-03-11T23:44:10.217189+010020283713Unknown Traffic192.168.11.2053128159.223.126.41443TCP
2025-03-11T23:44:11.168801+010020283713Unknown Traffic192.168.11.2053142159.223.126.41443TCP
2025-03-11T23:44:12.587401+010020283713Unknown Traffic192.168.11.2053162159.223.126.41443TCP
2025-03-11T23:44:15.641698+010020283713Unknown Traffic192.168.11.2053205159.223.126.41443TCP
2025-03-11T23:44:17.009874+010020283713Unknown Traffic192.168.11.2053224159.223.126.41443TCP
2025-03-11T23:44:18.427581+010020283713Unknown Traffic192.168.11.2053245159.223.126.41443TCP
2025-03-11T23:44:21.061153+010020283713Unknown Traffic192.168.11.2053282159.223.126.41443TCP
2025-03-11T23:44:21.844819+010020283713Unknown Traffic192.168.11.2053293159.223.126.41443TCP
2025-03-11T23:44:23.263298+010020283713Unknown Traffic192.168.11.2053313159.223.126.41443TCP
2025-03-11T23:44:26.478088+010020283713Unknown Traffic192.168.11.2053358159.223.126.41443TCP
2025-03-11T23:44:27.002723+010020283713Unknown Traffic192.168.11.2053366159.223.126.41443TCP
2025-03-11T23:44:27.412230+010020283713Unknown Traffic192.168.11.2053373159.223.126.41443TCP
2025-03-11T23:44:27.686948+010020283713Unknown Traffic192.168.11.2053378159.223.126.41443TCP
2025-03-11T23:44:29.191597+010020283713Unknown Traffic192.168.11.2053401159.223.126.41443TCP
2025-03-11T23:44:41.617629+010020283713Unknown Traffic192.168.11.2053575159.223.126.41443TCP
2025-03-11T23:44:43.036385+010020283713Unknown Traffic192.168.11.2053595159.223.126.41443TCP
2025-03-11T23:44:44.452040+010020283713Unknown Traffic192.168.11.2053616159.223.126.41443TCP
2025-03-11T23:44:45.861295+010020283713Unknown Traffic192.168.11.2053635159.223.126.41443TCP
2025-03-11T23:44:46.313977+010020283713Unknown Traffic192.168.11.2053644159.223.126.41443TCP
2025-03-11T23:44:47.287066+010020283713Unknown Traffic192.168.11.2053658159.223.126.41443TCP
2025-03-11T23:44:48.707420+010020283713Unknown Traffic192.168.11.2053679159.223.126.41443TCP
2025-03-11T23:44:51.727386+010020283713Unknown Traffic192.168.11.2053721159.223.126.41443TCP
2025-03-11T23:44:53.128354+010020283713Unknown Traffic192.168.11.2053742159.223.126.41443TCP
2025-03-11T23:44:54.545915+010020283713Unknown Traffic192.168.11.2053761159.223.126.41443TCP
2025-03-11T23:44:57.151952+010020283713Unknown Traffic192.168.11.2053798159.223.126.41443TCP
2025-03-11T23:44:57.966589+010020283713Unknown Traffic192.168.11.2053811159.223.126.41443TCP
2025-03-11T23:44:59.382526+010020283713Unknown Traffic192.168.11.2053832159.223.126.41443TCP
2025-03-11T23:45:02.573081+010020283713Unknown Traffic192.168.11.2053876159.223.126.41443TCP
2025-03-11T23:45:03.806176+010020283713Unknown Traffic192.168.11.2053895159.223.126.41443TCP
2025-03-11T23:45:05.232055+010020283713Unknown Traffic192.168.11.2053916159.223.126.41443TCP
2025-03-11T23:45:07.994187+010020283713Unknown Traffic192.168.11.2053954159.223.126.41443TCP
2025-03-11T23:45:08.661447+010020283713Unknown Traffic192.168.11.2053964159.223.126.41443TCP
2025-03-11T23:45:10.080112+010020283713Unknown Traffic192.168.11.2053986159.223.126.41443TCP
2025-03-11T23:45:13.414732+010020283713Unknown Traffic192.168.11.2054032159.223.126.41443TCP
2025-03-11T23:45:14.501057+010020283713Unknown Traffic192.168.11.2054048159.223.126.41443TCP
2025-03-11T23:45:15.918013+010020283713Unknown Traffic192.168.11.2054070159.223.126.41443TCP
2025-03-11T23:45:18.938977+010020283713Unknown Traffic192.168.11.2054096159.223.126.41443TCP
2025-03-11T23:45:20.341045+010020283713Unknown Traffic192.168.11.2054103159.223.126.41443TCP
2025-03-11T23:45:21.757225+010020283713Unknown Traffic192.168.11.2054118159.223.126.41443TCP
2025-03-11T23:45:24.369042+010020283713Unknown Traffic192.168.11.2054155159.223.126.41443TCP
2025-03-11T23:45:25.178409+010020283713Unknown Traffic192.168.11.2054167159.223.126.41443TCP
2025-03-11T23:45:26.595641+010020283713Unknown Traffic192.168.11.2054187159.223.126.41443TCP
2025-03-11T23:45:29.800769+010020283713Unknown Traffic192.168.11.2054233159.223.126.41443TCP
2025-03-11T23:45:31.017416+010020283713Unknown Traffic192.168.11.2054251159.223.126.41443TCP
2025-03-11T23:45:32.437983+010020283713Unknown Traffic192.168.11.2054271159.223.126.41443TCP
2025-03-11T23:45:35.223116+010020283713Unknown Traffic192.168.11.2054311159.223.126.41443TCP
2025-03-11T23:45:35.855401+010020283713Unknown Traffic192.168.11.2054321159.223.126.41443TCP
2025-03-11T23:45:37.456599+010020283713Unknown Traffic192.168.11.2054344159.223.126.41443TCP
2025-03-11T23:45:40.746848+010020283713Unknown Traffic192.168.11.2054390159.223.126.41443TCP
2025-03-11T23:45:41.881492+010020283713Unknown Traffic192.168.11.2054408159.223.126.41443TCP
2025-03-11T23:45:43.296920+010020283713Unknown Traffic192.168.11.2054427159.223.126.41443TCP
2025-03-11T23:45:46.167867+010020283713Unknown Traffic192.168.11.2054468159.223.126.41443TCP
2025-03-11T23:45:46.717138+010020283713Unknown Traffic192.168.11.2054477159.223.126.41443TCP
2025-03-11T23:45:48.318353+010020283713Unknown Traffic192.168.11.2054500159.223.126.41443TCP
2025-03-11T23:45:51.583444+010020283713Unknown Traffic192.168.11.2054546159.223.126.41443TCP
2025-03-11T23:45:52.754084+010020283713Unknown Traffic192.168.11.2054564159.223.126.41443TCP
2025-03-11T23:45:54.163361+010020283713Unknown Traffic192.168.11.2054584159.223.126.41443TCP
2025-03-11T23:45:57.010526+010020283713Unknown Traffic192.168.11.2054625159.223.126.41443TCP
2025-03-11T23:45:57.530241+010020283713Unknown Traffic192.168.11.2054633159.223.126.41443TCP
2025-03-11T23:45:57.591851+010020283713Unknown Traffic192.168.11.2054635159.223.126.41443TCP
2025-03-11T23:45:57.946749+010020283713Unknown Traffic192.168.11.2054641159.223.126.41443TCP
2025-03-11T23:45:59.784134+010020283713Unknown Traffic192.168.11.2054668159.223.126.41443TCP
2025-03-11T23:46:12.208759+010020283713Unknown Traffic192.168.11.2054843159.223.126.41443TCP
2025-03-11T23:46:13.623454+010020283713Unknown Traffic192.168.11.2054865159.223.126.41443TCP
2025-03-11T23:46:15.030300+010020283713Unknown Traffic192.168.11.2054884159.223.126.41443TCP
2025-03-11T23:46:16.447427+010020283713Unknown Traffic192.168.11.2054906159.223.126.41443TCP
2025-03-11T23:46:16.947497+010020283713Unknown Traffic192.168.11.2054913159.223.126.41443TCP
2025-03-11T23:46:17.882320+010020283713Unknown Traffic192.168.11.2054927159.223.126.41443TCP
2025-03-11T23:46:19.299753+010020283713Unknown Traffic192.168.11.2054948159.223.126.41443TCP
2025-03-11T23:46:22.370321+010020283713Unknown Traffic192.168.11.2054991159.223.126.41443TCP
2025-03-11T23:46:23.722353+010020283713Unknown Traffic192.168.11.2055011159.223.126.41443TCP
2025-03-11T23:46:25.140579+010020283713Unknown Traffic192.168.11.2055032159.223.126.41443TCP
2025-03-11T23:46:27.793939+010020283713Unknown Traffic192.168.11.2055069159.223.126.41443TCP
2025-03-11T23:46:28.560559+010020283713Unknown Traffic192.168.11.2055082159.223.126.41443TCP
2025-03-11T23:46:30.043722+010020283713Unknown Traffic192.168.11.2055102159.223.126.41443TCP
2025-03-11T23:46:33.216304+010020283713Unknown Traffic192.168.11.2055148159.223.126.41443TCP
2025-03-11T23:46:34.482362+010020283713Unknown Traffic192.168.11.2055166159.223.126.41443TCP
2025-03-11T23:46:35.902855+010020283713Unknown Traffic192.168.11.2055187159.223.126.41443TCP
2025-03-11T23:46:38.638910+010020283713Unknown Traffic192.168.11.2055226159.223.126.41443TCP
2025-03-11T23:46:39.322280+010020283713Unknown Traffic192.168.11.2055237159.223.126.41443TCP
2025-03-11T23:46:40.738051+010020283713Unknown Traffic192.168.11.2055258159.223.126.41443TCP
2025-03-11T23:46:44.057166+010020283713Unknown Traffic192.168.11.2055304159.223.126.41443TCP
2025-03-11T23:46:45.160477+010020283713Unknown Traffic192.168.11.2055321159.223.126.41443TCP
2025-03-11T23:46:46.578258+010020283713Unknown Traffic192.168.11.2055341159.223.126.41443TCP
2025-03-11T23:46:49.581181+010020283713Unknown Traffic192.168.11.2055385159.223.126.41443TCP
2025-03-11T23:46:49.999550+010020283713Unknown Traffic192.168.11.2055391159.223.126.41443TCP
2025-03-11T23:46:51.416708+010020283713Unknown Traffic192.168.11.2055412159.223.126.41443TCP
2025-03-11T23:46:54.998881+010020283713Unknown Traffic192.168.11.2055464159.223.126.41443TCP
2025-03-11T23:46:55.838717+010020283713Unknown Traffic192.168.11.2055477159.223.126.41443TCP
2025-03-11T23:46:57.262592+010020283713Unknown Traffic192.168.11.2055497159.223.126.41443TCP
2025-03-11T23:47:00.409673+010020283713Unknown Traffic192.168.11.2055542159.223.126.41443TCP
2025-03-11T23:47:01.677795+010020283713Unknown Traffic192.168.11.2055561159.223.126.41443TCP
2025-03-11T23:47:03.094811+010020283713Unknown Traffic192.168.11.2055583159.223.126.41443TCP
2025-03-11T23:47:05.830862+010020283713Unknown Traffic192.168.11.2055620159.223.126.41443TCP
2025-03-11T23:47:06.515237+010020283713Unknown Traffic192.168.11.2055631159.223.126.41443TCP
2025-03-11T23:47:07.933105+010020283713Unknown Traffic192.168.11.2055652159.223.126.41443TCP
2025-03-11T23:47:11.355048+010020283713Unknown Traffic192.168.11.2055701159.223.126.41443TCP
2025-03-11T23:47:12.355701+010020283713Unknown Traffic192.168.11.2055717159.223.126.41443TCP
2025-03-11T23:47:13.773327+010020283713Unknown Traffic192.168.11.2055739159.223.126.41443TCP
2025-03-11T23:47:16.776817+010020283713Unknown Traffic192.168.11.2055782159.223.126.41443TCP
2025-03-11T23:47:17.191426+010020283713Unknown Traffic192.168.11.2055789159.223.126.41443TCP
2025-03-11T23:47:18.610911+010020283713Unknown Traffic192.168.11.2055809159.223.126.41443TCP
2025-03-11T23:47:22.199020+010020283713Unknown Traffic192.168.11.2055861159.223.126.41443TCP
2025-03-11T23:47:23.033123+010020283713Unknown Traffic192.168.11.2055874159.223.126.41443TCP
2025-03-11T23:47:24.449023+010020283713Unknown Traffic192.168.11.2055896159.223.126.41443TCP
2025-03-11T23:47:27.622400+010020283713Unknown Traffic192.168.11.2055940159.223.126.41443TCP
2025-03-11T23:47:28.137876+010020283713Unknown Traffic192.168.11.2055949159.223.126.41443TCP
2025-03-11T23:47:28.187583+010020283713Unknown Traffic192.168.11.2055951159.223.126.41443TCP
2025-03-11T23:47:28.544999+010020283713Unknown Traffic192.168.11.2055957159.223.126.41443TCP
2025-03-11T23:47:30.358782+010020283713Unknown Traffic192.168.11.2055984159.223.126.41443TCP
2025-03-11T23:47:42.786808+010020283713Unknown Traffic192.168.11.2056162159.223.126.41443TCP
2025-03-11T23:47:44.205833+010020283713Unknown Traffic192.168.11.2056181159.223.126.41443TCP
2025-03-11T23:47:45.622533+010020283713Unknown Traffic192.168.11.2056203159.223.126.41443TCP
2025-03-11T23:47:47.038762+010020283713Unknown Traffic192.168.11.2056222159.223.126.41443TCP
2025-03-11T23:47:47.506176+010020283713Unknown Traffic192.168.11.2056229159.223.126.41443TCP
TimestampSIDSeverityClasstypeSource IPSource PortDestination IPDestination PortProtocol
2025-03-11T23:38:38.710795+010028033043Unknown Traffic192.168.11.2049890159.223.126.41443TCP
2025-03-11T23:40:09.241764+010028033043Unknown Traffic192.168.11.2050383159.223.126.41443TCP
2025-03-11T23:41:39.708386+010028033043Unknown Traffic192.168.11.2051212159.223.126.41443TCP
2025-03-11T23:43:10.492771+010028033043Unknown Traffic192.168.11.2052305159.223.126.41443TCP
2025-03-11T23:44:41.109234+010028033043Unknown Traffic192.168.11.2053562159.223.126.41443TCP
2025-03-11T23:46:11.736288+010028033043Unknown Traffic192.168.11.2054832159.223.126.41443TCP
2025-03-11T23:47:42.290644+010028033043Unknown Traffic192.168.11.2056148159.223.126.41443TCP

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

barindex
Multi AV Scanner detection for dropped file
Source: C:\Users\user\PCAppStore\AutoUpdater.exeReversingLabs: Detection: 20%
Source: C:\Users\user\PCAppStore\PcAppStore.exeReversingLabs: Detection: 21%
Source: C:\Users\user\PCAppStore\Watchdog.exeReversingLabs: Detection: 18%
Multi AV Scanner detection for submitted file
Source: Setup.exeVirustotal: Detection: 32%Perma Link
Source: C:\Users\user\Desktop\Setup.exeEXE: C:\Users\user\PCAppStore\PcAppStore.exeJump to behavior
Source: C:\Users\user\Desktop\Setup.exeEXE: C:\Users\user\PCAppStore\AutoUpdater.exeJump to behavior
Source: C:\Users\user\Desktop\Setup.exeEXE: C:\Users\user\PCAppStore\Uninstaller.exeJump to behavior
Source: C:\Users\user\Desktop\Setup.exeEXE: C:\Users\user\PCAppStore\Watchdog.exeJump to behavior
Source: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009HTTP Parser: No favicon
Source: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009HTTP Parser: No favicon
Source: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009HTTP Parser: No favicon
Source: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009HTTP Parser: No favicon
Source: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009HTTP Parser: No favicon

Compliance

barindex
EXE planting / hijacking vulnerabilities found
Source: C:\Users\user\Desktop\Setup.exeEXE: C:\Users\user\PCAppStore\PcAppStore.exeJump to behavior
Source: C:\Users\user\Desktop\Setup.exeEXE: C:\Users\user\PCAppStore\AutoUpdater.exeJump to behavior
Source: C:\Users\user\Desktop\Setup.exeEXE: C:\Users\user\PCAppStore\Uninstaller.exeJump to behavior
Source: C:\Users\user\Desktop\Setup.exeEXE: C:\Users\user\PCAppStore\Watchdog.exeJump to behavior
Uses 32bit PE files
Source: Setup.exeStatic PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE
Uses insecure TLS / SSL version for HTTPS connection
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50055 version: TLS 1.0
Creates a directory in C:\Program Files
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\scoped_dir2800_562204866Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\chrome_BITS_2800_708963515Jump to behavior
Creates license or readme file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\PCAppStore\ReadMe.txtJump to behavior
PE / OLE file has a valid certificate
Source: Setup.exeStatic PE information: certificate valid
Uses secure TLS version for HTTPS connections
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49771 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:49785 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49798 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49890 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49903 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49905 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49907 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49910 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49923 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:49926 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49945 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49969 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49992 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49997 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50001 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50004 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50020 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50033 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50045 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50079 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50114 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50148 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50183 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50216 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50249 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50282 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50286 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50291 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50299 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50302 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50303 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50306 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50309 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50311 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50312 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50313 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50316 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50319 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50320 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50323 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50326 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50327 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50330 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50332 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50334 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50337 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50340 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50341 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50344 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50347 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50348 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50351 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50354 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50355 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50358 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50361 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50362 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50365 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50367 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50369 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50372 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50373 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50376 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50379 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50380 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50383 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50385 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50389 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50391 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50394 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50397 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50398 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50402 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50404 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50406 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50409 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50412 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50414 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50417 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50418 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50422 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50425 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50426 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50427 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50430 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50433 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50435 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50438 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50439 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50442 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50446 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50447 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50450 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50453 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50454 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50457 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50459 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50461 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50464 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50465 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50467 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50469 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50472 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50473 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50476 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50478 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50479 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50480 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50481 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50483 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50484 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50486 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50487 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50489 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50490 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50492 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50493 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50494 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50496 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50497 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50498 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50500 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50501 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50502 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50503 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50505 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50506 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50507 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50509 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50510 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50511 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50512 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50515 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50516 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50517 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50519 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50520 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50521 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50523 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50524 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50527 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50528 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50529 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50530 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50532 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50533 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50534 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50536 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50537 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50538 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50540 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50541 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50542 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50543 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50545 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50546 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50547 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50549 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50550 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50551 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50553 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50554 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50555 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50556 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50558 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50559 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50560 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50562 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50563 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50565 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50566 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50568 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50569 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50570 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50572 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50573 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50574 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50575 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50578 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50579 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50581 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50582 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50583 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50584 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50587 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50586 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50588 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50590 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50591 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50592 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50594 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50595 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50596 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50597 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50599 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50600 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50601 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50602 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50604 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50606 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50607 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50609 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50610 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50611 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50613 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50614 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50615 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50616 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50619 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50620 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50621 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50623 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50624 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50625 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50626 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50628 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50629 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50630 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50632 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50633 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50634 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50636 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50637 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50638 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50639 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50641 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50642 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50643 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50645 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50646 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50647 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50648 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50650 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50651 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50652 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50653 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50655 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50657 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50659 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50660 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50661 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50662 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50664 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50665 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50666 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50667 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50670 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50671 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50673 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50674 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50675 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50676 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50678 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50679 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50680 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50681 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50683 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50684 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50685 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50687 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50688 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50689 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50691 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50692 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50693 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50694 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50695 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50697 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50698 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50699 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50700 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50702 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50703 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50704 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50705 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50706 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50708 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50709 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50710 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50711 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50712 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50713 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50714 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50715 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50716 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50717 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50718 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50719 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50720 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50721 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50723 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50724 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50725 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50726 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50727 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50728 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50729 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50730 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50731 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50732 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50733 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50734 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50735 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50736 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50737 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50738 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50739 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50740 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50741 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50742 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50743 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50744 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50745 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50746 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50747 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50748 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50749 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50750 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50751 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50752 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50754 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50755 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50753 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50757 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50758 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50759 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50760 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50761 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50762 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50763 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50764 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50765 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50766 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50767 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50768 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50770 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50771 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50772 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50773 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50774 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50775 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50776 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50777 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50778 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50779 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50780 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50781 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50782 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50783 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50784 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50785 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50786 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50787 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50788 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50789 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50790 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50791 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50792 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50793 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50794 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50795 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50796 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50797 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50798 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50799 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50800 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50801 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50802 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50803 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50804 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50805 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50806 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50807 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50808 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50809 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50811 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50812 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50813 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50814 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50815 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50816 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50817 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50818 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50819 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50820 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50821 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50822 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50823 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50825 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50826 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50827 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50828 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50829 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50830 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50831 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50832 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50833 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50834 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50835 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50836 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50837 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50838 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50839 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50840 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50841 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50842 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50843 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50844 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50845 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50846 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50847 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50848 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50849 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50850 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50851 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50852 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50853 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50854 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50855 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50856 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50858 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50859 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50860 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50861 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50862 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50863 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50864 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50865 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50866 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50867 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50869 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50868 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50870 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50872 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50873 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50874 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50875 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50876 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50878 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50877 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50879 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50880 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50881 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50882 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50883 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50884 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50885 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50886 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50887 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50888 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50889 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50890 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50891 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50892 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50893 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50894 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50895 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50896 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50897 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50898 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50900 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50901 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50902 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50903 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50904 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50905 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50906 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50907 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50908 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50909 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50910 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50912 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50913 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50914 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50899 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50915 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50916 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50917 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50918 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50920 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50919 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50921 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50923 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50924 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50925 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50926 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50927 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50928 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50929 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50930 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50931 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50932 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50933 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50934 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50935 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50936 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50937 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50938 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50939 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50941 version: TLS 1.2
Contains modern PE file flags such as dynamic base (ASLR) or NX
Source: Setup.exeStatic PE information: DYNAMIC_BASE, NX_COMPAT, NO_SEH, TERMINAL_SERVER_AWARE
Binary contains paths to debug symbols
Source: Binary string: C:\Build\Build_2009_D20250220T163010\fa_rss\engine\Release\PCAppStore.pdb source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp
Source: Binary string: C:\Build\Build_2009_D20250220T163010\fa_rss\AppStoreUpdater\Release\auto_updater.pdb1 source: AutoUpdater.exe, 0000000C.00000002.138550201619.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000C.00000000.138533398411.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000002.138792307736.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000000.138775959618.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp
Source: Binary string: C:\Build\Build_2009_D20250220T163010\fa_rss\AppStoreUpdater\Release\auto_updater.pdb source: AutoUpdater.exe, 0000000C.00000002.138550201619.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000C.00000000.138533398411.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000002.138792307736.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000000.138775959618.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp
Source: Binary string: C:\Build\Build_2009_D20250220T163010\fa_rss\Watchdog\x64\Release\Watchdog.pdb source: Watchdog.exe, 00000005.00000000.138366604812.00007FF6463FA000.00000002.00000001.01000000.00000010.sdmp, Watchdog.exe, 0000000D.00000000.138614183913.00007FF6463FA000.00000002.00000001.01000000.00000010.sdmp, Watchdog.exe, 00000010.00000000.138857008487.00007FF6463FA000.00000002.00000001.01000000.00000010.sdmp
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_00405C49 GetTempPathW,DeleteFileW,lstrcatW,lstrcatW,lstrlenW,FindFirstFileW,FindNextFileW,FindClose,0_2_00405C49
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_00406873 FindFirstFileW,FindClose,0_2_00406873
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_0040290B FindFirstFileW,0_2_0040290B
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6242C7C00 FindFirstFileExW,GetLastError,DeleteFileW,FindNextFileW,GetLastError,RemoveDirectoryW,4_2_00007FF6242C7C00
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62444DDDC FindClose,FindFirstFileExW,GetLastError,GetCurrentDirectoryW,GetLastError,4_2_00007FF62444DDDC
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62444DE8C GetFileAttributesExW,GetLastError,FindFirstFileW,GetLastError,FindClose,CloseHandle,GetFileInformationByHandleEx,GetLastError,CloseHandle,GetFileInformationByHandleEx,GetLastError,CloseHandle,GetFileInformationByHandleEx,GetLastError,CloseHandle,CloseHandle,CloseHandle,4_2_00007FF62444DE8C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115CD8B0 wsprintfW,FindFirstFileW,wsprintfW,DeleteFileW,FindNextFileW,FindClose,12_2_00007FF6115CD8B0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61161DAF8 FindFirstFileExW,FindNextFileW,FindClose,FindClose,12_2_00007FF61161DAF8
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6242CBA90 InternetCheckConnectionW,4_2_00007FF6242CBA90
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624430C70 URLDownloadToFileW,ShellExecuteExW,4_2_00007FF624430C70
Source: global trafficHTTP traffic detected: GET /api/pcapp_engine.php?a=config&guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009 HTTP/1.1Host: pcapp.storeCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /api/pcapp_engine.php?a=config&guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009 HTTP/1.1Host: pcapp.storeCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /api/pcapp_engine.php?a=config&guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009 HTTP/1.1Host: pcapp.storeCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /api/pcapp_engine.php?a=config&guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009 HTTP/1.1Host: pcapp.storeCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /api/pcapp_engine.php?a=config&guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009 HTTP/1.1Host: pcapp.storeCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /api/pcapp_engine.php?a=config&guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009 HTTP/1.1Host: pcapp.storeCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /api/pcapp_engine.php?a=config&guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009 HTTP/1.1Host: pcapp.storeCache-Control: no-cache
Source: Joe Sandbox ViewIP Address: 209.222.21.115 209.222.21.115
Source: Joe Sandbox ViewIP Address: 159.223.126.41 159.223.126.41
Source: Joe Sandbox ViewIP Address: 18.164.116.13 18.164.116.13
Source: Joe Sandbox ViewJA3 fingerprint: 1138de370e523e824bbca92d049a3777
Source: Joe Sandbox ViewJA3 fingerprint: a0e9f5d64349fb13191bc781f81f42e1
Source: Joe Sandbox ViewJA3 fingerprint: 37f463bf4616ecd445d4a1937da06e19
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49798 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49894 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49898 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49916 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49901 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49925 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49910 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49907 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49903 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49932 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49945 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49913 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49951 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49972 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49969 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49957 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49998 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49979 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50020 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49997 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49923 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:49992 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50045 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50004 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50079 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50148 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50216 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50282 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50183 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50303 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50114 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50249 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50401 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50465 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50390 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50434 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50410 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50525 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50286 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50291 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50475 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50426 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50421 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50443 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50656 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50514 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50553 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50485 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50577 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50564 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50507 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50669 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50722 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50599 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50605 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50694 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50707 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50646 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50618 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50799 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50824 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50747 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50756 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50810 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50850 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50966 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50769 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51015 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50857 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51030 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50911 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51077 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50871 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51093 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50904 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51068 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51073 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50922 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50952 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50981 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51224 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51007 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51254 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51239 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51302 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51061 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51275 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51367 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51350 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51398 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51424 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51461 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51271 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51287 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51335 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51490 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51597 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51651 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51407 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51667 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51685 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51475 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51587 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51524 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51716 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51529 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51795 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51614 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51547 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51874 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51725 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51918 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51813 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51928 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51741 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51856 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52019 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52055 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51782 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51986 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52137 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52130 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51850 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52123 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52136 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52001 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:51946 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52336 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52380 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52317 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52413 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52062 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52527 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52081 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52472 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52493 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52161 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52454 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52394 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52675 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52618 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52704 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52764 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52637 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52685 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52785 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52355 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52539 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52864 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52845 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52373 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52558 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52910 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52899 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52825 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52749 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52974 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52991 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52602 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53060 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53128 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:52930 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53245 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53079 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53205 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53224 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53142 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53366 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53282 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53162 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53373 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53378 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53313 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53012 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53050 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53616 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53575 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53658 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53401 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53293 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53644 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53761 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53635 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53742 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53358 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53895 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53876 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53916 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53832 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53595 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53964 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54032 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53954 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53721 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53986 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54096 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54048 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54070 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54118 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53798 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54155 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54187 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53679 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54233 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54251 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:53811 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54271 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54344 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54311 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54321 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54390 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54103 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54427 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54468 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54167 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54477 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54500 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54584 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54546 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54408 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54633 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54635 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54625 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54641 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54668 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54865 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54843 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55032 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54884 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55069 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54564 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54927 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54913 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54948 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54991 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55187 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55166 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55102 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55082 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55258 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55148 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55011 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:54906 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55464 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55226 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55385 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55412 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55477 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55341 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55583 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55391 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55561 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55631 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55701 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55497 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55304 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55321 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55789 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55542 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55782 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55717 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55809 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55957 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55940 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55237 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55984 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55951 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55861 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55874 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55739 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55652 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55896 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:56229 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55620 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:56222 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:55949 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:56181 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:56162 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:56203 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.11.20:50007 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2803304 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern HCa : 192.168.11.20:49890 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2803304 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern HCa : 192.168.11.20:50383 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2803304 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern HCa : 192.168.11.20:52305 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2803304 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern HCa : 192.168.11.20:51212 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2803304 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern HCa : 192.168.11.20:56148 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2803304 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern HCa : 192.168.11.20:53562 -> 159.223.126.41:443
Source: Network trafficSuricata IDS: 2803304 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern HCa : 192.168.11.20:54832 -> 159.223.126.41:443
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50055 version: TLS 1.0
Source: unknownTCP traffic detected without corresponding DNS query: 23.57.90.161
Source: unknownTCP traffic detected without corresponding DNS query: 23.203.176.221
Source: unknownTCP traffic detected without corresponding DNS query: 23.203.176.221
Source: unknownTCP traffic detected without corresponding DNS query: 23.219.82.57
Source: unknownTCP traffic detected without corresponding DNS query: 142.250.176.195
Source: unknownTCP traffic detected without corresponding DNS query: 142.250.176.195
Source: unknownTCP traffic detected without corresponding DNS query: 20.190.152.22
Source: unknownTCP traffic detected without corresponding DNS query: 20.190.152.22
Source: unknownTCP traffic detected without corresponding DNS query: 23.57.90.161
Source: unknownTCP traffic detected without corresponding DNS query: 23.57.90.161
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: unknownUDP traffic detected without corresponding DNS query: 239.255.255.250
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62441C5E0 InternetOpenW,InternetOpenUrlW,InternetCloseHandle,HttpQueryInfoW,InternetReadFile,InternetCloseHandle,InternetCloseHandle,4_2_00007FF62441C5E0
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_installer&evt_action=localmac&addon[]=D0-50-99-DB-23-97&addon[]=D0-50-99-DB-23-98&_fcid=1741726344365755 HTTP/1.1User-Agent: NSIS_Inetc (Mozilla)Host: pcapp.storeConnection: Keep-AliveCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_mini_installer&evt_action=show_page&p=wel&_fcid=1741726344365755 HTTP/1.1User-Agent: NSIS_Inetc (Mozilla)Host: pcapp.storeConnection: Keep-AliveCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_mini_installer&evt_action=start&_fcid=1741726344365755 HTTP/1.1User-Agent: NSIS_Inetc (Mozilla)Host: pcapp.storeConnection: Keep-AliveCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_mini_installer&evt_action=show_page&p=installing&_fcid=1741726344365755 HTTP/1.1User-Agent: NSIS_Inetc (Mozilla)Host: pcapp.storeConnection: Keep-AliveCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_installer&evt_action=start&_fcid=1741726344365755 HTTP/1.1User-Agent: NSIS_Inetc (Mozilla)Host: pcapp.storeConnection: Keep-AliveCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_installer&evt_action=installing&_fcid=1741726344365755 HTTP/1.1User-Agent: NSIS_Inetc (Mozilla)Host: pcapp.storeConnection: Keep-AliveCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_installer&evt_action=done&_fcid=1741726344365755 HTTP/1.1User-Agent: NSIS_Inetc (Mozilla)Host: pcapp.storeConnection: Keep-AliveCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /installing.php?guid=00000000-0000-0000-0000-D05099DB2397&winver=19042&version=fa.2009&nocache=20250311183822.790&_fcid=1741726344365755 HTTP/1.1Host: pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":0,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741732704&nocache=27802 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009 HTTP/1.1Host: pcapp.storeConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_mini_installer&evt_action=done&_fcid=1741726344365755 HTTP/1.1User-Agent: NSIS_Inetc (Mozilla)Host: pcapp.storeConnection: Keep-AliveCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":1,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741733424&nocache=30154 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /lp/lpd_installing_r2/src/lpd_installing_r2.min.css?nocache=1731594251558 HTTP/1.1Host: pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/front_img/lp/lpd_installing_r2/img/done_windows_icon.svg HTTP/1.1Host: pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /src/main.js HTTP/1.1Host: pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /lp/lpd_installing_r2/src/lpd_installing_r2.min.js?nocache=1731594251558 HTTP/1.1Host: pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/front_img/logo/logo-dark.svg HTTP/1.1Host: pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=channel&id=-3&eng_time=1741732704547&nocache=19734375 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":2,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741734024&nocache=32113 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pcapp/images/front_img/lp/lpd_installing_r2/img/done_windows_icon.svg HTTP/1.1Host: repository.pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pcapp/images/front_img/logo/logo-dark.svg HTTP/1.1Host: repository.pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":3,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741734624&nocache=1304 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /images/front_img/lp/lpd_installing_r2/img/done_cursor_icon.svg HTTP/1.1Host: pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/lp/lpd_installing_r2/src/lpd_installing_r2.min.css?nocache=1731594251558Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755
Source: global trafficHTTP traffic detected: GET /pagead/viewthroughconversion/858128210/?random=1741732706480&cv=11&fst=1741732706480&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /td/rul/858128210?random=1741732706480&cv=11&fst=1741732706480&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pagead/viewthroughconversion/858128210/?random=1741732706496&cv=11&fst=1741732706496&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dpage_view&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pcapp/images/front_img/logo/logo-dark.svg HTTP/1.1Host: repository.pcapp.storeConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706
Source: global trafficHTTP traffic detected: GET /pcapp/images/front_img/lp/lpd_installing_r2/img/done_windows_icon.svg HTTP/1.1Host: repository.pcapp.storeConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706
Source: global trafficHTTP traffic detected: GET /td/rul/858128210?random=1741732706496&cv=11&fst=1741732706496&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dpage_view HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /td/ga/rul?tid=G-VFQWFX3X1C&gacid=472732773.1741732707&gtm=45je53a1v898645365za200zb9103256652&dma=0&gcd=13l3l3l3l1l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&z=1979592708 HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":4,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741735224&nocache=3264 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /api/api.php HTTP/1.1Host: pcapp.storeConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706; _ga=GA1.1.472732773.1741732707; _ga_VFQWFX3X1C=GS1.1.1741732706.1.0.1741732706.60.0.0
Source: global trafficHTTP traffic detected: GET /pixelgif.php HTTP/1.1Host: pcapp.storeConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706; _ga=GA1.1.472732773.1741732707; _ga_VFQWFX3X1C=GS1.1.1741732706.1.0.1741732706.60.0.0
Source: global trafficHTTP traffic detected: GET /pcapp/images/front_img/lp/lpd_installing_r2/img/done_cursor_icon.svg HTTP/1.1Host: repository.pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706; _ga=GA1.1.472732773.1741732707; _ga_VFQWFX3X1C=GS1.1.1741732706.1.0.1741732706.60.0.0
Source: global trafficHTTP traffic detected: GET /td/rul/858128210?random=1741732706771&cv=11&fst=1741732706771&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&label=kTaFCIuq0YYZENL-l5kD&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&value=1&currency_code=USD&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dconversion HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pagead/viewthroughconversion/858128210/?random=1741732706771&cv=11&fst=1741732706771&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&label=kTaFCIuq0YYZENL-l5kD&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&value=1&currency_code=USD&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dconversion&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":5,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741735824&nocache=5223 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pagead/1p-user-list/858128210/?random=1741732706480&cv=11&fst=1741730400000&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMAg0qH9yCBF-rA7M2arXupwNMXix1eg&random=651137922&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pagead/1p-user-list/858128210/?random=1741732706496&cv=11&fst=1741730400000&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dpage_view&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMJk9kiByiRxRseLxXhXTGYNWSDqrScQ&random=945127615&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pagead/1p-user-list/858128210/?random=1741732706771&cv=11&fst=1741730400000&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&label=kTaFCIuq0YYZENL-l5kD&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&value=1&currency_code=USD&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dconversion&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMj8lAFLceRBM2UkRPXcD88sLx9jjlFA&random=240723539&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":6,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741736424&nocache=7182 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /api/api.php HTTP/1.1Host: pcapp.storeConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706; _ga=GA1.1.472732773.1741732707; _ga_VFQWFX3X1C=GS1.1.1741732706.1.0.1741732706.60.0.0
Source: global trafficHTTP traffic detected: GET /pcapp/images/front_img/lp/lpd_installing_r2/img/done_cursor_icon.svg HTTP/1.1Host: repository.pcapp.storeConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706; _ga=GA1.1.472732773.1741732707; _ga_VFQWFX3X1C=GS1.1.1741732706.1.0.1741732706.60.0.0
Source: global trafficHTTP traffic detected: GET /pagead/1p-user-list/858128210/?random=1741732706480&cv=11&fst=1741730400000&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMAg0qH9yCBF-rA7M2arXupwNMXix1eg&random=651137922&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pagead/1p-user-list/858128210/?random=1741732706496&cv=11&fst=1741730400000&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dpage_view&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMJk9kiByiRxRseLxXhXTGYNWSDqrScQ&random=945127615&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /td/rul/16677593363?random=1741732708152&cv=11&fst=1741732708152&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9202749091za200zb9103256652&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102643510~102717422~102788824~102791784~102814060~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&label=aD6cCLyzi4MaEJPCv5A-&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&value=1&currency_code=USD&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dconversion HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global trafficHTTP traffic detected: GET /pagead/viewthroughconversion/16677593363/?random=1741732708152&cv=11&fst=1741732708152&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9202749091za200zb9103256652&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102643510~102717422~102788824~102791784~102814060~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&label=aD6cCLyzi4MaEJPCv5A-&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&value=1&currency_code=USD&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dconversion&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":7,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741737023&nocache=9138 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pagead/1p-user-list/858128210/?random=1741732706771&cv=11&fst=1741730400000&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9103256652za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102717422~102788824~102791784~102814059~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&label=kTaFCIuq0YYZENL-l5kD&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&value=1&currency_code=USD&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dconversion&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMj8lAFLceRBM2UkRPXcD88sLx9jjlFA&random=240723539&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":8,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741737623&nocache=11098 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pagead/1p-user-list/16677593363/?random=1741732708152&cv=11&fst=1741730400000&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9202749091za200zb9103256652&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102643510~102717422~102788824~102791784~102814060~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&label=aD6cCLyzi4MaEJPCv5A-&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&value=1&currency_code=USD&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dconversion&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCjtLzM8NO_JImz56qx8uOmRr-JErt2G0Pt0BJQTN7vIVtjDRq55FbK&random=11475057&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":9,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741738283&nocache=13253 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /lp/appstore/img/favicon.ico HTTP/1.1Host: pcapp.storeConnection: keep-alivesec-ch-ua: "Chromium";v="128", "Not;A=Brand";v="24", "Google Chrome";v="128"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pcapp.store/?p=lpd_installing_r2&guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&_winver=19042&version=fa.2009Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706; _ga=GA1.1.472732773.1741732707; _ga_VFQWFX3X1C=GS1.1.1741732706.1.0.1741732706.60.0.0
Source: global trafficHTTP traffic detected: GET /pagead/1p-user-list/16677593363/?random=1741732708152&cv=11&fst=1741730400000&bg=ffffff&guid=ON&async=1&gtm=45be53a1v9202749091za200zb9103256652&gcd=13l3l3l3l1l1&dma=0&tag_exp=102067808~102482433~102587591~102640600~102643510~102717422~102788824~102791784~102814060~102825837&u_w=1920&u_h=1080&url=https%3A%2F%2Fpcapp.store%2F%3Fp%3Dlpd_installing_r2%26guid%3D00000000-0000-0000-0000-D05099DB2397%26_fcid%3D1741726344365755%26_winver%3D19042%26version%3Dfa.2009&label=aD6cCLyzi4MaEJPCv5A-&hn=www.googleadservices.com&frm=0&tiba=APP%20STORE%3A%20Installing&value=1&currency_code=USD&npa=0&pscdl=noapi&auid=1851757945.1741732706&uaa=x86&uab=64&uafvl=Chromium%3B128.0.6613.120%7CNot%253BA%253DBrand%3B24.0.0.0%7CGoogle%2520Chrome%3B128.0.6613.120&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dconversion&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCjtLzM8NO_JImz56qx8uOmRr-JErt2G0Pt0BJQTN7vIVtjDRq55FbK&random=11475057&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*X-Client-Data: CI+2yQEIorbJAQipncoBCMD2ygEIlaHLAQic/swBCIWgzQEI1r3OARjBy8wBSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":10,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741738883&nocache=15212 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /lp/appstore/img/favicon.ico HTTP/1.1Host: pcapp.storeConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706; _ga=GA1.1.472732773.1741732707; _ga_VFQWFX3X1C=GS1.1.1741732706.1.0.1741732706.60.0.0
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":11,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741739423&nocache=16976 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":12,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741740023&nocache=18935 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":13,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741740623&nocache=20895 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /api/api.php HTTP/1.1Host: pcapp.storeConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706; _ga=GA1.1.472732773.1741732707; _ga_VFQWFX3X1C=GS1.1.1741732706.1.0.1741732706.60.0.0
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":14,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741741223&nocache=22854 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":15,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741741883&nocache=25009 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":16,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741742483&nocache=26969 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":17,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741743083&nocache=28928 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":18,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741743683&nocache=30887 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":19,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741744283&nocache=79 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":20,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741744883&nocache=2038 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":21,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741745483&nocache=3997 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":22,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741746083&nocache=5957 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /api/api.php HTTP/1.1Host: pcapp.storeConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _fcid=1741726344365755; guid=00000000-0000-0000-0000-D05099DB2397; _gcl_au=1.1.1851757945.1741732706; _ga=GA1.1.472732773.1741732707; _ga_VFQWFX3X1C=GS1.1.1741732706.1.0.1741732706.60.0.0
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":23,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741746682&nocache=7913 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /api/pcapp_engine.php?a=config&guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009 HTTP/1.1Host: pcapp.storeCache-Control: no-cache
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":24,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741747282&nocache=9872 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_runtime_installation&result=error&eng_time=1741732717220&nocache=19746812 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":25,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741747882&nocache=11831 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":26,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741748482&nocache=13791 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":27,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741749142&nocache=15946 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=started&prnt=Setup.exe&sys_lang=en-US&eng_time=1741732717228&nocache=19748218 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":28,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741749742&nocache=17905 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":29,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741750342&nocache=19865 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732717990&nocache=19749640 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":30,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741750942&nocache=21824 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_auto_updater&evt_action=start&&eng_time=1741732721209&nocache=19750031 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":31,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741751542&nocache=23783 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /fa_version.php?guid=00000000-0000-0000-0000-D05099DB2397&end_v=fa.2009&nocache=19750453 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: pcapp.storeConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":32,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741752142&nocache=25743 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_auto_updater&evt_action=end&&eng_time=1741732722100&nocache=19750921 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":33,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741752742&nocache=27702 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":34,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741753342&nocache=29661 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=menu_search&eng_time=1741732722990&nocache=19751828 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":35,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741754002&nocache=31817 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":36,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741754542&nocache=812 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_menu_search&evt_action=deleted&&eng_time=1741732723408&nocache=19753078 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":37,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741755201&nocache=2964 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":38,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741755801&nocache=4924 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732723412&nocache=19754484 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":39,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741756401&nocache=6883 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":40,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741757001&nocache=8842 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":41,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741757601&nocache=10802 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":42,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741758201&nocache=12761 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":43,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741758861&nocache=14916 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":44,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741759461&nocache=16876 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=menu_store&eng_time=1741732728412&nocache=19757250 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":45,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741760061&nocache=18835 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_menu_store&evt_action=deleted&&eng_time=1741732728826&nocache=19757906 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":0,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741732729&nocache=27884 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":46,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741760661&nocache=20794 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":1,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741733329&nocache=29843 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":47,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741761261&nocache=22754 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":2,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741733929&nocache=31803 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":48,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741761861&nocache=24713 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732728831&nocache=19759328 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":3,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741734529&nocache=994 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":49,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741762460&nocache=26669 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":4,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741735129&nocache=2950 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":50,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741763060&nocache=28628 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":5,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741735788&nocache=5105 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":51,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741763660&nocache=30588 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":6,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741736328&nocache=6869 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":52,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741764260&nocache=32547 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":7,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741736928&nocache=8828 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":53,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741764860&nocache=1738 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":8,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741737528&nocache=10788 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":54,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741765460&nocache=3698 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=hint&eng_time=1741732733833&nocache=19762671 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":9,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741738128&nocache=12747 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":55,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741766060&nocache=5657 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":10,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741738728&nocache=14706 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":56,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741766720&nocache=7812 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_hint&evt_action=deleted&&eng_time=1741732734247&nocache=19763750 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":11,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741739328&nocache=16666 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":57,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741767320&nocache=9772 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":12,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741739988&nocache=18821 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":58,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741767920&nocache=11731 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":13,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741740588&nocache=20780 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732734251&nocache=19765171 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":59,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741768520&nocache=13690 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":14,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741741188&nocache=22740 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":60,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741769120&nocache=15650 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":15,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741741848&nocache=24895 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":61,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741769720&nocache=17609 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":16,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741742448&nocache=26854 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":62,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741770320&nocache=19568 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":17,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741743047&nocache=28810 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":63,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741770979&nocache=21720 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":18,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741743647&nocache=30770 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":64,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741771579&nocache=23680 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=menu_search&eng_time=1741732739262&nocache=19768093 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":19,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741744247&nocache=32729 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":65,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741772179&nocache=25639 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_menu_search&evt_action=deleted&&eng_time=1741732739676&nocache=19768593 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":20,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741744847&nocache=1920 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":66,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741772839&nocache=27794 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":21,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741745447&nocache=3880 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":67,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741773439&nocache=29754 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":22,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741746047&nocache=5839 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":68,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741774039&nocache=31713 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732739679&nocache=19770000 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":23,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741746647&nocache=7798 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":69,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741774699&nocache=1100 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":24,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741747247&nocache=9758 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":70,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741775359&nocache=3256 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":71,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741776019&nocache=5411 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":25,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741747907&nocache=11913 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":72,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741776739&nocache=7762 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":26,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741748507&nocache=13872 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":27,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741749107&nocache=15832 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":73,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741777399&nocache=9917 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":28,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741749707&nocache=17791 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":74,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741778059&nocache=12073 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=menu_store&eng_time=1741732744678&nocache=19773515 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":29,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741750307&nocache=19750 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":75,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741778779&nocache=14424 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":30,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741750847&nocache=21514 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":76,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741779439&nocache=16579 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_auto_updater&evt_action=start&&eng_time=1741732745466&nocache=19774281 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_menu_store&evt_action=deleted&&eng_time=1741732745088&nocache=19774453 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":31,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741751447&nocache=23473 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":77,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741780159&nocache=18930 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /fa_version.php?guid=00000000-0000-0000-0000-D05099DB2397&end_v=fa.2009&nocache=19774718 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: pcapp.storeConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":32,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741752046&nocache=25429 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":78,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741780819&nocache=21086 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_auto_updater&evt_action=end&&eng_time=1741732746374&nocache=19775171 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":33,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741752646&nocache=27389 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":79,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741781539&nocache=23437 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":34,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741753246&nocache=29348 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":80,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741782319&nocache=25984 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":35,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741753846&nocache=31307 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":81,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741783039&nocache=28335 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":36,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741754506&nocache=695 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":82,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741783879&nocache=31075 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":37,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741755166&nocache=2850 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":83,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741784718&nocache=1050 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":38,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741755766&nocache=4809 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":84,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741785498&nocache=3597 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=widget_73412&eng_time=1741732750101&nocache=19778937 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":39,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741756366&nocache=6769 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":85,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741786278&nocache=6145 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":86,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741787118&nocache=8888 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":40,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741757086&nocache=9120 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":87,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741787898&nocache=11435 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":41,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741757746&nocache=11275 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":88,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741788738&nocache=14178 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":42,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741758346&nocache=13234 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":89,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741789638&nocache=17117 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":43,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741759006&nocache=15390 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":90,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741790538&nocache=20056 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":44,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741759666&nocache=17542 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":0,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741732753&nocache=27962 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":91,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741791618&nocache=23583 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":45,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741760265&nocache=19501 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":1,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741733413&nocache=30118 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":92,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741792638&nocache=26914 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":46,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741760865&nocache=21460 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":2,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741734013&nocache=32077 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":47,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741761465&nocache=23420 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":93,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741793718&nocache=30440 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":3,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741734613&nocache=1268 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":48,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741762065&nocache=25379 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":94,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741794618&nocache=611 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=hint&eng_time=1741732755622&nocache=19784453 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":4,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741735213&nocache=3228 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":49,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741762665&nocache=27338 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":95,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741795578&nocache=3746 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":5,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741735813&nocache=5187 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":50,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741763265&nocache=29298 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":96,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741796538&nocache=6881 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":6,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741736413&nocache=7146 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":51,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741763865&nocache=31257 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":97,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741797498&nocache=10016 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732745091&nocache=19786062 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":7,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741737013&nocache=9106 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":52,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741764465&nocache=448 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":98,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741798398&nocache=12955 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":8,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741737612&nocache=11062 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":53,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741765065&nocache=2408 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":99,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741799358&nocache=16090 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":9,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741738212&nocache=13021 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":54,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741765665&nocache=4367 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_widget_73412&evt_action=deleted&&eng_time=1741732750515&nocache=19787484 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":100,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741800438&nocache=19617 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":10,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741738812&nocache=14981 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":55,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741766265&nocache=6327 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":101,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741801638&nocache=23536 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":11,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741739412&nocache=16940 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":56,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741766925&nocache=8482 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":102,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741802898&nocache=27650 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":12,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741740012&nocache=18899 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732750624&nocache=19788890 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":57,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741767525&nocache=10441 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":103,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741804158&nocache=31765 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":13,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741740672&nocache=21055 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":58,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741768125&nocache=12401 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":104,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741805418&nocache=3112 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=menu_search&eng_time=1741732761044&nocache=19789875 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":14,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741741272&nocache=23014 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":59,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741768724&nocache=14357 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_hint&evt_action=deleted&&eng_time=1741732756034&nocache=19790312 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":15,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741741872&nocache=24973 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":60,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741769384&nocache=16512 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":16,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741742532&nocache=27129 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":61,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741769984&nocache=18471 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":105,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741806678&nocache=7226 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":17,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741743132&nocache=29088 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":62,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741770584&nocache=20431 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732756039&nocache=19791734 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":106,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741809798&nocache=17415 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":18,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741743732&nocache=31047 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":63,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741771184&nocache=22390 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":107,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741811119&nocache=21729 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":19,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741744332&nocache=239 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":64,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741771844&nocache=24545 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":108,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741812379&nocache=25843 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_menu_search&evt_action=deleted&&eng_time=1741732761460&nocache=19793156 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":20,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741744932&nocache=2198 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":65,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741772444&nocache=26505 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":109,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741813699&nocache=30154 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":21,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741745532&nocache=4157 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":66,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741773044&nocache=28464 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":110,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741815499&nocache=3264 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":22,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741746131&nocache=6113 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":67,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741773704&nocache=30619 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732761464&nocache=19794578 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":23,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741746731&nocache=8073 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":111,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741818019&nocache=11493 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":68,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741774304&nocache=32579 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=menu_store&eng_time=1741732766466&nocache=19795296 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":24,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741747331&nocache=10032 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":112,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741820479&nocache=19527 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":69,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741775084&nocache=2358 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":25,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741747991&nocache=12187 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_menu_store&evt_action=deleted&&eng_time=1741732766878&nocache=19795984 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":70,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741775744&nocache=4513 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":113,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741822639&nocache=26580 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":26,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741748591&nocache=14147 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":71,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741776404&nocache=6668 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":114,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741825039&nocache=1650 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":27,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741749191&nocache=16106 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":72,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741777064&nocache=8824 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":115,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741827259&nocache=8899 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732766882&nocache=19797406 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":28,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741749791&nocache=18065 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":73,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741777784&nocache=11175 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":116,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741829479&nocache=16149 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":29,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741750451&nocache=20221 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":74,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741778443&nocache=13327 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":117,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741832120&nocache=24773 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":30,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741751051&nocache=22180 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":75,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741779163&nocache=15678 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":118,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741834400&nocache=32219 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":31,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741751651&nocache=24139 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":76,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741779823&nocache=17833 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":119,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741837340&nocache=9052 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":32,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741752251&nocache=26099 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":77,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741780543&nocache=20184 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":120,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741839560&nocache=16301 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":33,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741752851&nocache=28058 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":78,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741781263&nocache=22536 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=widget_73412&eng_time=1741732771888&nocache=19800734 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":34,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741753451&nocache=30017 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":121,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741842081&nocache=24534 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":79,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741781983&nocache=24887 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":35,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741754050&nocache=31973 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":80,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741782763&nocache=27434 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":122,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741845021&nocache=1366 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":36,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741754650&nocache=1165 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":81,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741783543&nocache=29981 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_widget_73412&evt_action=deleted&&eng_time=1741732772299&nocache=19801828 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":123,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741847601&nocache=9792 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":37,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741755250&nocache=3124 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":82,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741784323&nocache=32528 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":124,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741850002&nocache=17632 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":38,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741755850&nocache=5084 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":83,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741785103&nocache=2308 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":125,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741852822&nocache=26841 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732772410&nocache=19803250 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":39,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741756450&nocache=7043 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":84,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741785883&nocache=4855 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":126,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741855342&nocache=2303 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":40,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741757050&nocache=9002 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":85,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741786603&nocache=7206 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":127,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741857803&nocache=10339 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":41,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741757650&nocache=10962 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":86,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741787383&nocache=9753 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":128,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741860143&nocache=17981 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":42,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741758250&nocache=12921 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":87,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741788223&nocache=12496 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":129,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741863924&nocache=30328 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":43,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741758850&nocache=14880 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":88,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741789003&nocache=15043 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":130,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741867044&nocache=7748 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":44,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741759450&nocache=16840 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":89,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741789843&nocache=17786 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=hint&eng_time=1741732777410&nocache=19806250 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":131,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741870284&nocache=18329 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":45,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741760050&nocache=18799 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":90,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741790743&nocache=20725 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_hint&evt_action=deleted&&eng_time=1741732777819&nocache=19806671 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":132,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741873885&nocache=30088 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":46,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741760650&nocache=20758 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":91,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741791703&nocache=23860 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":133,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741878025&nocache=10840 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":47,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741761310&nocache=22914 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":92,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741792663&nocache=26995 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":134,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741882345&nocache=24947 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732777822&nocache=19808078 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":93,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741793623&nocache=30130 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":48,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741761909&nocache=24870 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":135,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1742421746&nocache=16736 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":94,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741794523&nocache=301 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":49,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741762509&nocache=26829 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":136,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1743665906&nocache=16603 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":50,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741763109&nocache=28788 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":95,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741795483&nocache=3436 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":137,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1744821927&nocache=23165 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":96,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741796443&nocache=6571 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":51,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741763709&nocache=30748 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":52,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741764309&nocache=32707 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":97,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741797343&nocache=9510 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":138,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1746048027&nocache=29592 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":98,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741798303&nocache=12645 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":53,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741764969&nocache=2094 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":139,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1747253968&nocache=2759 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":54,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741765569&nocache=4054 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":99,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741799323&nocache=15976 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":140,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1748571509&nocache=12686 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=menu_search&eng_time=1741732782833&nocache=19811671 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":55,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741766169&nocache=6013 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":100,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741800343&nocache=19307 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":141,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1749538889&nocache=26014 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":101,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741801543&nocache=23226 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_menu_search&evt_action=deleted&&eng_time=1741732783244&nocache=19812500 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":56,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741766769&nocache=7972 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":142,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1750620089&nocache=17814 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":102,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741802803&nocache=27340 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":57,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741767369&nocache=9932 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":143,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1751808030&nocache=30506 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":103,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741804063&nocache=31455 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":58,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741767969&nocache=11891 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":144,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1752845130&nocache=9366 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732783248&nocache=19813921 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":59,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741768569&nocache=13850 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":104,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741805263&nocache=2606 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":145,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1753811791&nocache=20346 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":60,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741769169&nocache=15810 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":105,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741806643&nocache=7112 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":146,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1754751751&nocache=9668 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":61,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741769768&nocache=17766 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":106,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741807903&nocache=11227 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":147,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1755816392&nocache=12929 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":62,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741770428&nocache=19921 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":107,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741809163&nocache=15341 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":148,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1756955132&nocache=28791 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":63,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741771028&nocache=21880 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":108,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741810483&nocache=19652 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":149,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1757997692&nocache=25481 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":64,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741771688&nocache=24036 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":109,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741811743&nocache=23767 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":150,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1759042113&nocache=28249 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=menu_store&eng_time=1741732788255&nocache=19817093 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":65,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741772288&nocache=25995 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":110,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741813003&nocache=27881 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":151,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1760088213&nocache=3731 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":66,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741772888&nocache=27954 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":111,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741814263&nocache=31996 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":152,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1761101494&nocache=3113 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":67,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741773548&nocache=30110 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_menu_store&evt_action=deleted&&eng_time=1741732788669&nocache=19818343 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":112,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741815763&nocache=4126 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":153,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1762118854&nocache=15814 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":68,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741774208&nocache=32265 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":113,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741817503&nocache=9808 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":154,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1763145575&nocache=26317 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":69,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741774868&nocache=1652 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":114,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741819663&nocache=16862 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":155,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1764238415&nocache=23361 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=webview_error&reason=failed_to_create_environment&error_code=2147942402&eng_time=1741732788673&nocache=19819765 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":70,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741775528&nocache=3808 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":115,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741821883&nocache=24112 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":156,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1765353635&nocache=27952 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":71,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741776188&nocache=5963 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":116,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741824163&nocache=31557 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":157,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1766366676&nocache=26550 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":72,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741776908&nocache=8314 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":117,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741826443&nocache=6235 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":158,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1767466056&nocache=11986 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":73,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741777568&nocache=10469 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":118,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741828663&nocache=13484 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":159,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1768585597&nocache=30884 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":119,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741831003&nocache=21126 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":74,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741778288&nocache=12821 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":160,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1769693317&nocache=10983 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=windows_manager_error&reason=window_creation_timeout&window_name=widget_73412&eng_time=1741732793676&nocache=19822515 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":75,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741779008&nocache=15172 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":120,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741833764&nocache=30142 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":161,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1770829898&nocache=19795 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=waiting_for_windows_creation&hint=0&offer=0&menu_store=0&menu_search=0&store=0&settings=0&eng_time=1741732794198&nocache=19823046 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_widget_73412&evt_action=deleted&&eng_time=1741732794086&nocache=19823203 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":76,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741779728&nocache=17523 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":121,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741835984&nocache=4623 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":162,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1771748018&nocache=3136 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=reload&reason=waiting_for_windows_creation&eng_time=1741732794613&nocache=19823453 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":77,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741780448&nocache=19874 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":122,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741838264&nocache=12069 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":163,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1772699079&nocache=28905 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":78,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741781108&nocache=22030 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":123,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741840484&nocache=19319 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":79,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741781887&nocache=24573 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":124,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741842705&nocache=26571 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_product&evt_action=channel&id=-3&eng_time=1741732795367&nocache=19825187 HTTP/1.1Connection: Keep-AliveUser-Agent: WinHTTP 1.0Host: pcapp.store
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":80,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741782607&nocache=26925 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":125,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741845225&nocache=2033 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":81,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741783387&nocache=29472 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":126,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741847805&nocache=10458 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":82,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741784107&nocache=31823 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":127,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741850026&nocache=17707 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":83,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741784887&nocache=1602 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":128,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741852246&nocache=24960 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":84,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741785667&nocache=4149 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":129,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741854466&nocache=32210 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":85,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741786447&nocache=6696 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":130,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741857406&nocache=9043 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":86,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741787227&nocache=9244 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":131,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741861607&nocache=22761 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":87,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741788007&nocache=11791 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":132,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741864127&nocache=30991 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":88,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741788787&nocache=14338 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":133,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741867127&nocache=8019 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":89,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741789627&nocache=17081 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":134,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741871028&nocache=20758 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":90,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741790467&nocache=19824 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":135,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741874568&nocache=32319 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":91,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741791427&nocache=22959 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":136,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741878469&nocache=12290 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":92,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741792327&nocache=25898 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":137,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741882129&nocache=24242 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":93,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741793287&nocache=29033 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":138,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1742098009&nocache=8319 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":94,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1741794247&nocache=32168 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficHTTP traffic detected: GET /p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=watch_dog&evt_action=signal_event&data={"counter":139,"rid":"20250311183824.35219733171","isPCAppRunning":1,"registryInfo":{"pcAppInAutostart":1},"filesystemInfo":{"AutoUpdaterExeExists":1,"PcAppStoreExeExists":1,"pcappstoreIcoExists":1,"UninstallerExeExists":1,"startupFolderLnkExists":1}}&eng_time=1743080810&nocache=6469 HTTP/1.1Accept: */*UA-CPU: AMD64Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; Win64; x64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)Host: d74queuslupub.cloudfront.netConnection: Keep-Alive
Source: global trafficDNS traffic detected: DNS query: pcapp.store
Source: global trafficDNS traffic detected: DNS query: d74queuslupub.cloudfront.net
Source: global trafficDNS traffic detected: DNS query: repository.pcapp.store
Source: global trafficDNS traffic detected: DNS query: www.google.com
Source: global trafficDNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global trafficDNS traffic detected: DNS query: td.doubleclick.net
Source: global trafficDNS traffic detected: DNS query: google.com
Source: global trafficDNS traffic detected: DNS query: analytics.google.com
Source: global trafficDNS traffic detected: DNS query: stats.g.doubleclick.net
Source: unknownHTTP traffic detected: POST /inst_cpg.php?guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&version=fa.2009&src=pcapp_mini&uc=16le HTTP/1.1Content-Type: application/jsonUser-Agent: NSIS_wininetHost: pcapp.storeContent-Length: 10160Cache-Control: no-cache
Source: global trafficTCP traffic: 192.168.11.20:61357 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:61357 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:61357 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:61357 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:65423 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:65423 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:65423 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:65423 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:56394 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:56394 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:56394 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:56394 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:56305 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:56305 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:56305 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:56305 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:62241 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:62241 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:62241 -> 239.255.255.250:1900
Source: global trafficTCP traffic: 192.168.11.20:62241 -> 239.255.255.250:1900
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Tue, 11 Mar 2025 22:38:28 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-Encoding
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Tue, 11 Mar 2025 22:38:29 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-Encoding
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Tue, 11 Mar 2025 22:38:33 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-Encoding
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Tue, 11 Mar 2025 22:38:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-Encoding
Source: Setup.exe, 00000000.00000003.138375854932.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138353046350.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138379475262.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138311401559.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138449544806.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113318353.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113659835.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139000095682.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139293208512.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139068813159.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139041114093.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139165364664.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138865601572.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138986851315.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139332647111.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138813555495.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138980775538.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139086524472.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.comodoca.com/AAACertificateServices.crl06
Source: Setup.exe, 00000000.00000003.138375854932.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138353046350.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138379475262.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138311401559.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138449544806.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113318353.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113659835.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139000095682.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139293208512.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139068813159.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139041114093.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139165364664.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138865601572.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138986851315.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139332647111.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138813555495.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138980775538.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139086524472.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.globalsign.net/root-r2.crl0
Source: Setup.exe, 00000000.00000000.138286716738.000000000040A000.00000008.00000001.01000000.00000003.sdmp, Setup.exe, 00000000.00000002.138376868175.000000000040A000.00000004.00000001.01000000.00000003.sdmpString found in binary or memory: http://nsis.sf.net/NSIS_ErrorError
Source: Setup.exe, 00000000.00000003.138375854932.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138353046350.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138379475262.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138311401559.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138449544806.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113318353.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113659835.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139000095682.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139293208512.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139068813159.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139041114093.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139165364664.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138865601572.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138986851315.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139332647111.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138813555495.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138980775538.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139086524472.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://www.quovadis.bm0
Source: Watchdog.exe, 00000005.00000003.138835370496.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138780647409.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139292503270.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139343969007.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138800687657.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138871104703.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139346668432.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139068813159.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138823311164.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139298608893.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138871066614.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138800955757.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139331711019.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138846627693.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138864973649.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139289062892.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113318353.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cl
Source: Watchdog.exe, 0000000D.00000003.139937674403.0000028D57ED7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cl&
Source: Watchdog.exe, 00000005.00000003.138759479249.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.clL
Source: Watchdog.exe, 00000005.00000003.139085827118.000001BDB9AB9000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139165618551.000001BDB9AB9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cli-
Source: Watchdog.exe, 00000005.00000003.138835370496.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138846627693.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138846541966.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.clj-
Source: Watchdog.exe, 00000010.00000003.140729470550.00000213001AE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140747164441.00000213001AF000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudf
Source: Watchdog.exe, 0000000D.00000003.141163369314.0000028D57F7A000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139937929365.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140567884445.0000028D57EFD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140533477522.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140539435216.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140139494983.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140554183904.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140139267033.0000028D57F07000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140545114219.0000028D57F11000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront
Source: Watchdog.exe, 00000005.00000003.139041473851.000001BDB9A86000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139017190616.000001BDB9A86000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140967870203.0000028D57EFD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net
Source: Watchdog.exe, 00000010.00000003.139778541349.00000213000FF000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140378715394.000002137E173000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140026905283.0000021300185000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.139916339710.00000213000D6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.139889466804.00000213000D4000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.139938355384.00000213000D6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140088703143.0000021300185000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.139923483367.00000213000D6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.139934207083.00000213000D6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140680529706.0000021300256000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140088703143.000002130018E000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.139940798674.000002130018E000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.139941013707.00000213000D6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.139908631760.00000213000D6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140088957497.0000021300188000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.139893048023.00000213000D3000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/
Source: Watchdog.exe, 00000005.00000003.138979066474.000001BDB9A7E000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139590766906.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139586834824.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139292503270.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139343969007.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139346668432.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139298608893.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139331711019.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139289062892.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139308496789.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139302285756.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139351600101.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138967961704.000001BDB9A86000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138974590790.000001BDB9A86000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139000408824.000001BDB9A86000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139305853924.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138980719088.000001BDB9A86000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139404754467.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/#
Source: Watchdog.exe, 00000005.00000003.139586608680.000001BDB7C9C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/73_
Source: Watchdog.exe, 00000005.00000003.138481031461.000001BDB9A7E000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/:
Source: Watchdog.exe, 00000005.00000003.138498263211.000001BDB9A7E000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138498412629.000001BDB9A86000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.138835395893.0000028D5617B000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139259675814.0000028D5617B000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/Data
Source: Watchdog.exe, 00000005.00000003.139590766906.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139586834824.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139292503270.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139343969007.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139346668432.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139298608893.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139331711019.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139289062892.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139308496789.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139302285756.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139351600101.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139305853924.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139404754467.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140378715394.000002137E173000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/SL
Source: Watchdog.exe, 00000005.00000003.139586608680.000001BDB7C9C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/X
Source: Watchdog.exe, 0000000D.00000003.139758149159.0000028D56108000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/Xx
Source: Watchdog.exe, 00000005.00000003.138979940711.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138858757249.000001BDB7CC6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139148420002.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138980290959.000001BDB7CC6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139298367501.000001BDB7CC8000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139016729549.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139000095682.000001BDB7CC6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138668996809.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138449544806.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138918170422.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139332268057.000001BDB7CC9000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113318353.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138664134644.000001BDB7CC6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139130132473.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139142096521.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139068813159.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138871145901.000001BDB7CC6000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139041114093.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139148881585.000001BDB7CC6000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/bK%
Source: Watchdog.exe, 0000000D.00000003.140638502724.0000028D56108000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139918805324.0000028D56108000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140539029089.0000028D56108000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140642997635.0000028D56108000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140921894653.0000028D56108000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/crosoft
Source: Watchdog.exe, 00000005.00000003.139586608680.000001BDB7C9C000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140378715394.000002137E173000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/d
Source: Watchdog.exe, 0000000D.00000003.138828525663.0000028D5617B000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139546966401.0000028D5617B000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.139893048023.00000213000D3000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/e
Source: Watchdog.exe, 0000000D.00000003.140348279661.0000028D56108000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140108332877.0000028D56108000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140421516877.000002137E1A2000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140378715394.000002137E1A2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/oft
Source: Watchdog.exe, 00000005.00000003.138979066474.000001BDB9ACD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139148768755.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139590662375.000001BDB7C9D000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139165654202.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138674645859.000001BDB9AB2000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138979721526.000001BDB9ACD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138664600518.000001BDB9AA9000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138800781137.000001BDB9ACE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139130132473.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138986382723.000001BDB9ACD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139142096521.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138979480256.000001BDB9ACD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139866092340.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140832037115.0000028D57F07000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140788300158.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140832509759.0000028D57F11000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.g
Source: Watchdog.exe, 00000005.00000003.138668996809.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138664134644.000001BDB7CC6000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.g$T
Source: Watchdog.exe, 00000005.00000003.138967696819.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138835370496.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138846627693.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138974424040.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138973492189.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138846541966.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gA-o
Source: Watchdog.exe, 00000005.00000003.138967696819.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138835370496.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138979066474.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138871104703.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138871066614.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138846627693.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138974424040.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138864973649.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138986540542.000001BDB9AB0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138999846860.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138992374196.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138999991077.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138973492189.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138846541966.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138858381410.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gM
Source: Watchdog.exe, 00000005.00000003.138588731297.000001BDB9A86000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.141163369314.0000028D57F7A000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=
Source: Watchdog.exe, 0000000D.00000003.140862733221.0000028D57F83000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140878398203.0000028D57F82000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=#
Source: Watchdog.exe, 00000005.00000003.138449544806.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113318353.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139000095682.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139068813159.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139041114093.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000000.138366604812.00007FF6463FA000.00000002.00000001.01000000.00000010.sdmp, Watchdog.exe, 00000005.00000003.139165364664.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138813555495.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139016729549.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138858757249.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139142096521.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138973614566.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139332268057.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138992792156.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138980290959.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138918170422.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138871145901.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139148881585.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139298367501.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=%ws&version=%ws&evt_src=watch_dog&evt_action=signal_
Source: Watchdog.exe, 00000005.00000003.138835370496.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139292503270.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139343969007.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138871104703.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139346668432.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139298608893.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138871066614.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139331711019.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138846627693.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138918170422.000001BDB7CA5000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138864973649.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139289062892.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139308496789.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139586767450.000001BDB9A8E000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139302285756.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139351600101.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139085988449.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138846541966.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138858381410.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139305853924.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139404754467.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000
Source: Watchdog.exe, 0000000D.00000003.140788241558.0000028D57F82000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-000#
Source: Watchdog.exe, 00000005.00000003.139085827118.000001BDB9AB9000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140832037115.0000028D57F07000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140832509759.0000028D57F11000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-00
Source: Watchdog.exe, 0000000D.00000003.140431855252.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140437303994.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140614203915.0000028D57EFD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139546966401.0000028D56112000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140431647264.0000028D57F07000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-0000-0000-
Source: Watchdog.exe, 0000000D.00000003.140967870203.0000028D57EFD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140916340629.0000028D57EFD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140968030121.0000028D57F11000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-0000-0000-D050
Source: Watchdog.exe, 0000000D.00000003.140533477522.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140539435216.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140545114219.0000028D57F11000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-0000-0000-D05099DB
Source: Watchdog.exe, 00000005.00000003.138918781108.000001BDB9ABE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138918100066.000001BDB9AB7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140610628384.0000028D57EFE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140570444034.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140431855252.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140567723734.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140406381116.0000028D56108000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139937929365.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140139494983.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140139267033.0000028D57F07000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140431647264.0000028D57F07000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140431598369.0000028D56108000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-0000-0000-D05099DB2397&ver
Source: Watchdog.exe, 00000005.00000003.138979066474.000001BDB9ACD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138979721526.000001BDB9ACD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138986382723.000001BDB9ACD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138979480256.000001BDB9ACD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-0000-0000-D05099DB2397&ver5
Source: Watchdog.exe, 0000000D.00000003.139883770446.0000028D57EFD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version
Source: Watchdog.exe, 0000000D.00000003.140832037115.0000028D57F07000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140832509759.0000028D57F11000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.
Source: Watchdog.exe, 0000000D.00000003.140138989712.0000028D57F16000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139937489708.0000028D57F16000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140431361681.0000028D57F16000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.(eG
Source: Watchdog.exe, 00000010.00000003.140525131567.000002130013F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009
Source: Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139130132473.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139142096521.000001BDB7CC1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000-0000-0000-0000-D050CU1
Source: Watchdog.exe, 0000000D.00000003.140832037115.0000028D57F07000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140832509759.0000028D57F11000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000/eB
Source: Watchdog.exe, 0000000D.00000003.140638582455.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=0000000052
Source: Watchdog.exe, 0000000D.00000003.139883709764.0000028D5618D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000?
Source: Watchdog.exe, 0000000D.00000003.138780283458.0000028D57F44000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000A7
Source: Watchdog.exe, 00000005.00000003.138800781137.000001BDB9ACE000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000D
Source: Watchdog.exe, 00000005.00000003.139292503270.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139343969007.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139346668432.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139298608893.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139331711019.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139289062892.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139308496789.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139586767450.000001BDB9A8E000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139302285756.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139351600101.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139305853924.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139404754467.000001BDB9A87000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139937674403.0000028D57ED7000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000H
Source: Watchdog.exe, 00000005.00000003.139148768755.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139165654202.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113318353.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139130132473.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139085988449.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139142096521.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000d7
Source: Watchdog.exe, 0000000D.00000003.140138989712.0000028D57F16000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139937489708.0000028D57F16000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140431361681.0000028D57F16000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=00000000te
Source: Watchdog.exe, 0000000D.00000003.139866092340.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140788300158.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139877158428.0000028D57F40000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140643506855.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139884016050.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.139876870819.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=42
Source: Watchdog.exe, 0000000D.00000003.141015880077.0000028D5618D000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.141040418592.0000028D5618D000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=G
Source: Watchdog.exe, 0000000D.00000003.140431855252.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140431647264.0000028D57F07000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=Rf-
Source: Watchdog.exe, 0000000D.00000003.140352045718.0000028D57EFD000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140348593376.0000028D57EFE000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=pw
Source: Watchdog.exe, 0000000D.00000003.140765274440.0000028D57F11000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 0000000D.00000003.140764597885.0000028D57F07000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/p.gif?guid=we
Source: Watchdog.exe, 0000000D.00000003.138987439751.0000028D56103000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/px
Source: Watchdog.exe, 00000010.00000003.139893048023.00000213000D3000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfront.net/x
Source: Watchdog.exe, 0000000D.00000003.140788300158.0000028D57F2C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://d74queuslupub.cloudfrontZ3
Source: AutoUpdater.exeString found in binary or memory: https://google.com
Source: AutoUpdater.exe, 0000000C.00000002.138550201619.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000C.00000000.138533398411.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000002.138792307736.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000000.138775959618.00007FF61162A000.00000002.00000001.01000000.00000012.sdmpString found in binary or memory: https://google.comlast_v=%ws&dl_lnk=%wsempty_instructionsno_internet_connectionend
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F541384000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138979940711.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139041114093.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139148420002.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139332268057.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138918170422.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138664134644.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139000095682.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138858757249.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138871145901.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139046164654.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139068813159.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139298367501.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138813555495.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138668996809.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138992792156.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139292769467.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139130132473.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139142096521.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138973614566.000001BDB7CE0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://login.live.com
Source: Setup.exe, 00000000.00000003.138375854932.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138353046350.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138379475262.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138311401559.0000000002C5E000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138449544806.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113318353.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113659835.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139000095682.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139293208512.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139068813159.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139041114093.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139165364664.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138865601572.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138986851315.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139332647111.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138813555495.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138980775538.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139086524472.000001BDB7D0F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://ocsp.quovadisoffshore.com0
Source: PcAppStore.exe, 0000000B.00000003.138455235054.000002B16AB63000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 0000000B.00000002.138456288055.000002B16AB64000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.s
Source: PcAppStore.exeString found in binary or memory: https://pcapp.store
Source: PcAppStore.exe, 0000000B.00000002.138456288055.000002B16AB64000.00000004.00000020.00020000.00000000.sdmp, AutoUpdater.exe, 0000000C.00000002.138549458161.000001F72A3BE000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 0000000E.00000002.138698962250.00007FF62453B000.00000004.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138697883052.0000010C45881000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 0000000E.00000003.138697221829.0000010C4587C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/
Source: Setup.exe, 00000000.00000003.138311401559.0000000002C5E000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/-end-point:
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F54335F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//appX&8C
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//appstore-hint/?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//appstore-hint/?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.20098D
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//appstore-menu/?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//appstore-menu/?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009ex
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F54335F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//appstore-settings/?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009V
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//appstore-settings/?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009j4M
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F5432F7000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139276787154.000001F54335F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//appstore-widget/?guid=00000000-0000-0000-0000-D05099DB2397&id=73273&version=fa.
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F5432F7000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139276787154.000001F54335F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//appstore-widget/?guid=00000000-0000-0000-0000-D05099DB2397&id=73412&version=fa.
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139275856868.000001F54139F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//images/front_img/appstore-settings/index_5/icon_check.png
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F54139F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//images/front_img/appstore-settings/index_5/icon_check.png8
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139276787154.000001F54335F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pca
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcaX
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appHint.js
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appHint.js/appH?
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F54139F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appHint.jsjEMzCC4
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139275856868.000001F54139F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appMenuStore.js
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F5413C4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appMenuStore.js009store%T
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appOffer.js
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appOffer.jsappst
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F54139F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appOffer.jskatCPCc
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appSearchMenu.js
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F54139F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appSearchMenu.jsControl:
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F5413C4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appSearchMenu.jsmT
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F54139F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appSettings.js
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appSettings.jsK
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F5413C4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appSettings.jss0u0uUW
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appSettings.jsy
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139275856868.000001F54139F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appStore.js
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F543355000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appStore.jshavio
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F54335F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appWidget.js
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F54139F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appWidget.js4
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F54335F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appWidget.jsE
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F54335F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appWindow.js
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F54139F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//pcapp/src/app/appWindow.jsEdgeWebview2Setup.exeH
Source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.store//pixel.giffa.%u
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F54335F000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store//search-menu/?a=getTemplate&guid=00000000-0000-0000-0000-D05099DB2397&p
Source: AutoUpdater.exe, 0000000C.00000002.138549458161.000001F72A3BE000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/1
Source: Setup.exe, 00000000.00000003.138311636663.0000000002C13000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138311007238.0000000002C10000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138353046350.0000000002C10000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138378957268.0000000002C10000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/4
Source: Setup.exe, 00000000.00000002.138380020793.0000000004D71000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138376494089.0000000004D70000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/CAppStore
Source: AutoUpdater.exe, 0000000F.00000002.138791797221.000002A5977CD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/M9AEw
Source: AutoUpdater.exe, 0000000F.00000002.138791797221.000002A5977CD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/O
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F541324000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/Q=
Source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.store/account/logintray_exit
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/api/pcapp_engine.php?a=config&guid=00000000-0000-0000-0000-D05099DB2397&version=
Source: Setup.exe, 00000000.00000003.138311401559.0000000002C5E000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/ass
Source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.store/cpg_fa.php?guid=An
Source: PcAppStore.exe, PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.store/dl_cta_open.php?guid=%ws&name=%ws&type=%ws
Source: PcAppStore.exe, PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.store/dl_cta_open.php?guid=%ws&oid=%lu&entryApp=%ws
Source: AutoUpdater.exe, AutoUpdater.exe, 0000000C.00000002.138550201619.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000C.00000000.138533398411.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000002.138792307736.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000000.138775959618.00007FF61162A000.00000002.00000001.01000000.00000012.sdmpString found in binary or memory: https://pcapp.store/fa_version.php?guid=%ws&end_v=%ws&nocache=%d
Source: AutoUpdater.exe, AutoUpdater.exe, 0000000C.00000002.138550201619.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000C.00000000.138533398411.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000002.138792307736.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000000.138775959618.00007FF61162A000.00000002.00000001.01000000.00000012.sdmpString found in binary or memory: https://pcapp.store/fa_version.php?guid=%ws&res=link&nocache=%d
Source: AutoUpdater.exe, 0000000F.00000002.138790900568.000002A595AE0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/fa_version.php?guid=00000000-0000-0000-0000-D05099DB2397&end_v=fa.2009&nocache=1
Source: PcAppStore.exe, 0000000B.00000002.138457641172.00007FF62453B000.00000004.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.store/h
Source: Setup.exe, 00000000.00000003.138376009995.00000000007EE000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138311587142.0000000002C1A000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138378957268.0000000002C10000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/inst_cpg.php?guid=00000000-0000-0000-0000-D05099DB2397&_fcid=1741726344365755&ve
Source: Setup.exe, 00000000.00000003.138352896900.0000000002CA4000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/installing.php?guid=
Source: Setup.exe, 00000000.00000002.138377616813.0000000000758000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/installing.php?guid=&winver=
Source: Setup.exe, 00000000.00000002.138378957268.0000000002C10000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138377895402.0000000000790000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/installing.php?guid=00000000-0000-0000-0000-D05099DB2397&winver=19042&version=fa
Source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.store/notify_app_v2.php?guid=&lastid=&lasttime=&nocache=&end_v=%ws%ws%ws%d%ws%d%ws%ws%
Source: PcAppStore.exeString found in binary or memory: https://pcapp.store/pixel.gif
Source: Setup.exe, 00000000.00000002.138377616813.0000000000758000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/pixel.gif?guid=&version=&evt_src=fa_installer&evt_action=localmac&_fcid=
Source: AutoUpdater.exe, 0000000F.00000002.138791797221.000002A5977EA000.00000004.00000020.00020000.00000000.sdmp, AutoUpdater.exe, 0000000F.00000002.138791797221.000002A5977FB000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_a
Source: Setup.exe, 00000000.00000003.138376009995.00000000007C4000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138378957268.0000000002C10000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138378957268.0000000002BE5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_i
Source: Setup.exe, 00000000.00000002.138378957268.0000000002C10000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138378957268.0000000002BE5000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000003.138673713415.000001F54338B000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_m
Source: PcAppStore.exe, 00000004.00000003.138673713415.000001F54338B000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_p
Source: PcAppStore.exe, 00000004.00000002.139276787154.000001F5432C0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=fa_w
Source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.store/pixel.gifROOT
Source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.store/pixel.gifShell_SecondaryTrayWndtype
Source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.store/pixel.gifatlTraceGeneralatlTraceCOMatlTraceQIatlTraceRegistraratlTraceRefcountat
Source: Setup.exe, 00000000.00000002.138377616813.0000000000758000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/privacy.html?guid=wel&evt_src=fa_mini_installer&evt_action=show_page&p=
Source: AutoUpdater.exe, 0000000F.00000002.138791797221.000002A5977CD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/s
Source: Setup.exe, 00000000.00000002.138380020793.0000000004D71000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138376494089.0000000004D70000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/thur
Source: Setup.exe, 00000000.00000002.138377616813.0000000000758000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/tos.html?guid=
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F541324000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store/~
Source: AutoUpdater.exe, 0000000F.00000002.138791797221.000002A5977CD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store:443
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F5412F0000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://pcapp.store:443/pixel.gif?guid=00000000-0000-0000-0000-D05099DB2397&version=fa.2009&evt_src=
Source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://pcapp.storeinfnan(ind)nannan(snan)%02Xinfnan(ind)nannan(snan)
Source: AutoUpdater.exeString found in binary or memory: https://pcappstore.s3.amazonaws.com/version
Source: AutoUpdater.exe, 0000000C.00000002.138550201619.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000C.00000000.138533398411.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000002.138792307736.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000000.138775959618.00007FF61162A000.00000002.00000001.01000000.00000012.sdmpString found in binary or memory: https://pcappstore.s3.amazonaws.com/versionrinstruction_failed%ws?guid=%ws&nocache=%dauto_updater.ex
Source: PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpString found in binary or memory: https://search.pcapp.store/r.html?q=%ws&br=%ws&en=%ws&guid=%ws&end_v=%ws
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56038
Source: unknownNetwork traffic detected: HTTP traffic on port 50693 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56042
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56043
Source: unknownNetwork traffic detected: HTTP traffic on port 51422 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52633 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50211 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53844 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50452 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51663 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52874 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51548 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50578 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50440 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53603 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51892 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52518 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51410 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52862 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53832 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52747 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56055
Source: unknownNetwork traffic detected: HTTP traffic on port 50325 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51777 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54802 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53717 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56054
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56050
Source: unknownNetwork traffic detected: HTTP traffic on port 52735 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51524 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52976 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53730 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54916 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54941 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52645 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50464 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56066
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56067
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56062
Source: unknownNetwork traffic detected: HTTP traffic on port 52404 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51319 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53856 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50439 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53729 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52608 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51651 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54814 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51789 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50337 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52772 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53958 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52506 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56078
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56079
Source: unknownNetwork traffic detected: HTTP traffic on port 51320 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50566 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51880 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56074
Source: unknownNetwork traffic detected: HTTP traffic on port 50235 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53820 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50795 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51687 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53868 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52416 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53627 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50783 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53934 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52964 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56002
Source: unknownNetwork traffic detected: HTTP traffic on port 51512 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50591 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50301 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51753 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53754 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52302 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50656 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53819 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51699 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50247 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54724 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56006
Source: unknownNetwork traffic detected: HTTP traffic on port 51561 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56007
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56014
Source: unknownNetwork traffic detected: HTTP traffic on port 54609 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51446 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51626 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52898 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52760 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53946 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50313 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51765 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51434 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56019
Source: unknownNetwork traffic detected: HTTP traffic on port 52886 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52825 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49896 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56018
Source: unknownNetwork traffic detected: HTTP traffic on port 52555 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51103 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50259 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53615 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54736 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50771 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50121 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52759 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51307 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51500 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51573 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52952 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52621 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51638 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56026
Source: unknownNetwork traffic detected: HTTP traffic on port 54928 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56030
Source: unknownNetwork traffic detected: HTTP traffic on port 53742 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56031
Source: unknownNetwork traffic detected: HTTP traffic on port 52428 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53807 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50644 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53411 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54863 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52516
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53848
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52517
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53847
Source: unknownNetwork traffic detected: HTTP traffic on port 50386 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51115 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52514
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53846
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52515
Source: unknownNetwork traffic detected: HTTP traffic on port 52567 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53845
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52518
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52519
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53849
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53840
Source: unknownNetwork traffic detected: HTTP traffic on port 50632 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52512
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53844
Source: unknownNetwork traffic detected: HTTP traffic on port 50873 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52513
Source: unknownNetwork traffic detected: HTTP traffic on port 53537 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53843
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52510
Source: unknownNetwork traffic detected: HTTP traffic on port 53778 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53842
Source: unknownNetwork traffic detected: HTTP traffic on port 54989 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52326 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52511
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53841
Source: unknownNetwork traffic detected: HTTP traffic on port 50758 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50999 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52527
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53859
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52528
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53858
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52525
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53857
Source: unknownNetwork traffic detected: HTTP traffic on port 50505 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52526
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53856
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52529
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53851
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52520
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53850
Source: unknownNetwork traffic detected: HTTP traffic on port 50987 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52453 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49872 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51957 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52523
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53855
Source: unknownNetwork traffic detected: HTTP traffic on port 51001 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52524
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53854
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52521
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53853
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52522
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53852
Source: unknownNetwork traffic detected: HTTP traffic on port 53910 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53881 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53652 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52200 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52338 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50885 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51207
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52538
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51208
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52539
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53869
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51205
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52536
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53868
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51206
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52537
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53867
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51209
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52530
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53862
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51200
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52531
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53861
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53860
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51203
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52534
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53866
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51204
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52535
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53865
Source: unknownNetwork traffic detected: HTTP traffic on port 54851 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 56192 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50374 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51201
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52532
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53864
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51202
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52533
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53863
Source: unknownNetwork traffic detected: HTTP traffic on port 49986 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53766 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50861 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55731 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51254 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50620 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52314 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54977 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53525 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51218
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52549
Source: unknownNetwork traffic detected: HTTP traffic on port 53922 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51219
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51216
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52547
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53879
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51217
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52548
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53878
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51210
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52541
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53873
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51211
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52542
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53872
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53871
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52540
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53870
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51214
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52545
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53877
Source: unknownNetwork traffic detected: HTTP traffic on port 50897 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51215
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52546
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53876
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51212
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52543
Source: unknownNetwork traffic detected: HTTP traffic on port 53664 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53875
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51213
Source: unknownNetwork traffic detected: HTTP traffic on port 52212 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52544
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53874
Source: unknownNetwork traffic detected: HTTP traffic on port 52579 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53791 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53880
Source: unknownNetwork traffic detected: HTTP traffic on port 49884 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52837 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53893 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52441 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51945 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51127 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53804
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53803
Source: unknownNetwork traffic detected: HTTP traffic on port 51140 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53802
Source: unknownNetwork traffic detected: HTTP traffic on port 52592 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53801
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53808
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53807
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53806
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53805
Source: unknownNetwork traffic detected: HTTP traffic on port 51266 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49859 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51933 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53800
Source: unknownNetwork traffic detected: HTTP traffic on port 51025 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52477 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54838 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52723 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50350 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56086
Source: unknownNetwork traffic detected: HTTP traffic on port 55299 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53809
Source: unknownNetwork traffic detected: HTTP traffic on port 50607 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50362 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52711 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53815
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53814
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53813
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53812
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53819
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53818
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53817
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53816
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53811
Source: unknownNetwork traffic detected: HTTP traffic on port 51806 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53810
Source: unknownNetwork traffic detected: HTTP traffic on port 51139 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52849 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52580 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54953 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53501 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56098
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56091
Source: unknownNetwork traffic detected: HTTP traffic on port 56090 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50734 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50476 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53639 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 56090
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53826
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53825
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53824
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53823
Source: unknownNetwork traffic detected: HTTP traffic on port 51790 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53829
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53828
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53827
Source: unknownNetwork traffic detected: HTTP traffic on port 53640 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55287 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50619 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53822
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53821
Source: unknownNetwork traffic detected: HTTP traffic on port 51675 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53820
Source: unknownNetwork traffic detected: HTTP traffic on port 50223 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51409 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49860 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51921 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54826 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50349 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52465 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51013 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52505
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53837
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52506
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53836
Source: unknownNetwork traffic detected: HTTP traffic on port 49998 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52503
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53835
Source: unknownNetwork traffic detected: HTTP traffic on port 54430 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54965 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52504
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53834
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52509
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52507
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53839
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52508
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53838
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52501
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53833
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52502
Source: unknownNetwork traffic detected: HTTP traffic on port 53513 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53832
Source: unknownNetwork traffic detected: HTTP traffic on port 50488 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53831
Source: unknownNetwork traffic detected: HTTP traffic on port 50746 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52500
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53830
Source: unknownNetwork traffic detected: HTTP traffic on port 53909 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54303 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52850 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52988 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51278 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51536 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55390 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51144
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52475
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51145
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52476
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51142
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52473
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51143
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52474
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51148
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52479
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51149
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51146
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52477
Source: unknownNetwork traffic detected: HTTP traffic on port 55653 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51147
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52478
Source: unknownNetwork traffic detected: HTTP traffic on port 54201 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55412 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51176 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51151
Source: unknownNetwork traffic detected: HTTP traffic on port 52146 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52482
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51152
Source: unknownNetwork traffic detected: HTTP traffic on port 52387 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52483
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52480
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51150
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52481
Source: unknownNetwork traffic detected: HTTP traffic on port 53598 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53357 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54568 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51164 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53116 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55400 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54178 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52375 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54797 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53345 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51155
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52486
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51156
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52487
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51153
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52484
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51154
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52485
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51159
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51157
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52488
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51158
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52489
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52490
Source: unknownNetwork traffic detected: HTTP traffic on port 54442 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51162
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52493
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51163
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52494
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51160
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52491
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52492
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51161
Source: unknownNetwork traffic detected: HTTP traffic on port 50812 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49823 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55034 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50080 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55665 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52158 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 55046 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51166
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52497
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51167
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52498
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51164
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52495
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52496
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51165
Source: unknownNetwork traffic detected: HTTP traffic on port 53369 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 51152 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51168
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52499
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51169
Source: unknownNetwork traffic detected: HTTP traffic on port 55377 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51170
Source: unknownNetwork traffic detected: HTTP traffic on port 54191 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51173
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51174
Source: unknownNetwork traffic detected: HTTP traffic on port 53196 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51171
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51172
Source: unknownNetwork traffic detected: HTTP traffic on port 55148 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50824 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51177
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51178
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51175
Source: unknownNetwork traffic detected: HTTP traffic on port 53104 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51176
Source: unknownNetwork traffic detected: HTTP traffic on port 54556 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51179
Source: unknownNetwork traffic detected: HTTP traffic on port 50079 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51180
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51181
Source: unknownNetwork traffic detected: HTTP traffic on port 55677 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54225 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51184
Source: unknownNetwork traffic detected: HTTP traffic on port 54785 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51185
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51182
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51183
Source: unknownNetwork traffic detected: HTTP traffic on port 53333 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49811 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 52110 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53562 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54454 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 53002 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51108
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52439
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51109
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51106
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52437
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53769
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 51107
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 52438
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 53768
Source: unknownNetwork traffic detected: HTTP traffic on port 55984 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54395 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 54532 -> 443
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49771 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:49785 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49798 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49890 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49903 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49905 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49907 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49910 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49923 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:49926 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49945 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49969 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49992 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:49997 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50001 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50004 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50020 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50033 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50045 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50079 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50114 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50148 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50183 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50216 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50249 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50282 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50286 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50291 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50299 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50302 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50303 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50306 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50309 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50311 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50312 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50313 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50316 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50319 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50320 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50323 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50326 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50327 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50330 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50332 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50334 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50337 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50340 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50341 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50344 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50347 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50348 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50351 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50354 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50355 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50358 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50361 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50362 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50365 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50367 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50369 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50372 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50373 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50376 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50379 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50380 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50383 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50385 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50389 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50391 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50394 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50397 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50398 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50402 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50404 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50406 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50409 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50412 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50414 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50417 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50418 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50422 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50425 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50426 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50427 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50430 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50433 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50435 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50438 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50439 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50442 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50446 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50447 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50450 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50453 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50454 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50457 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50459 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50461 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50464 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50465 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50467 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50469 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50472 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50473 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50476 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50478 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50479 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50480 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50481 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50483 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50484 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50486 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50487 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50489 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50490 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50492 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50493 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50494 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50496 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50497 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50498 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50500 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50501 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50502 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50503 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50505 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50506 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50507 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50509 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50510 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50511 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50512 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50515 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50516 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50517 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50519 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50520 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50521 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50523 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50524 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50527 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50528 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50529 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50530 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50532 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50533 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50534 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50536 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50537 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50538 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50540 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50541 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50542 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50543 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50545 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50546 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50547 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50549 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50550 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50551 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50553 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50554 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50555 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50556 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50558 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50559 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50560 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50562 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50563 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50565 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50566 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50568 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50569 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50570 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50572 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50573 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50574 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50575 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50578 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50579 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50581 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50582 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50583 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50584 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50587 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50586 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50588 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50590 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50591 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50592 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50594 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50595 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50596 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50597 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50599 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50600 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50601 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50602 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50604 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50606 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50607 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50609 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50610 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50611 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50613 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50614 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50615 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50616 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50619 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50620 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50621 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50623 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50624 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50625 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50626 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50628 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50629 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50630 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50632 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50633 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50634 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50636 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50637 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50638 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50639 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50641 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50642 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50643 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50645 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50646 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50647 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50648 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50650 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50651 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50652 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50653 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50655 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50657 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50659 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50660 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50661 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50662 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50664 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50665 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50666 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50667 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50670 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50671 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50673 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50674 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50675 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50676 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50678 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50679 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50680 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50681 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50683 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50684 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50685 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50687 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50688 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50689 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50691 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50692 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50693 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50694 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50695 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50697 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50698 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50699 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50700 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50702 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50703 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50704 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50705 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50706 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50708 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50709 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50710 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50711 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50712 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50713 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50714 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50715 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50716 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50717 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50718 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50719 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50720 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50721 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50723 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50724 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50725 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50726 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50727 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50728 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50729 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50730 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50731 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50732 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50733 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50734 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50735 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50736 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50737 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50738 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50739 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50740 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50741 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50742 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50743 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50744 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50745 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50746 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50747 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50748 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50749 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50750 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50751 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50752 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50754 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50755 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50753 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50757 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50758 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50759 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50760 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50761 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50762 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50763 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50764 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50765 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50766 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50767 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50768 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50770 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50771 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50772 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50773 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50774 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50775 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50776 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50777 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50778 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50779 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50780 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50781 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50782 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50783 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50784 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50785 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50786 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50787 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50788 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50789 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50790 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50791 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50792 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50793 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50794 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50795 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50796 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50797 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50798 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50799 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50800 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50801 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50802 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50803 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50804 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50805 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50806 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50807 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50808 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50809 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50811 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50812 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50813 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50814 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50815 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50816 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50817 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50818 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50819 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50820 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50821 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50822 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50823 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50825 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50826 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50827 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50828 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50829 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50830 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50831 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50832 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50833 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50834 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50835 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50836 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50837 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50838 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50839 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50840 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50841 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50842 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50843 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50844 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50845 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50846 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50847 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50848 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50849 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50850 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50851 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50852 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50853 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50854 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50855 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50856 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50858 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50859 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50860 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50861 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50862 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50863 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50864 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50865 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50866 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50867 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50869 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50868 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50870 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50872 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50873 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50874 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50875 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50876 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50878 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50877 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50879 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50880 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50881 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50882 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50883 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50884 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50885 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50886 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50887 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50888 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50889 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50890 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50891 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50892 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50893 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50894 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50895 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50896 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50897 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50898 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50900 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50901 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50902 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50903 version: TLS 1.2
Source: unknownHTTPS traffic detected: 159.223.126.41:443 -> 192.168.11.20:50904 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50905 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50906 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50907 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50908 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50909 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50910 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50912 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50913 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50914 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50899 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50915 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50916 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50917 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50918 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50920 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50919 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50921 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50923 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50924 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50925 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50926 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50927 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50928 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50929 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50930 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50931 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50932 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50933 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50934 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50935 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50936 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50937 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.125:443 -> 192.168.11.20:50938 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.25:443 -> 192.168.11.20:50939 version: TLS 1.2
Source: unknownHTTPS traffic detected: 18.164.116.13:443 -> 192.168.11.20:50941 version: TLS 1.2
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_0040589D CreateThread,CloseHandle,ShowWindow,ShowWindow,ShowWindow,ShowWindow,SendMessageW,CreatePopupMenu,AppendMenuW,GetWindowRect,TrackPopupMenu,SendMessageW,OpenClipboard,EmptyClipboard,GlobalAlloc,GlobalLock,SendMessageW,GlobalUnlock,SetClipboardData,CloseClipboard,0_2_0040589D
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624423650 OpenClipboard,EmptyClipboard,GlobalAlloc,GlobalLock,GlobalUnlock,SetClipboardData,CloseClipboard,4_2_00007FF624423650
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_0040352D EntryPoint,SetErrorMode,GetVersionExW,GetVersionExW,GetVersionExW,lstrlenA,#17,OleInitialize,SHGetFileInfoW,GetCommandLineW,CharNextW,GetTempPathW,GetTempPathW,GetWindowsDirectoryW,lstrcatW,GetTempPathW,lstrcatW,SetEnvironmentVariableW,SetEnvironmentVariableW,SetEnvironmentVariableW,DeleteFileW,lstrcatW,lstrcatW,lstrcatW,lstrcmpiW,SetCurrentDirectoryW,DeleteFileW,CopyFileW,CloseHandle,ExitProcess,CoUninitialize,ExitProcess,GetCurrentProcess,OpenProcessToken,LookupPrivilegeValueW,AdjustTokenPrivileges,ExitWindowsEx,ExitProcess,0_2_0040352D
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_0040755C0_2_0040755C
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_00406D850_2_00406D85
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6242127FF4_2_00007FF6242127FF
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62448571C4_2_00007FF62448571C
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62428E5504_2_00007FF62428E550
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6244865C04_2_00007FF6244865C0
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6242CE8104_2_00007FF6242CE810
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62447A2404_2_00007FF62447A240
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62444E4404_2_00007FF62444E440
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624492EE84_2_00007FF624492EE8
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62448B0084_2_00007FF62448B008
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6244771104_2_00007FF624477110
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6243F78804_2_00007FF6243F7880
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6244779304_2_00007FF624477930
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6244878E04_2_00007FF6244878E0
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6244931644_2_00007FF624493164
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62447F4904_2_00007FF62447F490
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6242934544_2_00007FF624293454
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6244775204_2_00007FF624477520
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62448BF604_2_00007FF62448BF60
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624457AC44_2_00007FF624457AC4
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6244788904_2_00007FF624478890
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62448C3F44_2_00007FF62448C3F4
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62448CA744_2_00007FF62448CA74
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6244915784_2_00007FF624491578
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6243F9E204_2_00007FF6243F9E20
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62444DE8C4_2_00007FF62444DE8C
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624499E644_2_00007FF624499E64
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624469B244_2_00007FF624469B24
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624489CC04_2_00007FF624489CC0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115DA2E712_2_00007FF6115DA2E7
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61160B13812_2_00007FF61160B138
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61161140812_2_00007FF611611408
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115EB8E812_2_00007FF6115EB8E8
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6116229B012_2_00007FF6116229B0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115F8C7B12_2_00007FF6115F8C7B
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115EAC4412_2_00007FF6115EAC44
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115D202012_2_00007FF6115D2020
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115D82E712_2_00007FF6115D82E7
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6116171A412_2_00007FF6116171A4
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115FB21012_2_00007FF6115FB210
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61161D4A812_2_00007FF61161D4A8
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6116074A012_2_00007FF6116074A0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61162246412_2_00007FF611622464
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115DE38012_2_00007FF6115DE380
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115FA38812_2_00007FF6115FA388
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61160536412_2_00007FF611605364
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115F941012_2_00007FF6115F9410
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61160C3E012_2_00007FF61160C3E0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61161669012_2_00007FF611616690
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61161D72412_2_00007FF61161D724
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115E271012_2_00007FF6115E2710
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61161C57C12_2_00007FF61161C57C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115E057412_2_00007FF6115E0574
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61160556812_2_00007FF611605568
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6116078A412_2_00007FF6116078A4
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61160C8EC12_2_00007FF61160C8EC
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6116138F012_2_00007FF6116138F0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115EF8BC12_2_00007FF6115EF8BC
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61160577412_2_00007FF611605774
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115EC76812_2_00007FF6115EC768
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115F475012_2_00007FF6115F4750
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61160683412_2_00007FF611606834
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61160E82012_2_00007FF61160E820
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115DB81412_2_00007FF6115DB814
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115F3AA412_2_00007FF6115F3AA4
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61160AA6412_2_00007FF61160AA64
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF611612A3C12_2_00007FF611612A3C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115F7A4C12_2_00007FF6115F7A4C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF611616B2412_2_00007FF611616B24
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61161DAF812_2_00007FF61161DAF8
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115EEADC12_2_00007FF6115EEADC
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61161F99012_2_00007FF61161F990
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61160597812_2_00007FF611605978
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115E79F012_2_00007FF6115E79F0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115D89EC12_2_00007FF6115D89EC
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115F29C412_2_00007FF6115F29C4
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115E1C9C12_2_00007FF6115E1C9C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF611605B8412_2_00007FF611605B84
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115D6BE812_2_00007FF6115D6BE8
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF611610BCC12_2_00007FF611610BCC
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115E8BD012_2_00007FF6115E8BD0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115ECE9C12_2_00007FF6115ECE9C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF611620EA012_2_00007FF611620EA0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115DEE4C12_2_00007FF6115DEE4C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF611605D8812_2_00007FF611605D88
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61161B13412_2_00007FF61161B134
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115DE0B812_2_00007FF6115DE0B8
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF611622FB412_2_00007FF611622FB4
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: String function: 00007FF624224950 appears 118 times
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: String function: 00007FF6244444F0 appears 41 times
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: String function: 00007FF6242251C0 appears 341 times
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: String function: 00007FF624238130 appears 77 times
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: String function: 00007FF6115C3B20 appears 46 times
Source: Setup.exeStatic PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE
Source: classification engineClassification label: mal54.evad.winEXE@40/551@33/18
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_0040352D EntryPoint,SetErrorMode,GetVersionExW,GetVersionExW,GetVersionExW,lstrlenA,#17,OleInitialize,SHGetFileInfoW,GetCommandLineW,CharNextW,GetTempPathW,GetTempPathW,GetWindowsDirectoryW,lstrcatW,GetTempPathW,lstrcatW,SetEnvironmentVariableW,SetEnvironmentVariableW,SetEnvironmentVariableW,DeleteFileW,lstrcatW,lstrcatW,lstrcatW,lstrcmpiW,SetCurrentDirectoryW,DeleteFileW,CopyFileW,CloseHandle,ExitProcess,CoUninitialize,ExitProcess,GetCurrentProcess,OpenProcessToken,LookupPrivilegeValueW,AdjustTokenPrivileges,ExitWindowsEx,ExitProcess,0_2_0040352D
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_0040498A GetDlgItem,SetWindowTextW,SHBrowseForFolderW,CoTaskMemFree,lstrcmpiW,lstrcatW,SetDlgItemTextW,GetDiskFreeSpaceW,MulDiv,SetDlgItemTextW,0_2_0040498A
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_004021DB FreeLibrary,CoCreateInstance,0_2_004021DB
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6242372C0 LoadResource,LockResource,SizeofResource,4_2_00007FF6242372C0
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Program Files\scoped_dir2800_562204866Jump to behavior
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\PCAppStoreJump to behavior
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\AppData\Local\Temp\nsmFC10.tmpJump to behavior
Source: Setup.exeStatic PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select Name from Win32_Processor
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select MaxClockSpeed from Win32_Processor
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select NumberOfCores from Win32_Processor
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select NumberOfLogicalProcessors from Win32_Processor
Source: C:\Users\user\Desktop\Setup.exeFile read: C:\Users\desktop.iniJump to behavior
Source: C:\Users\user\Desktop\Setup.exeKey opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiersJump to behavior
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT sql FROM%d UNION ALL SELECT shell_add_schema(sql,mainNULL,name) AS sql, type, tbl_name, name, rowid, AS snum, AS sname FROM .sqlite_schema UNION ALL SELECT shell_module_schema(name), 'table', name, name, name, 9e+99, 'main' FROM pragma_module_list) WHERE %Qlower(printf('%s.%s',sname,tbl_name))lower(tbl_name) GLOB LIKE ESCAPE '\' AND name NOT LIKE 'sqlite_%%' AND sql IS NOT NULL ORDER BY snum, rowidSQL: %s;
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: INSERT INTO sqlite_schema(type,name,tbl_name,rootpage,sql)VALUES('table','%q','%q',0,'%q');%s
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: UPDATE %Q.sqlite_master SET tbl_name = %Q, name = CASE WHEN type='table' THEN %Q WHEN name LIKE 'sqliteX_autoindex%%' ESCAPE 'X' AND type='index' THEN 'sqlite_autoindex_' || %Q || substr(name,%d+18) ELSE name END WHERE tbl_name=%Q COLLATE nocase AND (type='table' OR type='index' OR type='trigger');
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT max(length(key)) FROM temp.sqlite_parameters;
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: CREATE TABLE ColNames( cpos INTEGER PRIMARY KEY, name TEXT, nlen INT, chop INT, reps INT, suff TEXT);CREATE VIEW RepeatedNames AS SELECT DISTINCT t.name FROM ColNames t WHERE t.name COLLATE NOCASE IN ( SELECT o.name FROM ColNames o WHERE o.cpos<>t.cpos);
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT type,name,tbl_name,sql FROM sqlite_schema ORDER BY name;
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT key, quote(value) FROM temp.sqlite_parameters;
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT 'CREATE TEMP' || substr(sql, 7) FROM sqlite_schema WHERE tbl_name = %Q AND type IN ('table', 'trigger') ORDER BY type;
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: INSERT INTO selftest(tno,op,cmd,ans) SELECT rowid*10,op,cmd,ans FROM [_shell$self];
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT * FROM "%w" ORDER BY rowid DESC;Warning: cannot step "%s" backwardsSELECT name, sql FROM sqlite_schema WHERE %sError: (%d) %s on [%s]
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: INSERT INTO sqlite_schema(type,name,tbl_name,rootpage,sql)VALUES('table','%q','%q',0,'%q');
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: INSERT INTO %Q.sqlite_master VALUES('index',%Q,%Q,#%d,%Q);
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT * FROM "%w" ORDER BY rowid DESC;
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT tbl,idx,stat FROM sqlite_stat1 ORDER BY tbl,idx;
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT 'EXPLAIN QUERY PLAN SELECT 1 FROM ' || quote(s.name) || ' WHERE ' || group_concat(quote(s.name) || '.' || quote(f.[from]) || '=?' || fkey_collate_clause( f.[table], COALESCE(f.[to], p.[name]), s.name, f.[from]),' AND '), 'SEARCH ' || s.name || ' USING COVERING INDEX*(' || group_concat('*=?', ' AND ') || ')', s.name || '(' || group_concat(f.[from], ', ') || ')', f.[table] || '(' || group_concat(COALESCE(f.[to], p.[name])) || ')', 'CREATE INDEX ' || quote(s.name ||'_'|| group_concat(f.[from], '_')) || ' ON ' || quote(s.name) || '(' || group_concat(quote(f.[from]) || fkey_collate_clause( f.[table], COALESCE(f.[to], p.[name]), s.name, f.[from]), ', ') || ');', f.[table] FROM sqlite_schema AS s, pragma_foreign_key_list(s.name) AS f LEFT JOIN pragma_table_info AS p ON (pk-1=seq AND p.arg=f.[table]) GROUP BY s.name, f.id ORDER BY (CASE WHEN ? THEN f.[table] ELSE s.name END)
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT 'CREATE TEMP' || substr(sql, 7) FROM sqlite_schema WHERE tbl_name = %Q AND type IN ('table', 'trigger') ORDER BY type;ALTER TABLE temp.%Q RENAME TO %QINSERT INTO %Q VALUES(, %s?)UPDATE %Q SET , %s%Q=?DELETE FROM %QSELECT type, name, sql, 1 FROM sqlite_schema WHERE type IN ('table','view') AND name NOT LIKE 'sqlite_%%' UNION ALL SELECT type, name, sql, 2 FROM sqlite_schema WHERE type = 'trigger' AND tbl_name IN(SELECT name FROM sqlite_schema WHERE type = 'view') ORDER BY 4, 1CREATE TABLE x(, %s%Q COLLATE %s)CREATE VIRTUAL TABLE %Q USING expert(%Q)SELECT max(i.seqno) FROM sqlite_schema AS s, pragma_index_list(s.name) AS l, pragma_index_info(l.name) AS i WHERE s.type = 'table', %sx.%Q IS rem(%d, x.%Q) COLLATE %s%s%dSELECT %s FROM %Q x ORDER BY %sSELECT %s FROM temp.t592690916721053953805701627921227776 x ORDER BY %s%d %dDROP TABLE IF EXISTS temp.t592690916721053953805701627921227776CREATE TABLE temp.t592690916721053953805701627921227776 AS SELECT * FROM %QSELECT s.rowid, s.name, l.name FROM sqlite_schema AS s, pragma_index_list(s.name) AS l WHERE s.type = 'table'SELECT name, coll FROM pragma_index_xinfo(?) WHERE keyINSERT INTO sqlite_stat1 VALUES(?, ?, ?)ANALYZE; PRAGMA writable_schema=1remsampleDROP TABLE IF EXISTS temp.t592690916721053953805701627921227776ANALYZE sqlite_schemaDROP TABLE IF EXISTS temp.t592690916721053953805701627921227776:memory::memory:SELECT sql FROM sqlite_schema WHERE name NOT LIKE 'sqlite_%%' AND sql NOT LIKE 'CREATE VIRTUAL %%'Cannot find a unique index name to propose. -- stat1: %s;%s%s
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: INSERT OR IGNORE INTO "%s" VALUES(?,?);Error %d: %s on [%s]
Source: PcAppStore.exe, 00000004.00000000.138366019547.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000002.139278901060.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457530340.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453525862.00007FF624518000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698858182.00007FF624519000.00000008.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695937106.00007FF624518000.00000008.00000001.01000000.0000000F.sdmpBinary or memory string: SELECT name,seq FROM sqlite_sequence ORDER BY name;
Source: AutoUpdater.exe, 0000000C.00000003.138534335372.000001F728906000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: SELECT * FROM Win32_ComputerSystemProduct;
Source: Setup.exeVirustotal: Detection: 32%
Source: PcAppStore.exeString found in binary or memory: /silent /install
Source: C:\Users\user\Desktop\Setup.exeFile read: C:\Users\user\Desktop\Setup.exeJump to behavior
Source: unknownProcess created: C:\Users\user\Desktop\Setup.exe "C:\Users\user\Desktop\Setup.exe"
Source: C:\Users\user\Desktop\Setup.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://pcapp.store/installing.php?guid=00000000-0000-0000-0000-D05099DB2397&winver=19042&version=fa.2009&nocache=20250311183822.790&_fcid=1741726344365755
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-subproc-heap-profiling --field-trial-handle=2224,i,2944380752885039033,4318830463388120158,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20240909-180142.416000 --mojo-platform-channel-handle=2236 /prefetch:3
Source: C:\Users\user\Desktop\Setup.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe "C:\Users\user\PCAppStore\PcAppStore.exe" /init default
Source: C:\Users\user\Desktop\Setup.exeProcess created: C:\Users\user\PCAppStore\Watchdog.exe "C:\Users\user\PCAppStore\Watchdog.exe" /guid=00000000-0000-0000-0000-D05099DB2397 /rid=20250311183824.35219733171 /ver=fa.2009
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --video-capture-use-gpu-memory-buffer --no-subproc-heap-profiling --field-trial-handle=5256,i,2944380752885039033,4318830463388120158,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20240909-180142.416000 --mojo-platform-channel-handle=5192 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --no-subproc-heap-profiling --field-trial-handle=4912,i,2944380752885039033,4318830463388120158,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20240909-180142.416000 --mojo-platform-channel-handle=5156 /prefetch:8
Source: unknownProcess created: C:\Users\user\PCAppStore\PcAppStore.exe "C:\Users\user\PCAppStore\PCAppStore.exe" /init default
Source: unknownProcess created: C:\Users\user\PCAppStore\AutoUpdater.exe "C:\Users\user\PCAppStore\AutoUpdater.exe" /i
Source: unknownProcess created: C:\Users\user\PCAppStore\Watchdog.exe "C:\Users\user\PCAppStore\Watchdog.exe" /guid=00000000-0000-0000-0000-D05099DB2397 /rid=20250311183824.35219733171 /ver=fa.2009
Source: unknownProcess created: C:\Users\user\PCAppStore\PcAppStore.exe "C:\Users\user\PCAppStore\PCAppStore.exe" /init default
Source: unknownProcess created: C:\Users\user\PCAppStore\AutoUpdater.exe "C:\Users\user\PCAppStore\AutoUpdater.exe" /i
Source: unknownProcess created: C:\Users\user\PCAppStore\Watchdog.exe "C:\Users\user\PCAppStore\Watchdog.exe" /guid=00000000-0000-0000-0000-D05099DB2397 /rid=20250311183824.35219733171 /ver=fa.2009
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe "C:\Users\user\PCAppStore\PcAppStore.exe" /init default /restart
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe
Source: C:\Users\user\Desktop\Setup.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://pcapp.store/installing.php?guid=00000000-0000-0000-0000-D05099DB2397&winver=19042&version=fa.2009&nocache=20250311183822.790&_fcid=1741726344365755Jump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe "C:\Users\user\PCAppStore\PcAppStore.exe" /init default Jump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess created: C:\Users\user\PCAppStore\Watchdog.exe "C:\Users\user\PCAppStore\Watchdog.exe" /guid=00000000-0000-0000-0000-D05099DB2397 /rid=20250311183824.35219733171 /ver=fa.2009Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-subproc-heap-profiling --field-trial-handle=2224,i,2944380752885039033,4318830463388120158,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20240909-180142.416000 --mojo-platform-channel-handle=2236 /prefetch:3Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --video-capture-use-gpu-memory-buffer --no-subproc-heap-profiling --field-trial-handle=5256,i,2944380752885039033,4318830463388120158,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20240909-180142.416000 --mojo-platform-channel-handle=5192 /prefetch:8Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --no-subproc-heap-profiling --field-trial-handle=4912,i,2944380752885039033,4318830463388120158,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20240909-180142.416000 --mojo-platform-channel-handle=5156 /prefetch:8Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe "C:\Users\user\PCAppStore\PcAppStore.exe" /init default /restartJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe
Source: C:\Users\user\Desktop\Setup.exeSection loaded: apphelp.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: acgenral.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: uxtheme.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: winmm.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: samcli.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: msacm32.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: version.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: userenv.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: dwmapi.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: urlmon.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: mpr.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: sspicli.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: winmmbase.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: winmmbase.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: iertutil.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: srvcli.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: netutils.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: edgegdi.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: propsys.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: cryptbase.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: oleacc.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: ntmarta.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: shfolder.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: windows.storage.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: wldp.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: profapi.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: wbemcomn.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: amsi.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: wininet.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: secur32.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: ondemandconnroutehelper.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: winhttp.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: mswsock.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: iphlpapi.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: winnsi.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: dnsapi.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: rasadhlp.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: fwpuclnt.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: schannel.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: mskeyprotect.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: ntasn1.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: msasn1.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: dpapi.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: cryptsp.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: rsaenh.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: gpapi.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: ncrypt.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: ncryptsslp.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: dhcpcsvc.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: riched20.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: usp10.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: msls31.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: textinputframework.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: coreuicomponents.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: coremessaging.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: textshaping.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: windows.shell.servicehostbuilder.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: onecoreuapcommonproxystub.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: ieframe.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: netapi32.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: wkscli.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: windows.staterepositoryps.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: edputil.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: secur32.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: mlang.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: policymanager.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: msvcp110_win.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: onecorecommonproxystub.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: linkinfo.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: ntshrui.dllJump to behavior
Source: C:\Users\user\Desktop\Setup.exeSection loaded: cscapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: apphelp.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: version.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: urlmon.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: iertutil.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: srvcli.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: netutils.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wlanapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: iphlpapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winhttp.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dwmapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wtsapi32.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: secur32.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wininet.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: msi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: profapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: sspicli.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: edgegdi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wbemcomn.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: amsi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: userenv.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: pcappdebugger.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: eventsviewer.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ondemandconnroutehelper.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: uiautomationcore.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: propsys.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: uxtheme.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wbemcomn.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winnsi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windows.storage.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wldp.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ondemandconnroutehelper.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: mswsock.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dnsapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: rasadhlp.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: fwpuclnt.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: schannel.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: mskeyprotect.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ntasn1.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: msasn1.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dpapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: cryptsp.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: rsaenh.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: cryptbase.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: gpapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ncrypt.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ncryptsslp.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: webio.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windows.ui.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windowmanagementapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: textinputframework.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: inputhost.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coreuicomponents.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coremessaging.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coremessaging.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: twinapi.appcore.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coreuicomponents.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coremessaging.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: twinapi.appcore.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ntmarta.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winsta.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: edputil.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windows.staterepositoryps.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: appresolver.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: bcp47langs.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: slc.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: sppc.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: onecorecommonproxystub.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: onecoreuapcommonproxystub.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: apphelp.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: urlmon.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: winhttp.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: iertutil.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: srvcli.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: netutils.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: edgegdi.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: kernel.appcore.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: windows.storage.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: wldp.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: uxtheme.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: wininet.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: sspicli.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: profapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ondemandconnroutehelper.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: mswsock.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: iphlpapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: winnsi.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: dnsapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: rasadhlp.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: fwpuclnt.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: schannel.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: mskeyprotect.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ntasn1.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: msasn1.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: dpapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: cryptsp.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: rsaenh.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: cryptbase.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: gpapi.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ncrypt.dllJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ncryptsslp.dllJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: version.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: urlmon.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wlanapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: iphlpapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winhttp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dwmapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wtsapi32.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: secur32.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wininet.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: msi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: iertutil.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: srvcli.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: netutils.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: profapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: sspicli.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: edgegdi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: kernel.appcore.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wbemcomn.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: amsi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: userenv.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: pcappdebugger.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: eventsviewer.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: apphelp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: urlmon.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: winhttp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: iertutil.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: srvcli.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: netutils.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: edgegdi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: kernel.appcore.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: wbemcomn.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: amsi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: userenv.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: profapi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: webio.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: mswsock.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: iphlpapi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: winnsi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: sspicli.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: dnsapi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: rasadhlp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: fwpuclnt.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: schannel.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: mskeyprotect.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: ntasn1.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: ncrypt.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: ncryptsslp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: msasn1.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: cryptsp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: rsaenh.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: cryptbase.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: gpapi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: dpapi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: uxtheme.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: wininet.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: windows.storage.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: wldp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: urlmon.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: winhttp.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: iertutil.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: srvcli.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: netutils.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: edgegdi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: kernel.appcore.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: windows.storage.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: wldp.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: uxtheme.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: wininet.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: sspicli.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: profapi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: mswsock.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: iphlpapi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: winnsi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: dpapi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: msasn1.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: cryptsp.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: rsaenh.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: cryptbase.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: gpapi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: dnsapi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: rasadhlp.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: fwpuclnt.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: schannel.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: mskeyprotect.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ntasn1.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ncrypt.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ncryptsslp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: version.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: urlmon.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: iertutil.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: srvcli.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: netutils.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wlanapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: iphlpapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winhttp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dwmapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wtsapi32.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: secur32.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wininet.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: msi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: profapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: sspicli.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: edgegdi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: kernel.appcore.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wbemcomn.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: amsi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: userenv.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: pcappdebugger.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: eventsviewer.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: urlmon.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: winhttp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: iertutil.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: srvcli.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: netutils.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: edgegdi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: kernel.appcore.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: wbemcomn.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: amsi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: userenv.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: profapi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: webio.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: mswsock.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: iphlpapi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: winnsi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: sspicli.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: dnsapi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: rasadhlp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: fwpuclnt.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: schannel.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: mskeyprotect.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: ntasn1.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: ncrypt.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: ncryptsslp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: msasn1.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: cryptsp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: rsaenh.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: cryptbase.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: gpapi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: dpapi.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: uxtheme.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: wininet.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: windows.storage.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: wldp.dll
Source: C:\Users\user\PCAppStore\AutoUpdater.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: urlmon.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: winhttp.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: iertutil.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: srvcli.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: netutils.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: edgegdi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: kernel.appcore.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: windows.storage.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: wldp.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: uxtheme.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: wininet.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: sspicli.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: profapi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: mswsock.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: iphlpapi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: winnsi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: dpapi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: msasn1.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: cryptsp.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: rsaenh.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: cryptbase.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: gpapi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: dnsapi.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: rasadhlp.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: fwpuclnt.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: schannel.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: mskeyprotect.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ntasn1.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ncrypt.dll
Source: C:\Users\user\PCAppStore\Watchdog.exeSection loaded: ncryptsslp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: version.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: urlmon.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wlanapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: iphlpapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winhttp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dwmapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wtsapi32.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: secur32.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wininet.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: msi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: iertutil.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: srvcli.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: netutils.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: profapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: sspicli.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: edgegdi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: kernel.appcore.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wbemcomn.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: amsi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: userenv.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: pcappdebugger.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: eventsviewer.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: uiautomationcore.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: propsys.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: uxtheme.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wbemcomn.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winnsi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windows.storage.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wldp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: mswsock.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dpapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: msasn1.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: cryptsp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: rsaenh.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: cryptbase.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: gpapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dnsapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: rasadhlp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: fwpuclnt.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: schannel.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: mskeyprotect.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ntasn1.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ncrypt.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ncryptsslp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: webio.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windows.ui.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windowmanagementapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: textinputframework.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: inputhost.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coreuicomponents.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coremessaging.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: twinapi.appcore.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coremessaging.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: twinapi.appcore.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coremessaging.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coreuicomponents.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ntmarta.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winsta.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: edputil.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windows.staterepositoryps.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: appresolver.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: bcp47langs.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: slc.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: sppc.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: onecorecommonproxystub.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: onecoreuapcommonproxystub.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: version.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: urlmon.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: iertutil.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: srvcli.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: netutils.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wlanapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: iphlpapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winhttp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dwmapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wtsapi32.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: secur32.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wininet.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: msi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: profapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: sspicli.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: edgegdi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: kernel.appcore.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wbemcomn.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: amsi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: userenv.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: pcappdebugger.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: eventsviewer.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: uiautomationcore.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: propsys.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: uxtheme.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wbemcomn.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winnsi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windows.storage.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wldp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: mswsock.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dpapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: msasn1.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: cryptsp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: rsaenh.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: cryptbase.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: gpapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: dnsapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: rasadhlp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: fwpuclnt.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: schannel.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: mskeyprotect.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ntasn1.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ncrypt.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ncryptsslp.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: webio.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windows.ui.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windowmanagementapi.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: textinputframework.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: inputhost.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coreuicomponents.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coremessaging.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coremessaging.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: twinapi.appcore.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coremessaging.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: twinapi.appcore.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: coreuicomponents.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: ntmarta.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: wintypes.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: winsta.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: edputil.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: windows.staterepositoryps.dll
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: appresolver.dll
Source: C:\Users\user\Desktop\Setup.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32Jump to behavior
Source: PC App Store.lnk.0.drLNK file: ..\..\..\..\..\..\PCAppStore\PcAppStore.exe
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\scoped_dir2800_562204866Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\chrome_BITS_2800_708963515Jump to behavior
Source: Setup.exeStatic PE information: certificate valid
Source: Setup.exeStatic file information: File size 1990736 > 1048576
Source: Setup.exeStatic PE information: DYNAMIC_BASE, NX_COMPAT, NO_SEH, TERMINAL_SERVER_AWARE
Source: Binary string: C:\Build\Build_2009_D20250220T163010\fa_rss\engine\Release\PCAppStore.pdb source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000002.138457364405.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000000.138695818119.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000E.00000002.138698738237.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp
Source: Binary string: C:\Build\Build_2009_D20250220T163010\fa_rss\AppStoreUpdater\Release\auto_updater.pdb1 source: AutoUpdater.exe, 0000000C.00000002.138550201619.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000C.00000000.138533398411.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000002.138792307736.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000000.138775959618.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp
Source: Binary string: C:\Build\Build_2009_D20250220T163010\fa_rss\AppStoreUpdater\Release\auto_updater.pdb source: AutoUpdater.exe, 0000000C.00000002.138550201619.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000C.00000000.138533398411.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000002.138792307736.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp, AutoUpdater.exe, 0000000F.00000000.138775959618.00007FF61162A000.00000002.00000001.01000000.00000012.sdmp
Source: Binary string: C:\Build\Build_2009_D20250220T163010\fa_rss\Watchdog\x64\Release\Watchdog.pdb source: Watchdog.exe, 00000005.00000000.138366604812.00007FF6463FA000.00000002.00000001.01000000.00000010.sdmp, Watchdog.exe, 0000000D.00000000.138614183913.00007FF6463FA000.00000002.00000001.01000000.00000010.sdmp, Watchdog.exe, 00000010.00000000.138857008487.00007FF6463FA000.00000002.00000001.01000000.00000010.sdmp
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6242C28D0 RoGetActivationFactory,LoadLibraryW,GetProcAddress,RoGetActivationFactory,GetErrorInfo,LoadLibraryW,GetProcAddress,4_2_00007FF6242C28D0
Source: Setup.exeStatic PE information: real checksum: 0x1ee5cc should be: 0x1e8a71
Source: Math.dll.0.drStatic PE information: real checksum: 0x0 should be: 0x155a8
Source: System.dll.0.drStatic PE information: real checksum: 0x0 should be: 0x3d68
Source: nsJSON.dll.0.drStatic PE information: real checksum: 0x0 should be: 0x6718
Source: inetc.dll.0.drStatic PE information: real checksum: 0x0 should be: 0x13c41
Source: NSISFastLib.dll.0.drStatic PE information: real checksum: 0x0 should be: 0x30512
Source: nsDialogs.dll.0.drStatic PE information: real checksum: 0x0 should be: 0x2f9b
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624430C70 URLDownloadToFileW,ShellExecuteExW,4_2_00007FF624430C70
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\Math.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\nsJSON.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\PCAppStore\PcAppStore.exeJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\PCAppStore\AutoUpdater.exeJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\System.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\PCAppStore\Uninstaller.exeJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\nsDialogs.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\NSISFastLib.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\PCAppStore\Watchdog.exeJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\inetc.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\PCAppStore\ReadMe.txtJump to behavior

Boot Survival

barindex
Creates multiple autostart registry keys
Source: C:\Users\user\Desktop\Setup.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run PcAppStoreUpdaterJump to behavior
Source: C:\Users\user\Desktop\Setup.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run WatchdogJump to behavior
Source: C:\Users\user\Desktop\Setup.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run PCAppStoreJump to behavior
Source: C:\Users\user\Desktop\Setup.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnkJump to behavior
Source: C:\Users\user\Desktop\Setup.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run PCAppStoreJump to behavior
Source: C:\Users\user\Desktop\Setup.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run PCAppStoreJump to behavior
Source: C:\Users\user\Desktop\Setup.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run PcAppStoreUpdaterJump to behavior
Source: C:\Users\user\Desktop\Setup.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run PcAppStoreUpdaterJump to behavior
Source: C:\Users\user\Desktop\Setup.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run WatchdogJump to behavior
Source: C:\Users\user\Desktop\Setup.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run WatchdogJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\Desktop\Setup.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Users\user\PCAppStore\AutoUpdater.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Users\user\PCAppStore\AutoUpdater.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOX
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess information set: NOOPENFILEERRORBOX

Malware Analysis System Evasion

barindex
Queries sensitive disk information (via WMI, Win32_DiskDrive, often done to detect virtual machines)
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select Caption from Win32_DiskDrive
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select Size from Win32_DiskDrive
Tries to delay execution (extensive OutputDebugStringW loop)
Source: C:\Users\user\PCAppStore\PcAppStore.exeSection loaded: OutputDebugStringW count: 132
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 300000Jump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 300000
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 300000
Source: C:\Users\user\PCAppStore\PcAppStore.exeWindow / User API: threadDelayed 960Jump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeWindow / User API: threadDelayed 5798Jump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeWindow / User API: threadDelayed 1264Jump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeWindow / User API: threadDelayed 8005Jump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeWindow / User API: threadDelayed 1309
Source: C:\Users\user\PCAppStore\Watchdog.exeWindow / User API: threadDelayed 7991
Source: C:\Users\user\PCAppStore\Watchdog.exeWindow / User API: threadDelayed 1314
Source: C:\Users\user\PCAppStore\Watchdog.exeWindow / User API: threadDelayed 7989
Source: C:\Users\user\PCAppStore\PcAppStore.exeWindow / User API: threadDelayed 1063
Source: C:\Users\user\PCAppStore\PcAppStore.exeWindow / User API: threadDelayed 6529
Source: C:\Users\user\PCAppStore\PcAppStore.exeWindow / User API: threadDelayed 1063
Source: C:\Users\user\PCAppStore\PcAppStore.exeWindow / User API: threadDelayed 6712
Source: C:\Users\user\PCAppStore\PcAppStore.exeWindow / User API: threadDelayed 1167
Source: C:\Users\user\PCAppStore\PcAppStore.exeWindow / User API: threadDelayed 6889
Source: C:\Users\user\PCAppStore\PcAppStore.exeWindow / User API: threadDelayed 1138
Source: C:\Users\user\Desktop\Setup.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\Math.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\nsJSON.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\System.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeDropped PE file which has not been started: C:\Users\user\PCAppStore\Uninstaller.exeJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\nsDialogs.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\NSISFastLib.dllJump to dropped file
Source: C:\Users\user\Desktop\Setup.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\nsmFC11.tmp\inetc.dllJump to dropped file
Source: C:\Users\user\PCAppStore\PcAppStore.exeEvasive API call chain: GetSystemTimeAsFileTime,DecisionNodesgraph_4-102705
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 8812Thread sleep count: 1264 > 30Jump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 8812Thread sleep time: -75840000s >= -30000sJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 8684Thread sleep time: -3000000s >= -30000sJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 8812Thread sleep count: 8005 > 30Jump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 8812Thread sleep time: -480300000s >= -30000sJump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 10012Thread sleep count: 1309 > 30
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 10012Thread sleep time: -78540000s >= -30000s
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 9992Thread sleep time: -600000s >= -30000s
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 10012Thread sleep count: 7991 > 30
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 10012Thread sleep time: -479460000s >= -30000s
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 9520Thread sleep count: 1314 > 30
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 9520Thread sleep time: -78840000s >= -30000s
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 9504Thread sleep time: -900000s >= -30000s
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 9520Thread sleep count: 7989 > 30
Source: C:\Users\user\PCAppStore\Watchdog.exe TID: 9520Thread sleep time: -479340000s >= -30000s
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select ReleaseDate from Win32_BIOS
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select UUID from Win32_ComputerSystemProduct
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select Vendor from Win32_ComputerSystemProduct
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select Version from Win32_ComputerSystemProduct
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select TotalPhysicalMemory from Win32_ComputerSystem
Source: C:\Users\user\PCAppStore\PcAppStore.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : SELECT * FROM Win32_ComputerSystemProduct
Source: C:\Users\user\PCAppStore\PcAppStore.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : SELECT * FROM Win32_ComputerSystemProduct
Source: C:\Users\user\PCAppStore\AutoUpdater.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : SELECT * FROM Win32_ComputerSystemProduct
Source: C:\Users\user\PCAppStore\PcAppStore.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : SELECT * FROM Win32_ComputerSystemProduct
Source: C:\Users\user\PCAppStore\AutoUpdater.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : SELECT * FROM Win32_ComputerSystemProduct
Source: C:\Users\user\PCAppStore\PcAppStore.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : SELECT * FROM Win32_ComputerSystemProduct
Source: C:\Users\user\PCAppStore\PcAppStore.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : SELECT * FROM Win32_ComputerSystemProduct
Source: C:\Users\user\PCAppStore\PcAppStore.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : SELECT * FROM Win32_ComputerSystemProduct
Source: C:\Users\user\PCAppStore\PcAppStore.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : SELECT * FROM Win32_ComputerSystemProduct
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select Name from Win32_Processor
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select MaxClockSpeed from Win32_Processor
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select NumberOfCores from Win32_Processor
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : Select NumberOfLogicalProcessors from Win32_Processor
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_00405C49 GetTempPathW,DeleteFileW,lstrcatW,lstrcatW,lstrlenW,FindFirstFileW,FindNextFileW,FindClose,0_2_00405C49
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_00406873 FindFirstFileW,FindClose,0_2_00406873
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_0040290B FindFirstFileW,0_2_0040290B
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6242C7C00 FindFirstFileExW,GetLastError,DeleteFileW,FindNextFileW,GetLastError,RemoveDirectoryW,4_2_00007FF6242C7C00
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62444DDDC FindClose,FindFirstFileExW,GetLastError,GetCurrentDirectoryW,GetLastError,4_2_00007FF62444DDDC
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62444DE8C GetFileAttributesExW,GetLastError,FindFirstFileW,GetLastError,FindClose,CloseHandle,GetFileInformationByHandleEx,GetLastError,CloseHandle,GetFileInformationByHandleEx,GetLastError,CloseHandle,GetFileInformationByHandleEx,GetLastError,CloseHandle,CloseHandle,CloseHandle,4_2_00007FF62444DE8C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115CD8B0 wsprintfW,FindFirstFileW,wsprintfW,DeleteFileW,FindNextFileW,FindClose,12_2_00007FF6115CD8B0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF61161DAF8 FindFirstFileExW,FindNextFileW,FindClose,FindClose,12_2_00007FF61161DAF8
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 60000Jump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 300000Jump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 60000Jump to behavior
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 60000
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 300000
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 60000
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 60000
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 300000
Source: C:\Users\user\PCAppStore\Watchdog.exeThread delayed: delay time: 60000
Source: AutoUpdater.exe, 0000000C.00000002.138548355093.000001F728906000.00000004.00000020.00020000.00000000.sdmp, AutoUpdater.exe, 0000000F.00000002.138790900568.000002A595A6A000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW(( H
Source: PcAppStore.exe, 0000000B.00000003.138455061564.000002B16AB87000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 0000000B.00000002.138456288055.000002B16AB87000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAWulth
Source: Watchdog.exe, 0000000D.00000003.138987439751.0000028D560BD000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW%\System32\fveui.dll,-843
Source: Setup.exe, 00000000.00000003.138311007238.0000000002C10000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138353046350.0000000002C10000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138311587142.0000000002C1A000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000002.138378957268.0000000002C10000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139275856868.000001F5413B4000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 00000004.00000002.139275856868.000001F541324000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138449544806.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139113318353.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139000095682.000001BDB7CF7000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW
Source: Watchdog.exe, 00000010.00000003.140378715394.000002137E15D000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000010.00000003.140421516877.000002137E15D000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW%\system32\WindowsPowerShell\v1.0\powershell.exe,-124
Source: PcAppStore.exe, 00000004.00000002.139275856868.000001F541324000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138449544806.000001BDB7C75000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAWen-USn
Source: AutoUpdater.exe, 0000000F.00000002.138790900568.000002A595A6A000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAWer
Source: Setup.exe, 00000000.00000003.138353591211.00000000007EE000.00000004.00000020.00020000.00000000.sdmp, Setup.exe, 00000000.00000003.138376009995.00000000007EE000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139586608680.000001BDB7C9C000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139136205928.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.138449544806.000001BDB7CA3000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139068813159.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139590662375.000001BDB7C9D000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139016729549.000001BDB7CA5000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139124830126.000001BDB7CA1000.00000004.00000020.00020000.00000000.sdmp, Watchdog.exe, 00000005.00000003.139165364664.000001BDB7CA5000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW
Source: PcAppStore.exe, 0000000B.00000002.138456531711.000002B16AB95000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 0000000B.00000003.138455193484.000002B16AB94000.00000004.00000020.00020000.00000000.sdmp, PcAppStore.exe, 0000000B.00000003.138455061564.000002B16AB87000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAWer%SystemRoot%\system32\mswsock.dllTRING=Internet ExplorerFPS_BROWSER_USER_PROFILE_STRING=DefaultHOMEDRIVE=C:HOMEPATH=\Users\userLOCALAPPDATA=C:\Users\user\AppData\L
Source: C:\Users\user\Desktop\Setup.exeAPI call chain: ExitProcess graph end nodegraph_0-3106
Source: C:\Users\user\Desktop\Setup.exeProcess information queried: ProcessInformationJump to behavior

Anti Debugging

barindex
Checks for kernel code integrity (NtQuerySystemInformation(CodeIntegrityInformation))
Source: C:\Users\user\PCAppStore\PcAppStore.exeSystem information queried: CodeIntegrityInformation
Source: C:\Users\user\PCAppStore\PcAppStore.exeSystem information queried: CodeIntegrityInformation
Source: C:\Users\user\PCAppStore\PcAppStore.exeSystem information queried: CodeIntegrityInformation
Source: C:\Users\user\PCAppStore\PcAppStore.exeSystem information queried: CodeIntegrityInformation
Source: C:\Users\user\PCAppStore\PcAppStore.exeSystem information queried: CodeIntegrityInformation
Source: C:\Users\user\PCAppStore\PcAppStore.exeSystem information queried: CodeIntegrityInformation
Source: C:\Users\user\PCAppStore\PcAppStore.exeSystem information queried: CodeIntegrityInformation
Source: C:\Users\user\PCAppStore\PcAppStore.exeSystem information queried: CodeIntegrityInformation
Source: C:\Users\user\PCAppStore\PcAppStore.exeSystem information queried: CodeIntegrityInformation
Source: C:\Users\user\PCAppStore\PcAppStore.exeSystem information queried: KernelDebuggerInformation
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62444B910 GetLastError,IsDebuggerPresent,OutputDebugStringW,4_2_00007FF62444B910
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62444B910 GetLastError,IsDebuggerPresent,OutputDebugStringW,4_2_00007FF62444B910
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6242C28D0 RoGetActivationFactory,LoadLibraryW,GetProcAddress,RoGetActivationFactory,GetErrorInfo,LoadLibraryW,GetProcAddress,4_2_00007FF6242C28D0
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62422EC30 GetProcessHeap,HeapFree,4_2_00007FF62422EC30
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF62446E178 SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,4_2_00007FF62446E178
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624473C58 RtlCaptureContext,RtlLookupFunctionEntry,RtlVirtualUnwind,IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,4_2_00007FF624473C58
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115FDC8C IsProcessorFeaturePresent,RtlCaptureContext,RtlLookupFunctionEntry,RtlVirtualUnwind,IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,12_2_00007FF6115FDC8C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115FDE70 SetUnhandledExceptionFilter,12_2_00007FF6115FDE70
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF6115FE060 SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,12_2_00007FF6115FE060
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF611603028 RtlCaptureContext,RtlLookupFunctionEntry,RtlVirtualUnwind,IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,12_2_00007FF611603028
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624430C70 URLDownloadToFileW,ShellExecuteExW,4_2_00007FF624430C70
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624254A00 keybd_event,keybd_event,4_2_00007FF624254A00
Source: C:\Users\user\Desktop\Setup.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://pcapp.store/installing.php?guid=00000000-0000-0000-0000-D05099DB2397&winver=19042&version=fa.2009&nocache=20250311183822.790&_fcid=1741726344365755Jump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe "C:\Users\user\PCAppStore\PcAppStore.exe" /init default /restartJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe
Source: C:\Users\user\PCAppStore\PcAppStore.exeProcess created: C:\Users\user\PCAppStore\PcAppStore.exe
Source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpBinary or memory string: eM=%ws&eC=%deM=%wshttps://pcapp.store/pixel.gifShell_SecondaryTrayWndtype must be string, but is Shell_TrayWndcreate_directory_faileddelete_file_failedcreate_directory_after_file_deletion_failedproductdirectory_creation_error\*0e+000e+00RoGetActivationFactorycombase.dllCoIncrementMTAUsagecombase.dll.dllDllGetActivationFactoryparamsnameRoGetActivationFactorycombase.dllCoIncrementMTAUsagecombase.dll.dllDllGetActivationFactory^(https?://(?:www\.)?([^/]+))(/.*)?$URL format is not valid : %wsWinHTTP 1.0handle initialization failuretimeout init failurehandle connection failureGEThandle request creation failurehandle request or response failurefile creation failurequery data not availableproductr_binErreCode=%dproductcreate_shortcutshortcut_erroroid=%luSHGetFolderPath_error_code=%X&oid=%luQueryInterface_error_code=%X&oid=%luCoCreateInstance_error_code=%X&oid=%lu.lnkShell_TrayWndnfinityanindsnannfinityanindsnan0p+00p+0type must be string, but is infnan(ind)nannan(snan)unknowninfnan(ind)nannan(snan)menu_storemenu_searchinfnan(ind)nannan(snan)infnan(ind)nannan(snan)https://pcapp.storeinfnan(ind)nannan(snan)%02Xinfnan(ind)nannan(snan)\/unknownLTRRTLLTRSoftware\PCAppStoreAppParamdefaultC++/WinRT version:2.0.220110.5\\\HKEY_CLASSES_ROOTHKEY_CURRENT_USERHKEY_LOCAL_MACHINEHKEY_USERSHKEY_CURRENT_CONFIGCurrentBuildBuildNumberSOFTWARE\Microsoft\Windows NT\CurrentVersionSOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon%lu%us%5B%5D=\u@NL$
Source: PcAppStore.exe, 00000004.00000002.139278751840.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 00000004.00000000.138365868390.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmp, PcAppStore.exe, 0000000B.00000000.138453413214.00007FF6244BA000.00000002.00000001.01000000.0000000F.sdmpBinary or memory string: o@C:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hC:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hC:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hC:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hC:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hC:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hShell_TrayWndWilError_03C:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hC:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hC:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hC:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hC:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.hC:\Build\Build_2009_D20250220T163010\fa_rss\engine\packages\Microsoft.Windows.ImplementationLibrary.1.0.240803.1\include\wil\resource.h{"action":"direction_changed","data":{"direction":"%c", "withTopbar":false}}{"action":"screen_size_changed","data":{"withTopbar":false,"t":%d,"l":%d,"b":%d,"r":%d}}{"action":"locale_layout_changed","data":{"localeLayout": "%ws"}}
Source: PcAppStore.exeBinary or memory string: Shell_TrayWnd
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: 12_2_00007FF611626700 cpuid 12_2_00007FF611626700
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: GetLocaleInfoEx,GetLocaleInfoEx,4_2_00007FF6242CD240
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: GetACP,IsValidCodePage,GetLocaleInfoW,4_2_00007FF624498ED8
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: GetLocaleInfoEx,4_2_00007FF62446CC88
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: GetLocaleInfoEx,FormatMessageA,4_2_00007FF62444D5F0
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: GetLocaleInfoW,GetLocaleInfoW,GetACP,4_2_00007FF62449973C
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: EnumSystemLocalesW,4_2_00007FF62448D808
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: EnumSystemLocalesW,GetUserDefaultLCID,IsValidCodePage,IsValidLocale,GetLocaleInfoW,GetLocaleInfoW,4_2_00007FF624499920
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: EnumSystemLocalesW,4_2_00007FF624499234
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: EnumSystemLocalesW,4_2_00007FF624499304
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: GetLocaleInfoW,4_2_00007FF62448DDA0
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: GetACP,IsValidCodePage,GetLocaleInfoW,12_2_00007FF611621430
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: EnumSystemLocalesW,12_2_00007FF61162185C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: GetLocaleInfoW,GetLocaleInfoW,GetLocaleInfoW,12_2_00007FF6116218F4
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: EnumSystemLocalesW,12_2_00007FF61162178C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: GetLocaleInfoEx,12_2_00007FF6115FC73C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: GetLocaleInfoW,GetLocaleInfoW,GetACP,12_2_00007FF611621C94
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: GetLocaleInfoW,12_2_00007FF611621B3C
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: EnumSystemLocalesW,12_2_00007FF611617BF4
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: EnumSystemLocalesW,GetUserDefaultLCID,IsValidCodePage,IsValidLocale,GetLocaleInfoW,GetLocaleInfoW,12_2_00007FF611621E78
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: GetLocaleInfoW,12_2_00007FF611621D44
Source: C:\Users\user\PCAppStore\AutoUpdater.exeCode function: GetLocaleInfoW,12_2_00007FF611618134
Source: C:\Users\user\Desktop\Setup.exeQueries volume information: C:\ VolumeInformationJump to behavior
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF6244527E0 GetSystemTimePreciseAsFileTime,GetSystemTimeAsFileTime,4_2_00007FF6244527E0
Source: C:\Users\user\PCAppStore\PcAppStore.exeCode function: 4_2_00007FF624492EE8 GetTimeZoneInformation,4_2_00007FF624492EE8
Source: C:\Users\user\Desktop\Setup.exeCode function: 0_2_0040352D EntryPoint,SetErrorMode,GetVersionExW,GetVersionExW,GetVersionExW,lstrlenA,#17,OleInitialize,SHGetFileInfoW,GetCommandLineW,CharNextW,GetTempPathW,GetTempPathW,GetWindowsDirectoryW,lstrcatW,GetTempPathW,lstrcatW,SetEnvironmentVariableW,SetEnvironmentVariableW,SetEnvironmentVariableW,DeleteFileW,lstrcatW,lstrcatW,lstrcatW,lstrcmpiW,SetCurrentDirectoryW,DeleteFileW,CopyFileW,CloseHandle,ExitProcess,CoUninitialize,ExitProcess,GetCurrentProcess,OpenProcessToken,LookupPrivilegeValueW,AdjustTokenPrivileges,ExitWindowsEx,ExitProcess,0_2_0040352D
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\SecurityCenter2 : Select displayName from AntiSpywareProduct
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\SecurityCenter2 : Select displayName from AntiVirusProduct
Source: C:\Users\user\Desktop\Setup.exeWMI Queries: IWbemServices::ExecQuery - ROOT\SecurityCenter2 : Select displayName from FirewallProduct

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire InfrastructureValid Accounts141
Windows Management Instrumentation		1
DLL Side-Loading		1
Exploitation for Privilege Escalation		1
Deobfuscate/Decode Files or Information		OS Credential Dumping2
System Time Discovery		Remote Services1
Archive Collected Data		24
Ingress Tool Transfer		Exfiltration Over Other Network Medium1
System Shutdown/Reboot
CredentialsDomainsDefault Accounts2
Native API		1
DLL Search Order Hijacking		1
DLL Side-Loading		1
Obfuscated Files or Information		LSASS Memory1
Network Service Discovery		Remote Desktop Protocol2
Clipboard Data		11
Encrypted Channel		Exfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain Accounts2
Command and Scripting Interpreter		111
Registry Run Keys / Startup Folder		1
DLL Search Order Hijacking		1
DLL Side-Loading		Security Account Manager1
System Network Connections Discovery		SMB/Windows Admin SharesData from Network Shared Drive4
Non-Application Layer Protocol		Automated ExfiltrationData Encrypted for Impact
Employee NamesVirtual Private ServerLocal AccountsCronLogin Hook1
Access Token Manipulation		1
DLL Search Order Hijacking		NTDS2
File and Directory Discovery		Distributed Component Object ModelInput Capture5
Application Layer Protocol		Traffic DuplicationData Destruction
Gather Victim Network InformationServerCloud AccountsLaunchdNetwork Logon Script12
Process Injection		3
Masquerading		LSA Secrets165
System Information Discovery		SSHKeyloggingFallback ChannelsScheduled TransferData Encrypted for Impact
Domain PropertiesBotnetReplication Through Removable MediaScheduled TaskRC Scripts111
Registry Run Keys / Startup Folder		351
Virtualization/Sandbox Evasion		Cached Domain Credentials371
Security Software Discovery		VNCGUI Input CaptureMultiband CommunicationData Transfer Size LimitsService Stop
DNSWeb ServicesExternal Remote ServicesSystemd TimersStartup ItemsStartup Items1
Access Token Manipulation		DCSync2
Process Discovery		Windows Remote ManagementWeb Portal CaptureCommonly Used PortExfiltration Over C2 ChannelInhibit System Recovery
Network Trust DependenciesServerlessDrive-by CompromiseContainer Orchestration JobScheduled Task/JobScheduled Task/Job12
Process Injection		Proc Filesystem351
Virtualization/Sandbox Evasion		Cloud ServicesCredential API HookingApplication Layer ProtocolExfiltration Over Alternative ProtocolDefacement
Network TopologyMalvertisingExploit Public-Facing ApplicationCommand and Scripting InterpreterAtAtHTML Smuggling/etc/passwd and /etc/shadow1
Application Window Discovery		Direct Cloud VM ConnectionsData StagedWeb ProtocolsExfiltration Over Symmetric Encrypted Non-C2 ProtocolInternal Defacement

Behavior Graph

Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 dnsIp2 2 Behavior Graph ID: 1635751 Sample: Setup.exe Startdate: 11/03/2025 Architecture: WINDOWS Score: 54 62 www.download.windowsupdate.com.cdn.dnsv1.com 2->62 64 pcapp.store 2->64 66 3 other IPs or domains 2->66 82 Multi AV Scanner detection for submitted file 2->82 11 Setup.exe 13 55 2->11         started        16 AutoUpdater.exe 2->16         started        18 Watchdog.exe 2->18         started        20 4 other processes 2->20 signatures3 process4 dnsIp5 76 pcapp.store 159.223.126.41 CELANESE-US United States 11->76 48 C:\Users\user\PCAppStore\Watchdog.exe, PE32+ 11->48 dropped 50 C:\Users\user\PCAppStore\Uninstaller.exe, PE32 11->50 dropped 52 C:\Users\user\PCAppStore\PcAppStore.exe, PE32+ 11->52 dropped 54 7 other files (1 malicious) 11->54 dropped 92 Queries sensitive disk information (via WMI, Win32_DiskDrive, often done to detect virtual machines) 11->92 94 Creates multiple autostart registry keys 11->94 22 PcAppStore.exe 19 11->22         started        25 Watchdog.exe 219 11->25         started        28 chrome.exe 2 11->28         started        96 Multi AV Scanner detection for dropped file 16->96 78 18.164.116.125 MIT-GATEWAYSUS United States 18->78 80 18.164.116.13 MIT-GATEWAYSUS United States 20->80 file6 signatures7 process8 dnsIp9 84 Multi AV Scanner detection for dropped file 22->84 86 Tries to delay execution (extensive OutputDebugStringW loop) 22->86 30 PcAppStore.exe 22->30         started        68 d74queuslupub.cloudfront.net 18.164.116.25 MIT-GATEWAYSUS United States 25->68 70 192.168.11.10 unknown unknown 28->70 72 192.168.11.20 unknown unknown 28->72 74 239.255.255.250 unknown Reserved 28->74 32 chrome.exe 28->32         started        35 chrome.exe 28->35         started        37 chrome.exe 28->37         started        signatures10 process11 dnsIp12 39 PcAppStore.exe 30->39         started        56 142.250.65.164 GOOGLEUS United States 32->56 58 td.doubleclick.net 142.250.80.2 GOOGLEUS United States 32->58 60 13 other IPs or domains 32->60 process13 signatures14 88 Checks for kernel code integrity (NtQuerySystemInformation(CodeIntegrityInformation)) 39->88 42 PcAppStore.exe 39->42         started        process15 signatures16 90 Checks for kernel code integrity (NtQuerySystemInformation(CodeIntegrityInformation)) 42->90 45 PcAppStore.exe 42->45         started        process17 signatures18 98 Checks for kernel code integrity (NtQuerySystemInformation(CodeIntegrityInformation)) 45->98

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.