Windows Analysis Report SIGNEDCONTRACT_ 14TH_SEPTEMBER_2021 _.PDF

Phishing:

No HTML title found

Source: https://glitch.com/signin

HTTP Parser: HTML title missing

META author tag missing

Source: https://glitch.com/signin

HTTP Parser: No <meta name="author".. found

META copyright tag missing

Source: https://glitch.com/signin

HTTP Parser: No <meta name="copyright".. found

Compliance:

Creates license or readme file

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Temp\4600_1897281321\LICENSE.txt

Jump to behavior

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 13.32.22.36:443 -> 192.168.2.4:49843 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.218.221.91:443 -> 192.168.2.4:49909 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.213.101.90:443 -> 192.168.2.4:49910 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.92.165.208:443 -> 192.168.2.4:49911 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.92.165.208:443 -> 192.168.2.4:49912 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.218.178.83:443 -> 192.168.2.4:49914 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.218.178.83:443 -> 192.168.2.4:49913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.213.101.90:443 -> 192.168.2.4:49915 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 143.204.207.115:443 -> 192.168.2.4:49969 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 143.204.207.115:443 -> 192.168.2.4:49970 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.111.9.57:443 -> 192.168.2.4:49972 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.111.9.57:443 -> 192.168.2.4:49971 version: TLS 1.2

Software Vulnerabilities:

Potential document exploit detected (unknown TCP traffic)

Source: global traffic

TCP traffic: 192.168.2.4:49706 -> 92.122.145.220:443

Potential document exploit detected (performs DNS queries)

Source: global traffic

DNS query: name: glitch.me

Potential document exploit detected (performs HTTP gets)

Source: global traffic

TCP traffic: 192.168.2.4:49706 -> 92.122.145.220:443

Networking:

JA3 SSL client fingerprint seen in connection with other malware

Source: Joe Sandbox View	JA3 fingerprint: 3b5074b1b5d032e5620f69f9f700ff0e
Source: Joe Sandbox View	JA3 fingerprint: 37f463bf4616ecd445d4a1937da06e19

IP address seen in connection with other malware

Source: Joe Sandbox View

IP Address: 23.111.9.57 23.111.9.57

Uses HTTPS

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49984 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 49974 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49940 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50042
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50044
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49962 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50044 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 49890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49970 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50042 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49935 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49697
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49696
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49695
Source: unknown	Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49688
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49684
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49683
Source: unknown	Network traffic detected: HTTP traffic on port 49947 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49688 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49969 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49683 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49941
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49935
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49934
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49960 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50063 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49953 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49684 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49993 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Connects to IPs without corresponding DNS lookups

Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220
Source: unknown	TCP traffic detected without corresponding DNS query: 92.122.145.220

Found strings which match to known social media urls

Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: 1https://www.youtube.com/subscribe_embed?usegapi=1 equals www.youtube.com (Youtube)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: Z!.http://www.facebook.com/externalhit_uatext.php equals www.facebook.com (Facebook)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://www.facebook.com/externalhit_uatext.php equals www.facebook.com (Facebook)
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://www.youtube.com/subscribe_embed?usegapi=1 equals www.youtube.com (Youtube)
Source: Ruleset Data.17.dr	String found in binary or memory: www.facebook.com equals www.facebook.com (Facebook)
Source: Ruleset Data.17.dr	String found in binary or memory: www.facebook.com/ajax/ads/ equals www.facebook.com (Facebook)

URLs found in memory or binary data

Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://%s.glitch.localprojecthost:3031
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://api.glitch.localprojecthost:3031
Source: AcroRd32.exe, 00000002.00000000.836728838.000000000B2C2000.00000004.00000001.sdmp	String found in binary or memory: http://cipa.jp/exif/1.0/
Source: AcroRd32.exe, 00000002.00000000.836728838.000000000B2C2000.00000004.00000001.sdmp	String found in binary or memory: http://cipa.jp/exif/1.0/)#D3
Source: AcroRd32.exe, 00000002.00000000.836728838.000000000B2C2000.00000004.00000001.sdmp	String found in binary or memory: http://cipa.jp/exif/1.0/0)_Dw
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://duckduckgo.com/duckduckbot.html
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://help.yahoo.com/help/us/ysearch/slurp
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://iptc.org/std/Iptc4xmpCore/1.0/xmlns/
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://iptc.org/std/Iptc4xmpCore/1.0/xmlns/U
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://iptc.org/std/Iptc4xmpExt/2008-02-29/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/define-locale/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/dst-shifted/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/js-date/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/min-max/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/zone/
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://ns.useplus.org/ldf/xmp/1.0/
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://ns.useplus.org/ldf/xmp/1.0/2
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://ns.useplus.org/ldf/xmp/1.0/x
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://status.glitch.com
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/extension/
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/field#
Source: AcroRd32.exe, 00000002.00000000.836728838.000000000B2C2000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/id/
Source: AcroRd32.exe, 00000002.00000000.836728838.000000000B2C2000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/id/dDp
Source: AcroRd32.exe, 00000002.00000000.836728838.000000000B2C2000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/id/iDM
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/property#
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/schema#
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/schema#$
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/schema#N
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/type#
Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfa/ns/type#j
Source: AcroRd32.exe, 00000002.00000000.836728838.000000000B2C2000.00000004.00000001.sdmp	String found in binary or memory: http://www.aiim.org/pdfe/ns/id/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://www.alexa.com/site/help/webmasters
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://www.baidu.com/search/spider.html
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://www.exabot.com/go/robot
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://www.google.com/adsbot.html
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://www.google.com/bot.html
Source: AcroRd32.exe, 00000002.00000000.836728838.000000000B2C2000.00000004.00000001.sdmp	String found in binary or memory: http://www.npes.org/pdfx/ns/id/
Source: AcroRd32.exe, 00000002.00000000.836728838.000000000B2C2000.00000004.00000001.sdmp	String found in binary or memory: http://www.npes.org/pdfx/ns/id/~CV
Source: AcroRd32.exe, 00000002.00000000.824028005.000000000B56E000.00000004.00000001.sdmp	String found in binary or memory: http://www.quicktime.com.Acrobat
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://www.sogou.com/docs/help/webmasters.htm#07
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: http://yandex.com/bots
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://%s.glitch.development
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://%s.glitch.me
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://%s.staging.glitch.me
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://%s.testing.staging.glitch.com
Source: AcroRd32.exe, 00000002.00000000.836895112.000000000B2F0000.00000004.00000001.sdmp	String found in binary or memory: https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/
Source: AcroRd32.exe, 00000002.00000000.836895112.000000000B2F0000.00000004.00000001.sdmp	String found in binary or memory: https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/E
Source: AcroRd32.exe, 00000002.00000000.836895112.000000000B2F0000.00000004.00000001.sdmp	String found in binary or memory: https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/N
Source: AcroRd32.exe, 00000002.00000000.836895112.000000000B2F0000.00000004.00000001.sdmp	String found in binary or memory: https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/Upload/
Source: AcroRd32.exe, 00000002.00000000.836895112.000000000B2F0000.00000004.00000001.sdmp	String found in binary or memory: https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/Upload/-S
Source: AcroRd32.exe, 00000002.00000000.836895112.000000000B2F0000.00000004.00000001.sdmp	String found in binary or memory: https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/Upload/yR
Source: AcroRd32.exe, 00000002.00000000.836895112.000000000B2F0000.00000004.00000001.sdmp	String found in binary or memory: https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/W
Source: Reporting and NEL.18.dr	String found in binary or memory: https://a.nel.cloudflare.com/report/v3?s=4CSAmXdK8GOWQNEpAJrAvRinSWzUojRNV9GV165MPbEGXzYvMv1c0FAGF6N
Source: Reporting and NEL.18.dr	String found in binary or memory: https://a.nel.cloudflare.com/report/v3?s=sb8MZhubNtspA52mMLsl9PqAXuE%2FRh24gBhP11kDh6yLLOuqDUBTHhtwx
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, manifest.json0.17.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://accounts.google.com
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/auth
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/iframe
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/postmessageRelay
Source: AcroRd32.exe, 00000002.00000000.820715082.000000000A402000.00000004.00000001.sdmp	String found in binary or memory: https://api.echosign.com
Source: AcroRd32.exe, 00000002.00000000.820715082.000000000A402000.00000004.00000001.sdmp	String found in binary or memory: https://api.echosign.comRL
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://api.glitch.com
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://api.glitch.com/projects/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://api.glitch.development
Source: 000003.log5.17.dr, 58a51f5f680fbe3e_0.17.dr	String found in binary or memory: https://api.segment.io/v1/t
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://api.staging.glitch.com
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://api.testing.staging.glitch.com
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, a0e03840ed3acdb6_0.17.dr, manifest.json0.17.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://apis.google.com
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://apis.google.com/js/api.js
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://apis.google.com/js/api.jsaD
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://apis.google.com/marketplace/button?usegapi=1
Source: 58a51f5f680fbe3e_0.17.dr, 7786bafbfc3c4e98_0.17.dr	String found in binary or memory: https://cdn.amplitude.com/libs/amplitude-5.2.2-min.gz.js
Source: 9dcf5e9e96ca6ccd_0.17.dr	String found in binary or memory: https://cdn.amplitude.com/libs/amplitude-5.2.2-min.gz.jsa
Source: 9dcf5e9e96ca6ccd_0.17.dr	String found in binary or memory: https://cdn.amplitude.com/libs/amplitude-5.2.2-min.gz.jsaD
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/4bca9911-a70a-46cd-b0b2-f1b103c832d9%2FglitchLogo.svg?v=1569963961866
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FFiraCode-Bold.otf?v=1603136301750);
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FFiraCode-Light.otf?v=1603136302219);
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FFiraCode-Medium.otf?v=1603136302009);
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FFiraCode-Regular.otf?v=1603136302365);
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FFiraCode-Retina.otf?v=1603136302970
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-Black.otf?v=1603136323437);
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-Bold.otf?v=1603136323437);
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-BoldItalic.otf?v=16031363234
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-ExtraBold.otf?v=160313632398
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-Italic.otf?v=1603136324237);
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-Light.otf?v=1603136324489);
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-LightItalic.otf?v=1603136324
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-Medium.otf?v=1603136324850);
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-MediumItalic.otf?v=160313632
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-Regular.otf?v=1603136326027)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-SemiBold.otf?v=1603136325895
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-SemiBoldItalic.otf?v=1603136
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/63b9e699-61b7-49b1-9bde-ceeaf82e3dd1%2Fformat-file-gif.gif?v=1569875695381)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/652d1806-f6c1-4fa5-82e8-d5aa0e605a64%2Fbackhand.png?v=1568928651311
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/652d1806-f6c1-4fa5-82e8-d5aa0e605a64%2Fhandshake.png?v=1568927803312
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/652d1806-f6c1-4fa5-82e8-d5aa0e605a64%2Fparty.png?v=1568927803442
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/652d1806-f6c1-4fa5-82e8-d5aa0e605a64%2Ftelephone.png?v=1568928922344
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/652d1806-f6c1-4fa5-82e8-d5aa0e605a64%2Ftelevision.png?v=1568928956732
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/6acc6ca5-e1ad-4cd9-9ec2-3756ebcb452a%2FScreenshot%202019-07-10%20at%205.42.40
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/6d561a98-036e-47a6-b152-a2a66a73d13e%2F3.gif?1552067086515)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/6d561a98-036e-47a6-b152-a2a66a73d13e%2Fcat-box.gif?1548697331541)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/6d561a98-036e-47a6-b152-a2a66a73d13e%2Fshow-app-in-editor.gif?1555698139611)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/6d561a98-036e-47a6-b152-a2a66a73d13e%2Ftools-pop-short.gif?1548699985926)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/6d561a98-036e-47a6-b152-a2a66a73d13e%2Fuser-teams.png?1543938298416)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/9bff3f87-ccb0-468f-93d1-0b14fc94ada6%2F66866070-8ba41600-ef66-11e9-8ba5-b9568
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/9bff3f87-ccb0-468f-93d1-0b14fc94ada6%2F66866071-8ba41600-ef66-11e9-881d-aa5ff
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/9cb65289-b168-4318-8f8a-8e5f3c2d8da1%2Fdotenv-demo.mp4?v=1589396461116
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/9cb65289-b168-4318-8f8a-8e5f3c2d8da1%2Fdotenv-demo.webm?v=1589396461116
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/b97f2879-ef9d-44c8-acf7-9650a5f9c61f%2Fembedbar-demo.gif?1559242323828)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Farrow-backward.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fboosted-default.png?v=1583253498622
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fclap.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fcoffin.png?v=1572970796613
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fcrescent-moon.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fcyclone.png?v=1578491957356
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fdancers.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fearth-asia.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Feyeglasses.png?v=1578491957263
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Ffemale-technologist.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fferris-wheel.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Ffooter_icon_dev.png?v=1584034391207
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Ffooter_icon_linkedin.png?v=15840343938
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Ffooter_icon_twitter.png?v=158403438901
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fghost.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fgift.png?v=1596550793942
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fglobe-with-meridians.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fhelmet-with-white-cross.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fhibiscus.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fhigh-voltage-sign_26a1.png?v=159173464
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Flady-beetle.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Flightbulb.png?v=1575320161677
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Flock.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fmusical-keyboard.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Foctagonal-sign.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fpager.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fpaperclip.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fpeace.png?v=1574355737767
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fraising-hand-woman.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Frefresh.png?v=1574355709844
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Frocket.png?v=1591985680393
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fseedling.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fsleeping-symbol_1f4a4.png?v=1591734638
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fsunny.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Ftokyo-tower.png?v=1578491957385
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Ftraffic-light.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Ftruck.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Fturtle.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2Ftwo.png
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e1cf74cf-ceb1-447d-a028-37499fd8f19f%2Fshuffle.png?v=1570050892416
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fambulance.png?v=1568142111248
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fballoon.png?v=1568142111269
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fbento_box.png?v=1568142111435
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fbicep.png?v=1568142111496
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fbomb.png?v=1568142111619
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fbouquet.png?v=1568142111689
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fcarp_streamer.png?v=1568142111776
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fclapper.png?v=1568142111883
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fcredit_card.png?v=1568142111994
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fcrystal_ball.png?v=1568142112091
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fdiamond_small.svg?v=1568142112219
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fdog_face.png?v=1568142112319
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Femail.png?v=1568142112421
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Feyes.png?v=1568142112532
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fface_expressionless.png?v=156814211263
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fface_slightly_smiling.png?v=1568142112
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Ffacebook.png?v=1568142112883
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Ffast_down.png?v=1568142112926
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Ffast_up.png?v=1568142113072
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Ffireengine.png?v=1568142113308
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Ffishing_pole.png?v=1568142113454
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fframed_picture.png?v=1568142113549
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fgoogle.png?v=1568142113626
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fherb.png?v=1568142113698
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Findex.png?v=1568142113805
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fkey.png?v=1568142113969
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fkeyboard.png?v=1568144626975
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Flove_letter.png?v=1568142114067
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fmailbox_open.png?v=1568142114385
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fmicrophone.png?v=1568142114522
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fmouse.png?v=1568144623017
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fnew.png?v=1568142114658
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fnewspaper.png?v=1568142114698
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fpark.png?v=1568142114803
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fplay_button.svg?v=1568142114870
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fpolice_officer.png?v=1568142115138
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fpushpin.png?v=1568142115347
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Frainbow.png?v=1568142115279
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fscales.png?v=1568142115455
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fsick.png?v=1568142115737
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fslack.svg?v=1568142115840
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fsparkles.png?v=1568142115895
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fsparkling_heart.png?v=1568142116065
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fspiral_notepad.png?v=1568142116198
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fthumbs_down.png?v=1568142116261
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fthumbs_up.png?v=1568142116372
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Ftraffic_light.png?v=1568142116458
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fumbrella.png?v=1568142116596
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fverified.svg?v=1568142116735
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.glitch.com/e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fwave.png?v=1568142111233
Source: Network Action Predictor.17.dr	String found in binary or memory: https://cdn.optimizely.com/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.optimizely.com/datafiles/%s.json
Source: bf8e49114eb4af1f_0.17.dr	String found in binary or memory: https://cdn.optimizely.com/datafiles/GZMqH7Aou8QmcPV2hm16wj.json/tag.js
Source: bce271a460b75b88_0.17.dr	String found in binary or memory: https://cdn.segment.com/analytics.js/v1/N8NetCAuTbHYGqtQtb44FFBSPUXwsAu2/analytics.min.js
Source: 58a51f5f680fbe3e_0.17.dr	String found in binary or memory: https://cdn.segment.com/analytics.js/v1/N8NetCAuTbHYGqtQtb44FFBSPUXwsAu2/analytics.min.jsaD
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://cdn.staging.glitch.com
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://classroom.google.com/sharewidget?usegapi=1
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://clients2.google.com
Source: manifest.json0.17.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://clients3.google.com/cast/chromecast/home/widget/backdrop?usegapi=1
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://config.optimizely.com/datafiles/auth/%s.json
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr	String found in binary or memory: https://content-autofill.googleapis.com
Source: manifest.json0.17.dr	String found in binary or memory: https://content.googleapis.com
Source: Reporting and NEL.18.dr	String found in binary or memory: https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
Source: Reporting and NEL.18.dr	String found in binary or memory: https://csp.withgoogle.com/csp/report-to/recaptcha
Source: Reporting and NEL.18.dr	String found in binary or memory: https://csp.withgoogle.com/csp/report-to/recaptchaX
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://d2w9rnfcy7mm78.cloudfront.net/3680096/original_83b63778a7198ed0fffd17e98a57c2fd.gif?15505894
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://dataconnector.corp.google.com/:session_prefix:ui/widgetview?usegapi=1
Source: 6c1af94f3cf78bc6_0.17.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: 6c1af94f3cf78bc6_0.17.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: 3449d1a0-a0ef-467d-8e84-3b2e87e2e674.tmp.18.dr, e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr, 082d721f-9cf2-4d19-83bd-11956448a1b8.tmp.18.dr	String found in binary or memory: https://dns.google
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://drive.google.com/savetodrivebutton?usegapi=1
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://eslint.org/docs/user-guide/configuring)
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://families.google.com/webcreation?usegapi=1&usegapi=1
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://fb.me/react-polyfills
Source: manifest.json0.17.dr	String found in binary or memory: https://feedback.googleusercontent.com
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://fonts.googleapis.com
Source: Network Action Predictor.17.dr	String found in binary or memory: https://fonts.googleapis.com/
Source: manifest.json0.17.dr	String found in binary or memory: https://fonts.googleapis.com;
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://fonts.gstatic.com
Source: Network Action Predictor.17.dr	String found in binary or memory: https://fonts.gstatic.com/
Source: manifest.json0.17.dr	String found in binary or memory: https://fonts.gstatic.com;
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://github.com/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://github.com/emotion-js/emotion/tree/master/packages/core
Source: 000003.log5.17.dr, Current Session.17.dr	String found in binary or memory: https://glitch.com
Source: 000003.log0.17.dr	String found in binary or memory: https://glitch.com/
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://glitch.com/=
Source: 80db2be3e3fd780e_0.17.dr	String found in binary or memory: https://glitch.com/C(s
Source: bce271a460b75b88_0.17.dr	String found in binary or memory: https://glitch.com/Ev
Source: 315ea851a10be26b_0.17.dr	String found in binary or memory: https://glitch.com/HW
Source: ae427a49c5d21f5e_0.17.dr	String found in binary or memory: https://glitch.com/HX
Source: 2d355e65d089e0d7_0.17.dr	String found in binary or memory: https://glitch.com/assets/design.2ff04b40.js
Source: 67dc865a7051a05b_0.17.dr	String found in binary or memory: https://glitch.com/assets/index.8eddb178.js
Source: 000003.log5.17.dr, Current Session.17.dr	String found in binary or memory: https://glitch.com/edit/
Source: Current Session.17.dr	String found in binary or memory: https://glitch.com/edit/#
Source: 315ea851a10be26b_0.17.dr, 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://glitch.com/edit/index.version.6db0e8cc06ee649f26b8.js
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://glitch.com/edit/index.version.6db0e8cc06ee649f26b8.jsaD
Source: Favicons.17.dr	String found in binary or memory: https://glitch.com/favicon.ico
Source: History.17.dr, Current Session.17.dr	String found in binary or memory: https://glitch.com/help/kb/article/72
Source: History.17.dr	String found in binary or memory: https://glitch.com/help/kb/article/72WAT
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://glitch.com/help/kb/article/9-how-do-i-add-a-custom-domain-a-cname-or-a-record-for-my-custom-
Source: 67dc865a7051a05b_0.17.dr	String found in binary or memory: https://glitch.com/k
Source: History.17.dr, Favicons.17.dr	String found in binary or memory: https://glitch.com/signin
Source: History.17.dr	String found in binary or memory: https://glitch.com/signinSign
Source: 67dc865a7051a05b_0.17.dr	String found in binary or memory: https://glitch.com/y
Source: Current Session.17.dr	String found in binary or memory: https://glitch.comh
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://glitch.development
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://glitch.happyfox.com/kb/article/98-why-can-t-i-use-the-preview-next-to-code-option-when-worki
Source: e2bbfab9ab63b3e9_0.17.dr	String found in binary or memory: https://google.com/HX
Source: manifest.json0.17.dr	String found in binary or memory: https://hangouts.google.com/
Source: Network Action Predictor.17.dr	String found in binary or memory: https://happyfox-web-assets.s3.amazonaws.com/
Source: 01b0d22de40f1a16_0.17.dr	String found in binary or memory: https://happyfox-web-assets.s3.amazonaws.com/static/140921143010/support_center/highlightjs/highligh
Source: d55b8616fa4f2a6b_0.17.dr	String found in binary or memory: https://happyfox-web-assets.s3.amazonaws.com/static/140921143010/support_center/js/vendor.js
Source: Network Action Predictor.17.dr	String found in binary or memory: https://help.glitch.com/
Source: History.17.dr	String found in binary or memory: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended
Source: History.17.dr, Current Session.17.dr	String found in binary or memory: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/
Source: Current Session.17.dr	String found in binary or memory: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/2WAT
Source: History.17.dr	String found in binary or memory: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/WAT
Source: History.17.dr	String found in binary or memory: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspendedWAT
Source: History.17.dr	String found in binary or memory: https://help.glitch.com/kb/article/72/
Source: History.17.dr	String found in binary or memory: https://help.glitch.com/kb/article/72/WAT
Source: Network Action Predictor.17.dr	String found in binary or memory: https://hf-files-oregon.s3.amazonaws.com/
Source: Favicons.17.dr	String found in binary or memory: https://hf-files-oregon.s3.amazonaws.com/hdpglitch_user_customized/favicon.png
Source: AcroRd32.exe, 00000002.00000000.788706175.0000000008FF0000.00000004.00000001.sdmp	String found in binary or memory: https://ims-na1.adobelogin.com
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://logx.optimizely.com/v1/events
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://ogs.google.com
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://pay.google.com/gp/v/widget/save
Source: manifest.json.17.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://play.google.com
Source: 6c1af94f3cf78bc6_0.17.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://play.google.com/work/embedded/search?usegapi=1&usegapi=1
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://plus.google.com
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://plus.googleapis.com
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://policies.google.com/privacy
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://policies.google.com/terms
Source: Current Session.17.dr	String found in binary or memory: https://possible-erratic-heath.glitch.me/
Source: AcroRd32.exe, 00000002.00000000.790034627.000000000A4E3000.00000004.00000001.sdmp, AcroRd32.exe, 00000002.00000000.833019050.000000000A3EF000.00000004.00000001.sdmp, SIGNEDCONTRACT_ 14TH_SEPTEMBER_2021 _.PDF	String found in binary or memory: https://possible-erratic-heath.glitch.me/red.htm#
Source: Current Session.17.dr	String found in binary or memory: https://possible-erratic-heath.glitch.me/red.htm#%20ludo.gaethofs
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://prettier.io/)
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://prettier.io/docs/en/configuration.html#basic-configuration)
Source: 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://r5---sn-h0jeln7l.gvt1.com
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://redirector.gvt1.com
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://s3.amazonaws.com/hyperdev-development
Source: manifest.json.17.dr	String found in binary or memory: https://sandbox.google.com/payments/v4/js/integrator.js
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://ssl.gstatic.com
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://ssl.gstatic.com/microscope/embed/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://staging.glitch.com
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://status.glitch.com
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://status.glitch.com/
Source: 85701b1d0b4605f3_0.17.dr	String found in binary or memory: https://support.glitch.com
Source: messages.json49.17.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json49.17.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: 6c1af94f3cf78bc6_0.17.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: 6c1af94f3cf78bc6_0.17.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://talkgadget.google.com/:session_prefix:talkgadget/_/widget
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://workspace.google.com/:session_prefix:marketplace/appfinder?usegapi=1
Source: 000003.log5.17.dr, e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, manifest.json0.17.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr, Current Session.17.dr	String found in binary or memory: https://www.google.com
Source: QuotaManager.17.dr, manifest.json.17.dr	String found in binary or memory: https://www.google.com/
Source: QuotaManager-journal.17.dr	String found in binary or memory: https://www.google.com//
Source: 6c1af94f3cf78bc6_0.17.dr	String found in binary or memory: https://www.google.com/log?format=json&hasfast=true
Source: 6c1af94f3cf78bc6_0.17.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: Current Session.17.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcqF6gZAAAAAHE-lzA_9GAux7eX9OHaQ5VdEo0C&co=aHR0
Source: Current Session.17.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/bframe?hl=en&v=wxAi4AKLXL2kBAvXqI4XLSWS&k=6LcqF6gZAAAAAHE-lzA_
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://www.google.com/shopping/customerreviews/badge?usegapi=1
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://www.google.com/shopping/customerreviews/optin?usegapi=1
Source: manifest.json0.17.dr	String found in binary or memory: https://www.google.com;
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://www.googleapis.com
Source: manifest.json.17.dr	String found in binary or memory: https://www.googleapis.com/
Source: manifest.json0.17.dr	String found in binary or memory: https://www.googleapis.com/auth/calendar.readonly
Source: manifest.json0.17.dr	String found in binary or memory: https://www.googleapis.com/auth/cast-edu-messaging
Source: manifest.json.17.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore
Source: manifest.json.17.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore.readonly
Source: manifest.json0.17.dr	String found in binary or memory: https://www.googleapis.com/auth/clouddevices
Source: manifest.json0.17.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts
Source: manifest.json0.17.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts.readonly
Source: manifest.json0.17.dr	String found in binary or memory: https://www.googleapis.com/auth/meetings
Source: manifest.json0.17.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.peopleapi.readwrite
Source: manifest.json.17.dr	String found in binary or memory: https://www.googleapis.com/auth/sierra
Source: manifest.json.17.dr	String found in binary or memory: https://www.googleapis.com/auth/sierrasandbox
Source: manifest.json0.17.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: 6c1af94f3cf78bc6_0.17.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/wxAi4AKLXL2kBAvXqI4XLSWS/recaptcha__.
Source: e9f54870-2390-4de2-a2d3-381fda6b6b47.tmp.18.dr, 4649fae8-0401-4549-992d-dc2af5f235d9.tmp.18.dr	String found in binary or memory: https://www.gstatic.com
Source: Network Action Predictor.17.dr	String found in binary or memory: https://www.gstatic.com/
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://www.gstatic.com/partners/badge/templates/badge.html?usegapi=1
Source: ae427a49c5d21f5e_0.17.dr, e2bbfab9ab63b3e9_0.17.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/wxAi4AKLXL2kBAvXqI4XLSWS/recaptcha__en.js
Source: 5fb16278a7db3a1f_0.17.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/wxAi4AKLXL2kBAvXqI4XLSWS/recaptcha__en.jsa
Source: 5fb16278a7db3a1f_0.17.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/wxAi4AKLXL2kBAvXqI4XLSWS/recaptcha__en.jsaD
Source: manifest.json0.17.dr	String found in binary or memory: https://www.gstatic.com;
Source: a0e03840ed3acdb6_0.17.dr	String found in binary or memory: https://www.youtube.com/subscribe_embed?usegapi=1

Posts data to webserver

Source: unknown

HTTP traffic detected: POST /ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard HTTP/1.1Host: accounts.google.comConnection: keep-aliveContent-Length: 1Origin: https://www.google.comContent-Type: application/x-www-form-urlencodedSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8

Performs DNS lookups

Source: unknown

DNS traffic detected: queries for: glitch.me

Downloads files from webservers via HTTP

Source: global traffic	HTTP traffic detected: GET /service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-GB&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1 HTTP/1.1Host: clients2.google.comConnection: keep-aliveX-Goog-Update-Interactivity: fgX-Goog-Update-AppId: nmmhkkegccagdldgiimedpiccmgmieda,pkedcjkdefgpdelpbcmbmeomcjbeemfmX-Goog-Update-Updater: chromecrx-85.0.4183.121Sec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /red.htm HTTP/1.1Host: possible-erratic-heath.glitch.meConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /css/3a8e55c6-b1f3-4659-99eb-125ae72bd084.css HTTP/1.1Host: cloud.webtype.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://possible-erratic-heath.glitch.me/red.htmAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /d7f4f279-e13b-4330-8422-00b2d9211424%2FGlitch-Error-Rainbow-Mug-hires.png?v=1595481653593 HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://possible-erratic-heath.glitch.me/red.htmAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /css/3a8e55c6-b1f3-4659-99eb-125ae72bd084.css HTTP/1.1Host: cloud.typenetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://possible-erratic-heath.glitch.me/red.htmAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /projects/5027/fontface.css/ HTTP/1.1Host: cloud.typenetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://possible-erratic-heath.glitch.me/red.htmAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: possible-erratic-heath.glitch.meConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://possible-erratic-heath.glitch.me/red.htmAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx HTTP/1.1Host: clients2.googleusercontent.comConnection: keep-aliveSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /edit/ HTTP/1.1Host: glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /edit/style.version.9c1744c630205463abbe.css HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /edit/index.version.6db0e8cc06ee649f26b8.js HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /js/api.js HTTP/1.1Host: apis.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /possible-erratic-heath/preempt HTTP/1.1Host: api.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /analytics.js/v1/N8NetCAuTbHYGqtQtb44FFBSPUXwsAu2/analytics.min.js HTTP/1.1Host: cdn.segment.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /edit/images/background-light/icons/down-arrow.svg HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/style.version.9c1744c630205463abbe.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /edit/images/background-light/icons/show-app.svg HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/style.version.9c1744c630205463abbe.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /edit/images/background-light/icons/search.svg HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/style.version.9c1744c630205463abbe.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /edit/images/logos/glitch/logo.svg HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/style.version.9c1744c630205463abbe.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /libs/amplitude-5.2.2-min.gz.js HTTP/1.1Host: cdn.amplitude.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /boot?latestProjectOnly=true HTTP/1.1Host: api.glitch.comConnection: keep-aliveaccept: application/jsonAuthorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0MjEzMCwiZXZlbnRJZCI6MCwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjB9
Source: global traffic	HTTP traffic detected: GET /edit/images/background-light/icons/collapse.svg HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/style.version.9c1744c630205463abbe.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0MzEzNSwiZXZlbnRJZCI6MSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjF9
Source: global traffic	HTTP traffic detected: GET /edit/images/background-light/icons/refresh.svg HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/style.version.9c1744c630205463abbe.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0MzEzNSwiZXZlbnRJZCI6MSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjF9
Source: global traffic	HTTP traffic detected: GET /edit/images/background-light/icons/x.svg HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/style.version.9c1744c630205463abbe.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0MzEzNSwiZXZlbnRJZCI6MSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjF9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: glitch.com
Source: global traffic	HTTP traffic detected: GET /projects/possible-erratic-heath?showDeleted=false HTTP/1.1Host: api.glitch.comConnection: keep-aliveaccept: application/jsonAuthorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0MzEzNSwiZXZlbnRJZCI6MSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjF9
Source: global traffic	HTTP traffic detected: GET /project-avatar/7c0b3dd0-ff50-4582-8340-d4b2681c2c25.png?1631606574567 HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9
Source: global traffic	HTTP traffic detected: GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1Host: fonts.gstatic.comConnection: keep-aliveOrigin: https://www.google.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcqF6gZAAAAAHE-lzA_9GAux7eX9OHaQ5VdEo0C&co=aHR0cHM6Ly9nbGl0Y2guY29tOjQ0Mw..&hl=en&v=wxAi4AKLXL2kBAvXqI4XLSWS&size=invisible&cb=bfmjsgs9dkynAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1Host: fonts.gstatic.comConnection: keep-aliveOrigin: https://www.google.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcqF6gZAAAAAHE-lzA_9GAux7eX9OHaQ5VdEo0C&co=aHR0cHM6Ly9nbGl0Y2guY29tOjQ0Mw..&hl=en&v=wxAi4AKLXL2kBAvXqI4XLSWS&size=invisible&cb=bfmjsgs9dkynAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: possible-erratic-heath.glitch.meConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /projects/5027/fontface.css/ HTTP/1.1Host: cloud.typenetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://possible-erratic-heath.glitch.me/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8If-Modified-Since: Thu, 09 Sep 2021 23:09:14 GMT
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9
Source: global traffic	HTTP traffic detected: GET /v1/projects/by/domain?domain=glitch-hello-website&domain=glitch-hello-node&domain=glitch-hello-react&domain=glitch-hello-eleventy&domain=glitch-hello-sqlite HTTP/1.1Host: api.glitch.comConnection: keep-aliveaccept: application/jsonAuthorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9
Source: global traffic	HTTP traffic detected: GET /help/kb/article/72 HTTP/1.1Host: glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9
Source: global traffic	HTTP traffic detected: GET /kb/article/72/ HTTP/1.1Host: help.glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9
Source: global traffic	HTTP traffic detected: GET /kb/article/72-wat-why-is-my-project-suspended HTTP/1.1Host: help.glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9; pbrand-csrftoken=1IipsJeLoqePp7OmmdzjdR1SBVzibZyY; brand-sessionid=b2ce6dc7b08348e4f7c020a3d133700c
Source: global traffic	HTTP traffic detected: GET /kb/article/72-wat-why-is-my-project-suspended/ HTTP/1.1Host: help.glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9; pbrand-csrftoken=1IipsJeLoqePp7OmmdzjdR1SBVzibZyY; brand-sessionid=b2ce6dc7b08348e4f7c020a3d133700c
Source: global traffic	HTTP traffic detected: GET /hdpglitch_user_customized/support_center_brand_primary_dynamic.css?key=3950c5d8-9a5b-4be4-bfef-38dc8d3f38b8 HTTP/1.1Host: hf-files-oregon.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/css/vendor.css HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/js/vendor.js HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/300721130712/support_center/svgs/search.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hf-files-oregon.s3.amazonaws.com/hdpglitch_user_customized/support_center_brand_primary_dynamic.css?key=3950c5d8-9a5b-4be4-bfef-38dc8d3f38b8Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/highlightjs/default.min.css HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/highlightjs/highlight.min.js HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/search.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /media/svgs/close-icon.svg HTTP/1.1Host: help.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9; pbrand-csrftoken=1IipsJeLoqePp7OmmdzjdR1SBVzibZyY; brand-sessionid=b2ce6dc7b08348e4f7c020a3d133700c; sc_language=en
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/clear-icon.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/print.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /hf-files-oregon/hdpglitch_user_customized/2021/02-18/82590a0b-9965-4b5a-ad5b-3e57d369e509/GlitchLogo_Color_Wordmark_2021_-_small.png HTTP/1.1Host: s3-us-west-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /hf-files-oregon/hdpglitch_user_customized/2021/03-11/5cd60a83-2fc2-4938-b001-db4d9deb7cbb/Help_Article_Footer_Image.png HTTP/1.1Host: s3-us-west-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/linkedin-dark.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/twitter-dark.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/view-count.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/facebook-dark.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/close-btn.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/go-to-top.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/300721130712/support_center/svgs/thumbs-up.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hf-files-oregon.s3.amazonaws.com/hdpglitch_user_customized/support_center_brand_primary_dynamic.css?key=3950c5d8-9a5b-4be4-bfef-38dc8d3f38b8Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/300721130712/support_center/svgs/thumbs-down.svg HTTP/1.1Host: happyfox-web-assets.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hf-files-oregon.s3.amazonaws.com/hdpglitch_user_customized/support_center_brand_primary_dynamic.css?key=3950c5d8-9a5b-4be4-bfef-38dc8d3f38b8Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /hdpglitch_user_customized/favicon.png HTTP/1.1Host: hf-files-oregon.s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://help.glitch.com/kb/article/72-wat-why-is-my-project-suspended/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /hdpglitch_user_customized/favicon.png HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: hf-files-oregon.s3.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /media/svgs/close-icon.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: help.glitch.com
Source: global traffic	HTTP traffic detected: GET /hf-files-oregon/hdpglitch_user_customized/2021/02-18/82590a0b-9965-4b5a-ad5b-3e57d369e509/GlitchLogo_Color_Wordmark_2021_-_small.png HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: s3-us-west-2.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/clear-icon.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: happyfox-web-assets.s3.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /hf-files-oregon/hdpglitch_user_customized/2021/03-11/5cd60a83-2fc2-4938-b001-db4d9deb7cbb/Help_Article_Footer_Image.png HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: s3-us-west-2.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/print.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: happyfox-web-assets.s3.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /kb/article/72-wat-why-is-my-project-suspended/ HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: help.glitch.com
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/search.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: happyfox-web-assets.s3.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/view-count.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: happyfox-web-assets.s3.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/twitter-dark.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: happyfox-web-assets.s3.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/facebook-dark.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: happyfox-web-assets.s3.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/linkedin-dark.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: happyfox-web-assets.s3.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/close-btn.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: happyfox-web-assets.s3.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /static/140921143010/support_center/svgs/go-to-top.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: happyfox-web-assets.s3.amazonaws.com
Source: global traffic	HTTP traffic detected: GET /signin HTTP/1.1Host: glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9
Source: global traffic	HTTP traffic detected: GET /assets/design.2ff04b40.js HTTP/1.1Host: glitch.comConnection: keep-aliveOrigin: https://glitch.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9
Source: global traffic	HTTP traffic detected: GET /assets/index.ee56f2cb.css HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9
Source: global traffic	HTTP traffic detected: GET /assets/index.8eddb178.js HTTP/1.1Host: glitch.comConnection: keep-aliveOrigin: https://glitch.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA0NDU5OCwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9
Source: global traffic	HTTP traffic detected: GET /assets/index.b954426c.js HTTP/1.1Host: glitch.comConnection: keep-aliveOrigin: https://glitch.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2NTE1NiwiZXZlbnRJZCI6MiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjJ9; optimizely-id=ac8d4cbc-f949-4a52-9b84-a7776a6ecb26
Source: global traffic	HTTP traffic detected: GET /0aa2fffe-82eb-4b72-a5e9-444d4b7ce805%2Fdots.svg?v=1574801487826 HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /0aa2fffe-82eb-4b72-a5e9-444d4b7ce805%2Fpills.svg?v=1574801487419 HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /2bdfb3f8-05ef-4035-a06e-2043962a3a13%2Flogo-day.svg HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Ffacebook.png?v=1568142112883 HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fgoogle.png?v=1568142113626 HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /0aa2fffe-82eb-4b72-a5e9-444d4b7ce805%2Fshapes-pattern.svg?v=1574798905086 HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/assets/index.ee56f2cb.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /v/latest/svg/1f48c.svg HTTP/1.1Host: twemoji.maxcdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /v/latest/svg/1f511.svg HTTP/1.1Host: twemoji.maxcdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-Bold.woff2 HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveOrigin: https://glitch.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /605e2a51-d45f-4d87-a285-9410ad350515%2FHKGrotesk-Regular.woff2 HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveOrigin: https://glitch.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /v1/users/by/id?id=36192621 HTTP/1.1Host: api.glitch.comConnection: keep-aliveAccept: application/json, text/plain, */*Authorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /v1/users/by/id/collections?id=36192621&limit=100 HTTP/1.1Host: api.glitch.comConnection: keep-aliveAccept: application/json, text/plain, */*Authorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /v1/users/by/id/emails?id=36192621&limit=100 HTTP/1.1Host: api.glitch.comConnection: keep-aliveAccept: application/json, text/plain, */*Authorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /v1/users/by/id/projects?id=36192621&limit=100 HTTP/1.1Host: api.glitch.comConnection: keep-aliveAccept: application/json, text/plain, */*Authorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /v1/users/by/id/teams?id=36192621&limit=100 HTTP/1.1Host: api.glitch.comConnection: keep-aliveAccept: application/json, text/plain, */*Authorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: glitch.comIf-Modified-Since: Wed, 15 Sep 2021 03:07:28 GMTIf-None-Match: W/"3aee-17be76c6d80"
Source: global traffic	HTTP traffic detected: GET /0aa2fffe-82eb-4b72-a5e9-444d4b7ce805%2Fpills.svg?v=1574801487419 HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: cdn.glitch.com
Source: global traffic	HTTP traffic detected: GET /0aa2fffe-82eb-4b72-a5e9-444d4b7ce805%2Fdots.svg?v=1574801487826 HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: cdn.glitch.com
Source: global traffic	HTTP traffic detected: GET /v/latest/svg/1f511.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: twemoji.maxcdn.com
Source: global traffic	HTTP traffic detected: GET /v/latest/svg/1f48c.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: twemoji.maxcdn.com
Source: global traffic	HTTP traffic detected: GET /2bdfb3f8-05ef-4035-a06e-2043962a3a13%2Flogo-day.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: cdn.glitch.com
Source: global traffic	HTTP traffic detected: GET /e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Ffacebook.png?v=1568142112883 HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: cdn.glitch.com
Source: global traffic	HTTP traffic detected: GET /e7e23ba6-c0ec-4a5a-8dcf-b6f61984cea8%2Fgoogle.png?v=1568142113626 HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: cdn.glitch.com
Source: global traffic	HTTP traffic detected: GET /edit/ HTTP/1.1Host: glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; optimizely-id=ac8d4cbc-f949-4a52-9b84-a7776a6ecb26; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9; hasLogin=; inTestingTeam=; userId=36192621
Source: global traffic	HTTP traffic detected: GET /possible-erratic-heath/preempt HTTP/1.1Host: api.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9
Source: global traffic	HTTP traffic detected: GET /boot?latestProjectOnly=true HTTP/1.1Host: api.glitch.comConnection: keep-aliveaccept: application/jsonAuthorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA2ODA0MywiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9If-None-Match: W/"2fa-QyMN3tkKuhR6Z/ip+i/z4OsuOcE"
Source: global traffic	HTTP traffic detected: GET /v1/projects/by/domain?domain=glitch-hello-website&domain=glitch-hello-node&domain=glitch-hello-react&domain=glitch-hello-eleventy&domain=glitch-hello-sqlite HTTP/1.1Host: api.glitch.comConnection: keep-aliveaccept: application/jsonUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA3ODI3NCwiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9If-None-Match: W/"1593-6RTyHud/mrKgHSrfaXxagYUCGYs"
Source: global traffic	HTTP traffic detected: GET /boot?latestProjectOnly=true HTTP/1.1Host: api.glitch.comConnection: keep-aliveaccept: application/jsonAuthorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA3ODI3NCwiZXZlbnRJZCI6MywiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjN9If-None-Match: W/"2fa-QyMN3tkKuhR6Z/ip+i/z4OsuOcE"
Source: global traffic	HTTP traffic detected: GET /projects/possible-erratic-heath?showDeleted=false HTTP/1.1Host: api.glitch.comConnection: keep-aliveaccept: application/jsonAuthorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA3OTU2MSwiZXZlbnRJZCI6NCwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjR9If-None-Match: W/"50a-2fCMpWGTQbcIrkya1qanLHgckBo"
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: possible-erratic-heath.glitch.meConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://glitch.com/edit/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /help/kb/article/72 HTTP/1.1Host: glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; optimizely-id=ac8d4cbc-f949-4a52-9b84-a7776a6ecb26; hasLogin=; inTestingTeam=; userId=36192621; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9
Source: global traffic	HTTP traffic detected: GET /projects/5027/fontface.css/ HTTP/1.1Host: cloud.typenetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://possible-erratic-heath.glitch.me/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8If-Modified-Since: Thu, 09 Sep 2021 23:09:14 GMT
Source: global traffic	HTTP traffic detected: GET /kb/article/72/ HTTP/1.1Host: help.glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; pbrand-csrftoken=1IipsJeLoqePp7OmmdzjdR1SBVzibZyY; brand-sessionid=b2ce6dc7b08348e4f7c020a3d133700c; sc_language=en; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9
Source: global traffic	HTTP traffic detected: GET /kb/article/72-wat-why-is-my-project-suspended HTTP/1.1Host: help.glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; pbrand-csrftoken=1IipsJeLoqePp7OmmdzjdR1SBVzibZyY; brand-sessionid=b2ce6dc7b08348e4f7c020a3d133700c; sc_language=en; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9
Source: global traffic	HTTP traffic detected: GET /kb/article/72-wat-why-is-my-project-suspended/ HTTP/1.1Host: help.glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; pbrand-csrftoken=1IipsJeLoqePp7OmmdzjdR1SBVzibZyY; brand-sessionid=b2ce6dc7b08348e4f7c020a3d133700c; sc_language=en; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9
Source: global traffic	HTTP traffic detected: GET /signin HTTP/1.1Host: glitch.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; optimizely-id=ac8d4cbc-f949-4a52-9b84-a7776a6ecb26; hasLogin=; inTestingTeam=; userId=36192621; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9If-None-Match: W/"11ae-17be76db5a0"If-Modified-Since: Wed, 15 Sep 2021 03:08:52 GMT
Source: global traffic	HTTP traffic detected: GET /assets/design.2ff04b40.js HTTP/1.1Host: glitch.comConnection: keep-aliveOrigin: https://glitch.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; optimizely-id=ac8d4cbc-f949-4a52-9b84-a7776a6ecb26; hasLogin=; inTestingTeam=; userId=36192621; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9If-None-Match: W/"691a5-17be76db5a0"If-Modified-Since: Wed, 15 Sep 2021 03:08:52 GMT
Source: global traffic	HTTP traffic detected: GET /assets/index.ee56f2cb.css HTTP/1.1Host: glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; optimizely-id=ac8d4cbc-f949-4a52-9b84-a7776a6ecb26; hasLogin=; inTestingTeam=; userId=36192621; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9If-None-Match: W/"14f0f-17be76db5a0"If-Modified-Since: Wed, 15 Sep 2021 03:08:52 GMT
Source: global traffic	HTTP traffic detected: GET /assets/index.8eddb178.js HTTP/1.1Host: glitch.comConnection: keep-aliveOrigin: https://glitch.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; optimizely-id=ac8d4cbc-f949-4a52-9b84-a7776a6ecb26; hasLogin=; inTestingTeam=; userId=36192621; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9If-None-Match: W/"1b672e-17be76db5a0"If-Modified-Since: Wed, 15 Sep 2021 03:08:52 GMT
Source: global traffic	HTTP traffic detected: GET /assets/index.b954426c.js HTTP/1.1Host: glitch.comConnection: keep-aliveOrigin: https://glitch.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: hasProjects=; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; optimizely-id=ac8d4cbc-f949-4a52-9b84-a7776a6ecb26; hasLogin=; inTestingTeam=; userId=36192621; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9If-None-Match: W/"14a-17be76db5a0"If-Modified-Since: Wed, 15 Sep 2021 03:08:52 GMT
Source: global traffic	HTTP traffic detected: GET /v1/users/by/id?id=36192621 HTTP/1.1Host: api.glitch.comConnection: keep-aliveAccept: application/json, text/plain, */*Authorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9If-None-Match: W/"2b3-LQTDW11e2oIdviOOVnYweYE0ArE"
Source: global traffic	HTTP traffic detected: GET /v1/users/by/id/collections?id=36192621&limit=100 HTTP/1.1Host: api.glitch.comConnection: keep-aliveAccept: application/json, text/plain, */*Authorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9If-None-Match: W/"6c-WOF3UejcKu0w8BAbgNQt3O/uA5Q"
Source: global traffic	HTTP traffic detected: GET /v1/users/by/id/emails?id=36192621&limit=100 HTTP/1.1Host: api.glitch.comConnection: keep-aliveAccept: application/json, text/plain, */*Authorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9If-None-Match: W/"6c-WOF3UejcKu0w8BAbgNQt3O/uA5Q"
Source: global traffic	HTTP traffic detected: GET /v1/users/by/id/projects?id=36192621&limit=100 HTTP/1.1Host: api.glitch.comConnection: keep-aliveAccept: application/json, text/plain, */*Authorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9If-None-Match: W/"6c-WOF3UejcKu0w8BAbgNQt3O/uA5Q"
Source: global traffic	HTTP traffic detected: GET /v1/users/by/id/teams?id=36192621&limit=100 HTTP/1.1Host: api.glitch.comConnection: keep-aliveAccept: application/json, text/plain, */*Authorization: 526e0132-2f13-40f1-9dce-bc2d799367e5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://glitch.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: GlitchAuth=Qb0lcGwqmxoCgXUb9hCgVa4zXgJi7vU3pyfM3IITcqc%3D; amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; glitch-sso=s%3AYC5vX6YE7yRmj-l_A2oXVhHPB-HkzLiK.ThFPU5rnFGLwxDUDaw8%2B5qsNcoBAyLI1Qf5lphep4vI; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA4MDI1OCwiZXZlbnRJZCI6NSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjV9If-None-Match: W/"6c-WOF3UejcKu0w8BAbgNQt3O/uA5Q"
Source: global traffic	HTTP traffic detected: GET /2bdfb3f8-05ef-4035-a06e-2043962a3a13%2Flogo-day.svg HTTP/1.1Host: cdn.glitch.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://glitch.com/signinAccept-Encoding: gzip, deflate, brAccept-Language: en-GB,en-US;q=0.9,en;q=0.8Cookie: amplitude_idundefinedglitch.com=eyJvcHRPdXQiOmZhbHNlLCJzZXNzaW9uSWQiOm51bGwsImxhc3RFdmVudFRpbWUiOm51bGwsImV2ZW50SWQiOjAsImlkZW50aWZ5SWQiOjAsInNlcXVlbmNlTnVtYmVyIjowfQ==; ajs_anonymous_id=%222c3cc8c2-2a3b-4cd7-95b4-713e3fad6d02%22; amplitude_id_d31b57ee460a6843173cc1b6441f8270glitch.com=eyJkZXZpY2VJZCI6IjBiNTExYmU3LTZiM2QtNGRmYS1hZjE3LTAwYmY4ZThiOTg2N1IiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTYzMTcwODA0MjEzMCwibGFzdEV2ZW50VGltZSI6MTYzMTcwODA5NjQxOCwiZXZlbnRJZCI6NiwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjZ9If-None-Match: "659df0d755e80947bcdf59838b682347"If-Modified-Since: Sat, 11 Mar 2017 20:46:39 GMT

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 13.32.22.36:443 -> 192.168.2.4:49843 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.218.221.91:443 -> 192.168.2.4:49909 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.213.101.90:443 -> 192.168.2.4:49910 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.92.165.208:443 -> 192.168.2.4:49911 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.92.165.208:443 -> 192.168.2.4:49912 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.218.178.83:443 -> 192.168.2.4:49914 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.218.178.83:443 -> 192.168.2.4:49913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.213.101.90:443 -> 192.168.2.4:49915 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 143.204.207.115:443 -> 192.168.2.4:49969 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 143.204.207.115:443 -> 192.168.2.4:49970 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.111.9.57:443 -> 192.168.2.4:49972 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.111.9.57:443 -> 192.168.2.4:49971 version: TLS 1.2

System Summary:

Clickable URLs found in PDF

Source: SIGNEDCONTRACT_ 14TH_SEPTEMBER_2021 _.PDF

Initial sample: https://possible-erratic-heath.glitch.me/red.htm# ludo.gaethofs@infrax.be

Spawns processes

Source: unknown	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe' 'C:\Users\user\Desktop\SIGNEDCONTRACT_ 14TH_SEPTEMBER_2021 _.PDF'
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe' --type=renderer /prefetch:1 'C:\Users\user\Desktop\SIGNEDCONTRACT_ 14TH_SEPTEMBER_2021 _.PDF'
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --backgroundcolor=16514043
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=renderer --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --touch-events=enabled --field-trial-handle=1728,6476574385589578406,13544459426014533908,131072 --disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=12632741128503357624 --lang=en-US --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=12632741128503357624 --renderer-client-id=2 --mojo-platform-channel-handle=1736 --allow-no-sandbox-job /prefetch:1
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=gpu-process --field-trial-handle=1728,6476574385589578406,13544459426014533908,131072 --disable-features=VizDisplayCompositor --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --lang=en-US --gpu-preferences=KAAAAAAAAACAAwABAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --service-request-channel-token=15013466014399346092 --mojo-platform-channel-handle=1764 --allow-no-sandbox-job --ignored=' --type=renderer ' /prefetch:2
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=renderer --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --touch-events=enabled --field-trial-handle=1728,6476574385589578406,13544459426014533908,131072 --disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=9822338815391940972 --lang=en-US --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=9822338815391940972 --renderer-client-id=4 --mojo-platform-channel-handle=1840 --allow-no-sandbox-job /prefetch:1
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=renderer --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --touch-events=enabled --field-trial-handle=1728,6476574385589578406,13544459426014533908,131072 --disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=14716987517853915051 --lang=en-US --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14716987517853915051 --renderer-client-id=5 --mojo-platform-channel-handle=1808 --allow-no-sandbox-job /prefetch:1
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation -- 'https://possible-erratic-heath.glitch.me/red.htm#%20ludo.gaethofs@infrax.be'
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1524,1133087908690210124,8616829292721234952,131072 --lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1716 /prefetch:8
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe' --type=renderer /prefetch:1 'C:\Users\user\Desktop\SIGNEDCONTRACT_ 14TH_SEPTEMBER_2021 _.PDF'			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --backgroundcolor=16514043			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation -- 'https://possible-erratic-heath.glitch.me/red.htm#%20ludo.gaethofs@infrax.be'			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=renderer --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --touch-events=enabled --field-trial-handle=1728,6476574385589578406,13544459426014533908,131072 --disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=12632741128503357624 --lang=en-US --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=12632741128503357624 --renderer-client-id=2 --mojo-platform-channel-handle=1736 --allow-no-sandbox-job /prefetch:1			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=gpu-process --field-trial-handle=1728,6476574385589578406,13544459426014533908,131072 --disable-features=VizDisplayCompositor --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --lang=en-US --gpu-preferences=KAAAAAAAAACAAwABAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --service-request-channel-token=15013466014399346092 --mojo-platform-channel-handle=1764 --allow-no-sandbox-job --ignored=' --type=renderer ' /prefetch:2			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=renderer --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --touch-events=enabled --field-trial-handle=1728,6476574385589578406,13544459426014533908,131072 --disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=9822338815391940972 --lang=en-US --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=9822338815391940972 --renderer-client-id=4 --mojo-platform-channel-handle=1840 --allow-no-sandbox-job /prefetch:1			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe 'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=renderer --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --touch-events=enabled --field-trial-handle=1728,6476574385589578406,13544459426014533908,131072 --disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=14716987517853915051 --lang=en-US --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14716987517853915051 --renderer-client-id=5 --mojo-platform-channel-handle=1808 --allow-no-sandbox-job /prefetch:1			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1524,1133087908690210124,8616829292721234952,131072 --lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1716 /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior

Creates files inside the user directory

Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe

File created: C:\Users\user\AppData\Local\Adobe\Acrobat\DC\Cache\AdobeFnt16.lst.6604

Jump to behavior

Creates temporary files

Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe

File created: C:\Users\user\AppData\Local\Temp\acrord32_sbx\A9R18fgeqq_a46x2z_53g.tmp

Jump to behavior

Classification label

Source: classification engine

Classification label: clean3.winPDF@52/294@32/28

Reads ini files

Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe

File read: C:\Users\desktop.ini

Jump to behavior

SQL strings found in memory and binary data

Source: QuotaManager-journal.17.dr

Binary or memory string: CREATE TABLE HostQuotaTable(host TEXT NOT NULL, type INTEGER NOT NULL, quota INTEGER DEFAULT 0, UNIQUE(host, type));

Uses Rich Edit Controls

Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe

File opened: C:\Windows\SysWOW64\Msftedit.dll

Jump to behavior

Found graphical window changes (likely an installer)

Source: Window Recorder

Window detected: More than 3 window changes detected

PDF has a JavaScript or JS counter value indicative of goodware

Source: SIGNEDCONTRACT_ 14TH_SEPTEMBER_2021 _.PDF	Initial sample: PDF keyword /JS count = 0
Source: SIGNEDCONTRACT_ 14TH_SEPTEMBER_2021 _.PDF	Initial sample: PDF keyword /JavaScript count = 0

PDF has an EmbeddedFile counter value indicative of goodware

Source: SIGNEDCONTRACT_ 14TH_SEPTEMBER_2021 _.PDF

Initial sample: PDF keyword /EmbeddedFile count = 0

Data Obfuscation:

PDF has an OpenAction (likely to launch a dropper script)

Source: SIGNEDCONTRACT_ 14TH_SEPTEMBER_2021 _.PDF

Initial sample: PDF keyword /OpenAction

Persistence and Installation Behavior:

Creates license or readme file

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Temp\4600_1897281321\LICENSE.txt

Jump to behavior

Hooking and other Techniques for Hiding and Protection:

Disables application error messsages (SetErrorMode)

Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe	Process information set: NOOPENFILEERRORBOX			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe	Process information set: NOOPENFILEERRORBOX			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe	Process information set: NOOPENFILEERRORBOX			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process information set: NOOPENFILEERRORBOX			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process information set: NOOPENFILEERRORBOX			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process information set: NOOPENFILEERRORBOX			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process information set: NOOPENFILEERRORBOX			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process information set: NOOPENFILEERRORBOX			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process information set: NOOPENFILEERRORBOX			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process information set: NOOPENFILEERRORBOX			Jump to behavior
Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe	Process information set: NOGPFAULTERRORBOX | NOOPENFILEERRORBOX			Jump to behavior

Malware Analysis System Evasion:

May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)

Source: AcroRd32.exe, 00000002.00000000.795538845.000000000B3FF000.00000004.00000001.sdmp

Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll

HIPS / PFW / Operating System Protection Evasion:

May try to detect the Windows Explorer process (often used for injection)

Source: AcroRd32.exe, 00000002.00000000.804505780.0000000005750000.00000002.00020000.sdmp	Binary or memory string: Program Manager
Source: AcroRd32.exe, 00000002.00000000.804505780.0000000005750000.00000002.00020000.sdmp	Binary or memory string: Shell_TrayWnd
Source: AcroRd32.exe, 00000002.00000000.804505780.0000000005750000.00000002.00020000.sdmp	Binary or memory string: Progman
Source: AcroRd32.exe, 00000002.00000000.804505780.0000000005750000.00000002.00020000.sdmp	Binary or memory string: Progmanlock