Windows Analysis Report http://bit.ly/3b7ion9

Phishing:

No HTML title found

Source: https://bitly.com/a/sign_in	HTTP Parser: HTML title missing
Source: https://bitly.com/a/sign_in	HTTP Parser: HTML title missing
Source: https://bitly.com/a/sign_up?utm_content=404&utm_source=organic&utm_medium=website&utm_campaign=website&utm_cta=web2-blank-404-page-learnmore-learnmore-pricing	HTTP Parser: HTML title missing

META author tag missing

Source: https://bitly.com/a/sign_in	HTTP Parser: No <meta name="author".. found
Source: https://bitly.com/a/sign_in	HTTP Parser: No <meta name="author".. found
Source: https://bitly.com/a/sign_up?utm_content=404&utm_source=organic&utm_medium=website&utm_campaign=website&utm_cta=web2-blank-404-page-learnmore-learnmore-pricing	HTTP Parser: No <meta name="author".. found

META copyright tag missing

Source: https://bitly.com/a/sign_in	HTTP Parser: No <meta name="copyright".. found
Source: https://bitly.com/a/sign_in	HTTP Parser: No <meta name="copyright".. found
Source: https://bitly.com/a/sign_up?utm_content=404&utm_source=organic&utm_medium=website&utm_campaign=website&utm_cta=web2-blank-404-page-learnmore-learnmore-pricing	HTTP Parser: No <meta name="copyright".. found

Compliance:

Creates a directory in C:\Program Files

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 205.251.222.189:443 -> 192.168.2.3:49913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 205.251.222.189:443 -> 192.168.2.3:49914 version: TLS 1.2

Networking:

Snort IDS alert for network traffic (e.g. based on Emerging Threat rules)

Source: Traffic

Snort IDS: 1200 ATTACK-RESPONSES Invalid URL 67.199.248.11:80 -> 192.168.2.3:49746

HTTP GET or POST without a user agent

Source: global traffic

HTTP traffic detected: POST"},G))};r.get=function(n,f,G){null==f&&(f={});null==G&&(G={});return r.request.call(r.request,n,f,_.defaults({type:"GET"},G))};return r.request=function(n,f,r){var z,t,y,w,I;y=$.Deferred();z=null!=(I=r.context)?I:this;w=r.success;t=r.error;delete r.success;delete r.error;n=$.ajax(n,_.extend({beforeSend:function(f){$.cookie&&f.setRequestHeader("X-XSRFToken",$.cookie.get("_xsrf"));if(window.Bitmarklet&&!window.Bitmarklet.is_chrome)return f.setRequestHeader("X-Bitly-Client","bitmarklet")},data:f},r));n.fail(function(){t&&t.apply(z,arguments);return y.reject.apply(z,arguments)});n.done(function(f,n,H){if("jsonp"===r.dataType||200===f.status_code)return w&&w.apply(z,arguments),y.resolve.apply(z,arguments);t&&t.call(z,f,"error",H);return y.reject.call(z,f,"error",H)});return y.promise()}})(BITLY)}).call(this);(function(){var r=this,n=r.Backbone,f=Array.prototype.slice,G=Array.prototype.splice,z;z="undefined"!==typeof exports?exports:r.Backbone={};z.VERSION="0.9.2";var t=r._;!t&&"undefined"!==typeof require&&(t=require("underscore"));var y=r.jQuery||r.Zepto||r.ender;z.setDomLibrary=function(d){y=d};z.noConflict=function(){r.Backbone=n;return this};z.emulateHTTP=!1;z.emulateJSON=!1;var w=/\s+/,I=z.Events={on:function(d,h,f){var m,n,r,b,t;if(!h)return this;d=d.split(w);for(m=this._callbacks||(this._callbacks={});n=d.shift();)r=(t=m[n])?t.tail:{},r.next=b={},r.context=f,r.callback=h,m[n]={tail:b,next:t?t.next:r};return this},off:function(d,h,f){var m,n,r,b,y,B;if(n=this._callbacks){if(!d&&!h&&!f)return delete this._callbacks,this;for(d=d?d.split(w):t.keys(n);m=d.shift();)if(r=n[m],delete n[m],r&&(h||f))for(b=r.tail;(r=r.next)!==b;)if(y=r.callback,B=r.context,h&&y!==h||f&&B!==f)this.on(m,y,B);return this}},trigger:function(d){var h,x,m,n,r,b;if(!(m=this._callbacks))return this;r=m.all;d=d.split(w);for(b=f.call(arguments,1);h=d.shift();){if(x=m[h])for(n=x.tail;(x=x.next)!==n;)x.callback.apply(x.context||this,b);if(x=r)for(n=x.tail,h=[h].concat(b);(x=x.next)!==n;)x.callback.apply(x.context||this,h)}return this}};I.bind=I.on;I.unbind=I.off;var S=z.Model=function(d,h){var f;d||(d={});h&&h.parse&&(d=this.parse(d));if(f=V(this,"defaults"))d=t.extend({},f,d);h&&h.collection&&(this.collection=h.collection);this.attributes={};this._escapedAttributes={};this.cid=t.uniqueId("c");this.changed={};this._silent={};this._pending={};this.set(d,{silent:!0});this.changed={};this._silent={};this._pending={};this._previousAttributes=t.clone(this.attributes);this.initialize.apply(this,arguments)};t.extend(S.prototype,I,{changed:null,_silent:null,_pending:null,idAttribute:"id",initialize:function(){},toJSON:function(){return t.clone(this.attributes)},get:function(d){return this.attributes[d]},escape:function(d){var h;if(h=this._escapedAttributes[d])return h;h=this.get(d);return this._escapedAttributes[d]=t.escape(null==h?"":""+h)},has:function(d){return null!=this.get(d)},set:function(d,h,f){var m,n;t.isObject(d)||null==d?(m=d,f=h):(m={},m[d]=h);f||(f={});if(!m)return th

Performs DNS lookups

Source: unknown

DNS traffic detected: queries for: bit.ly

Uses HTTPS

Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 50360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50428 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 50015 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50246 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50408
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 50187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 50347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 50282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50176 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50258 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 50336 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 50166 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 50208 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50110 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50429 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50236 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50188 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50109 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50132 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50336
Source: unknown	Network traffic detected: HTTP traffic on port 50254 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50174 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50202 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50408 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 50186 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50162 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50238
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50237
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50239
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50232
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50231
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50234
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50236
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50235
Source: unknown	Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50198 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50232 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50249
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50248
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50241
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 50150 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50243
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50000
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50242
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50245
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50244
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50247
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50246
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50250
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50164 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50244 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50411
Source: unknown	Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50184 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50433 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50427
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50426
Source: unknown	Network traffic detected: HTTP traffic on port 50117 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50429
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50428
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50152 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50421
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50302
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50315
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50316
Source: unknown	Network traffic detected: HTTP traffic on port 50256 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50200 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50433
Source: unknown	Network traffic detected: HTTP traffic on port 50047 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50140 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50205
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50204
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50208
Source: unknown	Network traffic detected: HTTP traffic on port 50421 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50316 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50200
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50203
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50202
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50175
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50174
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50177
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50176
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50179
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50178
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49984 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50180
Source: unknown	Network traffic detected: HTTP traffic on port 50263 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50182
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50181
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50184
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50183
Source: unknown	Network traffic detected: HTTP traffic on port 50068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50125 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50251 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50194 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50186
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50185
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50091 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50113 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50188
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50187
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50189
Source: unknown	Network traffic detected: HTTP traffic on port 50205 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50191
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 50159 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50194
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50204 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50275 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50172 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50198
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 50241 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50091
Source: unknown	Network traffic detected: HTTP traffic on port 50411 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown	Network traffic detected: HTTP traffic on port 50170 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50138
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50259
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50131
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50130
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50133
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50254
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50132
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50253
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50135
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50256
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50134
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 50078 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50137
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50258
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50015
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50257
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50140
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50253 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50141
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50265
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50143
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50146
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50268
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50000 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50270
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50138 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50150
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50271
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50392
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50152
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50273
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50157
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50399
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50277
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50159
Source: unknown	Network traffic detected: HTTP traffic on port 50182 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50265 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50242 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50160
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50137 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50162
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50282
Source: unknown	Network traffic detected: HTTP traffic on port 50104 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50089 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50364 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50203 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50171 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50164
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50042
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50163
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50284
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50166
Source: unknown	Network traffic detected: HTTP traffic on port 50115 -> 443

Downloads files from webservers via HTTP

Source: global traffic	HTTP traffic detected: GET /service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1 HTTP/1.1Host: clients2.google.comConnection: keep-aliveX-Goog-Update-Interactivity: fgX-Goog-Update-AppId: nmmhkkegccagdldgiimedpiccmgmieda,pkedcjkdefgpdelpbcmbmeomcjbeemfmX-Goog-Update-Updater: chromecrx-85.0.4183.121Sec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx HTTP/1.1Host: clients2.googleusercontent.comConnection: keep-aliveSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/cache/fvm/1634669362/out/header-9891569b3c4b6dec68a9e27be97b6acfb5b38937.min.css HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/foundation-icons/foundation-icons.css HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/cache/fvm/1634669362/out/header-40f99430a4adc0701e3d54a813ac495cd13d5223.min.css HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/fonts/fonts.css HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/cache/fvm/1634669362/out/footer-155c5e534c04a81f2d6c0a6a3142208b5ec7c4e1.min.js HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/forms2/js/forms2.min.js HTTP/1.1Host: app-ab01.marketo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/js/unauth.shorten.js HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/cache/fvm/1634669362/out/footer-60627096f137ab88738232f7482a14824d52f875.min.js HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/scripts/careers.js HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2021/08/bitly_logo.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/cache/fvm/1634669362/out/footer-9aeac2324781fc7e4d9d490e58b00a92b6638220.min.js HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2020/05/illo-mobile-810x480-1.jpg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2020/05/illo-desktop-1440x651-1.jpg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /gtag/js?id=AW-768371374 HTTP/1.1Host: www.googletagmanager.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /gtm.js?id=GTM-MWZVBR2 HTTP/1.1Host: www.googletagmanager.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065If-None-Match: "aeac629ded4cc469b6c8187f9a2c3dac0b05d58f"If-Modified-Since: Tue, 19 Oct 2021 19:53:48 GMT
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2021/09/Site_Basic_Popup.png HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/chevron.png HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/08/Homepage-Branded-Links-Illustration-1.png HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/08/Homepage-Branded-Links-Illustration-2.png HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2021/06/Site_Check-you.png HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/recognizable-brands-espn.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/recognizable-brands-disney.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/fonts/ProximaNova-Reg.woff HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveOrigin: https://bitly.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://docrdsfx76ssb.cloudfront.net/static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/fonts/fonts.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/fonts/proxima-nova-extrabold.woff HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveOrigin: https://bitly.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://docrdsfx76ssb.cloudfront.net/static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/fonts/fonts.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/fonts/ProximaNova-Bold.woff HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveOrigin: https://bitly.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://docrdsfx76ssb.cloudfront.net/static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/fonts/fonts.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/foundation-icons/foundation-icons.woff HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveOrigin: https://bitly.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://docrdsfx76ssb.cloudfront.net/static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/foundation-icons/foundation-icons.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/recognizable-brands-amazon.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/recognizable-brands-buzzfeed.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/recognizable-brands-nytimes.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/recognizable-brands-gartner.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/recognizable-brands-bose.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/book-open.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/code.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/globe.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/foundation-icons/svgs/feather-icon-x.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/thumbs-up.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/profitwell.js?auth=36daba674ba5cfc0ff20888a386b766b HTTP/1.1Host: public.profitwell.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/message-circle.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/link-2.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/pie-chart.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/12/developer-icon-1.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/fonts/proxima-nova-semibold-webfont.woff HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveOrigin: https://bitly.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://docrdsfx76ssb.cloudfront.net/static/1634669372/pages/wp-content/themes/JointsWP-CSS-master/assets/fonts/fonts.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/radio.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/anchor.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2021/05/qr-menu.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/smartphone.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/768371374/?random=1635496890052&cv=9&fst=1635496890052&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_his=1&u_tz=-420&u_java=false&u_nplug=1&u_nmime=2&gtm=2oaar0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fbitly.com%2F&tiba=URL%20Shortener%20-%20Short%20URLs%20%26%20Custom%20Free%20Link%20Shortener%20%7C%20Bitly&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-567GCTL9BB&cid=733574328.1635496890&gtm=2oear0&aip=1&z=49478520 HTTP/1.1Host: www.google.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/768371374/?random=1635496890052&cv=9&fst=1635494400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_his=1&u_tz=-420&u_java=false&u_nplug=1&u_nmime=2&gtm=2oaar0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fbitly.com%2F&tiba=URL%20Shortener%20-%20Short%20URLs%20%26%20Custom%20Free%20Link%20Shortener%20%7C%20Bitly&async=1&fmt=3&is_vtc=1&random=515538994&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1Host: www.google.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/768371374/?random=1635496890052&cv=9&fst=1635494400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_his=1&u_tz=-420&u_java=false&u_nplug=1&u_nmime=2&gtm=2oaar0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fbitly.com%2F&tiba=URL%20Shortener%20-%20Short%20URLs%20%26%20Custom%20Free%20Link%20Shortener%20%7C%20Bitly&async=1&fmt=3&is_vtc=1&random=515538994&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/feather-icon-book-open.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveAccept: application/xml, text/xml, */*; q=0.01User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://bitly.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/feather-icon-code.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveAccept: application/xml, text/xml, */*; q=0.01User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://bitly.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/feather-icon-globe.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveAccept: application/xml, text/xml, */*; q=0.01User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://bitly.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/feather-icon-thumbs-up.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveAccept: application/xml, text/xml, */*; q=0.01User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://bitly.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/feather-icon-radio.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveAccept: application/xml, text/xml, */*; q=0.01User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://bitly.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/feather-icon-message-circle.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveAccept: application/xml, text/xml, */*; q=0.01User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://bitly.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/02/favicon.ico HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/feather-icon-link-2.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveAccept: application/xml, text/xml, */*; q=0.01User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://bitly.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/feather-icon-anchor.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveAccept: application/xml, text/xml, */*; q=0.01User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://bitly.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/feather-icon-smartphone.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveAccept: application/xml, text/xml, */*; q=0.01User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://bitly.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/2019/03/feather-icon-pie-chart.svg HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveAccept: application/xml, text/xml, */*; q=0.01User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Origin: https://bitly.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /anywhere/cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572?t=URL%20Shortener%20-%20Short%20URLs%20%26%20Custom%20Free%20Link%20Shortener%20%7C%20Bitly&u=https%3A%2F%2Fbitly.com%2F&r= HTTP/1.1Host: zippyfrog.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /anywhere/cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572/core.js HTTP/1.1Host: zippyfrog.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572=617b352bb1e3ca772aaaf13f
Source: global traffic	HTTP traffic detected: GET /a/sign_in HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gid=GA1.2.2126524125.1635496890; _gat=1; _ga_567GCTL9BB=GS1.1.1635496889.1.0.1635496889.60; _ga=GA1.1.733574328.1635496890
Source: global traffic	HTTP traffic detected: GET /15231206cebbe08c9a02e5ae748f0f40.js HTTP/1.1Host: d3h5jhobc20ump.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fb109d9025d267d9abe5cb936f758846.css HTTP/1.1Host: dl6fh5ptkejqa.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /3e9589db58fa6c958c590d48e6ede4d5.js HTTP/1.1Host: dl6fh5ptkejqa.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2b21cdf7bb0327252f60662d1fdfbc32.svg HTTP/1.1Host: dl6fh5ptkejqa.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /7eedb3d760d7794b248cf62bbbfd1d93.svg HTTP/1.1Host: d3h5jhobc20ump.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eab92125cd7cb346e7f291bafce0a82f.svg HTTP/1.1Host: dl6fh5ptkejqa.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /03885108b01f0b92601b9be97af3aa9a.otf HTTP/1.1Host: d1ayxb9ooonjts.cloudfront.netConnection: keep-aliveOrigin: https://bitly.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://dl6fh5ptkejqa.cloudfront.net/fb109d9025d267d9abe5cb936f758846.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /518ec586a1814c0216f44b4844b86f5e.svg HTTP/1.1Host: d1ayxb9ooonjts.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /81a8d0e017721a03c0ca3e1133b93592.svg HTTP/1.1Host: d1ayxb9ooonjts.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /8bc625062aeffa94729b9336243bed9d.svg HTTP/1.1Host: d1ayxb9ooonjts.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /3e574ee721bb592fd3e6aab4a3780dbc.otf HTTP/1.1Host: d1ayxb9ooonjts.cloudfront.netConnection: keep-aliveOrigin: https://bitly.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://dl6fh5ptkejqa.cloudfront.net/fb109d9025d267d9abe5cb936f758846.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /0482a3c938673192a591f2845b9eb275.png HTTP/1.1Host: dl6fh5ptkejqa.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /8bc625062aeffa94729b9336243bed9d.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: d1ayxb9ooonjts.cloudfront.net
Source: global traffic	HTTP traffic detected: GET /518ec586a1814c0216f44b4844b86f5e.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: d1ayxb9ooonjts.cloudfront.net
Source: global traffic	HTTP traffic detected: GET /81a8d0e017721a03c0ca3e1133b93592.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: d1ayxb9ooonjts.cloudfront.net
Source: global traffic	HTTP traffic detected: GET /a/sign_up?utm_content=404&utm_source=organic&utm_medium=website&utm_campaign=website&utm_cta=web2-blank-404-page-learnmore-learnmore-pricing HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga=GA1.2.733574328.1635496890; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496895.54
Source: global traffic	HTTP traffic detected: GET /8bc625062aeffa94729b9336243bed9d.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: d1ayxb9ooonjts.cloudfront.netIf-Modified-Since: Wed, 28 Mar 2018 18:26:18 GMTIf-None-Match: "bde2057dd82ad0608594fbb2f952f413"
Source: global traffic	HTTP traffic detected: GET /518ec586a1814c0216f44b4844b86f5e.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: d1ayxb9ooonjts.cloudfront.netIf-Modified-Since: Fri, 30 Aug 2019 16:24:31 GMTIf-None-Match: "a16b3edeb71936cc23a430da41c8ce84"
Source: global traffic	HTTP traffic detected: GET /81a8d0e017721a03c0ca3e1133b93592.svg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: d1ayxb9ooonjts.cloudfront.netIf-Modified-Since: Fri, 30 Aug 2019 16:24:32 GMTIf-None-Match: "6bf40d61cee563c2eb5fdadac1b5d93d"
Source: global traffic	HTTP traffic detected: GET /?utm_source=404 HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496897.52; _ga=GA1.2.733574328.1635496890
Source: global traffic	HTTP traffic detected: GET /js/forms2/js/forms2.min.js HTTP/1.1Host: app-ab01.marketo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/?utm_source=404Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=9kNcTqT3HbiBIh3OJ9cMDQmZD7gkt7kE..Yejlg8KpM-1635464485-0-Afb1//p8wkgb11y6132wEHpXdVzcoVP6t859o+dgTKiVX1BKondN4Jbfye6D3qceeOoNr4vy7VeeJ6RJLk+Lu5w=If-None-Match: W/"815d9-33210-5ce2ba3f1c640"If-Modified-Since: Tue, 12 Oct 2021 18:01:53 GMT
Source: global traffic	HTTP traffic detected: GET /s/js/unauth.shorten.js HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/?utm_source=404Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496897.52; _ga=GA1.2.733574328.1635496890If-None-Match: "a45269e9a9acdd53c1264575de7a1c4af4560d5a"If-Modified-Since: Thu, 04 Jun 2020 15:12:13 GMT
Source: global traffic	HTTP traffic detected: GET /?utm_source=404 HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/?utm_source=404Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496897.52; _ga=GA1.2.733574328.1635496890If-None-Match: "aeac629ded4cc469b6c8187f9a2c3dac0b05d58f"If-Modified-Since: Tue, 19 Oct 2021 19:53:48 GMT
Source: global traffic	HTTP traffic detected: GET /anywhere/cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572?t=URL%20Shortener%20-%20Short%20URLs%20%26%20Custom%20Free%20Link%20Shortener%20%7C%20Bitly&u=https%3A%2F%2Fbitly.com%2F%3Futm_source%3D404&r= HTTP/1.1Host: zippyfrog.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/?utm_source=404Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572=617b352bb1e3ca772aaaf13f
Source: global traffic	HTTP traffic detected: GET /pages/privacy/ HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496901.48; _ga=GA1.1.733574328.1635496890
Source: global traffic	HTTP traffic detected: GET /pages/privacy HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496901.48; _ga=GA1.1.733574328.1635496890
Source: global traffic	HTTP traffic detected: GET /js/forms2/js/forms2.min.js HTTP/1.1Host: app-ab01.marketo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/pages/privacyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=9kNcTqT3HbiBIh3OJ9cMDQmZD7gkt7kE..Yejlg8KpM-1635464485-0-Afb1//p8wkgb11y6132wEHpXdVzcoVP6t859o+dgTKiVX1BKondN4Jbfye6D3qceeOoNr4vy7VeeJ6RJLk+Lu5w=If-None-Match: W/"815d9-33210-5ce2ba3f1c640"If-Modified-Since: Tue, 12 Oct 2021 18:01:53 GMT
Source: global traffic	HTTP traffic detected: GET /s/js/unauth.shorten.js HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/pages/privacyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496901.48; _ga=GA1.1.733574328.1635496890If-None-Match: "a45269e9a9acdd53c1264575de7a1c4af4560d5a"If-Modified-Since: Thu, 04 Jun 2020 15:12:13 GMT
Source: global traffic	HTTP traffic detected: GET /static/1634669372/pages/wp-content/uploads/cache/fvm/1634669362/out/footer-e9fa9f6e64887c0b7945fcf0a4d4a4b81108d836.min.js HTTP/1.1Host: docrdsfx76ssb.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/pages/privacyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/privacy HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/pages/privacyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496901.48; _ga=GA1.1.733574328.1635496890If-None-Match: "1dc19ad1957950ae4917dd74bdfeb7268ae477a1"If-Modified-Since: Tue, 19 Oct 2021 19:48:54 GMT
Source: global traffic	HTTP traffic detected: GET /anywhere/cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572?t=Privacy%20Policy%20-%20Bitly&u=https%3A%2F%2Fbitly.com%2Fpages%2Fprivacy&r= HTTP/1.1Host: zippyfrog.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/pages/privacyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572=617b352bb1e3ca772aaaf13f
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496910.39; _ga=GA1.2.733574328.1635496890If-None-Match: "aeac629ded4cc469b6c8187f9a2c3dac0b05d58f"If-Modified-Since: Tue, 19 Oct 2021 19:53:48 GMT
Source: global traffic	HTTP traffic detected: GET /js/forms2/js/forms2.min.js HTTP/1.1Host: app-ab01.marketo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=9kNcTqT3HbiBIh3OJ9cMDQmZD7gkt7kE..Yejlg8KpM-1635464485-0-Afb1//p8wkgb11y6132wEHpXdVzcoVP6t859o+dgTKiVX1BKondN4Jbfye6D3qceeOoNr4vy7VeeJ6RJLk+Lu5w=If-None-Match: W/"815d9-33210-5ce2ba3f1c640"If-Modified-Since: Tue, 12 Oct 2021 18:01:53 GMT
Source: global traffic	HTTP traffic detected: GET /s/js/unauth.shorten.js HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496910.39; _ga=GA1.2.733574328.1635496890If-None-Match: "a45269e9a9acdd53c1264575de7a1c4af4560d5a"If-Modified-Since: Thu, 04 Jun 2020 15:12:13 GMT
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496910.39; _ga=GA1.2.733574328.1635496890If-None-Match: "aeac629ded4cc469b6c8187f9a2c3dac0b05d58f"If-Modified-Since: Tue, 19 Oct 2021 19:53:48 GMT
Source: global traffic	HTTP traffic detected: GET /anywhere/cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572?t=URL%20Shortener%20-%20Short%20URLs%20%26%20Custom%20Free%20Link%20Shortener%20%7C%20Bitly&u=https%3A%2F%2Fbitly.com%2F%23content&r= HTTP/1.1Host: zippyfrog.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572=617b352bb1e3ca772aaaf13f
Source: global traffic	HTTP traffic detected: GET /pages HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496917.32; _ga=GA1.1.733574328.1635496890
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496917.32; _ga=GA1.1.733574328.1635496890If-None-Match: "aeac629ded4cc469b6c8187f9a2c3dac0b05d58f"If-Modified-Since: Tue, 19 Oct 2021 19:53:48 GMT
Source: global traffic	HTTP traffic detected: GET /js/forms2/js/forms2.min.js HTTP/1.1Host: app-ab01.marketo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=9kNcTqT3HbiBIh3OJ9cMDQmZD7gkt7kE..Yejlg8KpM-1635464485-0-Afb1//p8wkgb11y6132wEHpXdVzcoVP6t859o+dgTKiVX1BKondN4Jbfye6D3qceeOoNr4vy7VeeJ6RJLk+Lu5w=If-None-Match: W/"815d9-33210-5ce2ba3f1c640"If-Modified-Since: Tue, 12 Oct 2021 18:01:53 GMT
Source: global traffic	HTTP traffic detected: GET /s/js/unauth.shorten.js HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496917.32; _ga=GA1.1.733574328.1635496890If-None-Match: "a45269e9a9acdd53c1264575de7a1c4af4560d5a"If-Modified-Since: Thu, 04 Jun 2020 15:12:13 GMT
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496917.32; _ga=GA1.1.733574328.1635496890If-None-Match: "aeac629ded4cc469b6c8187f9a2c3dac0b05d58f"If-Modified-Since: Tue, 19 Oct 2021 19:53:48 GMT
Source: global traffic	HTTP traffic detected: GET /anywhere/cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572?t=URL%20Shortener%20-%20Short%20URLs%20%26%20Custom%20Free%20Link%20Shortener%20%7C%20Bitly&u=https%3A%2F%2Fbitly.com%2F&r= HTTP/1.1Host: zippyfrog.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572=617b352bb1e3ca772aaaf13f
Source: global traffic	HTTP traffic detected: GET /pages/why-bitly HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496920.29; _ga=GA1.1.733574328.1635496890
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496920.29; _ga=GA1.1.733574328.1635496890If-None-Match: "aeac629ded4cc469b6c8187f9a2c3dac0b05d58f"If-Modified-Since: Tue, 19 Oct 2021 19:53:48 GMT
Source: global traffic	HTTP traffic detected: GET /js/forms2/js/forms2.min.js HTTP/1.1Host: app-ab01.marketo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=9kNcTqT3HbiBIh3OJ9cMDQmZD7gkt7kE..Yejlg8KpM-1635464485-0-Afb1//p8wkgb11y6132wEHpXdVzcoVP6t859o+dgTKiVX1BKondN4Jbfye6D3qceeOoNr4vy7VeeJ6RJLk+Lu5w=If-None-Match: W/"815d9-33210-5ce2ba3f1c640"If-Modified-Since: Tue, 12 Oct 2021 18:01:53 GMT
Source: global traffic	HTTP traffic detected: GET /s/js/unauth.shorten.js HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496920.29; _ga=GA1.1.733574328.1635496890If-None-Match: "a45269e9a9acdd53c1264575de7a1c4af4560d5a"If-Modified-Since: Thu, 04 Jun 2020 15:12:13 GMT
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: bitly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _xsrf=a26777d4595e4d6c8f225a75a5731b13; anon_u=cHN1X19mMzQxZDUwNy05NzFhLTRkZWItOTNiOS03ZTYxN2RiOTM2MmQ=|1635464484|e3b56ee6c6c24c09a519b2ede0dad705f2bafb05; optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; 2fa=|1635464493|b6561726be9eeb4860fc86347da469bfe658e5e5; session=OTM1NTFiYzktMzNhMy00ZGI5LWI0ZWMtMzkzZDE5MzU3Zjkx|1635464493|c61f79881befe91cae30edda604d771f34db971f; user=|1635464493|4f0e42bff7817f7922217ebfa0a04c49a746a433; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496920.29; _ga=GA1.1.733574328.1635496890If-None-Match: "aeac629ded4cc469b6c8187f9a2c3dac0b05d58f"If-Modified-Since: Tue, 19 Oct 2021 19:53:48 GMT
Source: global traffic	HTTP traffic detected: GET /anywhere/cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572?t=URL%20Shortener%20-%20Short%20URLs%20%26%20Custom%20Free%20Link%20Shortener%20%7C%20Bitly&u=https%3A%2F%2Fbitly.com%2F&r= HTTP/1.1Host: zippyfrog.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bitly.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cdc700557af740f28db94c45b02cb6b743603d29033348e9a0e2a5bd72d41572=617b352bb1e3ca772aaaf13f
Source: global traffic	HTTP traffic detected: GET /3b7ion9 HTTP/1.1Host: bit.lyConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/graphics/bitly_logo_red.svg HTTP/1.1Host: bit.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Referer: http://bit.ly/3b7ion9Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/graphics/meditation.png HTTP/1.1Host: bit.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Referer: http://bit.ly/3b7ion9Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/graphics/ProximaNova-Regular.woff2 HTTP/1.1Host: bit.lyConnection: keep-aliveOrigin: http://bit.lyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: */*Referer: http://bit.ly/3b7ion9Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: bit.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/*,*/*;q=0.8Referer: http://bit.ly/3b7ion9Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.2.43635141.1635496875; _gid=GA1.2.2077256377.1635496875; _gat=1
Source: global traffic	HTTP traffic detected: GET /pages/privacy/ HTTP/1.1Host: bitly.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: optimizelyEndUserId=oeu1635496885454r0.43993848834049065; _gcl_au=1.1.1339037614.1635496889; _mkto_trk=id:754-KBJ-733&token:_mch-bitly.com-1635496889137-41538; _gat=1; _gid=GA1.2.2126524125.1635496890; _ga_567GCTL9BB=GS1.1.1635496889.1.1.1635496901.48; _ga=GA1.1.733574328.1635496890

Tries to download or post to a non-existing HTTP route (HTTP/1.1 404 Not Found / 503 Service Unavailable / 403 Forbidden)

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 28 Oct 2021 23:41:15 GMTContent-Type: text/htmlContent-Length: 5340ETag: "60f6f1d5-14dc"Via: 1.1 google

URLs found in memory or binary data

Source: angular.js.2.dr	String found in binary or memory: http://angularjs.org
Source: angular.js.2.dr	String found in binary or memory: http://errors.angularjs.org/1.6.4-local
Source: pnacl_public_x86_64_pnacl_sz_nexe.2.dr	String found in binary or memory: http://llvm.org/):
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: http://tools.ietf.org/html/rfc1950
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr, manifest.json.2.dr	String found in binary or memory: https://accounts.google.com
Source: craw_window.js.2.dr	String found in binary or memory: https://accounts.google.com/MergeSession
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr	String found in binary or memory: https://analytics.google.com
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr, manifest.json.2.dr	String found in binary or memory: https://apis.google.com
Source: mirroring_common.js.2.dr	String found in binary or memory: https://apis.google.com/js/client.js
Source: mirroring_common.js.2.dr	String found in binary or memory: https://castedumessaging-pa.googleapis.com/v1
Source: pnacl_public_x86_64_libcrt_platform_a.2.dr	String found in binary or memory: https://chromium.googlesource.com/a/native_client/pnacl-clang.git
Source: pnacl_public_x86_64_libcrt_platform_a.2.dr	String found in binary or memory: https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr	String found in binary or memory: https://clients2.google.com
Source: mirroring_hangouts.js.2.dr, mirroring_cast_streaming.js.2.dr	String found in binary or memory: https://clients2.google.com/cr/report
Source: manifest.json0.2.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: https://clients6.google.com
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr	String found in binary or memory: https://content-autofill.googleapis.com
Source: manifest.json.2.dr	String found in binary or memory: https://content.googleapis.com
Source: common.js.2.dr, mirroring_cast_streaming.js.2.dr	String found in binary or memory: https://crash.corp.google.com/samples?reportid=&q=
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: https://creativecommons.org/publicdomain/zero/1.0/.
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6148ee9f-246b-4a5e-9f53-600eb219ed14.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr, 5c13e46d-0c3c-48ce-8eea-fe011aac4f9b.tmp.6.dr	String found in binary or memory: https://dns.google
Source: mirroring_common.js.2.dr	String found in binary or memory: https://docs.google.com
Source: manifest.json.2.dr	String found in binary or memory: https://feedback.googleusercontent.com
Source: 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr	String found in binary or memory: https://fonts.googleapis.com
Source: manifest.json.2.dr	String found in binary or memory: https://fonts.googleapis.com;
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr	String found in binary or memory: https://fonts.gstatic.com
Source: manifest.json.2.dr	String found in binary or memory: https://fonts.gstatic.com;
Source: material_css_min.css.2.dr	String found in binary or memory: https://github.com/angular/material
Source: craw_window.js.2.dr, craw_background.js.2.dr	String found in binary or memory: https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: https://github.com/madler/zlib/blob/master/zlib.h
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: https://hangouts.clients6.google.com
Source: manifest.json.2.dr	String found in binary or memory: https://hangouts.google.com/
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: https://hangouts.google.com/hangouts/_/logpref
Source: mirroring_common.js.2.dr	String found in binary or memory: https://meet.google.com
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: https://meetings.clients6.google.com
Source: mirroring_common.js.2.dr	String found in binary or memory: https://networktraversal.googleapis.com/v1alpha
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr	String found in binary or memory: https://ogs.google.com
Source: craw_window.js.2.dr, manifest.json0.2.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr	String found in binary or memory: https://play.google.com
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: https://preprod-hangouts-googleapis.sandbox.google.com
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr	String found in binary or memory: https://r4---sn-4g5e6nss.gvt1.com
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr	String found in binary or memory: https://redirector.gvt1.com
Source: craw_window.js.2.dr, manifest.json0.2.dr	String found in binary or memory: https://sandbox.google.com/payments/v4/js/integrator.js
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr	String found in binary or memory: https://ssl.gstatic.com
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr	String found in binary or memory: https://stats.g.doubleclick.net
Source: messages.json74.2.dr, feedback.html.2.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json74.2.dr, feedback.html.2.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: craw_window.js.2.dr, craw_background.js.2.dr	String found in binary or memory: https://www-googleapis-staging.sandbox.google.com
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr	String found in binary or memory: https://www.google-analytics.com
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr	String found in binary or memory: https://www.google.co.uk
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr, manifest.json.2.dr	String found in binary or memory: https://www.google.com
Source: manifest.json0.2.dr	String found in binary or memory: https://www.google.com/
Source: craw_window.js.2.dr	String found in binary or memory: https://www.google.com/accounts/OAuthLogin?issueuberauth=1
Source: craw_window.js.2.dr	String found in binary or memory: https://www.google.com/images/cleardot.gif
Source: craw_window.js.2.dr	String found in binary or memory: https://www.google.com/images/dot2.gif
Source: craw_window.js.2.dr	String found in binary or memory: https://www.google.com/images/x2.gif
Source: craw_background.js.2.dr	String found in binary or memory: https://www.google.com/intl/en-US/chrome/blank.html
Source: mirroring_hangouts.js.2.dr	String found in binary or memory: https://www.google.com/log?format=json&hasfast=true
Source: feedback_script.js.2.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: manifest.json.2.dr	String found in binary or memory: https://www.google.com;
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr	String found in binary or memory: https://www.googleadservices.com
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, craw_window.js.2.dr, craw_background.js.2.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr	String found in binary or memory: https://www.googleapis.com
Source: manifest.json0.2.dr	String found in binary or memory: https://www.googleapis.com/
Source: manifest.json.2.dr	String found in binary or memory: https://www.googleapis.com/auth/calendar.readonly
Source: manifest.json.2.dr	String found in binary or memory: https://www.googleapis.com/auth/cast-edu-messaging
Source: manifest.json0.2.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore
Source: manifest.json0.2.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore.readonly
Source: manifest.json.2.dr	String found in binary or memory: https://www.googleapis.com/auth/clouddevices
Source: manifest.json.2.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts
Source: manifest.json.2.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts.readonly
Source: manifest.json.2.dr	String found in binary or memory: https://www.googleapis.com/auth/meetings
Source: manifest.json.2.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.peopleapi.readwrite
Source: manifest.json0.2.dr	String found in binary or memory: https://www.googleapis.com/auth/sierra
Source: manifest.json0.2.dr	String found in binary or memory: https://www.googleapis.com/auth/sierrasandbox
Source: manifest.json.2.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: mirroring_common.js.2.dr	String found in binary or memory: https://www.googleapis.com/calendar/v3
Source: mirroring_common.js.2.dr	String found in binary or memory: https://www.googleapis.com/hangouts/v1
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr	String found in binary or memory: https://www.googletagmanager.com
Source: c8328d34-aae8-4f65-81a2-29737f8d27af.tmp.6.dr, 6ccc2e57-e101-4e74-9f64-3a036c0c5566.tmp.6.dr	String found in binary or memory: https://www.gstatic.com
Source: common.js.2.dr	String found in binary or memory: https://www.gstatic.com/hangouts_echo_detector/release/%
Source: manifest.json.2.dr	String found in binary or memory: https://www.gstatic.com;

Posts data to webserver

Source: unknown

HTTP traffic detected: POST /ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard HTTP/1.1Host: accounts.google.comConnection: keep-aliveContent-Length: 1Origin: https://www.google.comContent-Type: application/x-www-form-urlencodedSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 205.251.222.189:443 -> 192.168.2.3:49913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 205.251.222.189:443 -> 192.168.2.3:49914 version: TLS 1.2

System Summary:

Creates temporary files

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Temp\aefc4d3e-f0c5-492d-a6da-a30b4c888eb0.tmp

Jump to behavior

Classification label

Source: classification engine

Classification label: mal48.win@43/184@34/26

Spawns processes

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'http://bit.ly/3b7ion9'
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1524,7696213736646939735,17595303793294090733,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1892 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1524,7696213736646939735,17595303793294090733,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1892 /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior

Found detection on Joe Sandbox Cloud Basic with higher score

Source: http://bit.ly/3b7ion9

Joe Sandbox Cloud Basic: Detection: clean Score: 0

Perma Link

Creates files inside the program directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Creates files inside the user directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-617BB3A8-1B08.pma

Jump to behavior

Found graphical window changes (likely an installer)

Source: Window Recorder

Window detected: More than 3 window changes detected

Creates a directory in C:\Program Files

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior