Windows Analysis Report
https://origines-decoration.com/

Overview

General Information

Sample URL:	https://origines-decoration.com/
Analysis ID:	1447761
Infos:

Detection

Score:	60
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

AI detected suspicious javascript

Stores files to the Windows start menu directory

Uses insecure TLS / SSL version for HTTPS connection

Classification

Signatures

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://origines-decoration.com/

Avira URL Cloud: detection malicious, Label: malware

Antivirus detection for URL or domain

Source: https://origines-decoration.com/telegram.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/build.css	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/chart_mobile.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/bscscan.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/dextools.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/about2.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/lbank.svg	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/banner-bg.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/encryption.js	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/krabby_patty.ttf	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/token-img.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/bitget.svg	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/twitter.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/about1.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/roadmap-bg.svg	Avira URL Cloud: Label: malware

Phishing

AI detected suspicious javascript

Source: https://origines-decoration.com/

LLM: Score: 8 Reasons: The code contains a long, obfuscated string which is a common technique used in malicious scripts to hide their true purpose. The obfuscation makes it difficult to determine the exact functionality of the code without further analysis. This raises a significant red flag for potential malicious activity. DOM: 0.0.pages.csv

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49847 version: TLS 1.0

Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.5:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.5:49737 version: TLS 1.2

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49847 version: TLS 1.0

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /build.css HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /ajax/libs/ethers/5.7.2/ethers.umd.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web3-ethers.js HTTP/1.1Host: cdndelivery.pages.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/web3/4.0.3/web3.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /encryption.js HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /logo.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /burger-menu.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /banner.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /krabby_patty.ttf HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://origines-decoration.com/build.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /banner-bg.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/build.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /about1.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /gate.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /@web3modal/ethereum@2.6.2 HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://cdndelivery.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /poloniex.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /mexc.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /burger-menu.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /logo.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /banner.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /@web3modal/ethereum@2.6.2/dist/cdn/bundle.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://cdndelivery.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /about2.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /lbank.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /button_bg.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/build.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /coinw.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /btcex.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /@web3modal/ethereum@2.6.2/dist/cdn/bundle-fdcfd0d2.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bitget.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /about1.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /banner-bg.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /gate.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /poloniex.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /mexc.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /twitter.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /telegram.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /bscscan.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /dextools.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /button_bg.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /about2.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /coinw.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /@web3modal/html@2.6.2 HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://cdndelivery.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /btcex.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /pancake.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /binance.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /bitget.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /lbank.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /data/pricemulti?fsyms=ETH,BNB,BTC,MATIC,AVAX,ARB,FTM,OP,ETC,CRO,XDAI,HT,OAS,KCS,PLS,METIS,GLMR,ZETA,MOVR,KAVA,BRISE,CELO,ONE&tsyms=USD HTTP/1.1Host: min-api.cryptocompare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://origines-decoration.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@web3modal/html@2.6.2/dist/cdn/bundle.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://cdndelivery.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /check.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /bscscan.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /telegram.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /dextools.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /token-img.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /twitter.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /binance.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /pancake.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /chart_mobile.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /desc.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /roadmap-bg.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/build.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /data/pricemulti?fsyms=ETH,BNB,BTC,MATIC,AVAX,ARB,FTM,OP,ETC,CRO,XDAI,HT,OAS,KCS,PLS,METIS,GLMR,ZETA,MOVR,KAVA,BRISE,CELO,ONE&tsyms=USD HTTP/1.1Host: min-api.cryptocompare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@web3modal/html@2.6.2/dist/cdn/bundle-b8834a0a.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://unpkg.com/@web3modal/html@2.6.2/dist/cdn/bundle.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /check.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /roadmap-bg.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /token-img.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /desc.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /chart_mobile.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /@web3modal/ethereum@2.6.2/dist/cdn/index.es-6c0412fa.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle-fdcfd0d2.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@web3modal/html@2.6.2/dist/cdn/index-2bf8a5a6.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://unpkg.com/@web3modal/html@2.6.2/dist/cdn/bundle-b8834a0a.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/5c24b245-2043-4ce6-34e8-acb63e391500/public HTTP/1.1Host: imagedelivery.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/305e70d7-466a-42ac-e30a-342bc0209300/public HTTP/1.1Host: imagedelivery.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/b7515360-15e5-4504-23b1-598b1f543e00/public HTTP/1.1Host: imagedelivery.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/c9c5f293-9ffc-4ee4-3523-1b575a4ee400/public HTTP/1.1Host: imagedelivery.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/52fa0a79-6569-4f04-4dad-fc8fb9108e00/public HTTP/1.1Host: imagedelivery.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@web3modal/ethereum@2.6.2/dist/cdn/__polyfill-node.events-d7c247dc.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/index.es-6c0412fa.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getDesktopListings?projectId=96550cd81d39cf2dc9bfcba9d44b02a7&page=1&entries=9&version=2 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://origines-decoration.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getInjectedListings?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://origines-decoration.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/5c24b245-2043-4ce6-34e8-acb63e391500/public HTTP/1.1Host: imagedelivery.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/305e70d7-466a-42ac-e30a-342bc0209300/public HTTP/1.1Host: imagedelivery.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: covalent.pageConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/c9c5f293-9ffc-4ee4-3523-1b575a4ee400/public HTTP/1.1Host: imagedelivery.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/52fa0a79-6569-4f04-4dad-fc8fb9108e00/public HTTP/1.1Host: imagedelivery.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/b7515360-15e5-4504-23b1-598b1f543e00/public HTTP/1.1Host: imagedelivery.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWtnbU1RYjc2aEI0Y3BKMWk1WVBnQVFoeVY0UXB6eE42cjdmVkY1ZVkyVzFoTCIsInN1YiI6IjM1Mjg1ZmI4NGNjODE2NmE4ODI0OGQ0ZDkzODAzNGIzODhhZTQyOTMyZjk1ZTE2MDUyZjIzNGRlZjY0ODczZjMiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxNjc2NDA4MiwiZXhwIjoxNzE2ODUwNDgyfQ.okWAGrURIvEyJN2azisd8XqQfruHRysgROjgvROzG0DIZKoIsQPSWKydHMz5C8RYU2S2e7Qvl3DSXoxji_SOBw&projectId=96550cd81d39cf2dc9bfcba9d44b02a7&ua=wc-2%2Fjs-2.8.4%2Fwindows10-chrome-117.0.0%2Fbrowser%3Aorigines-decoration.com&useOnCloseEvent=true HTTP/1.1Host: relay.walletconnect.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://origines-decoration.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: DbEugvxOwJuC33EL75TZ0A==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/692ed6ba-e569-459a-556a-776476829e00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/ab9c186a-c52f-464b-2906-ca59d760a400?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/93564157-2e8e-4ce7-81df-b264dbee9b00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/06b26297-fe0c-4733-5d6b-ffa5498aac00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/600a9a04-c1b9-42ca-6785-9b4b6ff85200?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getDesktopListings?projectId=96550cd81d39cf2dc9bfcba9d44b02a7&page=1&entries=9&version=2 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getInjectedListings?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/30c46e53-e989-45fb-4549-be3bd4eb3b00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/73f6f52f-7862-49e7-bb85-ba93ab72cc00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/a7f416de-aa03-4c5e-3280-ab49269aef00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/7e1514ba-932d-415d-1bdb-bccb6c2cbc00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/c39b3a16-1a38-4588-f089-cb7aeb584700?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/ab9c186a-c52f-464b-2906-ca59d760a400?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/9f259366-0bcd-4817-0af9-f78773e41900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/692ed6ba-e569-459a-556a-776476829e00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/600a9a04-c1b9-42ca-6785-9b4b6ff85200?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/93564157-2e8e-4ce7-81df-b264dbee9b00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/06b26297-fe0c-4733-5d6b-ffa5498aac00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/204b2240-5ce4-4996-6ec4-f06a22726900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/b6ee4efc-f53e-475b-927b-a7ded6211700?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/fbd441cc-e861-46dc-48ae-a04228ddb500?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/7fd5a23a-3a01-4cfb-3c8b-9f43ae414400?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/73f6f52f-7862-49e7-bb85-ba93ab72cc00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/7e1514ba-932d-415d-1bdb-bccb6c2cbc00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/a7f416de-aa03-4c5e-3280-ab49269aef00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/c39b3a16-1a38-4588-f089-cb7aeb584700?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/9f259366-0bcd-4817-0af9-f78773e41900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/30c46e53-e989-45fb-4549-be3bd4eb3b00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/b6ee4efc-f53e-475b-927b-a7ded6211700?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/204b2240-5ce4-4996-6ec4-f06a22726900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/fbd441cc-e861-46dc-48ae-a04228ddb500?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/7fd5a23a-3a01-4cfb-3c8b-9f43ae414400?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ

Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://twitter.com/FBI"><svg xmlns="http://www.w3.org/2000/svg" height="20" width="20" version="1.1" viewbox="0 0 16 16" aria-labelledby="title" role="img"> equals www.twitter.com (Twitter)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.facebook.com/FBI"> equals www.facebook.com (Facebook)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.facebook.com/FBI"><svg xmlns="http://www.w3.org/2000/svg" height="20" width="20" version="1.1" viewbox="0 0 16 16" aria-labelledby="title" role="img"> equals www.facebook.com (Facebook)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/fbi"> equals www.linkedin.com (Linkedin)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/fbi"><svg xmlns="http://www.w3.org/2000/svg" height="20" width="20" version="1.1" viewbox="0 0 16 16" aria-labelledby="title" role="img"> equals www.linkedin.com (Linkedin)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.youtube.com/user/fbi"> equals www.youtube.com (Youtube)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.youtube.com/user/fbi"><svg xmlns="http://www.w3.org/2000/svg" height="20" width="20" version="1.1" viewbox="0 0 16 16" aria-labelledby="title" role="img"> equals www.youtube.com (Youtube)
Source: chromecache_201.2.dr	String found in binary or memory: <meta content="https://www.facebook.com/FBI" property="og:article:publisher"> equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: origines-decoration.com
Source: global traffic	DNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdndelivery.pages.dev
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: unpkg.com
Source: global traffic	DNS traffic detected: DNS query: min-api.cryptocompare.com
Source: global traffic	DNS traffic detected: DNS query: covalent.page
Source: global traffic	DNS traffic detected: DNS query: imagedelivery.net
Source: global traffic	DNS traffic detected: DNS query: explorer-api.walletconnect.com
Source: global traffic	DNS traffic detected: DNS query: relay.walletconnect.com
Source: global traffic	DNS traffic detected: DNS query: fbi.gov
Source: global traffic	DNS traffic detected: DNS query: www.fbi.gov

Source: unknown

HTTP traffic detected: POST / HTTP/1.1Host: covalent.pageConnection: keep-aliveContent-Length: 1580sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: text/plainContent-Type: application/x-www-form-urlencodedsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://origines-decoration.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_163.2.dr	String found in binary or memory: http://feross.org
Source: chromecache_201.2.dr	String found in binary or memory: http://schema.org
Source: chromecache_115.2.dr	String found in binary or memory: http://underscorejs.org/LICENSE
Source: chromecache_220.2.dr	String found in binary or memory: https://besimple.me/assets/index.a881cbbe.css
Source: chromecache_213.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js
Source: chromecache_213.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/sweetalert2
Source: chromecache_213.2.dr	String found in binary or memory: https://cdndelivery.pages.dev/web3-ethers.js
Source: chromecache_213.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js
Source: chromecache_213.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js
Source: chromecache_201.2.dr	String found in binary or memory: https://dap.digitalgov.gov/Universal-Federated-Analytics-Min.js?agency=DOJ&subagency=FBI
Source: chromecache_201.2.dr	String found in binary or memory: https://delivery.fbi.gov/subscribe
Source: chromecache_201.2.dr	String found in binary or memory: https://delivery.fbi.gov/subscribe?utm_source=Email%20Icon%20-%20fbi.gov&utm_medium=Email%20Icon
Source: chromecache_201.2.dr	String found in binary or memory: https://fbi.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://fbi.gov/how-we-can-help-you
Source: chromecache_213.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_213.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Inter:wght
Source: chromecache_213.2.dr	String found in binary or memory: https://fonts.gstatic.com
Source: chromecache_172.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/dmsans/v15/rP2Yp2ywxg089UriI5-g7M8btVsD8CkGq7u0-K4.woff2)
Source: chromecache_172.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/dmsans/v15/rP2Yp2ywxg089UriI5-g7M8btVsD8CkGq7u6-K6h9Q.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa0ZL7SUc.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1pL7SUc.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa2JL7SUc.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa2ZL7SUc.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa2pL7SUc.woff2)
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZ9hiA.woff2)
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZBhiI2B.woff2
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZFhiI2B.woff2
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZJhiI2B.woff2
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZNhiI2B.woff2
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZthiI2B.woff2
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZxhiI2B.woff2
Source: chromecache_109.2.dr, chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2)
Source: chromecache_109.2.dr, chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459WRhyzbi.woff2)
Source: chromecache_109.2.dr, chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459WZhyzbi.woff2)
Source: chromecache_109.2.dr, chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2)
Source: chromecache_109.2.dr, chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyC0ITw.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyCAIT5lu.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyCIIT5lu.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyCMIT5lu.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyCkIT5lu.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_175.2.dr	String found in binary or memory: https://github.com/indutny/elliptic
Source: chromecache_175.2.dr	String found in binary or memory: https://github.com/indutny/elliptic/issues
Source: chromecache_201.2.dr	String found in binary or memory: https://images.fbi.gov
Source: chromecache_201.2.dr	String found in binary or memory: https://le.fbi.gov/
Source: chromecache_115.2.dr	String found in binary or memory: https://lodash.com/
Source: chromecache_115.2.dr	String found in binary or memory: https://lodash.com/license
Source: chromecache_143.2.dr	String found in binary or memory: https://openchain.xyz/signatures?query=$
Source: chromecache_115.2.dr	String found in binary or memory: https://openjsf.org/
Source: chromecache_175.2.dr	String found in binary or memory: https://registry.npmjs.org/elliptic/-/elliptic-6.4.0.tgz
Source: chromecache_201.2.dr	String found in binary or memory: https://twitter.com/FBI
Source: chromecache_201.2.dr	String found in binary or memory: https://ucr.fbi.gov
Source: chromecache_143.2.dr	String found in binary or memory: https://wagmi.sh/core/providers/jsonRpc
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about/community-outreach
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about/faqs
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about/leadership-and-structure
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about/mission
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about/partnerships
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/accessibility
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/atom.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/fbi-headquarters
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/fbi-headquarters/the-fbi-experience
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices/denver/news/former-trading-firm-executives-found-guilty
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices/washingtondc/news/colorado-man-sentenced-on-felony-obst
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices/washingtondc/news/kentucky-man-pleads-guilty-to-felony-
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices/washingtondc/news/pennsylvania-man-sentenced-to-prison-
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices/washingtondc/news/washington-state-man-sentenced-for-as
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/legal-attache-offices
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/fbi-kids
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/fbigov_homepage_new
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/fbigov_homepage_new/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/flickr
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/history
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/more-fbi-services-and-information/identity-history-summary-c
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/more-fbi-services-and-information/ucr
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/need-an-fbi-service-or-more-information
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/office-of-private-sector
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/parents-and-caregivers-protecting-your-kids
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/safety-resources
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/scams-and-safety
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/students
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/victim-services
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-investigate
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/apply-for-an-fbi-job.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/contact-the-fbi.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/discover-fbi-history.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/fbi-jacksonville-special-agent-lauren-regucci.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/find-crime-stats.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/get-a-rap-sheet.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/help-the-fbi-find-fugitives-and-missing-persons.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/learn-what-the-fbi-investigates.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/protect-yourself-from-common-crimes-and-scams.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/submit-a-tip.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/civil-rights
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/counterintelligence
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/counterintelligence/foreign-influence/protected-voices/protected-voi
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/cyber
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/organized-crime
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/public-corruption
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/terrorism
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/violent-crime
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/white-collar-crime
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/wmd
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/itunes.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/jobs
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/legalnotices
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/manifest.json
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/apps
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/espanol
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/photos
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/podcasts
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/podcasts/inside-the-fbi-investigating-torture
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/podcasts/inside-the-fbi-podcast-the-fbi-police
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/podcasts/inside-the-fbi-podcast-trauma-notification-training
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/podcasts/inside-the-fbi-podcast-what-happened-to-karla-rodriguez
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/RSS
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/atom.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/fbi-recognizes-national-missing-childrens-day
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/fbi-signs-agreement-with-blacks-in-government
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/justice-department-announces-multiple-drug-and-firearms-arre
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/rss.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/pressrel
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/speeches
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/speeches/RSS
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/speeches/atom.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/speeches/rss.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/RSS
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/a-legacy-in-law-enforcement-a-mothers-and-sons-journeys-to-the-fbi
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/atom.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/fbi-honors-fallen-colleagues-law-enforcement-partners-during-police
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/national-missing-childrens-day-2024
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/national-missing-childrens-day-2024/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/reaching-out-to-assist-victims-of-crime
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/rss.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/testimony
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/testimony/RSS
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/testimony/atom.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/testimony/rss.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/videos
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/plonejsi18n
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/privacy-policy
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/rss.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/scams-and-safety
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/services/information-management/foia
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/services/information-management/foipa
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/site-icon.png
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/site-icon.png?scale=16
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/site-icon.png?scale=32
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/sitemap
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/tips
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/bank-robbers
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/capitol-violence
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/capitol-violence/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/ecap
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/fugitives
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/kidnap
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/seeking-info/hate-crime---assault
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/seeking-info/hate-crime---assault/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/seeking-information
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/terrorism
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/topten
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/vicap
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbijobs.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbijobs.gov/equal-opportunity
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbijobs.gov/sites/default/files/2022-07/eeoc_policy.pdf
Source: chromecache_201.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=G-DBEM2FVVRF
Source: chromecache_201.2.dr	String found in binary or memory: https://www.instagram.com/fbi/
Source: chromecache_191.2.dr	String found in binary or memory: https://www.jsdelivr.com/using-sri-with-dynamic-files
Source: chromecache_201.2.dr	String found in binary or memory: https://www.justice.gov/jmd/eeo-program-status-report
Source: chromecache_201.2.dr	String found in binary or memory: https://www.justice.gov/legalpolicies
Source: chromecache_201.2.dr	String found in binary or memory: https://www.linkedin.com/company/fbi
Source: chromecache_201.2.dr	String found in binary or memory: https://www.regulations.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.usa.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.whitehouse.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.youtube.com/user/fbi

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443

Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.5:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.5:49737 version: TLS 1.2

Source: classification engine

Classification label: mal60.phis.win@16/207@36/14

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2020,i,2573263047657851414,3927745290978497940,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://origines-decoration.com/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2020,i,2573263047657851414,3927745290978497940,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
104.17.24.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
185.149.120.183	origines-decoration.com	Poland	205065	JETMAILUKPL	false
104.26.0.3	covalent.page	United States	13335	CLOUDFLARENETUS	false
104.18.2.36	imagedelivery.net	United States	13335	CLOUDFLARENETUS	false
104.17.248.203	unpkg.com	United States	13335	CLOUDFLARENETUS	false
18.159.147.43	relay.walletconnect.com	United States	16509	AMAZON-02US	false
20.4.130.154	min-api.cryptocompare.com	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
104.18.26.46	explorer-api.walletconnect.com	United States	13335	CLOUDFLARENETUS	false
188.114.96.3	cdndelivery.pages.dev	European Union	13335	CLOUDFLARENETUS	false
142.250.186.100	www.google.com	United States	15169	GOOGLEUS	false
172.67.70.50	unknown	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.6
192.168.2.5

Contacted Domains

Name	IP	Active
origines-decoration.com	185.149.120.183	true
imagedelivery.net	104.18.2.36	true
covalent.page	104.26.0.3	true
cdnjs.cloudflare.com	104.17.24.14	true
cdndelivery.pages.dev	188.114.96.3	true
explorer-api.walletconnect.com	104.18.26.46	true
relay.walletconnect.com	18.159.147.43	true
www.google.com	142.250.186.100	true
fbi.gov	104.16.148.244	true
unpkg.com	104.17.248.203	true
min-api.cryptocompare.com	20.4.130.154	true
fp2e7a.wpc.phicdn.net	192.229.221.95	true
cdn.jsdelivr.net	unknown	unknown
www.fbi.gov	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://origines-decoration.com/telegram.png	true	Avira URL Cloud: malware	unknown
https://imagedelivery.net/2uud-v-gVdhcDOuqR3_miw/305e70d7-466a-42ac-e30a-342bc0209300/public	false	Avira URL Cloud: safe	unknown
https://unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/__polyfill-node.events-d7c247dc.js	false	Avira URL Cloud: safe	unknown
https://relay.walletconnect.com/?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWtnbU1RYjc2aEI0Y3BKMWk1WVBnQVFoeVY0UXB6eE42cjdmVkY1ZVkyVzFoTCIsInN1YiI6IjM1Mjg1ZmI4NGNjODE2NmE4ODI0OGQ0ZDkzODAzNGIzODhhZTQyOTMyZjk1ZTE2MDUyZjIzNGRlZjY0ODczZjMiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxNjc2NDA4MiwiZXhwIjoxNzE2ODUwNDgyfQ.okWAGrURIvEyJN2azisd8XqQfruHRysgROjgvROzG0DIZKoIsQPSWKydHMz5C8RYU2S2e7Qvl3DSXoxji_SOBw&projectId=96550cd81d39cf2dc9bfcba9d44b02a7&ua=wc-2%2Fjs-2.8.4%2Fwindows10-chrome-117.0.0%2Fbrowser%3Aorigines-decoration.com&useOnCloseEvent=true	false	Avira URL Cloud: safe	unknown
https://origines-decoration.com/build.css	true	Avira URL Cloud: malware	unknown
https://origines-decoration.com/chart_mobile.png	false	Avira URL Cloud: malware	unknown
https://origines-decoration.com/bscscan.png	false	Avira URL Cloud: malware	unknown
https://origines-decoration.com/	true		unknown
https://origines-decoration.com/dextools.png	false	Avira URL Cloud: malware	unknown
https://unpkg.com/@web3modal/html@2.6.2	false	Avira URL Cloud: safe	unknown
https://origines-decoration.com/about2.png	false	Avira URL Cloud: malware	unknown
https://cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js	false	Avira URL Cloud: safe	unknown
https://cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js	false	Avira URL Cloud: safe	unknown
https://origines-decoration.com/lbank.svg	false	Avira URL Cloud: malware	unknown
https://origines-decoration.com/banner-bg.png	false	Avira URL Cloud: malware	unknown
https://cdndelivery.pages.dev/web3-ethers.js	false	Avira URL Cloud: safe	unknown
https://origines-decoration.com/encryption.js	false	Avira URL Cloud: malware	unknown
https://min-api.cryptocompare.com/data/pricemulti?fsyms=ETH,BNB,BTC,MATIC,AVAX,ARB,FTM,OP,ETC,CRO,XDAI,HT,OAS,KCS,PLS,METIS,GLMR,ZETA,MOVR,KAVA,BRISE,CELO,ONE&tsyms=USD	false	Avira URL Cloud: safe	unknown
https://origines-decoration.com/krabby_patty.ttf	false	Avira URL Cloud: malware	unknown
https://origines-decoration.com/token-img.png	false	Avira URL Cloud: malware	unknown
https://origines-decoration.com/bitget.svg	false	Avira URL Cloud: malware	unknown
https://origines-decoration.com/about1.png	false	Avira URL Cloud: malware	unknown
https://origines-decoration.com/twitter.png	false	Avira URL Cloud: malware	unknown
https://origines-decoration.com/roadmap-bg.svg	false	Avira URL Cloud: malware	unknown

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun May 26 21:54:27 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	9E2E3E170D4653094CD622EF2EC0D2A5	C2759FF486F4B7BA7DB9BA3CD351265B487B650B	8C97DE6098FAA5DD01E82FE466359162F4735FA8E7210403EFDC077EA782C47B
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun May 26 21:54:27 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	14F2C80EFA888818BB6D398FB5B32AC6	91E87D5AFCD124A1AB784581E45833A11DD880AF	72BF8BCCF4D05B295B9FDFBDA3AC896B89DAE20EB711AA6C79B60E9A785484B8
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	B9362E03EEEE90A9C477ED6785AFBC94	BE061F7D3AF8BFE07A8390E6CFA8FD63B44A57FB	1FFE816EED2E93350DAB9345D82975FE0C0C6A12CFD720E7E6CBC84698848B80
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun May 26 21:54:27 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	D578F05E5EE3812D22060DFF1D84573E	E96D6A2BEF5B4B949E3472FE18B78BE2F4E7B2D0	786BB91C3AC27ACF9675C6B97DEE4C700081729A7E8F8DDDF939B6C0DD3248EF
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun May 26 21:54:27 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	042B1F131DAE53BFB6B29A5D7010B448	A0231DB716D33B8FA762A6BADB441EBA3F2410DB	0C9DC74419675FB39F4E7A2ACB700E2DD3A75653DE976DB6AD5301F54BA85ED2
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Sun May 26 21:54:27 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	7830695B4D21FB3DA627FD18CCC97188	DC98C773B6438D81BC8809B2852322C37D457FB9	0CFE81B828C8EC10588DFC3E38ED85E8026991B3F43BC3D1BACAFDE333504E54
Chrome Cache Entry: 100	SVG Scalable Vector Graphics image	7B2DB4FEED32169CC3D111B53498500E	85EB7EEE514B9E5CC9BE491BFC29CB392C59DE03	7FB1E1E3A2720C7B3ECF6B4CBDF4E486BCAFA58E980447AE9170CCCE72A0CDA7
Chrome Cache Entry: 101	ASCII text, with very long lines (65536), with no line terminators	81E8C22EA207DECE0624D6209DB46CCE	CC6AB31CC685E11BFC69FDA72AD6C295130CF2A7	0A9F0840BE094F6FC48B6E8ABFF400E72E937ABA6CEEB6ECA4B60DB4E8806FD7
Chrome Cache Entry: 102	PNG image data, 456 x 456, 8-bit/color RGBA, non-interlaced	8E501D0C309DF7C12971C7FD7AC0EC8D	DAFAE268B3ECDE3A1148E7725A1C2D91740AF3BC	58C774C80962AF0F3E612E9DCF865A81A21C0377BED0B188158191A297C89E74
Chrome Cache Entry: 103	PNG image data, 400 x 508, 8-bit colormap, non-interlaced	828D340DD278F5C2F1348ED9A785BFCB	9229FA5132C3F25955CB6C9F0A9A3620E024EC21	2D089239BB74064DFCCDAC0EE6A6D28C9AE8C22797BFFC0608FCD383AE4C16EC
Chrome Cache Entry: 104	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3	9BBAB026F0AE207EC75F9CF32E564FA0	791E668264F6324969690C30E2BF5CB4E8005687	C7271474564CDDFA07468394F443DDFD3A8CCF243A89218E6E7C4F249DF1BCE4
Chrome Cache Entry: 105	PNG image data, 200 x 181, 8-bit/color RGBA, non-interlaced	C8B2D8B2466C92F55309DE7BFF5BE02F	259869E827B024D42AD24BFFF4E603FD508A176A	C1803FB77D86926FF2502D1BE6CE4EAAEF127777E24A2062931338218D471ABF
Chrome Cache Entry: 106	SVG Scalable Vector Graphics image	11EB422DA8CBB67C271255C35C98F569	C7E9F39DC6684A0CFC27DACFF11DB7A579035275	F17BA1E630AB305B19A13B84E5EF824189E777489F9A97E2EDF8EB7CCE648E1E
Chrome Cache Entry: 107	SVG Scalable Vector Graphics image	5EC516932D34FB1F63356BBCC41DF431	0FE484EFC45E7775CF27FAE98BDCBCC53CA59F03	EE1B779CA129ECFCC42E87AA59687AECFE0DD87FC05354101F60C8EC1E3DB897
Chrome Cache Entry: 108	ASCII text, with no line terminators	AD849514BECF6E01EAC2886B4896C36B	DD27F8333AA04EAF8972FA2A0FC754DC1DDF6378	0B53D7F18BAD8ECD97B91AF4F14EB8EDBB67CDA91F0CABD2C904F25100DB1F65
Chrome Cache Entry: 109	ASCII text	90FB78338E08FDC49C664522019CDA8D	E8BA4377CC291CCD315FF99E25F9D827AD5A85B4	7D791A7CC33132395F72BB1A5A05E56C87A6C5254050BBA73983B542C7653B96
Chrome Cache Entry: 110	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	F8D4C3C7B0A8FFC1DA0F3FDDEB9DF5F0	E9656A24390CDDDEF52D3190E7059DEDBEF85D16	32EFE5B98531569D4EE92FFD791B6C3AD191A5178B224377FC427918AE4E2CAF
Chrome Cache Entry: 111	PNG image data, 400 x 400, 8-bit colormap, non-interlaced	AFE3193A4B5E82635ACF98884A807828	B038B2FA147786DFE106FBBCE503B29BDFAFC439	0EE2607E0B6DE6593127402CFD44DF7939253AC7F29BCCEBD3363E6C9E479557
Chrome Cache Entry: 112	ASCII text, with very long lines (65470)	1932881DEBF364CFED402E1D0C7A54E3	E53D84EE93CB7C4EAE82BDCE939E80307B2CB1B1	E95C1FC6AAA308B9BBFC7BA359F34B57C65E4932440416441FE7C8864CCBDD84
Chrome Cache Entry: 113	TrueType Font data, 11 tables, 1st "OS/2", 40 names, Macintosh, Typeface \251 (your company). 2012. All Rights ReservedRegularKrabby Patty:Version 1.00Version 1	8CC48F830BEC11584010BA9A0A7276E7	8E076A5D6AA6F28E8A485F969FB06E63082F7A5E	FB66B54921AC25D586856BD5EDA28552C0922648B2E4CF0B3CE8B3F773CE6F2D
Chrome Cache Entry: 114	PNG image data, 400 x 400, 8-bit colormap, non-interlaced	FCC4DC0DAE1B8472D99345EF3C6B332F	6EA78F4557768D6974D7E8353B3D18CB0E99C2DE	C173506C90B6BE07802423851FC80DDAF6A65CC17833BC0653EEC1974F189462
Chrome Cache Entry: 115	ASCII text, with very long lines (49954)	9DC9F6FF0A6E2AA3D75D0A53BD54D9F0	5BE7C8FD6D827F90BA0C5EB401D47A34147294C5	D18A7136285B9E187C3AA3D82B021156F72DAD4791AFEDE244E491FB123D4ADC
Chrome Cache Entry: 116	PNG image data, 839 x 492, 8-bit/color RGBA, non-interlaced	C1E0524D67D047BDADBA4616E8641922	0BE0F679B80B386F30D673BE6AE554923039D1D2	C9E0707F53EF1F5E371EA8D4C5CA352EAEB6D96AA2CA7549273F7102EDD94EFB
Chrome Cache Entry: 117	SVG Scalable Vector Graphics image	BC93E31C84F15E5E0C8E24DA0A358689	E8DCE7C15A7E8EE2FC343685530B562AF045C06C	1483F1D6012E43B6CB304745E93CAB50AB460516E9EC36C517DAF53E386927A2
Chrome Cache Entry: 118	JSON data	11EDC39BD0A8A20E2A0335239CBAF79D	C931574FF85AE94048335A1908C43385D1CD8B8A	C678E79C70E8211892DB49CC6E31E9D9AB8B04685A79B418F3B4E95ED015991E
Chrome Cache Entry: 119	PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced	EB10FE924875D72C7BDF59668E2EF25A	63D5F23E126D4E3360E070BB8FE43FD8927AEC3B	1899010A096BFF4DC2316639A20E08EECC42390CEB6667A433C89AC48C0E6D60
Chrome Cache Entry: 120	PNG image data, 313 x 425, 8-bit colormap, non-interlaced	5A0C5F919C65ACABFE01D3B46F089B16	B0F22490C34CA70BF4DA4EA8E03AB039D3F0945C	ACFC85904CB2E34EAA6E82B8D5EC7AAC4FBFEC46914E52BDE7DD9483C3DA8A83
Chrome Cache Entry: 121	SVG Scalable Vector Graphics image	DDDF25F726F484F4691EBA6FB6B64F44	3EBD2352F11F55B0ED685952FF9AF4B15B795E4F	F1B7F415BE097814D61032A921493E48771460EFB04D09B602018F76A2FC4F29
Chrome Cache Entry: 122	PNG image data, 698 x 660, 8-bit colormap, non-interlaced	C0027AEC64A3A808BF4E2EA4EEEE174C	97875F20DA164D85CAD7B77CBFB2689BD11679F7	040CD47F0E6EA374084B42E75AEBE5B3C23C7FD79FA28A653A256C1FFDF325F7
Chrome Cache Entry: 123	ASCII text, with very long lines (43691)	0AAAA3278D29D8B8D9B3795F60D3B836	519EF68609C1F595EE6A9CBB7660E4C8585A0D41	B030031299100B9D6C6B413BF9E9D712F59695F1384EF548C3F43B0A0FAECBFA
Chrome Cache Entry: 124	Java source, ASCII text	71732CECB51F228B975DF19459F80D6B	CC0BADE975A82A5BBE7819324469A88FB00E7476	2A44A9669DE7AD5F44ABD353E880DB9BAFCBA4222E1EFCFF5151AE3D3AFEA669
Chrome Cache Entry: 125	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3	062B66F9B73A1F0F98B76B0040360C77	E915B254D28CD63FD329AD677B6009DA68AE461E	E5EC1122854D0555AE7102CEA2FB030BA6F447E2A9D6FAB16A1EA705558104C5
Chrome Cache Entry: 126	SVG Scalable Vector Graphics image	DDDF25F726F484F4691EBA6FB6B64F44	3EBD2352F11F55B0ED685952FF9AF4B15B795E4F	F1B7F415BE097814D61032A921493E48771460EFB04D09B602018F76A2FC4F29
Chrome Cache Entry: 127	SVG Scalable Vector Graphics image	0975A9DAAAFC87973B0D00AA6C899BBB	261139747498B294DCD4B3F8F98560889DEE58C1	1A7B9039213202BB8FD14BDF6858DB3A973416DE0DABA8F4DC26873760CB292B
Chrome Cache Entry: 128	Java source, ASCII text	FAD3FE239FD356BC775D0B30587A6E4F	AE832884E1984B9E1FC2290D02ACD59A54A23D5F	094505BBEB108003566526DF8766F6FD81D6B8370FF7A8CA028231B03A1EA5E8
Chrome Cache Entry: 129	SVG Scalable Vector Graphics image	3644708AC9339136C7B31A8B2D81896C	442344D2880DC669FC85B220922CF8D714CB4DAA	E8AC5E7F37F84F086FBF00A3118931D14E0D6EFED3EA283549D5AF1FA42320A5
Chrome Cache Entry: 130	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	F5C89FF82DEE2A99C7FD3D8C2572CADB	F508F5771E1D44C1B018F9B76C0059BFAF661CFB	CB9FB4000086474F84DCAE9A54DD2862D09878BC505F1D4B5525755A5723ECA9
Chrome Cache Entry: 131	ASCII text	DDF434E8B80140CB2311A70B41F4D9C5	CF592F46714B9FBEF8D496C6CA06B4E927A338A8	134D30ED9C825909DD32AF40D469AAAFEDFE1B17447ABEE0ED6C43C7254D2A48
Chrome Cache Entry: 132	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	835880C74B2B75B4B6F5F0AF0115438C	3CBB7C955C08CCBD8E4E0A2031BF8DAA0754AAFB	8C8D2BDA4F39810C8650A74CECE803FF55B40BD234F9CA35068B6155E0BC7555
Chrome Cache Entry: 133	SVG Scalable Vector Graphics image	BAD1DA8EB746A35ABD5D48180294F576	D27075688242F7FCC1B38BADDBC89216D74C4666	C46A9FAD206EC1A784AE30860410F220391F66D2DF7434F65B543CD0B5214992
Chrome Cache Entry: 134	PNG image data, 400 x 400, 8-bit colormap, non-interlaced	2F4519D141B419D2EA2D84733E239DF9	949A1C6374C29393D8DAA38D8E088B17FE424C34	FA08EB032FB36D99C00997010B2824413B29D48F5BE1CA99818AC044A11B38A0
Chrome Cache Entry: 135	Web Open Font Format (Version 2), TrueType, length 15744, version 1.0	15D9F621C3BD1599F0169DCF0BD5E63E	7CA9C5967F3BB8BFFEAB24B639B49C1E7D03FA52	F6734F8177112C0839B961F96D813FCB189D81B60E96C33278C1983B6F419615
Chrome Cache Entry: 136	PNG image data, 698 x 660, 8-bit colormap, non-interlaced	C0027AEC64A3A808BF4E2EA4EEEE174C	97875F20DA164D85CAD7B77CBFB2689BD11679F7	040CD47F0E6EA374084B42E75AEBE5B3C23C7FD79FA28A653A256C1FFDF325F7
Chrome Cache Entry: 137	SVG Scalable Vector Graphics image	2790C8A767B5E309FD89A6C11DF48C71	53217C1A0EF8CEE662C04E9ED8899B25D90440EE	5E7586D8F002038A13AC9D6B41CD7E3E3FF98807884734965EBCD8FF4248F306
Chrome Cache Entry: 138	PNG image data, 400 x 400, 8-bit colormap, non-interlaced	19A87FE7056A924B02AAA01797E43D51	D75B6EDA5DAB517A82E617C86FA87D86AB50DB74	0BC240B839BD60D6C8BE47C7E8E060238289D3EAA2C073FEC2813AB579590DA6
Chrome Cache Entry: 139	SVG Scalable Vector Graphics image	C7F33CFB4530CD6C9A3B7663A8C6DF1B	6E7389C0F650F766229D0798D4AA7F8F86D2CB53	55EAA0A5C68912A678CE46774876110BA3B93929B5C51B186D5F408D8A9AD442
Chrome Cache Entry: 140	SVG Scalable Vector Graphics image	0975A9DAAAFC87973B0D00AA6C899BBB	261139747498B294DCD4B3F8F98560889DEE58C1	1A7B9039213202BB8FD14BDF6858DB3A973416DE0DABA8F4DC26873760CB292B
Chrome Cache Entry: 141	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3	F1C8E6F2F808487DFC6F6662DF38FD38	D3B6F1C2F316919BC692A07F2AFDB6D11790D414	3F3C36D59127E20A50159E2EE4F2601EF5AE64A3F5D6889D8B9432020DC5E9E8
Chrome Cache Entry: 142	PNG image data, 400 x 400, 8-bit colormap, non-interlaced	759E449A781EF4E4D5D42EE111F04C94	5A84BB19C7A4B4D117B1DB145A40639BD8A536B1	E45A166627C8634E983157B6EBB7BA7DE633DFD636ED306BFBC3B3EF7429DF36
Chrome Cache Entry: 143	ASCII text, with very long lines (18875)	7D8348176A8BB75544030D3F2BE92D49	03D81CE4B033DD99566148C33F77B56FA37E2135	89E11BAEE7D5CF5645EC30F3B92208F4497867D4CAB79823180D9BE9021B79D9
Chrome Cache Entry: 144	RIFF (little-endian) data, Web/P image	2C5BE8F0D595A9248EDBA92D0419C9A7	422F1CA635998F8CDAEEC9E7B37E200D0D5842EA	9584C8DA5E38495A93FA58ED0EFE855FD33A41AA972BCD33AD1D867828964517
Chrome Cache Entry: 145	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	0D05F17BFB2061B8DADA721FA087484C	B85418851E7860C8DB18159614F94700D4FB4D3C	BC0C74AE01EB29917FF48738263E3C9C0F6E5EDFBCF3E31281EFBCE8F074311C
Chrome Cache Entry: 146	PNG image data, 440 x 501, 8-bit colormap, non-interlaced	10952D2E5ED6CCC013B5CBC603026BBE	F0626FFFD99DC4C5F80ED3641597C13BA99B6B4B	8D67BDFF551B1CC1A024D581EE336DD500158E7ABDF25C716A2073BC759CF9FC
Chrome Cache Entry: 147	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	FC47577F72C6AC1B3644FD3C93C35434	7FA10148EB871D0CA72A79A89AE480A44AF8014B	A96683AF833D7E9409BEA1D240842F89A6117C323FF048B484A23FEA13CCB61E
Chrome Cache Entry: 148	RIFF (little-endian) data, Web/P image	86038EA2A6791CD11113D470547E7972	E63B83A887D6E623949838662B4BC3C4F93FDE94	08C2EDC5A337A9567C3F3AAA1633D55CBCFB18A2E244F69426C4A408C24B56C0
Chrome Cache Entry: 149	SVG Scalable Vector Graphics image	3644708AC9339136C7B31A8B2D81896C	442344D2880DC669FC85B220922CF8D714CB4DAA	E8AC5E7F37F84F086FBF00A3118931D14E0D6EFED3EA283549D5AF1FA42320A5
Chrome Cache Entry: 150	JSON data	662EFDE8C675D1052DAD201D92E01267	8790CB59A7F2599D74A7D6987215D2A1DE00654F	41C283B8C2B4190E2522AAFB6B239F8F5F017733312951552DD1A5647B9854EA
Chrome Cache Entry: 151	SVG Scalable Vector Graphics image	866709016DBB02B301A7E35D1053980E	68CA5C21C55B047CDFA283CADC90F2C8EFE2BDA9	C49C5BCA60E1BB518176F27A6DE9EA4AB800FB784425B85A8CF55E07DB35752F
Chrome Cache Entry: 152	SVG Scalable Vector Graphics image	2655F93AFB8FFED6F5E647FB3A601F4F	FDD09BBC32DA75A59433AE3CA397571EDA695B7A	489AC3AA1929DE91B9F1D7CF3F8C451CB677A308FFEC827B002A4D58F145917E
Chrome Cache Entry: 153	PNG image data, 400 x 400, 8-bit colormap, non-interlaced	DB5D7F03841381501845DD7B137026D4	496E8B5515281271948A23C7F1AF0CF193A2A109	BD78263887DB876F2E0415C83D766201C85D2F0B5EDD33D6151950433C3924CF
Chrome Cache Entry: 154	ASCII text, with very long lines (65536), with no line terminators	C585B993054E4AB92B9244CA6B741B0C	1D26385B45ED5AA536EBDFD4DE0A1485EC5F14EF	E86CEBE1229775F466E66B2C6BB3FEFF312D4C29A07AE02D130242B0C644AD19
Chrome Cache Entry: 155	PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced	EB10FE924875D72C7BDF59668E2EF25A	63D5F23E126D4E3360E070BB8FE43FD8927AEC3B	1899010A096BFF4DC2316639A20E08EECC42390CEB6667A433C89AC48C0E6D60
Chrome Cache Entry: 156	Java source, ASCII text, with very long lines (5528)	D5FECD8BA379AEF97C0D6577E0F2877E	9D848D095DA47298750139943BF622CFDA4CCBD0	06166B633BC09582C2E65CBDDBAE261959485B96C97C94BAB75CCF22C8216FF1
Chrome Cache Entry: 157	SVG Scalable Vector Graphics image	866709016DBB02B301A7E35D1053980E	68CA5C21C55B047CDFA283CADC90F2C8EFE2BDA9	C49C5BCA60E1BB518176F27A6DE9EA4AB800FB784425B85A8CF55E07DB35752F
Chrome Cache Entry: 158	PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced	9E2FE1725159417399C04F2EA3658D1F	C145613AA5BF34CB95EB1983B59139BC5562DAE0	DDCBBCC792E94DDB66F6CEBF40539C97FA43E3B343FDF6E98F2662073E4718E2
Chrome Cache Entry: 159	RIFF (little-endian) data, Web/P image	9DED54DD379A21FFC1CE16ABCE38201B	D46812A532E8FC7048017748DAB1424E76E8A354	942CD060CA15C28B6C891DEBFA95B83A10CA1DAC7EFD7503C876FB9CBCDEDB26
Chrome Cache Entry: 160	JSON data	99E328E2C3872EA8EDFD65B9BF1C3EB9	85E994B60B3ED97E375B62AB77337899964431CC	52A03E09C83A860767AEB399620F7F26E5004635596C8BB589DDF5BBC6E323BC
Chrome Cache Entry: 161	RIFF (little-endian) data, Web/P image	342152B7FDCB21B38FB77D6B55DAB77B	C98E9CC318EEF9DBE98DF17FE6C3AFC699DBEE33	A1962F56716C3FC8E93E593DD611F7B45A8632BACF8DF45B56F9DCC5B3C10958
Chrome Cache Entry: 162	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	EF096787734C20292B4716153B5FF1F2	F2BAF10DB0E6638EC674E5F58965EFFFE5028978	518E46638E983E3545E1433BA06C2F7B4E874EED7802C809CACA237245D1864C
Chrome Cache Entry: 163	ASCII text, with very long lines (30984)	F32D774C4E65C2CAC328D7757C3D6593	569303988803333C963252244985D6C9A3AD8437	D34CA4F2119F427FF0B01CDDB7C7F154EE76C1E019E90046D1E10FBEAA80DC5B
Chrome Cache Entry: 164	SVG Scalable Vector Graphics image	60FB97B161C553F815804E85F512BCC4	2B434C3E9F2AD14B358A8282A7200473EC649C1C	8F6B6E77BC489496C10DF1FB766E33D38BA8DFEE340ED19A3C4F3E86AF1340B0
Chrome Cache Entry: 165	RIFF (little-endian) data, Web/P image	2052EA08B332C87388DC42097624CB20	8B82E1E2DD5A482AE90433C763B268B99F6CF093	11A824E4C63932EC7C2684C8C9554C84461EFB5D731D15387D77BB5C3E78F9D5
Chrome Cache Entry: 166	PNG image data, 100 x 91, 8-bit/color RGBA, non-interlaced	EBA4DB1DF0438F50647C351444321C71	CC18E22976DE83512DEA6045B487721D82B9A18B	78C64E85D8EB78E9F69AE845D900741CD95C6F24169A16088FC0259D7CC317C8
Chrome Cache Entry: 167	PNG image data, 313 x 425, 8-bit colormap, non-interlaced	5A0C5F919C65ACABFE01D3B46F089B16	B0F22490C34CA70BF4DA4EA8E03AB039D3F0945C	ACFC85904CB2E34EAA6E82B8D5EC7AAC4FBFEC46914E52BDE7DD9483C3DA8A83
Chrome Cache Entry: 168	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	D0BFD7EEFC33F692B10B2D342A0F715F	79165067305A206B1713BE7DC0D6DCF915153DEA	DBC925830CBE966BAD72C492EE6B7A591EF8E54C00E9FBC95FA729B27415F2F8
Chrome Cache Entry: 169	PNG image data, 839 x 492, 8-bit/color RGBA, non-interlaced	C1E0524D67D047BDADBA4616E8641922	0BE0F679B80B386F30D673BE6AE554923039D1D2	C9E0707F53EF1F5E371EA8D4C5CA352EAEB6D96AA2CA7549273F7102EDD94EFB
Chrome Cache Entry: 170	SVG Scalable Vector Graphics image	202E2670FDE1C72BAE9C6B26CFD3253E	E125EEE7F083BE4D9271110F643421B377225CE0	BF690130D23FDDCA07A42F9D638B21060C69F25642487B45F59A1A53879D24D2
Chrome Cache Entry: 171	JSON data	787179982BF3301D1F455F05F88320FD	7C24A0F6BAAEB6D7B6B632B4ECD7BCD0F913F5F5	E040F1F7061ABC1CDD531EF24F1BDEAD6FD7FB07F2602CB849C3F806075F550E
Chrome Cache Entry: 172	ASCII text	2EF03BCB0E3FC17CD0495535EDE5EC05	47A79D39924E8B5D3636B0B49FA55B31344215C2	36552B78B845B34F90819979168D30A5BC511FC5D31E618233924FB6708EE991
Chrome Cache Entry: 173	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	7CD3960A5002EC8FFD672267DBD184CF	9C353D573E5F9CB57DF4068CED24B2455B6F3DDD	1562ED280E5486999BFA41E9EDDF46996B078B54E14FFF9748B427C793BC6969
Chrome Cache Entry: 174	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	D5DB513E51A1EDA85E0E624B1A8061E0	0F949A2454B2BF9A44F36C8DCE934DE76BF24E20	48B3F99F45C1036F3B19652590BF542F1DBAADA7B53FB37B282318CF3DE502DD
Chrome Cache Entry: 175	ASCII text, with very long lines (43040)	CA1104DE538CAEA2D54265FBE90916B4	D6C416E5D153F500F7AC66D25A2B73DB45867AD4	10D78C0A5E8664889DC8EB47C72BFA46AD0ED02C70A234BE9ACDEFA27DBB24B0
Chrome Cache Entry: 176	ASCII text, with very long lines (18792)	16C51F6CBE139456D641D1E55F15EEAD	57A78CA5FBDB4D1FEF812C372B3B3B04AC5F28A9	254A00BCA6CBCCA54D0D5EEEF06E6779AEBA74D81E9328515C2C419026D286F0
Chrome Cache Entry: 177	JPEG image data, baseline, precision 8, 400x400, components 3	0E90098FAF314C47A708D28660B63D14	0028D365567813E6BB41DF3F7AAA6287D85D5A0C	5D4F1859F8226283DD3E4724DD8AF525201ADBD9798C3280C427884DA1398D40
Chrome Cache Entry: 178	SVG Scalable Vector Graphics image	7B2DB4FEED32169CC3D111B53498500E	85EB7EEE514B9E5CC9BE491BFC29CB392C59DE03	7FB1E1E3A2720C7B3ECF6B4CBDF4E486BCAFA58E980447AE9170CCCE72A0CDA7
Chrome Cache Entry: 179	SVG Scalable Vector Graphics image	99E7E10CCE2206D739D3609D723A273F	CBEBF30D89977ED02158A6F7EF03BE336F847F7E	A3FF21DCDF2A582DEBF7A09D60C1EECE71B4029278E8EC63A30816F2EA2C2087
Chrome Cache Entry: 180	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3	C17DA2C85AF25E980D07A40D07FC2C4D	75D60CBE59A860CB5D859313E407ADD975B25A8F	F569D41A67A7EFA6CBA8EA20333D4583CA0C99EA46E896DCF46489AC209FD2C9
Chrome Cache Entry: 181	PNG image data, 400 x 508, 8-bit colormap, non-interlaced	828D340DD278F5C2F1348ED9A785BFCB	9229FA5132C3F25955CB6C9F0A9A3620E024EC21	2D089239BB74064DFCCDAC0EE6A6D28C9AE8C22797BFFC0608FCD383AE4C16EC
Chrome Cache Entry: 182	PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced	DBC89B547DE36FFD60B769CB733B4A76	CD0ADCDD29743F17E5F1788C1ECE7CDCE1C2615C	A6A05B1116842A9A6E43ED6F1A7D2351B52309489C9BDFFEE22C756A506F8AEA
Chrome Cache Entry: 183	SVG Scalable Vector Graphics image	C7F33CFB4530CD6C9A3B7663A8C6DF1B	6E7389C0F650F766229D0798D4AA7F8F86D2CB53	55EAA0A5C68912A678CE46774876110BA3B93929B5C51B186D5F408D8A9AD442
Chrome Cache Entry: 184	PNG image data, 811 x 792, 8-bit colormap, non-interlaced	1B01A88A200D5268AE7AA68E1650A51E	6026C34D7AC56378DA868948AADFCF575BC5FC57	72E5E03686A67984158304A5888446A14B3519E237CBB6BAAB62B64540BD943A
Chrome Cache Entry: 185	PNG image data, 456 x 456, 8-bit/color RGBA, non-interlaced	8E501D0C309DF7C12971C7FD7AC0EC8D	DAFAE268B3ECDE3A1148E7725A1C2D91740AF3BC	58C774C80962AF0F3E612E9DCF865A81A21C0377BED0B188158191A297C89E74
Chrome Cache Entry: 186	ASCII text	6FECDA30A359603DCC3D3CF3B7028749	0CC2A3E532D445323028611087DCE6C5FB5A6AD6	453E1303E4B318F6D3BDBB546901D68412355084C54B11D37D235D184AD8E862
Chrome Cache Entry: 187	JSON data	11EDC39BD0A8A20E2A0335239CBAF79D	C931574FF85AE94048335A1908C43385D1CD8B8A	C678E79C70E8211892DB49CC6E31E9D9AB8B04685A79B418F3B4E95ED015991E
Chrome Cache Entry: 188	SVG Scalable Vector Graphics image	99E7E10CCE2206D739D3609D723A273F	CBEBF30D89977ED02158A6F7EF03BE336F847F7E	A3FF21DCDF2A582DEBF7A09D60C1EECE71B4029278E8EC63A30816F2EA2C2087
Chrome Cache Entry: 189	PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced	9E2FE1725159417399C04F2EA3658D1F	C145613AA5BF34CB95EB1983B59139BC5562DAE0	DDCBBCC792E94DDB66F6CEBF40539C97FA43E3B343FDF6E98F2662073E4718E2
Chrome Cache Entry: 190	PNG image data, 400 x 400, 8-bit colormap, non-interlaced	967AB5127AFC603A2AC801870D4A7B69	1CB12158E9DF39D80AB0AE1D7937CD810638C753	3C6B364FD65401467660BBB716B74E9D1F7836393D3EB45DCEA60AB44F0633E6
Chrome Cache Entry: 191	ASCII text	8845AA4529AA1E6CF0AC4DDD4A2C332F	C280F54EBFA0C6FD22CA33095F6DD79FF0AA1081	C61E8DADA86C849BA4A0D789B2AFB7870576074C59F9194312AF9F4D21B0162B
Chrome Cache Entry: 192	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	2FD7BDB651262F0E8439B194BEBF3F3B	6C2DE356038454FAD0BEDA4DC5C751AB9BC355F9	006917C52F9E351C112FE69FE57E7D58B37FD81168C356FCE1130C846B66F0CA
Chrome Cache Entry: 193	PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced	0FE1A86886C7C394199B8B58145F20C3	1DEA3B826E2829AB54BDE49D3B9CE947600DD306	94C483ACF53B74681C65069888B9128DE9CD069E6D90A2A8B04FBD17C185A6FB
Chrome Cache Entry: 194	PNG image data, 100 x 91, 8-bit/color RGBA, non-interlaced	EBA4DB1DF0438F50647C351444321C71	CC18E22976DE83512DEA6045B487721D82B9A18B	78C64E85D8EB78E9F69AE845D900741CD95C6F24169A16088FC0259D7CC317C8
Chrome Cache Entry: 195	SVG Scalable Vector Graphics image	202E2670FDE1C72BAE9C6B26CFD3253E	E125EEE7F083BE4D9271110F643421B377225CE0	BF690130D23FDDCA07A42F9D638B21060C69F25642487B45F59A1A53879D24D2
Chrome Cache Entry: 196	RIFF (little-endian) data, Web/P image	D62BFD6A0D4E300D8E50B60FBE10EAB0	251DE0BD2DBA5194B0DC337E371B017F673D2B40	9407C0251BD7B695A38698D04BBB15514ED472E11797AEF7793B9ACB2B04FCFF
Chrome Cache Entry: 197	SVG Scalable Vector Graphics image	36A813830C8171C0C66AC0FE9E399F4D	C1121DD160C139E5A27A22395D856124B8719203	132026D0A352D724096C41761BA8C10DC1FFA2778ACB5E41B3DD909D2596B05D
Chrome Cache Entry: 198	RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp	642979B6270BDD1654919F26F8B4BD3A	36A7B276EBF210EFD1B7EEDF74E44AB82609A75A	AE5288E2522736D9905E4BE3C6F961A43EFDCCA4E15A4F2566E36505CE519165
Chrome Cache Entry: 199	PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced	0FE1A86886C7C394199B8B58145F20C3	1DEA3B826E2829AB54BDE49D3B9CE947600DD306	94C483ACF53B74681C65069888B9128DE9CD069E6D90A2A8B04FBD17C185A6FB
Chrome Cache Entry: 200	SVG Scalable Vector Graphics image	5EC516932D34FB1F63356BBCC41DF431	0FE484EFC45E7775CF27FAE98BDCBCC53CA59F03	EE1B779CA129ECFCC42E87AA59687AECFE0DD87FC05354101F60C8EC1E3DB897
Chrome Cache Entry: 201	HTML document, ASCII text, with very long lines (9582)	5C84037F2227311D005D824F6A0E7858	82F75FF29798648FE8D1BF15F9B3BFC6F40D297F	0E2E335DED559A2A12AAC50DFE3CE23C25D175C89AD3B50792B525B71380836F
Chrome Cache Entry: 202	SVG Scalable Vector Graphics image	BAD1DA8EB746A35ABD5D48180294F576	D27075688242F7FCC1B38BADDBC89216D74C4666	C46A9FAD206EC1A784AE30860410F220391F66D2DF7434F65B543CD0B5214992
Chrome Cache Entry: 203	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3	B500A85B680447FD917D81803A934889	93F887E51F1D32C09E31219609BC7E1DF9AB0DBC	72AD715BA0A922D41BB9553579F08A6D05E88AE39FE83DFD8D7C348601F6BB69
Chrome Cache Entry: 204	SVG Scalable Vector Graphics image	2790C8A767B5E309FD89A6C11DF48C71	53217C1A0EF8CEE662C04E9ED8899B25D90440EE	5E7586D8F002038A13AC9D6B41CD7E3E3FF98807884734965EBCD8FF4248F306
Chrome Cache Entry: 205	PNG image data, 811 x 792, 8-bit colormap, non-interlaced	1B01A88A200D5268AE7AA68E1650A51E	6026C34D7AC56378DA868948AADFCF575BC5FC57	72E5E03686A67984158304A5888446A14B3519E237CBB6BAAB62B64540BD943A
Chrome Cache Entry: 206	ASCII text, with very long lines (23850)	D849077E8B4CC93DD5C925165F2CDED4	496B8E753292CC78D4964D94EEE5C250D53CA13A	EE3512F8C59EAA415D996F68CE467B98F6A0CFE42631BB0196DF90DCCB04F855
Chrome Cache Entry: 207	SVG Scalable Vector Graphics image	2655F93AFB8FFED6F5E647FB3A601F4F	FDD09BBC32DA75A59433AE3CA397571EDA695B7A	489AC3AA1929DE91B9F1D7CF3F8C451CB677A308FFEC827B002A4D58F145917E
Chrome Cache Entry: 208	JSON data	662EFDE8C675D1052DAD201D92E01267	8790CB59A7F2599D74A7D6987215D2A1DE00654F	41C283B8C2B4190E2522AAFB6B239F8F5F017733312951552DD1A5647B9854EA
Chrome Cache Entry: 209	PNG image data, 440 x 501, 8-bit colormap, non-interlaced	10952D2E5ED6CCC013B5CBC603026BBE	F0626FFFD99DC4C5F80ED3641597C13BA99B6B4B	8D67BDFF551B1CC1A024D581EE336DD500158E7ABDF25C716A2073BC759CF9FC
Chrome Cache Entry: 210	ASCII text, with very long lines (65536), with no line terminators	71F8C498E792C6179D4E2840228F777A	B651545587F6257345DC3DE9DDAA444B10DEDF3E	A66293A6A2BB4DEE061A68612BE0BE3C5C0AB7E4068AB8D98A4A357BAF664C73
Chrome Cache Entry: 211	Web Open Font Format (Version 2), TrueType, length 46704, version 1.0	30A274CD01B6EEB0B082C918B0697F1E	393311BDE26B99A4AD935FA55BAD1DCE7994388B	88DF0B5A7BC397DBC13A26BB8B3742CC62CD1C9B0DDED57DA7832416D6F52F42
Chrome Cache Entry: 212	SVG Scalable Vector Graphics image	D7E4A197E620DD5B4E2E0BF75E916E3A	9D7384F24F5E27A45A9354F37F1C61595F8998AB	50F3339D8000E3F78F1934B0CD03F07516C5A25F575115FF004A4637F91F8143
Chrome Cache Entry: 213	HTML document, Unicode text, UTF-8 text, with very long lines (3120), with CRLF, LF line terminators	C95296382A13A6B18F427C2F5FF15218	5AF73429CA844B218CC67113D15BBE428A1217A4	45003D6B6985ADE770B64F026D371E91670C8D536FFF9BAB7398D1201DE8B1FC
Chrome Cache Entry: 214	SVG Scalable Vector Graphics image	36A813830C8171C0C66AC0FE9E399F4D	C1121DD160C139E5A27A22395D856124B8719203	132026D0A352D724096C41761BA8C10DC1FFA2778ACB5E41B3DD909D2596B05D
Chrome Cache Entry: 215	PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced	DBC89B547DE36FFD60B769CB733B4A76	CD0ADCDD29743F17E5F1788C1ECE7CDCE1C2615C	A6A05B1116842A9A6E43ED6F1A7D2351B52309489C9BDFFEE22C756A506F8AEA
Chrome Cache Entry: 216	PNG image data, 400 x 400, 8-bit colormap, non-interlaced	BED53CC690B4017AE8797A8F89042D13	F398B79E0F713A7D203FC4A7355D119AE5CED24D	0855768C706372A680B57CB2708609FD7EEC55B00D9FC61AEB370ACB54B6AAE3
Chrome Cache Entry: 217	SVG Scalable Vector Graphics image	BC93E31C84F15E5E0C8E24DA0A358689	E8DCE7C15A7E8EE2FC343685530B562AF045C06C	1483F1D6012E43B6CB304745E93CAB50AB460516E9EC36C517DAF53E386927A2
Chrome Cache Entry: 218	SVG Scalable Vector Graphics image	D7E4A197E620DD5B4E2E0BF75E916E3A	9D7384F24F5E27A45A9354F37F1C61595F8998AB	50F3339D8000E3F78F1934B0CD03F07516C5A25F575115FF004A4637F91F8143
Chrome Cache Entry: 219	SVG Scalable Vector Graphics image	60FB97B161C553F815804E85F512BCC4	2B434C3E9F2AD14B358A8282A7200473EC649C1C	8F6B6E77BC489496C10DF1FB766E33D38BA8DFEE340ED19A3C4F3E86AF1340B0
Chrome Cache Entry: 220	ASCII text, with very long lines (624)	6DD6E8BC5FC97DCFBCBE3506A9A1ED32	E37D090CAD52FCF9E8851F00CDC123FEB23C960A	788A9AF9D28E85A35369607BE6251C338A74A8256810FCEEF503CBE233A60E8E
Chrome Cache Entry: 221	SVG Scalable Vector Graphics image	11EB422DA8CBB67C271255C35C98F569	C7E9F39DC6684A0CFC27DACFF11DB7A579035275	F17BA1E630AB305B19A13B84E5EF824189E777489F9A97E2EDF8EB7CCE648E1E
Chrome Cache Entry: 222	PNG image data, 200 x 181, 8-bit/color RGBA, non-interlaced	C8B2D8B2466C92F55309DE7BFF5BE02F	259869E827B024D42AD24BFFF4E603FD508A176A	C1803FB77D86926FF2502D1BE6CE4EAAEF127777E24A2062931338218D471ABF
Chrome Cache Entry: 223	PNG image data, 400 x 400, 8-bit colormap, non-interlaced	B02008A08A3CC47ABDAF03561CC58CC9	CCE13F136F86D3D004BA93E0E437DDB6C7CD2924	4D9B9747336BE2AE9D8810754E62DC401C6D30E5688311CE12FAC762EAF95585
Chrome Cache Entry: 224	RIFF (little-endian) data, Web/P image	9DED54DD379A21FFC1CE16ABCE38201B	D46812A532E8FC7048017748DAB1424E76E8A354	942CD060CA15C28B6C891DEBFA95B83A10CA1DAC7EFD7503C876FB9CBCDEDB26
Chrome Cache Entry: 99	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3	9D87CA8FB906D9445403618C837DC59B	4051BC4DC7EF8EAB6FC059DE448A03AE2FF9AFE4	A17FC9392E5942BF3F07CD480D4DF9683FAABCD7A7B4BF4EBC6CED03D14BE147

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://origines-decoration.com/

Avira URL Cloud: detection malicious, Label: malware

Antivirus detection for URL or domain

Source: https://origines-decoration.com/telegram.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/build.css	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/chart_mobile.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/bscscan.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/dextools.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/about2.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/lbank.svg	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/banner-bg.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/encryption.js	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/krabby_patty.ttf	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/token-img.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/bitget.svg	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/twitter.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/about1.png	Avira URL Cloud: Label: malware
Source: https://origines-decoration.com/roadmap-bg.svg	Avira URL Cloud: Label: malware

Phishing

AI detected suspicious javascript

Source: https://origines-decoration.com/

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49847 version: TLS 1.0

Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.5:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.5:49737 version: TLS 1.2

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49847 version: TLS 1.0

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /build.css HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /ajax/libs/ethers/5.7.2/ethers.umd.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web3-ethers.js HTTP/1.1Host: cdndelivery.pages.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/web3/4.0.3/web3.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /encryption.js HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /logo.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /burger-menu.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /banner.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /krabby_patty.ttf HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://origines-decoration.com/build.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /banner-bg.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/build.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /about1.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /gate.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /@web3modal/ethereum@2.6.2 HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://cdndelivery.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /poloniex.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /mexc.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /burger-menu.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /logo.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /banner.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /@web3modal/ethereum@2.6.2/dist/cdn/bundle.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://cdndelivery.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /about2.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /lbank.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /button_bg.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/build.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /coinw.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /btcex.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /@web3modal/ethereum@2.6.2/dist/cdn/bundle-fdcfd0d2.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bitget.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /about1.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /banner-bg.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /gate.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /poloniex.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /mexc.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /twitter.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /telegram.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /bscscan.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /dextools.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /button_bg.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /about2.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /coinw.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /@web3modal/html@2.6.2 HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://cdndelivery.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /btcex.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /pancake.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /binance.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /bitget.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /lbank.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /data/pricemulti?fsyms=ETH,BNB,BTC,MATIC,AVAX,ARB,FTM,OP,ETC,CRO,XDAI,HT,OAS,KCS,PLS,METIS,GLMR,ZETA,MOVR,KAVA,BRISE,CELO,ONE&tsyms=USD HTTP/1.1Host: min-api.cryptocompare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://origines-decoration.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@web3modal/html@2.6.2/dist/cdn/bundle.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://cdndelivery.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /check.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /bscscan.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /telegram.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /dextools.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /token-img.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /twitter.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /binance.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /pancake.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /chart_mobile.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /desc.png HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /roadmap-bg.svg HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/build.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /data/pricemulti?fsyms=ETH,BNB,BTC,MATIC,AVAX,ARB,FTM,OP,ETC,CRO,XDAI,HT,OAS,KCS,PLS,METIS,GLMR,ZETA,MOVR,KAVA,BRISE,CELO,ONE&tsyms=USD HTTP/1.1Host: min-api.cryptocompare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@web3modal/html@2.6.2/dist/cdn/bundle-b8834a0a.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://unpkg.com/@web3modal/html@2.6.2/dist/cdn/bundle.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /check.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /roadmap-bg.svg HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /token-img.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /desc.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: origines-decoration.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /chart_mobile.png HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /@web3modal/ethereum@2.6.2/dist/cdn/index.es-6c0412fa.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle-fdcfd0d2.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@web3modal/html@2.6.2/dist/cdn/index-2bf8a5a6.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://unpkg.com/@web3modal/html@2.6.2/dist/cdn/bundle-b8834a0a.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/5c24b245-2043-4ce6-34e8-acb63e391500/public HTTP/1.1Host: imagedelivery.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/305e70d7-466a-42ac-e30a-342bc0209300/public HTTP/1.1Host: imagedelivery.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/b7515360-15e5-4504-23b1-598b1f543e00/public HTTP/1.1Host: imagedelivery.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/c9c5f293-9ffc-4ee4-3523-1b575a4ee400/public HTTP/1.1Host: imagedelivery.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/52fa0a79-6569-4f04-4dad-fc8fb9108e00/public HTTP/1.1Host: imagedelivery.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@web3modal/ethereum@2.6.2/dist/cdn/__polyfill-node.events-d7c247dc.js HTTP/1.1Host: unpkg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://origines-decoration.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/index.es-6c0412fa.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getDesktopListings?projectId=96550cd81d39cf2dc9bfcba9d44b02a7&page=1&entries=9&version=2 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://origines-decoration.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getInjectedListings?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://origines-decoration.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/5c24b245-2043-4ce6-34e8-acb63e391500/public HTTP/1.1Host: imagedelivery.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/305e70d7-466a-42ac-e30a-342bc0209300/public HTTP/1.1Host: imagedelivery.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: covalent.pageConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/c9c5f293-9ffc-4ee4-3523-1b575a4ee400/public HTTP/1.1Host: imagedelivery.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/52fa0a79-6569-4f04-4dad-fc8fb9108e00/public HTTP/1.1Host: imagedelivery.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: origines-decoration.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __ddg1_=Y7Q6gIrFXqYipHOYrTpz
Source: global traffic	HTTP traffic detected: GET /2uud-v-gVdhcDOuqR3_miw/b7515360-15e5-4504-23b1-598b1f543e00/public HTTP/1.1Host: imagedelivery.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWtnbU1RYjc2aEI0Y3BKMWk1WVBnQVFoeVY0UXB6eE42cjdmVkY1ZVkyVzFoTCIsInN1YiI6IjM1Mjg1ZmI4NGNjODE2NmE4ODI0OGQ0ZDkzODAzNGIzODhhZTQyOTMyZjk1ZTE2MDUyZjIzNGRlZjY0ODczZjMiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxNjc2NDA4MiwiZXhwIjoxNzE2ODUwNDgyfQ.okWAGrURIvEyJN2azisd8XqQfruHRysgROjgvROzG0DIZKoIsQPSWKydHMz5C8RYU2S2e7Qvl3DSXoxji_SOBw&projectId=96550cd81d39cf2dc9bfcba9d44b02a7&ua=wc-2%2Fjs-2.8.4%2Fwindows10-chrome-117.0.0%2Fbrowser%3Aorigines-decoration.com&useOnCloseEvent=true HTTP/1.1Host: relay.walletconnect.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://origines-decoration.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: DbEugvxOwJuC33EL75TZ0A==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/692ed6ba-e569-459a-556a-776476829e00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/ab9c186a-c52f-464b-2906-ca59d760a400?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/93564157-2e8e-4ce7-81df-b264dbee9b00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/06b26297-fe0c-4733-5d6b-ffa5498aac00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/600a9a04-c1b9-42ca-6785-9b4b6ff85200?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getDesktopListings?projectId=96550cd81d39cf2dc9bfcba9d44b02a7&page=1&entries=9&version=2 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getInjectedListings?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/30c46e53-e989-45fb-4549-be3bd4eb3b00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/73f6f52f-7862-49e7-bb85-ba93ab72cc00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/a7f416de-aa03-4c5e-3280-ab49269aef00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/7e1514ba-932d-415d-1bdb-bccb6c2cbc00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/c39b3a16-1a38-4588-f089-cb7aeb584700?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/ab9c186a-c52f-464b-2906-ca59d760a400?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/9f259366-0bcd-4817-0af9-f78773e41900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/692ed6ba-e569-459a-556a-776476829e00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/600a9a04-c1b9-42ca-6785-9b4b6ff85200?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/93564157-2e8e-4ce7-81df-b264dbee9b00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/06b26297-fe0c-4733-5d6b-ffa5498aac00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/204b2240-5ce4-4996-6ec4-f06a22726900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/b6ee4efc-f53e-475b-927b-a7ded6211700?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/fbd441cc-e861-46dc-48ae-a04228ddb500?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/7fd5a23a-3a01-4cfb-3c8b-9f43ae414400?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://origines-decoration.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/73f6f52f-7862-49e7-bb85-ba93ab72cc00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/7e1514ba-932d-415d-1bdb-bccb6c2cbc00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/a7f416de-aa03-4c5e-3280-ab49269aef00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/c39b3a16-1a38-4588-f089-cb7aeb584700?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/9f259366-0bcd-4817-0af9-f78773e41900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getAssetImage/30c46e53-e989-45fb-4549-be3bd4eb3b00?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/b6ee4efc-f53e-475b-927b-a7ded6211700?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/204b2240-5ce4-4996-6ec4-f06a22726900?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/fbd441cc-e861-46dc-48ae-a04228ddb500?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ
Source: global traffic	HTTP traffic detected: GET /w3m/v1/getWalletImage/7fd5a23a-3a01-4cfb-3c8b-9f43ae414400?projectId=96550cd81d39cf2dc9bfcba9d44b02a7 HTTP/1.1Host: explorer-api.walletconnect.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1IXbKQDStIiIpWwJ23v8FwdLy7ONJnWqGwM9yUc6Eoc-1716764084-1.0.1.1-9EaNlw1TDfp7XI_9C_n9Y6oMzOAwVSBf7xEirRnGBPCvCoXsfUizAwLM3sICVGze0gXPivImka.9sX0VV5dehQ

Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://twitter.com/FBI"><svg xmlns="http://www.w3.org/2000/svg" height="20" width="20" version="1.1" viewbox="0 0 16 16" aria-labelledby="title" role="img"> equals www.twitter.com (Twitter)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.facebook.com/FBI"> equals www.facebook.com (Facebook)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.facebook.com/FBI"><svg xmlns="http://www.w3.org/2000/svg" height="20" width="20" version="1.1" viewbox="0 0 16 16" aria-labelledby="title" role="img"> equals www.facebook.com (Facebook)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/fbi"> equals www.linkedin.com (Linkedin)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/fbi"><svg xmlns="http://www.w3.org/2000/svg" height="20" width="20" version="1.1" viewbox="0 0 16 16" aria-labelledby="title" role="img"> equals www.linkedin.com (Linkedin)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.youtube.com/user/fbi"> equals www.youtube.com (Youtube)
Source: chromecache_201.2.dr	String found in binary or memory: <a href="https://www.youtube.com/user/fbi"><svg xmlns="http://www.w3.org/2000/svg" height="20" width="20" version="1.1" viewbox="0 0 16 16" aria-labelledby="title" role="img"> equals www.youtube.com (Youtube)
Source: chromecache_201.2.dr	String found in binary or memory: <meta content="https://www.facebook.com/FBI" property="og:article:publisher"> equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: origines-decoration.com
Source: global traffic	DNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdndelivery.pages.dev
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: unpkg.com
Source: global traffic	DNS traffic detected: DNS query: min-api.cryptocompare.com
Source: global traffic	DNS traffic detected: DNS query: covalent.page
Source: global traffic	DNS traffic detected: DNS query: imagedelivery.net
Source: global traffic	DNS traffic detected: DNS query: explorer-api.walletconnect.com
Source: global traffic	DNS traffic detected: DNS query: relay.walletconnect.com
Source: global traffic	DNS traffic detected: DNS query: fbi.gov
Source: global traffic	DNS traffic detected: DNS query: www.fbi.gov

Source: unknown

Source: chromecache_163.2.dr	String found in binary or memory: http://feross.org
Source: chromecache_201.2.dr	String found in binary or memory: http://schema.org
Source: chromecache_115.2.dr	String found in binary or memory: http://underscorejs.org/LICENSE
Source: chromecache_220.2.dr	String found in binary or memory: https://besimple.me/assets/index.a881cbbe.css
Source: chromecache_213.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js
Source: chromecache_213.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/sweetalert2
Source: chromecache_213.2.dr	String found in binary or memory: https://cdndelivery.pages.dev/web3-ethers.js
Source: chromecache_213.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js
Source: chromecache_213.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js
Source: chromecache_201.2.dr	String found in binary or memory: https://dap.digitalgov.gov/Universal-Federated-Analytics-Min.js?agency=DOJ&subagency=FBI
Source: chromecache_201.2.dr	String found in binary or memory: https://delivery.fbi.gov/subscribe
Source: chromecache_201.2.dr	String found in binary or memory: https://delivery.fbi.gov/subscribe?utm_source=Email%20Icon%20-%20fbi.gov&utm_medium=Email%20Icon
Source: chromecache_201.2.dr	String found in binary or memory: https://fbi.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://fbi.gov/how-we-can-help-you
Source: chromecache_213.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_213.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Inter:wght
Source: chromecache_213.2.dr	String found in binary or memory: https://fonts.gstatic.com
Source: chromecache_172.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/dmsans/v15/rP2Yp2ywxg089UriI5-g7M8btVsD8CkGq7u0-K4.woff2)
Source: chromecache_172.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/dmsans/v15/rP2Yp2ywxg089UriI5-g7M8btVsD8CkGq7u6-K6h9Q.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa0ZL7SUc.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1pL7SUc.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa25L7SUc.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa2JL7SUc.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa2ZL7SUc.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa2pL7SUc.woff2)
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZ9hiA.woff2)
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZBhiI2B.woff2
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZFhiI2B.woff2
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZJhiI2B.woff2
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZNhiI2B.woff2
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZthiI2B.woff2
Source: chromecache_131.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v13/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuLyfAZxhiI2B.woff2
Source: chromecache_109.2.dr, chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2)
Source: chromecache_109.2.dr, chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459WRhyzbi.woff2)
Source: chromecache_109.2.dr, chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459WZhyzbi.woff2)
Source: chromecache_109.2.dr, chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2)
Source: chromecache_109.2.dr, chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyC0ITw.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyCAIT5lu.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyCIIT5lu.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyCMIT5lu.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyCkIT5lu.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_186.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_175.2.dr	String found in binary or memory: https://github.com/indutny/elliptic
Source: chromecache_175.2.dr	String found in binary or memory: https://github.com/indutny/elliptic/issues
Source: chromecache_201.2.dr	String found in binary or memory: https://images.fbi.gov
Source: chromecache_201.2.dr	String found in binary or memory: https://le.fbi.gov/
Source: chromecache_115.2.dr	String found in binary or memory: https://lodash.com/
Source: chromecache_115.2.dr	String found in binary or memory: https://lodash.com/license
Source: chromecache_143.2.dr	String found in binary or memory: https://openchain.xyz/signatures?query=$
Source: chromecache_115.2.dr	String found in binary or memory: https://openjsf.org/
Source: chromecache_175.2.dr	String found in binary or memory: https://registry.npmjs.org/elliptic/-/elliptic-6.4.0.tgz
Source: chromecache_201.2.dr	String found in binary or memory: https://twitter.com/FBI
Source: chromecache_201.2.dr	String found in binary or memory: https://ucr.fbi.gov
Source: chromecache_143.2.dr	String found in binary or memory: https://wagmi.sh/core/providers/jsonRpc
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about/community-outreach
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about/faqs
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about/leadership-and-structure
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about/mission
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/about/partnerships
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/accessibility
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/atom.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/fbi-headquarters
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/fbi-headquarters/the-fbi-experience
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices/denver/news/former-trading-firm-executives-found-guilty
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices/washingtondc/news/colorado-man-sentenced-on-felony-obst
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices/washingtondc/news/kentucky-man-pleads-guilty-to-felony-
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices/washingtondc/news/pennsylvania-man-sentenced-to-prison-
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/field-offices/washingtondc/news/washington-state-man-sentenced-for-as
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/contact-us/legal-attache-offices
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/fbi-kids
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/fbigov_homepage_new
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/fbigov_homepage_new/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/flickr
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/history
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/more-fbi-services-and-information/identity-history-summary-c
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/more-fbi-services-and-information/ucr
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/need-an-fbi-service-or-more-information
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/office-of-private-sector
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/parents-and-caregivers-protecting-your-kids
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/safety-resources
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/scams-and-safety
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/students
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-can-help-you/victim-services
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/how-we-investigate
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/apply-for-an-fbi-job.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/contact-the-fbi.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/discover-fbi-history.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/fbi-jacksonville-special-agent-lauren-regucci.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/find-crime-stats.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/get-a-rap-sheet.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/help-the-fbi-find-fugitives-and-missing-persons.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/learn-what-the-fbi-investigates.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/protect-yourself-from-common-crimes-and-scams.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/image-repository/submit-a-tip.jpg/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/civil-rights
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/counterintelligence
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/counterintelligence/foreign-influence/protected-voices/protected-voi
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/cyber
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/organized-crime
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/public-corruption
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/terrorism
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/violent-crime
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/white-collar-crime
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/investigate/wmd
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/itunes.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/jobs
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/legalnotices
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/manifest.json
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/apps
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/espanol
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/photos
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/podcasts
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/podcasts/inside-the-fbi-investigating-torture
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/podcasts/inside-the-fbi-podcast-the-fbi-police
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/podcasts/inside-the-fbi-podcast-trauma-notification-training
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/podcasts/inside-the-fbi-podcast-what-happened-to-karla-rodriguez
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/RSS
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/atom.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/fbi-recognizes-national-missing-childrens-day
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/fbi-signs-agreement-with-blacks-in-government
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/justice-department-announces-multiple-drug-and-firearms-arre
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/press-releases/rss.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/pressrel
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/speeches
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/speeches/RSS
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/speeches/atom.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/speeches/rss.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/RSS
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/a-legacy-in-law-enforcement-a-mothers-and-sons-journeys-to-the-fbi
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/atom.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/fbi-honors-fallen-colleagues-law-enforcement-partners-during-police
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/national-missing-childrens-day-2024
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/national-missing-childrens-day-2024/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/reaching-out-to-assist-victims-of-crime
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/stories/rss.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/testimony
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/testimony/RSS
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/testimony/atom.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/testimony/rss.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/news/videos
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/plonejsi18n
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/privacy-policy
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/rss.xml
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/scams-and-safety
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/services/information-management/foia
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/services/information-management/foipa
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/site-icon.png
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/site-icon.png?scale=16
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/site-icon.png?scale=32
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/sitemap
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/tips
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/bank-robbers
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/capitol-violence
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/capitol-violence/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/ecap
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/fugitives
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/kidnap
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/seeking-info/hate-crime---assault
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/seeking-info/hate-crime---assault/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/seeking-information
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/terrorism
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/topten
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbi.gov/wanted/vicap
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbijobs.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbijobs.gov/equal-opportunity
Source: chromecache_201.2.dr	String found in binary or memory: https://www.fbijobs.gov/sites/default/files/2022-07/eeoc_policy.pdf
Source: chromecache_201.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=G-DBEM2FVVRF
Source: chromecache_201.2.dr	String found in binary or memory: https://www.instagram.com/fbi/
Source: chromecache_191.2.dr	String found in binary or memory: https://www.jsdelivr.com/using-sri-with-dynamic-files
Source: chromecache_201.2.dr	String found in binary or memory: https://www.justice.gov/jmd/eeo-program-status-report
Source: chromecache_201.2.dr	String found in binary or memory: https://www.justice.gov/legalpolicies
Source: chromecache_201.2.dr	String found in binary or memory: https://www.linkedin.com/company/fbi
Source: chromecache_201.2.dr	String found in binary or memory: https://www.regulations.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.usa.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.whitehouse.gov/
Source: chromecache_201.2.dr	String found in binary or memory: https://www.youtube.com/user/fbi

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443

Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.5:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.5:49737 version: TLS 1.2

Source: classification engine

Classification label: mal60.phis.win@16/207@36/14

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2020,i,2573263047657851414,3927745290978497940,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://origines-decoration.com/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2020,i,2573263047657851414,3927745290978497940,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1447761
Product:	CloudBasic
Start time:	00:53:35
Start date:	27.05.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://origines-decoration.com/

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://origines-decoration.com/

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://origines-decoration.com/