Edit tour

Windows Analysis Report
original.eml

Overview

General Information

Sample name:	original.eml
Analysis ID:	1590925
MD5:	96c43f66e14e2fa5782d19584b26f335
SHA1:	3e56151ad9584754141986f6374fac15afe157e0
SHA256:	44c374171a3dfc7380266297d4952b51e3c81980fdcf9c17b8a61278198fffca
Infos:

Detection

Score:	48
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

AI detected landing page (webpage, office document or email)

AI detected suspicious elements in Email content

Queries the volume information (name, serial number etc) of a device

Sigma detected: Office Autorun Keys Modification

Sigma detected: Outlook Security Settings Updated - Registry

Stores files to the Windows start menu directory

Classification

Process Tree

System is w10x64_ra

OUTLOOK.EXE (PID: 6840 cmdline: "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" /eml "C:\Users\user\Desktop\original.eml" MD5: 91A5292942864110ED734005B7E005C0)

ai.exe (PID: 6576 cmdline: "C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe" "A27B1353-F78E-41CB-B0F8-11E7263BE425" "F4A2E0B0-23B1-4F6F-94CF-29A684FB319C" "6840" "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" "WordCombinedFloatieLreOnline.onnx" MD5: EC652BEDD90E089D9406AFED89A8A8BD)

OUTLOOK.EXE (PID: 5404 cmdline: "C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE" /eml "C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.Outlook\KQHSMYVS\phish_alert_sp2_2.0.0.0.eml" MD5: 91A5292942864110ED734005B7E005C0)

Acrobat.exe (PID: 6360 cmdline: "C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" "C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.Outlook\KQHSMYVS\Worksheet BT154296 - METALUS PLAN VICTORIAVILLE.pdf" MD5: 24EAD1C46A47022347DC0F05F6EFBB8C)

AcroCEF.exe (PID: 6416 cmdline: "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215 MD5: 9B38E8E8B6DD9622D24B53E095C5D9BE)

AcroCEF.exe (PID: 6756 cmdline: "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0" --lang=en-US --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log" --mojo-platform-channel-handle=2248 --field-trial-handle=1556,i,7561464354657488856,13588845150243518525,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker /prefetch:8 MD5: 9B38E8E8B6DD9622D24B53E095C5D9BE)

chrome.exe (PID: 4016 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://can01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.techlift.ca%2Fmail%2Fview%3Fmodel%3Dproject.task%26res_id%3D166767%26access_token%3Db8f79f62-9a1a-4f0f-8b02-ad8868e93ff6%26auth_signup_token%3DeTAQ1X91NMP6dRJVqneq&data=05%7C02%7Cdany.ratte%40metalus.qc.ca%7C53624b36948c4e181b5508dd34a0b22b%7C4f85cc14eaa84e0b829193aab6969f78%7C0%7C0%7C638724587237591513%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=ev37I7VoFUBfa7Lk84FtS%2BnKwDPw9NN1cCQVVWEXz7Q%3D&reserved=0 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6928 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2148 --field-trial-handle=1868,i,14692796438039856495,12729467369949085797,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Sigma Signatures

Sigma detected: Office Autorun Keys Modification

Source: Registry Key set

Author: Victor Sergeev, Daniil Yugoslavskiy, Gleb Sukhodolskiy, Timur Zinniatullin, oscd.community, Tim Shelton, frack113 (split): Data: Details: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 , EventID: 13, EventType: SetValue, Image: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE, ProcessId: 6840, TargetObject: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Outlook\Addins\OneNote.OutlookAddin\1

Sigma detected: Outlook Security Settings Updated - Registry

Source: Registry Key set

Author: frack113: Data: Details: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.Outlook\KQHSMYVS\, EventID: 13, EventType: SetValue, Image: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE, ProcessId: 6840, TargetObject: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Outlook\Security\OutlookSecureTempFolder

Suricata Signatures

⊘No Suricata rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

AI detected landing page (webpage, office document or email)

Source: Email

Joe Sandbox AI: Email contains prominent button: 'signer le rapport'

AI detected suspicious elements in Email content

Source: Email

Joe Sandbox AI: Detected potential phishing email: The email contains suspicious links with access tokens and auth tokens that are common in phishing attempts. The recipient address contains 'phisher.knowbe4.com' which indicates this is likely a phishing simulation. The email attempts to get the user to click on links to 'sign a report' which is a common phishing tactic

Source: Email

Classification: Credential Stealer

Source: chrome.exe

Memory has grown: Private usage: 7MB later: 31MB

Source: unknown	TCP traffic detected without corresponding DNS query: 23.56.162.204
Source: unknown	TCP traffic detected without corresponding DNS query: 23.56.162.204
Source: unknown	TCP traffic detected without corresponding DNS query: 23.56.162.204
Source: unknown	TCP traffic detected without corresponding DNS query: 23.56.162.204
Source: unknown	TCP traffic detected without corresponding DNS query: 23.56.162.204
Source: unknown	TCP traffic detected without corresponding DNS query: 23.56.162.204
Source: unknown	TCP traffic detected without corresponding DNS query: 23.56.162.204
Source: unknown	TCP traffic detected without corresponding DNS query: 23.56.162.204
Source: unknown	TCP traffic detected without corresponding DNS query: 23.56.162.204
Source: unknown	TCP traffic detected without corresponding DNS query: 23.56.162.204
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.31.71
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.31.71
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.31.71
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.31.71

Source: global traffic	HTTP traffic detected: GET /mail/view?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6&auth_signup_token=eTAQ1X91NMP6dRJVqneq HTTP/1.1Host: www.techlift.caConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8
Source: global traffic	HTTP traffic detected: GET /en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA
Source: global traffic	HTTP traffic detected: GET /web/assets/1282895-916948a/1/web.assets_common.min.css HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/css,/;q=0.1Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA
Source: global traffic	HTTP traffic detected: GET /web/assets/1280054-689d2b2/1/web.assets_frontend.min.css HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/css,/;q=0.1Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA
Source: global traffic	HTTP traffic detected: GET /web/static/lib/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1Host: www.techlift.caConnection: keep-aliveOrigin: http://www.techlift.caUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA
Source: global traffic	HTTP traffic detected: GET /web/assets/1126508-6596fbe/1/web.assets_common_minimal.min.js HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA
Source: global traffic	HTTP traffic detected: GET /web/assets/1126508-6596fbe/1/web.assets_common_minimal.min.js HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA
Source: global traffic	HTTP traffic detected: GET /web/assets/1126511-81ea84f/1/web.assets_frontend_minimal.min.js HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478
Source: global traffic	HTTP traffic detected: GET /web/assets/1126511-81ea84f/1/web.assets_frontend_minimal.min.js HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478
Source: global traffic	HTTP traffic detected: GET /web/image/website/1/logo/Techlift?unique=6b367a2 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York
Source: global traffic	HTTP traffic detected: GET /base/static/img/country_flags/ca.png?height=25 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York
Source: global traffic	HTTP traffic detected: GET /base/static/img/country_flags/ca.png?height=25 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York
Source: global traffic	HTTP traffic detected: GET /web/image/website/1/logo/Techlift?unique=6b367a2 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York
Source: global traffic	HTTP traffic detected: GET /web/assets/1278114-5599ff5/1/web.assets_common_lazy.min.js HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/image/website/1/favicon?unique=6b367a2 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/image/website/1/favicon?unique=6b367a2 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/assets/1278114-5599ff5/1/web.assets_common_lazy.min.js HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/assets/1278119-68fc4ee/1/web.assets_frontend_lazy.min.js HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/assets/1278119-68fc4ee/1/web.assets_frontend_lazy.min.js HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /website_sale_hide_price/static/src/xml/website_sale_templates.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /website/translations/04e840c3ed34e2d0b9fc364b60b58ef5e7bde60f?lang=en_CA HTTP/1.1Host: www.techlift.caConnection: keep-aliveAccept: /User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36X-Requested-With: XMLHttpRequestReferer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/webclient/locale/en_CA HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /en_CA/website/translations/04e840c3ed34e2d0b9fc364b60b58ef5e7bde60f?lang=en_CA HTTP/1.1Host: www.techlift.caConnection: keep-aliveAccept: /User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36X-Requested-With: XMLHttpRequestReferer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /website_sale_hide_price/static/src/xml/website_sale_templates.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/webclient/locale/en_CA HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/webclient/qweb/1736865482654?bundle=web.assets_frontend HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /en_CA/website/translations/04e840c3ed34e2d0b9fc364b60b58ef5e7bde60f?lang=en_CA HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /website/translations/04e840c3ed34e2d0b9fc364b60b58ef5e7bde60f?lang=en_CA HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/webclient/qweb/1736865482654?bundle=web.assets_frontend HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /website/static/src/xml/website.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /website/static/src/xml/website.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /website/static/src/snippets/s_searchbar/000.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /e3k_techlift_website/static/src/snippets/s_searchbar/000.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /website/static/src/snippets/s_searchbar/000.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /mail/chatter_init HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /portal/static/src/xml/portal_chatter.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /e3k_techlift_website/static/src/snippets/s_searchbar/000.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /portal_rating/static/src/xml/portal_tools.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /portal/static/src/xml/portal_chatter.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /portal_rating/static/src/xml/portal_chatter.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /portal_rating/static/src/xml/portal_tools.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /portal_rating/static/src/xml/portal_chatter.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/image/mail.message/4579457/author_avatar/50x50 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/static/img/mimetypes/pdf.svg HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://www.techlift.ca/web/assets/1282895-916948a/1/web.assets_common.min.cssAccept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/image/mail.message/4579457/author_avatar/50x50 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/static/img/mimetypes/pdf.svg HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /en_CA/my/task/166767/worksheet?access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6 HTTP/1.1Host: www.techlift.caConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Referer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0
Source: global traffic	HTTP traffic detected: GET /web/static/img/logo.png HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://www.techlift.ca/en_CA/my/task/166767/worksheet?access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /web/static/img/logo.png HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /website/translations/04e840c3ed34e2d0b9fc364b60b58ef5e7bde60f?lang=en_CA HTTP/1.1Host: www.techlift.caConnection: keep-aliveAccept: /User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36X-Requested-With: XMLHttpRequestReferer: http://www.techlift.ca/en_CA/my/task/166767/worksheet?access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /web/webclient/qweb/1736865487448?bundle=web.assets_frontend HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767/worksheet?access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /web/webclient/qweb/1736865487448?bundle=web.assets_frontend HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /website/translations/04e840c3ed34e2d0b9fc364b60b58ef5e7bde60f?lang=en_CA HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767/worksheet?access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /portal/static/src/xml/portal_signature.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767/worksheet?access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /portal/static/src/xml/portal_signature.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /web/static/src/legacy/xml/name_and_signature.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767/worksheet?access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /e3k_invoice_sale_renting/static/src/xml/signature_form.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.techlift.ca/en_CA/my/task/166767/worksheet?access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /web/static/src/legacy/xml/name_and_signature.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /e3k_invoice_sale_renting/static/src/xml/signature_form.xml HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0
Source: global traffic	HTTP traffic detected: GET /web/sign/get_fonts/ HTTP/1.1Host: www.techlift.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.1.1736865485.54.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.1.1736865485.54.0.0

Source: global traffic	DNS traffic detected: DNS query: x1.i.lencr.org
Source: global traffic	DNS traffic detected: DNS query: can01.safelinks.protection.outlook.com
Source: global traffic	DNS traffic detected: DNS query: www.techlift.ca
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: analytics.google.com
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net

Source: unknown

HTTP traffic detected: POST /mail/chatter_init HTTP/1.1Host: www.techlift.caConnection: keep-aliveContent-Length: 194User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/jsonAccept: */*Origin: http://www.techlift.caReferer: http://www.techlift.ca/en_CA/my/task/166767?model=project.task&res_id=166767&access_token=b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: session_id=ebfba9cdbd3054b7938b1689961a96d78a6a54d8; frontend_lang=en_CA; _gcl_au=1.1.1511753366.1736865478; tz=America/New_York; _ga=GA1.1.2066110333.1736865480; _ga_NBRWDBNKYM=GS1.1.1736865479.1.0.1736865479.60.0.0; _ga_Q7QQB9B00Q=GS1.1.1736865479.1.0.1736865479.60.0.0Data Raw: 7b 22 69 64 22 3a 30 2c 22 6a 73 6f 6e 72 70 63 22 3a 22 32 2e 30 22 2c 22 6d 65 74 68 6f 64 22 3a 22 63 61 6c 6c 22 2c 22 70 61 72 61 6d 73 22 3a 7b 22 72 65 73 5f 6d 6f 64 65 6c 22 3a 22 70 72 6f 6a 65 63 74 2e 74 61 73 6b 22 2c 22 72 65 73 5f 69 64 22 3a 31 36 36 37 36 37 2c 22 6c 69 6d 69 74 22 3a 31 30 2c 22 6f 66 66 73 65 74 22 3a 30 2c 22 61 6c 6c 6f 77 5f 63 6f 6d 70 6f 73 65 72 22 3a 31 2c 22 74 6f 6b 65 6e 22 3a 22 62 38 66 37 39 66 36 32 2d 39 61 31 61 2d 34 66 30 66 2d 38 62 30 32 2d 61 64 38 38 36 38 65 39 33 66 66 36 22 2c 22 64 6f 6d 61 69 6e 22 3a 5b 5d 7d 7d Data Ascii: {"id":0,"jsonrpc":"2.0","method":"call","params":{"res_model":"project.task","res_id":166767,"limit":10,"offset":0,"allow_composer":1,"token":"b8f79f62-9a1a-4f0f-8b02-ad8868e93ff6","domain":[]}}

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: classification engine

Classification label: mal48.winEML@38/104@21/172