Windows Analysis Report
https://mail.oilreviewmiddleeast.com/link.php?M=532162&N=675&L=522&F=H

Overview

General Information

Sample URL:	https://mail.oilreviewmiddleeast.com/link.php?M=532162&N=675&L=522&F=H
Analysis ID:	1542513
Tags:	urlscan
Infos:

Detection

Score:	2
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Creates files inside the system directory

Deletes files inside the Windows folder

Detected non-DNS traffic on DNS port

Stores files to the Windows start menu directory

Classification

Signatures

Source: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analytics	HTTP Parser: No favicon
Source: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analytics	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49707 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.9:53484 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.9:53498 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic	TCP traffic: 192.168.2.9:49736 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.9:60902 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.9:53475 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.209
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.209
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.209
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.11
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60

Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /link.php?M=532162&N=675&L=522&F=H HTTP/1.1Host: mail.oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analytics HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/vendor/awesomplete/css/awesomplete.css?1.1.5 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /t3-assets/css/css-eceeb-78747.css HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /t3-assets/css/css-67cae-57026.css HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /t3-assets/css/css-562d8-78746.css HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /media/vendor/jquery/js/jquery.min.js?3.7.1 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /media/legacy/js/jquery-noconflict.min.js?647005fc12b79b3ca2bb30c059899d5994e3e34d HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /js/alaincharles/bd4c20ad644f40b0973029bb470d1ecf.js HTTP/1.1Host: cdn-eu.pagesense.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?render=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/system/t3/base-bs3/fonts/font-awesome/css/font-awesome-base.css HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/t3-assets/css/css-67cae-57026.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=LUZto8/fUwyU3U7qLXlKIQe8ULiDCDNy3ALb7bwjn2UcdbojkvLzsT2mjsIKIKv7ca0Hz1PbH9+PeD22E+9Y+WKZB/VY2dgDHOoAK6N9BvmbFQcKRCupUNB/808u; AWSALBCORS=LUZto8/fUwyU3U7qLXlKIQe8ULiDCDNy3ALb7bwjn2UcdbojkvLzsT2mjsIKIKv7ca0Hz1PbH9+PeD22E+9Y+WKZB/VY2dgDHOoAK6N9BvmbFQcKRCupUNB/808u
Source: global traffic	HTTP traffic detected: GET /media/vendor/bootstrap/js/popover.min.js?5.3.2 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /media/com_finder/js/finder.min.js?a2c3894d062787a266d59d457ffba5481b639f64 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /t3-assets/js/js-9efb0-02068.js HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /plugins/system/t3/base-bs3/js/respond.min.js HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?render=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /js/alaincharles/bd4c20ad644f40b0973029bb470d1ecf.js HTTP/1.1Host: cdn-eu.pagesense.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/vendor/bootstrap/js/popper.min.js?5.3.0 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/media/vendor/bootstrap/js/popover.min.js?5.3.2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=NFnNooXiR6JwBBz9ZkIi70rUOv285KR33Ku6NE/Q0ZfKdZM2IsonHunclzOVi8RQVNuG+t9NLcEuecNJ+9PvHkQcmoETEg+A2l5QLun+tXdXnMURHbkeLLxGR6h2; AWSALBCORS=NFnNooXiR6JwBBz9ZkIi70rUOv285KR33Ku6NE/Q0ZfKdZM2IsonHunclzOVi8RQVNuG+t9NLcEuecNJ+9PvHkQcmoETEg+A2l5QLun+tXdXnMURHbkeLLxGR6h2
Source: global traffic	HTTP traffic detected: GET /media/vendor/bootstrap/js/dom.min.js?5.3.0 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/media/vendor/bootstrap/js/popover.min.js?5.3.2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=NFnNooXiR6JwBBz9ZkIi70rUOv285KR33Ku6NE/Q0ZfKdZM2IsonHunclzOVi8RQVNuG+t9NLcEuecNJ+9PvHkQcmoETEg+A2l5QLun+tXdXnMURHbkeLLxGR6h2; AWSALBCORS=NFnNooXiR6JwBBz9ZkIi70rUOv285KR33Ku6NE/Q0ZfKdZM2IsonHunclzOVi8RQVNuG+t9NLcEuecNJ+9PvHkQcmoETEg+A2l5QLun+tXdXnMURHbkeLLxGR6h2
Source: global traffic	HTTP traffic detected: GET /images/ochri/de23667cea1252d10fde50fa0ecbdff3-728px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs; AWSALBCORS=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs
Source: global traffic	HTTP traffic detected: GET /banners/_images/ORME_HB_Oman_010724_310724.gif HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs; AWSALBCORS=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs
Source: global traffic	HTTP traffic detected: GET /banners/_images/ORME_TB_DUG_011024_311024.gif HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs; AWSALBCORS=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs
Source: global traffic	HTTP traffic detected: GET /banners/_images/fb_icon.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/ORME_SS_Yokogawa_011024_311024.jpg HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/ORME_SS_Inhouse_2024.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/ORME_HB_DMG_081024_311024.gif HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /images/ochri/aaafa089bf3d56a604d55e2a43c9b1a2-728px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /images/ochri/20c1d19282f36789b1d3579291d1e6b3-728px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/ln_icon.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/twit_icon.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /images/ochri/74a5703cc27ec28c09aa3451357d8dc4-787px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/mail_icon.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/acp_icon.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /templates/ja_teline_v/images/logo.svg HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=U8kZlelcMlX9S0LU0pvCFgyhrmg2I5ncJC3dSf2U5wfWMljH5cXSirKFncUnj1svwM902f/+IgRck6IF0XYbgkKx7z8cawUpJ8ZdUstM7ppj9dFuFt8beVb2HhPi; AWSALBCORS=U8kZlelcMlX9S0LU0pvCFgyhrmg2I5ncJC3dSf2U5wfWMljH5cXSirKFncUnj1svwM902f/+IgRck6IF0XYbgkKx7z8cawUpJ8ZdUstM7ppj9dFuFt8beVb2HhPi
Source: global traffic	HTTP traffic detected: GET /images/ochri/f6180a27c80cae2150b0644458338bfa-728px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=U8kZlelcMlX9S0LU0pvCFgyhrmg2I5ncJC3dSf2U5wfWMljH5cXSirKFncUnj1svwM902f/+IgRck6IF0XYbgkKx7z8cawUpJ8ZdUstM7ppj9dFuFt8beVb2HhPi; AWSALBCORS=U8kZlelcMlX9S0LU0pvCFgyhrmg2I5ncJC3dSf2U5wfWMljH5cXSirKFncUnj1svwM902f/+IgRck6IF0XYbgkKx7z8cawUpJ8ZdUstM7ppj9dFuFt8beVb2HhPi
Source: global traffic	HTTP traffic detected: GET /media/vendor/awesomplete/js/awesomplete.min.js?1.1.5 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8; AWSALBCORS=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8
Source: global traffic	HTTP traffic detected: GET /images/ochri/31271812a4ba34cea2dbd44c7bf8b31c-480px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8; AWSALBCORS=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8
Source: global traffic	HTTP traffic detected: GET //templates/ja_teline_v/images/logo.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8; AWSALBCORS=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8
Source: global traffic	HTTP traffic detected: GET /menu/page.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagesense/tracking/zcbanner-cd31c57352_.js HTTP/1.1Host: static.zohocdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /matomo.js HTTP/1.1Host: ws.alaincharles.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/sm.25.html HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/modules/core.m4v434v2.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /templates/ja_teline_v/images/logo.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=hyIFK6YLyJhhwarXreyMik5TaOvlnNNT6UStS6lbXLk5iEZIj4YcNRG8b58yoN74p1gInd2Ddxc/UawD7esW3W43X+7gl0k9mx0fmN68V9eb2DapKVrO+mM+93jG; AWSALBCORS=hyIFK6YLyJhhwarXreyMik5TaOvlnNNT6UStS6lbXLk5iEZIj4YcNRG8b58yoN74p1gInd2Ddxc/UawD7esW3W43X+7gl0k9mx0fmN68V9eb2DapKVrO+mM+93jG
Source: global traffic	HTTP traffic detected: GET /pagesense/tracking/zcbanner-db16aa9bb0_.css HTTP/1.1Host: static.zohocdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/facebook.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://static.addtoany.com/menu/modules/core.m4v434v2.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/linkedin.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://static.addtoany.com/menu/modules/core.m4v434v2.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/whatsapp.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://static.addtoany.com/menu/modules/core.m4v434v2.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/x.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://static.addtoany.com/menu/modules/core.m4v434v2.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36&co=aHR0cHM6Ly9vaWxyZXZpZXdtaWRkbGVlYXN0LmNvbTo0NDM.&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=7797e08yjoai HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /templates/ja_teline_v/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://oilreviewmiddleeast.com/t3-assets/css/css-562d8-78746.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; _ga=GA1.2.1947382702.1729895551; _gid=GA1.2.1424303430.1729895551; _gat=1; _pk_id.115.9818=6b554c6f1ac6b26a.1729895552.; _pk_ses.115.9818=1; AWSALB=wO+66McR6XgbLQNEoY45jsxD8qRALL5LKZUsNyV8UF2FDbNqomB1UY1ExUdmaKaKBQYSUQC1f5mLN81J6Hn0fdbw72yoR1PZ/ekpShgmmOSg3ovbdEMg6zK8FWmN; AWSALBCORS=wO+66McR6XgbLQNEoY45jsxD8qRALL5LKZUsNyV8UF2FDbNqomB1UY1ExUdmaKaKBQYSUQC1f5mLN81J6Hn0fdbw72yoR1PZ/ekpShgmmOSg3ovbdEMg6zK8FWmN
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/whatsapp.js HTTP/1.1Host: static.addtoany.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/linkedin.js HTTP/1.1Host: static.addtoany.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/x.js HTTP/1.1Host: static.addtoany.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36&co=aHR0cHM6Ly9vaWxyZXZpZXdtaWRkbGVlYXN0LmNvbTo0NDM.&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=7797e08yjoaiAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/Cyqba_K0pUDdT5_AhrcTxS5-b1C3jUsFpG6edXmCObU.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36&co=aHR0cHM6Ly9vaWxyZXZpZXdtaWRkbGVlYXN0LmNvbTo0NDM.&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=7797e08yjoaiAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/Cyqba_K0pUDdT5_AhrcTxS5-b1C3jUsFpG6edXmCObU.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /templates/ja_teline_v/favicon.ico HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; _ga=GA1.2.1947382702.1729895551; _gid=GA1.2.1424303430.1729895551; _gat=1; _pk_id.115.9818=6b554c6f1ac6b26a.1729895552.; _pk_ses.115.9818=1; AWSALB=ee14p6NSyHUHdl3mEXFQmorsELapgEZzHONACKbgpdDBFnWAcex2D2QyFsQ3K4V/j3z338thFAuqSOSVb3cFUpNx7OZTtS6lU3pYtmBXoBQsrazCA+eLBBJqSI5a; AWSALBCORS=ee14p6NSyHUHdl3mEXFQmorsELapgEZzHONACKbgpdDBFnWAcex2D2QyFsQ3K4V/j3z338thFAuqSOSVb3cFUpNx7OZTtS6lU3pYtmBXoBQsrazCA+eLBBJqSI5a; _ga_E0SZFBDQ7G=GS1.2.1729895557.1.0.1729895557.0.0.0
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/reload?k=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09ANOXeZwU-nM9Y1W-Qi9QzqYMTDzawugfHyu3v7DLKahr_mwO3fNNYrfCgSsJO3e6yZL_7RbMpLRfjvY1N9Owd2Y
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/clr?k=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09ANOXeZwU-nM9Y1W-Qi9QzqYMTDzawugfHyu3v7DLKahr_mwO3fNNYrfCgSsJO3e6yZL_7RbMpLRfjvY1N9Owd2Y

Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: Math.round(q);u["gtm.videoElapsedTime"]=Math.round(f);u["gtm.videoPercent"]=r;u["gtm.videoVisible"]=t;return u},lk:function(){e=zb()},ud:function(){d()}}};var gc=ma(["data-gtm-yt-inspected-"]),pD=["www.youtube.com","www.youtube-nocookie.com"],qD,rD=!1; equals www.youtube.com (Youtube)
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var k=WA(a,c,e);U(121);if(k["gtm.elementUrl"]==="https://www.facebook.com/tr/")return U(122),!0;if(d&&f){for(var m=Kb(b,g.length),n=0;n<g.length;++n)g[n](k,m);return m.done}for(var p=0;p<g.length;++p)g[p](k,function(){});return!0},ZA=function(){var a=[],b=function(c){return pb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: if(!(e\|\|f\|\|g\|\|k.length\|\|m.length))return;var p={rh:e,ph:f,qh:g,bi:k,di:m,Je:n,Fb:b},q=C.YT;if(q)return q.ready&&q.ready(d),b;var r=C.onYouTubeIframeAPIReady;C.onYouTubeIframeAPIReady=function(){r&&r();d()};F(function(){for(var t=E.getElementsByTagName("script"),v=t.length,u=0;u<v;u++){var w=t[u].getAttribute("src");if(AD(w,"iframe_api")\|\|AD(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!rD&&yD(x[A],p.Je))return xc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: var CC=function(a,b,c,d,e){var f=tA("fsl",c?"nv.mwt":"mwt",0),g;g=c?tA("fsl","nv.ids",[]):tA("fsl","ids",[]);if(!g.length)return!0;var k=yA(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);U(121);if(m==="https://www.facebook.com/tr/")return U(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!fz(k,hz(b, equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: mail.oilreviewmiddleeast.com
Source: global traffic	DNS traffic detected: DNS query: oilreviewmiddleeast.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: cdn-eu.pagesense.io
Source: global traffic	DNS traffic detected: DNS query: static.addtoany.com
Source: global traffic	DNS traffic detected: DNS query: ws.alaincharles.com
Source: global traffic	DNS traffic detected: DNS query: static.zohocdn.com
Source: global traffic	DNS traffic detected: DNS query: pagesense-collect.zoho.eu

Source: unknown

HTTP traffic detected: POST /pslog.gif?type=2 HTTP/1.1Host: pagesense-collect.zoho.euConnection: keep-aliveContent-Length: 281sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plain;charset=UTF-8Accept: */*Origin: https://oilreviewmiddleeast.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: sets.json.0.dr	String found in binary or memory: https://07c225f3.online
Source: sets.json.0.dr	String found in binary or memory: https://24.hu
Source: sets.json.0.dr	String found in binary or memory: https://aajtak.in
Source: sets.json.0.dr	String found in binary or memory: https://abczdrowie.pl
Source: chromecache_196.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: sets.json.0.dr	String found in binary or memory: https://alice.tw
Source: sets.json.0.dr	String found in binary or memory: https://ambitionbox.com
Source: chromecache_195.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: sets.json.0.dr	String found in binary or memory: https://autobild.de
Source: sets.json.0.dr	String found in binary or memory: https://baomoi.com
Source: sets.json.0.dr	String found in binary or memory: https://bild.de
Source: sets.json.0.dr	String found in binary or memory: https://blackrock.com
Source: sets.json.0.dr	String found in binary or memory: https://blackrockadvisorelite.it
Source: sets.json.0.dr	String found in binary or memory: https://bluradio.com
Source: sets.json.0.dr	String found in binary or memory: https://bolasport.com
Source: sets.json.0.dr	String found in binary or memory: https://bonvivir.com
Source: sets.json.0.dr	String found in binary or memory: https://bumbox.com
Source: sets.json.0.dr	String found in binary or memory: https://businessinsider.com.pl
Source: sets.json.0.dr	String found in binary or memory: https://businesstoday.in
Source: sets.json.0.dr	String found in binary or memory: https://cachematrix.com
Source: sets.json.0.dr	String found in binary or memory: https://cafemedia.com
Source: sets.json.0.dr	String found in binary or memory: https://caracoltv.com
Source: sets.json.0.dr	String found in binary or memory: https://carcostadvisor.be
Source: sets.json.0.dr	String found in binary or memory: https://carcostadvisor.com
Source: sets.json.0.dr	String found in binary or memory: https://carcostadvisor.fr
Source: sets.json.0.dr	String found in binary or memory: https://cardsayings.net
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: sets.json.0.dr	String found in binary or memory: https://chatbot.com
Source: sets.json.0.dr	String found in binary or memory: https://chennien.com
Source: sets.json.0.dr	String found in binary or memory: https://citybibleforum.org
Source: sets.json.0.dr	String found in binary or memory: https://clarosports.com
Source: sets.json.0.dr	String found in binary or memory: https://clmbtech.com
Source: sets.json.0.dr	String found in binary or memory: https://closeronline.co.uk
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: sets.json.0.dr	String found in binary or memory: https://clubelpais.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://cmxd.com.mx
Source: sets.json.0.dr	String found in binary or memory: https://cognitive-ai.ru
Source: sets.json.0.dr	String found in binary or memory: https://cognitiveai.ru
Source: sets.json.0.dr	String found in binary or memory: https://commentcamarche.com
Source: sets.json.0.dr	String found in binary or memory: https://commentcamarche.net
Source: sets.json.0.dr	String found in binary or memory: https://computerbild.de
Source: sets.json.0.dr	String found in binary or memory: https://content-loader.com
Source: sets.json.0.dr	String found in binary or memory: https://cookreactor.com
Source: sets.json.0.dr	String found in binary or memory: https://cricbuzz.com
Source: sets.json.0.dr	String found in binary or memory: https://css-load.com
Source: sets.json.0.dr	String found in binary or memory: https://deccoria.pl
Source: sets.json.0.dr	String found in binary or memory: https://deere.com
Source: sets.json.0.dr	String found in binary or memory: https://desimartini.com
Source: chromecache_184.2.dr	String found in binary or memory: https://developer.matomo.org/api-reference/tracking-javascript
Source: chromecache_184.2.dr	String found in binary or memory: https://developer.matomo.org/guides/tracking-javascript-guide#multiple-piwik-trackers
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: sets.json.0.dr	String found in binary or memory: https://dewarmsteweek.be
Source: sets.json.0.dr	String found in binary or memory: https://drimer.io
Source: sets.json.0.dr	String found in binary or memory: https://drimer.travel
Source: sets.json.0.dr	String found in binary or memory: https://economictimes.com
Source: sets.json.0.dr	String found in binary or memory: https://een.be
Source: sets.json.0.dr	String found in binary or memory: https://efront.com
Source: sets.json.0.dr	String found in binary or memory: https://eleconomista.net
Source: sets.json.0.dr	String found in binary or memory: https://elfinancierocr.com
Source: sets.json.0.dr	String found in binary or memory: https://elgrafico.com
Source: sets.json.0.dr	String found in binary or memory: https://ella.sv
Source: sets.json.0.dr	String found in binary or memory: https://elpais.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://elpais.uy
Source: sets.json.0.dr	String found in binary or memory: https://etfacademy.it
Source: sets.json.0.dr	String found in binary or memory: https://eworkbookcloud.com
Source: sets.json.0.dr	String found in binary or memory: https://eworkbookrequest.com
Source: sets.json.0.dr	String found in binary or memory: https://fakt.pl
Source: sets.json.0.dr	String found in binary or memory: https://finn.no
Source: sets.json.0.dr	String found in binary or memory: https://firstlook.biz
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19-7DRs5.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-1967DRs5.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19G7DRs5.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufA5qW54A.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufB5qW54A.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufC5qW54A.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufD5qW54A.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufJ5qW54A.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufO5qW54A.woff2)
Source: sets.json.0.dr	String found in binary or memory: https://gallito.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://geforcenow.com
Source: sets.json.0.dr	String found in binary or memory: https://gettalkdesk.com
Source: chromecache_201.2.dr, chromecache_182.2.dr	String found in binary or memory: https://github.com/faisalman/ua-parser-js
Source: chromecache_184.2.dr	String found in binary or memory: https://github.com/matomo-org/matomo/blob/master/js/piwik.js
Source: sets.json.0.dr	String found in binary or memory: https://gliadomain.com
Source: sets.json.0.dr	String found in binary or memory: https://gnttv.com
Source: sets.json.0.dr	String found in binary or memory: https://graziadaily.co.uk
Source: sets.json.0.dr	String found in binary or memory: https://grid.id
Source: sets.json.0.dr	String found in binary or memory: https://gridgames.app
Source: sets.json.0.dr	String found in binary or memory: https://growthrx.in
Source: sets.json.0.dr	String found in binary or memory: https://grupolpg.sv
Source: sets.json.0.dr	String found in binary or memory: https://gujaratijagran.com
Source: sets.json.0.dr	String found in binary or memory: https://hapara.com
Source: sets.json.0.dr	String found in binary or memory: https://hazipatika.com
Source: sets.json.0.dr	String found in binary or memory: https://hc1.com
Source: sets.json.0.dr	String found in binary or memory: https://hc1.global
Source: sets.json.0.dr	String found in binary or memory: https://hc1cas.com
Source: sets.json.0.dr	String found in binary or memory: https://hc1cas.global
Source: sets.json.0.dr	String found in binary or memory: https://healthshots.com
Source: sets.json.0.dr	String found in binary or memory: https://hearty.app
Source: sets.json.0.dr	String found in binary or memory: https://hearty.gift
Source: sets.json.0.dr	String found in binary or memory: https://hearty.me
Source: sets.json.0.dr	String found in binary or memory: https://heartymail.com
Source: sets.json.0.dr	String found in binary or memory: https://heatworld.com
Source: sets.json.0.dr	String found in binary or memory: https://helpdesk.com
Source: sets.json.0.dr	String found in binary or memory: https://hindustantimes.com
Source: sets.json.0.dr	String found in binary or memory: https://hj.rs
Source: sets.json.0.dr	String found in binary or memory: https://hjck.com
Source: sets.json.0.dr	String found in binary or memory: https://html-load.cc
Source: sets.json.0.dr	String found in binary or memory: https://html-load.com
Source: sets.json.0.dr	String found in binary or memory: https://human-talk.org
Source: sets.json.0.dr	String found in binary or memory: https://idbs-cloud.com
Source: sets.json.0.dr	String found in binary or memory: https://idbs-dev.com
Source: sets.json.0.dr	String found in binary or memory: https://idbs-eworkbook.com
Source: sets.json.0.dr	String found in binary or memory: https://idbs-staging.com
Source: sets.json.0.dr	String found in binary or memory: https://img-load.com
Source: sets.json.0.dr	String found in binary or memory: https://indiatimes.com
Source: sets.json.0.dr	String found in binary or memory: https://indiatoday.in
Source: sets.json.0.dr	String found in binary or memory: https://indiatodayne.in
Source: sets.json.0.dr	String found in binary or memory: https://infoedgeindia.com
Source: sets.json.0.dr	String found in binary or memory: https://interia.pl
Source: sets.json.0.dr	String found in binary or memory: https://intoday.in
Source: sets.json.0.dr	String found in binary or memory: https://iolam.it
Source: sets.json.0.dr	String found in binary or memory: https://ishares.com
Source: sets.json.0.dr	String found in binary or memory: https://jagran.com
Source: sets.json.0.dr	String found in binary or memory: https://johndeere.com
Source: sets.json.0.dr	String found in binary or memory: https://journaldesfemmes.com
Source: sets.json.0.dr	String found in binary or memory: https://journaldesfemmes.fr
Source: sets.json.0.dr	String found in binary or memory: https://journaldunet.com
Source: sets.json.0.dr	String found in binary or memory: https://journaldunet.fr
Source: sets.json.0.dr	String found in binary or memory: https://joyreactor.cc
Source: sets.json.0.dr	String found in binary or memory: https://joyreactor.com
Source: sets.json.0.dr	String found in binary or memory: https://kaksya.in
Source: sets.json.0.dr	String found in binary or memory: https://knowledgebase.com
Source: sets.json.0.dr	String found in binary or memory: https://kompas.com
Source: sets.json.0.dr	String found in binary or memory: https://kompas.tv
Source: sets.json.0.dr	String found in binary or memory: https://kompasiana.com
Source: sets.json.0.dr	String found in binary or memory: https://lanacion.com.ar
Source: sets.json.0.dr	String found in binary or memory: https://landyrev.com
Source: sets.json.0.dr	String found in binary or memory: https://landyrev.ru
Source: sets.json.0.dr	String found in binary or memory: https://laprensagrafica.com
Source: sets.json.0.dr	String found in binary or memory: https://lateja.cr
Source: sets.json.0.dr	String found in binary or memory: https://libero.it
Source: sets.json.0.dr	String found in binary or memory: https://linternaute.com
Source: sets.json.0.dr	String found in binary or memory: https://linternaute.fr
Source: sets.json.0.dr	String found in binary or memory: https://livechat.com
Source: sets.json.0.dr	String found in binary or memory: https://livechatinc.com
Source: sets.json.0.dr	String found in binary or memory: https://livehindustan.com
Source: sets.json.0.dr	String found in binary or memory: https://livemint.com
Source: sets.json.0.dr	String found in binary or memory: https://max.auto
Source: sets.json.0.dr	String found in binary or memory: https://medonet.pl
Source: sets.json.0.dr	String found in binary or memory: https://meo.pt
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.cl
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.co.cr
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.ar
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.bo
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.co
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.do
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.ec
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.gt
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.hn
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.mx
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.ni
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.pa
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.pe
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.py
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.sv
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.ve
Source: sets.json.0.dr	String found in binary or memory: https://mercadolivre.com
Source: sets.json.0.dr	String found in binary or memory: https://mercadolivre.com.br
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.cl
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.ar
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.br
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.co
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.ec
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.mx
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.pe
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.ve
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.cl
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.com
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.com.ar
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.com.br
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.com.co
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.com.mx
Source: sets.json.0.dr	String found in binary or memory: https://mighty-app.appspot.com
Source: sets.json.0.dr	String found in binary or memory: https://mightytext.net
Source: sets.json.0.dr	String found in binary or memory: https://mittanbud.no
Source: sets.json.0.dr	String found in binary or memory: https://money.pl
Source: sets.json.0.dr	String found in binary or memory: https://motherandbaby.com
Source: sets.json.0.dr	String found in binary or memory: https://mystudentdashboard.com
Source: sets.json.0.dr	String found in binary or memory: https://nacion.com
Source: sets.json.0.dr	String found in binary or memory: https://naukri.com
Source: sets.json.0.dr	String found in binary or memory: https://nidhiacademyonline.com
Source: sets.json.0.dr	String found in binary or memory: https://nien.co
Source: sets.json.0.dr	String found in binary or memory: https://nien.com
Source: sets.json.0.dr	String found in binary or memory: https://nien.org
Source: sets.json.0.dr	String found in binary or memory: https://nlc.hu
Source: sets.json.0.dr	String found in binary or memory: https://nosalty.hu
Source: sets.json.0.dr	String found in binary or memory: https://noticiascaracol.com
Source: sets.json.0.dr	String found in binary or memory: https://nourishingpursuits.com
Source: sets.json.0.dr	String found in binary or memory: https://nvidia.com
Source: sets.json.0.dr	String found in binary or memory: https://o2.pl
Source: sets.json.0.dr	String found in binary or memory: https://ocdn.eu
Source: sets.json.0.dr	String found in binary or memory: https://onet.pl
Source: sets.json.0.dr	String found in binary or memory: https://ottplay.com
Source: sets.json.0.dr	String found in binary or memory: https://p106.net
Source: sets.json.0.dr	String found in binary or memory: https://p24.hu
Source: chromecache_196.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: sets.json.0.dr	String found in binary or memory: https://paula.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://pdmp-apis.no
Source: sets.json.0.dr	String found in binary or memory: https://phonandroid.com
Source: chromecache_184.2.dr	String found in binary or memory: https://piwik.org
Source: chromecache_184.2.dr	String found in binary or memory: https://piwik.org/free-software/bsd/
Source: chromecache_260.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: sets.json.0.dr	String found in binary or memory: https://player.pl
Source: sets.json.0.dr	String found in binary or memory: https://plejada.pl
Source: sets.json.0.dr	String found in binary or memory: https://poalim.site
Source: sets.json.0.dr	String found in binary or memory: https://poalim.xyz
Source: sets.json.0.dr	String found in binary or memory: https://pomponik.pl
Source: sets.json.0.dr	String found in binary or memory: https://portalinmobiliario.com
Source: sets.json.0.dr	String found in binary or memory: https://prisjakt.no
Source: sets.json.0.dr	String found in binary or memory: https://pudelek.pl
Source: sets.json.0.dr	String found in binary or memory: https://punjabijagran.com
Source: sets.json.0.dr	String found in binary or memory: https://radio1.be
Source: sets.json.0.dr	String found in binary or memory: https://radio2.be
Source: sets.json.0.dr	String found in binary or memory: https://reactor.cc
Source: sets.json.0.dr	String found in binary or memory: https://repid.org
Source: sets.json.0.dr	String found in binary or memory: https://reshim.org
Source: sets.json.0.dr	String found in binary or memory: https://rws1nvtvt.com
Source: sets.json.0.dr	String found in binary or memory: https://rws2nvtvt.com
Source: sets.json.0.dr	String found in binary or memory: https://rws3nvtvt.com
Source: sets.json.0.dr	String found in binary or memory: https://sackrace.ai
Source: sets.json.0.dr	String found in binary or memory: https://salemoveadvisor.com
Source: sets.json.0.dr	String found in binary or memory: https://salemovefinancial.com
Source: sets.json.0.dr	String found in binary or memory: https://salemovetravel.com
Source: sets.json.0.dr	String found in binary or memory: https://samayam.com
Source: sets.json.0.dr	String found in binary or memory: https://sapo.io
Source: sets.json.0.dr	String found in binary or memory: https://sapo.pt
Source: sets.json.0.dr	String found in binary or memory: https://shock.co
Source: sets.json.0.dr	String found in binary or memory: https://smaker.pl
Source: sets.json.0.dr	String found in binary or memory: https://smoney.vn
Source: sets.json.0.dr	String found in binary or memory: https://smpn106jkt.sch.id
Source: sets.json.0.dr	String found in binary or memory: https://socket-to-me.vip
Source: sets.json.0.dr	String found in binary or memory: https://songshare.com
Source: sets.json.0.dr	String found in binary or memory: https://songstats.com
Source: sets.json.0.dr	String found in binary or memory: https://sporza.be
Source: sets.json.0.dr	String found in binary or memory: https://standardsandpraiserepurpose.com
Source: sets.json.0.dr	String found in binary or memory: https://startlap.hu
Source: sets.json.0.dr	String found in binary or memory: https://startupislandtaiwan.com
Source: sets.json.0.dr	String found in binary or memory: https://startupislandtaiwan.net
Source: sets.json.0.dr	String found in binary or memory: https://startupislandtaiwan.org
Source: chromecache_243.2.dr	String found in binary or memory: https://static.addtoany.com/menu/
Source: chromecache_243.2.dr	String found in binary or memory: https://static.addtoany.com/menu/sm.25.html#type=core&event=load
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_195.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: sets.json.0.dr	String found in binary or memory: https://stripe.com
Source: sets.json.0.dr	String found in binary or memory: https://stripe.network
Source: sets.json.0.dr	String found in binary or memory: https://stripecdn.com
Source: sets.json.0.dr	String found in binary or memory: https://supereva.it
Source: chromecache_260.2.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_195.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: sets.json.0.dr	String found in binary or memory: https://takeabreak.co.uk
Source: sets.json.0.dr	String found in binary or memory: https://talkdeskqaid.com
Source: sets.json.0.dr	String found in binary or memory: https://talkdeskstgid.com
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: sets.json.0.dr	String found in binary or memory: https://teacherdashboard.com
Source: sets.json.0.dr	String found in binary or memory: https://technology-revealed.com
Source: sets.json.0.dr	String found in binary or memory: https://terazgotuje.pl
Source: sets.json.0.dr	String found in binary or memory: https://text.com
Source: sets.json.0.dr	String found in binary or memory: https://textyserver.appspot.com
Source: sets.json.0.dr	String found in binary or memory: https://the42.ie
Source: sets.json.0.dr	String found in binary or memory: https://thejournal.ie
Source: sets.json.0.dr	String found in binary or memory: https://thirdspace.org.au
Source: sets.json.0.dr	String found in binary or memory: https://timesinternet.in
Source: sets.json.0.dr	String found in binary or memory: https://timesofindia.com
Source: sets.json.0.dr	String found in binary or memory: https://tolteck.app
Source: sets.json.0.dr	String found in binary or memory: https://tolteck.com
Source: sets.json.0.dr	String found in binary or memory: https://top.pl
Source: sets.json.0.dr	String found in binary or memory: https://tribunnews.com
Source: sets.json.0.dr	String found in binary or memory: https://trytalkdesk.com
Source: sets.json.0.dr	String found in binary or memory: https://tucarro.com
Source: sets.json.0.dr	String found in binary or memory: https://tucarro.com.co
Source: sets.json.0.dr	String found in binary or memory: https://tucarro.com.ve
Source: sets.json.0.dr	String found in binary or memory: https://tvid.in
Source: sets.json.0.dr	String found in binary or memory: https://tvn.pl
Source: sets.json.0.dr	String found in binary or memory: https://tvn24.pl
Source: sets.json.0.dr	String found in binary or memory: https://unotv.com
Source: sets.json.0.dr	String found in binary or memory: https://victorymedium.com
Source: sets.json.0.dr	String found in binary or memory: https://vrt.be
Source: sets.json.0.dr	String found in binary or memory: https://vwo.com
Source: sets.json.0.dr	String found in binary or memory: https://welt.de
Source: sets.json.0.dr	String found in binary or memory: https://wieistmeineip.de
Source: sets.json.0.dr	String found in binary or memory: https://wildix.com
Source: sets.json.0.dr	String found in binary or memory: https://wildixin.com
Source: sets.json.0.dr	String found in binary or memory: https://wingify.com
Source: sets.json.0.dr	String found in binary or memory: https://wordle.at
Source: sets.json.0.dr	String found in binary or memory: https://wp.pl
Source: sets.json.0.dr	String found in binary or memory: https://wpext.pl
Source: sets.json.0.dr	String found in binary or memory: https://www.asadcdn.com
Source: chromecache_195.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_195.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_195.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_196.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_195.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_213.2.dr, chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr, chromecache_187.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_196.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_195.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__.
Source: chromecache_179.2.dr, chromecache_213.2.dr, chromecache_187.2.dr, chromecache_230.2.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__en.js
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chromecache_223.2.dr	String found in binary or memory: https://www.zoho.com/sites/cookie-policy/
Source: sets.json.0.dr	String found in binary or memory: https://ya.ru
Source: sets.json.0.dr	String found in binary or memory: https://yours.co.uk
Source: sets.json.0.dr	String found in binary or memory: https://zalo.me
Source: sets.json.0.dr	String found in binary or memory: https://zdrowietvn.pl
Source: sets.json.0.dr	String found in binary or memory: https://zingmp3.vn

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53565
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53564
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53563
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53562
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53569
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53566
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53572
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53571
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53570
Source: unknown	Network traffic detected: HTTP traffic on port 53569 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 53489 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 53523 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53563 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 53592 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53483 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53511 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53557 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53573
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53579
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53581
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 53581 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53539 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 53587 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53587
Source: unknown	Network traffic detected: HTTP traffic on port 53570 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53585
Source: unknown	Network traffic detected: HTTP traffic on port 53593 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53512 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53551 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53589
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53588
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53590
Source: unknown	Network traffic detected: HTTP traffic on port 53494 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53593
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53592
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53591
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 53506 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53477 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53477
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53476
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53479
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53478
Source: unknown	Network traffic detected: HTTP traffic on port 53517 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53534 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53480
Source: unknown	Network traffic detected: HTTP traffic on port 53528 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53484
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53483
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53482
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53481
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 53488 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 53562 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53529
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53528
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53527
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53526
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53520
Source: unknown	Network traffic detected: HTTP traffic on port 53556 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53510 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53524
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53523
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53522
Source: unknown	Network traffic detected: HTTP traffic on port 53533 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53527 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53504 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53496 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53588 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53539
Source: unknown	Network traffic detected: HTTP traffic on port 53479 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53537
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53532
Source: unknown	Network traffic detected: HTTP traffic on port 53571 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53536
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53534
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53533
Source: unknown	Network traffic detected: HTTP traffic on port 53550 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53522 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53549
Source: unknown	Network traffic detected: HTTP traffic on port 53484 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53478 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53543
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53542
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53541
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53544
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53550
Source: unknown	Network traffic detected: HTTP traffic on port 53490 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53544 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53553
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53551
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53557
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53556
Source: unknown	Network traffic detected: HTTP traffic on port 53549 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53495 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53560
Source: unknown	Network traffic detected: HTTP traffic on port 53566 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53589 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53572 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53537 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53514 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53492 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53508 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53519 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53532 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53486 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53543 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53526 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53560 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53507
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53506
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53504
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53480 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53508
Source: unknown	Network traffic detected: HTTP traffic on port 53497 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53503
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53502
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53501
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53518
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53517
Source: unknown	Network traffic detected: HTTP traffic on port 53565 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53590 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49677 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53519
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53510
Source: unknown	Network traffic detected: HTTP traffic on port 53573 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53514
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53513
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53512
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53511
Source: unknown	Network traffic detected: HTTP traffic on port 53503 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53491 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53520 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 60904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53591 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53585 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53476 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53482 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53488
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53487
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53486
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53499 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53518 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53489
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53491
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53490
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53495
Source: unknown	Network traffic detected: HTTP traffic on port 53579 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53494
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53493
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53492
Source: unknown	Network traffic detected: HTTP traffic on port 53542 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 60904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53499
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53498
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53497
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53496
Source: unknown	Network traffic detected: HTTP traffic on port 53536 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53493 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53553 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53501 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53564 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53502 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53487 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53529 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53481 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53498 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53513 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53507 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53524 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53541 -> 443

Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49707 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.9:53484 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.9:53498 version: TLS 1.2

Creates files inside the system directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\sets.json	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\manifest.json	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\LICENSE	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\_metadata\	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\_metadata\verified_contents.json	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\manifest.fingerprint	Jump to behavior

Deletes files inside the Windows folder

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\chrome_BITS_6820_2112704344

Jump to behavior

Source: classification engine

Classification label: clean2.win@24/173@34/17

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1908,i,16621473218498686646,16063989223168888059,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://mail.oilreviewmiddleeast.com/link.php?M=532162&N=675&L=522&F=H"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1908,i,16621473218498686646,16063989223168888059,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
52.222.236.129	unknown	United States	16509	AMAZON-02US	false
18.66.102.19	d1da88slxvkrhp.cloudfront.net	United States	3	MIT-GATEWAYSUS	false
185.230.212.19	l7-26-c2.zoho.eu	Netherlands	41913	COMPUTERLINEComputerlineSchlierbachSwitzerlandCH	false
172.67.39.148	unknown	United States	13335	CLOUDFLARENETUS	false
104.22.71.197	static.addtoany.com	United States	13335	CLOUDFLARENETUS	false
142.250.184.228	unknown	United States	15169	GOOGLEUS	false
52.222.236.123	oilreviewmiddleeast.com	United States	16509	AMAZON-02US	false
34.251.236.241	ws.alaincharles.com	United States	16509	AMAZON-02US	false
149.106.168.53	mail.oilreviewmiddleeast.com	United States	19999	UNIONASNUS	false
18.66.102.65	unknown	United States	3	MIT-GATEWAYSUS	false
142.250.184.196	unknown	United States	15169	GOOGLEUS	false
142.250.185.132	www.google.com	United States	15169	GOOGLEUS	false
89.36.170.147	h2-stratus.zohocdn.com	Switzerland	41913	COMPUTERLINEComputerlineSchlierbachSwitzerlandCH	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.186.100	unknown	United States	15169	GOOGLEUS	false
104.22.70.197	unknown	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.9

Contacted Domains

Name	IP	Active
oilreviewmiddleeast.com	52.222.236.123	true
d1da88slxvkrhp.cloudfront.net	18.66.102.19	true
static.addtoany.com	104.22.71.197	true
mail.oilreviewmiddleeast.com	149.106.168.53	true
www.google.com	142.250.185.132	true
h2-stratus.zohocdn.com	89.36.170.147	true
ws.alaincharles.com	34.251.236.241	true
l7-26-c2.zoho.eu	185.230.212.19	true
fp2e7a.wpc.phicdn.net	192.229.221.95	true
cdn-eu.pagesense.io	unknown	unknown
static.zohocdn.com	unknown	unknown
pagesense-collect.zoho.eu	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://oilreviewmiddleeast.com/media/vendor/bootstrap/js/popper.min.js?5.3.0	false	unknown
https://oilreviewmiddleeast.com/media/vendor/bootstrap/js/dom.min.js?5.3.0	false	unknown
https://oilreviewmiddleeast.com/templates/ja_teline_v/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0	false	unknown
https://pagesense-collect.zoho.eu/pslog.gif?type=2	false	unknown
https://oilreviewmiddleeast.com/media/com_finder/js/finder.min.js?a2c3894d062787a266d59d457ffba5481b639f64	false	unknown
https://oilreviewmiddleeast.com/banners/_images/ORME_HB_Oman_010724_310724.gif	false	unknown
https://oilreviewmiddleeast.com/images/ochri/de23667cea1252d10fde50fa0ecbdff3-728px.webp	false	unknown
https://mail.oilreviewmiddleeast.com/link.php?M=532162&N=675&L=522&F=H	false	unknown
https://oilreviewmiddleeast.com/t3-assets/css/css-eceeb-78747.css	false	unknown
https://oilreviewmiddleeast.com/templates/ja_teline_v/favicon.ico	false	unknown
https://oilreviewmiddleeast.com/banners/_images/twit_icon.png	false	unknown
https://www.google.com/js/bg/Cyqba_K0pUDdT5_AhrcTxS5-b1C3jUsFpG6edXmCObU.js	false	unknown
https://oilreviewmiddleeast.com/media/vendor/bootstrap/js/popover.min.js?5.3.2	false	unknown
https://static.addtoany.com/menu/modules/core.m4v434v2.js	false	unknown
https://ws.alaincharles.com/matomo.js	false	unknown

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 25 21:32:17 2024, atime=Wed Sep 27 08:36:55 2023, length=1210144, window=hide	FD3475D65E9AD5F0D3D608992CC89192	B3F63FDDDAF219A72C04A6B0BD0B725639E5D438	91091855E146C29947DFAD8042C99774478AE8731807AB3B0D34BF1C433A7624
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 25 21:32:17 2024, atime=Wed Sep 27 08:36:55 2023, length=1210144, window=hide	0B89DF92718DC18A88EB1D8A906D45E4	9F0964990E1A2CAC7BD6DE5501AE39A6FC15D949	4692B4D999F4EE0762395818E232DB603A52B3B6A93325F702677EAA5C4D8849
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 5 07:56:51 2023, atime=Wed Sep 27 08:36:55 2023, length=1210144, window=hide	973092AD1941699AC75C5D37CC5C1E7C	30BA5634AF5764227DD8D1E0621BF528303440E2	87AB14D4C72FFB1EF534567266AE2A4C23F8DEBC2DC0B1A9992F6B350C0A7DD8
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 25 21:32:17 2024, atime=Wed Sep 27 08:36:55 2023, length=1210144, window=hide	73F20E8C16A7C9156D677CD6393F3060	42CBD0C138DE2199CE67F113994A5FC70681FEBB	312F88B69E6F674B9F120698D9B64FDC051CEA00E2C072E8214D0D732E929A34
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 25 21:32:17 2024, atime=Wed Sep 27 08:36:55 2023, length=1210144, window=hide	D8D1B8B01E082C71695672E7B9183C83	7BB857C273DDFC95FD71E42F27FF243EBC4443EF	19DCAD68C4F8B75703CED88A524DAA04583E8F3467F2686DBA85E23959639E93
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 25 21:32:17 2024, atime=Wed Sep 27 08:36:55 2023, length=1210144, window=hide	EDE41CDB7A25E846456A0C718988D1B7	AD8EF62150E1F019A79CDDE1F54F320C1C0E6041	E1445B2B1575BEC41F79772D26BF50F27462E50A02DA03ACB6243C8761EC42DC
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\LICENSE	ASCII text	EE002CB9E51BB8DFA89640A406A1090A	49EE3AD535947D8821FFDEB67FFC9BC37D1EBBB2	3DBD2C90050B652D63656481C3E5871C52261575292DB77D4EA63419F187A55B
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\_metadata\verified_contents.json	JSON data	68E6B5733E04AB7BF19699A84D8ABBC2	1C11F06CA1AD3ED8116D356AB9164FD1D52B5CF0	F095F969D6711F53F97747371C83D5D634EAEF21C54CB1A6A1CC5B816D633709
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\manifest.fingerprint	ASCII text, with no line terminators	CFB54589424206D0AE6437B5673F498D	D1EF6314F0F68EFDD0BA8F6CA9E59BFF863B1609	285AC183C35350B4B77332172413902F83726CA8F53D63859B5DA082FD425A1C
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\manifest.json	JSON data	C3419069A1C30140B77045ABA38F12CF	11920F0C1E55CADC7D2893D1EEBB268B3459762A	DB9A702209807BA039871E542E8356219F342A8D9C9CA34BCD9A86727F4A3A0F
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\sets.json	JSON data	EEA4913A6625BEB838B3E4E79999B627	1B4966850F1B117041407413B70BFA925FD83703	20EF4DE871ECE3C5F14867C4AE8465999C7A2CC1633525E752320E61F78A373C
Chrome Cache Entry: 174	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced	EF9941290C50CD3866E2BA6B793F010D	4736508C795667DCEA21F8D864233031223B7832	1B9EFB22C938500971AAC2B2130A475FA23684DD69E43103894968DF83145B8A
Chrome Cache Entry: 175	RIFF (little-endian) data, Web/P image, VP8 encoding, 480x200, Scaling: [none]x[none], YUV color, decoders should clamp	EC31BC192CCD94F5FD7F779385071708	8B6CB2389B6D0F000386332037AFD546F775E9B8	1C6FDE0B4EACCA6123D87F0F79409A85FB4A8F39B470986CCF14637336FA9F15
Chrome Cache Entry: 176	GIF image data, version 89a, 728 x 90	48250DA4774D7D6FA478C901B74FF36C	338CEB9012189E85C6C2EEEF9B5D1A8486A2E126	B9226BB2BEE62CA549053F0A0DA4E9C946846D55920F49ACF27B2F69E1ADEE60
Chrome Cache Entry: 177	ASCII text, with no line terminators	885BE296B72C01B844A2ADDC97BE03DB	0696C38C7746AA5C930B4A679282A156FC69784F	122ED4DB2019348AEF89A605E3EB79C6004F5727F16144DC46B61F31EE131764
Chrome Cache Entry: 178	gzip compressed data, from Unix, original size modulo 2^32 18838	1003A423E246D93F0536ED685397998F	C80FC499C2726CE9BCE533EAD29518A1F0FE5BF3	78E28437698E0EE42F572FCFA4CE8A936160C97913EAE25591DEC340942B07EC
Chrome Cache Entry: 179	ASCII text, with no line terminators	9AFB0D35BB088B3036561313BF7CE1F4	C7F3FDE34C537242969FBBD736B5B129611F1694	6E4501CE6F65A1B8671A9D31A8F5AB56DFA4E30AA7A4A971DAA1544AB2EB53C1
Chrome Cache Entry: 180	PNG image data, 61 x 59, 8-bit colormap, non-interlaced	1A4ED4034EFDFCF9E4DA03250D858D5D	BD09F4BD2F8E72E29EDFE74FA906572D227CFB7A	EA56B37B1447D136760AD64AC9D42605BB1AD16EF3370933A776E7C2CDB83AF5
Chrome Cache Entry: 181	gzip compressed data, from Unix, original size modulo 2^32 26167	C91986F76F49711F42FD6DCB46D068C1	6DC9C9929EA132B90784A72517F2CDFABDD0CD74	23B07FEC29312080D471148208EAEBAE74472124AA410E907191750485DA8142
Chrome Cache Entry: 182	ASCII text, with very long lines (65536), with no line terminators	BCA8AC9473A8BBDC1E3C843273994DD1	D0EB37896D1D0E3300D498399985B64E86C3422E	65EA5608C12641923DA0224AC33E63B2F3061C5518FB09C88F60959108E3ABC3
Chrome Cache Entry: 183	ASCII text, with very long lines (65536), with no line terminators	B0B52E840E29CC0F25C22484F7ED45A6	82259974AAE6557BA2B7EBB8DBD8863B6DB1629D	1CD3F28CDD95B9189601F65545A6FC9095734F3BF7D2F74F13E60D86FC86DA77
Chrome Cache Entry: 184	ASCII text, with very long lines (1601)	A3A7245D6DAF7D31D2069C0BA05879DD	EC1BF464889E71AEC1CED6D8361A26C76E4A1460	D7FC375178C93A2FC15FD888E30170EEDF4EF3D04497E7F951AB7BFE0C921693
Chrome Cache Entry: 185	gzip compressed data, from Unix, original size modulo 2^32 149352	45A56B3BCBD4C98BDAFA5C16AB9EC31E	56F0F5DBB0A09395F204FE8DC5851C81E0F14151	0D733B1570C111FDEA9A38FBB7D91712730F5C61963F7CED41764F85904E2E2B
Chrome Cache Entry: 186	gzip compressed data, from Unix, original size modulo 2^32 20635	652ABF15B2B6AFA20DEA53C2A5B0F17B	CF1C81AD4B0F39F8CFA2FB5CE97E8E318189505B	A570BA92B114167AF0D1A58DCDE80859569B24D4ABF0F788D7C7C60F65F44141
Chrome Cache Entry: 187	ASCII text, with very long lines (1468), with no line terminators	C2D0E7DA2BAD0B7B688E642298F58D2A	7A377BEF298DD24CCAB08F02394E904C95559F5A	C05297495E5D1CDC40485088B126804181268D3EB3084D2ABD277D40B94A3147
Chrome Cache Entry: 188	RIFF (little-endian) data, Web/P image, VP8 encoding, 728x90, Scaling: [none]x[none], YUV color, decoders should clamp	2B1DEE8EEC8A07AF4C81834557B6914A	7785D2969F8297B4C57960D975B8FFD3BD51A2B2	87C514699DCE2F2F2A43336CECFBCB47D486BB6F6E80C773D8EACC4D85680954
Chrome Cache Entry: 189	RIFF (little-endian) data, Web/P image, VP8 encoding, 787x399, Scaling: [none]x[none], YUV color, decoders should clamp	40D852B61780315AE09921FD58FC8EB6	04A7BC3D5DDCE848A64904417A5731E7A9E847B8	22536DD47D5315A484D8DD4038C292217406789AB42EA18B957EA8D8DC05B166
Chrome Cache Entry: 190	ASCII text, with very long lines (1108), with no line terminators	0E8B3AC6BDA5451FF39C5ECD6D7B3873	FB477A11167000A30E45369E686EC43DD62D026B	C15E1379CA2C59F99912500BBC23A0D1D88F43198CBE1B53D87776FA351385EB
Chrome Cache Entry: 191	gzip compressed data, from Unix, original size modulo 2^32 4377	ECCF4CE2FF9EF9387CBD68C16098DA2C	B1D0936582B0477CE15E3AA9D35B308D191CDF9D	32859D2277095945E7584FDBD93B94417675462A4259D2AB65CA36FCAFBB99F2
Chrome Cache Entry: 192	Web Open Font Format (Version 2), TrueType, length 15344, version 1.0	5D4AEB4E5F5EF754E307D7FFAEF688BD	06DB651CDF354C64A7383EA9C77024EF4FB4CEF8	3E253B66056519AA065B00A453BAC37AC5ED8F3E6FE7B542E93A9DCDCC11D0BC
Chrome Cache Entry: 193	ASCII text, with no line terminators	885BE296B72C01B844A2ADDC97BE03DB	0696C38C7746AA5C930B4A679282A156FC69784F	122ED4DB2019348AEF89A605E3EB79C6004F5727F16144DC46B61F31EE131764
Chrome Cache Entry: 194	PNG image data, 57 x 59, 8-bit colormap, non-interlaced	60E3B4024688821504BD8369D5E4142B	7D6E91728BA7F7D54D2E78FFFB27AF2DB6B8D785	64F9C255FC6B0DB4197FC6C917D04C07DF337098003A657BEF523BF985BFDF84
Chrome Cache Entry: 195	ASCII text, with very long lines (2343)	575B5480531DA4D14E7453E2016FE0BC	E5C5F3134FE29E60B591C87EA85951F0AEA36EE1	DE36E50194320A7D3EF1ACE9BD34A875A8BD458B253C061979DD628E9BF49AFD
Chrome Cache Entry: 196	ASCII text, with very long lines (7726)	AF4FF3F4BE9259703E446D429DF2764D	07526131A07F28BCEAD3DE8429B8A6B2FB3318A2	E534F789C7CC916D029BDBB9291C0916071A6D4F5A1F86C53464EC84D178F4C0
Chrome Cache Entry: 197	RIFF (little-endian) data, Web/P image, VP8 encoding, 480x200, Scaling: [none]x[none], YUV color, decoders should clamp	EC31BC192CCD94F5FD7F779385071708	8B6CB2389B6D0F000386332037AFD546F775E9B8	1C6FDE0B4EACCA6123D87F0F79409A85FB4A8F39B470986CCF14637336FA9F15
Chrome Cache Entry: 198	gzip compressed data, from Unix, original size modulo 2^32 31181	1DBD7071AFC71F993ADEBF60060E2594	FB16B2E09A5A18A21CB182429F5A30E36CD1D167	69EA55A16D27A7BC564A9AD4AD0ABF4485E2F4C3D9E8A9E49A5811E5651D7E75
Chrome Cache Entry: 199	ASCII text, with very long lines (429), with no line terminators	014BCC757E484E12E3AEA6C9D768FD4B	4C17157D0012F8002E4E6CF77C5F4A9747792CF4	4B475960843A5619B907AF1F0A89E3136BD5E6A4A700EC78CB417F302647CF49
Chrome Cache Entry: 200	GIF image data, version 89a, 728 x 90	DDC9DD6A4DDBB721279670110AC0BCE7	D48827D435E3AB2BCEB53B0C9BDAABBB4EECA5B3	000B6F601B6C25D6FDBF2AD8989C12CA0681AF550B17EBF4FA5462572E9D6139
Chrome Cache Entry: 201	ASCII text, with very long lines (65536), with no line terminators	BCA8AC9473A8BBDC1E3C843273994DD1	D0EB37896D1D0E3300D498399985B64E86C3422E	65EA5608C12641923DA0224AC33E63B2F3061C5518FB09C88F60959108E3ABC3
Chrome Cache Entry: 202	PNG image data, 61 x 59, 8-bit colormap, non-interlaced	A5F86FAC4E4DABBA96EC08C77D3D6315	6633BC8AF96216D79747117D6C383247B12FF9DD	CA691D70F801B8656D74BD31814BBAFB207BB5781DDFA13C9EB0B44FDA987A68
Chrome Cache Entry: 203	gzip compressed data, from Unix, original size modulo 2^32 4377	ECCF4CE2FF9EF9387CBD68C16098DA2C	B1D0936582B0477CE15E3AA9D35B308D191CDF9D	32859D2277095945E7584FDBD93B94417675462A4259D2AB65CA36FCAFBB99F2
Chrome Cache Entry: 204	ASCII text, with very long lines (435), with no line terminators	642BB6C34A06BBBC8A77593BE82CE6A4	E15D59B78D23923DB8723101F547775413F3D3A9	CE5DBB2CDB85126FDC9D774971A56F8848DBEE977A382BD512A5F8B49EA8C727
Chrome Cache Entry: 205	gzip compressed data, from Unix, original size modulo 2^32 211964	F885BB6684CEAD84E08AF29ECE5705C5	333F328296B3C89D2CD4788BDE0E2FDD7ABAE8FF	D7D6054D7244FA815ED4F2A067AA44E3FFD48BD0EC8E19CF656EFE40C75120CF
Chrome Cache Entry: 206	ASCII text, with very long lines (7726)	3B287726820B928D6FE77F2E58B7A1BD	23EBFEF55DC2A3FA10E02D454A228B98B9645FB7	4A2EAB3FE36BC331C6943289A616B405C62BF3E5BDCBEE48FB33084F2564FFF7
Chrome Cache Entry: 207	PNG image data, 53 x 59, 8-bit colormap, non-interlaced	87E96924635C4BF299D73FE193F1D053	876E39328958AD9F6F8315BEB2C97D4A3F7EB459	C03F6BA25ABA81FA2495A597AEDC986103702FC6F5F12E34B209490351D7141E
Chrome Cache Entry: 208	PNG image data, 310 x 120, 8-bit/color RGBA, non-interlaced	8AEC5EF27A23602FD3FB11724A1EAC76	3AB5757DC80E0B8DABB7762854813480CF2ECBBC	05EAF795AD319294B11FEB5631352A39E377F13E88190A4D986154C3FFB0DEC9
Chrome Cache Entry: 209	Web Open Font Format (Version 2), TrueType, length 15552, version 1.0	285467176F7FE6BB6A9C6873B3DAD2CC	EA04E4FF5142DDD69307C183DEF721A160E0A64E	5A8C1E7681318CAA29E9F44E8A6E271F6A4067A2703E9916DFD4FE9099241DB7
Chrome Cache Entry: 210	gzip compressed data, max compression, truncated	182B72B04FDE4D689F2812E722059654	13EB7BB0BEE6DCB9C3EE2C2DCE6193D216C721F5	C1F6EC2FFA5DAA83C2CC0F2D6F4EFB223DE6BD2FDC71CD1D47605905AB26D5D5
Chrome Cache Entry: 211	GIF image data, version 89a, 728 x 90	48250DA4774D7D6FA478C901B74FF36C	338CEB9012189E85C6C2EEEF9B5D1A8486A2E126	B9226BB2BEE62CA549053F0A0DA4E9C946846D55920F49ACF27B2F69E1ADEE60
Chrome Cache Entry: 212	ASCII text	DB16AA9BB0CF68DE639421DB6F396DDB	2D58CDFD95EC764BC7EA64F7A852E6CC70E23152	2048F426FD5B03F4E251691976F1C157F9388410F9A2E02C5D5B85C8807290EB
Chrome Cache Entry: 213	ASCII text, with very long lines (1468), with no line terminators	C2D0E7DA2BAD0B7B688E642298F58D2A	7A377BEF298DD24CCAB08F02394E904C95559F5A	C05297495E5D1CDC40485088B126804181268D3EB3084D2ABD277D40B94A3147
Chrome Cache Entry: 214	ASCII text, with very long lines (701)	88A5FED5C87B1D3704AB225CFBE7A130	D64243C18FBAA356E4ABAE8414CCC4772D64060B	F8E5F5CE9FF44073CFF24BCD3D2B8AA4E67B67891B14FF929FE4743880FDF82E
Chrome Cache Entry: 215	gzip compressed data, from Unix, original size modulo 2^32 1355	2EF4175DCCF66A08163D51811C91C0F6	96C3B7DFD7635DECB6B0407E84CC3C9B8856DFC4	9ACCCBC07ABB4D8806D8958A66120E73179B2558C2E82FE0E6AA176FFA8F1C44
Chrome Cache Entry: 216	RIFF (little-endian) data, Web/P image, VP8 encoding, 728x90, Scaling: [none]x[none], YUV color, decoders should clamp	2B1DEE8EEC8A07AF4C81834557B6914A	7785D2969F8297B4C57960D975B8FFD3BD51A2B2	87C514699DCE2F2F2A43336CECFBCB47D486BB6F6E80C773D8EACC4D85680954
Chrome Cache Entry: 217	gzip compressed data, from Unix, original size modulo 2^32 7480	E40EE2C5BFCBE32DF62287490AE397DA	5F7B400EF558B88988823DE96C2C40F5484221B9	097CCD46B98B8EA0391877DFF27D3FCB15791D2C6464D948BCFA3647D5305901
Chrome Cache Entry: 218	ASCII text	9AF1275A8AC680C8056E2742A7588116	95D54821A0D01CA403F29A73C1BE72A73A85DBCC	C0D8E177B9732A0F474EBE09766B3D879C2F41C21CC74DE04F364D03C335119B
Chrome Cache Entry: 219	MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel	C5E49F120799012C77FF35E94C55B263	69327508A21E644A7E2CBE87F8C2958EA3962FF5	06FB69D4BC131967407169AE994A4551C2D9480CACB40385ED8EE6576220B5F8
Chrome Cache Entry: 220	RIFF (little-endian) data, Web/P image, VP8 encoding, 728x120, Scaling: [none]x[none], YUV color, decoders should clamp	09B3DF49883CA6BEB274EB4FC6993B4A	30F7FC6498DFEA9DD09FE8AC226A15FF4F8DF983	2DC91444385A58AAE3B79D56DCFC7B9B9AE8C5582CE6DB6AE7D3EA081C4AFF21
Chrome Cache Entry: 221	Web Open Font Format (Version 2), TrueType, length 51404, version 1.0	B904FCDF1C4C6059FADD6893A7BC7619	F41D1674F02616F03EF77D4E84B3AD8BA28A36FC	517EDD119C5B2719E6AC4B30BF1FD864A6395179A41D273C0AFC0696E7495D8E
Chrome Cache Entry: 222	PNG image data, 62 x 59, 8-bit/color RGBA, interlaced	CCCFB3AA6C7848D5550643BFF6E39113	0A44C0BC94B3A766044DDB484D47B013FFA3EF90	C2A193DD0818B0C788354F2380C4EDF30AA87FCC2F9EC6EE013A8A9AEC4EB8E7
Chrome Cache Entry: 223	ASCII text, with very long lines (480)	CD31C57352856F3C8B374BE9FE5DAB8F	15798E727D483C688E1F003A3B0DE39403593F00	44DA760B6A17A4990833982AF9EFEF434EBD7949783533777D1F48E0C376CC00
Chrome Cache Entry: 224	MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel	C5E49F120799012C77FF35E94C55B263	69327508A21E644A7E2CBE87F8C2958EA3962FF5	06FB69D4BC131967407169AE994A4551C2D9480CACB40385ED8EE6576220B5F8
Chrome Cache Entry: 225	gzip compressed data, max compression, original size modulo 2^32 40	95FFCA7377914F94310E5B7FFF96DE60	18CF8D111DC5A6B7129C7A81F1F9746BAEF402D7	7130C1941D80BF2F6E1AFBD43D9667E3FC48F0B58FA3C4E6E92CD8B318155F2E
Chrome Cache Entry: 226	ASCII text, with very long lines (18272)	51577CA8402B9A0AC5D7BA6D0C802355	7B7690BC3F57AF01AF9DF7632DE3D444CB585B9B	0B2A9B6BF2B4A540DD4F9FC086B713C52E7E6F50B78D4B05A46E9E75798239B5
Chrome Cache Entry: 227	ASCII text, with very long lines (435), with no line terminators	642BB6C34A06BBBC8A77593BE82CE6A4	E15D59B78D23923DB8723101F547775413F3D3A9	CE5DBB2CDB85126FDC9D774971A56F8848DBEE977A382BD512A5F8B49EA8C727
Chrome Cache Entry: 228	gzip compressed data, from Unix, original size modulo 2^32 81039	3F4314CAA61F866EED02C78D7D531C7E	E5F24E434AD26BD85AD910BDCCD21A4E0F5ED96D	DB3458160020F1E0BD0986A4491202A3AD030D6D5FA8F5F6E8243E6251EEB886
Chrome Cache Entry: 229	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced	EF9941290C50CD3866E2BA6B793F010D	4736508C795667DCEA21F8D864233031223B7832	1B9EFB22C938500971AAC2B2130A475FA23684DD69E43103894968DF83145B8A
Chrome Cache Entry: 230	ASCII text, with no line terminators	9AFB0D35BB088B3036561313BF7CE1F4	C7F3FDE34C537242969FBBD736B5B129611F1694	6E4501CE6F65A1B8671A9D31A8F5AB56DFA4E30AA7A4A971DAA1544AB2EB53C1
Chrome Cache Entry: 231	gzip compressed data, from Unix, original size modulo 2^32 81039	5C4BC3F2C65C7B8A43B210340282A1AA	34623D59C1DEE23E85098D1B893450AF4FE567A6	456A2D01BD8D152306915EF2F052C0A0C61A81772C86B6DD86D670BBE31516EC
Chrome Cache Entry: 232	Web Open Font Format (Version 2), TrueType, length 34328, version 1.0	6581AB53C220B5828E37162349375431	1922912CA5AB6EB5A55DB138B183B38D066E85C8	A8E429611131E3FDC2018EC943A36100DBABB4AAA788C8DEAD6BDCF927917293
Chrome Cache Entry: 233	gzip compressed data, from Unix, original size modulo 2^32 1925	0E9A0F6729DA8AA4A173E01218A07574	46BB3F7AD97E324512755A4181EAB56116EA9C73	E6C96306B5163143C35EDC360A7E12DEDD5C2EB45AE6012E1BC97BD58CC9BF90
Chrome Cache Entry: 234	GIF image data, version 89a, 728 x 90	DDC9DD6A4DDBB721279670110AC0BCE7	D48827D435E3AB2BCEB53B0C9BDAABBB4EECA5B3	000B6F601B6C25D6FDBF2AD8989C12CA0681AF550B17EBF4FA5462572E9D6139
Chrome Cache Entry: 235	RIFF (little-endian) data, Web/P image, VP8 encoding, 300x600, Scaling: [none]x[none], YUV color, decoders should clamp	7AD1C985C74A218C25818A0FDECA614C	70298D6C9AC7AA8676F0E3E10CD9931878F1C0D8	AE2A89E624CA8F4F6155FC71754B837F2D69E8C526EE70AD04E7B7E31CE6A793
Chrome Cache Entry: 236	RIFF (little-endian) data, Web/P image, VP8 encoding, 300x600, Scaling: [none]x[none], YUV color, decoders should clamp	7AD1C985C74A218C25818A0FDECA614C	70298D6C9AC7AA8676F0E3E10CD9931878F1C0D8	AE2A89E624CA8F4F6155FC71754B837F2D69E8C526EE70AD04E7B7E31CE6A793
Chrome Cache Entry: 237	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 300x600, components 3	A140C1CFC8534539437438DCDD16B9C6	2E66384F7A05D044E639C42B633680A81F3A121F	916447D68A3D7F9DC408E6C8DB3B7536AAB1F1070A879194CDF54426AA1421F6
Chrome Cache Entry: 238	GIF image data, version 89a, 728 x 120	6511EE734DACAE401A10C401558CAF10	2772D60A7F08C3A69EA10C036B0EA460F15BC06D	F059BB5A14BA9D8526F1950864B0AEB61B3496C7C4745F1CB97935BED4D50EFB
Chrome Cache Entry: 239	ASCII text, with very long lines (701)	88A5FED5C87B1D3704AB225CFBE7A130	D64243C18FBAA356E4ABAE8414CCC4772D64060B	F8E5F5CE9FF44073CFF24BCD3D2B8AA4E67B67891B14FF929FE4743880FDF82E
Chrome Cache Entry: 240	ASCII text	504DA43C893D66E1F5181C5050A0A83B	647005FC12B79B3CA2BB30C059899D5994E3E34D	B2780D4CC319DA7A668FA616E02C74F77835975DD95C989340DC2538709AE805
Chrome Cache Entry: 241	gzip compressed data, from Unix, original size modulo 2^32 11314	56B1F1D12271A8025ACA9B5937A33EC2	6EAA80A4760BB544576324DE129C2BE53988BC17	E083B3C817FAB27AFB51A6EEC58C8F6AE90F3468BE69E89E2B51AE997A149532
Chrome Cache Entry: 242	ASCII text	9CFDF91EFC9AEB170F1D9A70D43DBDDD	DA2295885D841A2A2E617D72799FBBA5F3A756DB	668DE9EFE0491EA7CF72D78384E6813402ED10FD25F795BBDDB48D889ADA87BF
Chrome Cache Entry: 243	ASCII text, with very long lines (3152), with no line terminators	0C8F7FBE33CEAF5EC18B170F4654AC35	F0C975479970A22C7076EE15506F3F9680F0F925	FA2C31F1139ECDB4A5EE194DF5B10F4844435639CDF791BEBAE6C49EE5B05089
Chrome Cache Entry: 244	GIF image data, version 89a, 728 x 120	6511EE734DACAE401A10C401558CAF10	2772D60A7F08C3A69EA10C036B0EA460F15BC06D	F059BB5A14BA9D8526F1950864B0AEB61B3496C7C4745F1CB97935BED4D50EFB
Chrome Cache Entry: 245	gzip compressed data, from Unix, original size modulo 2^32 20635	652ABF15B2B6AFA20DEA53C2A5B0F17B	CF1C81AD4B0F39F8CFA2FB5CE97E8E318189505B	A570BA92B114167AF0D1A58DCDE80859569B24D4ABF0F788D7C7C60F65F44141
Chrome Cache Entry: 246	gzip compressed data, from Unix, original size modulo 2^32 71417	34CAF538915167D6831BA9570E216EA7	6288DBA5B8766A77A3D43950E454BD76DB68C87E	68C22713494901948A51C155F655D49E5E1249C0539976E58AE964B614FCED7C
Chrome Cache Entry: 247	ASCII text, with very long lines (18272)	51577CA8402B9A0AC5D7BA6D0C802355	7B7690BC3F57AF01AF9DF7632DE3D444CB585B9B	0B2A9B6BF2B4A540DD4F9FC086B713C52E7E6F50B78D4B05A46E9E75798239B5
Chrome Cache Entry: 248	PNG image data, 61 x 59, 8-bit colormap, non-interlaced	A5F86FAC4E4DABBA96EC08C77D3D6315	6633BC8AF96216D79747117D6C383247B12FF9DD	CA691D70F801B8656D74BD31814BBAFB207BB5781DDFA13C9EB0B44FDA987A68
Chrome Cache Entry: 249	RIFF (little-endian) data, Web/P image, VP8 encoding, 728x120, Scaling: [none]x[none], YUV color, decoders should clamp	3EFE5813C3F2B41DC0FD7E78AA3EE29B	BA73C40D289F33F4F25D6FCBB4276D1F1934021C	17A99ED379674959C4CED3FDCE91DCC354607F4D0DEE8FA8DC54C092AE6F5C62
Chrome Cache Entry: 250	gzip compressed data, from Unix, original size modulo 2^32 87533	ED0A939F04C3531DD21D023427614B06	452EE75021958D6C81E3860535E2D5A53D097762	2DA6F8F00A47E65AD09E938417333184A4AC127E33F728B265C6A37AB04E8107
Chrome Cache Entry: 251	RIFF (little-endian) data, Web/P image, VP8 encoding, 728x90, Scaling: [none]x[none], YUV color, decoders should clamp	4212DF839095E3789CBCE8976C51A915	96A67EBEBF5783C17950F1F3BEFBF74B7790F72C	C47FCEE0D7D8264E27696523E84E669D83179C169ACD7B08B0E9068F47A799AF
Chrome Cache Entry: 252	gzip compressed data, from Unix, original size modulo 2^32 87533	B66A616491F192B316C446B4E132632E	ACD6E719206AA0CA119392F6C04FDC378876C445	B5B932A8AC58703D4AB786C9425EEED33FFC59C2D316AAB16546AFE275B7E052
Chrome Cache Entry: 253	gzip compressed data, from Unix, original size modulo 2^32 18838	17CA10AF7237508D26856FD178B39FBF	59959A16C23F04651FDC1345C93D7CB3EA61EB8E	273FA29D8807E79B58AF5CA74CFBAA072A376B37AB1F58D444BC360B5544E89C
Chrome Cache Entry: 254	ASCII text, with very long lines (65536), with no line terminators	47BEA70318B724B1A99A1D571FF58807	B66FFE704AD2FE84DA8211D6351727568FD68B78	11A188A204934185AB5649A1F838FE771C3D84C928BC8286EF999FB5B8DEDA69
Chrome Cache Entry: 255	PNG image data, 53 x 59, 8-bit colormap, non-interlaced	87E96924635C4BF299D73FE193F1D053	876E39328958AD9F6F8315BEB2C97D4A3F7EB459	C03F6BA25ABA81FA2495A597AEDC986103702FC6F5F12E34B209490351D7141E
Chrome Cache Entry: 256	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 300x600, components 3	A140C1CFC8534539437438DCDD16B9C6	2E66384F7A05D044E639C42B633680A81F3A121F	916447D68A3D7F9DC408E6C8DB3B7536AAB1F1070A879194CDF54426AA1421F6
Chrome Cache Entry: 257	HTML document, ASCII text, with very long lines (624)	41B7ED0CBE240173EEA85148FCBA633E	39ACD5FE099974486A1C9BA11BA0FE7BE6BC97CA	274D4116239B63097BB7C16E56E27CBB5A77BE20392FB8E2317C0A0235185CAD
Chrome Cache Entry: 258	PNG image data, 62 x 59, 8-bit/color RGBA, interlaced	CCCFB3AA6C7848D5550643BFF6E39113	0A44C0BC94B3A766044DDB484D47B013FFA3EF90	C2A193DD0818B0C788354F2380C4EDF30AA87FCC2F9EC6EE013A8A9AEC4EB8E7
Chrome Cache Entry: 259	gzip compressed data, from Unix, original size modulo 2^32 26167	EDDBD9FF7092B2ECD873DB872FC52F1C	8BCE8AB35E4B6A1FA1C39EE0EE9EB18FB26911A7	7CF6F00097863546CE415D8A2338A11357C6F98B9A28D8D266B817CF8C973F00
Chrome Cache Entry: 260	ASCII text, with very long lines (701)	88A5FED5C87B1D3704AB225CFBE7A130	D64243C18FBAA356E4ABAE8414CCC4772D64060B	F8E5F5CE9FF44073CFF24BCD3D2B8AA4E67B67891B14FF929FE4743880FDF82E
Chrome Cache Entry: 261	gzip compressed data, from Unix, original size modulo 2^32 11314	56B1F1D12271A8025ACA9B5937A33EC2	6EAA80A4760BB544576324DE129C2BE53988BC17	E083B3C817FAB27AFB51A6EEC58C8F6AE90F3468BE69E89E2B51AE997A149532
Chrome Cache Entry: 262	RIFF (little-endian) data, Web/P image, VP8 encoding, 728x90, Scaling: [none]x[none], YUV color, decoders should clamp	4212DF839095E3789CBCE8976C51A915	96A67EBEBF5783C17950F1F3BEFBF74B7790F72C	C47FCEE0D7D8264E27696523E84E669D83179C169ACD7B08B0E9068F47A799AF
Chrome Cache Entry: 263	data	53BA2FE4515468AF4719F25FC45CA52B	6E5DBA322A2F2074577317971B354DFB38C8C944	CFECF42CBE78C32AE0C1741F7A9EF39C0D71C31E13DE3A7F3FFBDA9B7B16EA76
Chrome Cache Entry: 264	RIFF (little-endian) data, Web/P image, VP8 encoding, 728x120, Scaling: [none]x[none], YUV color, decoders should clamp	09B3DF49883CA6BEB274EB4FC6993B4A	30F7FC6498DFEA9DD09FE8AC226A15FF4F8DF983	2DC91444385A58AAE3B79D56DCFC7B9B9AE8C5582CE6DB6AE7D3EA081C4AFF21
Chrome Cache Entry: 265	PNG image data, 61 x 59, 8-bit colormap, non-interlaced	1A4ED4034EFDFCF9E4DA03250D858D5D	BD09F4BD2F8E72E29EDFE74FA906572D227CFB7A	EA56B37B1447D136760AD64AC9D42605BB1AD16EF3370933A776E7C2CDB83AF5
Chrome Cache Entry: 266	RIFF (little-endian) data, Web/P image, VP8 encoding, 728x120, Scaling: [none]x[none], YUV color, decoders should clamp	3EFE5813C3F2B41DC0FD7E78AA3EE29B	BA73C40D289F33F4F25D6FCBB4276D1F1934021C	17A99ED379674959C4CED3FDCE91DCC354607F4D0DEE8FA8DC54C092AE6F5C62
Chrome Cache Entry: 267	PNG image data, 57 x 59, 8-bit colormap, non-interlaced	60E3B4024688821504BD8369D5E4142B	7D6E91728BA7F7D54D2E78FFFB27AF2DB6B8D785	64F9C255FC6B0DB4197FC6C917D04C07DF337098003A657BEF523BF985BFDF84
Chrome Cache Entry: 268	gzip compressed data, from Unix, original size modulo 2^32 77160	FCC83433F2982B3176C434A2BD431633	6CC5337266D418D49EE06F84C9E516D02436F9E1	68657321657A4F0616EDD1FF7323D74A0EB3695628B1D17FD49B2B8216DD1EE8
Chrome Cache Entry: 269	gzip compressed data, from Unix, original size modulo 2^32 1355	2EF4175DCCF66A08163D51811C91C0F6	96C3B7DFD7635DECB6B0407E84CC3C9B8856DFC4	9ACCCBC07ABB4D8806D8958A66120E73179B2558C2E82FE0E6AA176FFA8F1C44
Chrome Cache Entry: 270	RIFF (little-endian) data, Web/P image, VP8 encoding, 787x399, Scaling: [none]x[none], YUV color, decoders should clamp	40D852B61780315AE09921FD58FC8EB6	04A7BC3D5DDCE848A64904417A5731E7A9E847B8	22536DD47D5315A484D8DD4038C292217406789AB42EA18B957EA8D8DC05B166
Chrome Cache Entry: 271	ASCII text, with very long lines (1108), with no line terminators	0E8B3AC6BDA5451FF39C5ECD6D7B3873	FB477A11167000A30E45369E686EC43DD62D026B	C15E1379CA2C59F99912500BBC23A0D1D88F43198CBE1B53D87776FA351385EB
Chrome Cache Entry: 272	PNG image data, 310 x 120, 8-bit/color RGBA, non-interlaced	8AEC5EF27A23602FD3FB11724A1EAC76	3AB5757DC80E0B8DABB7762854813480CF2ECBBC	05EAF795AD319294B11FEB5631352A39E377F13E88190A4D986154C3FFB0DEC9
Chrome Cache Entry: 273	gzip compressed data, from Unix, original size modulo 2^32 7480	E40EE2C5BFCBE32DF62287490AE397DA	5F7B400EF558B88988823DE96C2C40F5484221B9	097CCD46B98B8EA0391877DFF27D3FCB15791D2C6464D948BCFA3647D5305901

Source: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analytics	HTTP Parser: No favicon
Source: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analytics	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49707 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.9:53484 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.9:53498 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic	TCP traffic: 192.168.2.9:49736 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.9:60902 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.9:53475 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.209
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.209
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.209
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.11
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60

Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /link.php?M=532162&N=675&L=522&F=H HTTP/1.1Host: mail.oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analytics HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/vendor/awesomplete/css/awesomplete.css?1.1.5 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /t3-assets/css/css-eceeb-78747.css HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /t3-assets/css/css-67cae-57026.css HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /t3-assets/css/css-562d8-78746.css HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /media/vendor/jquery/js/jquery.min.js?3.7.1 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /media/legacy/js/jquery-noconflict.min.js?647005fc12b79b3ca2bb30c059899d5994e3e34d HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /js/alaincharles/bd4c20ad644f40b0973029bb470d1ecf.js HTTP/1.1Host: cdn-eu.pagesense.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?render=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/system/t3/base-bs3/fonts/font-awesome/css/font-awesome-base.css HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/t3-assets/css/css-67cae-57026.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=LUZto8/fUwyU3U7qLXlKIQe8ULiDCDNy3ALb7bwjn2UcdbojkvLzsT2mjsIKIKv7ca0Hz1PbH9+PeD22E+9Y+WKZB/VY2dgDHOoAK6N9BvmbFQcKRCupUNB/808u; AWSALBCORS=LUZto8/fUwyU3U7qLXlKIQe8ULiDCDNy3ALb7bwjn2UcdbojkvLzsT2mjsIKIKv7ca0Hz1PbH9+PeD22E+9Y+WKZB/VY2dgDHOoAK6N9BvmbFQcKRCupUNB/808u
Source: global traffic	HTTP traffic detected: GET /media/vendor/bootstrap/js/popover.min.js?5.3.2 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /media/com_finder/js/finder.min.js?a2c3894d062787a266d59d457ffba5481b639f64 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /t3-assets/js/js-9efb0-02068.js HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /plugins/system/t3/base-bs3/js/respond.min.js HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; AWSALBCORS=BB8JAyjHY2b4zhjYIu+mTL4SY79ITU3i2J1cCDjqlr1wCi408ORAwCL0J+k7+xnPAK4SCl4IV4lf9PVzr/jlHA7u9XxWjNYOgSO1dP31FUsmjnHCscmY5Jvn5RCz; 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?render=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /js/alaincharles/bd4c20ad644f40b0973029bb470d1ecf.js HTTP/1.1Host: cdn-eu.pagesense.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /media/vendor/bootstrap/js/popper.min.js?5.3.0 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/media/vendor/bootstrap/js/popover.min.js?5.3.2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=NFnNooXiR6JwBBz9ZkIi70rUOv285KR33Ku6NE/Q0ZfKdZM2IsonHunclzOVi8RQVNuG+t9NLcEuecNJ+9PvHkQcmoETEg+A2l5QLun+tXdXnMURHbkeLLxGR6h2; AWSALBCORS=NFnNooXiR6JwBBz9ZkIi70rUOv285KR33Ku6NE/Q0ZfKdZM2IsonHunclzOVi8RQVNuG+t9NLcEuecNJ+9PvHkQcmoETEg+A2l5QLun+tXdXnMURHbkeLLxGR6h2
Source: global traffic	HTTP traffic detected: GET /media/vendor/bootstrap/js/dom.min.js?5.3.0 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/media/vendor/bootstrap/js/popover.min.js?5.3.2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=NFnNooXiR6JwBBz9ZkIi70rUOv285KR33Ku6NE/Q0ZfKdZM2IsonHunclzOVi8RQVNuG+t9NLcEuecNJ+9PvHkQcmoETEg+A2l5QLun+tXdXnMURHbkeLLxGR6h2; AWSALBCORS=NFnNooXiR6JwBBz9ZkIi70rUOv285KR33Ku6NE/Q0ZfKdZM2IsonHunclzOVi8RQVNuG+t9NLcEuecNJ+9PvHkQcmoETEg+A2l5QLun+tXdXnMURHbkeLLxGR6h2
Source: global traffic	HTTP traffic detected: GET /images/ochri/de23667cea1252d10fde50fa0ecbdff3-728px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs; AWSALBCORS=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs
Source: global traffic	HTTP traffic detected: GET /banners/_images/ORME_HB_Oman_010724_310724.gif HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs; AWSALBCORS=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs
Source: global traffic	HTTP traffic detected: GET /banners/_images/ORME_TB_DUG_011024_311024.gif HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs; AWSALBCORS=J0JV9kxdQf42IZuwDA9LRqnmrlpiPwAJrrm1KXN36NXRtwsQhQ4NPKiZuLGaYClEnBzk4SKXkxEjhcAEDOPE1yA4dNpskx4JmoONLYwUvVe418fJkRC9pW2BSuHs
Source: global traffic	HTTP traffic detected: GET /banners/_images/fb_icon.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/ORME_SS_Yokogawa_011024_311024.jpg HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/ORME_SS_Inhouse_2024.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/ORME_HB_DMG_081024_311024.gif HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /images/ochri/aaafa089bf3d56a604d55e2a43c9b1a2-728px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /images/ochri/20c1d19282f36789b1d3579291d1e6b3-728px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/ln_icon.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/twit_icon.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /images/ochri/74a5703cc27ec28c09aa3451357d8dc4-787px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/mail_icon.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /banners/_images/acp_icon.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe; AWSALBCORS=xYmUHMLM5WD2wLwyVnz5EbFbn805lCGXMp9UNd9FHiLSpcbT/mf7+Qanx9uHArUwtA7dKgKE+ksfUalXGPJ8FHX1ki+81gbEWQt2Wjbmv96ZG0AmCl5jvT3GhEOe
Source: global traffic	HTTP traffic detected: GET /templates/ja_teline_v/images/logo.svg HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=U8kZlelcMlX9S0LU0pvCFgyhrmg2I5ncJC3dSf2U5wfWMljH5cXSirKFncUnj1svwM902f/+IgRck6IF0XYbgkKx7z8cawUpJ8ZdUstM7ppj9dFuFt8beVb2HhPi; AWSALBCORS=U8kZlelcMlX9S0LU0pvCFgyhrmg2I5ncJC3dSf2U5wfWMljH5cXSirKFncUnj1svwM902f/+IgRck6IF0XYbgkKx7z8cawUpJ8ZdUstM7ppj9dFuFt8beVb2HhPi
Source: global traffic	HTTP traffic detected: GET /images/ochri/f6180a27c80cae2150b0644458338bfa-728px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=U8kZlelcMlX9S0LU0pvCFgyhrmg2I5ncJC3dSf2U5wfWMljH5cXSirKFncUnj1svwM902f/+IgRck6IF0XYbgkKx7z8cawUpJ8ZdUstM7ppj9dFuFt8beVb2HhPi; AWSALBCORS=U8kZlelcMlX9S0LU0pvCFgyhrmg2I5ncJC3dSf2U5wfWMljH5cXSirKFncUnj1svwM902f/+IgRck6IF0XYbgkKx7z8cawUpJ8ZdUstM7ppj9dFuFt8beVb2HhPi
Source: global traffic	HTTP traffic detected: GET /media/vendor/awesomplete/js/awesomplete.min.js?1.1.5 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8; AWSALBCORS=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8
Source: global traffic	HTTP traffic detected: GET /images/ochri/31271812a4ba34cea2dbd44c7bf8b31c-480px.webp HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8; AWSALBCORS=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8
Source: global traffic	HTTP traffic detected: GET //templates/ja_teline_v/images/logo.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8; AWSALBCORS=GMmEmus5i+Lf/39P1VDIjxIUthBmJp2HHiNhxe3tc7W2iUYxvS9YAMZbz5CG+Le2z+3KOAikh/mhYZpWASn6fXyEM8KVpawToCg9Bp2yKOZQMOSV3W9h2S3NXaZ8
Source: global traffic	HTTP traffic detected: GET /menu/page.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagesense/tracking/zcbanner-cd31c57352_.js HTTP/1.1Host: static.zohocdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /matomo.js HTTP/1.1Host: ws.alaincharles.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/sm.25.html HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/modules/core.m4v434v2.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /templates/ja_teline_v/images/logo.png HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; AWSALB=hyIFK6YLyJhhwarXreyMik5TaOvlnNNT6UStS6lbXLk5iEZIj4YcNRG8b58yoN74p1gInd2Ddxc/UawD7esW3W43X+7gl0k9mx0fmN68V9eb2DapKVrO+mM+93jG; AWSALBCORS=hyIFK6YLyJhhwarXreyMik5TaOvlnNNT6UStS6lbXLk5iEZIj4YcNRG8b58yoN74p1gInd2Ddxc/UawD7esW3W43X+7gl0k9mx0fmN68V9eb2DapKVrO+mM+93jG
Source: global traffic	HTTP traffic detected: GET /pagesense/tracking/zcbanner-db16aa9bb0_.css HTTP/1.1Host: static.zohocdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/facebook.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://static.addtoany.com/menu/modules/core.m4v434v2.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/linkedin.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://static.addtoany.com/menu/modules/core.m4v434v2.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/whatsapp.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://static.addtoany.com/menu/modules/core.m4v434v2.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/x.js HTTP/1.1Host: static.addtoany.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://static.addtoany.com/menu/modules/core.m4v434v2.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36&co=aHR0cHM6Ly9vaWxyZXZpZXdtaWRkbGVlYXN0LmNvbTo0NDM.&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=7797e08yjoai HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://oilreviewmiddleeast.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /templates/ja_teline_v/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://oilreviewmiddleeast.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://oilreviewmiddleeast.com/t3-assets/css/css-562d8-78746.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; _ga=GA1.2.1947382702.1729895551; _gid=GA1.2.1424303430.1729895551; _gat=1; _pk_id.115.9818=6b554c6f1ac6b26a.1729895552.; _pk_ses.115.9818=1; AWSALB=wO+66McR6XgbLQNEoY45jsxD8qRALL5LKZUsNyV8UF2FDbNqomB1UY1ExUdmaKaKBQYSUQC1f5mLN81J6Hn0fdbw72yoR1PZ/ekpShgmmOSg3ovbdEMg6zK8FWmN; AWSALBCORS=wO+66McR6XgbLQNEoY45jsxD8qRALL5LKZUsNyV8UF2FDbNqomB1UY1ExUdmaKaKBQYSUQC1f5mLN81J6Hn0fdbw72yoR1PZ/ekpShgmmOSg3ovbdEMg6zK8FWmN
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/whatsapp.js HTTP/1.1Host: static.addtoany.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/linkedin.js HTTP/1.1Host: static.addtoany.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /menu/svg/icons/x.js HTTP/1.1Host: static.addtoany.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36&co=aHR0cHM6Ly9vaWxyZXZpZXdtaWRkbGVlYXN0LmNvbTo0NDM.&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=7797e08yjoaiAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/Cyqba_K0pUDdT5_AhrcTxS5-b1C3jUsFpG6edXmCObU.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36&co=aHR0cHM6Ly9vaWxyZXZpZXdtaWRkbGVlYXN0LmNvbTo0NDM.&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=7797e08yjoaiAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/Cyqba_K0pUDdT5_AhrcTxS5-b1C3jUsFpG6edXmCObU.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /templates/ja_teline_v/favicon.ico HTTP/1.1Host: oilreviewmiddleeast.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://oilreviewmiddleeast.com/events/event-news/free-webinar-enhancing-oil-and-gas-operations-with-advanced-video-analyticsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 8b54d4d5ce91a52d12de866511b4b6a0=2kcp2f16ijjuhhu25pt8ui3qiq; _ga=GA1.2.1947382702.1729895551; _gid=GA1.2.1424303430.1729895551; _gat=1; _pk_id.115.9818=6b554c6f1ac6b26a.1729895552.; _pk_ses.115.9818=1; AWSALB=ee14p6NSyHUHdl3mEXFQmorsELapgEZzHONACKbgpdDBFnWAcex2D2QyFsQ3K4V/j3z338thFAuqSOSVb3cFUpNx7OZTtS6lU3pYtmBXoBQsrazCA+eLBBJqSI5a; AWSALBCORS=ee14p6NSyHUHdl3mEXFQmorsELapgEZzHONACKbgpdDBFnWAcex2D2QyFsQ3K4V/j3z338thFAuqSOSVb3cFUpNx7OZTtS6lU3pYtmBXoBQsrazCA+eLBBJqSI5a; _ga_E0SZFBDQ7G=GS1.2.1729895557.1.0.1729895557.0.0.0
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/reload?k=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09ANOXeZwU-nM9Y1W-Qi9QzqYMTDzawugfHyu3v7DLKahr_mwO3fNNYrfCgSsJO3e6yZL_7RbMpLRfjvY1N9Owd2Y
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/clr?k=6LcqNwkqAAAAABv5T3Tz544BUoJ4LTjD09wamq36 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIlqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09ANOXeZwU-nM9Y1W-Qi9QzqYMTDzawugfHyu3v7DLKahr_mwO3fNNYrfCgSsJO3e6yZL_7RbMpLRfjvY1N9Owd2Y

Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: Math.round(q);u["gtm.videoElapsedTime"]=Math.round(f);u["gtm.videoPercent"]=r;u["gtm.videoVisible"]=t;return u},lk:function(){e=zb()},ud:function(){d()}}};var gc=ma(["data-gtm-yt-inspected-"]),pD=["www.youtube.com","www.youtube-nocookie.com"],qD,rD=!1; equals www.youtube.com (Youtube)
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var k=WA(a,c,e);U(121);if(k["gtm.elementUrl"]==="https://www.facebook.com/tr/")return U(122),!0;if(d&&f){for(var m=Kb(b,g.length),n=0;n<g.length;++n)g[n](k,m);return m.done}for(var p=0;p<g.length;++p)g[p](k,function(){});return!0},ZA=function(){var a=[],b=function(c){return pb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: if(!(e\|\|f\|\|g\|\|k.length\|\|m.length))return;var p={rh:e,ph:f,qh:g,bi:k,di:m,Je:n,Fb:b},q=C.YT;if(q)return q.ready&&q.ready(d),b;var r=C.onYouTubeIframeAPIReady;C.onYouTubeIframeAPIReady=function(){r&&r();d()};F(function(){for(var t=E.getElementsByTagName("script"),v=t.length,u=0;u<v;u++){var w=t[u].getAttribute("src");if(AD(w,"iframe_api")\|\|AD(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!rD&&yD(x[A],p.Je))return xc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: var CC=function(a,b,c,d,e){var f=tA("fsl",c?"nv.mwt":"mwt",0),g;g=c?tA("fsl","nv.ids",[]):tA("fsl","ids",[]);if(!g.length)return!0;var k=yA(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);U(121);if(m==="https://www.facebook.com/tr/")return U(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!fz(k,hz(b, equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: mail.oilreviewmiddleeast.com
Source: global traffic	DNS traffic detected: DNS query: oilreviewmiddleeast.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: cdn-eu.pagesense.io
Source: global traffic	DNS traffic detected: DNS query: static.addtoany.com
Source: global traffic	DNS traffic detected: DNS query: ws.alaincharles.com
Source: global traffic	DNS traffic detected: DNS query: static.zohocdn.com
Source: global traffic	DNS traffic detected: DNS query: pagesense-collect.zoho.eu

Source: unknown

Source: sets.json.0.dr	String found in binary or memory: https://07c225f3.online
Source: sets.json.0.dr	String found in binary or memory: https://24.hu
Source: sets.json.0.dr	String found in binary or memory: https://aajtak.in
Source: sets.json.0.dr	String found in binary or memory: https://abczdrowie.pl
Source: chromecache_196.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: sets.json.0.dr	String found in binary or memory: https://alice.tw
Source: sets.json.0.dr	String found in binary or memory: https://ambitionbox.com
Source: chromecache_195.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: sets.json.0.dr	String found in binary or memory: https://autobild.de
Source: sets.json.0.dr	String found in binary or memory: https://baomoi.com
Source: sets.json.0.dr	String found in binary or memory: https://bild.de
Source: sets.json.0.dr	String found in binary or memory: https://blackrock.com
Source: sets.json.0.dr	String found in binary or memory: https://blackrockadvisorelite.it
Source: sets.json.0.dr	String found in binary or memory: https://bluradio.com
Source: sets.json.0.dr	String found in binary or memory: https://bolasport.com
Source: sets.json.0.dr	String found in binary or memory: https://bonvivir.com
Source: sets.json.0.dr	String found in binary or memory: https://bumbox.com
Source: sets.json.0.dr	String found in binary or memory: https://businessinsider.com.pl
Source: sets.json.0.dr	String found in binary or memory: https://businesstoday.in
Source: sets.json.0.dr	String found in binary or memory: https://cachematrix.com
Source: sets.json.0.dr	String found in binary or memory: https://cafemedia.com
Source: sets.json.0.dr	String found in binary or memory: https://caracoltv.com
Source: sets.json.0.dr	String found in binary or memory: https://carcostadvisor.be
Source: sets.json.0.dr	String found in binary or memory: https://carcostadvisor.com
Source: sets.json.0.dr	String found in binary or memory: https://carcostadvisor.fr
Source: sets.json.0.dr	String found in binary or memory: https://cardsayings.net
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: sets.json.0.dr	String found in binary or memory: https://chatbot.com
Source: sets.json.0.dr	String found in binary or memory: https://chennien.com
Source: sets.json.0.dr	String found in binary or memory: https://citybibleforum.org
Source: sets.json.0.dr	String found in binary or memory: https://clarosports.com
Source: sets.json.0.dr	String found in binary or memory: https://clmbtech.com
Source: sets.json.0.dr	String found in binary or memory: https://closeronline.co.uk
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: sets.json.0.dr	String found in binary or memory: https://clubelpais.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://cmxd.com.mx
Source: sets.json.0.dr	String found in binary or memory: https://cognitive-ai.ru
Source: sets.json.0.dr	String found in binary or memory: https://cognitiveai.ru
Source: sets.json.0.dr	String found in binary or memory: https://commentcamarche.com
Source: sets.json.0.dr	String found in binary or memory: https://commentcamarche.net
Source: sets.json.0.dr	String found in binary or memory: https://computerbild.de
Source: sets.json.0.dr	String found in binary or memory: https://content-loader.com
Source: sets.json.0.dr	String found in binary or memory: https://cookreactor.com
Source: sets.json.0.dr	String found in binary or memory: https://cricbuzz.com
Source: sets.json.0.dr	String found in binary or memory: https://css-load.com
Source: sets.json.0.dr	String found in binary or memory: https://deccoria.pl
Source: sets.json.0.dr	String found in binary or memory: https://deere.com
Source: sets.json.0.dr	String found in binary or memory: https://desimartini.com
Source: chromecache_184.2.dr	String found in binary or memory: https://developer.matomo.org/api-reference/tracking-javascript
Source: chromecache_184.2.dr	String found in binary or memory: https://developer.matomo.org/guides/tracking-javascript-guide#multiple-piwik-trackers
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: sets.json.0.dr	String found in binary or memory: https://dewarmsteweek.be
Source: sets.json.0.dr	String found in binary or memory: https://drimer.io
Source: sets.json.0.dr	String found in binary or memory: https://drimer.travel
Source: sets.json.0.dr	String found in binary or memory: https://economictimes.com
Source: sets.json.0.dr	String found in binary or memory: https://een.be
Source: sets.json.0.dr	String found in binary or memory: https://efront.com
Source: sets.json.0.dr	String found in binary or memory: https://eleconomista.net
Source: sets.json.0.dr	String found in binary or memory: https://elfinancierocr.com
Source: sets.json.0.dr	String found in binary or memory: https://elgrafico.com
Source: sets.json.0.dr	String found in binary or memory: https://ella.sv
Source: sets.json.0.dr	String found in binary or memory: https://elpais.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://elpais.uy
Source: sets.json.0.dr	String found in binary or memory: https://etfacademy.it
Source: sets.json.0.dr	String found in binary or memory: https://eworkbookcloud.com
Source: sets.json.0.dr	String found in binary or memory: https://eworkbookrequest.com
Source: sets.json.0.dr	String found in binary or memory: https://fakt.pl
Source: sets.json.0.dr	String found in binary or memory: https://finn.no
Source: sets.json.0.dr	String found in binary or memory: https://firstlook.biz
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19-7DRs5.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-1967DRs5.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19G7DRs5.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2)
Source: chromecache_242.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufA5qW54A.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufB5qW54A.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufC5qW54A.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufD5qW54A.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufJ5qW54A.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2)
Source: chromecache_218.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufO5qW54A.woff2)
Source: sets.json.0.dr	String found in binary or memory: https://gallito.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://geforcenow.com
Source: sets.json.0.dr	String found in binary or memory: https://gettalkdesk.com
Source: chromecache_201.2.dr, chromecache_182.2.dr	String found in binary or memory: https://github.com/faisalman/ua-parser-js
Source: chromecache_184.2.dr	String found in binary or memory: https://github.com/matomo-org/matomo/blob/master/js/piwik.js
Source: sets.json.0.dr	String found in binary or memory: https://gliadomain.com
Source: sets.json.0.dr	String found in binary or memory: https://gnttv.com
Source: sets.json.0.dr	String found in binary or memory: https://graziadaily.co.uk
Source: sets.json.0.dr	String found in binary or memory: https://grid.id
Source: sets.json.0.dr	String found in binary or memory: https://gridgames.app
Source: sets.json.0.dr	String found in binary or memory: https://growthrx.in
Source: sets.json.0.dr	String found in binary or memory: https://grupolpg.sv
Source: sets.json.0.dr	String found in binary or memory: https://gujaratijagran.com
Source: sets.json.0.dr	String found in binary or memory: https://hapara.com
Source: sets.json.0.dr	String found in binary or memory: https://hazipatika.com
Source: sets.json.0.dr	String found in binary or memory: https://hc1.com
Source: sets.json.0.dr	String found in binary or memory: https://hc1.global
Source: sets.json.0.dr	String found in binary or memory: https://hc1cas.com
Source: sets.json.0.dr	String found in binary or memory: https://hc1cas.global
Source: sets.json.0.dr	String found in binary or memory: https://healthshots.com
Source: sets.json.0.dr	String found in binary or memory: https://hearty.app
Source: sets.json.0.dr	String found in binary or memory: https://hearty.gift
Source: sets.json.0.dr	String found in binary or memory: https://hearty.me
Source: sets.json.0.dr	String found in binary or memory: https://heartymail.com
Source: sets.json.0.dr	String found in binary or memory: https://heatworld.com
Source: sets.json.0.dr	String found in binary or memory: https://helpdesk.com
Source: sets.json.0.dr	String found in binary or memory: https://hindustantimes.com
Source: sets.json.0.dr	String found in binary or memory: https://hj.rs
Source: sets.json.0.dr	String found in binary or memory: https://hjck.com
Source: sets.json.0.dr	String found in binary or memory: https://html-load.cc
Source: sets.json.0.dr	String found in binary or memory: https://html-load.com
Source: sets.json.0.dr	String found in binary or memory: https://human-talk.org
Source: sets.json.0.dr	String found in binary or memory: https://idbs-cloud.com
Source: sets.json.0.dr	String found in binary or memory: https://idbs-dev.com
Source: sets.json.0.dr	String found in binary or memory: https://idbs-eworkbook.com
Source: sets.json.0.dr	String found in binary or memory: https://idbs-staging.com
Source: sets.json.0.dr	String found in binary or memory: https://img-load.com
Source: sets.json.0.dr	String found in binary or memory: https://indiatimes.com
Source: sets.json.0.dr	String found in binary or memory: https://indiatoday.in
Source: sets.json.0.dr	String found in binary or memory: https://indiatodayne.in
Source: sets.json.0.dr	String found in binary or memory: https://infoedgeindia.com
Source: sets.json.0.dr	String found in binary or memory: https://interia.pl
Source: sets.json.0.dr	String found in binary or memory: https://intoday.in
Source: sets.json.0.dr	String found in binary or memory: https://iolam.it
Source: sets.json.0.dr	String found in binary or memory: https://ishares.com
Source: sets.json.0.dr	String found in binary or memory: https://jagran.com
Source: sets.json.0.dr	String found in binary or memory: https://johndeere.com
Source: sets.json.0.dr	String found in binary or memory: https://journaldesfemmes.com
Source: sets.json.0.dr	String found in binary or memory: https://journaldesfemmes.fr
Source: sets.json.0.dr	String found in binary or memory: https://journaldunet.com
Source: sets.json.0.dr	String found in binary or memory: https://journaldunet.fr
Source: sets.json.0.dr	String found in binary or memory: https://joyreactor.cc
Source: sets.json.0.dr	String found in binary or memory: https://joyreactor.com
Source: sets.json.0.dr	String found in binary or memory: https://kaksya.in
Source: sets.json.0.dr	String found in binary or memory: https://knowledgebase.com
Source: sets.json.0.dr	String found in binary or memory: https://kompas.com
Source: sets.json.0.dr	String found in binary or memory: https://kompas.tv
Source: sets.json.0.dr	String found in binary or memory: https://kompasiana.com
Source: sets.json.0.dr	String found in binary or memory: https://lanacion.com.ar
Source: sets.json.0.dr	String found in binary or memory: https://landyrev.com
Source: sets.json.0.dr	String found in binary or memory: https://landyrev.ru
Source: sets.json.0.dr	String found in binary or memory: https://laprensagrafica.com
Source: sets.json.0.dr	String found in binary or memory: https://lateja.cr
Source: sets.json.0.dr	String found in binary or memory: https://libero.it
Source: sets.json.0.dr	String found in binary or memory: https://linternaute.com
Source: sets.json.0.dr	String found in binary or memory: https://linternaute.fr
Source: sets.json.0.dr	String found in binary or memory: https://livechat.com
Source: sets.json.0.dr	String found in binary or memory: https://livechatinc.com
Source: sets.json.0.dr	String found in binary or memory: https://livehindustan.com
Source: sets.json.0.dr	String found in binary or memory: https://livemint.com
Source: sets.json.0.dr	String found in binary or memory: https://max.auto
Source: sets.json.0.dr	String found in binary or memory: https://medonet.pl
Source: sets.json.0.dr	String found in binary or memory: https://meo.pt
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.cl
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.co.cr
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.ar
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.bo
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.co
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.do
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.ec
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.gt
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.hn
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.mx
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.ni
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.pa
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.pe
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.py
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.sv
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://mercadolibre.com.ve
Source: sets.json.0.dr	String found in binary or memory: https://mercadolivre.com
Source: sets.json.0.dr	String found in binary or memory: https://mercadolivre.com.br
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.cl
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.ar
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.br
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.co
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.ec
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.mx
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.pe
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://mercadopago.com.ve
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.cl
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.com
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.com.ar
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.com.br
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.com.co
Source: sets.json.0.dr	String found in binary or memory: https://mercadoshops.com.mx
Source: sets.json.0.dr	String found in binary or memory: https://mighty-app.appspot.com
Source: sets.json.0.dr	String found in binary or memory: https://mightytext.net
Source: sets.json.0.dr	String found in binary or memory: https://mittanbud.no
Source: sets.json.0.dr	String found in binary or memory: https://money.pl
Source: sets.json.0.dr	String found in binary or memory: https://motherandbaby.com
Source: sets.json.0.dr	String found in binary or memory: https://mystudentdashboard.com
Source: sets.json.0.dr	String found in binary or memory: https://nacion.com
Source: sets.json.0.dr	String found in binary or memory: https://naukri.com
Source: sets.json.0.dr	String found in binary or memory: https://nidhiacademyonline.com
Source: sets.json.0.dr	String found in binary or memory: https://nien.co
Source: sets.json.0.dr	String found in binary or memory: https://nien.com
Source: sets.json.0.dr	String found in binary or memory: https://nien.org
Source: sets.json.0.dr	String found in binary or memory: https://nlc.hu
Source: sets.json.0.dr	String found in binary or memory: https://nosalty.hu
Source: sets.json.0.dr	String found in binary or memory: https://noticiascaracol.com
Source: sets.json.0.dr	String found in binary or memory: https://nourishingpursuits.com
Source: sets.json.0.dr	String found in binary or memory: https://nvidia.com
Source: sets.json.0.dr	String found in binary or memory: https://o2.pl
Source: sets.json.0.dr	String found in binary or memory: https://ocdn.eu
Source: sets.json.0.dr	String found in binary or memory: https://onet.pl
Source: sets.json.0.dr	String found in binary or memory: https://ottplay.com
Source: sets.json.0.dr	String found in binary or memory: https://p106.net
Source: sets.json.0.dr	String found in binary or memory: https://p24.hu
Source: chromecache_196.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: sets.json.0.dr	String found in binary or memory: https://paula.com.uy
Source: sets.json.0.dr	String found in binary or memory: https://pdmp-apis.no
Source: sets.json.0.dr	String found in binary or memory: https://phonandroid.com
Source: chromecache_184.2.dr	String found in binary or memory: https://piwik.org
Source: chromecache_184.2.dr	String found in binary or memory: https://piwik.org/free-software/bsd/
Source: chromecache_260.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: sets.json.0.dr	String found in binary or memory: https://player.pl
Source: sets.json.0.dr	String found in binary or memory: https://plejada.pl
Source: sets.json.0.dr	String found in binary or memory: https://poalim.site
Source: sets.json.0.dr	String found in binary or memory: https://poalim.xyz
Source: sets.json.0.dr	String found in binary or memory: https://pomponik.pl
Source: sets.json.0.dr	String found in binary or memory: https://portalinmobiliario.com
Source: sets.json.0.dr	String found in binary or memory: https://prisjakt.no
Source: sets.json.0.dr	String found in binary or memory: https://pudelek.pl
Source: sets.json.0.dr	String found in binary or memory: https://punjabijagran.com
Source: sets.json.0.dr	String found in binary or memory: https://radio1.be
Source: sets.json.0.dr	String found in binary or memory: https://radio2.be
Source: sets.json.0.dr	String found in binary or memory: https://reactor.cc
Source: sets.json.0.dr	String found in binary or memory: https://repid.org
Source: sets.json.0.dr	String found in binary or memory: https://reshim.org
Source: sets.json.0.dr	String found in binary or memory: https://rws1nvtvt.com
Source: sets.json.0.dr	String found in binary or memory: https://rws2nvtvt.com
Source: sets.json.0.dr	String found in binary or memory: https://rws3nvtvt.com
Source: sets.json.0.dr	String found in binary or memory: https://sackrace.ai
Source: sets.json.0.dr	String found in binary or memory: https://salemoveadvisor.com
Source: sets.json.0.dr	String found in binary or memory: https://salemovefinancial.com
Source: sets.json.0.dr	String found in binary or memory: https://salemovetravel.com
Source: sets.json.0.dr	String found in binary or memory: https://samayam.com
Source: sets.json.0.dr	String found in binary or memory: https://sapo.io
Source: sets.json.0.dr	String found in binary or memory: https://sapo.pt
Source: sets.json.0.dr	String found in binary or memory: https://shock.co
Source: sets.json.0.dr	String found in binary or memory: https://smaker.pl
Source: sets.json.0.dr	String found in binary or memory: https://smoney.vn
Source: sets.json.0.dr	String found in binary or memory: https://smpn106jkt.sch.id
Source: sets.json.0.dr	String found in binary or memory: https://socket-to-me.vip
Source: sets.json.0.dr	String found in binary or memory: https://songshare.com
Source: sets.json.0.dr	String found in binary or memory: https://songstats.com
Source: sets.json.0.dr	String found in binary or memory: https://sporza.be
Source: sets.json.0.dr	String found in binary or memory: https://standardsandpraiserepurpose.com
Source: sets.json.0.dr	String found in binary or memory: https://startlap.hu
Source: sets.json.0.dr	String found in binary or memory: https://startupislandtaiwan.com
Source: sets.json.0.dr	String found in binary or memory: https://startupislandtaiwan.net
Source: sets.json.0.dr	String found in binary or memory: https://startupislandtaiwan.org
Source: chromecache_243.2.dr	String found in binary or memory: https://static.addtoany.com/menu/
Source: chromecache_243.2.dr	String found in binary or memory: https://static.addtoany.com/menu/sm.25.html#type=core&event=load
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_195.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: sets.json.0.dr	String found in binary or memory: https://stripe.com
Source: sets.json.0.dr	String found in binary or memory: https://stripe.network
Source: sets.json.0.dr	String found in binary or memory: https://stripecdn.com
Source: sets.json.0.dr	String found in binary or memory: https://supereva.it
Source: chromecache_260.2.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_195.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: sets.json.0.dr	String found in binary or memory: https://takeabreak.co.uk
Source: sets.json.0.dr	String found in binary or memory: https://talkdeskqaid.com
Source: sets.json.0.dr	String found in binary or memory: https://talkdeskstgid.com
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: sets.json.0.dr	String found in binary or memory: https://teacherdashboard.com
Source: sets.json.0.dr	String found in binary or memory: https://technology-revealed.com
Source: sets.json.0.dr	String found in binary or memory: https://terazgotuje.pl
Source: sets.json.0.dr	String found in binary or memory: https://text.com
Source: sets.json.0.dr	String found in binary or memory: https://textyserver.appspot.com
Source: sets.json.0.dr	String found in binary or memory: https://the42.ie
Source: sets.json.0.dr	String found in binary or memory: https://thejournal.ie
Source: sets.json.0.dr	String found in binary or memory: https://thirdspace.org.au
Source: sets.json.0.dr	String found in binary or memory: https://timesinternet.in
Source: sets.json.0.dr	String found in binary or memory: https://timesofindia.com
Source: sets.json.0.dr	String found in binary or memory: https://tolteck.app
Source: sets.json.0.dr	String found in binary or memory: https://tolteck.com
Source: sets.json.0.dr	String found in binary or memory: https://top.pl
Source: sets.json.0.dr	String found in binary or memory: https://tribunnews.com
Source: sets.json.0.dr	String found in binary or memory: https://trytalkdesk.com
Source: sets.json.0.dr	String found in binary or memory: https://tucarro.com
Source: sets.json.0.dr	String found in binary or memory: https://tucarro.com.co
Source: sets.json.0.dr	String found in binary or memory: https://tucarro.com.ve
Source: sets.json.0.dr	String found in binary or memory: https://tvid.in
Source: sets.json.0.dr	String found in binary or memory: https://tvn.pl
Source: sets.json.0.dr	String found in binary or memory: https://tvn24.pl
Source: sets.json.0.dr	String found in binary or memory: https://unotv.com
Source: sets.json.0.dr	String found in binary or memory: https://victorymedium.com
Source: sets.json.0.dr	String found in binary or memory: https://vrt.be
Source: sets.json.0.dr	String found in binary or memory: https://vwo.com
Source: sets.json.0.dr	String found in binary or memory: https://welt.de
Source: sets.json.0.dr	String found in binary or memory: https://wieistmeineip.de
Source: sets.json.0.dr	String found in binary or memory: https://wildix.com
Source: sets.json.0.dr	String found in binary or memory: https://wildixin.com
Source: sets.json.0.dr	String found in binary or memory: https://wingify.com
Source: sets.json.0.dr	String found in binary or memory: https://wordle.at
Source: sets.json.0.dr	String found in binary or memory: https://wp.pl
Source: sets.json.0.dr	String found in binary or memory: https://wpext.pl
Source: sets.json.0.dr	String found in binary or memory: https://www.asadcdn.com
Source: chromecache_195.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_195.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_195.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_196.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_195.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_213.2.dr, chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr, chromecache_187.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_196.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_195.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_214.2.dr, chromecache_239.2.dr, chromecache_260.2.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__.
Source: chromecache_179.2.dr, chromecache_213.2.dr, chromecache_187.2.dr, chromecache_230.2.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__en.js
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_206.2.dr, chromecache_196.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chromecache_223.2.dr	String found in binary or memory: https://www.zoho.com/sites/cookie-policy/
Source: sets.json.0.dr	String found in binary or memory: https://ya.ru
Source: sets.json.0.dr	String found in binary or memory: https://yours.co.uk
Source: sets.json.0.dr	String found in binary or memory: https://zalo.me
Source: sets.json.0.dr	String found in binary or memory: https://zdrowietvn.pl
Source: sets.json.0.dr	String found in binary or memory: https://zingmp3.vn

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53565
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53564
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53563
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53562
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53569
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53566
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53572
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53571
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53570
Source: unknown	Network traffic detected: HTTP traffic on port 53569 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 53489 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 53523 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53563 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 53592 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53483 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53511 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53557 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53573
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53579
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53581
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 53581 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53539 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 53587 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53587
Source: unknown	Network traffic detected: HTTP traffic on port 53570 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53585
Source: unknown	Network traffic detected: HTTP traffic on port 53593 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53512 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53551 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53589
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53588
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53590
Source: unknown	Network traffic detected: HTTP traffic on port 53494 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53593
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53592
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53591
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 53506 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53477 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53477
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53476
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53479
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53478
Source: unknown	Network traffic detected: HTTP traffic on port 53517 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53534 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53480
Source: unknown	Network traffic detected: HTTP traffic on port 53528 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53484
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53483
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53482
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53481
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 53488 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 53562 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53529
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53528
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53527
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53526
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53520
Source: unknown	Network traffic detected: HTTP traffic on port 53556 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53510 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53524
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53523
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53522
Source: unknown	Network traffic detected: HTTP traffic on port 53533 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53527 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53504 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53496 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53588 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53539
Source: unknown	Network traffic detected: HTTP traffic on port 53479 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53537
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53532
Source: unknown	Network traffic detected: HTTP traffic on port 53571 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53536
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53534
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53533
Source: unknown	Network traffic detected: HTTP traffic on port 53550 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53522 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53549
Source: unknown	Network traffic detected: HTTP traffic on port 53484 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53478 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53543
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53542
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53541
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53544
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53550
Source: unknown	Network traffic detected: HTTP traffic on port 53490 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53544 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53553
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53551
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53557
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53556
Source: unknown	Network traffic detected: HTTP traffic on port 53549 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53495 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53560
Source: unknown	Network traffic detected: HTTP traffic on port 53566 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53589 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53572 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53537 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53514 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53492 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53508 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53519 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53532 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53486 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53543 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53526 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53560 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53507
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53506
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53504
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53480 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53508
Source: unknown	Network traffic detected: HTTP traffic on port 53497 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53503
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53502
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53501
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53518
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53517
Source: unknown	Network traffic detected: HTTP traffic on port 53565 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53590 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49677 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53519
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53510
Source: unknown	Network traffic detected: HTTP traffic on port 53573 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53514
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53513
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53512
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53511
Source: unknown	Network traffic detected: HTTP traffic on port 53503 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53491 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53520 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 60904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53591 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53585 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53476 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53482 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53488
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53487
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53486
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53499 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53518 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53489
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53491
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53490
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53495
Source: unknown	Network traffic detected: HTTP traffic on port 53579 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53494
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53493
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53492
Source: unknown	Network traffic detected: HTTP traffic on port 53542 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 60904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53499
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53498
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53497
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53496
Source: unknown	Network traffic detected: HTTP traffic on port 53536 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53493 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53553 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53501 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53564 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53502 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53487 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53529 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53481 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53498 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53513 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53507 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53524 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53541 -> 443

Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49707 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.9:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.9:53484 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.9:53498 version: TLS 1.2

Creates files inside the system directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\sets.json	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\manifest.json	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\LICENSE	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\_metadata\	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\_metadata\verified_contents.json	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping6820_224039311\manifest.fingerprint	Jump to behavior

Deletes files inside the Windows folder

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\chrome_BITS_6820_2112704344

Jump to behavior

Source: classification engine

Classification label: clean2.win@24/173@34/17

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1908,i,16621473218498686646,16063989223168888059,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://mail.oilreviewmiddleeast.com/link.php?M=532162&N=675&L=522&F=H"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1908,i,16621473218498686646,16063989223168888059,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1542513
Product:	CloudBasic
Start time:	00:31:17
Start date:	26.10.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://mail.oilreviewmiddleeast.com/link.php?M=532162&N=675&L=522&F=H

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://mail.oilreviewmiddleeast.com/link.php?M=532162&N=675&L=522&F=H

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://mail.oilreviewmiddleeast.com/link.php?M=532162&N=675&L=522&F=H