Windows Analysis Report
https://u13762205.ct.sendgrid.net/ls/click?upn=u001.2N-2FFSd8Mh5tdTcK2pEXUToH0F5-2Fq3FDo8pnKFzcXMK24EOVQRPQXOzov3WP6TeQDbpOFMAzOhzk6g52qaRBXMg-3D-3DIjNL_PKcFXsnzduNOkTk1M1BuFSXBwpDtJ5JnfBBGS8mWfSDpSIzzZrzaRAqzsWn9I2SACyGbOCQAHofmU9ue-2Bfpl8m5UVDAXfATbU3zHgCM2w6TpOzhFbmwlUQoZzHTxRoJD6sBCzgzJz3SY7rmsp

Overview

General Information

Sample URL: https://u13762205.ct.sendgrid.net/ls/click?upn=u001.2N-2FFSd8Mh5tdTcK2pEXUToH0F5-2Fq3FDo8pnKFzcXMK24EOVQRPQXOzov3WP6TeQDbpOFMAzOhzk6g52qaRBXMg-3D-3DIjNL_PKcFXsnzduNOkTk1M1BuFSXBwpDtJ5JnfBBGS8mWfSDpSIz
Analysis ID: 1592005
Infos:

Detection

Score: 52
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

AI detected phishing page
AI detected suspicious Javascript
Detected non-DNS traffic on DNS port
Detected suspicious crossdomain redirect
HTML body contains low number of good links
HTML body with high number of embedded images detected
HTML title does not match URL
Invalid 'forgot password' link found
Invalid T&C link found

Classification

Phishing

barindex
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm Joe Sandbox AI: Score: 9 Reasons: The brand 'American Express' is a well-known financial services corporation., The legitimate domain for American Express is 'americanexpress.com'., The provided URL 'mcenter.backend.aait-d.com' does not match the legitimate domain., The URL contains multiple subdomains and a primary domain that does not relate to American Express., The presence of input fields for 'User ID' and 'Password' on a non-legitimate domain is suspicious., The domain 'aait-d.com' is not associated with American Express and could be a potential phishing attempt. DOM: 2.1.pages.csv
Source: 0.2.id.script.csv Joe Sandbox AI: Detected suspicious JavaScript with source url: https://mcenter.backend.aait-d.com/en-us/account/l... This script demonstrates highly suspicious behavior that is likely malicious. It uses a fetch request to an obfuscated endpoint ('/96e904bccbceb08149da688da5f3c272/do'), which could be used to retrieve a malicious redirect URL. The script then redirects the user to this URL, which contains additional obfuscated parameters. This behavior is characteristic of phishing or malware distribution attempts, and the use of setInterval to repeatedly execute the redirect function every 3 seconds further increases the risk. Overall, this script exhibits multiple high-risk indicators and should be considered a significant security threat.
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP Parser: Number of links: 0
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP Parser: Total embedded image size: 15606
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP Parser: Title: American Express Credit Cards, Rewards, Travel and Business Services does not match URL
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP Parser: Invalid link: Forgot User ID or Password?
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP Parser: Invalid link: Help
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP Parser: Invalid link: Terms of Service
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP Parser: Invalid link: Privacy Center
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP Parser: <input type="password" .../> found
Source: https://kidshine.in/r.php?id=h1rx9p2x00 HTTP Parser: No favicon
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP Parser: No <meta name="author".. found
Source: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP Parser: No <meta name="copyright".. found
Source: global traffic TCP traffic: 192.168.2.4:49658 -> 162.159.36.2:53
Source: C:\Program Files\Google\Chrome\Application\chrome.exe HTTP traffic: Redirect from: u13762205.ct.sendgrid.net to https://kidshine.in/r.php?id=h1rx9p2x00
Source: C:\Program Files\Google\Chrome\Application\chrome.exe HTTP traffic: Redirect from: kidshine.in to https://mcenter.backend.aait-d.com/?signin
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown TCP traffic detected without corresponding DNS query: 217.20.57.34
Source: unknown TCP traffic detected without corresponding DNS query: 217.20.57.34
Source: unknown TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global traffic HTTP traffic detected: GET /ls/click?upn=u001.2N-2FFSd8Mh5tdTcK2pEXUToH0F5-2Fq3FDo8pnKFzcXMK24EOVQRPQXOzov3WP6TeQDbpOFMAzOhzk6g52qaRBXMg-3D-3DIjNL_PKcFXsnzduNOkTk1M1BuFSXBwpDtJ5JnfBBGS8mWfSDpSIzzZrzaRAqzsWn9I2SACyGbOCQAHofmU9ue-2Bfpl8m5UVDAXfATbU3zHgCM2w6TpOzhFbmwlUQoZzHTxRoJD6sBCzgzJz3SY7rmsp-2BquYHmL2DTOkQggmMFIfKhNPVaBf8NTmimDBPZdcr9YqjF8L6hryY10MBbjsSOUH778gw-3D-3D HTTP/1.1Host: u13762205.ct.sendgrid.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /r.php?id=h1rx9p2x00 HTTP/1.1Host: kidshine.inConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1Host: stackpath.bootstrapcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://kidshine.insec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleReferer: https://kidshine.in/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: kidshine.inConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://kidshine.in/r.php?id=h1rx9p2x00Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=d5343e9c52fd2a516552adb934984fb7
Source: global traffic HTTP traffic detected: GET /?SignIn HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://kidshine.in/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBm HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://kidshine.in/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/4e82855a23a9cc8ff4370a53ca86e6c8/css/dls.min/4de5a4a665d3d8232766b8d71996118d.css HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/cfa36d1eb67be55494c289df78c858a2/css/mlg/1fba342c6c8f7589a6930ace25a3551f.css HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/3ab01c699c4763b10a56bfb4990758cb/css/9fa/1d97601051b0ab89fbae5efaec128f43.css HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/7d2d11bab0f55db52b8512bb93e31a2e/images/dls-logo-bluebox-solid/2b38a48ec16b2e077b41d4966a567b6f.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/6b7938ca6d400e3974df82f198b41041/images/dls-logo-stack/62c3317b20fe962104ceefb835d0ac5b.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/dd1b7ad99c70f528a0cd15bad090930d/images/dls-logo-stack/6e26798dd671334db0705a7a435a5657.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/53c2176daaeb6f12f40c6bfa1343a559/images/dls-logo-stack/262a21c90cbe477939a5712a103303ef.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/369c08e101923baaf02d3bbd2d3501dc/images/dls-logo-stack/aeb255e612b7d871faaa4178f463ea14.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/7d2d11bab0f55db52b8512bb93e31a2e/images/dls-logo-bluebox-solid/2b38a48ec16b2e077b41d4966a567b6f.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/6b7938ca6d400e3974df82f198b41041/images/dls-logo-stack/62c3317b20fe962104ceefb835d0ac5b.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/dd1b7ad99c70f528a0cd15bad090930d/images/dls-logo-stack/6e26798dd671334db0705a7a435a5657.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/f7fe201a703a9db2af462b01fc2a8525/images/0xls/8670dfbbcc639b54338aa5378a9a8b2f.jpg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/acfa3762ccf69b52db0d99e46e9958be/images/dls-logo-line/719ff4c751996497d8358ff59e9b8d90.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/462d4b9144cf1cb8b96709ef87082958/images/dls-flag-us(1)/46bb38987c2142f1540a9d7e60cbcb25.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://mcenter.backend.aait-d.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: imageReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/369c08e101923baaf02d3bbd2d3501dc/images/dls-logo-stack/aeb255e612b7d871faaa4178f463ea14.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/53c2176daaeb6f12f40c6bfa1343a559/images/dls-logo-stack/262a21c90cbe477939a5712a103303ef.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/acfa3762ccf69b52db0d99e46e9958be/images/dls-logo-line/719ff4c751996497d8358ff59e9b8d90.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/f7fe201a703a9db2af462b01fc2a8525/images/0xls/8670dfbbcc639b54338aa5378a9a8b2f.jpg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/0304e3a9e1210479aa08ce476cea2af4/images/favicon/c69dc020e79407a9e02681a7b7e24f15.ico HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/462d4b9144cf1cb8b96709ef87082958/images/dls-flag-us(1)/46bb38987c2142f1540a9d7e60cbcb25.svg HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /en-us/account/0304e3a9e1210479aa08ce476cea2af4/images/favicon/c69dc020e79407a9e02681a7b7e24f15.ico HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic HTTP traffic detected: GET /96e904bccbceb08149da688da5f3c272/do HTTP/1.1Host: mcenter.backend.aait-d.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mcenter.backend.aait-d.com/en-us/account/login?ZQLQepa=ipodSpLTkjoDqryYHxxMzUZGLdzjmlaIhmdLcDgMgwHKsFxnPTjtYEMoFznsXCWByXr=JLrzvKBmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2ef51cdb533d1cc4f0f6dc9b2df5f9bf
Source: global traffic DNS traffic detected: DNS query: www.google.com
Source: global traffic DNS traffic detected: DNS query: u13762205.ct.sendgrid.net
Source: global traffic DNS traffic detected: DNS query: kidshine.in
Source: global traffic DNS traffic detected: DNS query: stackpath.bootstrapcdn.com
Source: global traffic DNS traffic detected: DNS query: mcenter.backend.aait-d.com
Source: global traffic DNS traffic detected: DNS query: www.aexp-static.com
Source: unknown HTTP traffic detected: POST /rrt.php HTTP/1.1Host: kidshine.inConnection: keep-aliveContent-Length: 65Cache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1Origin: https://kidshine.inContent-Type: application/x-www-form-urlencodedUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://kidshine.in/r.php?id=h1rx9p2x00Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=d5343e9c52fd2a516552adb934984fb7
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundConnection: closecache-control: private, no-cache, no-store, must-revalidate, max-age=0pragma: no-cachecontent-type: text/htmlcontent-length: 1251date: Wed, 15 Jan 2025 15:36:43 GMTserver: LiteSpeedplatform: hostingerstrict-transport-security: max-age=31536000; includeSubDomains; preloadx-xss-protection: 1; mode=blockx-content-type-options: nosniffalt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:36:50 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:36:53 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:36:56 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:36:59 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:05 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:08 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:11 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:14 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:17 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:20 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:23 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:26 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:29 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:32 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:35 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:38 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:41 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:44 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:47 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:50 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:53 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:56 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:37:59 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:38:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:38:05 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:38:08 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:38:11 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:38:14 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:38:17 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:38:20 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:38:23 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:38:26 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 15 Jan 2025 15:38:29 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cache
Source: chromecache_65.2.dr String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_65.2.dr String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: unknown Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49663 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49688
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49661 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49688 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49673
Source: unknown Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49663
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49662
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49661
Source: unknown Network traffic detected: HTTP traffic on port 49974 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49977 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown Network traffic detected: HTTP traffic on port 49979 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49662 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49746
Source: classification engine Classification label: mal52.phis.win@18/39@14/10
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2020,i,4555037124408769600,15649146501260227091,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://u13762205.ct.sendgrid.net/ls/click?upn=u001.2N-2FFSd8Mh5tdTcK2pEXUToH0F5-2Fq3FDo8pnKFzcXMK24EOVQRPQXOzov3WP6TeQDbpOFMAzOhzk6g52qaRBXMg-3D-3DIjNL_PKcFXsnzduNOkTk1M1BuFSXBwpDtJ5JnfBBGS8mWfSDpSIzzZrzaRAqzsWn9I2SACyGbOCQAHofmU9ue-2Bfpl8m5UVDAXfATbU3zHgCM2w6TpOzhFbmwlUQoZzHTxRoJD6sBCzgzJz3SY7rmsp-2BquYHmL2DTOkQggmMFIfKhNPVaBf8NTmimDBPZdcr9YqjF8L6hryY10MBbjsSOUH778gw-3D-3D"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2020,i,4555037124408769600,15649146501260227091,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: Window Recorder Window detected: More than 3 window changes detected
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs