hxxps://www[.]fibertronics[.]com/1x32-plc-fiber-optic-splitter

Analysis

max time kernel
182s
max time network
204s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
05/04/2024, 19:05 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.fibertronics.com/1x32-plc-fiber-optic-splitter

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
1228	msedge.exe
1228	msedge.exe
1608	msedge.exe
1608	msedge.exe
4872	identity_helper.exe
4872	identity_helper.exe
3768	msedge.exe
3768	msedge.exe
3768	msedge.exe
3768	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 7 IoCs

pid	Process
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe

Suspicious use of FindShellTrayWindow 25 IoCs

pid	Process
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe
1608	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1608 wrote to memory of 2424	1608	msedge.exe	84
PID 1608 wrote to memory of 2424	1608	msedge.exe	84
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1112	1608	msedge.exe	85
PID 1608 wrote to memory of 1228	1608	msedge.exe	86
PID 1608 wrote to memory of 1228	1608	msedge.exe	86
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87
PID 1608 wrote to memory of 5112	1608	msedge.exe	87

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://www.fibertronics.com/1x32-plc-fiber-optic-splitter
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1608
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffbbccd46f8,0x7ffbbccd4708,0x7ffbbccd4718
  2⤵
  PID:2424
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2080 /prefetch:2
  2⤵
  PID:1112
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2380 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1228
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2656 /prefetch:8
  2⤵
  PID:5112
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3344 /prefetch:1
  2⤵
  PID:1868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3356 /prefetch:1
  2⤵
  PID:3312
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5040 /prefetch:1
  2⤵
  PID:2784
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5508 /prefetch:8
  2⤵
  PID:3616
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5508 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4872
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5660 /prefetch:1
  2⤵
  PID:4668
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4784 /prefetch:1
  2⤵
  PID:1256
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3976 /prefetch:1
  2⤵
  PID:4444
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5072 /prefetch:1
  2⤵
  PID:1420
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2068,8053342770634545939,1590988287868842972,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3716 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3768

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1532

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4076

Network

DNS

www.fibertronics.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.fibertronics.com

IN A

Response

www.fibertronics.com

IN CNAME

fibertronics.com

fibertronics.com

IN A

71.43.84.10
DNS

133.211.185.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.211.185.52.in-addr.arpa

IN PTR

Response
GET

https://www.fibertronics.com/1x32-plc-fiber-optic-splitter

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /1x32-plc-fiber-optic-splitter HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store
Pragma: no-cache
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Content-Language: en-US
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-MiniProfiler-Ids: ["e1db1785-7e75-47e2-b1fa-8b293c4ca412"]
Set-Cookie: .Nop.Customer=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
Set-Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; expires=Sat, 05 Apr 2025 19:05:28 GMT; path=/; secure; httponly
Set-Cookie: .Nop.Culture=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
Set-Cookie: .Nop.Culture=c%3Den-US%7Cuic%3Den-US; expires=Sat, 05 Apr 2025 19:05:28 GMT; path=/
Set-Cookie: .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA; path=/; secure; samesite=strict; httponly
Set-Cookie: .Nop.TempData=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; secure; samesite=lax; httponly
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:28 GMT
GET

https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/css,*/*;q=0.1
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: style
Referer: https://www.fibertronics.com/1x32-plc-fiber-optic-splitter
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA

Response

HTTP/1.1 200 OK

Cache-Control: max-age=31536000,immutable
Transfer-Encoding: chunked
Content-Type: text/css; charset=UTF-8
Content-Encoding: gzip
Last-Modified: Thu, 17 Aug 2023 16:25:30 GMT
ETag: "3zOfeELH_n-99ctNIA6U6NefLvU"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:28 GMT
GET

https://www.fibertronics.com/js/Product.Footer.scripts.js?v=Asz6O1_X92DLyeqHNtutwJKya4Y

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /js/Product.Footer.scripts.js?v=Asz6O1_X92DLyeqHNtutwJKya4Y HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://www.fibertronics.com/1x32-plc-fiber-optic-splitter
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA

Response

HTTP/1.1 200 OK

Cache-Control: max-age=31536000,immutable
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Last-Modified: Tue, 08 Mar 2022 23:36:46 GMT
ETag: "Asz6O1_X92DLyeqHNtutwJKya4Y"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:28 GMT
GET

https://www.fibertronics.com/Themes/Motion/Content/img/icon-add-to-cart.png

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /Themes/Motion/Content/img/icon-add-to-cart.png HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA

Response

HTTP/1.1 200 OK

Cache-Control: public,max-age=31536000
Content-Length: 1242
Content-Type: image/png
Last-Modified: Tue, 21 Dec 2021 21:03:20 GMT
Accept-Ranges: bytes
ETag: "1d7f6ae2ec318da"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
GET

https://www.fibertronics.com/Themes/Motion/Content/img/icon-cellphone.png

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /Themes/Motion/Content/img/icon-cellphone.png HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA; _ga_7XEX715MBL=GS1.1.1712343928.1.0.1712343928.60.0.0; _ga=GA1.1.1651984365.1712343928

Response

HTTP/1.1 200 OK

Cache-Control: public,max-age=31536000
Content-Length: 1036
Content-Type: image/png
Last-Modified: Tue, 21 Dec 2021 21:03:20 GMT
Accept-Ranges: bytes
ETag: "1d7f6ae2ec3180c"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
GET

https://www.fibertronics.com/Plugins/SevenSpikes.Nop.Plugins.AjaxCart/Themes/Motion/Content/img/separator.png

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /Plugins/SevenSpikes.Nop.Plugins.AjaxCart/Themes/Motion/Content/img/separator.png HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA; _ga_7XEX715MBL=GS1.1.1712343928.1.0.1712343928.60.0.0; _ga=GA1.1.1651984365.1712343928

Response

HTTP/1.1 200 OK

Cache-Control: public,max-age=31536000
Content-Length: 994
Content-Type: image/png
Last-Modified: Tue, 21 Dec 2021 21:03:22 GMT
Accept-Ranges: bytes
ETag: "1d7f6ae2ff44ae2"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
POST

https://www.fibertronics.com/shoppingcart/productdetails_attributechange?productId=4481&validateAttributeConditions=False&loadPicture=True

msedge.exe

Remote address:

71.43.84.10:443

Request

POST /shoppingcart/productdetails_attributechange?productId=4481&validateAttributeConditions=False&loadPicture=True HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
Content-Length: 320
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: */*
DNT: 1
X-Requested-With: XMLHttpRequest
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://www.fibertronics.com
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.fibertronics.com/1x32-plc-fiber-optic-splitter
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA; _ga_7XEX715MBL=GS1.1.1712343928.1.0.1712343928.60.0.0; _ga=GA1.1.1651984365.1712343928

Response

HTTP/1.1 200 OK

Transfer-Encoding: chunked
Content-Type: application/json; charset=utf-8
Content-Encoding: gzip
Content-Language: en-US
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-MiniProfiler-Ids: ["80affa8e-fa10-409f-991d-ec070c395efd"]
Set-Cookie: .Nop.Customer=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
Set-Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; expires=Sat, 05 Apr 2025 19:05:30 GMT; path=/; secure; httponly
Set-Cookie: .Nop.Culture=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
Set-Cookie: .Nop.Culture=c%3Den-US%7Cuic%3Den-US; expires=Sat, 05 Apr 2025 19:05:30 GMT; path=/
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
GET

https://www.fibertronics.com/Plugins/SevenSpikes.Nop.Plugins.CloudZoom/Themes/Motion/Content/cloud-zoom/images/loader.gif

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /Plugins/SevenSpikes.Nop.Plugins.CloudZoom/Themes/Motion/Content/cloud-zoom/images/loader.gif HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA; _ga_7XEX715MBL=GS1.1.1712343928.1.0.1712343928.60.0.0; _ga=GA1.1.1651984365.1712343928; .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US

Response

HTTP/1.1 200 OK

Cache-Control: public,max-age=31536000
Content-Length: 1588
Content-Type: image/gif
Last-Modified: Tue, 21 Dec 2021 21:03:22 GMT
Accept-Ranges: bytes
ETag: "1d7f6ae2ff44f34"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
GET

https://www.fibertronics.com/js/public.estimateshipping.popup.js?v=WxeMSb_Yu44DYkJRjrsArkqFW_A

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /js/public.estimateshipping.popup.js?v=WxeMSb_Yu44DYkJRjrsArkqFW_A HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://www.fibertronics.com/1x32-plc-fiber-optic-splitter
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA

Response

HTTP/1.1 200 OK

Cache-Control: max-age=31536000,immutable
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Last-Modified: Tue, 16 Mar 2021 14:44:36 GMT
ETag: "WxeMSb_Yu44DYkJRjrsArkqFW_A"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:28 GMT
GET

https://www.fibertronics.com/Themes/Motion/Content/img/pattern-nav.png

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /Themes/Motion/Content/img/pattern-nav.png HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA

Response

HTTP/1.1 200 OK

Cache-Control: public,max-age=31536000
Content-Length: 1019
Content-Type: image/png
Last-Modified: Tue, 21 Dec 2021 21:03:20 GMT
Accept-Ranges: bytes
ETag: "1d7f6ae2ec31ffb"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:28 GMT
GET

https://www.fibertronics.com/lib_npm/magnific-popup/jquery.magnific-popup.min.js?v=YuOR46wnkb8PnqNV7ZyYKshLCWY

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /lib_npm/magnific-popup/jquery.magnific-popup.min.js?v=YuOR46wnkb8PnqNV7ZyYKshLCWY HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://www.fibertronics.com/1x32-plc-fiber-optic-splitter
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA

Response

HTTP/1.1 200 OK

Cache-Control: max-age=31536000,immutable
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Last-Modified: Wed, 03 Mar 2021 19:06:34 GMT
ETag: "YuOR46wnkb8PnqNV7ZyYKshLCWY"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
GET

https://www.fibertronics.com/Themes/Motion/Content/img/icon-phone.png

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /Themes/Motion/Content/img/icon-phone.png HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA

Response

HTTP/1.1 200 OK

Cache-Control: public,max-age=31536000
Content-Length: 1174
Content-Type: image/png
Last-Modified: Tue, 21 Dec 2021 21:03:20 GMT
Accept-Ranges: bytes
ETag: "1d7f6ae2ec31896"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
GET

https://www.fibertronics.com/Themes/Motion/Content/img/icon-mail.png

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /Themes/Motion/Content/img/icon-mail.png HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA; _ga_7XEX715MBL=GS1.1.1712343928.1.0.1712343928.60.0.0; _ga=GA1.1.1651984365.1712343928

Response

HTTP/1.1 200 OK

Cache-Control: public,max-age=31536000
Content-Length: 1118
Content-Type: image/png
Last-Modified: Tue, 21 Dec 2021 21:03:20 GMT
Accept-Ranges: bytes
ETag: "1d7f6ae2ec3185e"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
POST

https://www.fibertronics.com/RetrieveProductRibbons

msedge.exe

Remote address:

71.43.84.10:443

Request

POST /RetrieveProductRibbons HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
Content-Length: 71
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: */*
DNT: 1
X-Requested-With: XMLHttpRequest
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: application/json; charset=UTF-8
Origin: https://www.fibertronics.com
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.fibertronics.com/1x32-plc-fiber-optic-splitter
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US; .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA; _ga_7XEX715MBL=GS1.1.1712343928.1.0.1712343928.60.0.0; _ga=GA1.1.1651984365.1712343928

Response

HTTP/1.1 200 OK

Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Content-Language: en-US
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-MiniProfiler-Ids: ["bad95e7d-96ff-4ef6-932c-a480520c75f2"]
Set-Cookie: .Nop.Customer=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
Set-Cookie: .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; expires=Sat, 05 Apr 2025 19:05:30 GMT; path=/; secure; httponly
Set-Cookie: .Nop.Culture=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
Set-Cookie: .Nop.Culture=c%3Den-US%7Cuic%3Den-US; expires=Sat, 05 Apr 2025 19:05:30 GMT; path=/
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
GET

https://www.fibertronics.com/Themes/Motion/Content/img/icon-skype.png

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /Themes/Motion/Content/img/icon-skype.png HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA; _ga_7XEX715MBL=GS1.1.1712343928.1.0.1712343928.60.0.0; _ga=GA1.1.1651984365.1712343928; .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US

Response

HTTP/1.1 200 OK

Cache-Control: public,max-age=31536000
Content-Length: 1340
Content-Type: image/png
Last-Modified: Tue, 21 Dec 2021 21:03:20 GMT
Accept-Ranges: bytes
ETag: "1d7f6ae2ec3193c"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
GET

https://www.fibertronics.com/Themes/Motion/Content/img/payment_sprite.png

msedge.exe

Remote address:

71.43.84.10:443

Request

GET /Themes/Motion/Content/img/payment_sprite.png HTTP/1.1
Host: www.fibertronics.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: .Nop.Antiforgery=CfDJ8D1nyjy0PGtDi6CjBTeDSp4QX0EHhice2o9jUoDCW6r-IHvao72c_OsrXBVj5pP8c766Puu8hXQ4fl_UW6ORWing0JvJJ0oItIPrbm_ryKV63ApRA3yr6pE2QWt9P4Lj1BDLVU5Jdl6W18kf8E6K2bA; _ga_7XEX715MBL=GS1.1.1712343928.1.0.1712343928.60.0.0; _ga=GA1.1.1651984365.1712343928; .Nop.Customer=ad6b85d5-db07-4fad-b6a7-4e734de4e715; .Nop.Culture=c%3Den-US%7Cuic%3Den-US

Response

HTTP/1.1 200 OK

Cache-Control: public,max-age=31536000
Content-Length: 9787
Content-Type: image/png
Last-Modified: Tue, 21 Dec 2021 21:03:20 GMT
Accept-Ranges: bytes
ETag: "1d7f6ae2ec33a3b"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()
Date: Fri, 05 Apr 2024 19:05:29 GMT
DNS

23.159.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

23.159.190.20.in-addr.arpa

IN PTR

Response
DNS

172.210.232.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

172.210.232.199.in-addr.arpa

IN PTR

Response
DNS

10.84.43.71.in-addr.arpa

Remote address:

8.8.8.8:53

Request

10.84.43.71.in-addr.arpa

IN PTR

Response

10.84.43.71.in-addr.arpa

IN PTR

mail comsysprocom
DNS

s7.addthis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

s7.addthis.com

IN A

Response

s7.addthis.com

IN CNAME

s8.addthis.com

s8.addthis.com

IN CNAME

ds-s7.addthis.com.edgekey.net

ds-s7.addthis.com.edgekey.net

IN CNAME

e4016.a.akamaiedge.net

e4016.a.akamaiedge.net

IN A

23.53.172.176
GET

https://s7.addthis.com/js/250/addthis_widget.js

msedge.exe

Remote address:

23.53.172.176:443

Request

GET /js/250/addthis_widget.js HTTP/2.0
host: s7.addthis.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/plain
content-length: 16
server: Oracle API Gateway
strict-transport-security: max-age=31536000
opc-request-id: /29FDDA545D823881F0B41C2B1588E7C3/8E7B0AD92344CA094B42C94977C1BDCD
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
date: Fri, 05 Apr 2024 19:05:29 GMT
x-distribution: 99
x-host: s7.addthis.com
DNS

app.livesupporti.com

msedge.exe

Remote address:

8.8.8.8:53

Request

app.livesupporti.com

IN A

Response

app.livesupporti.com

IN A

173.224.126.48
DNS

170.185.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

170.185.250.142.in-addr.arpa

IN PTR

Response

170.185.250.142.in-addr.arpa

IN PTR

fra16s51-in-f101e100net
DNS

176.172.53.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

176.172.53.23.in-addr.arpa

IN PTR

Response

176.172.53.23.in-addr.arpa

IN PTR

a23-53-172-176deploystaticakamaitechnologiescom
DNS

227.185.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.185.250.142.in-addr.arpa

IN PTR

Response

227.185.250.142.in-addr.arpa

IN PTR

fra16s53-in-f31e100net
GET

https://app.livesupporti.com/js/clientAsync.js?acc=4ac254a5-bafa-49fd-b38f-e323dd667683&skin=Air

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /js/clientAsync.js?acc=4ac254a5-bafa-49fd-b38f-e323dd667683&skin=Air HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=2592000
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
last-modified: Fri, 24 Nov 2023 10:23:55 GMT
accept-ranges: bytes
etag: "80efd653c01eda1:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 5801
GET

https://app.livesupporti.com/css/parentChatGUI3.css?v=1

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /css/parentChatGUI3.css?v=1 HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=2592000
content-type: text/css
content-encoding: gzip
last-modified: Fri, 06 Sep 2019 14:56:32 GMT
accept-ranges: bytes
etag: "0103845c364d51:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 398
GET

https://app.livesupporti.com/css/animate.min.css?v=1

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /css/animate.min.css?v=1 HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=2592000
content-type: text/css
content-encoding: gzip
last-modified: Tue, 30 Nov 2021 11:40:52 GMT
accept-ranges: bytes
etag: "03ab620dfe5d71:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 3763
GET

https://app.livesupporti.com/js/clientCrossdomainFunctionsAsync.js?v=31

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /js/clientCrossdomainFunctionsAsync.js?v=31 HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=2592000
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
last-modified: Sat, 16 Sep 2023 15:38:26 GMT
accept-ranges: bytes
etag: "04554d5b3e8d91:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 6082
GET

https://app.livesupporti.com/Images/Chat/logo-chat-box-footer.svg

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /Images/Chat/logo-chat-box-footer.svg HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=691200
content-type: image/svg+xml
content-encoding: gzip
last-modified: Fri, 24 Nov 2023 07:11:10 GMT
accept-ranges: bytes
etag: "0fb8f66a51eda1:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 904
GET

https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref= HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-encoding: gzip
last-modified: Sat, 16 Sep 2023 15:40:44 GMT
accept-ranges: bytes
etag: "0669527b4e8d91:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 7058
GET

https://app.livesupporti.com/js/jquery-1.6.2.min.js?v=3

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /js/jquery-1.6.2.min.js?v=3 HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=2592000
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
last-modified: Fri, 31 Jan 2020 16:28:05 GMT
accept-ranges: bytes
etag: "809866a53d8d51:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 32001
GET

https://app.livesupporti.com/js/jquery.ba-postmessage.min.js?v=3

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /js/jquery.ba-postmessage.min.js?v=3 HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=2592000
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
last-modified: Tue, 30 Nov 2021 11:39:38 GMT
accept-ranges: bytes
etag: "0b99af4dee5d71:0"
vary: Accept-Encoding,Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 772
GET

https://app.livesupporti.com/js/ClientGUI.js?v=262

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /js/ClientGUI.js?v=262 HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=2592000
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
last-modified: Wed, 27 Sep 2023 15:51:30 GMT
accept-ranges: bytes
etag: "06d2c7b5af1d91:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 43514
GET

https://app.livesupporti.com/js/ajaxfileupload.js?v=3

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /js/ajaxfileupload.js?v=3 HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=2592000
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
last-modified: Tue, 30 Nov 2021 11:39:35 GMT
accept-ranges: bytes
etag: "80f5d0f2dee5d71:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 1231
GET

https://app.livesupporti.com/js/jquery.client.js?v=3

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /js/jquery.client.js?v=3 HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=2592000
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
last-modified: Tue, 30 Nov 2021 11:39:38 GMT
accept-ranges: bytes
etag: "0b99af4dee5d71:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:29 GMT
content-length: 749
GET

https://app.livesupporti.com/Images/Chat/agent-no-pic.png

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /Images/Chat/agent-no-pic.png HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=691200
content-type: image/png
last-modified: Sun, 18 Jan 2015 12:47:30 GMT
accept-ranges: bytes
etag: "09dafeb1c33d01:0"
date: Fri, 05 Apr 2024 19:05:30 GMT
content-length: 2151
GET

https://app.livesupporti.com/Views/ClientAjaxStub.htm

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /Views/ClientAjaxStub.htm HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
content-encoding: gzip
last-modified: Thu, 14 Sep 2023 18:04:29 GMT
accept-ranges: bytes
etag: "8074a8e735e7d91:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:30 GMT
content-length: 533
GET

https://app.livesupporti.com/CometUtil/ClientResponseHandler.ashx?accId=4ac254a5-bafa-49fd-b38f-e323dd667683&isMessage=false&clrVersion=01d71b79-b5c3-44d0-9f35-d88c0c655cf4&rnd=b6k0n5k8x8c5a0l5l2n4g5m5u4u4s2s4&page=https%3A%2F%2Fwww.fibertronics.com%2F1x32-plc-fiber-optic-splitter&isMobile=false&os=Windows%252010&refPage=&command=initialize

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /CometUtil/ClientResponseHandler.ashx?accId=4ac254a5-bafa-49fd-b38f-e323dd667683&isMessage=false&clrVersion=01d71b79-b5c3-44d0-9f35-d88c0c655cf4&rnd=b6k0n5k8x8c5a0l5l2n4g5m5u4u4s2s4&page=https%3A%2F%2Fwww.fibertronics.com%2F1x32-plc-fiber-optic-splitter&isMobile=false&os=Windows%252010&refPage=&command=initialize HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: */*
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: private
content-type: text/html; charset=utf-8
set-cookie: ASP.NET_SessionId=2leyuf53qhiovxk20x3eja1s; path=/; HttpOnly; SameSite=Lax
access-control-allow-origin: https://app.livesupporti.com
date: Fri, 05 Apr 2024 19:05:30 GMT
content-length: 1424
GET

https://app.livesupporti.com/js/jquery-1.6.2.min.js

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /js/jquery-1.6.2.min.js HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://app.livesupporti.com/Views/ClientAjaxStub.htm
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public,max-age=2592000
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
last-modified: Fri, 31 Jan 2020 16:28:05 GMT
accept-ranges: bytes
etag: "809866a53d8d51:0"
vary: Accept-Encoding
date: Fri, 05 Apr 2024 19:05:30 GMT
content-length: 32001
POST

https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

msedge.exe

Remote address:

173.224.126.48:443

Request

POST /CometUtil/ClientStreamHandler.ashx HTTP/2.0
host: app.livesupporti.com
content-length: 409
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://app.livesupporti.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: private
content-length: 5
content-type: text/html; charset=utf-8
access-control-allow-origin: https://app.livesupporti.com
date: Fri, 05 Apr 2024 19:05:30 GMT
GET

https://app.livesupporti.com/Util/ChatSettingsHandler.ashx?act=chatLngByAccount&accCode=4ac254a5-bafa-49fd-b38f-e323dd667683&rnd=w7p2d0e3p7n1f2g9v0s5c4x0w6l8i7c7

msedge.exe

Remote address:

173.224.126.48:443

Request

GET /Util/ChatSettingsHandler.ashx?act=chatLngByAccount&accCode=4ac254a5-bafa-49fd-b38f-e323dd667683&rnd=w7p2d0e3p7n1f2g9v0s5c4x0w6l8i7c7 HTTP/2.0
host: app.livesupporti.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: */*
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-cache, no-store
pragma: no-cache
content-type: text/html; charset=utf-8
expires: -1
set-cookie: ASP.NET_SessionId=10oxj0h3aw0uvjpkcwvfltlh; path=/; HttpOnly; SameSite=Lax
x-xss-protection: 0
date: Fri, 05 Apr 2024 19:05:30 GMT
POST

https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

msedge.exe

Remote address:

173.224.126.48:443

Request

POST /CometUtil/ClientStreamHandler.ashx HTTP/2.0
host: app.livesupporti.com
content-length: 550
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://app.livesupporti.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-cache, no-store
pragma: no-cache
content-type: text/html; charset=utf-8
expires: -1
set-cookie: ASP.NET_SessionId=rluhy2wxk5uqmwoxegukwu3a; path=/; HttpOnly; SameSite=Lax
x-xss-protection: 0
date: Fri, 05 Apr 2024 19:06:41 GMT
content-length: 62
POST

https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

msedge.exe

Remote address:

173.224.126.48:443

Request

POST /CometUtil/ClientStreamHandler.ashx HTTP/2.0
host: app.livesupporti.com
content-length: 551
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://app.livesupporti.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-cache, no-store
pragma: no-cache
content-type: text/html; charset=utf-8
expires: -1
set-cookie: ASP.NET_SessionId=uldx4y2jhxekjy2mhamowmjk; path=/; HttpOnly; SameSite=Lax
x-xss-protection: 0
date: Fri, 05 Apr 2024 19:07:16 GMT
content-length: 62
POST

https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

msedge.exe

Remote address:

173.224.126.48:443

Request

POST /CometUtil/ClientStreamHandler.ashx HTTP/2.0
host: app.livesupporti.com
content-length: 551
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://app.livesupporti.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-cache, no-store
pragma: no-cache
content-type: text/html; charset=utf-8
expires: -1
set-cookie: ASP.NET_SessionId=cjenhpkbfctwmoavtxgj0t3b; path=/; HttpOnly; SameSite=Lax
x-xss-protection: 0
date: Fri, 05 Apr 2024 19:07:52 GMT
content-length: 62
POST

https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

msedge.exe

Remote address:

173.224.126.48:443

Request

POST /CometUtil/ClientStreamHandler.ashx HTTP/2.0
host: app.livesupporti.com
content-length: 551
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://app.livesupporti.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-cache, no-store
pragma: no-cache
content-type: text/html; charset=utf-8
expires: -1
set-cookie: ASP.NET_SessionId=p4ice1eqvoe42sn24bpqanxt; path=/; HttpOnly; SameSite=Lax
x-xss-protection: 0
date: Fri, 05 Apr 2024 19:08:27 GMT
content-length: 62
POST

https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

msedge.exe

Remote address:

173.224.126.48:443

Request

POST /CometUtil/ClientStreamHandler.ashx HTTP/2.0
host: app.livesupporti.com
content-length: 551
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://app.livesupporti.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

analytics.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

analytics.google.com

IN A

Response

analytics.google.com

IN A

172.217.16.206
DNS

stats.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

stats.g.doubleclick.net

IN A

Response

stats.g.doubleclick.net

IN A

64.233.166.155

stats.g.doubleclick.net

IN A

64.233.166.154

stats.g.doubleclick.net

IN A

64.233.166.157

stats.g.doubleclick.net

IN A

64.233.166.156
POST

https://analytics.google.com/g/collect?v=2&tid=G-7XEX715MBL&gtm=45je4430v9118982863za200&_p=1712343927729&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=1651984365.1712343928&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&pscdl=noapi&_s=1&sid=1712343928&sct=1&seg=0&dl=https%3A%2F%2Fwww.fibertronics.com%2F1x32-plc-fiber-optic-splitter&dt=1x32%20PLC%20Fiber%20Optic%20Splitter%20%7C%20Fibertronics%2C%20Inc.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3133

msedge.exe

Remote address:

172.217.16.206:443

Request

POST /g/collect?v=2&tid=G-7XEX715MBL&gtm=45je4430v9118982863za200&_p=1712343927729&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=1651984365.1712343928&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&pscdl=noapi&_s=1&sid=1712343928&sct=1&seg=0&dl=https%3A%2F%2Fwww.fibertronics.com%2F1x32-plc-fiber-optic-splitter&dt=1x32%20PLC%20Fiber%20Optic%20Splitter%20%7C%20Fibertronics%2C%20Inc.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3133 HTTP/2.0
host: analytics.google.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.fibertronics.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://stats.g.doubleclick.net/g/collect?v=2&tid=G-7XEX715MBL&cid=1651984365.1712343928&gtm=45je4430v9118982863za200&aip=1&dma=0&gcd=13l3l3l3l1&npa=0

msedge.exe

Remote address:

64.233.166.155:443

Request

POST /g/collect?v=2&tid=G-7XEX715MBL&cid=1651984365.1712343928&gtm=45je4430v9118982863za200&aip=1&dma=0&gcd=13l3l3l3l1&npa=0 HTTP/2.0
host: stats.g.doubleclick.net
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.fibertronics.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

232.184.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

232.184.250.142.in-addr.arpa

IN PTR

Response

232.184.250.142.in-addr.arpa

IN PTR

fra24s12-in-f81e100net
DNS

48.126.224.173.in-addr.arpa

Remote address:

8.8.8.8:53

Request

48.126.224.173.in-addr.arpa

IN PTR

Response

48.126.224.173.in-addr.arpa

IN PTR

static-ip-173-224-126-48inaddrip-poolcom
DNS

206.16.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

206.16.217.172.in-addr.arpa

IN PTR

Response

206.16.217.172.in-addr.arpa

IN PTR

fra16s65-in-f141e100net

206.16.217.172.in-addr.arpa

IN PTR

fra16s08-in-f14�I

206.16.217.172.in-addr.arpa

IN PTR

fra16s08-in-f206�I
DNS

155.166.233.64.in-addr.arpa

Remote address:

8.8.8.8:53

Request

155.166.233.64.in-addr.arpa

IN PTR

Response

155.166.233.64.in-addr.arpa

IN PTR

wm-in-f1551e100net
DNS

104.219.191.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

104.219.191.52.in-addr.arpa

IN PTR

Response
DNS

26.165.165.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

26.165.165.52.in-addr.arpa

IN PTR

Response
DNS

18.31.95.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

18.31.95.13.in-addr.arpa

IN PTR

Response
DNS

121.118.77.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

121.118.77.104.in-addr.arpa

IN PTR

Response

121.118.77.104.in-addr.arpa

IN PTR

a104-77-118-121deploystaticakamaitechnologiescom
DNS

5.179.17.96.in-addr.arpa

Remote address:

8.8.8.8:53

Request

5.179.17.96.in-addr.arpa

IN PTR

Response

5.179.17.96.in-addr.arpa

IN PTR

a96-17-179-5deploystaticakamaitechnologiescom
DNS

43.229.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

43.229.111.52.in-addr.arpa

IN PTR

Response

71.43.84.10:443

https://www.fibertronics.com/Plugins/SevenSpikes.Nop.Plugins.CloudZoom/Themes/Motion/Content/cloud-zoom/images/loader.gif

tls, http

msedge.exe

16.4kB
388.2kB
158
293

HTTP Request

GET https://www.fibertronics.com/1x32-plc-fiber-optic-splitter

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/css/Product.Head.styles.css?v=3zOfeELH_n-99ctNIA6U6NefLvU

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/js/Product.Footer.scripts.js?v=Asz6O1_X92DLyeqHNtutwJKya4Y

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/Themes/Motion/Content/img/icon-add-to-cart.png

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/Themes/Motion/Content/img/icon-cellphone.png

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/Plugins/SevenSpikes.Nop.Plugins.AjaxCart/Themes/Motion/Content/img/separator.png

HTTP Response

200

HTTP Request

POST https://www.fibertronics.com/shoppingcart/productdetails_attributechange?productId=4481&validateAttributeConditions=False&loadPicture=True

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/Plugins/SevenSpikes.Nop.Plugins.CloudZoom/Themes/Motion/Content/cloud-zoom/images/loader.gif

HTTP Response

200
71.43.84.10:443

https://www.fibertronics.com/Themes/Motion/Content/img/payment_sprite.png

tls, http

msedge.exe

10.2kB
36.3kB
29
37

HTTP Request

GET https://www.fibertronics.com/js/public.estimateshipping.popup.js?v=WxeMSb_Yu44DYkJRjrsArkqFW_A

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/Themes/Motion/Content/img/pattern-nav.png

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/lib_npm/magnific-popup/jquery.magnific-popup.min.js?v=YuOR46wnkb8PnqNV7ZyYKshLCWY

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/Themes/Motion/Content/img/icon-phone.png

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/Themes/Motion/Content/img/icon-mail.png

HTTP Response

200

HTTP Request

POST https://www.fibertronics.com/RetrieveProductRibbons

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/Themes/Motion/Content/img/icon-skype.png

HTTP Response

200

HTTP Request

GET https://www.fibertronics.com/Themes/Motion/Content/img/payment_sprite.png

HTTP Response

200
23.53.172.176:443

https://s7.addthis.com/js/250/addthis_widget.js

tls, http2

msedge.exe

2.8kB
6.8kB
17
20

HTTP Request

GET https://s7.addthis.com/js/250/addthis_widget.js

HTTP Response

200
71.43.84.10:443

www.fibertronics.com

tls

msedge.exe

7.1kB
44.2kB
28
39
71.43.84.10:443

www.fibertronics.com

tls

msedge.exe

9.5kB
193.9kB
82
148
71.43.84.10:443

www.fibertronics.com

tls

msedge.exe

5.9kB
178.6kB
73
134
71.43.84.10:443

www.fibertronics.com

tls

msedge.exe

5.7kB
31.9kB
23
30
173.224.126.48:443

https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

tls, http2

msedge.exe

13.5kB
156.4kB
142
153

HTTP Request

GET https://app.livesupporti.com/js/clientAsync.js?acc=4ac254a5-bafa-49fd-b38f-e323dd667683&skin=Air

HTTP Response

200

HTTP Request

GET https://app.livesupporti.com/css/parentChatGUI3.css?v=1

HTTP Request

GET https://app.livesupporti.com/css/animate.min.css?v=1

HTTP Request

GET https://app.livesupporti.com/js/clientCrossdomainFunctionsAsync.js?v=31

HTTP Request

GET https://app.livesupporti.com/Images/Chat/logo-chat-box-footer.svg

HTTP Request

GET https://app.livesupporti.com/Views/clientGUI3.htm?location=https://www.fibertronics.com/1x32-plc-fiber-optic-splitter&acc=4ac254a5-bafa-49fd-b38f-e323dd667683&lng=&os=Windows%2010&mobile=false&popup=false&ref=

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://app.livesupporti.com/js/jquery-1.6.2.min.js?v=3

HTTP Request

GET https://app.livesupporti.com/js/jquery.ba-postmessage.min.js?v=3

HTTP Request

GET https://app.livesupporti.com/js/ClientGUI.js?v=262

HTTP Request

GET https://app.livesupporti.com/js/ajaxfileupload.js?v=3

HTTP Request

GET https://app.livesupporti.com/js/jquery.client.js?v=3

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://app.livesupporti.com/Images/Chat/agent-no-pic.png

HTTP Request

GET https://app.livesupporti.com/Views/ClientAjaxStub.htm

HTTP Request

GET https://app.livesupporti.com/CometUtil/ClientResponseHandler.ashx?accId=4ac254a5-bafa-49fd-b38f-e323dd667683&isMessage=false&clrVersion=01d71b79-b5c3-44d0-9f35-d88c0c655cf4&rnd=b6k0n5k8x8c5a0l5l2n4g5m5u4u4s2s4&page=https%3A%2F%2Fwww.fibertronics.com%2F1x32-plc-fiber-optic-splitter&isMobile=false&os=Windows%252010&refPage=&command=initialize

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://app.livesupporti.com/js/jquery-1.6.2.min.js

HTTP Request

POST https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

HTTP Request

GET https://app.livesupporti.com/Util/ChatSettingsHandler.ashx?act=chatLngByAccount&accCode=4ac254a5-bafa-49fd-b38f-e323dd667683&rnd=w7p2d0e3p7n1f2g9v0s5c4x0w6l8i7c7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

HTTP Response

200

HTTP Request

POST https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

HTTP Response

200

HTTP Request

POST https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

HTTP Response

200

HTTP Request

POST https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx

HTTP Response

200

HTTP Request

POST https://app.livesupporti.com/CometUtil/ClientStreamHandler.ashx
172.217.16.206:443

https://analytics.google.com/g/collect?v=2&tid=G-7XEX715MBL&gtm=45je4430v9118982863za200&_p=1712343927729&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=1651984365.1712343928&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&pscdl=noapi&_s=1&sid=1712343928&sct=1&seg=0&dl=https%3A%2F%2Fwww.fibertronics.com%2F1x32-plc-fiber-optic-splitter&dt=1x32%20PLC%20Fiber%20Optic%20Splitter%20%7C%20Fibertronics%2C%20Inc.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3133

tls, http2

msedge.exe

2.2kB
9.1kB
17
19

HTTP Request

POST https://analytics.google.com/g/collect?v=2&tid=G-7XEX715MBL&gtm=45je4430v9118982863za200&_p=1712343927729&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=1651984365.1712343928&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&pscdl=noapi&_s=1&sid=1712343928&sct=1&seg=0&dl=https%3A%2F%2Fwww.fibertronics.com%2F1x32-plc-fiber-optic-splitter&dt=1x32%20PLC%20Fiber%20Optic%20Splitter%20%7C%20Fibertronics%2C%20Inc.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3133
64.233.166.155:443

https://stats.g.doubleclick.net/g/collect?v=2&tid=G-7XEX715MBL&cid=1651984365.1712343928&gtm=45je4430v9118982863za200&aip=1&dma=0&gcd=13l3l3l3l1&npa=0

tls, http2

msedge.exe

1.9kB
6.8kB
16
16

HTTP Request

POST https://stats.g.doubleclick.net/g/collect?v=2&tid=G-7XEX715MBL&cid=1651984365.1712343928&gtm=45je4430v9118982863za200&aip=1&dma=0&gcd=13l3l3l3l1&npa=0

8.8.8.8:53

www.fibertronics.com

dns

msedge.exe

66 B
96 B
1
1

DNS Request

www.fibertronics.com

DNS Response

71.43.84.10
8.8.8.8:53

133.211.185.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

133.211.185.52.in-addr.arpa
8.8.8.8:53

23.159.190.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

23.159.190.20.in-addr.arpa
8.8.8.8:53

172.210.232.199.in-addr.arpa

dns

74 B
128 B
1
1

DNS Request

172.210.232.199.in-addr.arpa
8.8.8.8:53

10.84.43.71.in-addr.arpa

dns

70 B
102 B
1
1

DNS Request

10.84.43.71.in-addr.arpa
8.8.8.8:53

s7.addthis.com

dns

msedge.exe

60 B
169 B
1
1

DNS Request

s7.addthis.com

DNS Response

23.53.172.176
8.8.8.8:53

app.livesupporti.com

dns

msedge.exe

66 B
82 B
1
1

DNS Request

app.livesupporti.com

DNS Response

173.224.126.48
8.8.8.8:53

170.185.250.142.in-addr.arpa

dns

74 B
113 B
1
1

DNS Request

170.185.250.142.in-addr.arpa
8.8.8.8:53

176.172.53.23.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

176.172.53.23.in-addr.arpa
8.8.8.8:53

227.185.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

227.185.250.142.in-addr.arpa
8.8.8.8:53

analytics.google.com

dns

msedge.exe

66 B
82 B
1
1

DNS Request

analytics.google.com

DNS Response

172.217.16.206
8.8.8.8:53

stats.g.doubleclick.net

dns

msedge.exe

69 B
133 B
1
1

DNS Request

stats.g.doubleclick.net

DNS Response

64.233.166.155

64.233.166.154

64.233.166.157

64.233.166.156
8.8.8.8:53

232.184.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

232.184.250.142.in-addr.arpa
8.8.8.8:53

48.126.224.173.in-addr.arpa

dns

73 B
130 B
1
1

DNS Request

48.126.224.173.in-addr.arpa
8.8.8.8:53

206.16.217.172.in-addr.arpa

dns

73 B
173 B
1
1

DNS Request

206.16.217.172.in-addr.arpa
8.8.8.8:53

155.166.233.64.in-addr.arpa

dns

73 B
107 B
1
1

DNS Request

155.166.233.64.in-addr.arpa
224.0.0.251:5353

519 B
8
8.8.8.8:53

104.219.191.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

104.219.191.52.in-addr.arpa
8.8.8.8:53

26.165.165.52.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

26.165.165.52.in-addr.arpa
8.8.8.8:53

18.31.95.13.in-addr.arpa

dns

70 B
144 B
1
1

DNS Request

18.31.95.13.in-addr.arpa
8.8.8.8:53

121.118.77.104.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

121.118.77.104.in-addr.arpa
8.8.8.8:53

5.179.17.96.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

5.179.17.96.in-addr.arpa
8.8.8.8:53

43.229.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

43.229.111.52.in-addr.arpa

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
7c6136bc98a5aedca2ea3004e9fbe67d

SHA1
74318d997f4c9c351eef86d040bc9b085ce1ad4f

SHA256
50c3bd40caf7e9a82496a710f58804aa3536b44d57e2ee5e2af028cbebc6c2f2

SHA512
2d2fb839321c56e4cb80562e9a1daa4baf48924d635729dc5504a26462796919906f0097dd1fc7fd053394c0eea13c25219dec54ffe6e9abb6e8cb9afa66bada

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
5c6aef82e50d05ffc0cf52a6c6d69c91

SHA1
c203efe5b45b0630fee7bd364fe7d63b769e2351

SHA256
d9068cf3d04d62a9fb1cdd4c3cf7c263920159171d1b84cb49eff7cf4ed5bc32

SHA512
77ad48936e8c3ee107a121e0b2d1216723407f76872e85c36413237ca1c47b8c40038b8a6349b072bbcc6a29e27ddda77cf686fa97569f4d86531e6b2ac485ed

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\0fd19412-8f9c-4ced-992c-849d72e1b81f.tmp

Filesize
6KB

MD5
d582b029d6133922c83fe9808fa14616

SHA1
cf7711a2085f64978ce6023451b7827fac7b011a

SHA256
c4e2270c8eee2ba5195fe9d8d796d44f17174d915656cb5acaff427ca9de314f

SHA512
3394671b91f458dfffff32915e8513a63dc1185b0be9c8d79684b8573f83b8540a4879a69dd6de68a8b6635680cebb3287a3e734a8401f3d93663f51e59f421a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
360B

MD5
ce88b7656487925845e8ea52837cc44a

SHA1
03357fc1ed9d88590b434f3827bbc66f28587575

SHA256
584cdd4053834827e3ecbb3b1940deb42c475335a164a609d917e06c20647d85

SHA512
29814f3b4764eeafdca28ffd1e01937d7756b2101c177c771b03ab17c87f6e36170000c00c2f8b3f110ebef812ddc97b3f8dcda8e9aa0d034716a383e825cdc7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
ab932cc3dbaf7a0e4cb48a139a891424

SHA1
a9b5779f066455ab97ae5e69e2f3af2d3cbbc0b0

SHA256
5242fddd3507981af7a4e5ce487dc7ca8bcb39d731a8a0938957adc75b37c30c

SHA512
cdb58c2b474ba2a296e6441d81550e8ab16a74a623f951595796a99d3d8ddd6b70d13eab42698cbfaeaf763884922b80f8e1ca19246ed4db9b86e8f6d423ff71

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
59d55c2eabb84e52e2d8be5c3fbefcf7

SHA1
8715e1aa25723fa711f4baf79ba7f03b8d5cb343

SHA256
1236053d5af56d332267bbfc48b0eea1440222a836888e5960b7679047d26ef2

SHA512
bb62bba351fd2486e72a21260eddfa75855dea7924f75c18d1c0b3f75c1d272f79a7b08aafbb0bc6cf408550d7186b54bfe12a287f44fd01b66cdb6b98e1d0d1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
b6f29bbb9c9aa57291ef44d39bf59847

SHA1
f380ef534add024b489bedb40bfe55e451d8ddea

SHA256
fff6fe6e78672c721047e9eae1914f43d6104da04d188f88d2a6fbedc699eb99

SHA512
5e1b39360ee86e3468ff632c87451a5ec418070a2ba4733bd4a733d5307c27f35eb8e1cb5f545e828c4e6e2b39fc9f2d8019a335affc07ba80d3e3f4a743fe6b

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request