Edit tour

Windows Analysis Report
http://zip.lu/?redirect=3k7wI

Overview

General Information

Sample URL:	http://zip.lu/?redirect=3k7wI
Analysis ID:	1517781
Infos:

Detection

Score:	56
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

Detected suspicious crossdomain redirect

Classification

Process Tree

System is w10x64

chrome.exe (PID: 1448 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 5568 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2020,i,10031690275892928458,5901525870680324187,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6416 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://zip.lu/?redirect=3k7wI" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

String found in binary or memory: return a=n===l.CARD_DISPLAY_STYLES.appOfTheDay?_:n===l.CARD_DISPLAY_STYLES.gameOfTheDay?P:n===l.CARD_DISPLAY_STYLES.inAppPurchase?k:this.getTitleKey(e),this.i18n.t(a,{appName:r,storyTitle:i,_disableSafeString:!0})}getOGType(){return i.default.meta.og.type.story}getTwitterSite(){return this.appViewState.isMacAppStoreView?this.i18n.t("WEA.EditorialItemProductPages.Twitter.site.macOs",{_disableSafeString:!0}):super.getTwitterSite(...arguments)}getTwitterTitle(){return this.getOGTitle(...arguments)}getSchemaTags(e){const{product:t}=e.viewModel,r=E(t),[i]=r,n=(0,l.hasShelfDisplay)(i,"collectionLockup"),{lastPublishedDate:a}=t,o={"@type":"Organization",name:"Apple Inc",url:"http://www.apple.com",logo:{"@type":"ImageObject",url:"https://www.apple.com/ac/structured-data/images/knowledge_graph_logo.png"}},s=this.getOGImageTags(e).find((e=>"og:image"===e.name))||{},p={"@context":"http://schema.org",name:this.getSeoTitle(e)??this.getTitle(e),description:this.getSeoDescription(e)??this.getDescription(e),image:s.content,author:o,publisher:o,headline:this.getOGTitle(e),dateModified:a,datePublished:a} equals www.twitter.com (Twitter)

Source: global traffic	DNS traffic detected: DNS query: zip.lu
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: darkorange-barracuda-590731.hostingersite.com
Source: global traffic	DNS traffic detected: DNS query: code.jquery.com
Source: global traffic	DNS traffic detected: DNS query: telegram.org
Source: global traffic	DNS traffic detected: DNS query: desktop.telegram.org
Source: global traffic	DNS traffic detected: DNS query: is1-ssl.mzstatic.com
Source: global traffic	DNS traffic detected: DNS query: is2-ssl.mzstatic.com
Source: global traffic	DNS traffic detected: DNS query: is5-ssl.mzstatic.com
Source: global traffic	DNS traffic detected: DNS query: is4-ssl.mzstatic.com
Source: global traffic	DNS traffic detected: DNS query: is3-ssl.mzstatic.com

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: hcdnDate: Wed, 25 Sep 2024 05:26:41 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeVary: Accept-Encodinglast-modified: Wed, 18 Jan 2023 19:41:46 GMTetag: W/"999-63c84b7a-b6adba1f9b4a5aed;gz"platform: hostingerpanel: hpanelx-turbo-charged-by: LiteSpeedalt-svc: h3=":443"; ma=86400x-hcdn-request-id: 39ba560c87645fb7d84655570ea065d0-bos-edge2
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: hcdnDate: Wed, 25 Sep 2024 05:26:53 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeVary: Accept-EncodingEtag: W/"999-63c84b7a-b6adba1f9b4a5aed;;;"Last-Modified: Wed, 18 Jan 2023 19:41:46 GMTPanel: hpanelPlatform: hostingerX-Turbo-Charged-By: LiteSpeedalt-svc: h3=":443"; ma=86400x-hcdn-request-id: 603bf4aa838c3f7b3867dd8e8af311b7-bos-edge3
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: hcdnDate: Wed, 25 Sep 2024 05:26:53 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeVary: Accept-Encodinglast-modified: Wed, 18 Jan 2023 19:41:46 GMTetag: W/"999-63c84b7a-b6adba1f9b4a5aed;gz"platform: hostingerpanel: hpanelx-turbo-charged-by: LiteSpeedalt-svc: h3=":443"; ma=86400x-hcdn-request-id: b480524c46f49fb888985b30ed57e176-bos-edge2
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: hcdnDate: Wed, 25 Sep 2024 05:26:53 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeVary: Accept-EncodingEtag: W/"999-63c84b7a-b6adba1f9b4a5aed;;;"Last-Modified: Wed, 18 Jan 2023 19:41:46 GMTPanel: hpanelPlatform: hostingerX-Turbo-Charged-By: LiteSpeedalt-svc: h3=":443"; ma=86400x-hcdn-request-id: a6c642e7526f4046256ecd36db1bc98f-bos-edge2
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: hcdnDate: Wed, 25 Sep 2024 05:26:54 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeVary: Accept-Encodinglast-modified: Wed, 18 Jan 2023 19:41:46 GMTetag: W/"999-63c84b7a-b6adba1f9b4a5aed;gz"platform: hostingerpanel: hpanelx-turbo-charged-by: LiteSpeedalt-svc: h3=":443"; ma=86400x-hcdn-request-id: 6589448fa0eefcf799ebe48c02869310-bos-edge2
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: hcdnDate: Wed, 25 Sep 2024 05:26:56 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeVary: Accept-Encodinglast-modified: Wed, 18 Jan 2023 19:41:46 GMTetag: W/"999-63c84b7a-b6adba1f9b4a5aed;gz"platform: hostingerpanel: hpanelx-turbo-charged-by: LiteSpeedalt-svc: h3=":443"; ma=86400x-hcdn-request-id: f9488630e7b96b360eabfec311dcc436-bos-edge1
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: hcdnDate: Wed, 25 Sep 2024 05:26:58 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeVary: Accept-EncodingEtag: W/"999-63c84b7a-b6adba1f9b4a5aed;;;"Last-Modified: Wed, 18 Jan 2023 19:41:46 GMTPanel: hpanelPlatform: hostingerX-Turbo-Charged-By: LiteSpeedalt-svc: h3=":443"; ma=86400x-hcdn-request-id: 69779e1c07d7a9c51e8391944ed22090-bos-edge3
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: hcdnDate: Wed, 25 Sep 2024 05:26:59 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeVary: Accept-EncodingEtag: W/"999-63c84b7a-b6adba1f9b4a5aed;;;"Last-Modified: Wed, 18 Jan 2023 19:41:46 GMTPanel: hpanelPlatform: hostingerX-Turbo-Charged-By: LiteSpeedalt-svc: h3=":443"; ma=86400x-hcdn-request-id: 9a6ded6e2b680084bd03578e7c36ea53-bos-edge3
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: hcdnDate: Wed, 25 Sep 2024 05:27:01 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: closeVary: Accept-EncodingEtag: W/"999-63c84b7a-b6adba1f9b4a5aed;;;"Last-Modified: Wed, 18 Jan 2023 19:41:46 GMTPanel: hpanelPlatform: hostingerX-Turbo-Charged-By: LiteSpeedalt-svc: h3=":443"; ma=86400x-hcdn-request-id: b7a8042b3f5c8a9c11722f9a453520e5-bos-edge3

Source: chromecache_223.2.dr	String found in binary or memory: http://getbootstrap.com)
Source: chromecache_223.2.dr	String found in binary or memory: http://getbootstrap.com/customize/?id=92d2ac1b31978642b6b6)
Source: chromecache_284.2.dr	String found in binary or memory: http://git.io/yBU2rg
Source: chromecache_334.2.dr, chromecache_206.2.dr	String found in binary or memory: http://jedwatson.github.io/classnames
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: http://reportaproblem.apple.com
Source: chromecache_319.2.dr	String found in binary or memory: http://schema.org
Source: chromecache_319.2.dr	String found in binary or memory: http://schema.org/ItemListOrderAscending
Source: chromecache_319.2.dr	String found in binary or memory: http://www.apple.com
Source: chromecache_319.2.dr	String found in binary or memory: https://amp-api-search-edge.apps.apple.com/v1/catalog/$
Source: chromecache_319.2.dr	String found in binary or memory: https://amp-api.books.apple.com/
Source: chromecache_319.2.dr	String found in binary or memory: https://amp.apple.com
Source: chromecache_319.2.dr	String found in binary or memory: https://api.books.apple.com/
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://apps.apple.com
Source: chromecache_330.2.dr	String found in binary or memory: https://apps.apple.com/
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://apps.apple.com/$
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://apps.apple.com/story/id1538632801
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://apps.apple.com/story/id1539235847
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://apps.apple.com/story/id1604959672
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://apps.apple.com/us/app/apple-podcasts/id525463029
Source: chromecache_283.2.dr	String found in binary or memory: https://buy.music.apple.com/account/v1/affiliation/association
Source: chromecache_283.2.dr	String found in binary or memory: https://buy.tv.apple.com/account/v1/affiliation/association
Source: chromecache_284.2.dr	String found in binary or memory: https://deprecations.emberjs.com/v1.x/#toc_binding-style-attributes.
Source: chromecache_383.2.dr, chromecache_402.2.dr, chromecache_287.2.dr, chromecache_219.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Open
Source: chromecache_223.2.dr	String found in binary or memory: https://gist.github.com/92d2ac1b31978642b6b6
Source: chromecache_283.2.dr	String found in binary or memory: https://git.io/fjule
Source: chromecache_283.2.dr	String found in binary or memory: https://git.io/fxCyr
Source: chromecache_252.2.dr, chromecache_249.2.dr	String found in binary or memory: https://github.com/mapbox/mapbox-gl-js/issues/8771
Source: chromecache_302.2.dr	String found in binary or memory: https://github.com/rastikerdar/vazirmatn
Source: chromecache_223.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_319.2.dr	String found in binary or memory: https://itunes.apple.com$
Source: chromecache_319.2.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStore.woa/wa/viewFeature?id=1476734846&mt=11
Source: chromecache_330.2.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStore.woa/wa/viewTop?cc=
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStore.woa/wa/viewTop?genreId=38&mt=11
Source: chromecache_283.2.dr	String found in binary or memory: https://itunes.apple.com/WebObjects/MZStoreServices.woa/wa/processRedirectUrl
Source: chromecache_445.2.dr, chromecache_297.2.dr, chromecache_239.2.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v1/acknowledgements.txt
Source: chromecache_283.2.dr	String found in binary or memory: https://js-cdn.music.apple.com/musickit/v2/media-api
Source: chromecache_383.2.dr, chromecache_402.2.dr, chromecache_287.2.dr, chromecache_219.2.dr	String found in binary or memory: https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
Source: chromecache_319.2.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.apple.android.music&referrer=utm_source=$
Source: chromecache_334.2.dr, chromecache_206.2.dr	String found in binary or memory: https://preactjs.com
Source: chromecache_284.2.dr	String found in binary or memory: https://raw.github.com/emberjs/ember.js/master/LICENSE
Source: chromecache_330.2.dr	String found in binary or memory: https://support.apple.com/
Source: chromecache_268.2.dr, chromecache_393.2.dr	String found in binary or memory: https://telegram.org/
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://tv.apple.com/search?q=
Source: chromecache_268.2.dr, chromecache_393.2.dr	String found in binary or memory: https://twitter.com/intent/tweet?text=
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://www.apple.com
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://www.apple.com/
Source: chromecache_319.2.dr	String found in binary or memory: https://www.apple.com/ac/structured-data/images/knowledge_graph_logo.png
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://www.apple.com/apple-books/
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://www.apple.com/apple-vision-pro/
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://www.apple.com/ios/app-store/
Source: chromecache_319.2.dr, chromecache_330.2.dr	String found in binary or memory: https://www.apple.com/osx/apps/app-store/
Source: chromecache_383.2.dr, chromecache_402.2.dr, chromecache_287.2.dr, chromecache_219.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_299.2.dr	String found in binary or memory: https://xp-qa.apple.com
Source: chromecache_299.2.dr	String found in binary or memory: https://xp.apple.com
Source: chromecache_322.2.dr	String found in binary or memory: https://xp.apple.com/config/1/report
Source: chromecache_283.2.dr	String found in binary or memory: https://xp.apple.com/register
Source: chromecache_322.2.dr	String found in binary or memory: https://xp.apple.com/report

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50015 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 50017 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 50032 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50015
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50000 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50035
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 50013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50007 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49992 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50007
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 49994 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50020 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50000
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50035 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50019 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50030 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49993 -> 443

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2

Source: classification engine

Classification label: mal56.win@24/494@36/10

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2020,i,10031690275892928458,5901525870680324187,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://zip.lu/?redirect=3k7wI"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2020,i,10031690275892928458,5901525870680324187,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	Path Interception	1 Process Injection	1 Process Injection	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	Rootkit	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	3 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	4 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
http://zip.lu/?redirect=3k7wI	100%	Avira URL Cloud	phishing

Source	Detection	Scanner	Label
http://schema.org	0%	URL Reputation	safe
http://jedwatson.github.io/classnames	0%	URL Reputation	safe
https://telegram.org/file/400780400396/3/uC5KpPuhVz4.51791/41886046d6e132542c	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/lib/img-apple-160/1f1f8-1f1ec.png	100%	Avira URL Cloud	phishing
https://telegram.org/file/464001812/2/kLAK2TPyvUU.12545/f68c1caf735a2ea3db	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400969/3/c7WhHG2hLTw.34527/9b479d5c083ea52174	0%	Avira URL Cloud	safe
https://telegram.org/file/464001418/1/fabnJFzygPY.17422/bc9dec9fd8bd26e00e	0%	Avira URL Cloud	safe
https://telegram.org/img/tdirect_install_cover.jpg?1	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/favicon.svg	100%	Avira URL Cloud	phishing
https://telegram.org/file/464001166/2/FzTl8_M5mQA.19325.png/b6c5dbc0e4f6553805	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400954/6/9rSb8AM77Ss.158225/1c635ef877be7a6747	0%	Avira URL Cloud	safe
https://telegram.org/js/main.js?47	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/favicon.ico	100%	Avira URL Cloud	phishing
https://telegram.org/dl?tme=dcb35ed3700eccc38f_6622701878519939188	0%	Avira URL Cloud	safe
https://telegram.org/file/464001737/4/Fn57W9l3xI0.15286.png/d4b936ecc2c939f4fa	0%	Avira URL Cloud	safe
https://desktop.telegram.org/css/telegram.css?241	0%	Avira URL Cloud	safe
https://telegram.org/file/464001166/1/01aTJ2ISKeU.21801/24028c7b6d07639794	0%	Avira URL Cloud	safe
https://desktop.telegram.org/img/td_laptop.png	0%	Avira URL Cloud	safe
https://telegram.org/js/rlottie-wasm.js	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400928/1/bb7CeIf11Es.6604686.mp4/ea45ba121b84766f1d	0%	Avira URL Cloud	safe
http://getbootstrap.com)	0%	Avira URL Cloud	safe
https://telegram.org/js/tgwallpaper.min.js?3	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400399/3/0Uk20qLYkH0.4059201.mp4/705f48426f725457db	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400193/2/1KQuJAAK3_w.4600046.mp4/a8668664aa42e42921	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400572/1/KDOL4LVn0qU.46714/87e3de3384c284a00d	0%	Avira URL Cloud	safe
https://telegram.org/file/464001560/2/n7EACfx4FPY.16465.png/7318c11715aa2ec45b	0%	Avira URL Cloud	safe
https://git.io/fxCyr	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400580/1/V25TeHwWksI.33575/a66c022da8696f2d36	0%	Avira URL Cloud	safe
https://git.io/fjule	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/ast/css/main.css	100%	Avira URL Cloud	phishing
https://darkorange-barracuda-590731.hostingersite.com/favicon-32x32.png	100%	Avira URL Cloud	phishing
https://telegram.org/file/464001828/11e99/2FUYW30UXAI.12708/7604effa1e02ddf7f9	0%	Avira URL Cloud	safe
https://telegram.org/file/464001453/2/eW_MzRhUGoM.10926/fe1f3bc3dd08367c0a	0%	Avira URL Cloud	safe
http://getbootstrap.com/customize/?id=92d2ac1b31978642b6b6)	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/lib/chat-bg-pattern-light.ee148af944f6580293ae.png	100%	Avira URL Cloud	phishing
https://telegram.org/file/464001880/3/xOpm7ohoHQ0.12690.png/feb1e161b1d3608613	0%	Avira URL Cloud	safe
https://telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/icon-192x192.png	100%	Avira URL Cloud	phishing
https://telegram.org/img/link-icon.png	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400662/1/_JYJo1tqMsQ.6365387.mp4/040a04531ebb6f31d9	0%	Avira URL Cloud	safe
https://telegram.org/img/SiteIconApple.svg	0%	Avira URL Cloud	safe
https://deprecations.emberjs.com/v1.x/#toc_binding-style-attributes.	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400798/1/VgYgplyJ3G4.6475691.mp4/be34647913f92219f7	0%	Avira URL Cloud	safe
https://raw.github.com/emberjs/ember.js/master/LICENSE	0%	Avira URL Cloud	safe
https://telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2	0%	Avira URL Cloud	safe
https://telegram.org/file/464001560/1/zLlKYgeDLoA.14496/62085b07461f2d87e4	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/lib/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2	100%	Avira URL Cloud	phishing
https://telegram.org/img/tdirect.jpg?1	0%	Avira URL Cloud	safe
https://desktop.telegram.org/img/favicon.ico	0%	Avira URL Cloud	safe
https://desktop.telegram.org/img/twitter.png	0%	Avira URL Cloud	safe
https://code.jquery.com/jquery-3.5.1.min.js	0%	Avira URL Cloud	safe
https://github.com/twbs/bootstrap/blob/master/LICENSE)	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400676/1/yDZoLCZ9bKQ.3403169.mp4/6e2b8eca9d3a23cc64	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/favicon-16x16.png	100%	Avira URL Cloud	phishing
https://zip.lu/?redirect=3k7wI	100%	Avira URL Cloud	phishing
https://telegram.org/img/favicon.ico	0%	Avira URL Cloud	safe
https://telegram.org/css/bootstrap.min.css?3	0%	Avira URL Cloud	safe
https://telegram.org/file/464001484/1/bzi7gr7XRGU.10147/815df2ef527132dd23	0%	Avira URL Cloud	safe
https://github.com/mapbox/mapbox-gl-js/issues/8771	0%	Avira URL Cloud	safe
https://telegram.org/img/twitter.png	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400224/2/jqbHSFRXZfQ.7339277.mp4/b9a5db90c5ecf53405	0%	Avira URL Cloud	safe
https://twitter.com/intent/tweet?text=	0%	Avira URL Cloud	safe
https://telegram.org/file/464001453/3/mNzXWC3RX0c.15740.png/9ce5fa5f3fb74460b4	0%	Avira URL Cloud	safe
https://telegram.org/css/font-roboto.css?1	0%	Avira URL Cloud	safe
https://gist.github.com/92d2ac1b31978642b6b6	0%	Avira URL Cloud	safe
https://telegram.org/img/t_main_Android_demo.mp4	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400436/1/AFpKVW0u5fw.267441/5fd61b6d2531113c45	0%	Avira URL Cloud	safe
https://telegram.org/js/rlottie-wasm.wasm	0%	Avira URL Cloud	safe
https://telegram.org/file/464001132/3/-1qvqKPZsQQ.17975.png/7d57d7159cf4fbe9b2	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400839/1/8H1m6ZbmspE.278873/e02c014802f4174b96	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/lib/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2	100%	Avira URL Cloud	phishing
https://telegram.org/img/tgme/pattern.svg?1	0%	Avira URL Cloud	safe
https://telegram.org/file/464001402/5/eOMSj3GzJXo.13579.png/f3cec6c451d023c109	0%	Avira URL Cloud	safe
https://telegram.org/file/464001897/3/f0Go0rLpEwk.11343.png/dd4eeb46cc5efc0688	0%	Avira URL Cloud	safe
https://telegram.org/img/SiteIconAndroid.svg	0%	Avira URL Cloud	safe
https://telegram.org/img/t_logo_sprite.svg	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400346/2/7VDa07DHqNY.14200/447eed2e73e6ad2edf	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/t.jpg	100%	Avira URL Cloud	phishing
https://telegram.org/file/400780400830/3/t0ptIaxojJo.5433284.mp4/c97af9e3b7598a813b	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/lib/telegram-logo.1b2bb5b107f046ea9325.svg	100%	Avira URL Cloud	phishing
https://play.google.com/store/apps/details?id=com.apple.android.music&referrer=utm_source=$	0%	Avira URL Cloud	safe
https://desktop.telegram.org/js/main.js?47	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400363/4/jBCmJjvgb9Y.72016/66be54038626ababa4	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400431/1/-u0XrknOtfw.232636/60f98efd626b95d010	0%	Avira URL Cloud	safe
https://telegram.org/img/back_to_top_1x.png	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400606/4/AeouqRRsC8M.436803/313538dac744339b41	0%	Avira URL Cloud	safe
https://darkorange-barracuda-590731.hostingersite.com/lib/chat-bg-br.f34cc96fbfb048812820.png	100%	Avira URL Cloud	phishing
https://telegram.org/js/tgsticker.js?31	0%	Avira URL Cloud	safe
https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css	0%	Avira URL Cloud	safe
https://telegram.org/img/SiteDesktop.jpg?2	0%	Avira URL Cloud	safe
https://telegram.org/img/t_main_iOS_demo.mp4	0%	Avira URL Cloud	safe
https://desktop.telegram.org/css/bootstrap.min.css?3	0%	Avira URL Cloud	safe
https://telegram.org/file/400780400346/3/NOf3lfu8nKg.39230.png/f6013fe739459ea486	0%	Avira URL Cloud	safe
https://telegram.org/js/pako-inflate.min.js	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
desktop.telegram.org	149.154.167.99	true	false	unknown
code.jquery.com	151.101.2.137	true	false	unknown
telegram.org	149.154.167.99	true	false	unknown
www.google.com	142.250.184.228	true	false	unknown
free.cdn.hstgr.net	84.32.84.104	true	false	unknown
zip.lu	185.11.100.204	true	false	unknown
fp2e7a.wpc.phicdn.net	192.229.221.95	true	false	unknown
is2-ssl.mzstatic.com	unknown	unknown	false	unknown
is3-ssl.mzstatic.com	unknown	unknown	false	unknown
darkorange-barracuda-590731.hostingersite.com	unknown	unknown	false	unknown
is1-ssl.mzstatic.com	unknown	unknown	false	unknown
is5-ssl.mzstatic.com	unknown	unknown	false	unknown
is4-ssl.mzstatic.com	unknown	unknown	false	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://telegram.org/img/tdirect_install_cover.jpg?1	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400396/3/uC5KpPuhVz4.51791/41886046d6e132542c	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/464001418/1/fabnJFzygPY.17422/bc9dec9fd8bd26e00e	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400969/3/c7WhHG2hLTw.34527/9b479d5c083ea52174	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/464001812/2/kLAK2TPyvUU.12545/f68c1caf735a2ea3db	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/lib/img-apple-160/1f1f8-1f1ec.png	true	Avira URL Cloud: phishing	unknown
https://darkorange-barracuda-590731.hostingersite.com/favicon.svg	false	Avira URL Cloud: phishing	unknown
https://telegram.org/file/400780400954/6/9rSb8AM77Ss.158225/1c635ef877be7a6747	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/464001166/2/FzTl8_M5mQA.19325.png/b6c5dbc0e4f6553805	false	Avira URL Cloud: safe	unknown
https://telegram.org/js/main.js?47	false	Avira URL Cloud: safe	unknown
https://desktop.telegram.org/img/td_laptop.png	false	Avira URL Cloud: safe	unknown
https://telegram.org/dl?tme=dcb35ed3700eccc38f_6622701878519939188	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/favicon.ico	false	Avira URL Cloud: phishing	unknown
https://telegram.org/file/464001166/1/01aTJ2ISKeU.21801/24028c7b6d07639794	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/464001737/4/Fn57W9l3xI0.15286.png/d4b936ecc2c939f4fa	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400928/1/bb7CeIf11Es.6604686.mp4/ea45ba121b84766f1d	false	Avira URL Cloud: safe	unknown
https://telegram.org/js/rlottie-wasm.js	false	Avira URL Cloud: safe	unknown
https://telegram.org/js/tgwallpaper.min.js?3	false	Avira URL Cloud: safe	unknown
https://desktop.telegram.org/css/telegram.css?241	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400193/2/1KQuJAAK3_w.4600046.mp4/a8668664aa42e42921	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400399/3/0Uk20qLYkH0.4059201.mp4/705f48426f725457db	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/464001560/2/n7EACfx4FPY.16465.png/7318c11715aa2ec45b	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400572/1/KDOL4LVn0qU.46714/87e3de3384c284a00d	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400580/1/V25TeHwWksI.33575/a66c022da8696f2d36	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/ast/css/main.css	false	Avira URL Cloud: phishing	unknown
https://telegram.org/file/464001828/11e99/2FUYW30UXAI.12708/7604effa1e02ddf7f9	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/favicon-32x32.png	false	Avira URL Cloud: phishing	unknown
https://telegram.org/file/464001453/2/eW_MzRhUGoM.10926/fe1f3bc3dd08367c0a	false	Avira URL Cloud: safe	unknown
https://telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2	false	Avira URL Cloud: safe	unknown
https://desktop.telegram.org/	false		unknown
http://zip.lu/?redirect=3k7wI	true		unknown
https://darkorange-barracuda-590731.hostingersite.com/lib/chat-bg-pattern-light.ee148af944f6580293ae.png	false	Avira URL Cloud: phishing	unknown
https://telegram.org/file/464001880/3/xOpm7ohoHQ0.12690.png/feb1e161b1d3608613	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/icon-192x192.png	false	Avira URL Cloud: phishing	unknown
https://telegram.org/file/400780400662/1/_JYJo1tqMsQ.6365387.mp4/040a04531ebb6f31d9	false	Avira URL Cloud: safe	unknown
https://telegram.org/img/link-icon.png	false	Avira URL Cloud: safe	unknown
https://telegram.org/android	false		unknown
https://telegram.org/img/SiteIconApple.svg	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400798/1/VgYgplyJ3G4.6475691.mp4/be34647913f92219f7	false	Avira URL Cloud: safe	unknown
https://telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/464001560/1/zLlKYgeDLoA.14496/62085b07461f2d87e4	false	Avira URL Cloud: safe	unknown
https://desktop.telegram.org/img/favicon.ico	false	Avira URL Cloud: safe	unknown
https://telegram.org/img/tdirect.jpg?1	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/lib/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2	false	Avira URL Cloud: phishing	unknown
https://desktop.telegram.org/img/twitter.png	false	Avira URL Cloud: safe	unknown
https://code.jquery.com/jquery-3.5.1.min.js	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400676/1/yDZoLCZ9bKQ.3403169.mp4/6e2b8eca9d3a23cc64	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/	false		unknown
https://zip.lu/?redirect=3k7wI	false	Avira URL Cloud: phishing	unknown
https://darkorange-barracuda-590731.hostingersite.com/favicon-16x16.png	false	Avira URL Cloud: phishing	unknown
https://telegram.org/img/favicon.ico	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/464001484/1/bzi7gr7XRGU.10147/815df2ef527132dd23	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400224/2/jqbHSFRXZfQ.7339277.mp4/b9a5db90c5ecf53405	false	Avira URL Cloud: safe	unknown
https://telegram.org/css/bootstrap.min.css?3	false	Avira URL Cloud: safe	unknown
https://telegram.org/img/twitter.png	false	Avira URL Cloud: safe	unknown
https://telegram.org/css/font-roboto.css?1	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/464001453/3/mNzXWC3RX0c.15740.png/9ce5fa5f3fb74460b4	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400436/1/AFpKVW0u5fw.267441/5fd61b6d2531113c45	false	Avira URL Cloud: safe	unknown
https://telegram.org/img/t_main_Android_demo.mp4	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400839/1/8H1m6ZbmspE.278873/e02c014802f4174b96	false	Avira URL Cloud: safe	unknown
https://telegram.org/js/rlottie-wasm.wasm	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/464001132/3/-1qvqKPZsQQ.17975.png/7d57d7159cf4fbe9b2	false	Avira URL Cloud: safe	unknown
https://telegram.org/img/tgme/pattern.svg?1	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/lib/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2	false	Avira URL Cloud: phishing	unknown
https://telegram.org/file/464001897/3/f0Go0rLpEwk.11343.png/dd4eeb46cc5efc0688	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/464001402/5/eOMSj3GzJXo.13579.png/f3cec6c451d023c109	false	Avira URL Cloud: safe	unknown
https://telegram.org/	false		unknown
https://telegram.org/img/t_logo_sprite.svg	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/t.jpg	false	Avira URL Cloud: phishing	unknown
https://telegram.org/file/400780400346/2/7VDa07DHqNY.14200/447eed2e73e6ad2edf	false	Avira URL Cloud: safe	unknown
https://telegram.org/img/SiteIconAndroid.svg	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/lib/telegram-logo.1b2bb5b107f046ea9325.svg	false	Avira URL Cloud: phishing	unknown
https://telegram.org/file/400780400830/3/t0ptIaxojJo.5433284.mp4/c97af9e3b7598a813b	false	Avira URL Cloud: safe	unknown
https://desktop.telegram.org/js/main.js?47	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400363/4/jBCmJjvgb9Y.72016/66be54038626ababa4	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400431/1/-u0XrknOtfw.232636/60f98efd626b95d010	false	Avira URL Cloud: safe	unknown
https://telegram.org/img/back_to_top_1x.png	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400606/4/AeouqRRsC8M.436803/313538dac744339b41	false	Avira URL Cloud: safe	unknown
https://darkorange-barracuda-590731.hostingersite.com/lib/chat-bg-br.f34cc96fbfb048812820.png	false	Avira URL Cloud: phishing	unknown
https://telegram.org/js/tgsticker.js?31	false	Avira URL Cloud: safe	unknown
https://desktop.telegram.org/css/bootstrap.min.css?3	false	Avira URL Cloud: safe	unknown
https://telegram.org/img/SiteDesktop.jpg?2	false	Avira URL Cloud: safe	unknown
https://telegram.org/img/t_main_iOS_demo.mp4	false	Avira URL Cloud: safe	unknown
https://telegram.org/file/400780400346/3/NOf3lfu8nKg.39230.png/f6013fe739459ea486	false	Avira URL Cloud: safe	unknown
https://telegram.org/js/pako-inflate.min.js	false	Avira URL Cloud: safe	unknown
https://telegram.org/blog/w3-browser-mini-app-store	false		unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
http://getbootstrap.com)	chromecache_223.2.dr	false	Avira URL Cloud: safe	unknown
https://git.io/fxCyr	chromecache_283.2.dr	false	Avira URL Cloud: safe	unknown
https://git.io/fjule	chromecache_283.2.dr	false	Avira URL Cloud: safe	unknown
http://getbootstrap.com/customize/?id=92d2ac1b31978642b6b6)	chromecache_223.2.dr	false	Avira URL Cloud: safe	unknown
https://deprecations.emberjs.com/v1.x/#toc_binding-style-attributes.	chromecache_284.2.dr	false	Avira URL Cloud: safe	unknown
https://raw.github.com/emberjs/ember.js/master/LICENSE	chromecache_284.2.dr	false	Avira URL Cloud: safe	unknown
https://github.com/twbs/bootstrap/blob/master/LICENSE)	chromecache_223.2.dr	false	Avira URL Cloud: safe	unknown
https://github.com/mapbox/mapbox-gl-js/issues/8771	chromecache_252.2.dr, chromecache_249.2.dr	false	Avira URL Cloud: safe	unknown
https://twitter.com/intent/tweet?text=	chromecache_268.2.dr, chromecache_393.2.dr	false	Avira URL Cloud: safe	unknown
https://gist.github.com/92d2ac1b31978642b6b6	chromecache_223.2.dr	false	Avira URL Cloud: safe	unknown
http://schema.org	chromecache_319.2.dr	false	URL Reputation: safe	unknown
https://play.google.com/store/apps/details?id=com.apple.android.music&referrer=utm_source=$	chromecache_319.2.dr	false	Avira URL Cloud: safe	unknown
http://jedwatson.github.io/classnames	chromecache_334.2.dr, chromecache_206.2.dr	false	URL Reputation: safe	unknown
https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css	chromecache_383.2.dr, chromecache_402.2.dr, chromecache_287.2.dr, chromecache_219.2.dr	false	Avira URL Cloud: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
84.32.84.104	free.cdn.hstgr.net	Lithuania	33922	NTT-LT-ASLT	false
185.11.100.204	zip.lu	Poland	199318	SEA-AB-ASSE	false
84.32.84.79	unknown	Lithuania	33922	NTT-LT-ASLT	false
149.154.167.99	desktop.telegram.org	United Kingdom	62041	TELEGRAMRU	false
151.101.2.137	code.jquery.com	United States	54113	FASTLYUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
151.101.66.137	unknown	United States	54113	FASTLYUS	false
142.250.184.228	www.google.com	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.4
192.168.2.5

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1517781
Start date and time:	2024-09-25 07:25:38 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 4m 24s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	http://zip.lu/?redirect=3k7wI
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	8
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal56.win@24/494@36/10
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0
Cookbook Comments:	Browse: https://darkorange-barracuda-590731.hostingersite.com/main.php Browse: https://telegram.org/ Browse: https://telegram.org/dl?tme=dcb35ed3700eccc38f_6622701878519939188 Browse: https://telegram.org/dl/ios Browse: https://telegram.org/android Browse: https://telegram.org/blog/w3-browser-mini-app-store

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.186.67, 142.250.185.174, 64.233.167.84, 34.104.35.123, 4.175.87.197, 93.184.221.240, 20.242.39.171, 192.229.221.95, 216.58.212.138, 142.250.185.74, 142.250.185.138, 142.250.186.42, 142.250.186.106, 142.250.74.202, 142.250.186.74, 216.58.212.170, 216.58.206.74, 172.217.18.10, 172.217.23.106, 142.250.186.138, 142.250.185.106, 142.250.185.170, 172.217.16.202, 172.217.18.106, 13.95.31.18, 2.19.224.19, 95.101.54.216, 2.16.202.121, 88.221.168.210, 23.201.254.30, 2.23.194.36, 142.250.185.131, 142.250.186.174
Excluded domains from analysis (whitelisted): xp.itunes-apple.com.akadns.net, slscr.update.microsoft.com, clientservices.googleapis.com, e17437.dsct.akamaiedge.net, clients2.google.com, ocsp.digicert.com, itunes.apple.com.edgekey.net, hlb.apr-52dd2-0.edgecastdns.net, update.googleapis.com, wu-b-net.trafficmanager.net, apps-cdn.itunes-apple.com.akadns.net, fs.microsoft.com, content-autofill.googleapis.com, e6858.dscx.akamaiedge.net, amp-api-edge-cdn-lb.itunes-apple.com.akadns.net, itunes-cdn.itunes-apple.com.akadns.net, edgedl.me.gvt1.com, www.apple.com.edgekey.net, a1437.dscq.akamai.net, itunes.apple.com, clients.l.google.com, www.apple.com.edgekey.net.globalredir.akadns.net, js-cdn.music.apple.com, amp-api-edge.apps.apple.com, www.apple.com, wu.azureedge.net, xp.apple.com, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, glb.cws.prod.dcat.dsp.trafficmanager.net, ocsp.edge.digicert.com, sls.update.microsoft.com, xp.apple.com.edgekey.net, js-cdn-music-lb.itunes-apple.com.akadns.net, glb.sls.prod.dcat.dsp
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing network information.
Report size getting too big, too many NtCreateFile calls found.
Report size getting too big, too many NtSetInformationFile calls found.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: http://zip.lu/?redirect=3k7wI

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	data
Category:	downloaded
Size (bytes):	1048576
Entropy (8bit):	7.99589589278671
Encrypted:	true
SSDEEP:	24576:7XEMkGqt7B2sPCi/63QY0/x33+fasMKLI2ltXEwqt6r:703GqGgS3Y33+fFMKLIpwqtY
MD5:	8417A1EA46C52A07247C2CF86CE670D9
SHA1:	C0DD2755154F091F9DA0E56BE47C6035844CD054
SHA-256:	64AFE2D4CBFC28B53BA2B48E81944CF99EFF8C12D9C7248F00822B8CFFC9F97C
SHA-512:	B97D62987C96A9982C1E53DEE6D4463A6581445F243171B089A1CBBAAFB8B009E5DAA5E5C066D790554673FB0E4AA3EC242B7EBFC6D8EFC156B94E9F6BC8DFD2
Malicious:	false
Reputation:	low
URL:	https://telegram.org/file/400780400830/3/t0ptIaxojJo.5433284.mp4/c97af9e3b7598a813b:2f81812a8c76f9:3
Preview:	.M.............d...;...R...f.;.`3.8sy.....-_x.2....;p>t..&GU.b.#.m...@.....<7.....a........)H.H.1..r+a.0.X......U}E.C..4.b.\|Hu...QRw...Ud...9....W....[.fS.(...d."....l.g.......AqK..ib.........-../..../...w...G.I/QU.....PNJGLgo..#...i?.....P..m..kXI0...t.\........}3...K... .i..g.\|.ZS.X.vx .4="nZ....5..8.w.IW.~}yj.jY.S..-.6..E<......?.B...Y.~Zj..=......U......_.........K.L...Z........`.1...BB>...'.g.o.u.fmVZ\.C./..P...qM....z=Q....{..t<J...V.......Dyks...N...E...z.b..KL(.}...l....\....:h.S2Q......n...3.....:.\Q.v...r.(.5"k.G'w........8...z.i.y..p..k.9.......o.... @..... G..+9HZ...A.2'.l.wd.....H....%V.v..9....S..\|4z..\|..... ...K...x.!\8...p..L[.~..PP@+...Hk..(.#.a_.5..G.0!.c........f.X_.=[.g..a.-Aj.(A4x^.U>....T...$iv....G.....0..k.$...#>.V....W....7Ka.."r.R...*..-kZ.N.1.Wa...a.<!..W......e.tV?9.i.@E.?.Z@}C....z[~..SW$`.qb../.5.[(P~..=,.5n...`.{;..H......;..Z........Qs:s......s.9...].p_%....d.3D..If.[...@....oa{...S7..b....A....:.f..v.$..JH./Z....8

Source: https://darkorange-barracuda-590731.hostingersite.com/lib/img-apple-160/1f1f8-1f1ec.png	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/favicon.svg	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/favicon.ico	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/ast/css/main.css	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/favicon-32x32.png	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/lib/chat-bg-pattern-light.ee148af944f6580293ae.png	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/icon-192x192.png	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/lib/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/favicon-16x16.png	Avira URL Cloud: Label: phishing
Source: https://zip.lu/?redirect=3k7wI	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/lib/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/t.jpg	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/lib/telegram-logo.1b2bb5b107f046ea9325.svg	Avira URL Cloud: Label: phishing
Source: https://darkorange-barracuda-590731.hostingersite.com/lib/chat-bg-br.f34cc96fbfb048812820.png	Avira URL Cloud: Label: phishing

Source: https://apps.apple.com/us/app/telegram-messenger/id686449807	HTTP Parser: No favicon
Source: https://apps.apple.com/us/app/telegram-messenger/id686449807	HTTP Parser: No favicon
Source: https://apps.apple.com/us/app/telegram-messenger/id686449807	HTTP Parser: No favicon

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Sep 25, 2024 07:26:35.519108057 CEST	192.168.2.4	1.1.1.1	0x8985	Standard query (0)	zip.lu	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:35.519351006 CEST	192.168.2.4	1.1.1.1	0x856b	Standard query (0)	zip.lu	65	IN (0x0001)	false
Sep 25, 2024 07:26:36.931690931 CEST	192.168.2.4	1.1.1.1	0x555e	Standard query (0)	zip.lu	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:36.932032108 CEST	192.168.2.4	1.1.1.1	0x69f1	Standard query (0)	zip.lu	65	IN (0x0001)	false
Sep 25, 2024 07:26:38.061892033 CEST	192.168.2.4	1.1.1.1	0x76bb	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:38.067075014 CEST	192.168.2.4	1.1.1.1	0xa7b9	Standard query (0)	www.google.com	65	IN (0x0001)	false
Sep 25, 2024 07:26:38.411906004 CEST	192.168.2.4	1.1.1.1	0x3d44	Standard query (0)	darkorange-barracuda-590731.hostingersite.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:38.411906958 CEST	192.168.2.4	1.1.1.1	0xb178	Standard query (0)	darkorange-barracuda-590731.hostingersite.com	65	IN (0x0001)	false
Sep 25, 2024 07:26:40.424614906 CEST	192.168.2.4	1.1.1.1	0x7e2f	Standard query (0)	code.jquery.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:40.424921036 CEST	192.168.2.4	1.1.1.1	0x174b	Standard query (0)	code.jquery.com	65	IN (0x0001)	false
Sep 25, 2024 07:26:40.425569057 CEST	192.168.2.4	1.1.1.1	0x34ec	Standard query (0)	telegram.org	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:40.425755024 CEST	192.168.2.4	1.1.1.1	0x2f40	Standard query (0)	telegram.org	65	IN (0x0001)	false
Sep 25, 2024 07:26:41.388045073 CEST	192.168.2.4	1.1.1.1	0x3050	Standard query (0)	telegram.org	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:41.388199091 CEST	192.168.2.4	1.1.1.1	0x437c	Standard query (0)	telegram.org	65	IN (0x0001)	false
Sep 25, 2024 07:26:41.497538090 CEST	192.168.2.4	1.1.1.1	0xc968	Standard query (0)	code.jquery.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:41.497843981 CEST	192.168.2.4	1.1.1.1	0x416a	Standard query (0)	code.jquery.com	65	IN (0x0001)	false
Sep 25, 2024 07:26:42.222932100 CEST	192.168.2.4	1.1.1.1	0x86ce	Standard query (0)	darkorange-barracuda-590731.hostingersite.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:42.223108053 CEST	192.168.2.4	1.1.1.1	0x1cbd	Standard query (0)	darkorange-barracuda-590731.hostingersite.com	65	IN (0x0001)	false
Sep 25, 2024 07:26:54.245196104 CEST	192.168.2.4	1.1.1.1	0x5418	Standard query (0)	telegram.org	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:54.245507956 CEST	192.168.2.4	1.1.1.1	0x8780	Standard query (0)	telegram.org	65	IN (0x0001)	false
Sep 25, 2024 07:27:05.114936113 CEST	192.168.2.4	1.1.1.1	0xb07f	Standard query (0)	desktop.telegram.org	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:05.114936113 CEST	192.168.2.4	1.1.1.1	0x4e24	Standard query (0)	desktop.telegram.org	65	IN (0x0001)	false
Sep 25, 2024 07:27:07.059031010 CEST	192.168.2.4	1.1.1.1	0xf41b	Standard query (0)	desktop.telegram.org	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:07.059031010 CEST	192.168.2.4	1.1.1.1	0x314d	Standard query (0)	desktop.telegram.org	65	IN (0x0001)	false
Sep 25, 2024 07:27:24.449130058 CEST	192.168.2.4	1.1.1.1	0x5a24	Standard query (0)	is1-ssl.mzstatic.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:24.449306011 CEST	192.168.2.4	1.1.1.1	0x8445	Standard query (0)	is1-ssl.mzstatic.com	65	IN (0x0001)	false
Sep 25, 2024 07:27:24.449614048 CEST	192.168.2.4	1.1.1.1	0x73ec	Standard query (0)	is2-ssl.mzstatic.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:24.450057983 CEST	192.168.2.4	1.1.1.1	0xcb32	Standard query (0)	is2-ssl.mzstatic.com	65	IN (0x0001)	false
Sep 25, 2024 07:27:24.483992100 CEST	192.168.2.4	1.1.1.1	0xe9d5	Standard query (0)	is5-ssl.mzstatic.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:24.484440088 CEST	192.168.2.4	1.1.1.1	0xa303	Standard query (0)	is5-ssl.mzstatic.com	65	IN (0x0001)	false
Sep 25, 2024 07:27:24.485207081 CEST	192.168.2.4	1.1.1.1	0x1719	Standard query (0)	is4-ssl.mzstatic.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:24.485661983 CEST	192.168.2.4	1.1.1.1	0x7342	Standard query (0)	is4-ssl.mzstatic.com	65	IN (0x0001)	false
Sep 25, 2024 07:27:24.487728119 CEST	192.168.2.4	1.1.1.1	0x163c	Standard query (0)	is3-ssl.mzstatic.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:24.487996101 CEST	192.168.2.4	1.1.1.1	0xbdf0	Standard query (0)	is3-ssl.mzstatic.com	65	IN (0x0001)	false
Sep 25, 2024 07:27:28.002226114 CEST	192.168.2.4	1.1.1.1	0x16ff	Standard query (0)	is1-ssl.mzstatic.com	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:28.003132105 CEST	192.168.2.4	1.1.1.1	0x4670	Standard query (0)	is1-ssl.mzstatic.com	65	IN (0x0001)	false

Timestamp	Source IP	Dest IP	Trans ID	Reply Code	Name	CName	Address	Type	Class	DNS over HTTPS
Sep 25, 2024 07:26:35.552551031 CEST	1.1.1.1	192.168.2.4	0x8985	No error (0)	zip.lu		185.11.100.204	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:36.960561037 CEST	1.1.1.1	192.168.2.4	0x555e	No error (0)	zip.lu		185.11.100.204	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:38.070734978 CEST	1.1.1.1	192.168.2.4	0x76bb	No error (0)	www.google.com		142.250.184.228	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:38.075082064 CEST	1.1.1.1	192.168.2.4	0xa7b9	No error (0)	www.google.com			65	IN (0x0001)	false
Sep 25, 2024 07:26:38.451775074 CEST	1.1.1.1	192.168.2.4	0xb178	No error (0)	darkorange-barracuda-590731.hostingersite.com	free.cdn.hstgr.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:26:38.455591917 CEST	1.1.1.1	192.168.2.4	0x3d44	No error (0)	darkorange-barracuda-590731.hostingersite.com	free.cdn.hstgr.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:26:38.455591917 CEST	1.1.1.1	192.168.2.4	0x3d44	No error (0)	free.cdn.hstgr.net		84.32.84.104	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:40.432317019 CEST	1.1.1.1	192.168.2.4	0x34ec	No error (0)	telegram.org		149.154.167.99	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:40.432574987 CEST	1.1.1.1	192.168.2.4	0x7e2f	No error (0)	code.jquery.com		151.101.2.137	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:40.432574987 CEST	1.1.1.1	192.168.2.4	0x7e2f	No error (0)	code.jquery.com		151.101.194.137	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:40.432574987 CEST	1.1.1.1	192.168.2.4	0x7e2f	No error (0)	code.jquery.com		151.101.66.137	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:40.432574987 CEST	1.1.1.1	192.168.2.4	0x7e2f	No error (0)	code.jquery.com		151.101.130.137	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:41.395251989 CEST	1.1.1.1	192.168.2.4	0x3050	No error (0)	telegram.org		149.154.167.99	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:41.504507065 CEST	1.1.1.1	192.168.2.4	0xc968	No error (0)	code.jquery.com		151.101.66.137	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:41.504507065 CEST	1.1.1.1	192.168.2.4	0xc968	No error (0)	code.jquery.com		151.101.130.137	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:41.504507065 CEST	1.1.1.1	192.168.2.4	0xc968	No error (0)	code.jquery.com		151.101.194.137	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:41.504507065 CEST	1.1.1.1	192.168.2.4	0xc968	No error (0)	code.jquery.com		151.101.2.137	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:42.231693983 CEST	1.1.1.1	192.168.2.4	0x1cbd	No error (0)	darkorange-barracuda-590731.hostingersite.com	free.cdn.hstgr.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:26:42.304788113 CEST	1.1.1.1	192.168.2.4	0x86ce	No error (0)	darkorange-barracuda-590731.hostingersite.com	free.cdn.hstgr.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:26:42.304788113 CEST	1.1.1.1	192.168.2.4	0x86ce	No error (0)	free.cdn.hstgr.net		84.32.84.79	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:50.550231934 CEST	1.1.1.1	192.168.2.4	0xb6b9	No error (0)	fp2e7a.wpc.2be4.phicdn.net	fp2e7a.wpc.phicdn.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:26:50.550231934 CEST	1.1.1.1	192.168.2.4	0xb6b9	No error (0)	fp2e7a.wpc.phicdn.net		192.229.221.95	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:26:54.251904964 CEST	1.1.1.1	192.168.2.4	0x5418	No error (0)	telegram.org		149.154.167.99	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:05.122224092 CEST	1.1.1.1	192.168.2.4	0xb07f	No error (0)	desktop.telegram.org		149.154.167.99	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:07.066217899 CEST	1.1.1.1	192.168.2.4	0xf41b	No error (0)	desktop.telegram.org		149.154.167.99	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:07.601573944 CEST	1.1.1.1	192.168.2.4	0xd6cd	No error (0)	fp2e7a.wpc.2be4.phicdn.net	fp2e7a.wpc.phicdn.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:07.601573944 CEST	1.1.1.1	192.168.2.4	0xd6cd	No error (0)	fp2e7a.wpc.phicdn.net		192.229.221.95	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:24.455780029 CEST	1.1.1.1	192.168.2.4	0x5a24	No error (0)	is1-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:24.456054926 CEST	1.1.1.1	192.168.2.4	0x8445	No error (0)	is1-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:24.456748009 CEST	1.1.1.1	192.168.2.4	0x73ec	No error (0)	is2-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:24.457209110 CEST	1.1.1.1	192.168.2.4	0xcb32	No error (0)	is2-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:24.491017103 CEST	1.1.1.1	192.168.2.4	0xe9d5	No error (0)	is5-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:24.491596937 CEST	1.1.1.1	192.168.2.4	0xa303	No error (0)	is5-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:24.492240906 CEST	1.1.1.1	192.168.2.4	0x7342	No error (0)	is4-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:24.492568016 CEST	1.1.1.1	192.168.2.4	0x1719	No error (0)	is4-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:24.494807959 CEST	1.1.1.1	192.168.2.4	0x163c	No error (0)	is3-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:24.495215893 CEST	1.1.1.1	192.168.2.4	0xbdf0	No error (0)	is3-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:26.454935074 CEST	1.1.1.1	192.168.2.4	0x188a	No error (0)	fp2e7a.wpc.2be4.phicdn.net	fp2e7a.wpc.phicdn.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:26.454935074 CEST	1.1.1.1	192.168.2.4	0x188a	No error (0)	fp2e7a.wpc.phicdn.net		192.229.221.95	A (IP address)	IN (0x0001)	false
Sep 25, 2024 07:27:28.009597063 CEST	1.1.1.1	192.168.2.4	0x16ff	No error (0)	is1-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:28.009716988 CEST	1.1.1.1	192.168.2.4	0x4670	No error (0)	is1-ssl.mzstatic.com	is-ssl.mzstatic.com.itunes-apple.com.akadns.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:47.323115110 CEST	1.1.1.1	192.168.2.4	0x31f5	No error (0)	fp2e7a.wpc.2be4.phicdn.net	fp2e7a.wpc.phicdn.net		CNAME (Canonical name)	IN (0x0001)	false
Sep 25, 2024 07:27:47.323115110 CEST	1.1.1.1	192.168.2.4	0x31f5	No error (0)	fp2e7a.wpc.phicdn.net		192.229.221.95	A (IP address)	IN (0x0001)	false

Timestamp	Bytes transferred	Direction	Data
Sep 25, 2024 07:26:35.573311090 CEST	436	OUT	GET /?redirect=3k7wI HTTP/1.1 Host: zip.lu Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9
Sep 25, 2024 07:26:36.926295996 CEST	499	IN	HTTP/1.1 301 Moved Permanently date: Wed, 25 Sep 2024 05:26:36 GMT server: Apache location: https://zip.lu/?redirect=3k7wI cache-control: max-age=0 expires: Wed, 25 Sep 2024 05:26:36 GMT content-length: 238 content-type: text/html; charset=iso-8859-1 Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 7a 69 70 2e 6c 75 2f 3f 72 65 64 69 72 65 63 74 3d 33 6b 37 77 49 22 3e 68 65 72 65 3c 2f 61 3e 2e 3c 2f 70 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>301 Moved Permanently</title></head><body><h1>Moved Permanently</h1><p>The document has moved <a href="https://zip.lu/?redirect=3k7wI">here</a>.</p></body></html>

Timestamp	Bytes transferred	Direction	Data
Sep 25, 2024 07:26:42.161906004 CEST	194	IN	HTTP/1.0 408 Request Time-out cache-control: no-cache content-type: text/html Data Raw: 3c 68 74 6d 6c 3e 3c 62 6f 64 79 3e 3c 68 31 3e 34 30 38 20 52 65 71 75 65 73 74 20 54 69 6d 65 2d 6f 75 74 3c 2f 68 31 3e 0a 59 6f 75 72 20 62 72 6f 77 73 65 72 20 64 69 64 6e 27 74 20 73 65 6e 64 20 61 20 63 6f 6d 70 6c 65 74 65 20 72 65 71 75 65 73 74 20 69 6e 20 74 69 6d 65 2e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a 0a Data Ascii: <html><body><h1>408 Request Time-out</h1>Your browser didn't send a complete request in time.</body></html>
Sep 25, 2024 07:27:27.176672935 CEST	6	OUT	Data Raw: 00 Data Ascii:

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:38 UTC	664	OUT	GET /?redirect=3k7wI HTTP/1.1 Host: zip.lu Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:38 UTC	317	IN	HTTP/1.1 301 Moved Permanently date: Wed, 25 Sep 2024 05:26:38 GMT server: Apache x-powered-by: PHP/5.5.38 location: https://darkorange-barracuda-590731.hostingersite.com/ cache-control: max-age=0 expires: Wed, 25 Sep 2024 05:26:38 GMT transfer-encoding: chunked content-type: text/html connection: close
2024-09-25 05:26:38 UTC	7	IN	Data Raw: 32 0d 0a 0a 0a 0d 0a Data Ascii: 2
2024-09-25 05:26:38 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:39 UTC	688	OUT	GET / HTTP/1.1 Host: darkorange-barracuda-590731.hostingersite.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:40 UTC	444	IN	HTTP/1.1 200 OK Server: hcdn Date: Wed, 25 Sep 2024 05:26:40 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding x-powered-by: PHP/8.2.19 platform: hostinger panel: hpanel content-security-policy: upgrade-insecure-requests alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: 510b05f4c6dbeea3be97fedb1387741a-bos-edge2 x-hcdn-cache-status: DYNAMIC x-hcdn-upstream-rt: 0.774
2024-09-25 05:26:40 UTC	925	IN	Data Raw: 32 33 36 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 6d 69 6e 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 75 73 65 72 2d 73 63 61 6c 61 62 6c 65 3d 6e 6f 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 69 65 3d 65 64 67 65 22 3e Data Ascii: 236e<!DOCTYPE html><html lang="en"><head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, minimum-scale=1, user-scalable=no"> <meta http-equiv="X-UA-Compatible" content="ie=edge">
2024-09-25 05:26:40 UTC	1369	IN	Data Raw: 70 68 6f 6e 65 22 20 63 6f 6e 74 65 6e 74 3d 22 36 38 36 34 34 39 38 30 37 22 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 77 69 74 74 65 72 3a 61 70 70 3a 75 72 6c 3a 69 70 68 6f 6e 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 67 3a 6a 6f 69 6e 3f 69 6e 76 69 74 65 3d 70 30 36 36 78 45 2d 73 39 55 30 79 4e 54 5a 6c 22 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 77 69 74 74 65 72 3a 61 70 70 3a 6e 61 6d 65 3a 69 70 61 64 22 20 63 6f 6e 74 65 6e 74 3d 22 54 65 6c 65 67 72 61 6d 20 4d 65 73 73 65 6e 67 65 72 22 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 77 69 74 74 65 72 3a 61 70 70 3a 69 64 3a 69 70 61 64 22 20 63 6f 6e 74 65 6e 74 3d 22 36 38 36 34 34 39 38 30 37 22 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 77 69 74 74 65 72 3a 61 70 70 3a 75 72 6c 3a 69 Data Ascii: phone" content="686449807"><meta name="twitter:app:url:iphone" content="tg:join?invite=p066xE-s9U0yNTZl"><meta name="twitter:app:name:ipad" content="Telegram Messenger"><meta name="twitter:app:id:ipad" content="686449807"><meta name="twitter:app:url:i
2024-09-25 05:26:40 UTC	1369	IN	Data Raw: 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 20 20 20 20 3c 21 2d 2d 6c 69 6e 6b 20 68 72 65 66 3d 22 2f 63 73 73 2f 6d 79 72 69 61 64 2e 63 73 73 22 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 2d 2d 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 2f 2f 74 65 6c 65 67 72 61 6d 2e 6f 72 67 2f 63 73 73 2f 62 6f 6f 74 73 74 72 61 70 2e 6d 69 6e 2e 63 73 73 3f 33 22 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 2f 2f 74 65 6c 65 67 72 61 6d 2e 6f 72 67 2f 63 73 73 2f 74 65 6c 65 67 72 61 6d 2e 63 73 73 3f 32 33 36 22 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 6d 65 64 69 61 3d 22 73 63 72 65 65 6e 22 3e 0a 20 20 3c 2f 68 65 61 64 3e 0a 20 20 3c 62 6f 64 79 20 63 6c 61 73 73 3d 22 Data Ascii: e="text/css"> ...link href="/css/myriad.css" rel="stylesheet"--> <link href="//telegram.org/css/bootstrap.min.css?3" rel="stylesheet"> <link href="//telegram.org/css/telegram.css?236" rel="stylesheet" media="screen"> </head> <body class="
2024-09-25 05:26:40 UTC	1369	IN	Data Raw: 31 32 2d 32 2e 38 33 36 39 39 30 35 2d 31 2e 30 39 37 32 38 36 33 2d 31 2e 35 37 38 32 30 34 38 2d 2e 39 35 36 38 36 39 31 2d 32 2e 35 33 32 37 30 38 33 2d 31 2e 33 39 38 34 33 31 37 2d 34 2e 30 36 34 36 32 39 33 2d 32 2e 33 33 32 31 35 39 32 2d 31 2e 37 37 30 33 39 39 38 2d 31 2e 30 37 39 30 38 33 37 2d 2e 32 31 32 35 35 39 2d 31 2e 35 38 33 36 35 35 2e 37 39 36 33 38 36 37 2d 32 2e 35 35 32 39 31 38 39 2e 32 36 34 30 34 35 39 2d 2e 32 35 33 36 36 30 39 20 34 2e 37 37 35 33 39 30 36 2d 34 2e 33 30 39 37 30 34 31 20 34 2e 37 35 35 39 37 36 2d 34 2e 34 33 31 37 30 36 2d 2e 30 30 37 30 34 39 34 2d 2e 30 34 34 32 39 38 34 2d 2e 31 34 30 39 30 31 38 2d 2e 34 38 31 36 34 39 2d 2e 32 34 35 37 34 39 39 2d 2e 35 36 37 38 34 34 37 2d 2e 31 30 34 38 34 38 2d 2e 30 Data Ascii: 12-2.8369905-1.0972863-1.5782048-.9568691-2.5327083-1.3984317-4.0646293-2.3321592-1.7703998-1.0790837-.212559-1.583655.7963867-2.5529189.2640459-.2536609 4.7753906-4.3097041 4.755976-4.431706-.0070494-.0442984-.1409018-.481649-.2457499-.5678447-.104848-.0
2024-09-25 05:26:40 UTC	1369	IN	Data Raw: 2d 31 2e 35 38 34 20 34 2e 38 36 32 2d 31 2e 31 2e 39 39 2d 32 2e 36 36 32 20 31 2e 32 39 38 2d 34 2e 31 33 36 20 31 2e 32 39 38 2d 31 2e 33 36 34 20 30 2d 32 2e 38 31 36 2d 2e 33 30 38 2d 33 2e 37 34 2d 2e 38 35 38 6c 2e 35 39 34 2d 32 2e 30 34 36 63 2e 36 38 32 2e 33 39 36 20 31 2e 38 32 36 2e 38 31 34 20 33 2e 31 32 34 2e 38 31 34 20 31 2e 37 36 20 30 20 33 2e 30 38 2d 2e 39 32 34 20 33 2e 30 38 2d 33 2e 32 33 34 76 2d 2e 39 32 34 68 2d 2e 30 34 34 63 2d 2e 36 31 36 2e 39 34 36 2d 31 2e 36 39 34 20 31 2e 35 38 34 2d 33 2e 31 32 34 20 31 2e 35 38 34 2d 32 2e 36 36 32 20 30 2d 34 2e 35 35 34 2d 32 2e 32 2d 34 2e 35 35 34 2d 35 2e 32 33 36 20 30 2d 33 2e 35 32 20 32 2e 32 38 38 2d 35 2e 36 35 34 20 34 2e 38 36 32 2d 35 2e 36 35 34 20 31 2e 36 35 20 30 20 Data Ascii: -1.584 4.862-1.1.99-2.662 1.298-4.136 1.298-1.364 0-2.816-.308-3.74-.858l.594-2.046c.682.396 1.826.814 3.124.814 1.76 0 3.08-.924 3.08-3.234v-.924h-.044c-.616.946-1.694 1.584-3.124 1.584-2.662 0-4.554-2.2-4.554-5.236 0-3.52 2.288-5.654 4.862-5.654 1.65 0
2024-09-25 05:26:40 UTC	1369	IN	Data Raw: 37 36 20 30 20 33 2e 35 36 34 20 31 2e 32 31 20 33 2e 35 36 34 20 34 2e 36 34 32 76 36 2e 33 31 34 68 2d 32 2e 36 34 76 2d 35 2e 39 31 38 63 30 2d 31 2e 37 38 32 2d 2e 36 31 36 2d 32 2e 38 33 38 2d 31 2e 39 31 34 2d 32 2e 38 33 38 2d 2e 39 32 34 20 30 2d 31 2e 36 30 36 2e 36 36 2d 31 2e 38 39 32 20 31 2e 34 33 2d 2e 30 38 38 2e 32 34 32 2d 2e 31 33 32 2e 35 39 34 2d 2e 31 33 32 2e 39 30 32 76 36 2e 34 32 34 68 2d 32 2e 36 34 76 2d 36 2e 32 30 34 63 30 2d 31 2e 34 39 36 2d 2e 35 39 34 2d 32 2e 35 35 32 2d 31 2e 38 34 38 2d 32 2e 35 35 32 2d 31 2e 30 31 32 20 30 2d 31 2e 36 39 34 2e 37 39 32 2d 31 2e 39 35 38 20 31 2e 35 31 38 2d 2e 30 38 38 2e 32 38 36 2d 2e 31 33 32 2e 35 39 34 2d 2e 31 33 32 2e 39 30 32 76 36 2e 33 33 36 7a 22 20 66 69 6c 6c 3d 22 76 61 Data Ascii: 76 0 3.564 1.21 3.564 4.642v6.314h-2.64v-5.918c0-1.782-.616-2.838-1.914-2.838-.924 0-1.606.66-1.892 1.43-.088.242-.132.594-.132.902v6.424h-2.64v-6.204c0-1.496-.594-2.552-1.848-2.552-1.012 0-1.694.792-1.958 1.518-.088.286-.132.594-.132.902v6.336z" fill="va
2024-09-25 05:26:40 UTC	1313	IN	Data Raw: 73 65 29 20 7b 0a 20 20 76 61 72 20 69 66 72 61 6d 65 43 6f 6e 74 45 6c 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 27 74 67 6d 65 5f 66 72 61 6d 65 5f 63 6f 6e 74 27 29 20 7c 7c 20 64 6f 63 75 6d 65 6e 74 2e 62 6f 64 79 3b 0a 20 20 76 61 72 20 69 66 72 61 6d 65 45 6c 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 27 69 66 72 61 6d 65 27 29 3b 0a 20 20 69 66 72 61 6d 65 43 6f 6e 74 45 6c 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 69 66 72 61 6d 65 45 6c 29 3b 0a 20 20 76 61 72 20 70 61 67 65 48 69 64 64 65 6e 20 3d 20 66 61 6c 73 65 3b 0a 20 20 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 27 70 61 67 65 68 69 64 65 27 2c 20 66 75 6e 63 74 69 6f 6e 20 28 29 20 7b 0a Data Ascii: se) { var iframeContEl = document.getElementById('tgme_frame_cont') \|\| document.body; var iframeEl = document.createElement('iframe'); iframeContEl.appendChild(iframeEl); var pageHidden = false; window.addEventListener('pagehide', function () {

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:39 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-09-25 05:26:39 UTC	467	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF67) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=213575 Date: Wed, 25 Sep 2024 05:26:39 GMT Connection: close X-CID: 2

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (821)
Category:	downloaded
Size (bytes):	7626
Entropy (8bit):	5.215559608926212
Encrypted:	false
SSDEEP:	192:OtQ0m8mBOZgS9tn0Ll9829FAeHlVPrMNW:OtFuSD4829FAeHzPAW
MD5:	33AF753815E0763128B33C38F393AF19
SHA1:	FD81C07EDD497B91F91629687D2AB6976F287E17
SHA-256:	A7A8465112A5F495E5C95139568A59BF35B3116624A5861B71472070520D699E
SHA-512:	D5981A0D80035A3E0B8EFBE12B90C5E82A53F8C2CBC100001D344DC645B07A76DB3B75D863A5BB733F54B9E13B4C0A515B63041F50DCFC9AC750C092C436DBF5
Malicious:	false
Reputation:	low
URL:	https://apps.apple.com/assets/chunk.26.d8fd25d7ba389f9fe03e.js
Preview:	"use strict";(self.webpackChunk_ember_auto_import_=self.webpackChunk_ember_auto_import_\|\|[]).push([[26],{71026:function(e,t,n){n.r(t),n.d(t,{environment:function(){return a},eventRecorder:function(){return F},immediateEventRecorder:function(){return q},logger:function(){return D},network:function(){return E},setEventQueuePostIntervalEnabled:function(){return N}}).var s=n(76588),r=n(24178),u=n(32722),o=r.SC.attachDelegate,a={setDelegate:function(e){return o(this,e)},globalScope:function(){return window}},i={AJAX:"ajax",AJAX_SYNCHRONOUS:"ajaxSynchronous",IMAGE:"image",BEACON:"beacon"},v=r.vc.metricsDisabledOrDenylistedEvent,c=r.vc.removeDenylistedFields,l={},p=["dsId","consumerId"].function f(e,t,n){var s=null.return n&&!v.call(u.Z,n.eventType,t)&&(c.call(u.Z,n,t),m(t,n),e.apply(null,Array.prototype.slice.call(arguments,1)),s=n),s}function d(e,t){l[e]=l[e]\|\|{},l[e]=t}function Q(){l={}}function m(e,t){l[e]=l[e]\|\|{},l[e].anonymous&&p.forEach((function(e){delete t[e]}))}var y=r.SC.attachDel

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 99196, version 1.0
Category:	downloaded
Size (bytes):	99196
Entropy (8bit):	7.997868398992993
Encrypted:	true
SSDEEP:	1536:SQIJfyDgC8VN2bW1ToDcINoJjl3ox2/OSTGaaLDg39z0mRGRBLfG:lgpEW1T+Hel402bxk3ymQP+
MD5:	474D73A771E0CC31B43849CD2BAD9CC4
SHA1:	1D973B9CD90543FA43E6E74F164149278B9331FD
SHA-256:	AE98C3B1ED18478144791BFA0C71056B422287CD41F9B7D35C99063B04BE58EB
SHA-512:	257279598503AA3203ADA4A1A29CFA550F0485D3F7231E815A3734405D6BA18472D3E3F248CABDF39A774BF9B752D83218244F578D2FECA2C33711AA53888C01
Malicious:	false
Reputation:	low
URL:	https://www.apple.com/wss/fonts/SF-Pro-Text/v2/sf-pro-text_regular.woff2
Preview:	wOF2.......\|....../0...............................&..H.`H...>...,..c.6.$..$..(.. ?meta....@. 8.t[;5..Cng....5.P........-..3.j......1.c..6@..;.......FI}..#.........a.....{0.w.. .fd.i.K.+..p.cL.b]YJ.%..+...c.HF4.ett....=...N......."F......../p,1Z...V$...)^.M..-M%..y/\|.^I......;..>..%...Jl....4.L%....<.l.,.:..u.Wy......:W.F.....}j,. V......-.U.F...8Q..Z}^t{x7......j.]-..V.]..7.).....Zqt..kD...~.......dG.U..b.V1S..8......Q...D7.]....n.9b'....="........&...OtG..R......S._.D$.1d..&...9..=.l..yQ.._J.5.{.T.6TX...\..NX.....#.tqR8L.iDuRkW..2hUa)..7.+........Y...!.........z.J.5U6..C......R..;CN....=..\...j......o...[..P.....{@.L........Y....B..?..;.f..Y...j.]...`..$.iW0=.9Yue.xH7....5F.o6.._[......K.,...-..J[.f!w...VaT.r..\..^TXq....S..G..6...n]l..TA0..0A,D1....R.\|...S?..v...!1Z.lR.......5.LF.....H=..X......`$....`0....F]..m..1...i.S.x..Vc.v?..DQ_&..(.(.......3.........K....`.....E.......n.?..5L...5P.c.( .*..EAQ.....c.F.+.l.s.3..J.k:....+...}v..

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	SVG Scalable Vector Graphics image
Category:	dropped
Size (bytes):	667
Entropy (8bit):	4.880039869120858
Encrypted:	false
SSDEEP:	12:t4ptE4pjNllHoqeyEllmjM1/dRs9ZqFmYdduNBnpIIcL2pFT57/+:t4ptE4pjNllHfeyElxdR2qUYdcHnuIcH
MD5:	F519029C9BC5F9130E7826C69B475D0B
SHA1:	56887B4254E867CD72A6B190F06BBFF4E7EEF50C
SHA-256:	8C3C3D6F22372EF7FE0767812F79CCB17B74B5A7D9B64121CEF0961BDE3ECD64
SHA-512:	F51153AD7A23F0E8B3E1DEDC2C59BA2C3B87BCD90597F42D7EFFABB7F0466A99366CE950E8D4DA27141A968BA07522609A6E246F913015F060F44ED48A51C5C5
Malicious:	false
Reputation:	low
Preview:	<svg xmlns="http://www.w3.org/2000/svg" width="100%" height="100%" version="1.1" viewBox="0 0 230.656 498.547"><path fill="none" stroke="#000" stroke-linejoin="round" stroke-miterlimit="1.41" stroke-opacity=".1" stroke-width="1" d="M28.03.45h174.44c9.66 0 13.08.98 16.61 2.87 3.5 1.84 6.36 4.7 8.2 8.19 1.9 3.52 2.88 6.97 2.88 16.63v442.23c0 9.65-1 13.12-2.9 16.65a19.65 19.65 0 0 1-8.19 8.17c-3.53 1.89-6.94 2.86-16.6 2.86H28.02c-9.65 0-13.1-.99-16.63-2.88a19.68 19.68 0 0 1-8.18-8.2c-1.88-3.5-2.85-6.91-2.87-16.43V28.14c0-9.67 1-13.1 2.88-16.64a19.7 19.7 0 0 1 8.19-8.19C14.94 1.42 18.37.45 28.03.45z" clip-rule="evenodd" vector-effect="non-scaling-stroke"/></svg>.

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:40 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-09-25 05:26:40 UTC	515	IN	HTTP/1.1 200 OK ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF06) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=213520 Date: Wed, 25 Sep 2024 05:26:40 GMT Content-Length: 55 Connection: close X-CID: 2
2024-09-25 05:26:40 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:40 UTC	605	OUT	GET /ast/css/main.css HTTP/1.1 Host: darkorange-barracuda-590731.hostingersite.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://darkorange-barracuda-590731.hostingersite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:41 UTC	422	IN	HTTP/1.1 404 Not Found Server: hcdn Date: Wed, 25 Sep 2024 05:26:41 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding last-modified: Wed, 18 Jan 2023 19:41:46 GMT etag: W/"999-63c84b7a-b6adba1f9b4a5aed;gz" platform: hostinger panel: hpanel x-turbo-charged-by: LiteSpeed alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: 39ba560c87645fb7d84655570ea065d0-bos-edge2
2024-09-25 05:26:41 UTC	947	IN	Data Raw: 39 39 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 75 73 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 73 69 6f 63 3a 20 68 74 74 70 3a 2f 2f 72 64 66 73 2e 6f 72 67 2f 73 69 6f 63 2f 6e Data Ascii: 999<!DOCTYPE html><html lang="en-us" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# sioc: http://rdfs.org/sioc/n
2024-09-25 05:26:41 UTC	1369	IN	Data Raw: 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 4f 6f 70 73 2c 20 73 6f 6d 65 74 68 69 6e 67 20 6c 6f 73 74 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 4f 6f 70 73 2c 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 74 68 65 20 70 61 67 65 20 69 73 20 6c 6f 73 74 2e 20 53 74 61 72 74 20 79 6f 75 72 20 77 65 62 73 69 74 65 20 6f 6e 20 74 68 65 Data Ascii: -equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Oops, something lost</title> <meta name="description" content="Oops, looks like the page is lost. Start your website on the
2024-09-25 05:26:41 UTC	153	IN	Data Raw: 64 65 72 20 74 65 78 74 2d 62 6c 6f 63 6b 2d 6e 61 72 72 6f 77 22 3e 54 68 69 73 20 69 73 20 6e 6f 74 20 61 20 66 61 75 6c 74 2c 20 6a 75 73 74 20 61 6e 20 61 63 63 69 64 65 6e 74 20 74 68 61 74 20 77 61 73 20 6e 6f 74 20 69 6e 74 65 6e 74 69 6f 6e 61 6c 2e 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 3c 2f 62 6f 64 79 3e 0a 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a Data Ascii: der text-block-narrow">This is not a fault, just an accident that was not intentional.</p> </div> </div></body></html>0

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:40 UTC	640	OUT	GET /t.jpg HTTP/1.1 Host: darkorange-barracuda-590731.hostingersite.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://darkorange-barracuda-590731.hostingersite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:42 UTC	390	IN	HTTP/1.1 200 OK Server: hcdn Date: Wed, 25 Sep 2024 05:26:42 GMT Content-Type: image/webp Content-Length: 16822 Connection: close Cache-Control: public, max-age=604800 X-Hcdn-Image-Optimizer: f:webp q:85 w:1600 alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: 37a921842e92a8a0d9aa8f0ca1e2da9e-bos-edge2 x-hcdn-cache-status: MISS x-hcdn-upstream-rt: 1.057 Accept-Ranges: bytes
2024-09-25 05:26:42 UTC	979	IN	Data Raw: 52 49 46 46 ae 41 00 00 57 45 42 50 56 50 38 58 0a 00 00 00 08 00 00 00 67 01 00 7f 02 00 56 50 38 20 ce 40 00 00 d0 52 01 9d 01 2a 68 01 80 02 3e 51 26 90 46 23 a2 21 a6 24 51 9a 28 c0 0a 09 67 6e 1d e4 27 04 dc 5f c0 4d 8d e3 bd d5 48 ac 78 d9 76 c3 f4 c7 38 ce 21 fa 1f 05 3f 37 d7 35 fb df 43 ef cc f6 45 04 e5 9b fe 34 3e 36 7b 7c f0 fc f7 b0 bf d1 3a fa f0 c7 f1 1e 09 fd d6 50 77 6f ff b2 f8 8a 64 8f 77 47 51 e6 41 82 3e 21 fe f1 cf e7 fc af 26 7f bf 7f c4 f6 13 fe 7b fe 27 d6 47 fe 6f 3f ff b3 7a 9d 83 dc 9d 71 6b 46 ae 27 13 73 24 34 17 4f 76 23 47 88 b0 bb 03 e2 3e bc 99 87 fc 34 85 f3 ea 8b 54 15 e1 e4 47 7b a3 8d 50 da 36 39 20 a5 e7 d0 32 b3 c4 d1 1d 98 98 6a 25 32 ab db 03 fa 51 c9 37 33 df 09 3f 25 e5 0f 99 f1 d0 91 81 40 cb 0c 47 ce ba ee d2 Data Ascii: RIFFAWEBPVP8XgVP8 @R*h>Q&F#!$Q(gn'_MHxv8!?75CE4>6{\|:PwodwGQA>!&{'Go?zqkF's$4Ov#G>4TG{P69 2j%2Q73?%@G
2024-09-25 05:26:42 UTC	1369	IN	Data Raw: 38 71 fd 01 24 62 f3 97 23 d5 7d 82 4c bd 42 86 38 82 27 e8 a0 39 dc 3a 32 12 5b a6 46 55 e8 b2 a0 f0 91 e3 dd 6b 31 d6 44 70 68 fc 7b cd 42 eb df 33 b7 b9 18 9e a8 9a 46 03 af cd 96 3e f4 2f af a0 bc 90 cc 24 53 3c da 26 2c 42 06 ba 74 05 d0 49 dd 85 a5 09 46 41 d9 c2 86 e7 f6 b6 11 78 af 58 c1 5d 6b 33 ea d4 9f 2f 68 d4 7f 3e b3 1b ed 47 7b 62 d5 c2 1a ce c2 a1 e5 21 85 a6 0e 11 ea a7 e8 01 0c db d8 2a 66 33 bd 54 ed 6a 4f c9 c9 0f 47 a8 32 fd 72 e1 5c c3 87 87 b1 1b f9 1c fb d9 5d 35 3e 79 c2 9f 5a 64 d9 44 26 a5 1c 4e e3 1c c9 c0 21 3c a0 09 19 34 00 aa ae 6a 6f b6 8b ed 87 3f 53 a7 19 f0 bd c3 08 13 c8 eb f1 82 ef 33 74 fc b7 44 d7 17 26 c2 fd 29 b8 0a 6c 05 8e b0 5a 23 06 91 8c b8 65 e4 81 5d 88 ac 59 3d ec fc d5 42 f1 24 90 c0 aa 60 93 ad 09 a3 09 Data Ascii: 8q$b#}LB8'9:2[FUk1Dph{B3F>/$S<&,BtIFAxX]k3/h>G{b!*f3TjOG2r\]5>yZdD&N!<4jo?S3tD&)lZ#e]Y=B$`
2024-09-25 05:26:42 UTC	1369	IN	Data Raw: 4f 97 89 b2 10 2d 85 fe 82 e2 a1 f1 b7 71 38 d3 16 93 d0 14 da 6c 7a 77 7a 07 a7 52 74 69 c6 2c 16 ba cb 50 ec 94 34 00 eb 93 fa 2a 13 60 99 f9 9a 88 cf 79 9d 22 c6 de 69 6f 4e e9 f0 50 5b 1c b1 b1 a4 d8 40 f1 50 3c 47 13 59 b4 a0 a9 18 b2 74 f2 25 48 0c f8 82 f6 35 04 d0 01 5b 6f 4e da bf 52 67 07 b2 24 39 b9 7b fb ea b6 59 a2 81 67 e9 fe 70 df ab ac 37 d5 78 21 68 d3 a5 65 50 62 4f 0b 9a be 28 52 43 96 de 5d cd c9 ab 73 52 81 d5 42 d5 9e a1 87 6f 2c b8 ce 4e 54 0d 23 55 44 4b 7a 3a 9e ae 27 f8 fd eb dd b0 8d a0 5d 59 d3 f9 51 8d 39 e9 80 9a c5 ac 80 b8 b0 12 40 59 43 83 ee b0 7f 11 b5 f3 ab 01 86 c9 90 f8 11 13 dd 97 5d 1c e7 89 c1 12 94 30 c2 61 04 f9 eb 28 84 f2 d7 12 d9 40 52 c5 a6 ee 8d ec 5e a2 dc 28 55 6c c7 b2 59 79 b6 25 26 d4 68 0c 87 7c a4 e7 Data Ascii: O-q8lzwzRti,P4*`y"ioNP[@P<GYt%H5[oNRg$9{Ygp7x!hePbO(RC]sRBo,NT#UDKz:']YQ9@YC]0a(@R^(UlYy%&h\|
2024-09-25 05:26:42 UTC	1369	IN	Data Raw: 76 13 e1 29 a4 2c 78 42 82 4c da 77 25 38 33 bd e4 72 23 1f ea c6 e0 1b f6 33 52 cb e7 76 d3 c2 12 be c6 6c 05 eb 11 33 88 39 d7 ee 86 11 06 d6 2a 3c f4 07 eb 18 59 26 f4 2c 95 ce 7e d1 0f 45 2c 9a e2 c1 ed b5 cb ed 45 3d aa 69 0b 6d 7e d2 39 40 f6 2e 3f 3a ca d1 cb 73 f0 c0 8f 2a 08 d2 c4 85 c3 24 c2 2f 9e 4b 84 87 57 2f 97 1e e5 6b 5f 3e 17 5a fb 26 bb 39 6b 02 89 d3 6e a6 e4 61 f4 92 cb 59 51 bc b0 0a 82 b0 f7 c5 10 29 ca 58 b3 ea ad a2 5b f7 14 5a 43 92 01 a1 9a 5f b3 b5 a1 a7 d5 1a 69 29 51 57 bb 48 09 72 ea e8 50 7f d5 10 b6 d8 47 90 8f 61 7d 20 54 b8 76 75 db f3 7e 92 0d b8 32 89 64 93 3f 5c c5 00 48 89 6b 8f fe 1c f3 21 f5 65 6f 5f 24 97 91 38 bf 01 45 a0 6e ce cc f4 af 2b 22 8c a5 bc cf 00 3c a1 95 5b cd c0 9c 91 a1 5f d7 6e 8f 9a 0c ee 40 8a 93 Data Ascii: v),xBLw%83r#3Rvl39<Y&,~E,E=im~9@.?:s$/KW/k_>Z&9knaYQ)X[ZC_i)QWHrPGa} Tvu~2d?\Hk!eo_$8En+"<[_n@
2024-09-25 05:26:42 UTC	1369	IN	Data Raw: 7e 6a 92 a6 0e 44 35 68 6f 68 c6 91 58 ac 77 f8 5a ba bd 1c 3a d5 43 65 1d 48 c0 4f 56 af 35 38 4d 35 75 b5 e1 3c 46 33 a6 e3 d5 ce aa f3 ca b7 2c fe 04 3d 9d 33 2b b0 4d 05 6a cd 14 dd 04 d3 bd 74 81 e6 a1 17 4f e2 fe 81 56 ef d0 4e 30 28 45 a1 b3 fc 67 02 64 34 6c 61 78 bc 29 61 0e e2 08 a8 42 fd de dc 9c 8c 26 1f ba 87 1a 9f 9d 4d eb 45 e6 67 c5 15 5e 3c 14 da 60 a4 f9 7e 85 ad 11 f6 9a dc 17 be 26 51 7b ae 36 9c 39 8b 17 23 d6 bd 14 36 81 7e 4f 55 0d bb 20 2d d0 3f 41 09 a9 89 2c 6e 49 a7 c6 16 a3 0f 79 5e 8a 7e 93 4f 86 70 ad 18 48 81 a4 1f ad 4a cd e2 f9 f6 92 62 ff 69 aa fd bd ac 17 b2 e8 89 3a 21 13 a3 cf 49 22 65 c4 e8 6d 35 66 7b 62 d9 d8 58 83 fa 5e 80 55 af da 88 ec 25 7d 43 33 48 76 c7 61 f9 30 5d fa 93 de cc ee 53 5e b0 2a a0 5a c1 e6 f1 a4 Data Ascii: ~jD5hohXwZ:CeHOV58M5u<F3,=3+MjtOVN0(Egd4lax)aB&MEg^<`~&Q{69#6~OU -?A,nIy^~OpHJbi:!I"em5f{bX^U%}C3Hva0]S^*Z
2024-09-25 05:26:42 UTC	1369	IN	Data Raw: 9e de 6f d4 b8 6c ff 44 1e 37 8b e7 37 21 d1 88 78 5e 3d b0 4c 58 82 34 ba 33 e3 95 57 bb 18 7b b1 35 89 65 f9 2c 36 57 9b 81 f9 88 1e b8 e8 22 46 21 dc 04 d4 a2 1d 7e 65 e1 c3 f9 b5 af 11 b9 da 30 da 47 e9 92 63 3a f5 82 b3 7a e7 8c f1 ea 74 17 d4 82 ab 00 b7 e5 ce 29 43 9e f0 73 8d 2a 22 20 41 c6 e0 08 32 94 ce 44 ab 93 0c 1d 07 92 e0 0a 9c 1f 1e 53 48 c5 9e d2 f0 b6 b2 df 88 17 ab a3 27 59 db 36 a9 62 f4 e7 f5 d7 31 c9 07 6e 6a fa be 78 69 24 4c b2 ce 6c 37 4e 54 21 18 eb c5 0c 24 d5 4a 7c 26 72 c3 87 f1 77 c8 3e 70 e8 28 d3 35 b9 f6 eb 9e f5 99 2a 97 d4 0f 44 c9 db 2d 8e c3 8a 00 cf 73 9c 3f 74 8f 5a 57 7c 1c 13 0d 96 88 a2 64 72 7f 55 ac 82 f0 d9 71 17 76 b9 bb 78 2c e0 f2 94 61 54 2a 25 f8 81 13 a5 e3 cb 90 3b 90 49 f7 44 3d 25 8b 2a e9 11 a7 70 35 Data Ascii: olD77!x^=LX43W{5e,6W"F!~e0Gc:zt)Cs" A2DSH'Y6b1njxi$Ll7NT!$J\|&rw>p(5D-s?tZW\|drUqvx,aT%;ID=%p5
2024-09-25 05:26:42 UTC	1369	IN	Data Raw: 88 34 ef b8 75 34 03 6e b4 a2 5f df 21 31 86 f9 91 c7 89 24 dc cc a2 0a 1d 53 f2 f0 df c7 43 d9 72 2a 8c 2f f1 36 19 c6 87 a9 9a 5b f0 79 c4 1f 86 bb c9 3e 73 fc 86 c4 40 b6 9e 32 41 fe 5b 9d 0e 49 59 b3 03 c2 4f 81 d7 dc 81 3d 52 f6 9e 52 e1 94 60 d2 92 c2 53 32 5c d4 59 f8 eb 7a ea e0 db 05 09 94 d3 d1 52 46 97 8d ad 0f a2 e6 b4 d6 67 86 91 af 2a 3e 8a b2 a8 50 b9 c0 32 b6 25 2e c0 ab 5b 8a 3f d6 b5 12 52 7a 9b 18 54 73 70 84 f2 c3 2a 25 d1 8f c1 1a b8 21 3b 02 25 92 f1 f3 e8 a9 b3 a0 71 3b ff f0 3f 9a 76 77 34 05 3a c6 87 4c 7b 81 b8 f1 89 ed 29 91 cb 37 b9 90 51 4c d6 7d 81 48 a8 ae e5 a4 52 c9 22 ad 53 9a 2a 84 fb 33 ea 15 c4 3a 5b dd 70 43 b4 d0 5c 39 0d 5d f8 bd e4 52 8b 13 25 91 a4 02 d1 3d 0c 5a ce a4 49 38 56 d8 33 e3 99 0d e9 94 95 c8 5f 3d d6 Data Ascii: 4u4n_!1$SCr/6[y>s@2A[IYO=RR`S2\YzRFg>P2%.[?RzTsp%!;%q;?vw4:L{)7QL}HR"S3:[pC\9]R%=ZI8V3_=
2024-09-25 05:26:42 UTC	1369	IN	Data Raw: 00 1b c8 6e 37 53 01 46 c0 00 dd 48 03 3c d3 ce 59 ea c1 b9 57 10 84 a0 36 e8 6e d6 c4 a1 62 87 b5 96 4f d1 e7 56 60 a5 39 80 d4 2d e2 73 25 fb 95 dc 51 97 21 f7 12 65 98 36 86 1d c7 30 99 1b 24 66 14 57 24 40 91 37 e8 25 3b 19 3e 85 46 18 ed c3 b4 bc 61 64 70 e5 60 05 52 7e be 9f 1e c7 2d 88 03 92 71 ad b7 7a 08 f0 76 db e1 1d 9e e9 ef 0c 92 8a a9 5d d4 e2 78 85 9d 4f 68 73 db 98 cd f7 48 5e 6a be da 17 3c 9b 99 31 db 52 eb 56 48 55 0b 3d 50 7f b7 3a 16 cb 8a 30 e3 49 0a 89 82 38 77 54 67 8b 75 07 f9 a5 04 a3 ef 97 a3 2c 05 c1 d2 0a 03 df e9 1d 29 c3 63 4e cb 95 4e ab 6a 27 d1 5a 4b d8 d4 dd b7 a5 4e 5d df 18 1c 48 fd 17 12 a7 ba d9 10 41 62 ae 81 0c cc 04 7e b6 ac 42 9f 17 84 65 05 50 41 01 9e 86 6a 46 ca 78 0b 71 5e 7c 98 7d e3 4d ea 63 99 52 44 ec 85 Data Ascii: n7SFH<YW6nbOV`9-s%Q!e60$fW$@7%;>Fadp`R~-qzv]xOhsH^j<1RVHU=P:0I8wTgu,)cNNj'ZKN]HAb~BePAjFxq^\|}McRD
2024-09-25 05:26:42 UTC	1369	IN	Data Raw: b9 70 e1 e4 44 16 e6 41 8a 62 7f d8 95 41 cf b4 bc 86 7f 01 78 49 96 ff 51 2d 5b f2 87 24 c7 c0 07 d6 33 dd 84 e1 9f 25 47 df a5 87 0e b4 77 2c 13 6b dd b4 64 c2 c9 95 46 e9 8a 25 1d 77 04 ce 55 38 5f 83 a0 9e 83 0c 60 c0 a7 49 7e 3b b1 4f 61 df 7d 0e a9 77 5e b3 57 74 45 91 61 3b 48 81 97 22 91 27 c8 33 33 48 48 a4 01 9c f7 74 69 9b 9b 21 f2 de f2 7c 5d 35 ac e2 65 1c 76 f0 be 40 57 0e de e6 e6 14 df e4 55 4f 83 2e d8 9a f5 55 14 ea c4 69 be c9 8e e5 c4 39 a9 8f c3 0c 45 da a4 2f 4b 75 9b 3b 52 e0 28 fa 1f 19 e6 35 ee 0f 12 2e e0 8d d4 0c ec 34 e8 5f 50 23 35 66 0e ce 7c f2 66 ad 78 ca bc 77 b8 bc 49 26 c8 bf b4 1d 39 d1 d5 76 5d d1 4f fe 74 d2 ec 13 ae 0d aa c1 1f 3e 91 63 22 d5 ef 44 bf 7a b5 40 1f b9 79 b0 a9 2e 78 b0 60 0e 6f 29 bf 83 0c a4 ac 15 36 Data Ascii: pDAbAxIQ-[$3%Gw,kdF%wU8_`I~;Oa}w^WtEa;H"'33HHti!\|]5ev@WUO.Ui9E/Ku;R(5.4_P#5f\|fxwI&9v]Ot>c"Dz@y.x`o)6
2024-09-25 05:26:42 UTC	1369	IN	Data Raw: 01 66 31 78 94 47 ac 8b 59 cf f5 cb 33 e6 e3 28 88 49 89 e5 87 53 d8 35 f7 ec 77 a1 27 34 91 8d a4 77 25 e0 7d 3c cf 87 08 0a 27 fb 67 54 00 53 b5 c4 4b 93 3e 85 91 49 91 c1 39 ce ca 89 ce 14 a2 60 3a e1 91 42 bd e9 cd 1f 1e a7 36 da 56 52 29 77 fa 0b 0c 52 c7 38 59 77 be fe 80 cc 51 75 80 e8 29 78 5c 03 cf 27 76 a1 45 50 ff 67 59 7e db fb c6 fb 05 f2 96 53 d2 e0 06 72 cb b8 db 8d 33 b8 82 48 fc 46 39 fb 88 c5 9b bf b5 94 90 50 59 bb b2 15 c1 08 09 61 c8 61 d9 dc d4 d7 bd 30 6f 06 71 8a 0f 22 70 b1 2c 2d 53 99 65 04 97 4e 38 52 b7 6b f8 3b cb 85 06 4f 84 1e df 7e 31 ca 60 96 36 60 d6 69 2a 04 cd 46 59 0d a1 5e 55 11 47 47 3c ab bb 6e 1a 6a 4d 3e 31 e3 aa 70 c6 33 49 1c 2e 18 48 b1 37 0f ab dc 06 18 93 e7 f0 2a 9f 39 eb 22 db 5a 62 70 4b 58 7b d2 a2 99 5e Data Ascii: f1xGY3(IS5w'4w%}<'gTSK>I9`:B6VR)wR8YwQu)x\'vEPgY~Sr3HF9PYaa0oq"p,-SeN8Rk;O~1`6`iFY^UGG<njM>1p3I.H79"ZbpKX{^

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:41 UTC	563	OUT	GET /jquery-3.5.1.min.js HTTP/1.1 Host: code.jquery.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://darkorange-barracuda-590731.hostingersite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:41 UTC	612	IN	HTTP/1.1 200 OK Connection: close Content-Length: 89476 Server: nginx Content-Type: application/javascript; charset=utf-8 Last-Modified: Fri, 18 Oct 1991 12:00:00 GMT ETag: "28feccc0-15d84" Cache-Control: public, max-age=31536000, stale-while-revalidate=604800 Access-Control-Allow-Origin: * Cross-Origin-Resource-Policy: cross-origin Via: 1.1 varnish, 1.1 varnish Accept-Ranges: bytes Age: 2398606 Date: Wed, 25 Sep 2024 05:26:41 GMT X-Served-By: cache-lga21981-LGA, cache-ewr-kewr1740069-EWR X-Cache: HIT, HIT X-Cache-Hits: 264, 0 X-Timer: S1727242001.251625,VS0,VE1 Vary: Accept-Encoding
2024-09-25 05:26:41 UTC	1378	IN	Data Raw: 2f 2a 21 20 6a 51 75 65 72 79 20 76 33 2e 35 2e 31 20 7c 20 28 63 29 20 4a 53 20 46 6f 75 6e 64 61 74 69 6f 6e 20 61 6e 64 20 6f 74 68 65 72 20 63 6f 6e 74 72 69 62 75 74 6f 72 73 20 7c 20 6a 71 75 65 72 79 2e 6f 72 67 2f 6c 69 63 65 6e 73 65 20 2a 2f 0a 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 2e 65 78 70 6f 72 74 73 3f 6d 6f 64 75 6c 65 2e 65 78 70 6f 72 74 73 3d 65 2e 64 6f 63 75 6d 65 6e 74 3f 74 28 65 2c 21 30 29 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 66 28 21 65 2e 64 6f 63 75 6d 65 6e 74 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 6a 51 75 65 72 79 20 Data Ascii: /! jQuery v3.5.1 \| (c) JS Foundation and other contributors \| jquery.org/license /!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Error("jQuery
2024-09-25 05:26:41 UTC	1378	IN	Data Raw: 65 3f 73 2e 63 61 6c 6c 28 74 68 69 73 29 3a 65 3c 30 3f 74 68 69 73 5b 65 2b 74 68 69 73 2e 6c 65 6e 67 74 68 5d 3a 74 68 69 73 5b 65 5d 7d 2c 70 75 73 68 53 74 61 63 6b 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 53 2e 6d 65 72 67 65 28 74 68 69 73 2e 63 6f 6e 73 74 72 75 63 74 6f 72 28 29 2c 65 29 3b 72 65 74 75 72 6e 20 74 2e 70 72 65 76 4f 62 6a 65 63 74 3d 74 68 69 73 2c 74 7d 2c 65 61 63 68 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 53 2e 65 61 63 68 28 74 68 69 73 2c 65 29 7d 2c 6d 61 70 3a 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 70 75 73 68 53 74 61 63 6b 28 53 2e 6d 61 70 28 74 68 69 73 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 6e 2e 63 61 6c 6c 28 65 2c 74 2c Data Ascii: e?s.call(this):e<0?this[e+this.length]:this[e]},pushStack:function(e){var t=S.merge(this.constructor(),e);return t.prevObject=this,t},each:function(e){return S.each(this,e)},map:function(n){return this.pushStack(S.map(this,function(e,t){return n.call(e,t,
2024-09-25 05:26:41 UTC	1378	IN	Data Raw: 65 63 74 20 4f 62 6a 65 63 74 5d 22 21 3d 3d 6f 2e 63 61 6c 6c 28 65 29 29 26 26 28 21 28 74 3d 72 28 65 29 29 7c 7c 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 28 6e 3d 76 2e 63 61 6c 6c 28 74 2c 22 63 6f 6e 73 74 72 75 63 74 6f 72 22 29 26 26 74 2e 63 6f 6e 73 74 72 75 63 74 6f 72 29 26 26 61 2e 63 61 6c 6c 28 6e 29 3d 3d 3d 6c 29 7d 2c 69 73 45 6d 70 74 79 4f 62 6a 65 63 74 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3b 66 6f 72 28 74 20 69 6e 20 65 29 72 65 74 75 72 6e 21 31 3b 72 65 74 75 72 6e 21 30 7d 2c 67 6c 6f 62 61 6c 45 76 61 6c 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 62 28 65 2c 7b 6e 6f 6e 63 65 3a 74 26 26 74 2e 6e 6f 6e 63 65 7d 2c 6e 29 7d 2c 65 61 63 68 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 Data Ascii: ect Object]"!==o.call(e))&&(!(t=r(e))\|\|"function"==typeof(n=v.call(t,"constructor")&&t.constructor)&&a.call(n)===l)},isEmptyObject:function(e){var t;for(t in e)return!1;return!0},globalEval:function(e,t,n){b(e,{nonce:t&&t.nonce},n)},each:function(e,t){var
2024-09-25 05:26:41 UTC	1378	IN	Data Raw: 2e 73 6c 69 63 65 2c 50 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 66 6f 72 28 76 61 72 20 6e 3d 30 2c 72 3d 65 2e 6c 65 6e 67 74 68 3b 6e 3c 72 3b 6e 2b 2b 29 69 66 28 65 5b 6e 5d 3d 3d 3d 74 29 72 65 74 75 72 6e 20 6e 3b 72 65 74 75 72 6e 2d 31 7d 2c 52 3d 22 63 68 65 63 6b 65 64 7c 73 65 6c 65 63 74 65 64 7c 61 73 79 6e 63 7c 61 75 74 6f 66 6f 63 75 73 7c 61 75 74 6f 70 6c 61 79 7c 63 6f 6e 74 72 6f 6c 73 7c 64 65 66 65 72 7c 64 69 73 61 62 6c 65 64 7c 68 69 64 64 65 6e 7c 69 73 6d 61 70 7c 6c 6f 6f 70 7c 6d 75 6c 74 69 70 6c 65 7c 6f 70 65 6e 7c 72 65 61 64 6f 6e 6c 79 7c 72 65 71 75 69 72 65 64 7c 73 63 6f 70 65 64 22 2c 4d 3d 22 5b 5c 5c 78 32 30 5c 5c 74 5c 5c 72 5c 5c 6e 5c 5c 66 5d 22 2c 49 3d 22 28 3f 3a 5c 5c 5c 5c 5b 5c 5c 64 61 2d 66 41 2d Data Ascii: .slice,P=function(e,t){for(var n=0,r=e.length;n<r;n++)if(e[n]===t)return n;return-1},R="checked\|selected\|async\|autofocus\|autoplay\|controls\|defer\|disabled\|hidden\|ismap\|loop\|multiple\|open\|readonly\|required\|scoped",M="[\\x20\\t\\r\\n\\f]",I="(?:\\\\[\\da-fA-
2024-09-25 05:26:41 UTC	1378	IN	Data Raw: 5c 5c 64 61 2d 66 41 2d 46 5d 7b 31 2c 36 7d 22 2b 4d 2b 22 3f 7c 5c 5c 5c 5c 28 5b 5e 5c 5c 72 5c 5c 6e 5c 5c 66 5d 29 22 2c 22 67 22 29 2c 6e 65 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 3d 22 30 78 22 2b 65 2e 73 6c 69 63 65 28 31 29 2d 36 35 35 33 36 3b 72 65 74 75 72 6e 20 74 7c 7c 28 6e 3c 30 3f 53 74 72 69 6e 67 2e 66 72 6f 6d 43 68 61 72 43 6f 64 65 28 6e 2b 36 35 35 33 36 29 3a 53 74 72 69 6e 67 2e 66 72 6f 6d 43 68 61 72 43 6f 64 65 28 6e 3e 3e 31 30 7c 35 35 32 39 36 2c 31 30 32 33 26 6e 7c 35 36 33 32 30 29 29 7d 2c 72 65 3d 2f 28 5b 5c 30 2d 5c 78 31 66 5c 78 37 66 5d 7c 5e 2d 3f 5c 64 29 7c 5e 2d 24 7c 5b 5e 5c 30 2d 5c 78 31 66 5c 78 37 66 2d 5c 75 46 46 46 46 5c 77 2d 5d 2f 67 2c 69 65 3d 66 75 6e 63 74 69 6f 6e 28 65 2c Data Ascii: \\da-fA-F]{1,6}"+M+"?\|\\\\([^\\r\\n\\f])","g"),ne=function(e,t){var n="0x"+e.slice(1)-65536;return t\|\|(n<0?String.fromCharCode(n+65536):String.fromCharCode(n>>10\|55296,1023&n\|56320))},re=/([\0-\x1f\x7f]\|^-?\d)\|^-$\|[^\0-\x1f\x7f-\uFFFF\w-]/g,ie=function(e,
2024-09-25 05:26:41 UTC	1378	IN	Data Raw: 64 65 29 7c 7c 65 29 3d 3d 3d 65 26 26 64 2e 73 63 6f 70 65 7c 7c 28 28 73 3d 65 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 69 64 22 29 29 3f 73 3d 73 2e 72 65 70 6c 61 63 65 28 72 65 2c 69 65 29 3a 65 2e 73 65 74 41 74 74 72 69 62 75 74 65 28 22 69 64 22 2c 73 3d 53 29 29 2c 6f 3d 28 6c 3d 68 28 74 29 29 2e 6c 65 6e 67 74 68 3b 77 68 69 6c 65 28 6f 2d 2d 29 6c 5b 6f 5d 3d 28 73 3f 22 23 22 2b 73 3a 22 3a 73 63 6f 70 65 22 29 2b 22 20 22 2b 78 65 28 6c 5b 6f 5d 29 3b 63 3d 6c 2e 6a 6f 69 6e 28 22 2c 22 29 7d 74 72 79 7b 72 65 74 75 72 6e 20 48 2e 61 70 70 6c 79 28 6e 2c 66 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 63 29 29 2c 6e 7d 63 61 74 63 68 28 65 29 7b 4e 28 74 2c 21 30 29 7d 66 69 6e 61 6c 6c 79 7b 73 3d 3d 3d 53 26 26 65 2e 72 65 6d Data Ascii: de)\|\|e)===e&&d.scope\|\|((s=e.getAttribute("id"))?s=s.replace(re,ie):e.setAttribute("id",s=S)),o=(l=h(t)).length;while(o--)l[o]=(s?"#"+s:":scope")+" "+xe(l[o]);c=l.join(",")}try{return H.apply(n,f.querySelectorAll(c)),n}catch(e){N(t,!0)}finally{s===S&&e.rem
2024-09-25 05:26:41 UTC	1378	IN	Data Raw: 6f 29 2c 69 3d 72 2e 6c 65 6e 67 74 68 3b 77 68 69 6c 65 28 69 2d 2d 29 65 5b 6e 3d 72 5b 69 5d 5d 26 26 28 65 5b 6e 5d 3d 21 28 74 5b 6e 5d 3d 65 5b 6e 5d 29 29 7d 29 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 79 65 28 65 29 7b 72 65 74 75 72 6e 20 65 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 65 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 26 26 65 7d 66 6f 72 28 65 20 69 6e 20 64 3d 73 65 2e 73 75 70 70 6f 72 74 3d 7b 7d 2c 69 3d 73 65 2e 69 73 58 4d 4c 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 65 2e 6e 61 6d 65 73 70 61 63 65 55 52 49 2c 6e 3d 28 65 2e 6f 77 6e 65 72 44 6f 63 75 6d 65 6e 74 7c 7c 65 29 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 3b 72 65 74 75 72 6e 21 59 2e 74 65 73 74 28 74 7c 7c Data Ascii: o),i=r.length;while(i--)e[n=r[i]]&&(e[n]=!(t[n]=e[n]))})})}function ye(e){return e&&"undefined"!=typeof e.getElementsByTagName&&e}for(e in d=se.support={},i=se.isXML=function(e){var t=e.namespaceURI,n=(e.ownerDocument\|\|e).documentElement;return!Y.test(t\|\|
2024-09-25 05:26:41 UTC	1378	IN	Data Raw: 20 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 65 2e 67 65 74 41 74 74 72 69 62 75 74 65 4e 6f 64 65 26 26 65 2e 67 65 74 41 74 74 72 69 62 75 74 65 4e 6f 64 65 28 22 69 64 22 29 3b 72 65 74 75 72 6e 20 74 26 26 74 2e 76 61 6c 75 65 3d 3d 3d 6e 7d 7d 2c 62 2e 66 69 6e 64 2e 49 44 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 69 66 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 26 26 45 29 7b 76 61 72 20 6e 2c 72 2c 69 2c 6f 3d 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 65 29 3b 69 66 28 6f 29 7b 69 66 28 28 6e 3d 6f 2e 67 65 74 41 74 74 72 69 62 75 74 65 4e 6f 64 65 28 22 69 64 22 29 29 26 26 6e 2e 76 61 6c 75 65 3d Data Ascii: function(e){var t="undefined"!=typeof e.getAttributeNode&&e.getAttributeNode("id");return t&&t.value===n}},b.find.ID=function(e,t){if("undefined"!=typeof t.getElementById&&E){var n,r,i,o=t.getElementById(e);if(o){if((n=o.getAttributeNode("id"))&&n.value=
2024-09-25 05:26:41 UTC	1378	IN	Data Raw: 2c 65 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 3a 63 68 65 63 6b 65 64 22 29 2e 6c 65 6e 67 74 68 7c 7c 76 2e 70 75 73 68 28 22 3a 63 68 65 63 6b 65 64 22 29 2c 65 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 61 23 22 2b 53 2b 22 2b 2a 22 29 2e 6c 65 6e 67 74 68 7c 7c 76 2e 70 75 73 68 28 22 2e 23 2e 2b 5b 2b 7e 5d 22 29 2c 65 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 5c 5c 5c 66 22 29 2c 76 2e 70 75 73 68 28 22 5b 5c 5c 72 5c 5c 6e 5c 5c 66 5d 22 29 7d 29 2c 63 65 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 65 2e 69 6e 6e 65 72 48 54 4d 4c 3d 22 3c 61 20 68 72 65 66 3d 27 27 20 64 69 73 61 62 6c 65 64 3d 27 64 69 73 61 62 6c 65 64 27 3e 3c 2f 61 3e 3c 73 65 6c 65 63 74 20 64 69 73 61 62 6c 65 64 3d 27 64 69 73 61 62 Data Ascii: ,e.querySelectorAll(":checked").length\|\|v.push(":checked"),e.querySelectorAll("a#"+S+"+*").length\|\|v.push(".#.+[+~]"),e.querySelectorAll("\\\f"),v.push("[\\r\\n\\f]")}),ce(function(e){e.innerHTML="<a href='' disabled='disabled'></a><select disabled='disab
2024-09-25 05:26:41 UTC	1378	IN	Data Raw: 6f 63 75 6d 65 6e 74 50 6f 73 69 74 69 6f 6e 3b 72 65 74 75 72 6e 20 6e 7c 7c 28 31 26 28 6e 3d 28 65 2e 6f 77 6e 65 72 44 6f 63 75 6d 65 6e 74 7c 7c 65 29 3d 3d 28 74 2e 6f 77 6e 65 72 44 6f 63 75 6d 65 6e 74 7c 7c 74 29 3f 65 2e 63 6f 6d 70 61 72 65 44 6f 63 75 6d 65 6e 74 50 6f 73 69 74 69 6f 6e 28 74 29 3a 31 29 7c 7c 21 64 2e 73 6f 72 74 44 65 74 61 63 68 65 64 26 26 74 2e 63 6f 6d 70 61 72 65 44 6f 63 75 6d 65 6e 74 50 6f 73 69 74 69 6f 6e 28 65 29 3d 3d 3d 6e 3f 65 3d 3d 43 7c 7c 65 2e 6f 77 6e 65 72 44 6f 63 75 6d 65 6e 74 3d 3d 70 26 26 79 28 70 2c 65 29 3f 2d 31 3a 74 3d 3d 43 7c 7c 74 2e 6f 77 6e 65 72 44 6f 63 75 6d 65 6e 74 3d 3d 70 26 26 79 28 70 2c 74 29 3f 31 3a 75 3f 50 28 75 2c 65 29 2d 50 28 75 2c 74 29 3a 30 3a 34 26 6e 3f 2d 31 3a 31 Data Ascii: ocumentPosition;return n\|\|(1&(n=(e.ownerDocument\|\|e)==(t.ownerDocument\|\|t)?e.compareDocumentPosition(t):1)\|\|!d.sortDetached&&t.compareDocumentPosition(e)===n?e==C\|\|e.ownerDocument==p&&y(p,e)?-1:t==C\|\|t.ownerDocument==p&&y(p,t)?1:u?P(u,e)-P(u,t):0:4&n?-1:1

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:41 UTC	576	OUT	GET /css/font-roboto.css?1 HTTP/1.1 Host: telegram.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://darkorange-barracuda-590731.hostingersite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:41 UTC	378	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 25 Sep 2024 05:26:41 GMT Content-Type: text/css Content-Length: 6166 Last-Modified: Thu, 20 Oct 2022 11:05:33 GMT Connection: close ETag: "63512b7d-1816" Expires: Sun, 29 Sep 2024 05:26:41 GMT Cache-Control: max-age=345600 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Accept-Ranges: bytes
2024-09-25 05:26:41 UTC	6166	IN	Data Raw: 2f 2a 20 63 79 72 69 6c 6c 69 63 2d 65 78 74 20 2a 2f 0a 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 52 6f 62 6f 74 6f 27 3b 0a 20 20 66 6f 6e 74 2d 73 74 79 6c 65 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 34 30 30 3b 0a 20 20 66 6f 6e 74 2d 64 69 73 70 6c 61 79 3a 20 73 77 61 70 3b 0a 20 20 73 72 63 3a 20 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 73 2f 52 6f 62 6f 74 6f 2f 4b 46 4f 6d 43 6e 71 45 75 39 32 46 72 31 4d 75 37 32 78 4b 4b 54 55 31 4b 76 6e 7a 2e 77 6f 66 66 32 27 29 20 66 6f 72 6d 61 74 28 27 77 6f 66 66 32 27 29 3b 0a 20 20 75 6e 69 63 6f 64 65 2d 72 61 6e 67 65 3a 20 55 2b 30 34 36 30 2d 30 35 32 46 2c 20 55 2b 31 43 38 30 2d 31 43 38 38 2c 20 55 2b 32 30 42 34 2c 20 55 Data Ascii: /* cyrillic-ext */@font-face { font-family: 'Roboto'; font-style: normal; font-weight: 400; font-display: swap; src: url('../fonts/Roboto/KFOmCnqEu92Fr1Mu72xKKTU1Kvnz.woff2') format('woff2'); unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:41 UTC	578	OUT	GET /css/bootstrap.min.css?3 HTTP/1.1 Host: telegram.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://darkorange-barracuda-590731.hostingersite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:41 UTC	379	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 25 Sep 2024 05:26:41 GMT Content-Type: text/css Content-Length: 42523 Last-Modified: Fri, 10 Nov 2017 17:54:14 GMT Connection: close ETag: "5a05e7c6-a61b" Expires: Sun, 29 Sep 2024 05:26:41 GMT Cache-Control: max-age=345600 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Accept-Ranges: bytes
2024-09-25 05:26:41 UTC	16005	IN	Data Raw: 2f 2a 21 0a 20 2a 20 42 6f 6f 74 73 74 72 61 70 20 76 33 2e 32 2e 30 20 28 68 74 74 70 3a 2f 2f 67 65 74 62 6f 6f 74 73 74 72 61 70 2e 63 6f 6d 29 0a 20 2a 20 43 6f 70 79 72 69 67 68 74 20 32 30 31 31 2d 32 30 31 34 20 54 77 69 74 74 65 72 2c 20 49 6e 63 2e 0a 20 2a 20 4c 69 63 65 6e 73 65 64 20 75 6e 64 65 72 20 4d 49 54 20 28 68 74 74 70 73 3a 2f 2f 67 69 74 68 75 62 2e 63 6f 6d 2f 74 77 62 73 2f 62 6f 6f 74 73 74 72 61 70 2f 62 6c 6f 62 2f 6d 61 73 74 65 72 2f 4c 49 43 45 4e 53 45 29 0a 20 2a 2f 0a 0a 2f 2a 21 0a 20 2a 20 47 65 6e 65 72 61 74 65 64 20 75 73 69 6e 67 20 74 68 65 20 42 6f 6f 74 73 74 72 61 70 20 43 75 73 74 6f 6d 69 7a 65 72 20 28 68 74 74 70 3a 2f 2f 67 65 74 62 6f 6f 74 73 74 72 61 70 2e 63 6f 6d 2f 63 75 73 74 6f 6d 69 7a 65 2f 3f 69 Data Ascii: /! Bootstrap v3.2.0 (http://getbootstrap.com) * Copyright 2011-2014 Twitter, Inc. * Licensed under MIT (https://github.com/twbs/bootstrap/blob/master/LICENSE) //! * Generated using the Bootstrap Customizer (http://getbootstrap.com/customize/?i
2024-09-25 05:26:41 UTC	16384	IN	Data Raw: 6c 6f 72 3a 23 37 37 37 7d 2e 66 6f 72 6d 2d 63 6f 6e 74 72 6f 6c 3a 3a 2d 77 65 62 6b 69 74 2d 69 6e 70 75 74 2d 70 6c 61 63 65 68 6f 6c 64 65 72 7b 63 6f 6c 6f 72 3a 23 37 37 37 7d 2e 66 6f 72 6d 2d 63 6f 6e 74 72 6f 6c 5b 64 69 73 61 62 6c 65 64 5d 2c 2e 66 6f 72 6d 2d 63 6f 6e 74 72 6f 6c 5b 72 65 61 64 6f 6e 6c 79 5d 2c 66 69 65 6c 64 73 65 74 5b 64 69 73 61 62 6c 65 64 5d 20 2e 66 6f 72 6d 2d 63 6f 6e 74 72 6f 6c 7b 63 75 72 73 6f 72 3a 6e 6f 74 2d 61 6c 6c 6f 77 65 64 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 65 65 65 3b 6f 70 61 63 69 74 79 3a 31 7d 74 65 78 74 61 72 65 61 2e 66 6f 72 6d 2d 63 6f 6e 74 72 6f 6c 7b 68 65 69 67 68 74 3a 61 75 74 6f 7d 69 6e 70 75 74 5b 74 79 70 65 3d 22 73 65 61 72 63 68 22 5d 7b 2d 77 65 62 6b 69 74 Data Ascii: lor:#777}.form-control::-webkit-input-placeholder{color:#777}.form-control[disabled],.form-control[readonly],fieldset[disabled] .form-control{cursor:not-allowed;background-color:#eee;opacity:1}textarea.form-control{height:auto}input[type="search"]{-webkit
2024-09-25 05:26:41 UTC	10134	IN	Data Raw: 74 3a 30 7d 2e 6e 61 76 62 61 72 2d 66 6f 72 6d 20 2e 72 61 64 69 6f 20 69 6e 70 75 74 5b 74 79 70 65 3d 22 72 61 64 69 6f 22 5d 2c 2e 6e 61 76 62 61 72 2d 66 6f 72 6d 20 2e 63 68 65 63 6b 62 6f 78 20 69 6e 70 75 74 5b 74 79 70 65 3d 22 63 68 65 63 6b 62 6f 78 22 5d 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 30 7d 2e 6e 61 76 62 61 72 2d 66 6f 72 6d 20 2e 68 61 73 2d 66 65 65 64 62 61 63 6b 20 2e 66 6f 72 6d 2d 63 6f 6e 74 72 6f 6c 2d 66 65 65 64 62 61 63 6b 7b 74 6f 70 3a 30 7d 7d 40 6d 65 64 69 61 20 28 6d 61 78 2d 77 69 64 74 68 3a 30 29 7b 2e 6e 61 76 62 61 72 2d 66 6f 72 6d 20 2e 66 6f 72 6d 2d 67 72 6f 75 70 7b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 35 70 78 7d 7d 40 6d 65 64 69 61 20 28 6d 69 6e Data Ascii: t:0}.navbar-form .radio input[type="radio"],.navbar-form .checkbox input[type="checkbox"]{position:relative;margin-left:0}.navbar-form .has-feedback .form-control-feedback{top:0}}@media (max-width:0){.navbar-form .form-group{margin-bottom:5px}}@media (min

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:41 UTC	575	OUT	GET /css/telegram.css?236 HTTP/1.1 Host: telegram.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://darkorange-barracuda-590731.hostingersite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:41 UTC	381	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 25 Sep 2024 05:26:41 GMT Content-Type: text/css Content-Length: 115228 Last-Modified: Mon, 23 Sep 2024 17:55:39 GMT Connection: close ETag: "66f1ab9b-1c21c" Expires: Sun, 29 Sep 2024 05:26:41 GMT Cache-Control: max-age=345600 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Accept-Ranges: bytes
2024-09-25 05:26:41 UTC	16003	IN	Data Raw: 62 6f 64 79 20 7b 0a 20 20 66 6f 6e 74 3a 20 31 32 70 78 2f 31 38 70 78 20 22 4c 75 63 69 64 61 20 47 72 61 6e 64 65 22 2c 20 22 4c 75 63 69 64 61 20 53 61 6e 73 20 55 6e 69 63 6f 64 65 22 2c 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 56 65 72 64 61 6e 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0a 20 20 2f 2a 2d 77 65 62 6b 69 74 2d 66 6f 6e 74 2d 73 6d 6f 6f 74 68 69 6e 67 3a 20 61 6e 74 69 61 6c 69 61 73 65 64 3b 2a 2f 0a 7d 0a 68 74 6d 6c 2e 6e 61 74 69 76 65 5f 66 6f 6e 74 73 20 62 6f 64 79 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 2d 61 70 70 6c 65 2d 73 79 73 74 65 6d 2c 20 42 6c 69 6e 6b 4d 61 63 53 79 73 74 65 6d 46 6f 6e 74 2c 20 22 53 65 67 6f 65 20 55 49 22 2c 20 52 6f 62 6f 74 6f 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 Data Ascii: body { font: 12px/18px "Lucida Grande", "Lucida Sans Unicode", Arial, Helvetica, Verdana, sans-serif; /-webkit-font-smoothing: antialiased;/}html.native_fonts body { font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Helvetica,
2024-09-25 05:26:41 UTC	16384	IN	Data Raw: 20 61 75 74 6f 3b 0a 7d 0a 2e 74 6c 5f 6d 61 69 6e 5f 64 6f 77 6e 6c 6f 61 64 5f 6c 69 6e 6b 20 7b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 20 20 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 0a 20 20 68 65 69 67 68 74 3a 20 33 30 30 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 74 6f 70 3a 20 32 36 32 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 20 32 30 70 78 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 34 30 70 78 20 30 3b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 35 70 78 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 31 30 30 25 3b 0a 20 20 70 6f 73 69 74 69 6f 6e 3a 20 72 65 6c 61 74 69 76 65 3b 0a 7d 0a 61 2e 74 6c 5f 6d 61 69 6e 5f 64 6f 77 6e 6c 6f 61 64 5f 6c 69 6e 6b 3a 68 6f 76 65 72 20 7b Data Ascii: auto;}.tl_main_download_link { text-align: center; display: inline-block; height: 300px; padding-top: 262px; padding-bottom: 20px; margin: 40px 0; font-size: 15px; max-width: 100%; position: relative;}a.tl_main_download_link:hover {
2024-09-25 05:26:41 UTC	16384	IN	Data Raw: 6e 74 65 6e 74 20 69 6d 67 2e 65 6d 6f 6a 69 20 7b 0a 20 20 2d 77 65 62 6b 69 74 2d 75 73 65 72 2d 64 72 61 67 3a 20 6e 6f 6e 65 3b 0a 20 20 75 73 65 72 2d 64 72 61 67 3a 20 6e 6f 6e 65 3b 0a 20 20 63 75 72 73 6f 72 3a 20 74 65 78 74 3b 0a 7d 0a 2e 64 65 76 5f 70 61 67 65 5f 62 72 65 61 64 5f 63 72 75 6d 62 73 20 2e 62 72 65 61 64 63 72 75 6d 62 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 20 31 30 70 78 3b 0a 20 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 30 3b 0a 7d 0a 23 64 65 76 5f 70 61 67 65 5f 74 69 74 6c 65 20 7b 0a 20 20 70 6f 73 69 74 69 6f 6e 3a 20 73 74 61 74 69 63 3b 0a 7d 0a 0a 2e 64 65 76 5f 70 61 67 65 5f 68 65 61 64 20 2e 64 65 76 5f 70 61 67 65 5f 68 65 61 64 5f 6c 6f 67 6f 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 Data Ascii: ntent img.emoji { -webkit-user-drag: none; user-drag: none; cursor: text;}.dev_page_bread_crumbs .breadcrumb { margin-bottom: 10px; border-radius: 0;}#dev_page_title { position: static;}.dev_page_head .dev_page_head_logo { margin-left
2024-09-25 05:26:41 UTC	16384	IN	Data Raw: 65 78 74 66 69 65 6c 64 2d 69 74 65 6d 20 69 6e 70 75 74 2e 66 6f 72 6d 2d 63 6f 6e 74 72 6f 6c 3a 66 6f 63 75 73 3a 3a 2d 6d 6f 7a 2d 70 6c 61 63 65 68 6f 6c 64 65 72 20 7b 0a 20 20 63 6f 6c 6f 72 3a 20 23 63 63 63 3b 0a 20 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 30 2c 30 2c 30 2c 2e 32 36 29 3b 0a 7d 0a 2e 74 65 78 74 66 69 65 6c 64 2d 69 74 65 6d 20 69 6e 70 75 74 2e 66 6f 72 6d 2d 63 6f 6e 74 72 6f 6c 3a 66 6f 63 75 73 3a 2d 6d 73 2d 69 6e 70 75 74 2d 70 6c 61 63 65 68 6f 6c 64 65 72 20 7b 0a 20 20 63 6f 6c 6f 72 3a 20 23 63 63 63 3b 0a 20 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 30 2c 30 2c 30 2c 2e 32 36 29 3b 0a 7d 0a 2e 74 65 78 74 66 69 65 6c 64 2d 69 74 65 6d 2d 65 72 72 6f 72 20 7b 0a 20 20 63 6f 6c 6f 72 3a 20 23 64 34 35 61 35 38 3b 0a 20 20 70 Data Ascii: extfield-item input.form-control:focus::-moz-placeholder { color: #ccc; color: rgba(0,0,0,.26);}.textfield-item input.form-control:focus:-ms-input-placeholder { color: #ccc; color: rgba(0,0,0,.26);}.textfield-item-error { color: #d45a58; p
2024-09-25 05:26:41 UTC	16384	IN	Data Raw: 20 69 6d 67 20 7b 0a 20 20 77 69 64 74 68 3a 20 32 37 35 70 78 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 31 30 70 78 20 35 70 78 3b 0a 7d 0a 2e 62 6c 6f 67 5f 6d 65 64 69 75 6d 5f 69 6d 61 67 65 5f 77 72 61 70 2c 0a 2e 62 6c 6f 67 5f 6d 65 64 69 75 6d 5f 69 6d 61 67 65 5f 77 72 61 70 20 69 6d 67 20 7b 0a 20 20 77 69 64 74 68 3a 20 34 30 30 70 78 3b 0a 7d 0a 0a 2e 62 6c 6f 67 5f 77 69 64 65 5f 69 6d 61 67 65 5f 77 72 61 70 2c 0a 2e 62 6c 6f 67 5f 77 69 64 65 5f 69 6d 61 67 65 5f 77 72 61 70 20 69 6d 67 20 7b 0a 20 20 77 69 64 74 68 3a 20 31 30 30 25 3b 0a 20 20 6d 61 78 2d 77 69 64 74 68 3a 20 61 75 74 6f 3b 0a 7d 0a 23 64 65 76 5f 70 61 67 65 5f 63 6f 6e 74 65 6e 74 20 2e 62 6c 6f 67 5f 69 6d 61 67 65 5f 77 72 61 70 20 70 2c 0a 23 64 65 76 5f 70 61 67 65 5f Data Ascii: img { width: 275px; padding: 10px 5px;}.blog_medium_image_wrap,.blog_medium_image_wrap img { width: 400px;}.blog_wide_image_wrap,.blog_wide_image_wrap img { width: 100%; max-width: auto;}#dev_page_content .blog_image_wrap p,#dev_page_
2024-09-25 05:26:41 UTC	16384	IN	Data Raw: 75 6e 64 3a 20 23 35 64 63 33 39 30 3b 0a 20 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 32 32 70 78 3b 0a 20 20 6f 76 65 72 66 6c 6f 77 3a 20 68 69 64 64 65 6e 3b 0a 20 20 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 0a 20 20 70 61 64 64 69 6e 67 3a 20 31 33 70 78 20 32 34 70 78 3b 0a 20 20 68 65 69 67 68 74 3a 20 34 32 70 78 3b 0a 20 20 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 75 70 70 65 72 63 61 73 65 3b 0a 20 20 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 20 74 6f 70 3b 0a 7d 0a 61 2e 74 67 6d 65 5f 61 63 74 69 6f 6e 5f 62 75 74 74 6f 6e 3a 68 6f 76 65 72 2c 0a 61 2e 74 67 6d 65 5f 61 63 74 69 6f 6e 5f 62 75 74 74 6f 6e 3a 61 63 74 69 76 65 2c 0a 61 2e 74 67 6d 65 5f 61 63 74 69 6f 6e 5f 62 75 74 74 6f 6e 5f 6e 65 77 Data Ascii: und: #5dc390; border-radius: 22px; overflow: hidden; display: inline-block; padding: 13px 24px; height: 42px; text-transform: uppercase; vertical-align: top;}a.tgme_action_button:hover,a.tgme_action_button:active,a.tgme_action_button_new
2024-09-25 05:26:41 UTC	16384	IN	Data Raw: 68 6f 77 5f 61 6c 6c 5f 70 6c 61 74 66 6f 72 6d 73 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 6e 6f 6e 65 3b 0a 7d 0a 2e 74 64 5f 61 6c 6c 5f 73 68 6f 77 6e 20 73 70 61 6e 2e 74 64 5f 62 74 6e 5f 68 69 64 64 65 6e 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 0a 7d 0a 2e 74 64 5f 61 6c 6c 5f 73 68 6f 77 6e 20 64 69 76 2e 74 64 5f 62 74 6e 5f 68 69 64 64 65 6e 20 7b 0a 20 20 64 69 73 70 6c 61 79 3a 20 62 6c 6f 63 6b 3b 0a 7d 0a 2e 74 64 5f 63 6f 6e 74 65 6e 74 5f 77 72 61 70 20 7b 0a 20 20 77 69 64 74 68 3a 20 34 32 30 70 78 3b 0a 20 20 6d 61 72 67 69 6e 3a 20 30 20 61 75 74 6f 3b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 36 70 78 3b 0a 7d 0a 2e 74 64 5f 63 6f 6e 74 65 6e 74 5f 74 69 74 6c 65 20 7b 0a 20 20 66 6f 6e 74 2d 73 69 7a 65 3a Data Ascii: how_all_platforms { display: none;}.td_all_shown span.td_btn_hidden { display: inline;}.td_all_shown div.td_btn_hidden { display: block;}.td_content_wrap { width: 420px; margin: 0 auto; font-size: 16px;}.td_content_title { font-size:
2024-09-25 05:26:41 UTC	921	IN	Data Raw: 20 7d 0a 20 20 2e 62 6c 6f 67 5f 32 69 6d 61 67 65 73 5f 77 72 61 70 20 2e 62 6c 6f 67 5f 69 6d 61 67 65 5f 77 72 61 70 2c 0a 20 20 2e 62 6c 6f 67 5f 33 69 6d 61 67 65 73 5f 77 72 61 70 20 2e 62 6c 6f 67 5f 69 6d 61 67 65 5f 77 72 61 70 20 7b 0a 20 20 20 20 66 6c 6f 61 74 3a 20 6e 6f 6e 65 3b 0a 20 20 20 20 6d 61 72 67 69 6e 3a 20 32 30 70 78 20 30 20 32 30 70 78 3b 0a 20 20 7d 0a 7d 0a 0a 40 6d 65 64 69 61 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 33 34 30 70 78 29 20 7b 0a 20 20 2e 74 6c 5f 6d 61 69 6e 5f 64 6f 77 6e 6c 6f 61 64 5f 69 6d 61 67 65 5f 5f 61 6e 64 72 6f 69 64 20 7b 0a 20 20 20 20 6d 61 72 67 69 6e 3a 20 2d 31 30 39 70 78 20 30 20 30 20 2d 31 30 31 70 78 3b 0a 20 20 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 73 69 7a 65 3a 20 31 39 36 70 78 20 31 Data Ascii: } .blog_2images_wrap .blog_image_wrap, .blog_3images_wrap .blog_image_wrap { float: none; margin: 20px 0 20px; }}@media (max-width: 340px) { .tl_main_download_image__android { margin: -109px 0 0 -101px; background-size: 196px 1

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:41 UTC	564	OUT	GET /js/tgwallpaper.min.js?3 HTTP/1.1 Host: telegram.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://darkorange-barracuda-590731.hostingersite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:41 UTC	391	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 25 Sep 2024 05:26:41 GMT Content-Type: application/javascript Content-Length: 2979 Last-Modified: Thu, 03 Mar 2022 19:57:25 GMT Connection: close ETag: "62211da5-ba3" Expires: Sun, 29 Sep 2024 05:26:41 GMT Cache-Control: max-age=345600 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Accept-Ranges: bytes
2024-09-25 05:26:41 UTC	2979	IN	Data Raw: 76 61 72 20 54 57 61 6c 6c 70 61 70 65 72 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 78 28 61 29 7b 66 6f 72 28 76 61 72 20 62 3d 5b 5d 2e 63 6f 6e 63 61 74 28 47 29 3b 30 3c 61 3b 29 62 2e 70 75 73 68 28 62 2e 73 68 69 66 74 28 29 29 2c 61 2d 2d 3b 61 3d 5b 5d 3b 66 6f 72 28 76 61 72 20 63 3d 30 3b 63 3c 62 2e 6c 65 6e 67 74 68 3b 63 2b 3d 32 29 61 2e 70 75 73 68 28 62 5b 63 5d 29 3b 72 65 74 75 72 6e 20 61 7d 66 75 6e 63 74 69 6f 6e 20 42 28 61 2c 62 29 7b 62 25 3d 39 30 3b 76 61 72 20 63 3d 78 28 61 25 70 29 3b 69 66 28 62 29 7b 76 61 72 20 64 3d 78 28 2b 2b 61 25 70 29 3b 72 65 74 75 72 6e 5b 7b 78 3a 63 5b 30 5d 2e 78 2b 28 64 5b 30 5d 2e 78 2d 63 5b 30 5d 2e 78 29 2f 39 30 2a 62 2c 79 3a 63 5b 30 5d 2e 79 2b 28 64 5b 30 5d 2e 79 Data Ascii: var TWallpaper=function(){function x(a){for(var b=[].concat(G);0<a;)b.push(b.shift()),a--;a=[];for(var c=0;c<b.length;c+=2)a.push(b[c]);return a}function B(a,b){b%=90;var c=x(a%p);if(b){var d=x(++a%p);return[{x:c[0].x+(d[0].x-c[0].x)/90*b,y:c[0].y+(d[0].y

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:42 UTC	610	OUT	GET /img/tgme/pattern.svg?1 HTTP/1.1 Host: telegram.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://telegram.org/css/telegram.css?236 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:42 UTC	345	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 25 Sep 2024 05:26:42 GMT Content-Type: image/svg+xml Content-Length: 231706 Last-Modified: Thu, 05 Jan 2023 17:52:04 GMT Connection: close ETag: "63b70e44-3891a" Expires: Sun, 29 Sep 2024 05:26:42 GMT Cache-Control: max-age=345600 Access-Control-Allow-Origin: * Accept-Ranges: bytes
2024-09-25 05:26:42 UTC	16039	IN	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0a 3c 21 2d 2d 20 47 65 6e 65 72 61 74 6f 72 3a 20 41 64 6f 62 65 20 49 6c 6c 75 73 74 72 61 74 6f 72 20 32 37 2e 30 2e 31 2c 20 53 56 47 20 45 78 70 6f 72 74 20 50 6c 75 67 2d 49 6e 20 2e 20 53 56 47 20 56 65 72 73 69 6f 6e 3a 20 36 2e 30 30 20 42 75 69 6c 64 20 30 29 20 20 2d 2d 3e 0a 3c 73 76 67 20 76 65 72 73 69 6f 6e 3d 22 31 2e 31 22 20 69 64 3d 22 4c 61 79 65 72 5f 31 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 78 6d 6c 6e 73 3a 78 6c 69 6e 6b 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 6c 69 6e 6b 22 20 78 3d 22 30 70 78 22 20 79 3d 22 Data Ascii: <?xml version="1.0" encoding="utf-8"?>... Generator: Adobe Illustrator 27.0.1, SVG Export Plug-In . SVG Version: 6.00 Build 0) --><svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="
2024-09-25 05:26:42 UTC	16384	IN	Data Raw: 34 30 2e 34 2d 32 2e 38 73 38 2e 37 2d 32 38 2e 35 2c 37 2e 33 2d 33 31 2e 31 73 2d 33 2e 31 2d 38 2e 39 2c 32 2e 34 2d 31 31 2e 39 63 35 2e 36 2d 33 2c 31 32 2c 33 2c 31 35 2e 33 2c 31 30 2e 35 0a 09 09 73 39 2e 38 2c 33 32 2e 35 2d 31 39 2e 31 2c 34 38 2e 39 63 2d 33 30 2e 32 2c 31 37 2e 31 2d 35 37 2e 33 2c 31 33 2e 36 2d 36 37 2e 36 2c 33 2e 37 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 35 32 30 2e 36 2c 32 37 34 35 2e 39 63 2d 32 2c 33 2e 38 2d 33 2e 34 2c 31 39 2e 38 2d 31 2e 36 2c 32 31 2e 32 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 35 32 37 2e 37 2c 32 37 34 36 2e 37 63 31 2e 35 2c 33 2e 38 2d 30 2e 39 2c 31 38 2e 31 2d 32 2e 35 2c 31 39 2e 38 22 2f 3e 0a 09 3c 70 61 74 Data Ascii: 40.4-2.8s8.7-28.5,7.3-31.1s-3.1-8.9,2.4-11.9c5.6-3,12,3,15.3,10.5s9.8,32.5-19.1,48.9c-30.2,17.1-57.3,13.6-67.6,3.7"/><path class="st0" d="M520.6,2745.9c-2,3.8-3.4,19.8-1.6,21.2"/><path class="st0" d="M527.7,2746.7c1.5,3.8-0.9,18.1-2.5,19.8"/><pat
2024-09-25 05:26:42 UTC	16384	IN	Data Raw: 2d 31 30 2e 38 73 36 2e 33 2c 35 2e 33 2c 36 2e 33 2c 35 2e 33 73 33 2e 36 2d 32 2e 38 2c 37 2e 31 2c 30 2e 32 73 31 2e 33 2c 37 2e 39 2c 31 2e 33 2c 37 2e 39 73 35 2e 31 2d 32 2c 36 2e 37 2c 33 2e 35 0a 09 09 63 31 2e 34 2c 35 2e 31 2d 35 2e 36 2c 39 2e 33 2d 31 30 2e 37 2c 37 2e 34 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 32 38 35 2e 34 2c 31 37 39 36 2e 39 63 32 2e 38 2c 30 2e 36 2c 34 2e 35 2c 33 2e 36 2c 34 2e 35 2c 33 2e 36 73 32 2e 37 2d 33 2e 37 2c 36 2e 39 2d 31 2e 38 73 33 2e 35 2c 37 2e 32 2c 33 2e 35 2c 37 2e 32 73 34 2e 33 2d 33 2e 34 2c 37 2e 34 2c 31 2e 35 0a 09 09 63 32 2e 33 2c 33 2e 36 2d 31 2c 38 2e 33 2d 35 2e 32 2c 39 2e 37 22 2f 3e 0a 3c 2f 67 3e 0a 3c 67 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 Data Ascii: -10.8s6.3,5.3,6.3,5.3s3.6-2.8,7.1,0.2s1.3,7.9,1.3,7.9s5.1-2,6.7,3.5c1.4,5.1-5.6,9.3-10.7,7.4"/><path class="st0" d="M285.4,1796.9c2.8,0.6,4.5,3.6,4.5,3.6s2.7-3.7,6.9-1.8s3.5,7.2,3.5,7.2s4.3-3.4,7.4,1.5c2.3,3.6-1,8.3-5.2,9.7"/></g><g><path clas
2024-09-25 05:26:42 UTC	16384	IN	Data Raw: 34 2e 32 2c 31 36 2e 36 2d 38 2e 32 2c 32 30 2e 33 2d 36 2e 39 63 34 2e 34 2c 31 2e 35 2c 31 31 2e 35 2c 31 31 2e 35 2c 31 37 2e 36 2c 32 30 2e 34 0a 09 09 73 31 31 2c 37 2e 38 2c 31 31 2e 38 2c 33 2e 37 63 30 2e 38 2d 33 2e 39 2d 36 2e 37 2d 32 30 2e 33 2d 34 2e 37 2d 32 33 2e 32 63 30 2e 35 2d 30 2e 37 2c 33 2e 31 2d 30 2e 39 2c 37 2e 37 2c 37 2e 36 73 39 2e 33 2c 31 38 2e 32 2c 31 33 2c 31 32 2e 38 63 31 2e 34 2d 32 2c 30 2e 37 2d 36 2e 33 2d 31 2e 34 2d 31 32 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 38 32 2e 39 2c 31 34 34 37 2e 38 63 2d 37 2e 37 2d 34 2e 37 2d 38 2e 32 2d 34 33 2e 37 2c 31 2e 35 2d 35 33 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 37 32 2e 31 2c 31 33 39 38 Data Ascii: 4.2,16.6-8.2,20.3-6.9c4.4,1.5,11.5,11.5,17.6,20.4s11,7.8,11.8,3.7c0.8-3.9-6.7-20.3-4.7-23.2c0.5-0.7,3.1-0.9,7.7,7.6s9.3,18.2,13,12.8c1.4-2,0.7-6.3-1.4-12"/><path class="st0" d="M82.9,1447.8c-7.7-4.7-8.2-43.7,1.5-53"/><path class="st0" d="M72.1,1398
2024-09-25 05:26:42 UTC	16384	IN	Data Raw: 2e 38 2c 32 2e 32 2d 31 30 2e 37 2c 36 2d 31 31 2e 34 2c 31 31 2e 34 63 2d 30 2e 33 2c 31 2e 39 2c 30 2e 36 2c 33 2e 38 2c 32 2e 31 2c 34 2e 38 0a 09 09 63 30 2e 36 2c 30 2e 34 2c 31 2e 33 2c 30 2e 37 2c 32 2e 31 2c 30 2e 38 63 32 2e 37 2c 30 2e 34 2c 35 2e 33 2d 31 2e 35 2c 35 2e 37 2d 34 2e 32 63 30 2e 31 2d 30 2e 35 2c 30 2e 33 2d 31 2e 39 2c 34 2e 36 2d 33 2e 33 43 35 38 38 2e 31 2c 31 35 32 39 2e 37 2c 35 39 32 2e 33 2c 31 35 32 35 2e 34 2c 35 39 33 2e 32 2c 31 35 32 30 2e 35 7a 20 4d 35 38 31 2e 36 2c 31 35 32 38 2e 37 0a 09 09 63 2d 36 2e 31 2c 32 2d 36 2e 35 2c 34 2e 37 2d 36 2e 37 2c 35 2e 37 63 2d 30 2e 32 2c 31 2e 31 2d 31 2e 32 2c 31 2e 39 2d 32 2e 33 2c 31 2e 37 63 2d 30 2e 33 2c 30 2d 30 2e 36 2d 30 2e 32 2d 30 2e 38 2d 30 2e 33 63 2d 30 2e Data Ascii: .8,2.2-10.7,6-11.4,11.4c-0.3,1.9,0.6,3.8,2.1,4.8c0.6,0.4,1.3,0.7,2.1,0.8c2.7,0.4,5.3-1.5,5.7-4.2c0.1-0.5,0.3-1.9,4.6-3.3C588.1,1529.7,592.3,1525.4,593.2,1520.5z M581.6,1528.7c-6.1,2-6.5,4.7-6.7,5.7c-0.2,1.1-1.2,1.9-2.3,1.7c-0.3,0-0.6-0.2-0.8-0.3c-0.
2024-09-25 05:26:42 UTC	16384	IN	Data Raw: 36 2e 36 2c 37 2e 37 2c 33 2e 31 2c 32 30 2e 36 2c 36 2e 31 2c 32 39 2e 37 73 31 34 2e 31 2c 34 35 2e 32 2d 31 31 2e 38 2c 34 33 2e 32 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 31 34 39 2e 31 2c 35 33 37 2e 36 63 37 2e 38 2d 30 2e 35 2c 37 2e 37 2c 31 33 2e 33 2d 31 2e 31 2c 39 2e 37 63 2d 34 2e 31 2d 31 2e 37 2d 33 2e 38 2d 39 2e 32 2c 30 2e 39 2d 39 2e 37 43 31 34 39 2c 35 33 37 2e 36 2c 31 34 39 2e 31 2c 35 33 37 2e 36 2c 31 34 39 2e 31 2c 35 33 37 2e 36 7a 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 31 32 34 2e 36 2c 35 34 31 2e 35 63 31 30 2e 38 2c 35 2e 33 2d 31 2e 36 2c 32 31 2e 33 2d 39 2e 31 2c 31 32 2e 32 63 2d 34 2e 39 2d 35 2e 39 2c 32 2d 31 35 2e 34 2c 38 2e 38 2d 31 Data Ascii: 6.6,7.7,3.1,20.6,6.1,29.7s14.1,45.2-11.8,43.2"/><path class="st0" d="M149.1,537.6c7.8-0.5,7.7,13.3-1.1,9.7c-4.1-1.7-3.8-9.2,0.9-9.7C149,537.6,149.1,537.6,149.1,537.6z"/><path class="st0" d="M124.6,541.5c10.8,5.3-1.6,21.3-9.1,12.2c-4.9-5.9,2-15.4,8.8-1
2024-09-25 05:26:43 UTC	16384	IN	Data Raw: 38 0a 09 09 63 38 2e 34 2c 36 2e 38 2d 32 33 2e 31 2c 33 31 2e 35 2d 32 33 2e 31 2c 33 31 2e 35 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 36 32 35 2c 32 34 37 37 2e 36 63 2d 32 2e 32 2c 32 2e 36 2d 32 35 2e 36 2c 32 31 2e 34 2d 32 36 2e 38 2c 32 32 2e 36 22 2f 3e 0a 09 3c 6c 69 6e 65 20 63 6c 61 73 73 3d 22 73 74 30 22 20 78 31 3d 22 36 34 30 2e 36 22 20 79 31 3d 22 32 34 36 35 22 20 78 32 3d 22 36 33 35 2e 32 22 20 79 32 3d 22 32 34 36 39 2e 33 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 36 34 36 2e 39 2c 32 34 37 32 2e 34 63 30 2c 30 2d 33 38 2e 39 2c 32 37 2e 38 2d 34 31 2e 36 2c 33 31 2e 39 22 2f 3e 0a 3c 2f 67 3e 0a 3c 67 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 Data Ascii: 8c8.4,6.8-23.1,31.5-23.1,31.5"/><path class="st0" d="M625,2477.6c-2.2,2.6-25.6,21.4-26.8,22.6"/><line class="st0" x1="640.6" y1="2465" x2="635.2" y2="2469.3"/><path class="st0" d="M646.9,2472.4c0,0-38.9,27.8-41.6,31.9"/></g><g><path class="st
2024-09-25 05:26:43 UTC	16384	IN	Data Raw: 67 6f 6e 20 63 6c 61 73 73 3d 22 73 74 30 22 20 70 6f 69 6e 74 73 3d 22 33 39 33 2e 34 2c 34 37 30 2e 31 20 33 39 34 2e 39 2c 34 37 36 2e 37 20 33 38 30 2e 33 2c 34 37 36 2e 37 20 33 37 39 2e 38 2c 34 37 31 2e 35 20 09 22 2f 3e 0a 09 3c 70 6f 6c 79 67 6f 6e 20 63 6c 61 73 73 3d 22 73 74 30 22 20 70 6f 69 6e 74 73 3d 22 34 31 33 2e 37 2c 34 36 35 2e 32 20 34 31 36 2e 34 2c 34 37 31 2e 35 20 34 32 38 2c 34 36 31 20 34 32 34 2e 39 2c 34 35 36 2e 35 20 09 22 2f 3e 0a 3c 2f 67 3e 0a 3c 67 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 37 34 30 2e 33 2c 31 33 35 31 2e 38 63 31 31 2e 34 2d 32 32 2c 33 37 2e 33 2d 33 34 2c 34 34 2e 34 2d 33 35 2e 32 63 30 2c 30 2d 32 30 2e 39 2d 31 35 2e 37 2d 33 36 2e 33 2d 38 2e 34 63 2d 31 30 2e 39 Data Ascii: gon class="st0" points="393.4,470.1 394.9,476.7 380.3,476.7 379.8,471.5 "/><polygon class="st0" points="413.7,465.2 416.4,471.5 428,461 424.9,456.5 "/></g><g><path class="st0" d="M740.3,1351.8c11.4-22,37.3-34,44.4-35.2c0,0-20.9-15.7-36.3-8.4c-10.9
2024-09-25 05:26:43 UTC	16384	IN	Data Raw: 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 34 33 39 2e 36 2c 31 32 32 38 2e 33 63 33 2e 34 2c 32 2e 35 2c 32 2e 34 2c 31 34 2e 36 2d 31 35 2e 36 2c 36 2e 39 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 34 32 37 2e 36 2c 31 32 33 36 2e 35 63 30 2e 32 2c 33 2e 35 2d 33 2e 35 2c 38 2e 37 2d 31 30 2e 38 2c 35 2e 34 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 33 36 33 2e 32 2c 31 32 30 34 2e 35 63 2d 33 2e 39 2c 31 2e 32 2d 32 2e 37 2c 39 2e 35 2c 32 2e 34 2c 39 2e 31 22 2f 3e 0a 09 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 33 36 30 2e 39 2c 31 32 33 38 2e 35 63 2d 37 2e 32 2c 30 2e 33 2d 31 37 2d 31 2e 33 2d 32 32 2e 33 2d 38 2e 36 63 33 2e 34 2c Data Ascii: ath class="st0" d="M439.6,1228.3c3.4,2.5,2.4,14.6-15.6,6.9"/><path class="st0" d="M427.6,1236.5c0.2,3.5-3.5,8.7-10.8,5.4"/><path class="st0" d="M363.2,1204.5c-3.9,1.2-2.7,9.5,2.4,9.1"/><path class="st0" d="M360.9,1238.5c-7.2,0.3-17-1.3-22.3-8.6c3.4,
2024-09-25 05:26:43 UTC	16384	IN	Data Raw: 35 2e 36 2c 39 2e 37 2d 39 2e 37 2c 31 35 2e 32 2d 35 2e 34 63 36 2e 34 2c 35 2c 35 2e 34 2c 31 38 2e 39 2d 31 35 2c 32 37 2e 39 63 2d 32 31 2e 36 2d 31 30 2e 32 2d 32 30 2e 37 2d 32 32 2e 31 2d 31 37 2e 32 2d 32 36 2e 37 0a 09 43 38 34 34 2e 37 2c 31 38 32 39 2e 32 2c 38 35 35 2e 32 2c 31 38 33 30 2e 39 2c 38 35 37 2e 33 2c 31 38 33 39 2e 31 7a 22 2f 3e 0a 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 73 74 30 22 20 64 3d 22 4d 38 31 36 2e 37 2c 32 30 34 32 2e 31 63 34 2e 38 2d 37 2e 33 2c 31 36 2e 35 2d 31 31 2c 32 33 2d 33 2e 34 63 37 2e 37 2c 38 2e 39 2c 32 2e 34 2c 32 38 2e 32 2d 32 39 2c 33 35 2e 34 63 2d 32 37 2e 37 2d 32 30 2e 35 2d 32 33 2e 33 2d 33 37 2e 31 2d 31 37 2e 31 2d 34 32 2e 35 0a 09 43 38 30 31 2e 37 2c 32 30 32 34 2e 36 2c 38 31 36 2c 32 30 Data Ascii: 5.6,9.7-9.7,15.2-5.4c6.4,5,5.4,18.9-15,27.9c-21.6-10.2-20.7-22.1-17.2-26.7C844.7,1829.2,855.2,1830.9,857.3,1839.1z"/><path class="st0" d="M816.7,2042.1c4.8-7.3,16.5-11,23-3.4c7.7,8.9,2.4,28.2-29,35.4c-27.7-20.5-23.3-37.1-17.1-42.5C801.7,2024.6,816,20

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:42 UTC	636	OUT	GET /fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2 HTTP/1.1 Host: telegram.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://darkorange-barracuda-590731.hostingersite.com sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: font Referer: https://telegram.org/css/font-roboto.css?1 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:42 UTC	354	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 25 Sep 2024 05:26:42 GMT Content-Type: application/octet-stream Content-Length: 11040 Last-Modified: Thu, 20 Oct 2022 11:05:33 GMT Connection: close ETag: "63512b7d-2b20" Expires: Sun, 29 Sep 2024 05:26:42 GMT Cache-Control: max-age=345600 Access-Control-Allow-Origin: * Accept-Ranges: bytes
2024-09-25 05:26:42 UTC	11040	IN	Data Raw: 77 4f 46 32 00 01 00 00 00 00 2b 20 00 0e 00 00 00 00 54 b4 00 00 2a c9 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 1a 64 1b 9a 1e 1c 85 5e 06 60 00 83 20 11 0c 0a f2 20 da 21 0b 84 0a 00 01 36 02 24 03 88 10 04 20 05 82 7e 07 20 1b b4 45 05 e3 98 03 6c 1c 00 61 f6 5b 29 8a 72 31 4a a2 28 1d 94 11 c5 ff 75 02 37 86 c8 fb 28 55 18 72 af e3 0b 0e 3d c7 a7 a8 15 c5 32 b1 08 87 10 68 a2 46 9b be 6a 05 a5 50 1e 29 18 30 d0 9b af 8b 5d 7e 10 22 4a 6b 35 24 3c 07 07 ef a9 4c 85 a3 53 87 12 1e 39 73 06 8e f3 51 73 a1 7f b6 79 1f 1b a0 3b 1a 83 c9 d0 2d a1 cd f1 7e e0 e7 d6 fb db 88 52 4a 30 88 0d b4 11 a9 11 03 24 6a 83 de 18 92 b1 8d 31 46 85 48 8e 90 2a 01 a9 50 62 a4 4d 28 ad 87 85 91 28 0a 6d 20 c6 dd 59 f7 e9 f4 9b 91 2c c3 ec ae Data Ascii: wOF2+ Td^` !6$ ~ Ela[)r1J(u7(Ur=2hFjP)0]~"Jk5$<LS9sQsy;-~RJ0$j1FHPbM((m Y,

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report http://zip.lu/?redirect=3k7wI

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 177

Chrome Cache Entry: 178

Chrome Cache Entry: 179

Chrome Cache Entry: 180

Chrome Cache Entry: 181

Chrome Cache Entry: 182

Chrome Cache Entry: 183

Chrome Cache Entry: 184

Chrome Cache Entry: 185

Chrome Cache Entry: 186

Chrome Cache Entry: 187

Chrome Cache Entry: 188

Chrome Cache Entry: 189

Chrome Cache Entry: 190

Chrome Cache Entry: 191

Chrome Cache Entry: 192

Chrome Cache Entry: 193

Chrome Cache Entry: 194

Chrome Cache Entry: 195

Chrome Cache Entry: 196

Chrome Cache Entry: 197

Chrome Cache Entry: 198

Chrome Cache Entry: 199

Chrome Cache Entry: 200

Chrome Cache Entry: 201

Chrome Cache Entry: 202

Chrome Cache Entry: 203

Windows Analysis Report
http://zip.lu/?redirect=3k7wI

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:42 UTC	632	OUT	GET /fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 Host: telegram.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://darkorange-barracuda-590731.hostingersite.com sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: font Referer: https://telegram.org/css/font-roboto.css?1 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:42 UTC	354	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 25 Sep 2024 05:26:42 GMT Content-Type: application/octet-stream Content-Length: 11028 Last-Modified: Thu, 20 Oct 2022 11:05:33 GMT Connection: close ETag: "63512b7d-2b14" Expires: Sun, 29 Sep 2024 05:26:42 GMT Cache-Control: max-age=345600 Access-Control-Allow-Origin: * Accept-Ranges: bytes
2024-09-25 05:26:42 UTC	11028	IN	Data Raw: 77 4f 46 32 00 01 00 00 00 00 2b 14 00 0e 00 00 00 00 54 28 00 00 2a bc 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 1a 64 1b 99 64 1c 85 5e 06 60 00 83 20 11 0c 0a f1 5c da 72 0b 84 0a 00 01 36 02 24 03 88 10 04 20 05 82 74 07 20 1b c1 45 45 46 ee ca e0 ad f0 28 6a d6 de d4 13 fc 5f 27 70 72 fd 58 0f a2 43 b4 08 19 8d c6 25 49 14 ae 3d c8 15 23 37 66 43 f4 ea c8 c7 79 d3 2f f4 d4 d0 7a 8f 97 2f c7 64 5c 48 b9 9a d5 77 4e fa 11 92 cc 12 d4 fb c7 7f 3d 07 17 1f dc 0d 21 47 46 08 a1 f2 75 4e 47 60 4e 64 80 22 f2 cd 01 cd ed 7e c5 88 1a 61 14 a0 60 12 29 95 12 52 d2 21 35 6a 54 48 8e c1 80 91 69 40 cb a0 37 54 2a 54 2c 30 69 49 3b fd ef f7 6b 76 fe be 2b b6 62 52 a1 25 a6 33 84 0a c5 e3 c5 3b 49 5e ee 0b 54 a1 54 d0 9a 95 b1 a8 b7 Data Ascii: wOF2+T(dd^` \r6$ t EEF(j_'prXC%I=#7fCy/z/d\HwN=!GFuNG`Nd"~a`)R!5jTHi@7TT,0iI;kv+bR%3;I^TT

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:43 UTC	616	OUT	GET /img/favicon.ico HTTP/1.1 Host: telegram.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://darkorange-barracuda-590731.hostingersite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:43 UTC	383	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 25 Sep 2024 05:26:43 GMT Content-Type: image/x-icon Content-Length: 15086 Last-Modified: Thu, 21 Apr 2022 13:47:47 GMT Connection: close ETag: "62616083-3aee" Expires: Wed, 02 Oct 2024 05:26:43 GMT Cache-Control: max-age=604800 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Accept-Ranges: bytes
2024-09-25 05:26:43 UTC	15086	IN	Data Raw: 00 00 01 00 03 00 30 30 00 00 01 00 20 00 a8 25 00 00 36 00 00 00 20 20 00 00 01 00 20 00 a8 10 00 00 de 25 00 00 10 10 00 00 01 00 20 00 68 04 00 00 86 36 00 00 28 00 00 00 30 00 00 00 60 00 00 00 01 00 20 00 00 00 00 00 00 24 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 da 9e 22 0d d9 9e 22 36 d9 9e 22 6f d9 9e 22 a4 d9 9e 22 cd d9 9e 22 e7 d9 9e 22 f7 d9 9e 22 fe d9 9e 22 fe d9 9e 22 f7 d9 9e 22 e7 d9 9e 22 cd d9 9e 22 a4 d9 9e 22 6f d9 9e 22 36 da 9e 23 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii: 00 %6 % h6(0` $""6"o"""""""""""o"6#

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:44 UTC	351	OUT	GET /img/favicon.ico HTTP/1.1 Host: telegram.org Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:44 UTC	383	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 25 Sep 2024 05:26:44 GMT Content-Type: image/x-icon Content-Length: 15086 Last-Modified: Thu, 21 Apr 2022 13:47:47 GMT Connection: close ETag: "62616083-3aee" Expires: Wed, 02 Oct 2024 05:26:44 GMT Cache-Control: max-age=604800 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Accept-Ranges: bytes
2024-09-25 05:26:44 UTC	15086	IN	Data Raw: 00 00 01 00 03 00 30 30 00 00 01 00 20 00 a8 25 00 00 36 00 00 00 20 20 00 00 01 00 20 00 a8 10 00 00 de 25 00 00 10 10 00 00 01 00 20 00 68 04 00 00 86 36 00 00 28 00 00 00 30 00 00 00 60 00 00 00 01 00 20 00 00 00 00 00 00 24 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 da 9e 22 0d d9 9e 22 36 d9 9e 22 6f d9 9e 22 a4 d9 9e 22 cd d9 9e 22 e7 d9 9e 22 f7 d9 9e 22 fe d9 9e 22 fe d9 9e 22 f7 d9 9e 22 e7 d9 9e 22 cd d9 9e 22 a4 d9 9e 22 6f d9 9e 22 36 da 9e 23 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii: 00 %6 % h6(0` $""6"o"""""""""""o"6#

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:49 UTC	676	OUT	GET /main.php HTTP/1.1 Host: darkorange-barracuda-590731.hostingersite.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:49 UTC	444	IN	HTTP/1.1 200 OK Server: hcdn Date: Wed, 25 Sep 2024 05:26:49 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding x-powered-by: PHP/8.2.19 platform: hostinger panel: hpanel content-security-policy: upgrade-insecure-requests alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: 2fb834407640c928800416e47d26b223-bos-edge1 x-hcdn-cache-status: DYNAMIC x-hcdn-upstream-rt: 0.755
2024-09-25 05:26:49 UTC	925	IN	Data Raw: 31 63 36 34 0d 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 74 72 61 6e 73 6c 61 74 65 3d 22 6e 6f 22 20 63 6c 61 73 73 3d 22 6e 6f 74 72 61 6e 73 6c 61 74 65 20 74 68 65 6d 65 2d 6c 69 67 68 74 22 20 64 61 74 61 2d 6d 65 73 73 61 67 65 2d 74 65 78 74 2d 73 69 7a 65 3d 22 31 36 22 20 3e 0a 20 3c 68 65 61 64 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 0a 20 20 3c 74 69 74 6c 65 3e 54 65 6c 65 67 72 61 6d 20 57 65 62 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 74 69 74 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 54 65 6c 65 67 72 61 6d 20 57 65 62 22 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 54 65 6c 65 67 72 61 6d 20 69 73 20 Data Ascii: 1c64<html lang="en" translate="no" class="notranslate theme-light" data-message-text-size="16" > <head> <meta charset="UTF-8"> <title>Telegram Web</title> <meta name="title" content="Telegram Web"> <meta name="description" content="Telegram is
2024-09-25 05:26:49 UTC	1369	IN	Data Raw: 61 20 70 72 6f 70 65 72 74 79 3d 22 6f 67 3a 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 77 65 62 73 69 74 65 22 3e 0a 20 20 3c 6d 65 74 61 20 70 72 6f 70 65 72 74 79 3d 22 6f 67 3a 75 72 6c 22 20 63 6f 6e 74 65 6e 74 3d 22 68 74 74 70 73 3a 2f 2f 77 65 62 2e 74 65 6c 65 67 72 61 6d 2e 6f 72 67 2f 7a 2f 22 3e 0a 20 20 3c 6d 65 74 61 20 70 72 6f 70 65 72 74 79 3d 22 6f 67 3a 74 69 74 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 54 65 6c 65 67 72 61 6d 20 57 65 62 22 3e 0a 20 20 3c 6d 65 74 61 20 70 72 6f 70 65 72 74 79 3d 22 6f 67 3a 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 54 65 6c 65 67 72 61 6d 20 69 73 20 61 20 63 6c 6f 75 64 2d 62 61 73 65 64 20 6d 6f 62 69 6c 65 20 61 6e 64 20 64 65 73 6b 74 6f 70 20 6d 65 73 73 61 67 69 6e 67 20 Data Ascii: a property="og:type" content="website"> <meta property="og:url" content="https://web.telegram.org/z/"> <meta property="og:title" content="Telegram Web"> <meta property="og:description" content="Telegram is a cloud-based mobile and desktop messaging
2024-09-25 05:26:49 UTC	1369	IN	Data Raw: 3e 0a 20 20 20 3c 68 31 3e 54 65 6c 65 67 72 61 6d 20 57 65 62 3c 2f 68 31 3e 0a 20 20 20 3c 70 3e 50 6c 65 61 73 65 2c 20 65 6e 61 62 6c 65 20 4a 61 76 61 53 63 72 69 70 74 20 74 6f 20 6f 70 65 6e 20 74 68 65 20 61 70 70 2e 3c 2f 70 3e 0a 20 20 3c 2f 6e 6f 73 63 72 69 70 74 3e 0a 20 20 3c 64 69 76 20 69 64 3d 22 6c 6f 61 64 65 72 22 20 63 6c 61 73 73 3d 22 62 67 2d 6c 6f 61 64 20 6c 6f 61 64 36 22 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 22 3e 0a 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 6c 6f 61 64 65 72 22 3e 3c 2f 64 69 76 3e 0a 20 20 3c 2f 64 69 76 3e 0a 20 20 3c 64 69 76 20 69 64 3d 22 72 6f 6f 74 22 3e 0a 20 20 20 3c 64 69 76 20 69 64 3d 22 55 69 4c 6f 61 64 65 72 22 20 63 6c 61 73 73 3d 22 4b 44 32 54 73 6a 64 45 63 5f Data Ascii: > <h1>Telegram Web</h1> <p>Please, enable JavaScript to open the app.</p> </noscript> <div id="loader" class="bg-load load6" style="display:none;"> <div class="loader"></div> </div> <div id="root"> <div id="UiLoader" class="KD2TsjdEc_
2024-09-25 05:26:49 UTC	1369	IN	Data Raw: 65 6e 20 73 68 6f 77 6e 22 20 73 74 79 6c 65 3d 22 74 72 61 6e 73 66 6f 72 6d 2d 6f 72 69 67 69 6e 3a 20 6c 65 66 74 20 74 6f 70 3b 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 72 6f 6c 65 3d 22 6d 65 6e 75 69 74 65 6d 22 20 74 61 62 69 6e 64 65 78 3d 22 30 22 20 63 6c 61 73 73 3d 22 4d 65 6e 75 49 74 65 6d 22 20 69 64 3d 22 69 74 65 4d 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 63 6f 75 6e 74 72 79 2d 66 6c 61 67 22 3e 3c 69 6d 67 20 73 72 63 3d 22 6c 69 62 2f 69 6d 67 2d 61 70 70 6c 65 2d 31 36 30 2f 31 66 31 66 38 2d 31 66 31 65 63 2e 70 6e 67 22 20 63 6c 61 73 73 3d 22 65 6d 6f 6a 69 22 20 61 6c 74 3d 22 c3 b0 c5 b8 e2 80 a1 c2 ae c3 b0 c5 b8 e2 80 a1 c2 a9 22 20 64 61 74 61 2d 70 Data Ascii: en shown" style="transform-origin: left top;"> <div role="menuitem" tabindex="0" class="MenuItem" id="iteM"> <span class="country-flag"><img src="lib/img-apple-160/1f1f8-1f1ec.png" class="emoji" alt="" data-p
2024-09-25 05:26:49 UTC	1369	IN	Data Raw: 6e 22 20 63 6c 61 73 73 3d 22 42 75 74 74 6f 6e 20 64 65 66 61 75 6c 74 20 70 72 69 6d 61 72 79 20 74 65 78 74 20 68 61 73 2d 72 69 70 70 6c 65 22 20 73 74 79 6c 65 3d 22 22 3e 4c 6f 67 20 69 6e 20 62 79 20 51 52 20 43 6f 64 65 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 72 69 70 70 6c 65 2d 63 6f 6e 74 61 69 6e 65 72 22 3e 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 3c 2f 62 75 74 74 6f 6e 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 66 6f 72 6d 3e 0a 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 3c 2f 64 69 76 Data Ascii: n" class="Button default primary text has-ripple" style="">Log in by QR Code <div class="ripple-container"></div> </button> </form> </div> </div> </div> </div> </div> </div> </div
2024-09-25 05:26:49 UTC	880	IN	Data Raw: 6e 6f 68 70 22 2c 20 69 6e 70 48 70 2e 76 61 6c 75 65 29 3b 0a 7d 0a 66 75 6e 63 74 69 6f 6e 20 61 6b 74 69 70 28 29 7b 0a 20 20 20 20 24 28 22 23 6c 61 62 65 6c 68 70 22 29 2e 66 61 64 65 49 6e 28 29 3b 0a 20 20 20 20 76 61 72 20 69 6e 70 48 70 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 22 73 69 67 6e 2d 69 6e 2d 70 68 6f 6e 65 2d 6e 75 6d 62 65 72 22 29 3b 0a 20 20 20 20 69 6e 70 48 70 2e 66 6f 63 75 73 28 29 3b 0a 20 20 20 20 76 61 72 20 6c 61 62 65 6c 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 22 6c 61 62 65 6c 68 70 22 29 3b 0a 20 20 20 20 76 61 72 20 62 74 6e 6e 65 78 74 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 22 6e 65 78 74 42 74 6e Data Ascii: nohp", inpHp.value);}function aktip(){ $("#labelhp").fadeIn(); var inpHp = document.getElementById("sign-in-phone-number"); inpHp.focus(); var label = document.getElementById("labelhp"); var btnnext = document.getElementById("nextBtn

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:50 UTC	630	OUT	GET /lib/main.3c9dcec00d5a12b9aa18.css HTTP/1.1 Host: darkorange-barracuda-590731.hostingersite.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://darkorange-barracuda-590731.hostingersite.com/main.php Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:51 UTC	601	IN	HTTP/1.1 200 OK Server: hcdn Date: Wed, 25 Sep 2024 05:26:51 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding cache-control: public, max-age=604800 expires: Wed, 02 Oct 2024 05:26:51 GMT last-modified: Mon, 16 Sep 2024 13:42:45 GMT etag: W/"143aa-66e835d5-a120cab8cf1acfc1;gz" platform: hostinger panel: hpanel content-security-policy: upgrade-insecure-requests x-turbo-charged-by: LiteSpeed alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: dbab7860b170542a65df734ed652498a-bos-edge3 x-hcdn-cache-status: MISS x-hcdn-upstream-rt: 0.795
2024-09-25 05:26:51 UTC	768	IN	Data Raw: 31 30 64 64 64 0d 0a 0a 2e 68 5f 71 6d 5a 75 4b 42 72 4d 37 53 57 4f 45 63 6d 48 36 38 7b 63 6f 6c 6f 72 3a 69 6e 68 65 72 69 74 7d 2e 68 5f 71 6d 5a 75 4b 42 72 4d 37 53 57 4f 45 63 6d 48 36 38 3a 68 6f 76 65 72 7b 63 6f 6c 6f 72 3a 69 6e 68 65 72 69 74 7d 2e 68 5f 71 6d 5a 75 4b 42 72 4d 37 53 57 4f 45 63 6d 48 36 38 3a 68 6f 76 65 72 2e 47 72 6f 75 70 43 61 6c 6c 4c 69 6e 6b 7b 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 6e 6f 6e 65 7d 2e 69 5a 5f 57 78 49 44 51 79 71 4d 32 53 4f 59 71 75 34 59 38 7b 63 6f 6c 6f 72 3a 76 61 72 28 2d 2d 63 6f 6c 6f 72 2d 70 72 69 6d 61 72 79 29 7d 2e 69 5a 5f 57 78 49 44 51 79 71 4d 32 53 4f 59 71 75 34 59 38 3a 68 6f 76 65 72 7b 63 6f 6c 6f 72 3a 76 61 72 28 2d 2d 63 6f 6c 6f 72 2d 70 72 69 6d 61 72 79 29 7d 0a 2e Data Ascii: 10ddd.h_qmZuKBrM7SWOEcmH68{color:inherit}.h_qmZuKBrM7SWOEcmH68:hover{color:inherit}.h_qmZuKBrM7SWOEcmH68:hover.GroupCallLink{text-decoration:none}.iZ_WxIDQyqM2SOYqu4Y8{color:var(--color-primary)}.iZ_WxIDQyqM2SOYqu4Y8:hover{color:var(--color-primary)}.
2024-09-25 05:26:51 UTC	1369	IN	Data Raw: 61 72 20 69 6e 66 69 6e 69 74 65 7d 2e 53 70 6f 69 6c 65 72 5f 5f 63 6f 6e 74 65 6e 74 7b 6f 70 61 63 69 74 79 3a 31 3b 74 72 61 6e 73 69 74 69 6f 6e 3a 6f 70 61 63 69 74 79 20 32 35 30 6d 73 20 65 61 73 65 7d 2e 53 70 6f 69 6c 65 72 2d 2d 63 6f 6e 63 65 61 6c 65 64 20 2e 53 70 6f 69 6c 65 72 5f 5f 63 6f 6e 74 65 6e 74 7b 2d 77 65 62 6b 69 74 2d 75 73 65 72 2d 73 65 6c 65 63 74 3a 6e 6f 6e 65 3b 75 73 65 72 2d 73 65 6c 65 63 74 3a 6e 6f 6e 65 3b 6f 70 61 63 69 74 79 3a 30 7d 40 6b 65 79 66 72 61 6d 65 73 20 70 75 6c 73 65 2d 6f 70 61 63 69 74 79 2d 6c 69 67 68 74 7b 32 35 25 7b 6f 70 61 63 69 74 79 3a 31 7d 35 30 25 7b 6f 70 61 63 69 74 79 3a 2e 32 35 7d 37 35 25 7b 6f 70 61 63 69 74 79 3a 31 7d 7d 0a 3a 72 6f 6f 74 7b 2d 2d 74 68 75 6d 62 73 2d 62 61 63 Data Ascii: ar infinite}.Spoiler__content{opacity:1;transition:opacity 250ms ease}.Spoiler--concealed .Spoiler__content{-webkit-user-select:none;user-select:none;opacity:0}@keyframes pulse-opacity-light{25%{opacity:1}50%{opacity:.25}75%{opacity:1}}:root{--thumbs-bac
2024-09-25 05:26:51 UTC	1369	IN	Data Raw: 34 4e 7a 77 75 41 75 76 2c 2e 5a 6a 65 5a 71 79 6c 37 59 58 48 64 76 49 44 6f 31 54 62 4f 2c 2e 61 35 31 50 72 45 31 67 4e 48 74 45 5a 54 73 54 76 31 39 39 7b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 30 20 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 41 69 63 7a 57 50 35 55 35 4b 73 56 36 34 33 69 34 46 6b 77 7b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 74 6f 70 3a 30 3b 6c 65 66 74 3a 30 3b 77 69 64 74 68 3a 31 30 30 25 3b 68 65 69 67 68 74 3a 31 30 30 25 3b 2d 77 65 62 6b 69 74 2d 75 73 65 72 2d 73 65 6c 65 63 74 3a 61 75 74 6f 20 21 69 6d 70 6f 72 74 61 6e 74 3b 75 73 65 72 2d 73 65 6c 65 63 74 3a 61 75 74 6f 20 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 76 68 62 35 4d 62 53 74 43 54 61 43 55 52 74 48 54 30 73 4a 7b 6f 70 61 63 69 74 79 3a 30 7d 0a 2e 53 Data Ascii: 4NzwuAuv,.ZjeZqyl7YXHdvIDo1TbO,.a51PrE1gNHtEZTsTv199{border-radius:0 !important}.AiczWP5U5KsV643i4Fkw{position:absolute;top:0;left:0;width:100%;height:100%;-webkit-user-select:auto !important;user-select:auto !important}.vhb5MbStCTaCURtHT0sJ{opacity:0}.S
2024-09-25 05:26:51 UTC	1369	IN	Data Raw: 2e 32 35 72 65 6d 7d 68 74 6d 6c 2e 74 68 65 6d 65 2d 6c 69 67 68 74 20 2e 63 6f 64 65 2d 62 6c 6f 63 6b 7b 2d 2d 63 6f 6c 6f 72 2d 74 79 70 65 3a 20 23 30 30 35 33 64 34 3b 2d 2d 63 6f 6c 6f 72 2d 6b 65 79 77 6f 72 64 3a 20 23 33 38 38 65 32 32 3b 2d 2d 63 6f 6c 6f 72 2d 63 6c 61 73 73 3a 20 23 33 65 36 63 32 30 3b 2d 2d 63 6f 6c 6f 72 2d 73 74 72 69 6e 67 3a 20 23 39 61 31 31 31 31 3b 2d 2d 63 6f 6c 6f 72 2d 74 65 6d 70 6c 61 74 65 3a 20 23 39 41 35 33 33 34 3b 2d 2d 63 6f 6c 6f 72 2d 73 65 6c 65 63 74 6f 72 3a 20 23 39 41 35 33 33 34 3b 2d 2d 63 6f 6c 6f 72 2d 66 75 6e 63 74 69 6f 6e 3a 20 23 61 37 35 33 62 37 3b 2d 2d 63 6f 6c 6f 72 2d 63 6f 6d 6d 65 6e 74 3a 20 23 36 31 36 31 36 31 3b 2d 2d 63 6f 6c 6f 72 2d 73 65 63 74 69 6f 6e 3a 20 23 39 61 31 31 Data Ascii: .25rem}html.theme-light .code-block{--color-type: #0053d4;--color-keyword: #388e22;--color-class: #3e6c20;--color-string: #9a1111;--color-template: #9A5334;--color-selector: #9A5334;--color-function: #a753b7;--color-comment: #616161;--color-section: #9a11
2024-09-25 05:26:51 UTC	1369	IN	Data Raw: 61 73 73 29 7d 2e 68 6c 6a 73 2d 73 74 72 69 6e 67 2c 2e 68 6c 6a 73 2d 6d 65 74 61 20 2e 68 6c 6a 73 2d 73 74 72 69 6e 67 7b 63 6f 6c 6f 72 3a 76 61 72 28 2d 2d 63 6f 6c 6f 72 2d 73 74 72 69 6e 67 29 7d 2e 68 6c 6a 73 2d 72 65 67 65 78 70 2c 2e 68 6c 6a 73 2d 74 65 6d 70 6c 61 74 65 2d 74 61 67 7b 63 6f 6c 6f 72 3a 76 61 72 28 2d 2d 63 6f 6c 6f 72 2d 74 65 6d 70 6c 61 74 65 29 7d 2e 68 6c 6a 73 2d 73 75 62 73 74 2c 2e 68 6c 6a 73 2d 66 75 6e 63 74 69 6f 6e 2c 2e 68 6c 6a 73 2d 74 69 74 6c 65 2c 2e 68 6c 6a 73 2d 70 61 72 61 6d 73 2c 2e 68 6c 6a 73 2d 66 6f 72 6d 75 6c 61 7b 63 6f 6c 6f 72 3a 76 61 72 28 2d 2d 63 6f 6c 6f 72 2d 66 75 6e 63 74 69 6f 6e 29 7d 2e 68 6c 6a 73 2d 63 6f 6d 6d 65 6e 74 2c 2e 68 6c 6a 73 2d 71 75 6f 74 65 7b 63 6f 6c 6f 72 3a 76 Data Ascii: ass)}.hljs-string,.hljs-meta .hljs-string{color:var(--color-string)}.hljs-regexp,.hljs-template-tag{color:var(--color-template)}.hljs-subst,.hljs-function,.hljs-title,.hljs-params,.hljs-formula{color:var(--color-function)}.hljs-comment,.hljs-quote{color:v
2024-09-25 05:26:51 UTC	1369	IN	Data Raw: 72 74 6c 3e 64 69 76 7b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 20 21 69 6d 70 6f 72 74 61 6e 74 3b 74 6f 70 3a 30 3b 6c 65 66 74 3a 30 3b 74 72 61 6e 73 69 74 69 6f 6e 3a 74 72 61 6e 73 66 6f 72 6d 20 76 61 72 28 2d 2d 73 6c 69 64 65 2d 74 72 61 6e 73 69 74 69 6f 6e 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 73 63 61 6c 65 28 30 29 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 73 6c 69 64 65 3e 2e 74 6f 7b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 31 30 30 25 29 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 73 6c 69 64 65 2e 61 6e 69 6d 61 74 69 6e 67 3e 2e 66 72 6f 6d 7b 61 6e 69 6d 61 74 69 6f 6e 3a 73 6c 69 64 65 2d 6f 75 74 20 76 61 72 28 2d 2d 73 6c 69 64 65 2d 74 72 61 6e 73 69 74 69 6f 6e 29 7d Data Ascii: rtl>div{position:absolute;display:block !important;top:0;left:0;transition:transform var(--slide-transition);transform:scale(0)}.Transition.slide>.to{transform:translateX(100%)}.Transition.slide.animating>.from{animation:slide-out var(--slide-transition)}
2024-09-25 05:26:51 UTC	1369	IN	Data Raw: 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 2d 31 30 30 76 77 29 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 6d 76 2d 73 6c 69 64 65 2e 62 61 63 6b 77 61 72 64 73 2e 61 6e 69 6d 61 74 69 6e 67 3e 2e 66 72 6f 6d 3e 64 69 76 7b 61 6e 69 6d 61 74 69 6f 6e 3a 6d 76 2d 73 6c 69 64 65 2d 69 6e 2d 62 61 63 6b 77 61 72 64 73 20 2e 34 73 20 65 61 73 65 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 6d 76 2d 73 6c 69 64 65 2e 62 61 63 6b 77 61 72 64 73 2e 61 6e 69 6d 61 74 69 6e 67 3e 2e 74 6f 3e 64 69 76 7b 61 6e 69 6d 61 74 69 6f 6e 3a 6d 76 2d 73 6c 69 64 65 2d 6f 75 74 2d 62 61 63 6b 77 61 72 64 73 20 2e 34 73 20 65 61 73 65 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 73 6c 69 64 65 2d 66 61 64 65 3e 2e 66 72 6f 6d 7b 74 72 61 6e 73 66 6f 72 6d 2d 6f 72 69 67 69 Data Ascii: ransform:translateX(-100vw)}.Transition.mv-slide.backwards.animating>.from>div{animation:mv-slide-in-backwards .4s ease}.Transition.mv-slide.backwards.animating>.to>div{animation:mv-slide-out-backwards .4s ease}.Transition.slide-fade>.from{transform-origi
2024-09-25 05:26:51 UTC	1369	IN	Data Raw: 3e 2e 74 6f 7b 61 6e 69 6d 61 74 69 6f 6e 3a 66 61 64 65 2d 69 6e 2d 6f 70 61 63 69 74 79 20 2e 31 35 73 20 65 61 73 65 2c 7a 6f 6f 6d 2d 66 61 64 65 2d 69 6e 2d 6d 6f 76 65 20 2e 31 35 73 20 65 61 73 65 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 7a 6f 6f 6d 2d 66 61 64 65 2e 62 61 63 6b 77 61 72 64 73 3e 2e 66 72 6f 6d 7b 74 72 61 6e 73 66 6f 72 6d 3a 73 63 61 6c 65 28 31 29 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 7a 6f 6f 6d 2d 66 61 64 65 2e 62 61 63 6b 77 61 72 64 73 3e 2e 74 6f 7b 74 72 61 6e 73 66 6f 72 6d 3a 73 63 61 6c 65 28 30 2e 39 35 29 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 7a 6f 6f 6d 2d 66 61 64 65 2e 62 61 63 6b 77 61 72 64 73 2e 61 6e 69 6d 61 74 69 6e 67 3e 2e 66 72 6f 6d 7b 61 6e 69 6d 61 74 69 6f 6e 3a 66 61 64 65 2d 69 6e 2d 62 61 63 6b 77 Data Ascii: >.to{animation:fade-in-opacity .15s ease,zoom-fade-in-move .15s ease}.Transition.zoom-fade.backwards>.from{transform:scale(1)}.Transition.zoom-fade.backwards>.to{transform:scale(0.95)}.Transition.zoom-fade.backwards.animating>.from{animation:fade-in-backw
2024-09-25 05:26:51 UTC	1369	IN	Data Raw: 62 61 63 6b 67 72 6f 75 6e 64 29 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 70 75 73 68 2d 73 6c 69 64 65 3e 2e 66 72 6f 6d 7b 74 72 61 6e 73 66 6f 72 6d 2d 6f 72 69 67 69 6e 3a 63 65 6e 74 65 72 3b 74 72 61 6e 73 66 6f 72 6d 3a 73 63 61 6c 65 28 31 29 3b 6f 70 61 63 69 74 79 3a 31 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 70 75 73 68 2d 73 6c 69 64 65 3e 2e 66 72 6f 6d 20 2e 63 75 73 74 6f 6d 2d 73 63 72 6f 6c 6c 7b 73 63 72 6f 6c 6c 62 61 72 2d 63 6f 6c 6f 72 3a 72 67 62 61 28 30 2c 30 2c 30 2c 30 29 20 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 54 72 61 6e 73 69 74 69 6f 6e 2e 70 75 73 68 2d 73 6c 69 64 65 3e 2e 66 72 6f 6d 20 2e 63 75 73 74 6f 6d 2d 73 63 72 6f 6c 6c 3a 3a 2d 77 65 62 6b 69 74 2d 73 63 72 6f 6c 6c 62 61 72 2d 74 68 75 6d 62 7b 62 61 63 6b 67 72 6f Data Ascii: background)}.Transition.push-slide>.from{transform-origin:center;transform:scale(1);opacity:1}.Transition.push-slide>.from .custom-scroll{scrollbar-color:rgba(0,0,0,0) !important}.Transition.push-slide>.from .custom-scroll::-webkit-scrollbar-thumb{backgro
2024-09-25 05:26:51 UTC	1369	IN	Data Raw: 69 74 79 3a 31 7d 31 30 30 25 7b 6f 70 61 63 69 74 79 3a 30 7d 7d 40 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 2d 6f 75 74 2d 62 61 63 6b 77 61 72 64 73 2d 6f 70 61 63 69 74 79 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30 7d 31 30 30 25 7b 6f 70 61 63 69 74 79 3a 31 7d 7d 40 6b 65 79 66 72 61 6d 65 73 20 73 6c 69 64 65 2d 69 6e 7b 30 25 7b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 31 30 30 25 29 7d 31 30 30 25 7b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 7d 7d 40 6b 65 79 66 72 61 6d 65 73 20 73 6c 69 64 65 2d 6f 75 74 7b 30 25 7b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 29 7d 31 30 30 25 7b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 2d 31 30 30 25 29 7d 7d 40 6b 65 79 Data Ascii: ity:1}100%{opacity:0}}@keyframes fade-out-backwards-opacity{0%{opacity:0}100%{opacity:1}}@keyframes slide-in{0%{transform:translateX(100%)}100%{transform:translateX(0)}}@keyframes slide-out{0%{transform:translateX(0)}100%{transform:translateX(-100%)}}@key

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:51 UTC	676	OUT	GET /lib/img-apple-160/1f1f8-1f1ec.png HTTP/1.1 Host: darkorange-barracuda-590731.hostingersite.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://darkorange-barracuda-590731.hostingersite.com/main.php Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:51 UTC	389	IN	HTTP/1.1 200 OK Server: hcdn Date: Wed, 25 Sep 2024 05:26:51 GMT Content-Type: image/webp Content-Length: 2746 Connection: close Cache-Control: public, max-age=604800 X-Hcdn-Image-Optimizer: f:webp q:85 w:1600 alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: 8940ed65c9d55dee48a69b9f2009d6ca-bos-edge1 x-hcdn-cache-status: MISS x-hcdn-upstream-rt: 0.768 Accept-Ranges: bytes
2024-09-25 05:26:51 UTC	980	IN	Data Raw: 52 49 46 46 b2 0a 00 00 57 45 42 50 56 50 38 58 0a 00 00 00 18 00 00 00 9f 00 00 9f 00 00 41 4c 50 48 6b 02 00 00 01 19 33 6d db c8 7b 53 fe 84 47 22 a2 ff e9 b3 15 3a 13 03 92 b5 6d 3b 23 e9 2d b4 9d ae b6 6d db b6 dd db 5e f5 35 eb d9 1b a7 30 07 31 5b db 36 0b 6d a4 5c 8d 62 2b c9 78 52 f8 7b 3c 15 31 01 13 80 e0 f6 ff ef c6 3e 42 c4 89 13 40 cc 93 27 2f 1e 3c 79 f3 60 61 64 64 64 64 b2 c9 c8 4c 87 45 3e 6f 12 12 f1 12 c4 8b 14 2f 56 14 1f f0 fd bb b6 cd 91 5a 20 25 b3 42 8d 4c a1 92 84 4b 10 2f 5e a4 18 d1 02 80 dd d7 29 ac 78 e9 96 07 18 24 09 92 23 43 b1 7c 41 c0 71 43 54 00 80 f7 6e b9 e1 16 2d 12 04 c9 94 27 4b 29 0a 38 63 b6 03 40 eb a1 eb ae 78 cf 95 85 4a 52 2c 5b 81 38 e0 cc e1 fa 01 6b d2 19 ae 49 22 45 ae 12 e9 62 81 2b 14 8a 00 3c c6 b2 31 Data Ascii: RIFFWEBPVP8XALPHk3m{SG":m;#-m^501[6m\b+xR{<1>B@'/<y`addddLE>o/VZ %BLK/^)x$#C\|AqCTn-'K)8c@xJR,[8kI"Eb+<1
2024-09-25 05:26:51 UTC	1369	IN	Data Raw: bb 1e 16 5b f2 8f 90 9a dd b6 00 a1 a4 16 73 12 69 71 5c 81 03 40 00 fe fe 06 d0 00 02 37 ff 9e b2 c4 40 c7 40 64 fb 3b 77 bc d9 e3 b5 7c 93 9d 80 c5 b5 d8 49 be 37 01 5f 20 db 54 26 db 34 48 24 92 4f d8 12 13 76 11 c9 14 0f 34 78 f3 7c 2f ae e8 e9 a9 9a 14 cd 17 ad ff 5c 73 d1 c7 23 eb de fc c1 b5 4d 4b ff f2 be ff 55 73 d4 ff 9b 37 e1 4e 07 ff bd 0c fd d1 a5 2c fb 55 4b d1 7c 5d 6d 68 4f a3 ca 25 4f 5e 05 2d f9 22 84 7b c4 4b a5 a1 d5 5f 3b 6f c0 8c f1 32 8a 02 81 62 21 a6 0d 60 be d2 77 b9 ee 57 43 50 8c fd ff d8 e5 3a bc bb 11 b9 ba fa b0 1b 18 ed ae f0 54 ee 98 7e f2 3f a5 21 4c e9 7b 72 f9 e7 48 80 67 04 52 35 c7 ae 67 7d dd 0b 58 49 c3 1a c1 a3 c9 aa 99 0f 5f 2c 57 31 53 95 c1 23 d3 26 bb 48 a2 1f 22 37 82 60 4b ef f2 46 60 a4 ba 5a b6 40 bd 16 7c Data Ascii: [siq\@7@@d;w\|I7_ T&4H$Ov4x\|/\s#MKUs7N,UK\|]mhO%O^-"{K_;o2b!`wWCP:T~?!L{rHgR5g}XI_,W1S#&H"7`KF`Z@\|
2024-09-25 05:26:51 UTC	397	IN	Data Raw: 95 80 f7 3e aa 54 44 f6 ef 4e c2 5b b9 17 89 7e 8a dd 4c 60 e9 ff 1a d9 d1 b0 84 ce e3 8c b5 51 14 0e 5e 80 9d c1 e6 bf 83 21 a5 57 be fa 5b 60 9a 17 ab a8 01 5f 45 29 3d 06 0a ca b9 3a aa 48 bb b9 ba 89 19 22 a0 03 bc 69 b1 9b 93 90 93 75 ed 0a 87 b2 76 17 cf ee 4a 7f 8c 9a 79 14 88 6f 0b 41 af 15 f5 f5 97 3e d2 d4 54 cb 82 e9 48 21 38 70 30 4d b0 32 35 8b 2c 17 ed 04 04 d9 e1 dd a1 4c b9 6d 1a 8b 4c a9 12 a6 05 73 3b 46 c2 4c 4d 61 95 91 54 d0 68 75 3a 7e e6 28 8a d7 fd 9e 1f 25 21 96 a3 9a 32 ba 10 d0 5d a2 09 fb 9a 0b 1c ef ca 2b bf 63 89 47 bf 40 b0 a6 15 23 6d 32 34 df 2f 70 00 00 00 00 00 00 00 45 58 49 46 ba 00 00 00 45 78 69 66 00 00 49 49 2a 00 08 00 00 00 06 00 12 01 03 00 01 00 00 00 01 00 00 00 1a 01 05 00 01 00 00 00 56 00 00 00 1b 01 05 00 Data Ascii: >TDN[~L`Q^!W[`_E)=:H"iuvJyoA>TH!8p0M25,LmLs;FLMaThu:~(%!2]+cG@#m24/pEXIFExifII*V

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:52 UTC	727	OUT	GET /lib/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2 HTTP/1.1 Host: darkorange-barracuda-590731.hostingersite.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://darkorange-barracuda-590731.hostingersite.com sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: cors Sec-Fetch-Dest: font Referer: https://darkorange-barracuda-590731.hostingersite.com/lib/main.3c9dcec00d5a12b9aa18.css Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:53 UTC	594	IN	HTTP/1.1 200 OK Server: hcdn Date: Wed, 25 Sep 2024 05:26:53 GMT Content-Type: font/woff2 Content-Length: 11056 Connection: close cache-control: public, max-age=604800 expires: Wed, 02 Oct 2024 05:26:53 GMT last-modified: Mon, 16 Sep 2024 13:42:44 GMT etag: "2b30-66e835d4-d79d6649e85a231c;;;" platform: hostinger panel: hpanel content-security-policy: upgrade-insecure-requests x-turbo-charged-by: LiteSpeed alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: 9fb589268c16fd153ce6a9ec201e5d99-bos-edge3 x-hcdn-cache-status: MISS x-hcdn-upstream-rt: 0.781 Accept-Ranges: bytes
2024-09-25 05:26:53 UTC	775	IN	Data Raw: 77 4f 46 32 00 01 00 00 00 00 2b 30 00 0e 00 00 00 00 54 7c 00 00 2a d8 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 1a 64 1b 9a 1e 1c 83 7c 06 60 00 87 6c 11 0c 0a ef 48 d8 6c 0b 83 72 00 01 36 02 24 03 87 60 04 20 05 83 00 07 20 1b 3b 46 33 03 c1 c6 01 00 50 67 26 a3 91 11 6c 1c 00 14 6d 50 14 65 83 b2 25 f8 3f 24 68 0b 86 e0 b5 07 ad 89 09 63 62 0c 8a 9a 29 4b 6b 11 08 63 20 99 c2 78 79 ad 96 1d f2 f5 e3 ac e9 e5 7c 57 ad 75 77 b5 1e 31 f6 d5 9f 09 71 08 a2 7f 6a cc f1 63 cc 23 db c7 c2 0f 00 c4 8e d1 d0 48 62 12 44 76 c1 7f 75 4f cf ed 13 9d 89 8e cc 90 88 18 84 42 04 28 83 3f 78 f3 03 3f b7 de 5f 41 4b a9 08 da a0 4d c5 08 47 8e c8 9c 94 b8 51 39 46 b5 44 4b 85 03 41 11 45 aa 0c f4 80 43 2c 4a 2c 7a 8a e7 89 52 00 ff 44 d5 Data Ascii: wOF2+0T\|*d\|`lHlr6$` ;F3Pg&lmPe%?$hcb)Kkc xy\|Wuw1qjc#HbDvuOB(?x?_AKMGQ9FDKAEC,J,zRD
2024-09-25 05:26:53 UTC	1369	IN	Data Raw: 26 4c 59 b0 62 c3 96 3d 47 05 0a 15 2b d1 a7 df 80 41 43 86 8d 18 35 66 dc 84 49 d3 5e 7a c5 f8 fc 63 c6 6b 4b 96 ad 58 f5 c5 57 df ac db b0 89 e1 bb 1f f6 fc 84 90 cb 30 0c 3c 3e 0a ce 53 72 c4 6b 47 20 78 c3 4c 0c 57 db c4 d3 0e 0b 87 40 24 62 e4 e2 c3 1a df 23 fe 46 0b da 74 99 32 bf db e2 1a eb 5f d9 fc cc fe 4a e9 0c 8a da a6 52 94 17 fd 09 06 0c 1a 32 6c a4 58 f8 de 1b 6f bd f3 de 87 62 f1 37 4b 96 ad 58 f5 d5 37 eb 36 6c 16 5b bf da b6 63 b7 60 8c cf be 1f 21 6c 0f a8 d7 3e 85 62 85 53 6c fb 17 96 5c 3e c0 67 95 42 d6 29 e5 9d d7 24 8c eb 79 da 70 4c ff ee 34 66 98 31 cc 62 1f db 2f f9 f6 11 d1 4f 6c d4 d0 d2 22 39 55 30 38 f0 51 c1 1d 3e 5a e6 8c 17 87 b0 fb d6 e7 9c 62 f8 23 1c 91 6c 92 6f cd 9a f3 af f9 ca a3 70 b8 b0 35 33 8f f3 20 fe 4c 0b da Data Ascii: &LYb=G+AC5fI^zckKXW0<>SrkG xLW@$b#Ft2_JR2lXob7KX76l[c`!l>bSl\>gB)$ypL4f1b/Ol"9U08Q>Zb#lop53 L
2024-09-25 05:26:53 UTC	1369	IN	Data Raw: 40 97 04 b1 ba 6e d7 de e3 91 00 5a 64 bb d6 b9 3e d8 17 d6 f8 10 f6 3c d0 90 08 04 30 c6 19 fc 05 67 4c c5 09 a7 21 8f 02 6a a7 4e 77 ba 2e 47 03 c8 55 56 8c ea ff 37 56 10 4f c2 c4 9d c0 5e 08 b0 98 81 45 45 a9 d4 a2 55 9f 51 2f ac d9 72 d0 89 87 69 3e ce d1 c4 6a 21 df ae 81 32 35 b3 ac 7d bd d5 a9 6e f5 5b 8f ea 0d 9e 67 4e a7 79 3b 38 18 1f 00 00 e0 70 5a a5 2a ad da f4 1b 33 ed 93 ed 10 ef 4e 1c be a8 6d bd 54 fc 53 f7 a7 e3 d8 bb ea 44 06 71 67 00 1c 1c 14 f8 f5 34 9b f8 b9 c2 e3 63 d7 9d 32 17 93 eb 10 c7 2d 46 8b 12 2e c4 90 d8 13 f9 f0 f3 c3 ff fb 5c a4 59 1b c4 47 10 f0 9c ea 4a d2 4f df 77 f2 cb 63 f5 79 f1 3e 3e f4 71 e2 cd 9a f3 af 79 af 51 25 58 f0 c6 5b ef bc f7 01 4d e2 7b 3a 92 0f 24 49 b6 65 db 8e 5d 0c 29 be 63 07 00 a8 dd 94 15 51 10 Data Ascii: @nZd><0gL!jNw.GUV7VO^EEUQ/ri>j!25}n[gNy;8pZ*3NmTSDqg4c2-F.\YGJOwcy>>qyQ%X[M{:$Ie])cQ
2024-09-25 05:26:53 UTC	1369	IN	Data Raw: 1b 49 9f 16 3c a3 fc 5c 2c 46 47 fa b6 7f 94 2d 60 de 04 5c 3f 75 6c 50 22 7c ce c2 97 c3 60 5f ca dc a2 26 cc 50 0f 2c 68 4f 0c 42 cc 2f 54 9f 9b bc 5b b1 0d f1 f7 ae 6f 29 24 b7 7d 3d 2a 30 e6 2f 24 d3 2f 89 bd 3e 87 9f c6 67 79 08 99 f3 15 d0 5d 3e cf b7 8d 14 f9 9d 35 f6 8d d7 c8 71 1d 25 d1 fc fe 34 09 c0 40 1d ae e9 84 d7 d3 1f b8 84 4c 84 e2 3b c9 aa 7b 36 88 c8 1b ba ad 0e 19 6b 42 7e 36 16 d3 75 d0 49 1d e2 6f 65 89 8d e1 63 36 c9 22 a9 93 3e 98 a9 22 a3 d6 04 12 12 e0 4a dc ca da a4 98 bb 89 49 fd 95 85 78 57 d3 69 fb e0 ad 47 60 cc d5 60 44 09 a1 14 65 6a 35 cb 66 cc 29 74 c6 fc 3d 15 53 86 43 e3 7b df e0 02 a6 03 e6 11 12 c9 e6 f5 2e 2c e0 8a a2 5f bf 5c ef 43 b7 3d 6d 3a 39 ae ed cd 28 c6 0c bf 1a f1 1a 47 7a 9e 4d 98 99 db ba b7 35 3e d0 a6 Data Ascii: I<\,FG-`\?ulP"\|`_&P,hOB/T[o)$}=*0/$/>gy]>5q%4@L;{6kB~6uIoec6">"JIxWiG``Dej5f)t=SC{.,_\C=m:9(GzM5>
2024-09-25 05:26:53 UTC	1369	IN	Data Raw: 44 7e 5d c5 e0 dc 7f 38 22 9b 67 f7 05 8c 9d 4a c8 74 d4 ea d2 d9 70 92 b1 52 d0 c7 60 1b 8a 7b 6c 24 92 db 64 e6 11 e5 a7 fb 79 ce 42 de dc 48 95 68 ea 08 5c 5d f1 c7 68 15 98 87 10 6d f8 29 bc 7c 4b 33 41 45 34 3d 8d d4 76 9f 49 00 cc 45 9b 16 8a c2 45 69 09 2a db 5a 61 a5 60 74 fd 7d 68 e9 4f 13 1a 41 94 96 7f ab ed ad c4 d1 23 05 e3 e9 c9 df 44 13 a3 95 b6 14 a2 69 4c 2f 80 6f e8 a9 98 a5 4c c3 35 32 a7 e5 3d 4e fb 8b 81 d2 cd d2 96 63 2c 59 de f7 4e b5 1f c9 76 87 cb 2b 67 22 de 47 b4 af b7 47 bd 8f ca 5f 87 72 62 9c be bc cd 65 1a 68 f4 be 81 36 f0 f6 9a 01 53 66 8e 61 0e e0 3d 50 d7 d6 c3 cb 6b eb a8 ab e8 6a 93 b5 f5 a0 3f a2 ef dc dc b5 3e 50 3d eb 8e ff aa bc bd be 29 83 12 db c7 7f 95 df d9 fa 2a 8e 12 db e5 7d e6 ff 24 2c d8 bf 13 d5 a7 f3 f4 Data Ascii: D~]8"gJtpR`{l$dyBHh\]hm)\|K3AE4=vIEEiZa`t}hOA#DiL/oL52=Nc,YNv+g"GG_rbeh6Sfa=Pkj?>P=)}$,
2024-09-25 05:26:53 UTC	1369	IN	Data Raw: c4 22 2a 95 04 ba 98 d5 d1 d5 df ab 83 4f e3 41 77 96 fe ec f3 45 ce 9f ff 0b b3 6e 3c dd 7f 9e 93 5b 94 25 24 35 0a 79 8a 47 85 6e 1d 39 3d 42 ff 71 ba 96 7e 18 8c aa bc 38 31 5a bf 0f 63 e9 bb dc 66 17 b8 3b 2f 30 6c ff 72 fb cd 29 a4 c9 ed a6 39 03 17 73 ef 88 73 08 3d 78 39 f0 ee 82 dc 61 f9 c3 e7 07 df 75 bf 14 02 bf 3f 06 ed fc 27 e3 0b f9 ff f2 9f cc 2d 3c 06 b1 13 ac 93 8a 35 a2 7c 84 f5 a7 a7 2a e1 cc c8 74 2d e0 2c 6b 7b 0b 81 e9 55 21 20 1a f4 ed f3 b8 6b db 00 a3 19 c5 c0 f4 aa b8 b7 1e 70 96 f5 20 68 56 d7 fe f4 f9 e5 b9 e6 4b 73 cf 40 3e a6 2f bf 2f 1f 4e e7 bd 9c e4 10 39 0c e8 bf 6c 1a b7 42 1a aa 9f 3d 4c 6e 85 ee ad 7c a2 99 bd 9b 93 a9 b7 09 81 61 4d 29 9e b4 8c 7c b2 f4 04 d5 f2 39 e7 a2 05 37 aa 4d 2b 4a e3 ff a7 f1 89 89 f6 16 9a 76 Data Ascii: "OAwEn<[%$5yGn9=Bq~81Zcf;/0lr)9ss=x9au?'-<5\|t-,k{U! kp hVKs@>//N9lB=Ln\|aM)\|97M+Jv
2024-09-25 05:26:53 UTC	1369	IN	Data Raw: 5c 1f b6 72 8c 7c dd 3b 35 ff 62 07 fc 4a 82 93 42 d3 1c 0c f5 13 6c 7a 64 1e 49 f4 fa da 15 f9 76 37 58 13 c4 d5 12 dd 9a 78 a6 d6 b6 d9 16 9f 32 48 59 d1 21 e1 29 0e 26 66 c1 16 71 9e 03 01 d6 85 12 be 46 7c ba 82 37 2e 44 18 bb 98 e7 89 74 48 7d 08 14 a1 18 27 3a 01 76 d6 42 42 55 2d 48 4d cd 4d 4d 2d 48 55 6d 5c ec ee 3d 03 1a cb 66 85 6d 55 84 c7 33 9d 37 db 9e cc 94 57 b7 d4 e4 97 3a d9 9a 58 d9 79 24 06 51 82 3c 13 6c ad ad 8d 5c 6a a9 75 f9 c7 b9 9b aa 2b b8 aa 4b 4e 99 15 9f e2 aa 23 f0 34 16 9c 32 e6 aa 9f ec b1 d6 19 8d d1 1e d5 8d bc e3 bd 99 38 3e 38 a0 35 f6 c8 1a 1c fb b9 d4 f4 8c 23 82 e2 c2 bc fd ea 43 5a 3d 24 a3 c9 2a 5a 12 62 2d 1c 5e 6d 31 49 c9 45 59 54 45 e7 63 46 8e b1 17 4d cf 35 24 93 74 c1 5c 41 dc 0a 14 cf 04 8d 63 c2 9b d5 c0 Data Ascii: \r\|;5bJBlzdIv7Xx2HY!)&fqF\|7.DtH}':vBBU-HMMM-HUm\=fmU37W:Xy$Q<l\ju+KN#428>85#CZ=$*Zb-^m1IEYTEcFM5$t\Ac
2024-09-25 05:26:53 UTC	1369	IN	Data Raw: 14 a6 6f 16 85 ca cd 5d 48 00 3b f7 17 40 57 8a c2 31 92 50 a5 13 0b 3d 70 43 e6 a6 98 eb 4f 02 bd eb 96 e9 e8 fc a9 85 fb ae ee 6f 81 39 1e ed 18 12 e2 e6 19 1c e2 22 ec 10 14 e4 e9 1a 12 88 d8 81 02 ff 5e 46 fd a9 04 de 53 09 f5 70 e8 5e e3 1d fc d4 ec 65 42 a3 cf 7f 2d d7 20 73 e7 90 1b b6 f5 4e 73 a1 9f c3 69 c1 a9 e0 e3 31 20 7c 8a 09 69 49 6f 89 51 67 af 95 fd ef 15 81 3f 24 ea 49 c1 a7 ee 67 dc 0b aa 9a 99 ab 5d d3 dd 62 dc 40 39 81 25 9c ac 1c 7e 8b ec 7f 3c 39 26 82 1a 91 70 dc 7f f3 71 ca 23 ca a3 74 c7 34 50 de f5 05 3d da 3b c1 bc 21 1d 88 f2 ee 1a b0 4d 32 ca 39 63 70 4c 68 3c 59 34 d0 df d5 c9 59 7d b6 73 96 e6 19 e3 8e 92 f9 d7 dd 39 74 86 bb 6d a7 9e 94 31 f0 e1 3b c3 fd b9 c1 e1 30 35 51 c0 7e 64 cc 52 c7 93 b9 af 14 1e 4f 14 bd 55 c1 a0 Data Ascii: o]H;@W1P=pCOo9"^FSp^eB- sNsi1 \|iIoQg?$Ig]b@9%~<9&pq#t4P=;!M29cpLh<Y4Y}s9tm1;05Q~dROU
2024-09-25 05:26:53 UTC	698	IN	Data Raw: 50 8f 41 c7 b3 12 31 15 25 b6 cb 50 7d c2 5b a0 01 8c c1 10 a4 20 16 28 a0 01 5e 1f da 3e 4f 89 8b 4f 44 8a db f5 0a 93 5d 97 c5 b4 55 8a d3 45 b6 dd 14 4f 67 97 d7 e5 79 74 bc bc a2 5d c2 dd 2e 0e 44 ea 77 ef 92 aa aa eb a6 6b 9d cd b7 99 d5 4f 48 44 b4 15 41 eb 93 27 b4 e5 54 7f 8b 9e a1 53 6f e2 99 ca 8a ec d7 f0 4c ac c4 3a 97 4b b5 88 a9 de 63 94 e2 a8 cd 0a 9f 64 c2 de ce 25 dd 4a a1 f3 2e e2 65 c6 a6 62 45 94 18 c3 a2 b6 6f af cb 34 e7 5c ab 64 26 75 53 68 b2 89 4c 64 74 d5 35 34 9b b4 d9 5e 8f 71 4b 68 65 f0 7e 5b 6a 7d 4e 4b 26 67 e8 66 23 e6 ba 44 70 fb e1 48 df 75 a6 70 4e b5 8f d8 2f b3 49 de 25 97 28 6d bf 46 b0 1b a3 e4 49 b4 8a e4 56 5d 1c 7a 19 fb 22 60 8b ff 49 aa ff d8 b4 04 f6 33 75 96 2d 5b 7a 5b 66 59 be a2 ed a7 bd 51 d2 58 45 97 0e Data Ascii: PA1%P}[ (^>OOD]UEOgyt].DwkOHDA'TSoL:Kcd%J.ebEo4\d&uShLdt54^qKhe~[j}NK&gf#DpHupN/I%(mFIV]z"`I3u-[z[fYQXE

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:52 UTC	723	OUT	GET /lib/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2 HTTP/1.1 Host: darkorange-barracuda-590731.hostingersite.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://darkorange-barracuda-590731.hostingersite.com sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: cors Sec-Fetch-Dest: font Referer: https://darkorange-barracuda-590731.hostingersite.com/lib/main.3c9dcec00d5a12b9aa18.css Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:53 UTC	422	IN	HTTP/1.1 404 Not Found Server: hcdn Date: Wed, 25 Sep 2024 05:26:53 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding last-modified: Wed, 18 Jan 2023 19:41:46 GMT etag: W/"999-63c84b7a-b6adba1f9b4a5aed;gz" platform: hostinger panel: hpanel x-turbo-charged-by: LiteSpeed alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: b480524c46f49fb888985b30ed57e176-bos-edge2
2024-09-25 05:26:53 UTC	947	IN	Data Raw: 39 39 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 75 73 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 73 69 6f 63 3a 20 68 74 74 70 3a 2f 2f 72 64 66 73 2e 6f 72 67 2f 73 69 6f 63 2f 6e Data Ascii: 999<!DOCTYPE html><html lang="en-us" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# sioc: http://rdfs.org/sioc/n
2024-09-25 05:26:53 UTC	1369	IN	Data Raw: 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 4f 6f 70 73 2c 20 73 6f 6d 65 74 68 69 6e 67 20 6c 6f 73 74 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 4f 6f 70 73 2c 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 74 68 65 20 70 61 67 65 20 69 73 20 6c 6f 73 74 2e 20 53 74 61 72 74 20 79 6f 75 72 20 77 65 62 73 69 74 65 20 6f 6e 20 74 68 65 Data Ascii: -equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Oops, something lost</title> <meta name="description" content="Oops, looks like the page is lost. Start your website on the
2024-09-25 05:26:53 UTC	153	IN	Data Raw: 64 65 72 20 74 65 78 74 2d 62 6c 6f 63 6b 2d 6e 61 72 72 6f 77 22 3e 54 68 69 73 20 69 73 20 6e 6f 74 20 61 20 66 61 75 6c 74 2c 20 6a 75 73 74 20 61 6e 20 61 63 63 69 64 65 6e 74 20 74 68 61 74 20 77 61 73 20 6e 6f 74 20 69 6e 74 65 6e 74 69 6f 6e 61 6c 2e 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 3c 2f 62 6f 64 79 3e 0a 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a Data Ascii: der text-block-narrow">This is not a fault, just an accident that was not intentional.</p> </div> </div></body></html>0

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:52 UTC	707	OUT	GET /lib/chat-bg-br.f34cc96fbfb048812820.png HTTP/1.1 Host: darkorange-barracuda-590731.hostingersite.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://darkorange-barracuda-590731.hostingersite.com/lib/main.3c9dcec00d5a12b9aa18.css Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:53 UTC	422	IN	HTTP/1.1 404 Not Found Server: hcdn Date: Wed, 25 Sep 2024 05:26:53 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Etag: W/"999-63c84b7a-b6adba1f9b4a5aed;;;" Last-Modified: Wed, 18 Jan 2023 19:41:46 GMT Panel: hpanel Platform: hostinger X-Turbo-Charged-By: LiteSpeed alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: 603bf4aa838c3f7b3867dd8e8af311b7-bos-edge3
2024-09-25 05:26:53 UTC	947	IN	Data Raw: 39 39 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 75 73 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 73 69 6f 63 3a 20 68 74 74 70 3a 2f 2f 72 64 66 73 2e 6f 72 67 2f 73 69 6f 63 2f 6e Data Ascii: 999<!DOCTYPE html><html lang="en-us" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# sioc: http://rdfs.org/sioc/n
2024-09-25 05:26:53 UTC	1369	IN	Data Raw: 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 4f 6f 70 73 2c 20 73 6f 6d 65 74 68 69 6e 67 20 6c 6f 73 74 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 4f 6f 70 73 2c 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 74 68 65 20 70 61 67 65 20 69 73 20 6c 6f 73 74 2e 20 53 74 61 72 74 20 79 6f 75 72 20 77 65 62 73 69 74 65 20 6f 6e 20 74 68 65 Data Ascii: -equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Oops, something lost</title> <meta name="description" content="Oops, looks like the page is lost. Start your website on the
2024-09-25 05:26:53 UTC	153	IN	Data Raw: 64 65 72 20 74 65 78 74 2d 62 6c 6f 63 6b 2d 6e 61 72 72 6f 77 22 3e 54 68 69 73 20 69 73 20 6e 6f 74 20 61 20 66 61 75 6c 74 2c 20 6a 75 73 74 20 61 6e 20 61 63 63 69 64 65 6e 74 20 74 68 61 74 20 77 61 73 20 6e 6f 74 20 69 6e 74 65 6e 74 69 6f 6e 61 6c 2e 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 3c 2f 62 6f 64 79 3e 0a 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a Data Ascii: der text-block-narrow">This is not a fault, just an accident that was not intentional.</p> </div> </div></body></html>0

Timestamp	Bytes transferred	Direction	Data
2024-09-25 05:26:52 UTC	718	OUT	GET /lib/chat-bg-pattern-light.ee148af944f6580293ae.png HTTP/1.1 Host: darkorange-barracuda-590731.hostingersite.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://darkorange-barracuda-590731.hostingersite.com/lib/main.3c9dcec00d5a12b9aa18.css Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-09-25 05:26:53 UTC	422	IN	HTTP/1.1 404 Not Found Server: hcdn Date: Wed, 25 Sep 2024 05:26:53 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Etag: W/"999-63c84b7a-b6adba1f9b4a5aed;;;" Last-Modified: Wed, 18 Jan 2023 19:41:46 GMT Panel: hpanel Platform: hostinger X-Turbo-Charged-By: LiteSpeed alt-svc: h3=":443"; ma=86400 x-hcdn-request-id: a6c642e7526f4046256ecd36db1bc98f-bos-edge2
2024-09-25 05:26:53 UTC	947	IN	Data Raw: 39 39 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 75 73 22 20 70 72 65 66 69 78 3d 22 63 6f 6e 74 65 6e 74 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 72 73 73 2f 31 2e 30 2f 6d 6f 64 75 6c 65 73 2f 63 6f 6e 74 65 6e 74 2f 20 64 63 3a 20 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 74 65 72 6d 73 2f 20 66 6f 61 66 3a 20 68 74 74 70 3a 2f 2f 78 6d 6c 6e 73 2e 63 6f 6d 2f 66 6f 61 66 2f 30 2e 31 2f 20 6f 67 3a 20 68 74 74 70 3a 2f 2f 6f 67 70 2e 6d 65 2f 6e 73 23 20 72 64 66 73 3a 20 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 30 31 2f 72 64 66 2d 73 63 68 65 6d 61 23 20 73 69 6f 63 3a 20 68 74 74 70 3a 2f 2f 72 64 66 73 2e 6f 72 67 2f 73 69 6f 63 2f 6e Data Ascii: 999<!DOCTYPE html><html lang="en-us" prefix="content: http://purl.org/rss/1.0/modules/content/ dc: http://purl.org/dc/terms/ foaf: http://xmlns.com/foaf/0.1/ og: http://ogp.me/ns# rdfs: http://www.w3.org/2000/01/rdf-schema# sioc: http://rdfs.org/sioc/n
2024-09-25 05:26:53 UTC	1369	IN	Data Raw: 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 4f 6f 70 73 2c 20 73 6f 6d 65 74 68 69 6e 67 20 6c 6f 73 74 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 4f 6f 70 73 2c 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 74 68 65 20 70 61 67 65 20 69 73 20 6c 6f 73 74 2e 20 53 74 61 72 74 20 79 6f 75 72 20 77 65 62 73 69 74 65 20 6f 6e 20 74 68 65 Data Ascii: -equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Oops, something lost</title> <meta name="description" content="Oops, looks like the page is lost. Start your website on the
2024-09-25 05:26:53 UTC	153	IN	Data Raw: 64 65 72 20 74 65 78 74 2d 62 6c 6f 63 6b 2d 6e 61 72 72 6f 77 22 3e 54 68 69 73 20 69 73 20 6e 6f 74 20 61 20 66 61 75 6c 74 2c 20 6a 75 73 74 20 61 6e 20 61 63 63 69 64 65 6e 74 20 74 68 61 74 20 77 61 73 20 6e 6f 74 20 69 6e 74 65 6e 74 69 6f 6e 61 6c 2e 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 3c 2f 62 6f 64 79 3e 0a 0a 3c 2f 68 74 6d 6c 3e 0a 0d 0a 30 0d 0a 0d 0a Data Ascii: der text-block-narrow">This is not a fault, just an accident that was not intentional.</p> </div> </div></body></html>0