Edit tour

Windows Analysis Report
https://hy.markkasmick.click/cx/tbSgVco_akr35UznLBgMmL_dGwr4A9B_vyg2WwEB0w1LRjKjQMyEnB89mCfTRy8oqnbpdFunqinBhx0TsHvSJdUHnbksc3kdcKecoDvVHa5LAm46atMmRo3D2CHoEu2bmOqt4Ic8O_7AE7Igwgbi5c8zmZf6Fqp*_XqcjREPr7609oL7vKm8FfjGLhMetr2oxtpR3ywH4BUElgc7EI7usxj8CJYEUMktwlb7YUzPvYQ7P1PilEV0LqiXI5sm6QVF4ZGl5TIXhn

Overview

General Information

Sample URL:	https://hy.markkasmick.click/cx/tbSgVco_akr35UznLBgMmL_dGwr4A9B_vyg2WwEB0w1LRjKjQMyEnB89mCfTRy8oqnbpdFunqinBhx0TsHvSJdUHnbksc3kdcKecoDvVHa5LAm46atMmRo3D2CHoEu2bmOqt4Ic8O_7AE7Igwgbi5c8zmZf6Fqp*_XqcjR
Analysis ID:	1533052
Infos:

Detection

Score:	48
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus detection for URL or domain

Form action URLs do not match main URL

HTML body contains low number of good links

HTML page contains hidden javascript code

HTML title does not match URL

Classification

Process Tree

System is w10x64

chrome.exe (PID: 1904 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 2816 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2260,i,10608258172845983546,5722045760868179073,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 2552 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://hy.markkasmick.click/cx/tbSgVco_akr35UznLBgMmL_dGwr4A9B_vyg2WwEB0w1LRjKjQMyEnB89mCfTRy8oqnbpdFunqinBhx0TsHvSJdUHnbksc3kdcKecoDvVHa5LAm46at*Mm*Ro3D2CHoEu2bmOqt4Ic8O_7AE7Igwgbi5c8zmZf6Fqp*_XqcjREPr7609oL7vKm8FfjGLhMetr2oxtpR3ywH4BUElgc7EI7usxj8CJYEUMktwlb7YUzPvYQ7P1PilEV0LqiXI5sm6QVF4ZGl5TIXhnQLOG0kl6WQ0miiZysBfhaNojnPTUvisUUkwOp2fYTxkXEIhZ7ESJ7qXYLxQbm*y4RJVeZZZ3RY5rX8W5t8cudSM9Zx7UaxgLH56aOv81v4QfUnzroT9v*7LR3jPEjz*YXr2LwuykYQnzvV6boWl*o*gU4jkPE6MocRRlRoC6uUx2e1Wseo8MqGWTT2uXo4HbQDneiMF84sQ34*3TnbAxXWu8xLbb_mAOQxUTA3T5TUUZKeU3ziolM8TSVV5Y5LQTFGtNArddwJKdWCb_cLYMxUJpZ3cqM_A" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus detection for URL or domain

Source: http://google.com

URL Reputation: Label: malware

Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Form action: https://forms.hsforms.com/submissions/v3/public/submit/formsnext/multipart/6834707/b2b34cd6-93c2-44dd-9be1-38727a6852ef managedmethods hsforms
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Form action: https://forms.hsforms.com/submissions/v3/public/submit/formsnext/multipart/6834707/b2b34cd6-93c2-44dd-9be1-38727a6852ef managedmethods hsforms
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Form action: https://forms.hsforms.com/submissions/v3/public/submit/formsnext/multipart/6834707/b2b34cd6-93c2-44dd-9be1-38727a6852ef managedmethods hsforms
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Form action: https://forms.hsforms.com/submissions/v3/public/submit/formsnext/multipart/6834707/b2b34cd6-93c2-44dd-9be1-38727a6852ef managedmethods hsforms
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Form action: https://forms.hsforms.com/submissions/v3/public/submit/formsnext/multipart/6834707/f054981c-21de-4ec6-8c5a-6dd37a6f0a15 managedmethods hsforms
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Form action: https://forms.hsforms.com/submissions/v3/public/submit/formsnext/multipart/6834707/f054981c-21de-4ec6-8c5a-6dd37a6f0a15 managedmethods hsforms
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Form action: https://forms.hsforms.com/submissions/v3/public/submit/formsnext/multipart/6834707/f054981c-21de-4ec6-8c5a-6dd37a6f0a15 managedmethods hsforms

Source: https://get.managedmethods.com/cloud-application-security-checklist

HTTP Parser: Number of links: 0

Source: https://ald.my.id/

HTTP Parser: Base64 decoded: ai=CzpLmhOAMZ46MNdLp78EPn-jPyQnboZvOeo-Yz9CQE6yFu4fTOBABIKuv2JABYMkGoAGlxfPnA8gBAagDAcgDywSqBPkBT9Cep1guQNdWpPsrmNwBIZ2KcXe07fxUOlQoQaI0RONvZdfXKhZbO6f9rnrbOMDO2JUpIadxb9srUNd2EBCTqAdj3bLPaSgZ3jIVIzl7UU-IOFO-V5Pq9ASgMq0BtJZFMZtnquXJX1jNN5ovREKhjebK0Q2wP9x...

Source: https://get.managedmethods.com/cloud-application-security-checklist

HTTP Parser: Title: Cloud App Security Checklist | Google & Microsoft 365 Security does not match URL

Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-PGFSK28
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://www.youtube.com/embed/t3Gl92wBomo?feature=oembed
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-PGFSK28
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://www.youtube.com/embed/t3Gl92wBomo?feature=oembed
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-PGFSK28
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://www.youtube.com/embed/t3Gl92wBomo?feature=oembed
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-PGFSK28
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://www.youtube.com/embed/t3Gl92wBomo?feature=oembed
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/927141988?random=1728897184780&cv=11&fst=1728897184780&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200zb810608771&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&ref=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&hn=www.googleadservices.com&frm=0&tiba=Automating%20Cybersecurity%20%26%20Student%20Safety%20with%20ManagedMethods&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/927141988?random=1728897184905&cv=11&fst=1728897184905&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200zb810608771&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&ref=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&hn=www.googleadservices.com&frm=0&tiba=Automating%20Cybersecurity%20%26%20Student%20Safety%20with%20ManagedMethods&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://td.doubleclick.net/td/ga/rul?tid=G-KLDE7YGZXK&gacid=1437732794.1728897184&gtm=45je4a90v879629933z8810608771za200zb810608771&dma=0&gcs=G111&gcd=13r3r3r3r5l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=101671035~101686685&z=888808190
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: Iframe src: https://x.adroll.com/pxl/iframe_content.html?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-PGFSK28
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-PGFSK28
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Iframe src: https://td.doubleclick.net/td/ga/rul?tid=G-KLDE7YGZXK&gacid=1437732794.1728897184&gtm=45je4a90v879629933z8810608771za200zb810608771&dma=0&gcs=G111&gcd=13r3r3r3r5l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=101671035~101686685&z=411358905
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/927141988?random=1728903365512&cv=11&fst=1728903365512&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&ref=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&hn=www.googleadservices.com&frm=0&tiba=Cloud%20App%20Security%20Checklist%20%7C%20Google%20%26%20Microsoft%20365%20Security&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/927141988?random=1728903365624&cv=11&fst=1728903365624&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&ref=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&hn=www.googleadservices.com&frm=0&tiba=Cloud%20App%20Security%20Checklist%20%7C%20Google%20%26%20Microsoft%20365%20Security&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-PGFSK28
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Iframe src: https://td.doubleclick.net/td/ga/rul?tid=G-KLDE7YGZXK&gacid=1437732794.1728897184&gtm=45je4a90v879629933z8810608771za200zb810608771&dma=0&gcs=G111&gcd=13r3r3r3r5l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=101671035~101686685&z=411358905
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/927141988?random=1728903365512&cv=11&fst=1728903365512&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&ref=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&hn=www.googleadservices.com&frm=0&tiba=Cloud%20App%20Security%20Checklist%20%7C%20Google%20%26%20Microsoft%20365%20Security&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/927141988?random=1728903365624&cv=11&fst=1728903365624&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&ref=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&hn=www.googleadservices.com&frm=0&tiba=Cloud%20App%20Security%20Checklist%20%7C%20Google%20%26%20Microsoft%20365%20Security&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: Iframe src: https://x.adroll.com/pxl/iframe_content.html?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=55268102626.38289&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&advertisable=TSSSGOL6MBFETCAHMJBJCQ

Source: https://ald.my.id/	HTTP Parser: No favicon
Source: https://ald.my.id/	HTTP Parser: No favicon
Source: https://ald.my.id/	HTTP Parser: No favicon
Source: https://ald.my.id/	HTTP Parser: No favicon
Source: https://ald.my.id/	HTTP Parser: No favicon
Source: https://ald.my.id/	HTTP Parser: No favicon
Source: https://ald.my.id/	HTTP Parser: No favicon
Source: https://ald.my.id/	HTTP Parser: No favicon
Source: https://ald.my.id/	HTTP Parser: No favicon

Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: No <meta name="copyright".. found
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: No <meta name="copyright".. found
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: No <meta name="copyright".. found
Source: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5	HTTP Parser: No <meta name="copyright".. found
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: No <meta name="copyright".. found
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: No <meta name="copyright".. found
Source: https://get.managedmethods.com/cloud-application-security-checklist	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.7:49717 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.7:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.7:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.7:50250 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.7:50383 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60

Source: global traffic	HTTP traffic detected: GET /cx/tbSgVco_akr35UznLBgMmL_dGwr4A9B_vyg2WwEB0w1LRjKjQMyEnB89mCfTRy8oqnbpdFunqinBhx0TsHvSJdUHnbksc3kdcKecoDvVHa5LAm46atMmRo3D2CHoEu2bmOqt4Ic8O_7AE7Igwgbi5c8zmZf6Fqp_XqcjREPr7609oL7vKm8FfjGLhMetr2oxtpR3ywH4BUElgc7EI7usxj8CJYEUMktwlb7YUzPvYQ7P1PilEV0LqiXI5sm6QVF4ZGl5TIXhnQLOG0kl6WQ0miiZysBfhaNojnPTUvisUUkwOp2fYTxkXEIhZ7ESJ7qXYLxQbmy4RJVeZZZ3RY5rX8W5t8cudSM9Zx7UaxgLH56aOv81v4QfUnzroT9v7LR3jPEjzYXr2LwuykYQnzvV6boWlogU4jkPE6MocRRlRoC6uUx2e1Wseo8MqGWTT2uXo4HbQDneiMF84sQ343TnbAxXWu8xLbb_mAOQxUTA3T5TUUZKeU3ziolM8TSVV5Y5LQTFGtNArddwJKdWCb_cLYMxUJpZ3cqM_A HTTP/1.1Host: hy.markkasmick.clickConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /imp/70341?param_3=nortb_over_ttl&nrb HTTP/1.1Host: hy.markkasmick.clickConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: my7recovery.blogspot.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?arsae=https%3A%2F%2Fmy7recovery.blogspot.com%2F&arsae_ref= HTTP/1.1Host: ald.my.idConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://my7recovery.blogspot.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ald.my.idConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://my7recovery.blogspot.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2c9ae318eca212bf3b3eaa782940d04f
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: ald.my.idConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2c9ae318eca212bf3b3eaa782940d04f
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ald.my.idConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2c9ae318eca212bf3b3eaa782940d04f
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ald.my.idConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=2c9ae318eca212bf3b3eaa782940d04f
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /img/b/R29vZ2xl/AVvXsEhV2mufCwic-NGC9wpgCnQ_tNbFA-l8rrqbieFyIxc-hwTYbS3a1TQOLU60Y3imqy1yV2Ra0mLvkxr0mtirFQzRdl8HUIFGwZeHbN-1ZYAFW0XPgAB4Joue2DmmjAJHamVEq0bhi80fVeW8ke7prIDNkNsCHk_8H_jfvg2VB1AGMJndzaxuFOSC_HidiCg3/s1600/motor%20insurance%20quote.jpg HTTP/1.1Host: blogger.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /img/b/R29vZ2xl/AVvXsEhTZef2smB-4WzKsOkrjN080E4YRXcWmVbIq6jcTxUMgr56k-eUFqy-Jm7D6EXXqB1WQfk-XifK51XMT1BsWcREtTRxd8-6dGx6m_nWYjXwYtdWuSM5xKwP0FgJhf4pxe8oEKqIizH5_bYtcQc3HUz44jaH9QX0JyjQKcO_NqOZwd1QZx9dzpk_d77Uaw/s300/Best%20Auto%20Insurance.png HTTP/1.1Host: blogger.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /igniel/blogger/master/iglo/v2.js HTTP/1.1Host: cdn.rawgit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /stats/0.php?4525035&@f16&@g1&@h1&@i1&@j1728897152149&@k0&@l1&@mCsh%20Verify&@n0&@ohttps%3A%2F%2Fald.my.id%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:105209297&@b3:1728897152&@b4:js15_as.js&@b5:-240&@a-_0.2.1&@vhttps%3A%2F%2Fald.my.id%2F&@w HTTP/1.1Host: s4.histats.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /img/b/R29vZ2xl/AVvXsEhTZef2smB-4WzKsOkrjN080E4YRXcWmVbIq6jcTxUMgr56k-eUFqy-Jm7D6EXXqB1WQfk-XifK51XMT1BsWcREtTRxd8-6dGx6m_nWYjXwYtdWuSM5xKwP0FgJhf4pxe8oEKqIizH5_bYtcQc3HUz44jaH9QX0JyjQKcO_NqOZwd1QZx9dzpk_d77Uaw/s300/Best%20Auto%20Insurance.png HTTP/1.1Host: blogger.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /img/b/R29vZ2xl/AVvXsEhV2mufCwic-NGC9wpgCnQ_tNbFA-l8rrqbieFyIxc-hwTYbS3a1TQOLU60Y3imqy1yV2Ra0mLvkxr0mtirFQzRdl8HUIFGwZeHbN-1ZYAFW0XPgAB4Joue2DmmjAJHamVEq0bhi80fVeW8ke7prIDNkNsCHk_8H_jfvg2VB1AGMJndzaxuFOSC_HidiCg3/s1600/motor%20insurance%20quote.jpg HTTP/1.1Host: blogger.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /stats/0.php?4525035&@f16&@g1&@h1&@i1&@j1728897152149&@k0&@l1&@mCsh%20Verify&@n0&@ohttps%3A%2F%2Fald.my.id%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:105209297&@b3:1728897152&@b4:js15_as.js&@b5:-240&@a-_0.2.1&@vhttps%3A%2F%2Fald.my.id%2F&@w HTTP/1.1Host: s4.histats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /gh/igniel/blogger@master/iglo/v2.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /e/?v=1a&pid=5200&site=1&l=https%3A%2F%2Fald.my.id%2F&j=https%3A%2F%2Fald.my.id%2F HTTP/1.1Host: e.dtscout.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /idg/?su=1040172889715587758A2B28B3F6BBD2 HTTP/1.1Host: t.dtscout.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: m=1; st=1; df=1728897155; l=1040172889715587758A2B28B3F6BBD2
Source: global traffic	HTTP traffic detected: GET /pv/?_a=v&_h=ald.my.id&_ss=1dqyail9op&_pv=1&_ls=0&_u1=1&_u3=1&_cc=us&_pl=d&_cbid=6lao&_cb=_dtspv.c HTTP/1.1Host: t.dtscout.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: m=1; st=1; df=1728897155; l=1040172889715587758A2B28B3F6BBD2
Source: global traffic	HTTP traffic detected: GET /pd/dtscout HTTP/1.1Host: pd.sharethis.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/html/r20241009/r20190131/zrt_lookup_fy2021.html HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-2542884292174911&output=html&h=600&twa=1&slotname=3704632056&adk=3031347918&adf=2571581873&pi=t.ma~as.3704632056&w=243&abgtt=3&fwrn=4&fwrnh=100&lmt=1728897154&rafmt=1&armr=4&format=243x600&url=https%3A%2F%2Fald.my.id%2F&fwr=0&rs=1&rh=250&rw=243&rpe=1&resp_fmts=4&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728897152700&bpp=11&bdt=1788&idt=1670&shv=r20241009&mjsv=m202410080101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&correlator=2303771533125&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=1037&ady=6&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C95338737%2C44798934%2C95343454%2C95344778&oid=2&pvsid=3856392468538169&tmod=1611993855&uas=0&nvt=2&ref=https%3A%2F%2Fald.my.id%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaoeE%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=1915 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-2542884292174911&output=html&h=250&slotname=3704632056&adk=1080356790&adf=1713894358&pi=t.ma~as.3704632056&w=300&abgtt=3&lmt=1728897154&format=300x250&url=https%3A%2F%2Fald.my.id%2F&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728897152711&bpp=36&bdt=1799&idt=1960&shv=r20241009&mjsv=m202410080101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=243x600&correlator=2303771533125&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=525&ady=100&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C95338737%2C44798934%2C95343454%2C95344778&oid=2&pvsid=3856392468538169&tmod=1611993855&uas=0&nvt=2&ref=https%3A%2F%2Fald.my.id%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=2199 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-2542884292174911&output=html&adk=1812271804&adf=3025194257&abgtt=3&lmt=1728897154&plaf=1%3A2%2C2%3A2%2C7%3A2&plat=1%3A128%2C2%3A128%2C3%3A128%2C4%3A128%2C8%3A128%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fald.my.id%2F&pra=7&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aicel=33&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&aiict=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728897152747&bpp=5&bdt=1835&idt=2179&shv=r20241009&mjsv=m202410080101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=243x600%2C300x250&nras=1&correlator=2303771533125&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C95338737%2C44798934%2C95343454%2C95344778&oid=2&pvsid=3856392468538169&tmod=1611993855&uas=0&nvt=2&fsapi=1&ref=https%3A%2F%2Fald.my.id%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=2206 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /b/p?id=wu!&lm=0&ts=1728897155274&dn=AFWU&iso=0&pu=https%3A%2F%2Fald.my.id%2F&r=https%3A%2F%2Fald.my.id%2F&t=Csh%20Verify&chpv=10.0.0&chuav=Google%20Chrome%3Bv%3D117.0.5938.134%2C%20Not%3BA%3DBrand%3Bv%3D8.0.0.0%2C%20Chromium%3Bv%3D117.0.5938.134&chp=Windows&chmob=0&chua=Google%20Chrome%3Bv%3D117%2C%20Not%3BA%3DBrand%3Bv%3D8%2C%20Chromium%3Bv%3D117 HTTP/1.1Host: ic.tynt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pd/dtscout?_t_=px&url=https%3A%2F%2Fald.my.id%2F&event_source=dtscout&rnd=0.9666548919402609&exptid=ZHoAA2cM4IQAAAAICdw7Aw%3D%3D&fcmp=false HTTP/1.1Host: pd.sharethis.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __stid=ZHoAA2cM4IQAAAAICdw7Aw==; __stidv=2
Source: global traffic	HTTP traffic detected: GET /deb/v2?id=wu!&dn=AFWU&cc=1&chpv=10.0.0&chuav=Google%20Chrome%3Bv%3D117.0.5938.134%2C%20Not%3BA%3DBrand%3Bv%3D8.0.0.0%2C%20Chromium%3Bv%3D117.0.5938.134&chp=Windows&chmob=0&chua=Google%20Chrome%3Bv%3D117%2C%20Not%3BA%3DBrand%3Bv%3D8%2C%20Chromium%3Bv%3D117&r=https%3A%2F%2Fald.my.id%2F&pu=https%3A%2F%2Fald.my.id%2F HTTP/1.1Host: de.tynt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /widget/?d=1040172889715587758A2B28B3F6BBD2&nid=300&p=2114454483&t=240&s=1280x1024x24&u=https%3A%2F%2Fald.my.id%2F&r=https%3A%2F%2Fald.my.id%2F HTTP/1.1Host: t.dtscdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?partner=137085098&mapped=1040172889715587758A2B28B3F6BBD2 HTTP/1.1Host: pixel.onaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /lt/c/3825/lt.min.js HTTP/1.1Host: tags.crwdcntrl.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-2542884292174911?href=https%3A%2F%2Fald.my.id&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /361726.gif?n=1&33random=1728897157218.1 HTTP/1.1Host: rc.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /e/?v=1a&pid=5200&site=1&l=https%3A%2F%2Fald.my.id%2F&j=https%3A%2F%2Fald.my.id%2F HTTP/1.1Host: e.dtscout.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: m=1; st=1; df=1728897155; l=1040172889715587758A2B28B3F6BBD2
Source: global traffic	HTTP traffic detected: GET /361726.gif?n=1&33random=1728897157218.4 HTTP/1.1Host: rc.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pv/?_a=v&_h=ald.my.id&_ss=1dqyail9op&_pv=1&_ls=0&_u1=1&_u3=1&_cc=us&_pl=d&_cbid=6lao&_cb=_dtspv.c HTTP/1.1Host: t.dtscout.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: m=1; st=1; df=1728897155; l=1040172889715587758A2B28B3F6BBD2
Source: global traffic	HTTP traffic detected: GET /b/p?id=wu!&lm=0&ts=1728897155274&dn=AFWU&iso=0&pu=https%3A%2F%2Fald.my.id%2F&r=https%3A%2F%2Fald.my.id%2F&t=Csh%20Verify&chpv=10.0.0&chuav=Google%20Chrome%3Bv%3D117.0.5938.134%2C%20Not%3BA%3DBrand%3Bv%3D8.0.0.0%2C%20Chromium%3Bv%3D117.0.5938.134&chp=Windows&chmob=0&chua=Google%20Chrome%3Bv%3D117%2C%20Not%3BA%3DBrand%3Bv%3D8%2C%20Chromium%3Bv%3D117 HTTP/1.1Host: ic.tynt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=OY/j22cM4IWn+sRSNrMbgw==; pids=%5B%7B%22p%22%3A%220c1ae001bf%22%2C%22f%22%3A3%2C%22ts%22%3A1728897157218%7D%2C%7B%22p%22%3A%224bbb341d17%22%2C%22f%22%3A1%2C%22ts%22%3A1728897157218%7D%2C%7B%22p%22%3A%22e9b03986ff%22%2C%22f%22%3A2%2C%22ts%22%3A1728897157218%7D%5D
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /361726.gif?n=1&33random=1728897157218.6 HTTP/1.1Host: rc.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dpx?cid=11411&us_privacy=&33random=1728897157218.2&ref=https%3A%2F%2Fald.my.id%2F HTTP/1.1Host: i.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dpx?cid=11411&us_privacy=&33random=1728897157218.5&ref=https%3A%2F%2Fald.my.id%2F HTTP/1.1Host: i.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pd/dtscout HTTP/1.1Host: pd.sharethis.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __stid=ZHoAA2cM4IQAAAAICdw7Aw==; __stidv=2
Source: global traffic	HTTP traffic detected: GET /deb/v2?id=wu!&dn=AFWU&cc=1&chpv=10.0.0&chuav=Google%20Chrome%3Bv%3D117.0.5938.134%2C%20Not%3BA%3DBrand%3Bv%3D8.0.0.0%2C%20Chromium%3Bv%3D117.0.5938.134&chp=Windows&chmob=0&chua=Google%20Chrome%3Bv%3D117%2C%20Not%3BA%3DBrand%3Bv%3D8%2C%20Chromium%3Bv%3D117&r=https%3A%2F%2Fald.my.id%2F&pu=https%3A%2F%2Fald.my.id%2F HTTP/1.1Host: de.tynt.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=OY/j22cM4IWn+sRSNrMbgw==; pids=%5B%7B%22p%22%3A%220c1ae001bf%22%2C%22f%22%3A3%2C%22ts%22%3A1728897157218%7D%2C%7B%22p%22%3A%224bbb341d17%22%2C%22f%22%3A1%2C%22ts%22%3A1728897157218%7D%2C%7B%22p%22%3A%22e9b03986ff%22%2C%22f%22%3A2%2C%22ts%22%3A1728897157218%7D%5D
Source: global traffic	HTTP traffic detected: GET /track/cmf/generic?ttd_pid=xksw9la&ttd_tpi=1&gdpr=0 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /widget/?d=1040172889715587758A2B28B3F6BBD2&nid=300&p=2114454483&t=240&s=1280x1024x24&u=https%3A%2F%2Fald.my.id%2F&r=https%3A%2F%2Fald.my.id%2F HTTP/1.1Host: t.dtscdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=1040172889715587758A2B28B3F6BBD2
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CtiHwhOAMZ46MNdLp78EPn-jPyQnboZvOeo-Yz9CQE6yFu4fTOBABIKuv2JABYMkGoAGlxfPnA8gBAagDAcgDywSqBPYBT9Cep1guQNdWpPsrmNwBIZ2KcXe07fxUOlQoQaI0RONvZdfXKhZbO6f9rnrbOMDO2JUpIadxb9srUNd2EBCTqAdj3bLPaSgZ3jIVIzl7UU-IOFO-V5Pq9ASgMq0BtJZFMZtnquXJX1jNN5ovREKhjebK0Q2wP9xqO6BvKPIxFbDLSB9rwzaBdV3TiycQPFc9dN1KSBU7y9IVonucXuTQenZiUDUbEqL70-SjNPPllWiqjrLsIa4giBKMUBVgzttceF9DcNJAXT_EQ1EZbIvirQl9N7dDWyKg4AUS43spAXbfbAAhQI0ZXvSgf8nZldvdjThdeSvqwAT4h4n_hwWIBYO-m49RkgUECAQYAZIFBAgFGASgBi6AB8O6jBioB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAf3wrEC2AcB8gcEEI2GdNIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WNiQjOfDjYkDmglMaHR0cHM6Ly9nZXQubWFuYWdlZG1ldGhvZHMuY29tL2sxMi1jeWJlcnNlY3VyaXR5LXNhZmV0eS1rMTJkaXZlP2dhZF9zb3VyY2U9NYAKAcgLAdoMEQoLENDnsMekuoOYgwESAgED2BMK0BUBmBYBgBcBshceChoIABIUcHViLTI1NDI4ODQyOTIxNzQ5MTEYABgBuhcCOAGyGAkSAqRmGC4iAQDQGAE&sigh=cJUMEGU_6cU&uach_m=%5BUACH%5D&ase=2&cid=CAQSTwDpaXnfhIVrKubni22jrvJ193s0SUtKenR05Ckkb7AzizqZ1SmYpmZnI8rh5H_O6MTsFcTZgu04yoCtRSVKUMBwl229eFS4BBBIVgak2CYYAQ&template_id=5021&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source=navigation-source, triggerReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-2542884292174911&output=html&h=250&slotname=3704632056&adk=1080356790&adf=1713894358&pi=t.ma~as.3704632056&w=300&abgtt=3&lmt=1728897154&format=300x250&url=https%3A%2F%2Fald.my.id%2F&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728897152711&bpp=36&bdt=1799&idt=1960&shv=r20241009&mjsv=m202410080101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=243x600&correlator=2303771533125&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=525&ady=100&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C95338737%2C44798934%2C95343454%2C95344778&oid=2&pvsid=3856392468538169&tmod=1611993855&uas=0&nvt=2&ref=https%3A%2F%2Fald.my.id%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=2199Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /1000.gif?memo=CP6JFhoNCIXBs7gGEgUI6AcQAEIASgA HTTP/1.1Host: rc.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rlas3=Br7g69ymsr9T4afkMmWoSWJwh7sRpLhxpejeyPFRRaA=; pxrc=CAA=
Source: global traffic	HTTP traffic detected: GET /api/sync?pid=5324&_=2 HTTP/1.1Host: pippio.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /lt/c/16311/sync.min.js HTTP/1.1Host: tags.crwdcntrl.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://cdn-tc.33across.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pd/dtscout?_t_=px&url=https%3A%2F%2Fald.my.id%2F&event_source=dtscout&rnd=0.9666548919402609&exptid=ZHoAA2cM4IQAAAAICdw7Aw%3D%3D&fcmp=false HTTP/1.1Host: pd.sharethis.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __stid=ZHoAA2cM4IQAAAAICdw7Aw==; __stidv=2
Source: global traffic	HTTP traffic detected: GET /w/1.0/cm?id=e508c905-ddce-4732-92a4-0b0f5b72a28f&r=https%3A%2F%2Fidsync.rlcdn.com%2F396846.gif%3Fserved_by%3Devergreen%26partner_uid%3D HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /lt/c/3825/lt.min.js HTTP/1.1Host: tags.crwdcntrl.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/sync?pid=5324&it=1&iv=bb223ec720efd1a5bfb42707226896385053ef0e7abb66ab4369801d74f64181791426b5417dce21&_=2 HTTP/1.1Host: pippio.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: did=tFq1X5sQFdt_tbrT; didts=1728897158; nnls=; pxrc=CAA=
Source: global traffic	HTTP traffic detected: GET /api/sync?pid=5324&_=2 HTTP/1.1Host: pippio.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: did=tFq1X5sQFdt_tbrT; didts=1728897158; nnls=; pxrc=CAA=
Source: global traffic	HTTP traffic detected: GET /track/cmb/generic?ttd_pid=xksw9la&ttd_tpi=1&gdpr=0 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=7d931d72-b6cd-40d8-9aaa-91033ac03d95; TDCPM=CAEYBSgCMgsI0p-yyuKOtj0QBTgB
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-2542884292174911?href=https%3A%2F%2Fald.my.id&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxUmsMqtSSePcx4h11wfZV5rxyGVnJAk3oRbeOgKg7Io4obCBjjBWNKhsHkvPsx3lQdQWEDqC1eiMud2YT43HJ5HwRq_9qwIjdhbtz3yndJAe8FOk_FaXhRHtllCX0s7Nhk82CqRrQ==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4ODk3MTU3LDYyNjAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9hbGQubXkuaWQvIixudWxsLFtbOCwidGFCZ0d2UlFDMjAiXSxbOSwiZW4tVVMiXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w/1.0/cm?cc=1&id=e508c905-ddce-4732-92a4-0b0f5b72a28f&r=https%3A%2F%2Fidsync.rlcdn.com%2F396846.gif%3Fserved_by%3Devergreen%26partner_uid%3D HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=ff675d27-c17a-4d2e-b7ab-ec29a6304351\|1728897158
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /?partner=147&mapped=7d931d72-b6cd-40d8-9aaa-91033ac03d95&icm&gdpr=0&gdpr_consent=&cver HTTP/1.1Host: pixel.onaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookie=10907476198d4755; done_redirects147=1
Source: global traffic	HTTP traffic detected: GET /396846.gif?served_by=evergreen&partner_uid=790d1d18-a5ba-44b9-b204-a432fb8c1174 HTTP/1.1Host: idsync.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rlas3=cFd4eRXc6kRT4afkMmWoSWJwh7sRpLhxpejeyPFRRaA=; pxrc=CIbBs7gGEgUI6AcQABIFCOhHEAA=
Source: global traffic	HTTP traffic detected: GET /?partner=109&icm&cver&gdpr=0&smartmap=1&redirect=tags.bluekai.com%2Fsite%2F33141%3F%26id%3D%25m HTTP/1.1Host: pixel.onaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookie=10907476198d4755; done_redirects147=1; done_redirects109=1
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxUmsMqtSSePcx4h11wfZV5rxyGVnJAk3oRbeOgKg7Io4obCBjjBWNKhsHkvPsx3lQdQWEDqC1eiMud2YT43HJ5HwRq_9qwIjdhbtz3yndJAe8FOk_FaXhRHtllCX0s7Nhk82CqRrQ==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4ODk3MTU3LDYyNjAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9hbGQubXkuaWQvIixudWxsLFtbOCwidGFCZ0d2UlFDMjAiXSxbOSwiZW4tVVMiXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /lt/c/16311/sync.min.js HTTP/1.1Host: tags.crwdcntrl.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /396846.gif?served_by=evergreen&partner_uid=790d1d18-a5ba-44b9-b204-a432fb8c1174 HTTP/1.1Host: idsync.rlcdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pxrc=CIbBs7gGEgUI6AcQABIFCOhHEAA=; rlas3=oidxsW5ixWRT4afkMmWoSWJwh7sRpLhxpejeyPFRRaA=
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxX5zRX28eITzjJdCpLjeEeUzny5Gtt2HV7BffKc_f32tqAyqI-vwhlcT3j6MPwthxeOORbGEFlfHog780WZrbkKPCX_VEvso6NYDKW9wlcY2qsAZbhNI71RowP_G9I8NVVHim-fGLp3GD0qarIAmwEyoDTZ7JnQ7VvvpvSNA_P7mst2xnB2o5NQK7q9/_/ad-background./inlinetextads?_gads_footer./adgear2-/ads_top_ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /utsync.ashx?eid=50131&et=13&cid=lr&fp=ZHoAA2cM4IQAAAAICdw7Aw%3D%3D&gdpr=0&gdpr_consent=&return=https%3A%2F%2Fidsync.rlcdn.com%2F395886.gif%3Fpartner_uid%3D%5BPersonID%5D HTTP/1.1Host: ml314.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.sharethis.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /386076.gif?partner_uid=ZHoAA2cM4IQAAAAICdw7Aw%3D%3D&gdpr=0&gdpr_consent= HTTP/1.1Host: idsync.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.sharethis.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pxrc=CIbBs7gGEgUI6AcQABIFCOhHEAA=; rlas3=oidxsW5ixWRT4afkMmWoSWJwh7sRpLhxpejeyPFRRaA=
Source: global traffic	HTTP traffic detected: GET /track/cmf/generic?ttd_pid=1h1y1a7&ttd_tpi=1&gdpr=0&gdpr_consent= HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.sharethis.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=7d931d72-b6cd-40d8-9aaa-91033ac03d95; TDCPM=CAEYBSABKAIyCwjSn7LK4o62PRAFOAE.
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?pid=1mpb5m0&t=gif&gdpr=0&gdpr_consent= HTTP/1.1Host: ps.eyeota.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.sharethis.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /395886.gif?partner_uid=3647697138334302238 HTTP/1.1Host: idsync.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.sharethis.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pxrc=CIbBs7gGEgUI6AcQABIFCOhHEAA=; rlas3=7skOM0+eLylT4afkMmWoSWJwh7sRpLhxpejeyPFRRaA=
Source: global traffic	HTTP traffic detected: GET /6/map HTTP/1.1Host: bcp.crwdcntrl.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _cc_dc=1; _cc_id=d623ac854d7c5259de086b3e7c50fd78
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxX5zRX28eITzjJdCpLjeEeUzny5Gtt2HV7BffKc_f32tqAyqI-vwhlcT3j6MPwthxeOORbGEFlfHog780WZrbkKPCX_VEvso6NYDKW9wlcY2qsAZbhNI71RowP_G9I8NVVHim-fGLp3GD0qarIAmwEyoDTZ7JnQ7VvvpvSNA_P7mst2xnB2o5NQK7q9/_/ad-background./inlinetextads?_gads_footer./adgear2-/ads_top_ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVA2AfsAy6bl_orgjLa-ktICoGbho28bTgmHZldatP8mM9GwgjDSaR33p-zQ4Z3psf-T6y01RyIJMRcXpsGke0ygK7nxYIumXDTYW3tVyk60W-PkqmH1keGLWmdi96iIP5_4zM-Fg==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4ODk3MTYwLDQ3NzAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsNl0sbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsMV0sImh0dHBzOi8vYWxkLm15LmlkLyIsbnVsbCxbWzgsInRhQmdHdlJRQzIwIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /ttd?uid=7d931d72-b6cd-40d8-9aaa-91033ac03d95&gdpr=0&gdpr_consent= HTTP/1.1Host: sync.sharethis.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.sharethis.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __stid=ZHoAA2cM4IQAAAAICdw7Aw==; __stidv=2
Source: global traffic	HTTP traffic detected: GET /pixel/bounce/?pid=1mpb5m0&t=gif&gdpr=0&gdpr_consent= HTTP/1.1Host: ps.eyeota.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.sharethis.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mako_uid=1928a4d19e7-64f90000010f4043; SERVERID=16451~DM
Source: global traffic	HTTP traffic detected: GET /csync.ashx?fp=6fda36a68f67ef461be4d0b26fb6f2141b917bffc7362f122d9a6451b0460fdcf4cb09cee1a4f8eb&person_id=3647697138334302238&eid=50082 HTTP/1.1Host: ml314.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.sharethis.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pi=3647697138334302238
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxX0-0x5HivWeZLchiQ-nD7g2ILscryuZP_ALv6f3ICLAOJ-avY8-qKfwAdUk5OjIfQJNpUfSt6dcMucORzNFPmm-eBr07hAP4N-Gd6Dh2lmgPI8mzM7UY1l8KzcVJqhr_oszQslaA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4ODk3MTYxLDQ0OTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsNiw5XSxudWxsLDIsbnVsbCwiZW4iLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly9hbGQubXkuaWQvIixudWxsLFtbOCwidGFCZ0d2UlFDMjAiXSxbOSwiZW4tVVMiXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVA2AfsAy6bl_orgjLa-ktICoGbho28bTgmHZldatP8mM9GwgjDSaR33p-zQ4Z3psf-T6y01RyIJMRcXpsGke0ygK7nxYIumXDTYW3tVyk60W-PkqmH1keGLWmdi96iIP5_4zM-Fg==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4ODk3MTYwLDQ3NzAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsNl0sbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsMV0sImh0dHBzOi8vYWxkLm15LmlkLyIsbnVsbCxbWzgsInRhQmdHdlJRQzIwIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /csync.ashx?fp=6fda36a68f67ef461be4d0b26fb6f2141b917bffc7362f122d9a6451b0460fdcf4cb09cee1a4f8eb&person_id=3647697138334302238&eid=50082 HTTP/1.1Host: ml314.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pi=3647697138334302238
Source: global traffic	HTTP traffic detected: GET /ttd?uid=7d931d72-b6cd-40d8-9aaa-91033ac03d95&gdpr=0&gdpr_consent= HTTP/1.1Host: sync.sharethis.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __stid=ZHoAA2cM4IQAAAAICdw7Aw==; __stidv=2
Source: global traffic	HTTP traffic detected: GET /eyeota?uid=2vSdg0G_wj1oSR5uhhmamgKTQUQPGWo6UXUC2ilh8T3A&gdpr=0&gdpr_consent= HTTP/1.1Host: sync.sharethis.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.sharethis.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __stid=ZHoAA2cM4IQAAAAICdw7Aw==; __stidv=2
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxX0-0x5HivWeZLchiQ-nD7g2ILscryuZP_ALv6f3ICLAOJ-avY8-qKfwAdUk5OjIfQJNpUfSt6dcMucORzNFPmm-eBr07hAP4N-Gd6Dh2lmgPI8mzM7UY1l8KzcVJqhr_oszQslaA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4ODk3MTYxLDQ0OTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsNiw5XSxudWxsLDIsbnVsbCwiZW4iLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly9hbGQubXkuaWQvIixudWxsLFtbOCwidGFCZ0d2UlFDMjAiXSxbOSwiZW4tVVMiXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: my7recovery.blogspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /lt/c/3825/optimus_rules.json HTTP/1.1Host: tags.crwdcntrl.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plain;charset=UTF-8Accept: /Origin: https://ald.my.idSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eyeota?uid=2vSdg0G_wj1oSR5uhhmamgKTQUQPGWo6UXUC2ilh8T3A&gdpr=0&gdpr_consent= HTTP/1.1Host: sync.sharethis.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __stid=ZHoAA2cM4IQAAAAICdw7Aw==; __stidv=2
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /k12-cybersecurity-safety-k12dive?gad_source=5 HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAttribution-Reporting-Eligible: not-event-source, navigation-source;triggerReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /aclk?nis=6&sa=l&ai=CzpLmhOAMZ46MNdLp78EPn-jPyQnboZvOeo-Yz9CQE6yFu4fTOBABIKuv2JABYMkGoAGlxfPnA8gBAagDAcgDywSqBPkBT9Cep1guQNdWpPsrmNwBIZ2KcXe07fxUOlQoQaI0RONvZdfXKhZbO6f9rnrbOMDO2JUpIadxb9srUNd2EBCTqAdj3bLPaSgZ3jIVIzl7UU-IOFO-V5Pq9ASgMq0BtJZFMZtnquXJX1jNN5ovREKhjebK0Q2wP9xqO6BvKPIxFbDLSB9rwzaBdV3TiycQPFc9dN1KSBU7y9IVonucXuTQenZiUDUbEqL70-SjNPPllWiqjrLsIa4giBKMUBVgzttceF9DcNJAXT_EQ1EZbIvirUt_FiXB9fGyTNYWfJtjlL6HRgqlSaMByE5YNVwbSfjxlbjWsjlGZrBIwAT4h4n_hwWIBYO-m49RoAYugAfDuowYqAfVyRuoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgHmgaoB_PRG6gHltgbqAeqm7ECqAeDrbECqAfgvbECqAf_nrECqAffn7ECqAfKqbECqAfrpbECqAfqsbECqAeZtbECqAe-t7ECqAf4wrECqAf7wrEC2AcB0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpY2JCM58ONiQOxCVEO7X6GkChngAoBmAsByAsB2gwRCgsQ0Oewx6S6g5iDARICAQOqDQJVU8gNAdgTCtAVAZgWAfgWAYAXAbIXAhgBuhcCOAGyGAkSAqRmGC4iAQDQGAE&ae=1&ase=2&gclid=EAIaIQobChMIjt6N58ONiQMV0vQ7Ah0f9DOZEAEYASAAEgKBIvD_BwE&num=1&cid=CAQSTwDpaXnfhIVrKubni22jrvJ193s0SUtKenR05Ckkb7AzizqZ1SmYpmZnI8rh5H_O6MTsFcTZgu04yoCtRSVKUMBwl229eFS4BBBIVgak2CYYAQ&sig=AOD64_3gZVqtoSijFnTKmu_DnIf-3Ae7vw&client=ca-pub-2542884292174911&rf=1&nb=8&act=1&ri=1&adurl=https://get.managedmethods.com/k12-cybersecurity-safety-k12dive%3Fgad_source%3D5 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: not-event-source=trigger, navigation-sourceReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-2542884292174911&output=html&h=250&slotname=3704632056&adk=1080356790&adf=1713894358&pi=t.ma~as.3704632056&w=300&abgtt=3&lmt=1728897154&format=300x250&url=https%3A%2F%2Fald.my.id%2F&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728897152711&bpp=36&bdt=1799&idt=1960&shv=r20241009&mjsv=m202410080101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=243x600&correlator=2303771533125&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=525&ady=100&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C95338737%2C44798934%2C95343454%2C95344778&oid=2&pvsid=3856392468538169&tmod=1611993855&uas=0&nvt=2&ref=https%3A%2F%2Fald.my.id%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=2199Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cooki
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/cos-i18n/static-1.53/bundles/project.js HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: my7recovery.blogspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /lt/c/3825/optimus_rules.json HTTP/1.1Host: tags.crwdcntrl.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _cc_dc=1; _cc_id=d623ac854d7c5259de086b3e7c50fd78
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/6834707/hub_generated/module_assets/25372454157/1581034302168/module_25372454157_Button.min.css HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/6834707/hub_generated/module_assets/175893307026/1723836629600/module_175893307026_Testimonials_Slider_Overlapping.min.css HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/6834707/hub_generated/template_assets/175647721775/1728330106102/Marketplace/Inbound_Pixels/Inspire/Coded_Files/inspire_hero_2024_redesign.min.css HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/6834707/hub_generated/template_assets/24340422591/1579892512031/Marketplace/Inbound_Pixels/Inspire/Coded_Files/reset.min.css HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /ajax/libs/slick-carousel/1.9.0/slick.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/slick-carousel/1.9.0/slick-theme.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/slick-carousel/1.9.0/slick.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_hcms/forms/v2.js HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /hub/7052064/hub_generated/template_assets/1728333327502/hubspot/hubspot_default/shared/responsive/layout.min.css HTTP/1.1Host: 7052064.fs1.hubspotusercontent-na1.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/cos-i18n/static-1.53/bundles/project.js HTTP/1.1Host: get.managedmethods.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CzpLmhOAMZ46MNdLp78EPn-jPyQnboZvOeo-Yz9CQE6yFu4fTOBABIKuv2JABYMkGoAGlxfPnA8gBAagDAcgDywSqBPkBT9Cep1guQNdWpPsrmNwBIZ2KcXe07fxUOlQoQaI0RONvZdfXKhZbO6f9rnrbOMDO2JUpIadxb9srUNd2EBCTqAdj3bLPaSgZ3jIVIzl7UU-IOFO-V5Pq9ASgMq0BtJZFMZtnquXJX1jNN5ovREKhjebK0Q2wP9xqO6BvKPIxFbDLSB9rwzaBdV3TiycQPFc9dN1KSBU7y9IVonucXuTQenZiUDUbEqL70-SjNPPllWiqjrLsIa4giBKMUBVgzttceF9DcNJAXT_EQ1EZbIvirUt_FiXB9fGyTNYWfJtjlL6HRgqlSaMByE5YNVwbSfjxlbjWsjlGZrBIwAT4h4n_hwWIBYO-m49RoAYugAfDuowYqAfVyRuoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgHmgaoB_PRG6gHltgbqAeqm7ECqAeDrbECqAfgvbECqAf_nrECqAffn7ECqAfKqbECqAfrpbECqAfqsbECqAeZtbECqAe-t7ECqAf4wrECqAf7wrEC2AcB0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpY2JCM58ONiQOxCVEO7X6GkChngAoBmAsByAsB2gwRCgsQ0Oewx6S6g5iDARICAQOqDQJVU8gNAdgTCtAVAZgWAfgWAYAXAbIXAhgBuhcCOAGyGAkSAqRmGC4iAQDQGAE&sigh=SRwlPYmeH-8&cid=CAQSTwDpaXnfhIVrKubni22jrvJ193s0SUtKenR05Ckkb7AzizqZ1SmYpmZnI8rh5H_O6MTsFcTZgu04yoCtRSVKUMBwl229eFS4BBBIVgak2CY&label=window_focus&gqid=hOAMZ5jgMoqI1LsP45DL0AQ&qqid=CI7ejefDjYkDFdL0OwIdH_QzmQ&return=0 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Cache-Control: max-age=0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-2542884292174911&output=html&h=250&slotname=3704632056&adk=1080356790&adf=1713894358&pi=t.ma~as.3704632056&w=300&abgtt=3&lmt=1728897154&format=300x250&url=https%3A%2F%2Fald.my.id%2F&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728897152711&bpp=36&bdt=1799&idt=1960&shv=r20241009&mjsv=m202410080101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=243x600&correlator=2303771533125&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=525&ady=100&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C95338737%2C44798934%2C95343454%2C95344778&oid=2&pvsid=3856392468538169&tmod=1611993855&uas=0&nvt=2&ref=https%3A%2F%2Fald.my.id%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=2199Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUk0zOnp7KPAX2H7PV04lK3EUODRxZQzvzNUj9mqfajXpAGNwRNeTOLJeNEyKAk
Source: global traffic	HTTP traffic detected: GET /6/data HTTP/1.1Host: bcp.crwdcntrl.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _cc_dc=1; _cc_id=d623ac854d7c5259de086b3e7c50fd78; _cc_cc="ACZ4nGNQSDEzMk5MtjA1STFPNjUytUxJNbAwSzJOBfIM0lLMLRiAIJ3nQd%2Bv%2F%2F%2F%2F8zPAAO%2B9D5ZMH2UZ%2FjMybq8HkQw%2FNk5hQRVZ%2FqcQVeDc0UPMqCK7910WQBU5vHgOmjHt655yo4o0%2FNdEFXjy%2BKYhqsi9Li1UgUunHrGhirxbgm7Tm5kHmFBFAKaJYtA%3D"; _cc_aud="ABR4nGNgYGBI53nQxwADzAwMXDPArEWtIJLxYT2QBABd2gUP"
Source: global traffic	HTTP traffic detected: GET /ajax/libs/slick-carousel/1.9.0/slick.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs-fs/hubfs/MM%20Logos/ManagedMethods_Logo_NarrowWidth_ForLightBackgrounds_HEX_Color_150px.png?width=150&height=51&name=ManagedMethods_Logo_NarrowWidth_ForLightBackgrounds_HEX_Color_150px.png HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /w3css/4/w3.css HTTP/1.1Host: www.w3schools.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://get.managedmethods.com/hs-fs/hub/6834707/hub_generated/module_assets/25372454157/1581034302168/module_25372454157_Button.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js HTTP/1.1Host: get.managedmethods.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /_hcms/forms/v2.js HTTP/1.1Host: get.managedmethods.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /hs-fs/hubfs/MM%20Logos/ManagedMethods_Logo_NarrowWidth_ForLightBackgrounds_HEX_Color_150px.png?width=150&height=51&name=ManagedMethods_Logo_NarrowWidth_ForLightBackgrounds_HEX_Color_150px.png HTTP/1.1Host: get.managedmethods.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /content-cwv-embed/static-1.1293/embed.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /hs/scriptloader/6834707.js HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/HubspotToolsMenu/static-1.354/js/index.js HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /content-cwv-embed/static-1.1293/embed.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c/hotjar-1110137.js?sv=6 HTTP/1.1Host: static.hotjar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/HubspotToolsMenu/static-1.354/js/index.js HTTP/1.1Host: get.managedmethods.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /hs/scriptloader/6834707.js HTTP/1.1Host: get.managedmethods.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /hubfs/Background.svg HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /_hcms/forms/embed/v3/form/6834707/b2b34cd6-93c2-44dd-9be1-38727a6852ef/json?hs_static_app=forms-embed&hs_static_app_version=1.6227&X-HubSpot-Static-App-Info=forms-embed-1.6227 HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /modules.02161fb4f8ebb73fb3f8.js HTTP/1.1Host: script.hotjar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/slick-carousel/1.9.0/ajax-loader.gif HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.9.0/slick-theme.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed/t3Gl92wBomo?feature=oembed HTTP/1.1Host: www.youtube.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://get.managedmethods.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /leadflows.js HTTP/1.1Host: js.hsleadflows.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://get.managedmethods.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collectedforms.js HTTP/1.1Host: js.hscollectedforms.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://get.managedmethods.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web-interactives-embed.js HTTP/1.1Host: js.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://get.managedmethods.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fb.js HTTP/1.1Host: js.hsadspixel.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /6834707.js HTTP/1.1Host: js.hs-banner.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content-tools-menu/api/v1/tools-menu/has-permission-json?portalId=6834707 HTTP/1.1Host: app.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://get.managedmethods.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analytics/1728897000000/6834707.js HTTP/1.1Host: js.hs-analytics.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /conversations-embed.js HTTP/1.1Host: js.usemessages.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c/hotjar-1110137.js?sv=6 HTTP/1.1Host: static.hotjar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1 HTTP/1.1Host: forms-na1.hsforms.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/player/2f238d39/www-player.css HTTP/1.1Host: www.youtube.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.youtube.com/embed/t3Gl92wBomo?feature=oembedAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: YSC=LpahJvq5Rks; VISITOR_INFO1_LIVE=egqk30RKZ4k; VISITOR_PRIVACY_METADATA=CgJVUxIEGgAgJQ%3D%3D
Source: global traffic	HTTP traffic detected: GET /web-interactives/public/v1/embed/combinedConfigs?portalId=6834707&currentUrl=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&referrer=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&contentId=179553754383 HTTP/1.1Host: cta-service-cms2.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://get.managedmethods.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collectedforms.js HTTP/1.1Host: js.hscollectedforms.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_hcms/forms/embed/v3/form/6834707/b2b34cd6-93c2-44dd-9be1-38727a6852ef/json?hs_static_app=forms-embed&hs_static_app_version=1.6227&X-HubSpot-Static-App-Info=forms-embed-1.6227 HTTP/1.1Host: get.managedmethods.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /leadflows.js HTTP/1.1Host: js.hsleadflows.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hubfs/Background.svg HTTP/1.1Host: get.managedmethods.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /conversations-embed.js HTTP/1.1Host: js.usemessages.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web-interactives-embed.js HTTP/1.1Host: js.hubspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=xkjhMTjfrF_0mXBzGhE8IiLuUDkZrnYNnngA9kzj3ak-1728897171-1.0.1.1-sPy.uw12TWgWjkjYaW6.Egck_g3_FMWXbUkiladlPRQXQ6lTAIpxK0P16wgrfdqlfCyKMoR0rbfNmkWJwLKA3g; _cfuvid=Ae66Nhk1VZK7uX1XY9LsH1X7gJTL.3T07YHHUeTQsUU-1728897171836-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /ajax/libs/slick-carousel/1.9.0/ajax-loader.gif HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fb.js HTTP/1.1Host: js.hsadspixel.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /6834707.js HTTP/1.1Host: js.hs-banner.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_hcms/livechat/widget?portalId=6834707&conversations-embed=static-1.18322&mobile=false&messagesUtk=e384afb8197a4deaa51cc57d99ef4984&traceId=e384afb8197a4deaa51cc57d99ef4984&referrer=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0X-HubSpot-Messages-Uri: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165
Source: global traffic	HTTP traffic detected: GET /analytics/1728897000000/6834707.js HTTP/1.1Host: js.hs-analytics.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1 HTTP/1.1Host: forms-na1.hsforms.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /collected-forms/v1/config/json?portalId=6834707&utk= HTTP/1.1Host: forms.hscollectedforms.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://get.managedmethods.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /modules.02161fb4f8ebb73fb3f8.js HTTP/1.1Host: script.hotjar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1 HTTP/1.1Host: forms-na1.hsforms.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1r.Va7VPLD3iREsn29ZVGZWkDdXr9SQJpUw.Fd8tEwM-1728897173-1.0.1.1-xafnyfmsRvcPgbJ_ZL8raZVtzgSXGU4htU7kWVngVc4wkAvCrv4XZuvLoo5GGAH_MOPJC5uZRhZBYZ_7UrgS7g; _cfuvid=NXyOUV6i83WfvWkUYws9vtUaAYE_pSiZkvrfQE8p0u8-1728897173318-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /api/v2/client/ws?v=7&site_id=1110137 HTTP/1.1Host: ws.hotjar.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://get.managedmethods.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: t3oTbOVc7iGNL6E58RrDgA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /embed/v3/counters.gif?key=config-loaded-success&value=1 HTTP/1.1Host: perf-na1.hsforms.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1r.Va7VPLD3iREsn29ZVGZWkDdXr9SQJpUw.Fd8tEwM-1728897173-1.0.1.1-xafnyfmsRvcPgbJ_ZL8raZVtzgSXGU4htU7kWVngVc4wkAvCrv4XZuvLoo5GGAH_MOPJC5uZRhZBYZ_7UrgS7g; _cfuvid=NXyOUV6i83WfvWkUYws9vtUaAYE_pSiZkvrfQE8p0u8-1728897173318-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 HTTP/1.1Host: forms.hsforms.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=09vUtl1hYeXMbQpPxMTpJZDcT06NrV2m_842zScz.iQ-1728897173-1.0.1.1-9eX.RFiRbkgdHCpcwQKxJ92.NRwlwN78NX469tc6ekzf0IUPK_NF3ZVcCB73_VDoxevVGzVbIVbSBA3lI5oB3Q; _cfuvid=2efHQNjSXl4Y6Oni2NdFzMmCz_joAt.ZWYagYUxaLiU-1728897173921-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /web-interactives/public/v1/embed/combinedConfigs?portalId=6834707&currentUrl=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&referrer=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&contentId=179553754383 HTTP/1.1Host: cta-service-cms2.hubspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=xkjhMTjfrF_0mXBzGhE8IiLuUDkZrnYNnngA9kzj3ak-1728897171-1.0.1.1-sPy.uw12TWgWjkjYaW6.Egck_g3_FMWXbUkiladlPRQXQ6lTAIpxK0P16wgrfdqlfCyKMoR0rbfNmkWJwLKA3g; _cfuvid=Ae66Nhk1VZK7uX1XY9LsH1X7gJTL.3T07YHHUeTQsUU-1728897171836-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /_hcms/livechat/widget?portalId=6834707&conversations-embed=static-1.18322&mobile=false&messagesUtk=e384afb8197a4deaa51cc57d99ef4984&traceId=e384afb8197a4deaa51cc57d99ef4984&referrer=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F HTTP/1.1Host: get.managedmethods.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165; _hjSessionUser_1110137=eyJpZCI6ImFjOTM4NjhkLTRlMzAtNTQzZi1hN2Y0LWY5ODFkYzA1MTIyZCIsImNyZWF0ZWQiOjE3Mjg4OTcxNzIyMzUsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_1110137=eyJpZCI6IjYyMDI2NzdmLTg3MTctNDRkZC04ODhlLTA3Zjk4MWRjNmM3ZSIsImMiOjE3Mjg4OTcxNzIyMzYsInMiOjEsInIiOjEsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=
Source: global traffic	HTTP traffic detected: GET /embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1 HTTP/1.1Host: forms-na1.hsforms.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=09vUtl1hYeXMbQpPxMTpJZDcT06NrV2m_842zScz.iQ-1728897173-1.0.1.1-9eX.RFiRbkgdHCpcwQKxJ92.NRwlwN78NX469tc6ekzf0IUPK_NF3ZVcCB73_VDoxevVGzVbIVbSBA3lI5oB3Q; _cfuvid=2efHQNjSXl4Y6Oni2NdFzMmCz_joAt.ZWYagYUxaLiU-1728897173921-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /collected-forms/v1/config/json?portalId=6834707&utk= HTTP/1.1Host: forms.hscollectedforms.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /embed/v3/counters.gif?key=config-loaded-success&value=1 HTTP/1.1Host: perf-na1.hsforms.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=09vUtl1hYeXMbQpPxMTpJZDcT06NrV2m_842zScz.iQ-1728897173-1.0.1.1-9eX.RFiRbkgdHCpcwQKxJ92.NRwlwN78NX469tc6ekzf0IUPK_NF3ZVcCB73_VDoxevVGzVbIVbSBA3lI5oB3Q; _cfuvid=2efHQNjSXl4Y6Oni2NdFzMmCz_joAt.ZWYagYUxaLiU-1728897173921-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /hubfs/mm-favicon_color.png HTTP/1.1Host: get.managedmethods.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165; _hjSessionUser_1110137=eyJpZCI6ImFjOTM4NjhkLTRlMzAtNTQzZi1hN2Y0LWY5ODFkYzA1MTIyZCIsImNyZWF0ZWQiOjE3Mjg4OTcxNzIyMzUsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_1110137=eyJpZCI6IjYyMDI2NzdmLTg3MTctNDRkZC04ODhlLTA3Zjk4MWRjNmM3ZSIsImMiOjE3Mjg4OTcxNzIyMzYsInMiOjEsInIiOjEsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=
Source: global traffic	HTTP traffic detected: GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=471034161&v=1.1&a=6834707&pi=179553754383&ct=landing-page&ccu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive&cpi=179553754383&lpi=179553754383&lvi=179553754383&lvc=en&r=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&pu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&t=Automating+Cybersecurity+%26+Student+Safety+with+ManagedMethods&cts=1728897174109&vi=1ad7ee3b723d214336417ad5b634063c&nc=true&ce=false&pt=1&cc=0 HTTP/1.1Host: track.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=xkjhMTjfrF_0mXBzGhE8IiLuUDkZrnYNnngA9kzj3ak-1728897171-1.0.1.1-sPy.uw12TWgWjkjYaW6.Egck_g3_FMWXbUkiladlPRQXQ6lTAIpxK0P16wgrfdqlfCyKMoR0rbfNmkWJwLKA3g; _cfuvid=Ae66Nhk1VZK7uX1XY9LsH1X7gJTL.3T07YHHUeTQsUU-1728897171836-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /__ptq.gif?k=15&fi=b2b34cd6-93c2-44dd-9be1-38727a6852ef&fci=f699bf2f-95b7-4c7c-96b4-f6edd63fbcaf&ft=0&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=471034161&v=1.1&a=6834707&pi=179553754383&ct=landing-page&ccu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive&cpi=179553754383&lpi=179553754383&lvi=179553754383&lvc=en&r=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&pu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&t=Automating+Cybersecurity+%26+Student+Safety+with+ManagedMethods&cts=1728897174113&vi=1ad7ee3b723d214336417ad5b634063c&nc=true&ce=false&pt=1&cc=0 HTTP/1.1Host: track.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=xkjhMTjfrF_0mXBzGhE8IiLuUDkZrnYNnngA9kzj3ak-1728897171-1.0.1.1-sPy.uw12TWgWjkjYaW6.Egck_g3_FMWXbUkiladlPRQXQ6lTAIpxK0P16wgrfdqlfCyKMoR0rbfNmkWJwLKA3g; _cfuvid=Ae66Nhk1VZK7uX1XY9LsH1X7gJTL.3T07YHHUeTQsUU-1728897171836-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /?site_id=1110137&gzip=1 HTTP/1.1Host: content.hotjar.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 HTTP/1.1Host: forms.hsforms.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=09vUtl1hYeXMbQpPxMTpJZDcT06NrV2m_842zScz.iQ-1728897173-1.0.1.1-9eX.RFiRbkgdHCpcwQKxJ92.NRwlwN78NX469tc6ekzf0IUPK_NF3ZVcCB73_VDoxevVGzVbIVbSBA3lI5oB3Q; _cfuvid=2efHQNjSXl4Y6Oni2NdFzMmCz_joAt.ZWYagYUxaLiU-1728897173921-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /__ptq.gif?k=15&fi=b2b34cd6-93c2-44dd-9be1-38727a6852ef&fci=f699bf2f-95b7-4c7c-96b4-f6edd63fbcaf&ft=0&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=471034161&v=1.1&a=6834707&pi=179553754383&ct=landing-page&ccu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive&cpi=179553754383&lpi=179553754383&lvi=179553754383&lvc=en&r=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&pu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&t=Automating+Cybersecurity+%26+Student+Safety+with+ManagedMethods&cts=1728897174113&vi=1ad7ee3b723d214336417ad5b634063c&nc=true&ce=false&pt=1&cc=0 HTTP/1.1Host: track.hubspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=xkjhMTjfrF_0mXBzGhE8IiLuUDkZrnYNnngA9kzj3ak-1728897171-1.0.1.1-sPy.uw12TWgWjkjYaW6.Egck_g3_FMWXbUkiladlPRQXQ6lTAIpxK0P16wgrfdqlfCyKMoR0rbfNmkWJwLKA3g; _cfuvid=Ae66Nhk1VZK7uX1XY9LsH1X7gJTL.3T07YHHUeTQsUU-1728897171836-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=471034161&v=1.1&a=6834707&pi=179553754383&ct=landing-page&ccu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive&cpi=179553754383&lpi=179553754383&lvi=179553754383&lvc=en&r=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&pu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&t=Automating+Cybersecurity+%26+Student+Safety+with+ManagedMethods&cts=1728897174109&vi=1ad7ee3b723d214336417ad5b634063c&nc=true&ce=false&pt=1&cc=0 HTTP/1.1Host: track.hubspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=xkjhMTjfrF_0mXBzGhE8IiLuUDkZrnYNnngA9kzj3ak-1728897171-1.0.1.1-sPy.uw12TWgWjkjYaW6.Egck_g3_FMWXbUkiladlPRQXQ6lTAIpxK0P16wgrfdqlfCyKMoR0rbfNmkWJwLKA3g; _cfuvid=Ae66Nhk1VZK7uX1XY9LsH1X7gJTL.3T07YHHUeTQsUU-1728897171836-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /hubfs/mm-favicon_color.png HTTP/1.1Host: get.managedmethods.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=aV9eh48TbcmnzLUYaOGyl9ZxmcHu3.V6rr.LoK14jSw-1728897165-1.0.1.1-V.ghB.sc2Sxqv_orrUJY1bMt9n3SmHmZy_fSqA2PFfzQBrUcPPhTOnOL1Gi.2oztVEzrDAy5uONJq6UwmEF.Xw; __cfruid=5b70ce25a88be886670aaabc12053a6a40a131b0-1728897165; _hjSessionUser_1110137=eyJpZCI6ImFjOTM4NjhkLTRlMzAtNTQzZi1hN2Y0LWY5ODFkYzA1MTIyZCIsImNyZWF0ZWQiOjE3Mjg4OTcxNzIyMzUsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_1110137=eyJpZCI6IjYyMDI2NzdmLTg3MTctNDRkZC04ODhlLTA3Zjk4MWRjNmM3ZSIsImMiOjE3Mjg4OTcxNzIyMzYsInMiOjEsInIiOjEsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /api/v2/client/ws?v=7&site_id=1110137 HTTP/1.1Host: ws.hotjar.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://get.managedmethods.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: n2hLj8KItmIRBdsSW5LgvA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /lead-flows-config/v1/config/json?portalId=6834707&referrer=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&contentId=179553754383&currentUrl=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5 HTTP/1.1Host: forms.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://get.managedmethods.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /cookie-banner-public/v1/cf-location HTTP/1.1Host: js.hs-banner.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://get.managedmethods.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /__ptq.gif?k=28&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=471034161&v=1.1&a=6834707&pi=179553754383&ct=landing-page&ccu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive&cpi=179553754383&lpi=179553754383&lvi=179553754383&lvc=en&r=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&pu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&t=Automating+Cybersecurity+%26+Student+Safety+with+ManagedMethods&cts=1728897182588&vi=1ad7ee3b723d214336417ad5b634063c&nc=true&u=82022089.1ad7ee3b723d214336417ad5b634063c.1728897174105.1728897174105.1728897174105.1&b=82022089.1.1728897174106&pt=1&cc=15 HTTP/1.1Host: track.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=xkjhMTjfrF_0mXBzGhE8IiLuUDkZrnYNnngA9kzj3ak-1728897171-1.0.1.1-sPy.uw12TWgWjkjYaW6.Egck_g3_FMWXbUkiladlPRQXQ6lTAIpxK0P16wgrfdqlfCyKMoR0rbfNmkWJwLKA3g; _cfuvid=Ae66Nhk1VZK7uX1XY9LsH1X7gJTL.3T07YHHUeTQsUU-1728897171836-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=6834707 HTTP/1.1Host: api.hubapi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://get.managedmethods.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v2/client/ws?v=7&site_id=1110137 HTTP/1.1Host: ws.hotjar.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://get.managedmethods.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: nC61wU+wxkMOeaiPrqV0Rw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /j/roundtrip.js HTTP/1.1Host: s.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /lead-flows-config/v1/config/json?portalId=6834707&referrer=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&contentId=179553754383&currentUrl=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5 HTTP/1.1Host: forms.hubspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=xkjhMTjfrF_0mXBzGhE8IiLuUDkZrnYNnngA9kzj3ak-1728897171-1.0.1.1-sPy.uw12TWgWjkjYaW6.Egck_g3_FMWXbUkiladlPRQXQ6lTAIpxK0P16wgrfdqlfCyKMoR0rbfNmkWJwLKA3g; _cfuvid=Ae66Nhk1VZK7uX1XY9LsH1X7gJTL.3T07YHHUeTQsUU-1728897171836-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /cookie-banner-public/v1/cf-location HTTP/1.1Host: js.hs-banner.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /__ptq.gif?k=28&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=471034161&v=1.1&a=6834707&pi=179553754383&ct=landing-page&ccu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive&cpi=179553754383&lpi=179553754383&lvi=179553754383&lvc=en&r=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&pu=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&t=Automating+Cybersecurity+%26+Student+Safety+with+ManagedMethods&cts=1728897182588&vi=1ad7ee3b723d214336417ad5b634063c&nc=true&u=82022089.1ad7ee3b723d214336417ad5b634063c.1728897174105.1728897174105.1728897174105.1&b=82022089.1.1728897174106&pt=1&cc=15 HTTP/1.1Host: track.hubspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=xkjhMTjfrF_0mXBzGhE8IiLuUDkZrnYNnngA9kzj3ak-1728897171-1.0.1.1-sPy.uw12TWgWjkjYaW6.Egck_g3_FMWXbUkiladlPRQXQ6lTAIpxK0P16wgrfdqlfCyKMoR0rbfNmkWJwLKA3g; _cfuvid=Ae66Nhk1VZK7uX1XY9LsH1X7gJTL.3T07YHHUeTQsUU-1728897171836-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=6834707 HTTP/1.1Host: api.hubapi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/pixel.js HTTP/1.1Host: www.redditstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /6834707.js HTTP/1.1Host: js.hs-scripts.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /core/lo.js?site-id=759fd941 HTTP/1.1Host: tools.luckyorange.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/conversions-config/v1/pixel/config/a2_dy5o8mn2d6oc_telemetry HTTP/1.1Host: www.redditstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://get.managedmethods.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixels/a2_dy5o8mn2d6oc/config HTTP/1.1Host: pixel-config.reddit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://get.managedmethods.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rp.gif?ts=1728897184685&id=a2_dy5o8mn2d6oc&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=631133ec-3227-461f-8a3a-bfa5fb517d3d&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_5afed25b&dpm=&dpcc=&dprc= HTTP/1.1Host: alb.reddit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/pre/TSSSGOL6MBFETCAHMJBJCQ/I63T2M6SPVC5ROYHA7HR6W/fpconsent.js HTTP/1.1Host: s.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/pre/TSSSGOL6MBFETCAHMJBJCQ/I63T2M6SPVC5ROYHA7HR6W/index.js HTTP/1.1Host: s.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/check/TSSSGOL6MBFETCAHMJBJCQ?flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&_s=19d08b9214e66ee8e210f5de109a1703&_b=2 HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /signals/config/283945248938426?v=2.9.170&r=stable&domain=get.managedmethods.com&hme=d82868061a8c707cd31395a3055e7449daa03bd520872727258c39e6af34523e&ex_m=70%2C120%2C106%2C110%2C61%2C4%2C99%2C69%2C16%2C96%2C88%2C51%2C54%2C171%2C174%2C186%2C182%2C183%2C185%2C29%2C100%2C53%2C77%2C184%2C166%2C169%2C179%2C180%2C187%2C130%2C41%2C34%2C142%2C15%2C50%2C193%2C192%2C132%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C92%2C17%2C14%2C95%2C91%2C90%2C107%2C52%2C109%2C39%2C108%2C30%2C93%2C26%2C167%2C170%2C139%2C28%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C101%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C103%2C102%2C104%2C97%2C10%2C20%2C3%2C38%2C74%2C19%2C85%2C56%2C83%2C33%2C73%2C0%2C94%2C32%2C82%2C87%2C47%2C46%2C86%2C37%2C5%2C89%2C81%2C44%2C35%2C84%2C2%2C36%2C63%2C42%2C105%2C45%2C79%2C68%2C111%2C60%2C59%2C31%2C98%2C58%2C55%2C49%2C78%2C72%2C24%2C112 HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/927141988/?random=1728897184780&cv=11&fst=1728896400000&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200zb810608771&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&ref=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&hn=www.googleadservices.com&frm=0&tiba=Automating%20Cybersecurity%20%26%20Student%20Safety%20with%20ManagedMethods&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnfacnBAm9xWD__ZBSWG_a_OM6wwSiWrhojR0gSBRrOHhnmj9Xn&random=3274472283&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /759fd941 HTTP/1.1Host: settings.luckyorange.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"x-lucky-referrer: https://googleads.g.doubleclick.net/sec-ch-ua-mobile: ?0x-lucky-uid: undefinedUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://get.managedmethods.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/927141988/?random=1728897184905&cv=11&fst=1728896400000&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200zb810608771&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&ref=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&hn=www.googleadservices.com&frm=0&tiba=Automating%20Cybersecurity%20%26%20Student%20Safety%20with%20ManagedMethods&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnf-8GT8JX6ML4N2IgODO8ytP8aO-ipd-scLH_tx_K2qXd-R9rL&random=991242014&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/pre/index.js HTTP/1.1Host: s.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/TSSSGOL6MBFETCAHMJBJCQ/I63T2M6SPVC5ROYHA7HR6W?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&cookie=&adroll_s_ref=https%3A//googleads.g.doubleclick.net/&keyw=&p0=20119&xa4=1 HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /ads/pixel.js HTTP/1.1Host: www.redditstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /6834707.js HTTP/1.1Host: js.hs-scripts.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixels/a2_dy5o8mn2d6oc/config HTTP/1.1Host: pixel-config.reddit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/conversions-config/v1/pixel/config/a2_dy5o8mn2d6oc_telemetry HTTP/1.1Host: www.redditstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rp.gif?ts=1728897184685&id=a2_dy5o8mn2d6oc&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=631133ec-3227-461f-8a3a-bfa5fb517d3d&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_5afed25b&dpm=&dpcc=&dprc= HTTP/1.1Host: alb.reddit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/roundtrip.js HTTP/1.1Host: s.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /core/lo.js?site-id=759fd941 HTTP/1.1Host: tools.luckyorange.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pxl/iframe_content.html?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: x.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /tr/?id=283945248938426&ev=PageView&dl=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&rl=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&if=false&ts=1728897187290&sw=1280&sh=1024&ud[external_id]=1ad7ee3b723d214336417ad5b634063c&v=2.9.170&r=stable&a=hubspot&ec=0&o=4126&fbp=fb.1.1728897187288.40725635928813979&ler=other&cdl=API_unavailable&it=1728897185090&coo=false&dpo=LDU&dpoco=0&dpost=0&exp=h3&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=283945248938426&ev=PageView&dl=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&rl=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&if=false&ts=1728897187290&sw=1280&sh=1024&ud[external_id]=1ad7ee3b723d214336417ad5b634063c&v=2.9.170&r=stable&a=hubspot&ec=0&o=4126&fbp=fb.1.1728897187288.40725635928813979&ler=other&cdl=API_unavailable&it=1728897185090&coo=false&dpo=LDU&dpoco=0&dpost=0&exp=h3&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/927141988/?random=1728897184780&cv=11&fst=1728897184780&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200zb810608771&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&ref=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&hn=www.googleadservices.com&frm=0&tiba=Automating%20Cybersecurity%20%26%20Student%20Safety%20with%20ManagedMethods&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUk0zOnp7KPAX2H7PV04lK3EUODRxZQzvzNUj9mqfajXpAGNwRNeTOLJeNEyKAk
Source: global traffic	HTTP traffic detected: GET /759fd941 HTTP/1.1Host: settings.luckyorange.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule701950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/927141988/?random=1728897184905&cv=11&fst=1728897184905&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200zb810608771&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&ref=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&hn=www.googleadservices.com&frm=0&tiba=Automating%20Cybersecurity%20%26%20Student%20Safety%20with%20ManagedMethods&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUk0zOnp7KPAX2H7PV04lK3EUODRxZQzvzNUj9mqfajXpAGNwRNeTOLJeNEyKAk
Source: global traffic	HTTP traffic detected: GET /rules/rule701951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /signals/config/283945248938426?v=2.9.170&r=stable&domain=get.managedmethods.com&hme=d82868061a8c707cd31395a3055e7449daa03bd520872727258c39e6af34523e&ex_m=70%2C120%2C106%2C110%2C61%2C4%2C99%2C69%2C16%2C96%2C88%2C51%2C54%2C171%2C174%2C186%2C182%2C183%2C185%2C29%2C100%2C53%2C77%2C184%2C166%2C169%2C179%2C180%2C187%2C130%2C41%2C34%2C142%2C15%2C50%2C193%2C192%2C132%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C92%2C17%2C14%2C95%2C91%2C90%2C107%2C52%2C109%2C39%2C108%2C30%2C93%2C26%2C167%2C170%2C139%2C28%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C101%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C103%2C102%2C104%2C97%2C10%2C20%2C3%2C38%2C74%2C19%2C85%2C56%2C83%2C33%2C73%2C0%2C94%2C32%2C82%2C87%2C47%2C46%2C86%2C37%2C5%2C89%2C81%2C44%2C35%2C84%2C2%2C36%2C63%2C42%2C105%2C45%2C79%2C68%2C111%2C60%2C59%2C31%2C98%2C58%2C55%2C49%2C78%2C72%2C24%2C112 HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/pre/TSSSGOL6MBFETCAHMJBJCQ/I63T2M6SPVC5ROYHA7HR6W/index.js HTTP/1.1Host: s.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/927141988/?random=1728897184905&cv=11&fst=1728896400000&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200zb810608771&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&ref=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&hn=www.googleadservices.com&frm=0&tiba=Automating%20Cybersecurity%20%26%20Student%20Safety%20with%20ManagedMethods&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnf-8GT8JX6ML4N2IgODO8ytP8aO-ipd-scLH_tx_K2qXd-R9rL&random=991242014&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /attribution/trigger?fpc=378484b1f0e790975382e6fc128c23d2&advertisable_eid=TSSSGOL6MBFETCAHMJBJCQ&conversion_type=PageView&conversion_value=0.00&currency=USC&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5 HTTP/1.1Host: x.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/927141988/?random=1728897184780&cv=11&fst=1728896400000&bg=ffffff&guid=ON&async=1&gtm=45be4a90v873384026za200zb810608771&gcd=13r3r3r3r5l1&dma=0&tag_exp=101671035~101686685&u_w=1280&u_h=1024&url=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&ref=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&hn=www.googleadservices.com&frm=0&tiba=Automating%20Cybersecurity%20%26%20Student%20Safety%20with%20ManagedMethods&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=199392175.1728897184&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.134%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.134&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnfacnBAm9xWD__ZBSWG_a_OM6wwSiWrhojR0gSBRrOHhnmj9Xn&random=3274472283&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/TSSSGOL6MBFETCAHMJBJCQ/I63T2M6SPVC5ROYHA7HR6W/J5ZZRODTFVDKLJ2GKXKSSA.js HTTP/1.1Host: s.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /j/pre/index.js HTTP/1.1Host: s.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /consent/check/TSSSGOL6MBFETCAHMJBJCQ?flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&_s=19d08b9214e66ee8e210f5de109a1703&_b=2 HTTP/1.1Host: d.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /igs?advertisable=TSSSGOL6MBFETCAHMJBJCQ&fpc=378484b1f0e790975382e6fc128c23d2 HTTP/1.1Host: x.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://x.adroll.com/pxl/iframe_content.html?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /pixel/TSSSGOL6MBFETCAHMJBJCQ/I63T2M6SPVC5ROYHA7HR6W?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&cookie=&adroll_s_ref=https%3A//googleads.g.doubleclick.net/&keyw=&p0=20119&xa4=1 HTTP/1.1Host: d.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /rules/rule700850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703050v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703051v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /cm/b/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /cm/experian/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /cm/g/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /cm/index/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /cm/l/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /cm/n/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /tr/?id=283945248938426&ev=PageView&dl=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&rl=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&if=false&ts=1728897187290&sw=1280&sh=1024&ud[external_id]=1ad7ee3b723d214336417ad5b634063c&v=2.9.170&r=stable&a=hubspot&ec=0&o=4126&fbp=fb.1.1728897187288.40725635928813979&ler=other&cdl=API_unavailable&it=1728897185090&coo=false&dpo=LDU&dpoco=0&dpost=0&exp=h3&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=283945248938426&ev=PageView&dl=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&rl=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&if=false&ts=1728897187290&sw=1280&sh=1024&ud[external_id]=1ad7ee3b723d214336417ad5b634063c&v=2.9.170&r=stable&a=hubspot&ec=0&o=4126&fbp=fb.1.1728897187288.40725635928813979&ler=other&cdl=API_unavailable&it=1728897185090&coo=false&dpo=LDU&dpoco=0&dpost=0&exp=h3&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/sendrolling.js HTTP/1.1Host: s.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /attribution/trigger?fpc=378484b1f0e790975382e6fc128c23d2&advertisable_eid=TSSSGOL6MBFETCAHMJBJCQ&conversion_type=PageView&conversion_value=0.00&currency=USC&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5 HTTP/1.1Host: x.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; ar_debug=1; receive-cookie-deprecation=1
Source: global traffic	HTTP traffic detected: GET /pixel/TSSSGOL6MBFETCAHMJBJCQ/I63T2M6SPVC5ROYHA7HR6W/J5ZZRODTFVDKLJ2GKXKSSA.js HTTP/1.1Host: s.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1
Source: global traffic	HTTP traffic detected: GET /igs?advertisable=TSSSGOL6MBFETCAHMJBJCQ&fpc=378484b1f0e790975382e6fc128c23d2 HTTP/1.1Host: x.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; ar_debug=1; receive-cookie-deprecation=1
Source: global traffic	HTTP traffic detected: GET /rules/rule700101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /idsync/ex/receive?partner_id=3521&partner_device_id=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&gdpr=0&gdpr_consent= HTTP/1.1Host: pixel.tapad.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=105&external_user_id=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&expiration=1760433191 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /377928.gif?partner_uid=e465f6b18ea333341ca87e3d2e8121bb HTTP/1.1Host: idsync.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rlas3=7skOM0+eLylT4afkMmWoSWJwh7sRpLhxpejeyPFRRaA=; pxrc=CIbBs7gGEgUI6AcQABIFCOhHEAASBQjbThAD
Source: global traffic	HTTP traffic detected: GET /sync?dsp_id=44&user_id=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_sc&google_nid=artb&google_hm=5GX2sY6jMzQcqH49LoEhuw HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUk0zOnp7KPAX2H7PV04lK3EUODRxZQzvzNUj9mqfajXpAGNwRNeTOLJeNEyKAk
Source: global traffic	HTTP traffic detected: GET /rules/rule700950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703550v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703551v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /j/sendrolling.js HTTP/1.1Host: s.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1
Source: global traffic	HTTP traffic detected: GET /rules/rule702701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=105&external_user_id=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&expiration=1760433191&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=ZwzgqEt3uZEAADQEACecaQAA; CMPS=473; CMPRO=473
Source: global traffic	HTTP traffic detected: GET /idsync/ex/receive/check?partner_id=3521&partner_device_id=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&gdpr=0&gdpr_consent= HTTP/1.1Host: pixel.tapad.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TapAd_TS=1728897192595; TapAd_DID=e3913225-94b4-4b08-9fd3-4285fd980084
Source: global traffic	HTTP traffic detected: GET /w/1.0/cm?id=e508c905-ddce-4732-92a4-0b0f5b72a28f&r=https%3A%2F%2Fidsync.rlcdn.com%2F396846.gif%3Fserved_by%3Devergreen%26partner_uid%3D HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=ff675d27-c17a-4d2e-b7ab-ec29a6304351\|1728897158
Source: global traffic	HTTP traffic detected: GET /cm/o/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /rules/rule700450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=105&external_user_id=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&expiration=1760433191&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=ZwzgqEt3uZEAADQEACecaQAA; CMPS=473; CMPRO=473
Source: global traffic	HTTP traffic detected: GET /track/cmf/generic?ttd_pid=tapad&ttd_tpi=1&ttd_puid=e3913225-94b4-4b08-9fd3-4285fd980084%252C%252C&gdpr=0&gdpr_consent= HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=7d931d72-b6cd-40d8-9aaa-91033ac03d95; TDCPM=CAEYASABKAIyCwigk6rm4o62PRAFOAFaBzFoMXkxYTdgAg..
Source: global traffic	HTTP traffic detected: GET /rules/rule701900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /cm/g/in HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /rules/rule704001v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /cm/outbrain/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /sync?dsp_id=44&user_id=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI HTTP/1.1Host: x.bidswitch.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /396846.gif?served_by=evergreen&partner_uid=790d1d18-a5ba-44b9-b204-a432fb8c1174 HTTP/1.1Host: idsync.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rlas3=wwR6N7dYyKVT4afkMmWoSWJwh7sRpLhxpejeyPFRRaA=; pxrc=CIbBs7gGEgUI6AcQABIFCOhHEAASBQjbThADEgYIuOsBECI=
Source: global traffic	HTTP traffic detected: GET /cm/pubmatic/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /w/1.0/sd?id=537103138&val=e465f6b18ea333341ca87e3d2e8121bb&gdpr=0&gdpr_consent= HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=ff675d27-c17a-4d2e-b7ab-ec29a6304351\|1728897158
Source: global traffic	HTTP traffic detected: GET /rules/rule704000v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /idsync/ex/receive?partner_id=1830&partner_device_id=7d931d72-b6cd-40d8-9aaa-91033ac03d95&ttd_puid=e3913225-94b4-4b08-9fd3-4285fd980084%2C%2C HTTP/1.1Host: pixel.tapad.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TapAd_TS=1728897192595; TapAd_DID=e3913225-94b4-4b08-9fd3-4285fd980084; TapAd_3WAY_SYNCS=
Source: global traffic	HTTP traffic detected: GET /rules/rule703250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /396846.gif?served_by=evergreen&partner_uid=790d1d18-a5ba-44b9-b204-a432fb8c1174 HTTP/1.1Host: idsync.rlcdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pxrc=CIbBs7gGEgUI6AcQABIFCOhHEAASBQjbThADEgYIuOsBECI=; rlas3=wY6GviTw/A1T4afkMmWoSWJwh7sRpLhxpejeyPFRRaA=
Source: global traffic	HTTP traffic detected: GET /cookie-sync?p=adroll&uid=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1Host: sync.outbrain.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule702401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /cm/r/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /cm/taboola/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=e465f6b18ea333341ca87e3d2e8121bb-g_1728897194-a_1728897187; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-g_1728897194-a_1728897187
Source: global traffic	HTTP traffic detected: GET /cm/g/in HTTP/1.1Host: d.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=e465f6b18ea333341ca87e3d2e8121bb-g_1728897194-a_1728897187; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-g_1728897194-a_1728897187
Source: global traffic	HTTP traffic detected: GET /ul_cb/sync?dsp_id=44&user_id=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI HTTP/1.1Host: x.bidswitch.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=7cc2efa7-b7d9-404c-96f2-39df2008d52f; c=1728897194; tuuid_lu=1728897194
Source: global traffic	HTTP traffic detected: GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMzMDYmdGw9MTI5NjAw&piggybackCookie=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&gdpr=0&gdpr_consent=BOOoKswOOoKswA2ABBENAkwAAAAXyACACYAIIA HTTP/1.1Host: image2.pubmatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w/1.0/sd?id=537103138&val=e465f6b18ea333341ca87e3d2e8121bb&gdpr=0&gdpr_consent= HTTP/1.1Host: us-u.openx.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=ff675d27-c17a-4d2e-b7ab-ec29a6304351\|1728897158
Source: global traffic	HTTP traffic detected: GET /idsync/ex/receive?partner_id=1830&partner_device_id=7d931d72-b6cd-40d8-9aaa-91033ac03d95&ttd_puid=e3913225-94b4-4b08-9fd3-4285fd980084%2C%2C HTTP/1.1Host: pixel.tapad.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TapAd_TS=1728897192595; TapAd_DID=e3913225-94b4-4b08-9fd3-4285fd980084; TapAd_3WAY_SYNCS=1!6921
Source: global traffic	HTTP traffic detected: GET /cm/triplelift/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /rules/rule701550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /cm/x/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187; __adroll_shared=e465f6b18ea333341ca87e3d2e8121bb-a_1728897187
Source: global traffic	HTTP traffic detected: GET /rules/rule701551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /cookie-sync?p=adroll&uid=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1Host: sync.outbrain.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /ups/55980/sync?_origin=1&uid=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&gdpr=0&gdpr_consent=BOOla_OOOla_OA2ABBENAkwAAAAXyACAAyAIIA HTTP/1.1Host: ups.analytics.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMzMDYmdGw9MTI5NjAw&piggybackCookie=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&gdpr=0&gdpr_consent=BOOoKswOOoKswA2ABBENAkwAAAAXyACACYAIIA HTTP/1.1Host: image2.pubmatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: KRTBCOOKIE_10=22808-ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&KRTB&22883-ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&KRTB&23504-ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&KRTB&23615-ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI; PugT=1728897194
Source: global traffic	HTTP traffic detected: GET /sg/adroll-network/1/rtb-h?taboola_hm=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI HTTP/1.1Host: sync.taboola.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule702000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xuid?mid=4714&xuid=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&dongle=c85e HTTP/1.1Host: eb2.3lift.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule703201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /setuid?entity=172&code=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v2/client/ws?v=7&site_id=1110137 HTTP/1.1Host: ws.hotjar.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://get.managedmethods.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: kOVprazzzjK4DnyQpVQGvQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /ups/55980/sync?_origin=1&uid=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&gdpr=0&gdpr_consent=BOOla_OOOla_OA2ABBENAkwAAAAXyACAAyAIIA&verify=true HTTP/1.1Host: ups.analytics.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: A3=d=AQABBKvgDGcCEGcXCxC8BJQdyVL4UoFdflEFEgEBAQEyDmcWZ9xA0iMA_eMAAA&S=AQAAArB1NkzuwprO3ztoAj_24n4
Source: global traffic	HTTP traffic detected: GET /rules/rule700250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xuid?ld=1&mid=4714&xuid=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&dongle=c85e&gdpr=0&cmp_cs=&us_privacy= HTTP/1.1Host: eb2.3lift.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tluidp=2207872421924619544908; tluid=2207872421924619544908
Source: global traffic	HTTP traffic detected: GET /rules/rule703301v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /bounce?%2Fsetuid%3Fentity%3D172%26code%3DZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get.managedmethods.com/k12-cybersecurity-safety-k12dive?gad_source=5Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XANDR_PANID=km49EgQ9-GYpbBwjNN9ZdDA7eqehd4iV-jjolKDSxOzp9xK2-EK015OPFB0R0O9AdlunXpA3wiDyvUbFEkCYAdzqWfAYYzC-hDgwjeV1SMM.; receive-cookie-deprecation=1; uuid2=4305931231207897773
Source: global traffic	HTTP traffic detected: GET /rules/rule703300v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xuid?ld=1&mid=4714&xuid=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&dongle=c85e&gdpr=0&cmp_cs=&us_privacy= HTTP/1.1Host: eb2.3lift.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tluid=2207872421924619544908
Source: global traffic	HTTP traffic detected: GET /rules/rule701651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: chromecache_419.2.dr	String found in binary or memory: "tags":[{"function":"__awct","metadata":["map"],"once_per_event":true,"vtp_enableNewCustomerReporting":false,"vtp_enableConversionLinker":true,"vtp_enableProductReporting":false,"vtp_conversionCookiePrefix":"_gcl","vtp_enableShippingData":false,"vtp_conversionId":"927141988","vtp_conversionLabel":"Z6OoCKu1uJIBEOSgjLoD","vtp_rdp":false,"vtp_url":["macro",3],"vtp_enableProductReportingCheckbox":true,"vtp_enableNewCustomerReportingCheckbox":true,"vtp_enableEnhancedConversionsCheckbox":false,"vtp_enableRdpCheckbox":true,"vtp_enableTransportUrl":false,"vtp_enableCustomParams":false,"tag_id":1},{"function":"__gclidw","metadata":["map"],"once_per_event":true,"vtp_enableCrossDomain":false,"vtp_enableUrlPassthrough":false,"vtp_enableCookieOverrides":false,"vtp_enableCrossDomainFeature":true,"tag_id":2},{"function":"__ua","metadata":["map"],"once_per_event":true,"vtp_overrideGaSettings":false,"vtp_trackType":"TRACK_PAGEVIEW","vtp_gaSettings":["macro",4],"vtp_enableRecaptchaOption":false,"vtp_enableUaRlsa":false,"vtp_enableUseInternalVersion":false,"vtp_enableFirebaseCampaignData":true,"vtp_enableGA4Schema":true,"tag_id":4},{"function":"__bzi","metadata":["map"],"once_per_event":true,"vtp_id":"48411","tag_id":6},{"function":"__googtag","metadata":["map"],"once_per_event":true,"vtp_tagId":"G-KLDE7YGZXK","vtp_configSettingsTable":["list",["map","parameter","send_page_view","parameterValue","true"]],"tag_id":46},{"function":"__cvt_10608771_57","metadata":["map"],"once_per_event":true,"vtp_siteId":"759fd941","tag_id":58},{"function":"__gaawe","metadata":["map"],"once_per_event":true,"vtp_sendEcommerceData":false,"vtp_eventSettingsTable":["list",["map","parameter",["macro",0],"parameterValue",["macro",0]],["map","parameter",["macro",5],"parameterValue",["macro",5]],["map","parameter",["macro",2],"parameterValue",["macro",2]]],"vtp_eventName":"hs_cta_conversion","vtp_measurementIdOverride":"G-KLDE7YGZXK","vtp_enableUserProperties":true,"vtp_enableMoreSettingsOption":true,"vtp_enableEuid":true,"vtp_migratedToV2":true,"vtp_demoV2":false,"tag_id":60},{"function":"__cvt_10608771_61","metadata":["map"],"once_per_event":true,"vtp_enableFirstPartyCookies":true,"vtp_dataProcessingOptions":false,"vtp_eventType":"PageVisit","vtp_id":"a2_dy5o8mn2d6oc","vtp_advancedMatching":false,"vtp_productInputType":"entryManual","tag_id":62},{"function":"__cvt_10608771_61","metadata":["map"],"once_per_event":true,"vtp_enableFirstPartyCookies":true,"vtp_dataProcessingOptions":false,"vtp_eventType":"Lead","vtp_id":"a2_dy5o8mn2d6oc","vtp_advancedMatching":false,"vtp_productInputType":"entryManual","tag_id":63},{"function":"__fsl","vtp_waitForTagsTimeout":"2000","vtp_uniqueTriggerId":"10608771_55","tag_id":64},{"function":"__html","once_per_event":true,"vtp_html":"\n\u003Cscript async data-gtmsrc=\"https:\/\/www.googletagmanager.com\/gtag\/js?id=AW-927141988\" type=\"text\/gtmscript\"\u003E\u003C\/script\u003E\n\u003Cscript type=\"text\/gtmscript\"\u003Ewindow.dataLayer=window.dataLayer\|\|
Source: chromecache_210.2.dr, chromecache_204.2.dr	String found in binary or memory: Math.round(q);u["gtm.videoElapsedTime"]=Math.round(f);u["gtm.videoPercent"]=r;u["gtm.videoVisible"]=t;return u},kk:function(){e=Ab()},sd:function(){d()}}};var hc=la(["data-gtm-yt-inspected-"]),YC=["www.youtube.com","www.youtube-nocookie.com"],ZC,$C=!1; equals www.youtube.com (Youtube)
Source: chromecache_311.2.dr, chromecache_331.2.dr, chromecache_282.2.dr, chromecache_405.2.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var k=EA(a,c,e);V(121);if(k["gtm.elementUrl"]==="https://www.facebook.com/tr/")return V(122),!0;if(d&&f){for(var m=Lb(b,g.length),n=0;n<g.length;++n)g[n](k,m);return m.done}for(var p=0;p<g.length;++p)g[p](k,function(){});return!0},HA=function(){var a=[],b=function(c){return qb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_210.2.dr, chromecache_204.2.dr	String found in binary or memory: if(!(e\|\|f\|\|g\|\|k.length\|\|m.length))return;var p={nh:e,lh:f,mh:g,Xh:k,Yh:m,Ie:n,Eb:b},q=C.YT;if(q)return q.ready&&q.ready(d),b;var r=C.onYouTubeIframeAPIReady;C.onYouTubeIframeAPIReady=function(){r&&r();d()};F(function(){for(var t=E.getElementsByTagName("script"),v=t.length,u=0;u<v;u++){var w=t[u].getAttribute("src");if(iD(w,"iframe_api")\|\|iD(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!$C&&gD(x[A],p.Ie))return xc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_311.2.dr, chromecache_331.2.dr, chromecache_282.2.dr, chromecache_232.2.dr, chromecache_405.2.dr, chromecache_419.2.dr	String found in binary or memory: return b}WC.F="internal.enableAutoEventOnTimer";var hc=la(["data-gtm-yt-inspected-"]),YC=["www.youtube.com","www.youtube-nocookie.com"],ZC,$C=!1; equals www.youtube.com (Youtube)
Source: chromecache_276.2.dr	String found in binary or memory: return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var b=f.getFbeventsModules("signalsFBEventsGetTier"),c=d();function d(){try{if(a.trustedTypes&&a.trustedTypes.createPolicy){var b=a.trustedTypes;return b.createPolicy("facebook.com/signals/iwl",{createScriptURL:function(a){var b=new URL(a);b=b.hostname.endsWith(".facebook.com")&&b.pathname=="/signals/iwl.js";if(!b)throw new Error("Disallowed script URL");return a}})}}catch(a){}return null}e.exports=function(a,d){d=b(d);d=d==null?"www.facebook.com":"www."+d+".facebook.com";d="https://"+d+"/signals/iwl.js?pixel_id="+a;if(c!=null)return c.createScriptURL(d);else return d}})();return e.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_276.2.dr	String found in binary or memory: return function(f,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=/^https:\/\/www\.([A-Za-z0-9\.]+)\.facebook\.com\/tr\/?$/,b=["https://www.facebook.com/tr","https://www.facebook.com/tr/"];e.exports=function(c){if(b.indexOf(c)!==-1)return null;var d=a.exec(c);if(d==null)throw new Error("Malformed tier: "+c);return d[1]}})();return e.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_276.2.dr	String found in binary or memory: return function(f,g,h,i){var j={exports:{}};j.exports;(function(){"use strict";var a={ENDPOINT:"https://www.facebook.com/tr/",INSTAGRAM_TRIGGER_ATTRIBUTION:"https://www.instagram.com/tr/",AEM_ENDPOINT:"https://www.facebook.com/.well-known/aggregated-event-measurement/",GPS_ENDPOINT:"https://www.facebook.com/privacy_sandbox/pixel/register/trigger/",TOPICS_API_ENDPOINT:"https://www.facebook.com/privacy_sandbox/topics/registration/"};j.exports=a})();return j.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_311.2.dr, chromecache_331.2.dr, chromecache_282.2.dr, chromecache_232.2.dr, chromecache_405.2.dr, chromecache_419.2.dr	String found in binary or memory: var kC=function(a,b,c,d,e){var f=bA("fsl",c?"nv.mwt":"mwt",0),g;g=c?bA("fsl","nv.ids",[]):bA("fsl","ids",[]);if(!g.length)return!0;var k=gA(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);V(121);if(m==="https://www.facebook.com/tr/")return V(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!Oy(k,Qy(b, equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: hy.markkasmick.click
Source: global traffic	DNS traffic detected: DNS query: p.jwalf.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: my7recovery.blogspot.com
Source: global traffic	DNS traffic detected: DNS query: ald.my.id
Source: global traffic	DNS traffic detected: DNS query: blogger.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: s10.histats.com
Source: global traffic	DNS traffic detected: DNS query: cdn.rawgit.com
Source: global traffic	DNS traffic detected: DNS query: s4.histats.com
Source: global traffic	DNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: e.dtscout.com
Source: global traffic	DNS traffic detected: DNS query: t.dtscout.com
Source: global traffic	DNS traffic detected: DNS query: pxdrop.lijit.com
Source: global traffic	DNS traffic detected: DNS query: pd.sharethis.com
Source: global traffic	DNS traffic detected: DNS query: cdn.tynt.com
Source: global traffic	DNS traffic detected: DNS query: ic.tynt.com
Source: global traffic	DNS traffic detected: DNS query: t.sharethis.com
Source: global traffic	DNS traffic detected: DNS query: de.tynt.com
Source: global traffic	DNS traffic detected: DNS query: tags.crwdcntrl.net
Source: global traffic	DNS traffic detected: DNS query: t.dtscdn.com
Source: global traffic	DNS traffic detected: DNS query: pixel.onaudience.com
Source: global traffic	DNS traffic detected: DNS query: fundingchoicesmessages.google.com
Source: global traffic	DNS traffic detected: DNS query: cdn-tc.33across.com
Source: global traffic	DNS traffic detected: DNS query: rc.rlcdn.com
Source: global traffic	DNS traffic detected: DNS query: i.simpli.fi
Source: global traffic	DNS traffic detected: DNS query: match.adsrvr.org
Source: global traffic	DNS traffic detected: DNS query: pippio.com
Source: global traffic	DNS traffic detected: DNS query: us-u.openx.net
Source: global traffic	DNS traffic detected: DNS query: p.adsymptotic.com
Source: global traffic	DNS traffic detected: DNS query: idsync.rlcdn.com
Source: global traffic	DNS traffic detected: DNS query: bcp.crwdcntrl.net
Source: global traffic	DNS traffic detected: DNS query: ps.eyeota.net
Source: global traffic	DNS traffic detected: DNS query: ml314.com
Source: global traffic	DNS traffic detected: DNS query: tags.bluekai.com
Source: global traffic	DNS traffic detected: DNS query: sync.sharethis.com
Source: global traffic	DNS traffic detected: DNS query: get.managedmethods.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: 7052064.fs1.hubspotusercontent-na1.net
Source: global traffic	DNS traffic detected: DNS query: www.w3schools.com
Source: global traffic	DNS traffic detected: DNS query: static.hsappstatic.net
Source: global traffic	DNS traffic detected: DNS query: static.hotjar.com
Source: global traffic	DNS traffic detected: DNS query: script.hotjar.com
Source: global traffic	DNS traffic detected: DNS query: www.youtube.com
Source: global traffic	DNS traffic detected: DNS query: js.hubspot.com
Source: global traffic	DNS traffic detected: DNS query: js.usemessages.com
Source: global traffic	DNS traffic detected: DNS query: js.hs-analytics.net
Source: global traffic	DNS traffic detected: DNS query: js.hsleadflows.net
Source: global traffic	DNS traffic detected: DNS query: js.hsadspixel.net
Source: global traffic	DNS traffic detected: DNS query: js.hs-banner.com
Source: global traffic	DNS traffic detected: DNS query: js.hscollectedforms.net
Source: global traffic	DNS traffic detected: DNS query: app.hubspot.com
Source: global traffic	DNS traffic detected: DNS query: forms-na1.hsforms.com
Source: global traffic	DNS traffic detected: DNS query: cta-service-cms2.hubspot.com
Source: global traffic	DNS traffic detected: DNS query: ws.hotjar.com
Source: global traffic	DNS traffic detected: DNS query: content.hotjar.io
Source: global traffic	DNS traffic detected: DNS query: forms.hscollectedforms.net
Source: global traffic	DNS traffic detected: DNS query: perf-na1.hsforms.com
Source: global traffic	DNS traffic detected: DNS query: forms.hsforms.com
Source: global traffic	DNS traffic detected: DNS query: track.hubspot.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: forms.hubspot.com
Source: global traffic	DNS traffic detected: DNS query: api.hubapi.com
Source: global traffic	DNS traffic detected: DNS query: s.adroll.com
Source: global traffic	DNS traffic detected: DNS query: connect.facebook.net
Source: global traffic	DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic	DNS traffic detected: DNS query: tools.luckyorange.com
Source: global traffic	DNS traffic detected: DNS query: www.redditstatic.com
Source: global traffic	DNS traffic detected: DNS query: js.hs-scripts.com
Source: global traffic	DNS traffic detected: DNS query: adservice.google.com
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: pixel-config.reddit.com
Source: global traffic	DNS traffic detected: DNS query: d.adroll.com
Source: global traffic	DNS traffic detected: DNS query: alb.reddit.com
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: analytics.google.com
Source: global traffic	DNS traffic detected: DNS query: settings.luckyorange.com
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: www.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: x.adroll.com
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com
Source: global traffic	DNS traffic detected: DNS query: x.bidswitch.net
Source: global traffic	DNS traffic detected: DNS query: pixel.tapad.com
Source: global traffic	DNS traffic detected: DNS query: cm.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: dsum-sec.casalemedia.com
Source: global traffic	DNS traffic detected: DNS query: pixel.rubiconproject.com
Source: global traffic	DNS traffic detected: DNS query: sync.outbrain.com
Source: global traffic	DNS traffic detected: DNS query: image2.pubmatic.com
Source: global traffic	DNS traffic detected: DNS query: ups.analytics.yahoo.com
Source: global traffic	DNS traffic detected: DNS query: sync.taboola.com
Source: global traffic	DNS traffic detected: DNS query: eb2.3lift.com
Source: global traffic	DNS traffic detected: DNS query: ib.adnxs.com
Source: global traffic	DNS traffic detected: DNS query: 2500081.fs1.hubspotusercontent-na1.net
Source: global traffic	DNS traffic detected: DNS query: secure.adnxs.com

Source: unknown

HTTP traffic detected: POST /el/AGSKWxVAzDHl_-4j7DcCm6sYAbWFlq_mBsm_FyV6OOGNZcwDj1f1wVJJMJDPrG-A9X0dMOs9_cpdPTFlXO6fLqszIBQTCWLwCy0Y8TKsIXcvGA8rLOoYiWyUoC1SpBcoK0frF33KE48rcg== HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveContent-Length: 247sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plainAccept: */*Origin: https://ald.my.idX-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ald.my.id/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundConnection: closecache-control: private, no-cache, no-store, must-revalidate, max-age=0pragma: no-cachecontent-type: text/htmlcontent-length: 796date: Mon, 14 Oct 2024 09:12:29 GMTserver: LiteSpeedalt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

Source: chromecache_265.2.dr, chromecache_305.2.dr	String found in binary or memory: http://a.adroll.com
Source: chromecache_366.2.dr	String found in binary or memory: http://daneden.me/animate
Source: chromecache_366.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_366.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_264.2.dr, chromecache_258.2.dr	String found in binary or memory: http://github.com/kenwheeler/slick
Source: chromecache_264.2.dr, chromecache_258.2.dr	String found in binary or memory: http://github.com/kenwheeler/slick/issues
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: http://google.com
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: http://googleads.g.doubleclick.net
Source: chromecache_264.2.dr, chromecache_258.2.dr	String found in binary or memory: http://kenwheeler.github.io
Source: chromecache_264.2.dr, chromecache_258.2.dr	String found in binary or memory: http://kenwheeler.github.io/slick
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: http://mathiasbynens.be/
Source: chromecache_342.2.dr	String found in binary or memory: http://ns.attribution.com/ads/1.0/
Source: chromecache_366.2.dr	String found in binary or memory: http://opensource.org/licenses/MIT
Source: chromecache_350.2.dr	String found in binary or memory: http://p.jwalf.com/ad/ad?p=198473&w=638192&d=7930e1d26d7336e03d98-1635872656638192&s=212257
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: http://pagead2.googlesyndication.com
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_223.2.dr, chromecache_198.2.dr, chromecache_345.2.dr, chromecache_203.2.dr	String found in binary or memory: http://www.hubspot.com
Source: chromecache_410.2.dr, chromecache_316.2.dr	String found in binary or memory: https://a.dtssrv.com/a?i=
Source: chromecache_268.2.dr, chromecache_275.2.dr	String found in binary or memory: https://adsense.com.
Source: chromecache_419.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_332.2.dr	String found in binary or memory: https://ald.my.id
Source: chromecache_294.2.dr, chromecache_418.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_332.2.dr	String found in binary or memory: https://apis.google.com/js/platform.js
Source: chromecache_332.2.dr	String found in binary or memory: https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhTZef2smB-4WzKsOkrjN080E4YRXcWmVbIq6jcTxU
Source: chromecache_332.2.dr	String found in binary or memory: https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhV2mufCwic-NGC9wpgCnQ_tNbFA-l8rrqbieFyIxc
Source: chromecache_332.2.dr	String found in binary or memory: https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjs851kLAtmjago3pCo-CFHHSnaB4wOH25VmQ1wnAs
Source: chromecache_311.2.dr, chromecache_331.2.dr, chromecache_210.2.dr, chromecache_282.2.dr, chromecache_232.2.dr, chromecache_405.2.dr, chromecache_204.2.dr, chromecache_419.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://cdn.ampproject.org/amp4ads-host-v0.js
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://cdn.ampproject.org/rtv/$
Source: chromecache_410.2.dr, chromecache_316.2.dr	String found in binary or memory: https://cdn.tynt.com/afwu.js
Source: chromecache_398.2.dr, chromecache_276.2.dr	String found in binary or memory: https://connect.facebook.net/
Source: chromecache_398.2.dr, chromecache_276.2.dr	String found in binary or memory: https://connect.facebook.net/log/fbevents_telemetry/
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://cse.google.com/cse.js
Source: chromecache_201.2.dr, chromecache_238.2.dr	String found in binary or memory: https://csp.withgoogle.com/csp/lcreport/
Source: chromecache_265.2.dr, chromecache_305.2.dr	String found in binary or memory: https://d.adroll.com/p
Source: chromecache_196.2.dr, chromecache_407.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/bg/
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/getconfig/sodar
Source: chromecache_196.2.dr, chromecache_407.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232
Source: chromecache_196.2.dr, chromecache_407.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232
Source: chromecache_407.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google
Source: chromecache_196.2.dr, chromecache_407.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/$
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://ep3.adtrafficquality.google/ivt/worklet/caw.js
Source: chromecache_236.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Google
Source: chromecache_236.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Google
Source: chromecache_366.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Inter
Source: chromecache_290.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/intertight/v7/NGSwv5HMAFg6IuGlBNMjxLsD8ah8QA.woff2)
Source: chromecache_290.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/intertight/v7/NGSwv5HMAFg6IuGlBNMjxLsE8ah8QA.woff2)
Source: chromecache_290.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/intertight/v7/NGSwv5HMAFg6IuGlBNMjxLsH8ag.woff2)
Source: chromecache_290.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/intertight/v7/NGSwv5HMAFg6IuGlBNMjxLsI8ah8QA.woff2)
Source: chromecache_290.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/intertight/v7/NGSwv5HMAFg6IuGlBNMjxLsJ8ah8QA.woff2)
Source: chromecache_290.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/intertight/v7/NGSwv5HMAFg6IuGlBNMjxLsK8ah8QA.woff2)
Source: chromecache_290.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/intertight/v7/NGSwv5HMAFg6IuGlBNMjxLsL8ah8QA.woff2)
Source: chromecache_267.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2)
Source: chromecache_267.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS2mu1aB.woff2)
Source: chromecache_267.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2)
Source: chromecache_267.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2)
Source: chromecache_267.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2)
Source: chromecache_267.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSOmu1aB.woff2)
Source: chromecache_267.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2)
Source: chromecache_267.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSymu1aB.woff2)
Source: chromecache_267.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2)
Source: chromecache_267.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu1aB.woff2)
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://fundingchoicesmessages.google.com/i/$
Source: chromecache_419.2.dr	String found in binary or memory: https://google.com
Source: chromecache_419.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/html/$
Source: chromecache_198.2.dr, chromecache_345.2.dr	String found in binary or memory: https://js-na1.hs-scripts.com/6834707.js
Source: chromecache_248.2.dr, chromecache_307.2.dr, chromecache_197.2.dr, chromecache_291.2.dr	String found in binary or memory: https://js.hs-analytics.net/analytics/1728897000000/6834707.js
Source: chromecache_248.2.dr, chromecache_307.2.dr, chromecache_197.2.dr, chromecache_291.2.dr	String found in binary or memory: https://js.hs-banner.com/6834707.js
Source: chromecache_223.2.dr, chromecache_203.2.dr	String found in binary or memory: https://js.hs-banner.com/cookie-banner-public/v1
Source: chromecache_248.2.dr, chromecache_307.2.dr, chromecache_197.2.dr, chromecache_291.2.dr	String found in binary or memory: https://js.hsadspixel.net/fb.js
Source: chromecache_248.2.dr, chromecache_307.2.dr, chromecache_197.2.dr, chromecache_291.2.dr	String found in binary or memory: https://js.hscollectedforms.net/collectedforms.js
Source: chromecache_248.2.dr, chromecache_307.2.dr, chromecache_197.2.dr, chromecache_291.2.dr	String found in binary or memory: https://js.hsleadflows.net/leadflows.js
Source: chromecache_248.2.dr, chromecache_307.2.dr, chromecache_197.2.dr, chromecache_291.2.dr	String found in binary or memory: https://js.hubspot.com/web-interactives-embed.js
Source: chromecache_248.2.dr, chromecache_307.2.dr, chromecache_197.2.dr, chromecache_291.2.dr	String found in binary or memory: https://js.usemessages.com/conversations-embed.js
Source: chromecache_265.2.dr, chromecache_305.2.dr	String found in binary or memory: https://lex.33across.com/ps/v1/pubtoken/?pid=115&event=rtg&us_privacy=&rnd=
Source: chromecache_223.2.dr, chromecache_216.2.dr, chromecache_209.2.dr, chromecache_203.2.dr	String found in binary or memory: https://managedmethods.com/privacy-policy/
Source: chromecache_332.2.dr	String found in binary or memory: https://my7recovery.blogspot.com/
Source: chromecache_332.2.dr	String found in binary or memory: https://my7recovery.blogspot.com/favicon.ico
Source: chromecache_332.2.dr	String found in binary or memory: https://my7recovery.blogspot.com/feeds/posts/default
Source: chromecache_332.2.dr	String found in binary or memory: https://my7recovery.blogspot.com/feeds/posts/default?alt
Source: chromecache_332.2.dr	String found in binary or memory: https://my7recovery.blogspot.com/feeds/posts/default?alt=rss
Source: chromecache_332.2.dr	String found in binary or memory: https://my7recovery.blogspot.com/search
Source: chromecache_419.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_196.2.dr, chromecache_407.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/bg/
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/getconfig/sodar
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&bin=
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&name=invalid_geo&context=10
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=extra&rnd=
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&lidartos
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&start&control&fle=1&s
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-fallback2
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-later2
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-pagehide2
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-start2
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=reach&proto=
Source: chromecache_358.2.dr, chromecache_371.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=fccs&
Source: chromecache_268.2.dr, chromecache_275.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=plmetrics
Source: chromecache_196.2.dr, chromecache_407.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=232
Source: chromecache_311.2.dr, chromecache_331.2.dr, chromecache_210.2.dr, chromecache_282.2.dr, chromecache_232.2.dr, chromecache_405.2.dr, chromecache_204.2.dr, chromecache_419.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/html/$
Source: chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/$
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=
Source: chromecache_268.2.dr, chromecache_351.2.dr, chromecache_236.2.dr, chromecache_275.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/err_rep.js
Source: chromecache_268.2.dr, chromecache_351.2.dr, chromecache_236.2.dr, chromecache_275.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/logging_library.js
Source: chromecache_275.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/$
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping
Source: chromecache_236.2.dr, chromecache_275.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping?e=1
Source: chromecache_196.2.dr, chromecache_407.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=232
Source: chromecache_410.2.dr, chromecache_316.2.dr	String found in binary or memory: https://pd.sharethis.com/pd/dtscout
Source: chromecache_323.2.dr, chromecache_388.2.dr	String found in binary or memory: https://pd.sharethis.com/pd/dtscout?_t_=px&url=
Source: chromecache_323.2.dr, chromecache_388.2.dr	String found in binary or memory: https://pd.sharethis.com/pd/error?e=
Source: chromecache_410.2.dr, chromecache_316.2.dr	String found in binary or memory: https://pixel.onaudience.com/?partner=137085098&mapped=
Source: chromecache_305.2.dr	String found in binary or memory: https://s.adroll.com
Source: chromecache_265.2.dr, chromecache_305.2.dr	String found in binary or memory: https://s.adroll.com/j/
Source: chromecache_265.2.dr, chromecache_305.2.dr	String found in binary or memory: https://s.adroll.com/j/nrpa.js
Source: chromecache_305.2.dr	String found in binary or memory: https://s.adroll.com/j/pre/
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/car.js
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/cocar.js
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/static/topics/topics_frame.html
Source: chromecache_232.2.dr, chromecache_419.2.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_210.2.dr, chromecache_204.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_418.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_410.2.dr, chromecache_316.2.dr	String found in binary or memory: https://t.dtscdn.com/widget/?d=
Source: chromecache_410.2.dr, chromecache_316.2.dr	String found in binary or memory: https://t.dtscout.com/idg/?su=
Source: chromecache_410.2.dr, chromecache_316.2.dr	String found in binary or memory: https://t.dtscout.com/pv/
Source: chromecache_410.2.dr, chromecache_316.2.dr	String found in binary or memory: https://t.dtscout.com/udg/?su=
Source: chromecache_323.2.dr, chromecache_388.2.dr	String found in binary or memory: https://t.sharethis.com/1/k/t.dhj?cid=c010&cls=C&rnd=
Source: chromecache_294.2.dr, chromecache_418.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_381.2.dr	String found in binary or memory: https://tags.crwdcntrl.net/lt/c/16311/sync.min.js
Source: chromecache_410.2.dr, chromecache_316.2.dr	String found in binary or memory: https://tags.crwdcntrl.net/lt/c/3825/lt.min.js
Source: chromecache_311.2.dr, chromecache_331.2.dr, chromecache_210.2.dr, chromecache_282.2.dr, chromecache_232.2.dr, chromecache_405.2.dr, chromecache_204.2.dr, chromecache_419.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_232.2.dr, chromecache_419.2.dr	String found in binary or memory: https://tools.luckyorange.com/core/lo.js?site-id=
Source: chromecache_407.2.dr	String found in binary or memory: https://tpc.googlesyndication.com
Source: chromecache_196.2.dr, chromecache_407.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/$
Source: chromecache_332.2.dr	String found in binary or memory: https://www.blogger.com
Source: chromecache_332.2.dr	String found in binary or memory: https://www.blogger.com/feeds/920271029688449427/posts/default
Source: chromecache_332.2.dr	String found in binary or memory: https://www.blogger.com/profile/03661150497990077846
Source: chromecache_332.2.dr	String found in binary or memory: https://www.blogger.com/static/v1/jsbin/297329198-lbx.js
Source: chromecache_332.2.dr	String found in binary or memory: https://www.blogger.com/static/v1/v-css/13464135-lightbox_bundle.css
Source: chromecache_332.2.dr	String found in binary or memory: https://www.blogger.com/static/v1/widgets/3650705295-widgets.js
Source: chromecache_265.2.dr, chromecache_305.2.dr	String found in binary or memory: https://www.clarity.ms/s/0.7.34/clarity.js
Source: chromecache_232.2.dr, chromecache_419.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_294.2.dr, chromecache_418.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_294.2.dr, chromecache_418.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_294.2.dr, chromecache_418.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_419.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_294.2.dr, chromecache_418.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_268.2.dr, chromecache_275.2.dr	String found in binary or memory: https://www.google.com/adsense
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://www.google.com/adsense/search/async-ads.js
Source: chromecache_207.2.dr, chromecache_409.2.dr, chromecache_317.2.dr, chromecache_346.2.dr, chromecache_245.2.dr, chromecache_253.2.dr, chromecache_242.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/927141988/?random
Source: chromecache_196.2.dr, chromecache_351.2.dr, chromecache_407.2.dr, chromecache_236.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/aframe
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://www.google.com/s2/favicons?sz=64&domain_url=
Source: chromecache_419.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_193.2.dr, chromecache_199.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/managed/js/activeview/
Source: chromecache_419.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_311.2.dr, chromecache_331.2.dr, chromecache_282.2.dr, chromecache_232.2.dr, chromecache_405.2.dr, chromecache_419.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_294.2.dr, chromecache_418.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_311.2.dr, chromecache_331.2.dr, chromecache_282.2.dr, chromecache_232.2.dr, chromecache_405.2.dr, chromecache_419.2.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_236.2.dr	String found in binary or memory: https://www.gstatic.com
Source: chromecache_351.2.dr, chromecache_236.2.dr	String found in binary or memory: https://www.gstatic.com/prose/protected/$
Source: chromecache_210.2.dr, chromecache_204.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_396.2.dr, chromecache_244.2.dr	String found in binary or memory: https://www.redditstatic.com/ads/8d515a58/pixel.js
Source: chromecache_232.2.dr, chromecache_419.2.dr	String found in binary or memory: https://www.redditstatic.com/ads/pixel.js
Source: chromecache_219.2.dr	String found in binary or memory: https://www.w3schools.com/w3css/4/w3.css
Source: chromecache_210.2.dr, chromecache_204.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chromecache_265.2.dr, chromecache_305.2.dr	String found in binary or memory: https://x.adroll.com/pxl/iframe_content.html?advertisable=

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50211 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50498 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50452 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50502
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50501
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50504
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50503
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50506
Source: unknown	Network traffic detected: HTTP traffic on port 50417 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50505
Source: unknown	Network traffic detected: HTTP traffic on port 50440 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50508
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50507
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50500
Source: unknown	Network traffic detected: HTTP traffic on port 50486 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50509
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50513
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 50359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50512
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50515
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50514
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50517
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50516
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50519
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50518
Source: unknown	Network traffic detected: HTTP traffic on port 50464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50511
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50510
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 50439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50524
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50523
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50526
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50525
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50528
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50527
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50529
Source: unknown	Network traffic detected: HTTP traffic on port 50507 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50520
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50522
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50521
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50510 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 50382 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 50462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 50347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 50335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 50282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50522 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50407 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 50313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50208 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50496 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50474 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50337
Source: unknown	Network traffic detected: HTTP traffic on port 50420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50336
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50386 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50338
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50330
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50332
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50349
Source: unknown	Network traffic detected: HTTP traffic on port 50505 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 50352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50345
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50512 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50358
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50351
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50350
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50353
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50112
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50357
Source: unknown	Network traffic detected: HTTP traffic on port 50374 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50356
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 50419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 50255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50524 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 50442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50361
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50371
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 50478 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50530
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50410 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50304
Source: unknown	Network traffic detected: HTTP traffic on port 50444 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50307
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50309
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50201 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50300
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50301
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50476 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 50384 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50316
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50319
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50318
Source: unknown	Network traffic detected: HTTP traffic on port 50279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50311
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50313
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 50454 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50326
Source: unknown	Network traffic detected: HTTP traffic on port 50503 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50325
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50320
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50321
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50324
Source: unknown	Network traffic detected: HTTP traffic on port 50488 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50323
Source: unknown	Network traffic detected: HTTP traffic on port 50372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50432 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50514 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 50286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50389 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50400 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50377 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 50331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 50205 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50502 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 50390 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50515 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.7:49717 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.7:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.7:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.7:50250 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.7:50383 version: TLS 1.2

Source: classification engine

Classification label: mal48.win@29/364@367/100

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2260,i,10608258172845983546,5722045760868179073,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://hy.markkasmick.click/cx/tbSgVco_akr35UznLBgMmL_dGwr4A9B_vyg2WwEB0w1LRjKjQMyEnB89mCfTRy8oqnbpdFunqinBhx0TsHvSJdUHnbksc3kdcKecoDvVHa5LAm46atMmRo3D2CHoEu2bmOqt4Ic8O_7AE7Igwgbi5c8zmZf6Fqp_XqcjREPr7609oL7vKm8FfjGLhMetr2oxtpR3ywH4BUElgc7EI7usxj8CJYEUMktwlb7YUzPvYQ7P1PilEV0LqiXI5sm6QVF4ZGl5TIXhnQLOG0kl6WQ0miiZysBfhaNojnPTUvisUUkwOp2fYTxkXEIhZ7ESJ7qXYLxQbmy4RJVeZZZ3RY5rX8W5t8cudSM9Zx7UaxgLH56aOv81v4QfUnzroT9v7LR3jPEjzYXr2LwuykYQnzvV6boWlogU4jkPE6MocRRlRoC6uUx2e1Wseo8MqGWTT2uXo4HbQDneiMF84sQ34*3TnbAxXWu8xLbb_mAOQxUTA3T5TUUZKeU3ziolM8TSVV5Y5LQTFGtNArddwJKdWCb_cLYMxUJpZ3cqM_A"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=2260,i,10608258172845983546,5722045760868179073,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Drive-by Compromise	Windows Management Instrumentation	Path Interception	1 Process Injection	1 Process Injection	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	Rootkit	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
https://hy.markkasmick.click/cx/tbSgVco_akr35UznLBgMmL_dGwr4A9B_vyg2WwEB0w1LRjKjQMyEnB89mCfTRy8oqnbpdFunqinBhx0TsHvSJdUHnbksc3kdcKecoDvVHa5LAm46atMmRo3D2CHoEu2bmOqt4Ic8O_7AE7Igwgbi5c8zmZf6Fqp_XqcjREPr7609oL7vKm8FfjGLhMetr2oxtpR3ywH4BUElgc7EI7usxj8CJYEUMktwlb7YUzPvYQ7P1PilEV0LqiXI5sm6QVF4ZGl5TIXhnQLOG0kl6WQ0miiZysBfhaNojnPTUvisUUkwOp2fYTxkXEIhZ7ESJ7qXYLxQbmy4RJVeZZZ3RY5rX8W5t8cudSM9Zx7UaxgLH56aOv81v4QfUnzroT9v7LR3jPEjzYXr2LwuykYQnzvV6boWlogU4jkPE6MocRRlRoC6uUx2e1Wseo8MqGWTT2uXo4HbQDneiMF84sQ34*3TnbAxXWu8xLbb_mAOQxUTA3T5TUUZKeU3ziolM8TSVV5Y5LQTFGtNArddwJKdWCb_cLYMxUJpZ3cqM_A	1%	Virustotal		Browse

Source	Detection	Scanner	Label	Link
https://stats.g.doubleclick.net/g/collect	0%	URL Reputation	safe
https://stats.g.doubleclick.net/g/collect	0%	URL Reputation	safe
https://www.redditstatic.com/ads/pixel.js	0%	URL Reputation	safe
https://ep2.adtrafficquality.google	0%	URL Reputation	safe
https://ampcid.google.com/v1/publisher:getClientId	0%	URL Reputation	safe
https://s.adroll.com	0%	URL Reputation	safe
http://ns.attribution.com/ads/1.0/	0%	URL Reputation	safe
https://stats.g.doubleclick.net/j/collect	0%	URL Reputation	safe
https://cdn.ampproject.org/amp4ads-host-v0.js	0%	URL Reputation	safe
https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232	0%	URL Reputation	safe
http://mathiasbynens.be/	0%	URL Reputation	safe
https://connect.facebook.net/	0%	URL Reputation	safe
http://google.com	100%	URL Reputation	malware
http://daneden.me/animate	0%	URL Reputation	safe
http://kenwheeler.github.io/slick	0%	URL Reputation	safe
https://www.blogger.com	0%	Virustotal		Browse
https://js.usemessages.com/conversations-embed.js	0%	Virustotal		Browse
https://googleads.g.doubleclick.net/pagead/html/r20241009/r20190131/zrt_lookup_fy2021.html	0%	Virustotal		Browse
https://pd.sharethis.com/pd/dtscout	0%	Virustotal		Browse
https://perf-na1.hsforms.com/embed/v3/counters.gif?key=config-loaded-success&value=1	0%	Virustotal		Browse
https://us-u.openx.net/w/1.0/cm?cc=1&id=e508c905-ddce-4732-92a4-0b0f5b72a28f&r=https%3A%2F%2Fidsync.rlcdn.com%2F396846.gif%3Fserved_by%3Devergreen%26partner_uid%3D	0%	Virustotal		Browse

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
jsdelivr.map.fastly.net	151.101.129.229	true	false	unknown
pacman-content-live.live.eks.hotjar.com	54.171.225.199	true	false	unknown
forms.hubspot.com	104.16.118.116	true	false	unknown
chaeynore.com	23.109.170.65	true	false	unknown
cs837.wac.edgecastcdn.net	192.229.133.221	true	false	unknown
2500081.fs1.hubspotusercontent-na1.net	104.18.41.124	true	false	unknown
cta-service-cms2.hubspot.com	104.16.118.116	true	false	unknown
eu-eb2.3lift.com	76.223.111.18	true	false	unknown
adserver-vpc-alb-2-1264451658.eu-west-1.elb.amazonaws.com	108.128.74.13	true	false	unknown
stats.g.doubleclick.net	108.177.15.155	true	false	unknown
httplogserver-lb.global.unified-prod.sharethis.net	18.195.70.100	true	false	unknown
track.hubspot.com	104.16.118.116	true	false	unknown
forms.hscollectedforms.net	104.16.107.254	true	false	unknown
ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud	3.75.62.37	true	false	unknown
s4.histats.com	149.56.240.127	true	false	unknown
cdnjs.cloudflare.com	104.17.24.14	true	false	unknown
js.hs-scripts.com	104.16.141.209	true	false	unknown
cm.g.doubleclick.net	216.58.206.34	true	false	unknown
www.google.com	142.250.185.100	true	false	unknown
js.usemessages.com	104.16.78.142	true	false	unknown
ald.my.id	198.252.106.147	true	false	unknown
bcp.crwdcntrl.net	54.77.205.105	true	false	unknown
match.adsrvr.org	3.33.220.150	true	false	unknown
static-cdn.hotjar.com	18.66.102.106	true	false	unknown
js.hs-banner.com	172.64.147.16	true	false	unknown
star-mini.c10r.facebook.com	157.240.253.35	true	false	unknown
us-u.openx.net	34.98.64.218	true	false	unknown
d1qug1xf2dk5z6.cloudfront.net	18.245.86.116	true	false	unknown
nydc1.outbrain.org	64.202.112.63	true	false	unknown
7052064.fs1.hubspotusercontent-na1.net	104.18.41.124	true	false	unknown
js.hsadspixel.net	104.17.223.152	true	false	unknown
t.dtscout.com	141.101.120.10	true	false	unknown
pixel.onaudience.com	148.113.153.94	true	false	unknown
sludge-sludge-production-624682132.eu-west-1.elb.amazonaws.com	54.72.14.45	true	false	unknown
pug-lhr-bc.pubmnet.com	185.64.191.210	true	false	unknown
bg.microsoft.map.fastly.net	199.232.214.172	true	false	unknown
dualstack.reddit.map.fastly.net	151.101.129.140	true	false	unknown
youtube-ui.l.google.com	216.58.206.78	true	false	unknown
googleads.g.doubleclick.net	142.250.184.194	true	false	unknown
www3.l.google.com	142.250.185.110	true	false	unknown
reddit.map.fastly.net	151.101.1.140	true	false	unknown
api.hubapi.com	104.18.244.108	true	false	unknown
td.doubleclick.net	142.250.185.162	true	false	unknown
ml314.com	34.117.77.79	true	false	unknown
settings.luckyorange.com	34.107.203.234	true	false	unknown
googlehosted.l.googleusercontent.com	142.250.185.161	true	false	unknown
wsky-live.live.eks.hotjar.com	99.80.69.237	true	false	unknown
forms.hsforms.com	104.18.80.204	true	false	unknown
de.tynt.com	67.202.105.31	true	false	unknown
js.hs-analytics.net	104.16.160.168	true	false	unknown
user-data-eu.bidswitch.net	35.214.136.108	true	false	unknown
adservice.google.com	216.58.212.162	true	false	unknown
ps.eyeota.net	3.120.214.218	true	false	unknown
idsync.rlcdn.com	35.244.174.68	true	false	unknown
scontent.xx.fbcdn.net	157.240.251.9	true	false	unknown
group7.sites.hscoscdn00.net	199.60.103.30	true	false	unknown
script.hotjar.com	13.33.187.19	true	false	unknown
i.simpli.fi	35.204.89.238	true	false	unknown
am-vip001.taboola.com	141.226.228.48	true	false	unknown
pixel.tapad.com	34.111.113.62	true	false	unknown
pippio.com	107.178.254.65	true	false	unknown
static.hsappstatic.net	104.17.175.91	true	false	unknown
a.nel.cloudflare.com	35.190.80.1	true	false	unknown
app.hubspot.com	104.16.117.116	true	false	unknown
blogspot.l.googleusercontent.com	142.250.185.97	true	false	unknown
js.hubspot.com	104.16.117.116	true	false	unknown
rawgitcdn.b-cdn.net	169.150.236.104	true	false	unknown
js.hsleadflows.net	104.18.139.17	true	false	unknown
adserver-2084671375.us-east-1.elb.amazonaws.com	52.202.213.18	true	false	unknown
tags.crwdcntrl.net	65.9.66.122	true	false	unknown
forms-na1.hsforms.com	104.19.175.188	true	false	unknown
dsum-sec.casalemedia.com	104.18.36.155	true	false	unknown
thirdparty-logserver-lb.global.unified-prod.sharethis.net	52.59.151.85	true	false	unknown
t.dtscdn.com	104.26.12.60	true	false	unknown
e.dtscout.com	141.101.120.11	true	false	unknown
pug-ams-bc.pubmnet.com	198.47.127.205	true	false	unknown
analytics.google.com	142.250.186.142	true	false	unknown
ic.tynt.com	67.202.105.33	true	false	unknown
rc-ext-geo.rlcdn.com	35.244.174.68	true	false	unknown
perf-na1.hsforms.com	104.19.175.188	true	false	unknown
ib.anycast.adnxs.com	185.89.210.244	true	false	unknown
d20519brkbo4nz.cloudfront.net	18.239.94.29	true	false	unknown
js.hscollectedforms.net	104.16.107.254	true	false	unknown
alb.reddit.com	unknown	unknown	false	unknown
d.adroll.com	unknown	unknown	false	unknown
secure.adnxs.com	unknown	unknown	false	unknown
static.hotjar.com	unknown	unknown	false	unknown
www.youtube.com	unknown	unknown	false	unknown
ws.hotjar.com	unknown	unknown	false	unknown
www.redditstatic.com	unknown	unknown	false	unknown
pixel.rubiconproject.com	unknown	unknown	false	unknown
connect.facebook.net	unknown	unknown	false	unknown
px.ads.linkedin.com	unknown	unknown	false	unknown
get.managedmethods.com	unknown	unknown	false	unknown
x.adroll.com	unknown	unknown	false	unknown
p.jwalf.com	unknown	unknown	false	unknown
rc.rlcdn.com	unknown	unknown	false	unknown
tools.luckyorange.com	unknown	unknown	false	unknown
sync.sharethis.com	unknown	unknown	false	unknown
my7recovery.blogspot.com	unknown	unknown	false	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://get.managedmethods.com/cloud-application-security-checklist	false		unknown
https://x.adroll.com/pxl/iframe_content.html?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=55268102626.38289&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&advertisable=TSSSGOL6MBFETCAHMJBJCQ	false		unknown
https://get.managedmethods.com/hubfs/Background.svg	false		unknown
https://get.managedmethods.com/_hcms/perf/v2?viaBeacon=true	false		unknown
https://www.redditstatic.com/ads/pixel.js	false	URL Reputation: safe	unknown
https://alb.reddit.com/rp.gif?ts=1728903365250&id=a2_dy5o8mn2d6oc&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=631133ec-3227-461f-8a3a-bfa5fb517d3d&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_5afed25b&dpm=&dpcc=&dprc=	false		unknown
https://d.adroll.com/cm/index/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=55268102626.38289&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&advertisable=TSSSGOL6MBFETCAHMJBJCQ	false		unknown
https://js.usemessages.com/conversations-embed.js	false	0%, Virustotal, Browse	unknown
https://idsync.rlcdn.com/362358.gif?google_gid=CAESEN8gEFx9cwtRY3EyfYfHFSQ&google_cver=1	false		unknown
https://d.adroll.com/pixel/TSSSGOL6MBFETCAHMJBJCQ/I63T2M6SPVC5ROYHA7HR6W?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=55268102626.38289&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&cookie=TSSSGOL6MBFETCAHMJBJCQ%3A1%7CI63T2M6SPVC5ROYHA7HR6W%3A1%7CJ5ZZRODTFVDKLJ2GKXKSSA%3A1&adroll_s_ref=https%3A//get.managedmethods.com/k12-cybersecurity-safety-k12dive%3Fgad_source%3D5&keyw=&p0=7596&xa4=1	false		unknown
https://d.adroll.com/cm/b/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=55268102626.38289&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&advertisable=TSSSGOL6MBFETCAHMJBJCQ	false		unknown
https://ml314.com/utsync.ashx?eid=50131&et=13&cid=lr&fp=ZHoAA2cM4IQAAAAICdw7Aw%3D%3D&gdpr=0&gdpr_consent=&return=https%3A%2F%2Fidsync.rlcdn.com%2F395886.gif%3Fpartner_uid%3D%5BPersonID%5D	false		unknown
https://fundingchoicesmessages.google.com/f/AGSKWxUmsMqtSSePcx4h11wfZV5rxyGVnJAk3oRbeOgKg7Io4obCBjjBWNKhsHkvPsx3lQdQWEDqC1eiMud2YT43HJ5HwRq_9qwIjdhbtz3yndJAe8FOk_FaXhRHtllCX0s7Nhk82CqRrQ==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4ODk3MTU3LDYyNjAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9hbGQubXkuaWQvIixudWxsLFtbOCwidGFCZ0d2UlFDMjAiXSxbOSwiZW4tVVMiXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0	false		unknown
https://x.adroll.com/attribution/trigger?fpc=378484b1f0e790975382e6fc128c23d2&advertisable_eid=TSSSGOL6MBFETCAHMJBJCQ&conversion_type=PageView&conversion_value=0.00&currency=USC&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5	false		unknown
https://static.hotjar.com/c/hotjar-1110137.js?sv=6	false		unknown
https://www.redditstatic.com/ads/conversions-config/v1/pixel/config/a2_dy5o8mn2d6oc_telemetry	false		unknown
https://get.managedmethods.com/hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js	false		unknown
https://googleads.g.doubleclick.net/pagead/html/r20241009/r20190131/zrt_lookup_fy2021.html	false	0%, Virustotal, Browse	unknown
https://x.adroll.com/.well-known/attribution-reporting/debug/verbose	false		unknown
https://get.managedmethods.com/_hcms/forms/embed/v3/form/6834707/b2b34cd6-93c2-44dd-9be1-38727a6852ef/json?hs_static_app=forms-embed&hs_static_app_version=1.6227&X-HubSpot-Static-App-Info=forms-embed-1.6227	false		unknown
https://www.youtube.com/embed/t3Gl92wBomo?feature=oembed	false		unknown
https://track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=471034161&v=1.1&a=6834707&pi=44965294738&ct=landing-page&ccu=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&cpi=44965294738&lpi=44965294738&abi=44965294735&lvi=44965294738&lvc=en&r=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&pu=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&t=Cloud+App+Security+Checklist+%7C+Google+%26+Microsoft+365+Security&cts=1728903368157&vi=1ad7ee3b723d214336417ad5b634063c&nc=false&u=82022089.1ad7ee3b723d214336417ad5b634063c.1728897174105.1728897174105.1728897174105.1&b=82022089.2.1728897174106&pt=1&cc=15	false		unknown
https://ald.my.id/	false		unknown
https://fundingchoicesmessages.google.com/el/AGSKWxVZoYWlfdvwHBg7uZcv5GxnOgt9zM-aVFvVvpqOrXouyIjFS0uOWep_F_zzjDgtTLy6hZmKDJysA3bXlZb0BivSTVZipL6STbwGlaV4NIID61N6S8krYmd6cdOYhIiUXqj1mW9YSg==	false		unknown
https://get.managedmethods.com/hubfs/Content%20Cloud%20App%20Security%20Checklist/HS%20Landing%20Page%20Preview%20-%20Cloud%20App%20Security%20Checklist%20(791%20x%20463%20px).png	false		unknown
https://d.adroll.com/cm/g/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=55268102626.38289&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&advertisable=TSSSGOL6MBFETCAHMJBJCQ	false		unknown
https://ups.analytics.yahoo.com/ups/55980/sync?_origin=1&uid=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&gdpr=0&gdpr_consent=BOOla_OOOla_OA2ABBENAkwAAAAXyACAAyAIIA	false		unknown
https://pd.sharethis.com/pd/dtscout	false	0%, Virustotal, Browse	unknown
https://x.bidswitch.net/sync?dsp_id=44&user_id=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI	false		unknown
https://de.tynt.com/deb/v2?id=wu!&dn=AFWU&cc=1&chpv=10.0.0&chuav=Google%20Chrome%3Bv%3D117.0.5938.134%2C%20Not%3BA%3DBrand%3Bv%3D8.0.0.0%2C%20Chromium%3Bv%3D117.0.5938.134&chp=Windows&chmob=0&chua=Google%20Chrome%3Bv%3D117%2C%20Not%3BA%3DBrand%3Bv%3D8%2C%20Chromium%3Bv%3D117&r=https%3A%2F%2Fald.my.id%2F&pu=https%3A%2F%2Fald.my.id%2F	false		unknown
https://app.hubspot.com/content-tools-menu/api/v1/tools-menu/has-permission-json?portalId=6834707	false		unknown
https://us-u.openx.net/w/1.0/cm?cc=1&id=e508c905-ddce-4732-92a4-0b0f5b72a28f&r=https%3A%2F%2Fidsync.rlcdn.com%2F396846.gif%3Fserved_by%3Devergreen%26partner_uid%3D	false	0%, Virustotal, Browse	unknown
https://perf-na1.hsforms.com/embed/v3/counters.gif?key=config-loaded-success&value=1	false	0%, Virustotal, Browse	unknown
https://cta-service-cms2.hubspot.com/web-interactives/public/v1/embed/combinedConfigs?portalId=6834707&currentUrl=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&utk=1ad7ee3b723d214336417ad5b634063c&__hstc=82022089.1ad7ee3b723d214336417ad5b634063c.1728897174105.1728897174105.1728897174105.1&__hssc=82022089.1.1728897174106&referrer=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&contentId=44965294738	false		unknown
https://d.adroll.com/cm/r/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ	false		unknown
https://pixel.tapad.com/idsync/ex/receive?partner_id=1830&partner_device_id=7d931d72-b6cd-40d8-9aaa-91033ac03d95&ttd_puid=e3913225-94b4-4b08-9fd3-4285fd980084%2C%2C	false		unknown
https://sync.sharethis.com/eyeota?uid=2vSdg0G_wj1oSR5uhhmamgKTQUQPGWo6UXUC2ilh8T3A&gdpr=0&gdpr_consent=	false		unknown
https://ald.my.id/favicon.ico	false		unknown
https://s.adroll.com/j/pre/TSSSGOL6MBFETCAHMJBJCQ/I63T2M6SPVC5ROYHA7HR6W/fpconsent.js	false		unknown
http://p.jwalf.com/ad/ad?p=198473&w=638192&d=7930e1d26d7336e03d98-1635872656638192&s=212257	false		unknown
https://d.adroll.com/cm/n/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ	false		unknown
https://x.adroll.com/attribution/trigger?fpc=378484b1f0e790975382e6fc128c23d2&advertisable_eid=TSSSGOL6MBFETCAHMJBJCQ&conversion_type=PageView&conversion_value=0.00&currency=USC&flg=1&pv=55268102626.38289&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist	false		unknown
https://fundingchoicesmessages.google.com/i/ca-pub-2542884292174911?href=https%3A%2F%2Fald.my.id&ers=2	false		unknown
https://forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1	false		unknown
https://cm.g.doubleclick.net/pixel?google_nid=epsilon&google_cm	false		unknown
https://t.dtscout.com/idg/?su=1040172889715587758A2B28B3F6BBD2	false		unknown
https://x.adroll.com/igs?advertisable=TSSSGOL6MBFETCAHMJBJCQ&fpc=378484b1f0e790975382e6fc128c23d2	false		unknown
https://pixel.tapad.com/idsync/ex/receive?partner_id=APPNEXUS&partner_device_id=4305931231207897773&pt=e3913225-94b4-4b08-9fd3-4285fd980084%2C%2C	false		unknown
https://d.adroll.com/cm/b/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&advertisable=TSSSGOL6MBFETCAHMJBJCQ	false		unknown
https://track.hubspot.com/__ptq.gif?k=17&fi=f054981c-21de-4ec6-8c5a-6dd37a6f0a15&fci=a869e27a-a4fb-4e28-b720-50ae827c4e48&ft=0&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=471034161&v=1.1&a=6834707&pi=44965294738&ct=landing-page&ccu=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&cpi=44965294738&lpi=44965294738&abi=44965294735&lvi=44965294738&lvc=en&r=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&pu=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&t=Cloud+App+Security+Checklist+%7C+Google+%26+Microsoft+365+Security&cts=1728903368160&vi=1ad7ee3b723d214336417ad5b634063c&nc=false&u=82022089.1ad7ee3b723d214336417ad5b634063c.1728897174105.1728897174105.1728897174105.1&b=82022089.2.1728897174106&pt=1&cc=15	false		unknown
https://d.adroll.com/cm/n/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=55268102626.38289&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&advertisable=TSSSGOL6MBFETCAHMJBJCQ	false		unknown
https://a.nel.cloudflare.com/report/v4?s=ZJHPpfUM%2BIP6sYUEcgRvSgPNB3BLhOnNhSksiyRwByBbjmGdDFDs%2FaeYepX3NL4vjpIaOO1%2Fmd9sGcgkRIovD7xt6homgXsQzcxgZgSs82s75qgATJSmJ8uAJLjrQ1rUtChXKVc2IRI%3D	false		unknown
https://pixel.onaudience.com/?partner=137085098&mapped=1040172889715587758A2B28B3F6BBD2	false		unknown
https://match.adsrvr.org/track/cmb/generic?ttd_pid=xksw9la&ttd_tpi=1&gdpr=0	false		unknown
https://match.adsrvr.org/track/cmf/generic?ttd_pid=tapad&ttd_tpi=1&ttd_puid=e3913225-94b4-4b08-9fd3-4285fd980084%252C%252C&gdpr=0&gdpr_consent=	false		unknown
https://d.adroll.com/cm/taboola/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=55268102626.38289&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&advertisable=TSSSGOL6MBFETCAHMJBJCQ	false		unknown
https://fundingchoicesmessages.google.com/f/AGSKWxX0-0x5HivWeZLchiQ-nD7g2ILscryuZP_ALv6f3ICLAOJ-avY8-qKfwAdUk5OjIfQJNpUfSt6dcMucORzNFPmm-eBr07hAP4N-Gd6Dh2lmgPI8mzM7UY1l8KzcVJqhr_oszQslaA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4ODk3MTYxLDQ0OTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsNiw5XSxudWxsLDIsbnVsbCwiZW4iLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly9hbGQubXkuaWQvIixudWxsLFtbOCwidGFCZ0d2UlFDMjAiXSxbOSwiZW4tVVMiXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0	false		unknown
https://d.adroll.com/cm/r/out?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=55268102626.38289&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fcloud-application-security-checklist&advertisable=TSSSGOL6MBFETCAHMJBJCQ	false		unknown
https://www.youtube.com/s/player/2f238d39/www-player.css	false		unknown
https://d.adroll.com/pixel/TSSSGOL6MBFETCAHMJBJCQ/I63T2M6SPVC5ROYHA7HR6W?adroll_fpc=378484b1f0e790975382e6fc128c23d2-1728897186400&flg=1&pv=63965975650.284035&arrfrr=https%3A%2F%2Fget.managedmethods.com%2Fk12-cybersecurity-safety-k12dive%3Fgad_source%3D5&cookie=&adroll_s_ref=https%3A//googleads.g.doubleclick.net/&keyw=&p0=20119&xa4=1	false		unknown
https://get.managedmethods.com/cloud-application-security-checklist?hsLang=en	false		unknown
https://cdn.rawgit.com/igniel/blogger/master/iglo/v2.js	false		unknown
https://js.hscollectedforms.net/collectedforms.js	false		unknown
https://forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1	false		unknown
https://ups.analytics.yahoo.com/ups/55980/sync?_origin=1&uid=ZTQ2NWY2YjE4ZWEzMzMzNDFjYTg3ZTNkMmU4MTIxYmI&gdpr=0&gdpr_consent=BOOla_OOOla_OA2ABBENAkwAAAAXyACAAyAIIA&verify=true	false		unknown
https://googleads.g.doubleclick.net/aclk?nis=6&sa=l&ai=CzpLmhOAMZ46MNdLp78EPn-jPyQnboZvOeo-Yz9CQE6yFu4fTOBABIKuv2JABYMkGoAGlxfPnA8gBAagDAcgDywSqBPkBT9Cep1guQNdWpPsrmNwBIZ2KcXe07fxUOlQoQaI0RONvZdfXKhZbO6f9rnrbOMDO2JUpIadxb9srUNd2EBCTqAdj3bLPaSgZ3jIVIzl7UU-IOFO-V5Pq9ASgMq0BtJZFMZtnquXJX1jNN5ovREKhjebK0Q2wP9xqO6BvKPIxFbDLSB9rwzaBdV3TiycQPFc9dN1KSBU7y9IVonucXuTQenZiUDUbEqL70-SjNPPllWiqjrLsIa4giBKMUBVgzttceF9DcNJAXT_EQ1EZbIvirUt_FiXB9fGyTNYWfJtjlL6HRgqlSaMByE5YNVwbSfjxlbjWsjlGZrBIwAT4h4n_hwWIBYO-m49RoAYugAfDuowYqAfVyRuoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgHmgaoB_PRG6gHltgbqAeqm7ECqAeDrbECqAfgvbECqAf_nrECqAffn7ECqAfKqbECqAfrpbECqAfqsbECqAeZtbECqAe-t7ECqAf4wrECqAf7wrEC2AcB0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpY2JCM58ONiQOxCVEO7X6GkChngAoBmAsByAsB2gwRCgsQ0Oewx6S6g5iDARICAQOqDQJVU8gNAdgTCtAVAZgWAfgWAYAXAbIXAhgBuhcCOAGyGAkSAqRmGC4iAQDQGAE&ae=1&ase=2&gclid=EAIaIQobChMIjt6N58ONiQMV0vQ7Ah0f9DOZEAEYASAAEgKBIvD_BwE&num=1&cid=CAQSTwDpaXnfhIVrKubni22jrvJ193s0SUtKenR05Ckkb7AzizqZ1SmYpmZnI8rh5H_O6MTsFcTZgu04yoCtRSVKUMBwl229eFS4BBBIVgak2CYYAQ&sig=AOD64_3gZVqtoSijFnTKmu_DnIf-3Ae7vw&client=ca-pub-2542884292174911&rf=1&nb=8&act=1&ri=1&adurl=https://get.managedmethods.com/k12-cybersecurity-safety-k12dive%3Fgad_source%3D5	false		unknown
https://hy.markkasmick.click/imp/70341?param_3=nortb_over_ttl&nrb	false		unknown
https://cdn.jsdelivr.net/gh/igniel/blogger@master/iglo/v2.js	false		unknown
https://get.managedmethods.com/hs/hsstatic/HubspotToolsMenu/static-1.354/js/index.js	false		unknown
https://connect.facebook.net/signals/config/283945248938426?v=2.9.170&r=stable&domain=get.managedmethods.com&hme=d82868061a8c707cd31395a3055e7449daa03bd520872727258c39e6af34523e&ex_m=70%2C120%2C106%2C110%2C61%2C4%2C99%2C69%2C16%2C96%2C88%2C51%2C54%2C171%2C174%2C186%2C182%2C183%2C185%2C29%2C100%2C53%2C77%2C184%2C166%2C169%2C179%2C180%2C187%2C130%2C41%2C34%2C142%2C15%2C50%2C193%2C192%2C132%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C92%2C17%2C14%2C95%2C91%2C90%2C107%2C52%2C109%2C39%2C108%2C30%2C93%2C26%2C167%2C170%2C139%2C28%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C101%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C103%2C102%2C104%2C97%2C10%2C20%2C3%2C38%2C74%2C19%2C85%2C56%2C83%2C33%2C73%2C0%2C94%2C32%2C82%2C87%2C47%2C46%2C86%2C37%2C5%2C89%2C81%2C44%2C35%2C84%2C2%2C36%2C63%2C42%2C105%2C45%2C79%2C68%2C111%2C60%2C59%2C31%2C98%2C58%2C55%2C49%2C78%2C72%2C24%2C112	false		unknown
https://api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=6834707	false		unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://stats.g.doubleclick.net/g/collect	chromecache_210.2.dr, chromecache_204.2.dr	false	URL Reputation: safe URL Reputation: safe	unknown
https://www.blogger.com	chromecache_332.2.dr	false	0%, Virustotal, Browse	unknown
https://ep2.adtrafficquality.google	chromecache_407.2.dr	false	URL Reputation: safe	unknown
https://ampcid.google.com/v1/publisher:getClientId	chromecache_294.2.dr, chromecache_418.2.dr	false	URL Reputation: safe	unknown
https://s.adroll.com	chromecache_305.2.dr	false	URL Reputation: safe	unknown
https://fundingchoicesmessages.google.com/i/$	chromecache_351.2.dr, chromecache_236.2.dr	false		unknown
http://ns.attribution.com/ads/1.0/	chromecache_342.2.dr	false	URL Reputation: safe	unknown
https://stats.g.doubleclick.net/j/collect	chromecache_418.2.dr	false	URL Reputation: safe	unknown
https://cdn.ampproject.org/amp4ads-host-v0.js	chromecache_351.2.dr, chromecache_236.2.dr	false	URL Reputation: safe	unknown
https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjs851kLAtmjago3pCo-CFHHSnaB4wOH25VmQ1wnAs	chromecache_332.2.dr	false		unknown
https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232	chromecache_196.2.dr, chromecache_407.2.dr	false	URL Reputation: safe	unknown
https://my7recovery.blogspot.com/feeds/posts/default?alt=rss	chromecache_332.2.dr	false		unknown
https://securepubads.g.doubleclick.net/pagead/js/cocar.js	chromecache_351.2.dr, chromecache_236.2.dr	false		unknown
http://mathiasbynens.be/	chromecache_351.2.dr, chromecache_236.2.dr	false	URL Reputation: safe	unknown
https://pd.sharethis.com/pd/dtscout?_t_=px&url=	chromecache_323.2.dr, chromecache_388.2.dr	false		unknown
https://connect.facebook.net/	chromecache_398.2.dr, chromecache_276.2.dr	false	URL Reputation: safe	unknown
https://www.google.com/adsense/search/async-ads.js	chromecache_351.2.dr, chromecache_236.2.dr	false		unknown
http://googleads.g.doubleclick.net	chromecache_351.2.dr, chromecache_236.2.dr	false		unknown
https://www.blogger.com/static/v1/widgets/3650705295-widgets.js	chromecache_332.2.dr	false		unknown
https://ep2.adtrafficquality.google/sodar/$	chromecache_351.2.dr, chromecache_236.2.dr	false		unknown
https://www.google.com/pagead/1p-user-list/927141988/?random	chromecache_207.2.dr, chromecache_409.2.dr, chromecache_317.2.dr, chromecache_346.2.dr, chromecache_245.2.dr, chromecache_253.2.dr, chromecache_242.2.dr, chromecache_298.2.dr	false		unknown
http://www.hubspot.com	chromecache_223.2.dr, chromecache_198.2.dr, chromecache_345.2.dr, chromecache_203.2.dr	false		unknown
http://google.com	chromecache_351.2.dr, chromecache_236.2.dr	true	URL Reputation: malware	unknown
https://www.blogger.com/static/v1/jsbin/297329198-lbx.js	chromecache_332.2.dr	false		unknown
http://daneden.me/animate	chromecache_366.2.dr	false	URL Reputation: safe	unknown
https://www.blogger.com/feeds/920271029688449427/posts/default	chromecache_332.2.dr	false		unknown
https://www.blogger.com/static/v1/v-css/13464135-lightbox_bundle.css	chromecache_332.2.dr	false		unknown
https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhV2mufCwic-NGC9wpgCnQ_tNbFA-l8rrqbieFyIxc	chromecache_332.2.dr	false		unknown
http://kenwheeler.github.io/slick	chromecache_264.2.dr, chromecache_258.2.dr	false	URL Reputation: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
13.33.187.19	script.hotjar.com	United States	16509	AMAZON-02US	false
142.250.185.100	www.google.com	United States	15169	GOOGLEUS	false
108.128.74.13	adserver-vpc-alb-2-1264451658.eu-west-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
104.16.118.116	forms.hubspot.com	United States	13335	CLOUDFLARENETUS	false
151.101.193.140	unknown	United States	54113	FASTLYUS	false
104.16.78.142	js.usemessages.com	United States	13335	CLOUDFLARENETUS	false
151.101.65.140	unknown	United States	54113	FASTLYUS	false
104.16.107.254	forms.hscollectedforms.net	United States	13335	CLOUDFLARENETUS	false
34.251.125.38	unknown	United States	16509	AMAZON-02US	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
65.9.66.97	unknown	United States	16509	AMAZON-02US	false
198.47.127.205	pug-ams-bc.pubmnet.com	United States	62713	AS-PUBMATICUS	false
37.252.171.52	unknown	European Union	29990	ASN-APPNEXUS	false
65.9.66.104	unknown	United States	16509	AMAZON-02US	false
148.113.153.94	pixel.onaudience.com	United States	396982	GOOGLE-PRIVATE-CLOUDUS	false
142.250.185.110	www3.l.google.com	United States	15169	GOOGLEUS	false
107.178.254.65	pippio.com	United States	15169	GOOGLEUS	false
142.250.185.193	unknown	United States	15169	GOOGLEUS	false
198.252.106.147	ald.my.id	Canada	20068	HAWKHOSTCA	false
169.150.236.104	rawgitcdn.b-cdn.net	United States	2711	SPIRITTEL-ASUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.185.194	unknown	United States	15169	GOOGLEUS	false
142.250.186.142	analytics.google.com	United States	15169	GOOGLEUS	false
104.17.175.91	static.hsappstatic.net	United States	13335	CLOUDFLARENETUS	false
35.244.174.68	idsync.rlcdn.com	United States	15169	GOOGLEUS	false
216.58.212.162	adservice.google.com	United States	15169	GOOGLEUS	false
104.18.139.17	js.hsleadflows.net	United States	13335	CLOUDFLARENETUS	false
216.58.206.34	cm.g.doubleclick.net	United States	15169	GOOGLEUS	false
216.58.206.33	unknown	United States	15169	GOOGLEUS	false
18.66.102.106	static-cdn.hotjar.com	United States	3	MIT-GATEWAYSUS	false
99.80.69.237	wsky-live.live.eks.hotjar.com	United States	16509	AMAZON-02US	false
64.202.112.159	unknown	United States	22075	AS-OUTBRAINUS	false
142.250.185.161	googlehosted.l.googleusercontent.com	United States	15169	GOOGLEUS	false
172.64.147.16	js.hs-banner.com	United States	13335	CLOUDFLARENETUS	false
141.226.228.48	am-vip001.taboola.com	Israel	200478	TABOOLA-ASIL	false
104.16.111.254	unknown	United States	13335	CLOUDFLARENETUS	false
104.18.244.108	api.hubapi.com	United States	13335	CLOUDFLARENETUS	false
157.240.252.35	unknown	United States	32934	FACEBOOKUS	false
18.245.86.47	unknown	United States	16509	AMAZON-02US	false
52.202.213.18	adserver-2084671375.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
18.195.70.100	httplogserver-lb.global.unified-prod.sharethis.net	United States	16509	AMAZON-02US	false
104.17.24.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
34.107.203.234	settings.luckyorange.com	United States	15169	GOOGLEUS	false
172.217.16.129	unknown	United States	15169	GOOGLEUS	false
192.229.133.221	cs837.wac.edgecastcdn.net	United States	15133	EDGECASTUS	false
151.101.1.140	reddit.map.fastly.net	United States	54113	FASTLYUS	false
142.250.181.226	unknown	United States	15169	GOOGLEUS	false
104.16.109.254	unknown	United States	13335	CLOUDFLARENETUS	false
142.250.181.228	unknown	United States	15169	GOOGLEUS	false
104.18.41.124	2500081.fs1.hubspotusercontent-na1.net	United States	13335	CLOUDFLARENETUS	false
151.101.129.140	dualstack.reddit.map.fastly.net	United States	54113	FASTLYUS	false
104.16.117.116	app.hubspot.com	United States	13335	CLOUDFLARENETUS	false
104.17.223.152	js.hsadspixel.net	United States	13335	CLOUDFLARENETUS	false
54.171.225.199	pacman-content-live.live.eks.hotjar.com	United States	16509	AMAZON-02US	false
64.202.112.63	nydc1.outbrain.org	United States	22075	AS-OUTBRAINUS	false
142.250.185.97	blogspot.l.googleusercontent.com	United States	15169	GOOGLEUS	false
108.177.15.155	stats.g.doubleclick.net	United States	15169	GOOGLEUS	false
52.59.151.85	thirdparty-logserver-lb.global.unified-prod.sharethis.net	United States	16509	AMAZON-02US	false
18.245.86.116	d1qug1xf2dk5z6.cloudfront.net	United States	16509	AMAZON-02US	false
199.60.103.30	group7.sites.hscoscdn00.net	Canada	23181	QUICKSILVER1CA	false
104.18.40.240	unknown	United States	13335	CLOUDFLARENETUS	false
142.250.185.142	unknown	United States	15169	GOOGLEUS	false
23.109.170.65	chaeynore.com	Netherlands	7979	SERVERS-COMUS	false
149.56.240.129	unknown	Canada	16276	OVHFR	false
172.67.74.186	unknown	United States	13335	CLOUDFLARENETUS	false
149.56.240.127	s4.histats.com	Canada	16276	OVHFR	false
34.117.77.79	ml314.com	United States	139070	GOOGLE-AS-APGoogleAsiaPacificPteLtdSG	false
3.33.220.150	match.adsrvr.org	United States	8987	AMAZONEXPANSIONGB	false
104.18.80.204	forms.hsforms.com	United States	13335	CLOUDFLARENETUS	false
142.250.186.36	unknown	United States	15169	GOOGLEUS	false
104.17.176.91	unknown	United States	13335	CLOUDFLARENETUS	false
63.35.31.53	unknown	United States	16509	AMAZON-02US	false
3.75.62.37	ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud	United States	16509	AMAZON-02US	false
104.18.241.108	unknown	United States	13335	CLOUDFLARENETUS	false
185.89.210.244	ib.anycast.adnxs.com	Germany	29990	ASN-APPNEXUS	false
104.18.36.155	dsum-sec.casalemedia.com	United States	13335	CLOUDFLARENETUS	false
3.120.214.218	ps.eyeota.net	United States	16509	AMAZON-02US	false
3.248.68.102	unknown	United States	16509	AMAZON-02US	false
104.17.175.201	unknown	United States	13335	CLOUDFLARENETUS	false
104.16.141.209	js.hs-scripts.com	United States	13335	CLOUDFLARENETUS	false
157.240.253.35	star-mini.c10r.facebook.com	United States	32934	FACEBOOKUS	false
104.26.12.60	t.dtscdn.com	United States	13335	CLOUDFLARENETUS	false
52.223.40.198	unknown	United States	8987	AMAZONEXPANSIONGB	false
37.252.171.85	unknown	European Union	29990	ASN-APPNEXUS	false
104.17.25.14	unknown	United States	13335	CLOUDFLARENETUS	false
18.66.102.51	unknown	United States	3	MIT-GATEWAYSUS	false
99.86.4.9	unknown	United States	16509	AMAZON-02US	false
141.101.120.11	e.dtscout.com	European Union	13335	CLOUDFLARENETUS	false
35.214.136.108	user-data-eu.bidswitch.net	United States	19527	GOOGLE-2US	false
141.101.120.10	t.dtscout.com	European Union	13335	CLOUDFLARENETUS	false
104.19.175.188	forms-na1.hsforms.com	United States	13335	CLOUDFLARENETUS	false
151.101.129.229	jsdelivr.map.fastly.net	United States	54113	FASTLYUS	false
216.58.206.78	youtube-ui.l.google.com	United States	15169	GOOGLEUS	false
185.64.191.210	pug-lhr-bc.pubmnet.com	United Kingdom	62713	AS-PUBMATICUS	false
35.244.159.8	unknown	United States	15169	GOOGLEUS	false
65.9.66.122	tags.crwdcntrl.net	United States	16509	AMAZON-02US	false
104.16.160.168	js.hs-analytics.net	United States	13335	CLOUDFLARENETUS	false
67.202.105.33	ic.tynt.com	United States	32748	STEADFASTUS	false
67.202.105.31	de.tynt.com	United States	32748	STEADFASTUS	false

Private

IP
192.168.2.7

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1533052
Start date and time:	2024-10-14 11:11:27 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 4m 54s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://hy.markkasmick.click/cx/tbSgVco_akr35UznLBgMmL_dGwr4A9B_vyg2WwEB0w1LRjKjQMyEnB89mCfTRy8oqnbpdFunqinBhx0TsHvSJdUHnbksc3kdcKecoDvVHa5LAm46atMmRo3D2CHoEu2bmOqt4Ic8O_7AE7Igwgbi5c8zmZf6Fqp_XqcjREPr7609oL7vKm8FfjGLhMetr2oxtpR3ywH4BUElgc7EI7usxj8CJYEUMktwlb7YUzPvYQ7P1PilEV0LqiXI5sm6QVF4ZGl5TIXhnQLOG0kl6WQ0miiZysBfhaNojnPTUvisUUkwOp2fYTxkXEIhZ7ESJ7qXYLxQbmy4RJVeZZZ3RY5rX8W5t8cudSM9Zx7UaxgLH56aOv81v4QfUnzroT9v7LR3jPEjzYXr2LwuykYQnzvV6boWlogU4jkPE6MocRRlRoC6uUx2e1Wseo8MqGWTT2uXo4HbQDneiMF84sQ34*3TnbAxXWu8xLbb_mAOQxUTA3T5TUUZKeU3ziolM8TSVV5Y5LQTFGtNArddwJKdWCb_cLYMxUJpZ3cqM_A
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	15
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal48.win@29/364@367/100
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, SIHClient.exe, SgrmBroker.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.185.67, 142.250.184.206, 142.251.168.84, 142.250.184.195, 34.104.35.123, 172.217.18.2, 172.66.132.118, 172.66.132.114, 104.18.187.31, 104.18.186.31, 142.250.185.162, 216.58.206.42, 95.101.111.167, 95.101.111.145, 172.64.153.173, 104.18.34.83, 95.101.111.153, 95.101.111.156, 104.18.35.167, 172.64.152.89, 142.250.74.202, 172.217.18.10, 216.58.212.129, 142.250.184.226, 216.58.212.163, 52.149.20.212, 142.250.184.194, 199.232.214.172, 216.58.206.65, 216.58.206.67, 142.250.186.130, 172.217.23.98, 2.23.197.190, 52.165.164.15, 142.250.185.129, 142.250.185.66, 142.250.185.106, 172.217.18.3, 142.250.185.131, 13.95.31.18, 142.250.185.74, 142.250.184.202, 142.250.186.42, 142.250.186.170, 216.58.212.138, 142.250.185.234, 142.250.184.234, 216.58.206.74, 142.250.185.202, 172.217.23.106, 142.250.186.106, 142.250.185.138, 172.217.16.202, 142.250.185.174, 142.250.186.104, 88.221.110.227, 88.221.110.136, 142.250.185.238, 142.250.184.200, 13.107.42.14, 104.18.41.41, 172.64.146.21
Excluded domains from analysis (whitelisted): tags.bluekai.com.edgekey.net, cdn.jsdelivr.net.cdn.cloudflare.net, www.googleadservices.com, pixel.rubiconproject.net.akadns.net, slscr.update.microsoft.com, clientservices.googleapis.com, time.windows.com, cdn-tc.33across.com.cdn.cloudflare.net, e213908.b.akamaiedge.net, cdn.tynt.com.cdn.cloudflare.net, e9126.x.akamaiedge.net, l-0005.l-msedge.net, clients2.google.com, www.googletagmanager.com, a24365-c026.edgekey.net, cert1.a1.atm.aqfer.net.edgekey.net, e167121.b.akamaiedge.net, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, update.googleapis.com, s10.histats.com.cdn.cloudflare.net, www.gstatic.com, wu-b-net.trafficmanager.net, glb.sls.prod.dcat.dsp.trafficmanager.net, www.google-analytics.com, www-linkedin-com.l-0005.l-msedge.net, fonts.googleapis.com, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, otelrules.azureedge.net, ajax.googleapis.com, fonts.gstatic.com, ctldl.windowsupdate.com.delivery.microsoft.com, ctldl.w
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing network information.
Report size getting too big, too many NtCreateFile calls found.
Report size getting too big, too many NtSetInformationFile calls found.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	gzip compressed data, original size modulo 2^32 24732
Category:	dropped
Size (bytes):	9706
Entropy (8bit):	7.974244330200313
Encrypted:	false
SSDEEP:	192:sdfLzIYp/TqA9pWKOtmld+fBOApnSbGbZAsCQSu98xpZi2:sdffIeecIKameOsnSbeCsCu98xpM2
MD5:	373CEF3A03E2AAB544B1645A96E1557D
SHA1:	789BB2E7E291CE40587D62BDB821934E0F7B736D
SHA-256:	A9DCEB91B28EDD0CE446F678E2117ECE68191D4C2E609B07F4910D2F93F58226
SHA-512:	9DF97EEAC20A806BDDAAC955EA39554040D9B5A38A5C7432C4BC0347FFB4C8C14F1E923082D9B227D6421996AEE238B0A027038FBDC381EA3365616544B94388
Malicious:	false
Reputation:	low
Preview:	...........m[.8.0.......+."..^mD.R..@y...Q.m".YIKq...5..8.t..=.9...C.i43..H..,y..Z.-.n,..5{I.....g....Z....if26..@...... _..Y..]..z/...Kk.W..I.....Y;.`PG.[k.J...G.%&"........mG.\..>.TZ;...K.\|.d.X^v/.5K.Nj......$...{d.Y.....EY.K}0.._...f.e..!.....5..:...O.H..@p.#...{k..O...w.....:.lZ.U.@..3J./w.......1....[k...66-.,.U.vn.u...bg...uuyn.X#.&.....IW..k/jnVS.&.o...t].{Y.'{...&.........u..h2~...e...;..M.J.U...4.Sj.Y.G...=.......h.....\.....i..O..g~`.X.u.........*..>...........U.u.I._}:..xXr..7\|....Q=.x.s P.....yG^08..#..'kg....U.......N..Z.<w..3.._..O..]r{.&..._...u.U.to"j.^....oA.4....g..g..2.f..Q&uW^.....D.z.....}.o}gm.V...Y.........._76......D.G....b..n.%z..k;.......?.$.D.....:[..:...a.....fk{[........}k....zv...........?.d>...Xcn...\|....^i..k.............n.Y.G.8..9<>..f......a.<.......Ok.:...'K.f...c(8....%<....<........6.<....B..x...3..L.:..3...(...9.6..;....Z.>...j.........A..uz...8>.}..............@....O......H>A..`...p....d....4M..

Timestamp	Bytes transferred	Direction	Data
Oct 14, 2024 11:12:25.459642887 CEST	498	OUT	GET /ad/ad?p=198473&w=638192&d=7930e1d26d7336e03d98-1635872656638192&s=212257 HTTP/1.1 Host: p.jwalf.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9
Oct 14, 2024 11:12:25.965473890 CEST	195	IN	HTTP/1.1 303 See Other Date: Mon, 14 Oct 2024 09:12:25 GMT Location: https://my7recovery.blogspot.com Referrer-Policy: no-referrer Server: nginx Content-Length: 0 Connection: keep-alive
Oct 14, 2024 11:13:11.128107071 CEST	6	OUT	Data Raw: 00 Data Ascii:

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:24 UTC	1221	OUT	GET /cx/tbSgVco_akr35UznLBgMmL_dGwr4A9B_vyg2WwEB0w1LRjKjQMyEnB89mCfTRy8oqnbpdFunqinBhx0TsHvSJdUHnbksc3kdcKecoDvVHa5LAm46atMmRo3D2CHoEu2bmOqt4Ic8O_7AE7Igwgbi5c8zmZf6Fqp_XqcjREPr7609oL7vKm8FfjGLhMetr2oxtpR3ywH4BUElgc7EI7usxj8CJYEUMktwlb7YUzPvYQ7P1PilEV0LqiXI5sm6QVF4ZGl5TIXhnQLOG0kl6WQ0miiZysBfhaNojnPTUvisUUkwOp2fYTxkXEIhZ7ESJ7qXYLxQbmy4RJVeZZZ3RY5rX8W5t8cudSM9Zx7UaxgLH56aOv81v4QfUnzroT9v7LR3jPEjzYXr2LwuykYQnzvV6boWlogU4jkPE6MocRRlRoC6uUx2e1Wseo8MqGWTT2uXo4HbQDneiMF84sQ343TnbAxXWu8xLbb_mAOQxUTA3T5TUUZKeU3ziolM8TSVV5Y5LQTFGtNArddwJKdWCb_cLYMxUJpZ3cqM_A HTTP/1.1 Host: hy.markkasmick.click Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:12:24 UTC	309	IN	HTTP/1.1 302 Found Server: nginx Date: Mon, 14 Oct 2024 09:12:24 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Location: https://hy.markkasmick.click/imp/70341?param_3=nortb_over_ttl&nrb Strict-Transport-Security: max-age=1 X-Content-Type-Options: nosniff
2024-10-14 09:12:24 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:24 UTC	699	OUT	GET /imp/70341?param_3=nortb_over_ttl&nrb HTTP/1.1 Host: hy.markkasmick.click Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:12:25 UTC	1651	IN	HTTP/1.1 200 OK Server: nginx Date: Mon, 14 Oct 2024 09:12:25 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list Set-Cookie: GL_UI4=eJw9jd1Og0AUhPmn1YJOwgP4CEBtiZfGh%2BglOeweKBZ2m2WF%2BPZuTPRqvky%2ByXieFxRP8Ndkj%2FCLTnip67oqBTXHrq%2Bor1nUTIKbV3o7Mx9PZ%2BzHpbXUTWwj7JaZjG3tGuEwsGIzilZoyRmenfXX3JTeVIS4M6Rkhnh2xpQh7YzeFjZFiEjRzEg%2Brka7jGf61AZhVTWOR%2BXYLxHopQjzB6SXUUk3zA8IqjLPEw%2BP94lsr83cjjLxEQ%2BGJMN%2Fx06Q5UGbb6SSl5vVd0BPsv33f3%2FDrSqRSF5H4c61vbL5AbYXTuA%3D; expires=Tue, 15-Oct-2024 09:12:25 GMT; Max-Age=86400; path=/; secure; SameSite=None Set-Cookie: GL_GI10=eJwNy0EKwjAQBdDMINVSFT72AD1BQCPivlvppnTRpbShhMIkJFHx9vr2TynF9R7sAqq7vt70%2BWK0MaAFPPTgSXAYxGU7N31%2BZptAEdyN4CjYdfbTjD6uoOlYghyq1kp%2Bxe%2FDyQqWhLL1Mfj4n6BQKHD22w04zbUCvYvTDwanHT8%3D; expires=Tue, 15-Oct-2024 09:12:25 GMT; Max-Age=86400; path=/; secure; SameSite=None Set-Cookie: cvn1=CwaAAAAAAhQBCgAI9SAGAQM%3D; expires=Fri, 13-Dec-2024 09:12:25 GMT; Max-Age=5184000; path=/; secure; SameSite=None Set-Cookie: GL_BC=eJxjYGBgEmEU5EiKN7UwNzAxEGHkSud5UMnGCAAoNAQc; expires=Tue, 15-Oct-2024 09:12:25 GMT; Max-Age=86400; path=/; secure; SameSite=None Set-Cookie: GL_CA_70341=eJxjYGBgEmHkYmB3cRNhEmRMZmMUZCzhSud5UAkAGmgDoQ%3D%3D; expires=Tue, 15-Oct-2024 09:12:25 GMT; Max-Age=86400; path=/; secure; SameSite=None Set-Cookie: GL_OC=eJxjYGBgEmEUZMmPN7MQYeRK53lQycYIABoNA1s%3D; expires=Tue, 15-Oct-2024 09:12:25 GMT; Max-Age=86400; path=/; secure; SameSite=None Strict-Transport-Security: max-age=1 X-Content-Type-Options: nosniff
2024-10-14 09:12:25 UTC	682	IN	Data Raw: 32 39 65 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 73 74 79 6c 65 3e 2a 20 7b 20 62 6f 72 64 65 72 3a 20 30 3b 20 6d 61 72 67 69 6e 3a 20 30 3b 20 6f 75 74 6c 69 6e 65 3a 20 30 3b 20 70 61 64 64 69 6e 67 3a 20 30 7d 3c 2f 73 74 79 6c 65 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a 20 20 20 20 74 72 79 20 7b 0a 20 20 20 20 20 20 20 20 77 69 6e 64 6f 77 2e 6f 70 65 6e 65 72 2e 70 6f 73 74 4d 65 73 73 61 67 65 28 27 7b 22 62 22 3a 35 38 37 30 34 Data Ascii: 29e<!doctype html><html><head> <meta charset="utf-8" /> <style>* { border: 0; margin: 0; outline: 0; padding: 0}</style> <title></title></head><body><script type="text/javascript"> try { window.opener.postMessage('{"b":58704

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:26 UTC	653	OUT	GET / HTTP/1.1 Host: my7recovery.blogspot.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:12:27 UTC	770	IN	HTTP/1.1 200 OK Content-Security-Policy: upgrade-insecure-requests Content-Security-Policy-Report-Only: default-src https: blob: data: 'unsafe-inline' 'unsafe-eval'; report-to blogspot; report-uri https://www.blogger.com/cspreport Report-To: {"group":"blogspot","max_age":2592000,"endpoints":[{"url":"https://www.blogger.com/cspreport"}]} Content-Type: text/html; charset=UTF-8 Expires: Mon, 14 Oct 2024 09:12:26 GMT Date: Mon, 14 Oct 2024 09:12:26 GMT Cache-Control: private, max-age=0 Last-Modified: Sat, 05 Oct 2024 02:05:09 GMT X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Server: GSE Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked
2024-10-14 09:12:27 UTC	620	IN	Data Raw: 32 64 31 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 69 72 3d 27 6c 74 72 27 20 78 6d 6c 6e 73 3d 27 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 27 20 78 6d 6c 6e 73 3a 62 3d 27 68 74 74 70 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 32 30 30 35 2f 67 6d 6c 2f 62 27 20 78 6d 6c 6e 73 3a 64 61 74 61 3d 27 68 74 74 70 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 32 30 30 35 2f 67 6d 6c 2f 64 61 74 61 27 20 78 6d 6c 6e 73 3a 65 78 70 72 3d 27 68 74 74 70 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 32 30 30 35 2f 67 6d 6c 2f 65 78 70 72 27 3e 0a 3c 68 65 61 64 3e 0a 3c 73 63 72 69 70 74 3e 0a 20 20 2f 2f 3c 21 5b 43 44 41 54 41 5b 0a 76 61 72 20 61 72 73 20 Data Ascii: 2d1d<!DOCTYPE html><html dir='ltr' xmlns='http://www.w3.org/1999/xhtml' xmlns:b='http://www.google.com/2005/gml/b' xmlns:data='http://www.google.com/2005/gml/data' xmlns:expr='http://www.google.com/2005/gml/expr'><head><script> //<![CDATA[var ars
2024-10-14 09:12:27 UTC	1390	IN	Data Raw: 2b 20 65 6e 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 64 6f 63 75 6d 65 6e 74 2e 72 65 66 65 72 72 65 72 29 20 7d 0a 2f 2f 5d 5d 3e 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 74 69 74 6c 65 3e 43 73 68 20 56 65 72 69 66 79 3c 2f 74 69 74 6c 65 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 27 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 27 20 6e 61 6d 65 3d 27 76 69 65 77 70 6f 72 74 27 2f 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 27 68 74 74 70 73 3a 2f 2f 62 6c 6f 67 67 65 72 2e 67 6f 6f 67 6c 65 75 73 65 72 63 6f 6e 74 65 6e 74 2e 63 6f 6d 2f 69 6d 67 2f 62 2f 52 32 39 76 5a 32 78 6c 2f 41 56 76 58 73 45 6a 73 38 35 31 6b 4c 41 74 6d 6a 61 67 6f 33 70 43 6f 2d 43 46 48 48 53 6e 61 42 Data Ascii: + encodeURIComponent(document.referrer) }//...</script><title>Csh Verify</title><meta content='width=device-width, initial-scale=1' name='viewport'/><meta content='https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjs851kLAtmjago3pCo-CFHHSnaB
2024-10-14 09:12:27 UTC	1390	IN	Data Raw: 6f 67 2e 69 65 43 73 73 52 65 74 72 6f 66 69 74 4c 69 6e 6b 73 5d 2d 2d 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 27 68 74 74 70 73 3a 2f 2f 6d 79 37 72 65 63 6f 76 65 72 79 2e 62 6c 6f 67 73 70 6f 74 2e 63 6f 6d 2f 27 20 70 72 6f 70 65 72 74 79 3d 27 6f 67 3a 75 72 6c 27 2f 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 27 43 73 68 20 56 65 72 69 66 79 27 20 70 72 6f 70 65 72 74 79 3d 27 6f 67 3a 74 69 74 6c 65 27 2f 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 27 27 20 70 72 6f 70 65 72 74 79 3d 27 6f 67 3a 64 65 73 63 72 69 70 74 69 6f 6e 27 2f 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 27 70 61 67 65 2d 73 6b 69 6e 2d 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 3c 21 2d 2d 0a 2e 63 6c 65 61 72 20 7b 63 6c 65 61 72 3a 62 6f 74 68 3b 7d Data Ascii: og.ieCssRetrofitLinks]--><meta content='https://my7recovery.blogspot.com/' property='og:url'/><meta content='Csh Verify' property='og:title'/><meta content='' property='og:description'/><style id='page-skin-1' type='text/css'>....clear {clear:both;}
2024-10-14 09:12:27 UTC	1390	IN	Data Raw: 6e 74 2c 20 23 48 54 4d 4c 34 20 2e 77 69 64 67 65 74 2d 63 6f 6e 74 65 6e 74 20 7b 0a 62 61 63 6b 67 72 6f 75 6e 64 3a 74 72 61 6e 73 70 61 72 65 6e 74 3b 0a 70 61 64 64 69 6e 67 3a 30 70 78 3b 0a 62 6f 72 64 65 72 3a 30 70 78 3b 0a 7d 0a 2e 70 6f 73 74 2d 62 6f 64 79 20 7b 0a 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 31 32 70 78 3b 0a 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 0a 7d 0a 2e 70 6f 73 74 2d 62 6f 64 79 2e 73 69 6e 67 6c 65 20 7b 0a 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 0a 7d 0a 2e 70 6f 73 74 2d 62 6f 64 79 20 69 6d 67 20 7b 0a 6d 61 78 2d 77 69 64 74 68 3a 31 30 25 3b 0a 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 0a 6d 61 72 67 69 6e 3a 61 75 74 6f 3b 0a 7d 0a 2e 70 6f 73 74 2d 62 6f 64 79 20 2e 70 6f 73 74 2d 74 69 74 6c 65 20 7b 0a 66 6f 6e Data Ascii: nt, #HTML4 .widget-content {background:transparent;padding:0px;border:0px;}.post-body {margin-right:12px;display:flex;}.post-body.single {display:block;}.post-body img {max-width:10%;display:block;margin:auto;}.post-body .post-title {fon
2024-10-14 09:12:27 UTC	1390	IN	Data Raw: 30 70 78 3b 20 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 20 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 20 74 72 61 6e 73 69 74 69 6f 6e 3a 30 2e 33 73 7d 0a 23 62 6c 6f 67 2d 70 61 67 65 72 2d 6f 6c 64 65 72 2d 6c 69 6e 6b 20 61 3a 68 6f 76 65 72 20 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 23 32 31 39 36 66 33 7d 0a 23 48 65 61 64 65 72 31 20 7b 0a 63 6f 6c 6f 72 3a 23 66 66 66 3b 0a 64 69 73 70 6c 61 79 3a 20 62 6c 6f 63 6b 3b 0a 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 34 32 36 37 62 32 3b 0a 70 61 64 64 69 6e 67 3a 20 33 70 78 20 31 35 70 78 3b 0a 6d 61 72 67 69 6e 3a 20 61 75 74 6f 3b 0a 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 65 6d 3b 0a 7d 0a 2e 68 65 61 64 65 72 2d 77 69 64 67 65 74 20 61 20 7b 0a 63 6f 6c Data Ascii: 0px; display:inline-block; position:relative; transition:0.3s}#blog-pager-older-link a:hover {background:#2196f3}#Header1 {color:#fff;display: block;background-color: #4267b2;padding: 3px 15px;margin: auto;line-height:1em;}.header-widget a {col
2024-10-14 09:12:27 UTC	1390	IN	Data Raw: 70 78 3b 0a 6c 65 66 74 3a 20 30 70 78 3b 0a 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 0a 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 0a 7d 0a 23 48 54 4d 4c 32 20 2e 77 69 64 67 65 74 2d 63 6f 6e 74 65 6e 74 2c 20 23 42 6c 6f 67 53 65 61 72 63 68 31 20 2e 77 69 64 67 65 74 2d 63 6f 6e 74 65 6e 74 20 7b 0a 62 61 63 6b 67 72 6f 75 6e 64 3a 74 72 61 6e 73 70 61 72 65 6e 74 3b 0a 70 61 64 64 69 6e 67 3a 30 70 78 3b 0a 62 6f 72 64 65 72 3a 30 70 78 3b 0a 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 30 70 78 3b 0a 7d 0a 6d 61 69 6e 20 7b 0a 6d 61 78 2d 77 69 64 74 68 3a 20 36 34 30 70 78 3b 0a 6d 61 72 67 69 6e 3a 20 61 75 74 6f 3b 0a 70 61 64 64 69 6e 67 3a 30 70 78 20 31 30 70 78 3b 0a 70 6f 73 69 74 69 6f 6e 3a 20 72 65 6c 61 74 69 76 65 3b 0a 6c 65 Data Ascii: px;left: 0px;display:block;position:relative;}#HTML2 .widget-content, #BlogSearch1 .widget-content {background:transparent;padding:0px;border:0px;border-radius:0px;}main {max-width: 640px;margin: auto;padding:0px 10px;position: relative;le
2024-10-14 09:12:27 UTC	1390	IN	Data Raw: 70 6e 67 6f 64 69 6e 67 4d 69 64 64 6c 65 41 64 73 20 7b 0a 62 6f 72 64 65 72 3a 20 30 70 78 3b 0a 6d 61 72 67 69 6e 3a 20 31 30 70 78 20 30 70 78 3b 0a 70 61 64 64 69 6e 67 3a 20 30 70 78 3b 0a 62 61 63 6b 67 72 6f 75 6e 64 3a 20 74 72 61 6e 73 70 61 72 65 6e 74 3b 0a 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 30 70 78 3b 0a 7d 0a 23 50 61 67 65 4c 69 73 74 31 20 68 33 20 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 7d 0a 23 50 61 67 65 4c 69 73 74 31 20 2e 77 69 64 67 65 74 2d 63 6f 6e 74 65 6e 74 20 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 33 36 35 38 39 39 3b 20 63 6f 6c 6f 72 3a 23 66 66 66 3b 7d 0a 23 50 61 67 65 4c 69 73 74 31 20 2e 77 69 64 67 65 74 2d 63 6f 6e 74 65 6e 74 20 61 20 7b 63 6f 6c 6f 72 3a 23 66 66 66 3b 7d 0a 23 50 61 67 Data Ascii: pngodingMiddleAds {border: 0px;margin: 10px 0px;padding: 0px;background: transparent;border-radius: 0px;}#PageList1 h3 {display:none}#PageList1 .widget-content {background-color:#365899; color:#fff;}#PageList1 .widget-content a {color:#fff;}#Pag
2024-10-14 09:12:27 UTC	1390	IN	Data Raw: 61 73 74 2d 63 68 69 6c 64 7b 0a 62 6f 72 64 65 72 3a 30 70 78 3b 0a 70 61 64 64 69 6e 67 3a 30 70 78 3b 0a 7d 0a 23 73 69 61 70 6e 67 6f 64 69 6e 67 52 65 6c 61 74 65 64 4c 69 73 74 20 75 6c 20 6c 69 20 2e 74 68 75 6d 62 7b 0a 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 0a 6c 69 6e 65 2d 68 65 69 67 68 74 3a 30 70 78 3b 0a 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 37 70 78 3b 0a 66 6c 6f 61 74 3a 6c 65 66 74 3b 0a 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 31 35 70 78 3b 0a 7d 0a 23 73 69 61 70 6e 67 6f 64 69 6e 67 52 65 6c 61 74 65 64 4c 69 73 74 20 75 6c 20 6c 69 20 61 7b 0a 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 0a 7d 0a 23 73 69 61 70 6e 67 6f 64 69 6e 67 52 65 6c 61 74 65 64 4c 69 73 74 20 75 6c 20 6c 69 20 61 2e 6a 75 64 75 6c 7b 0a 63 6f 6c 6f Data Ascii: ast-child{border:0px;padding:0px;}#siapngodingRelatedList ul li .thumb{overflow:hidden;line-height:0px;border-radius:7px;float:left;margin-right:15px;}#siapngodingRelatedList ul li a{display:block;}#siapngodingRelatedList ul li a.judul{colo
2024-10-14 09:12:27 UTC	1207	IN	Data Raw: 30 70 78 3b 20 68 65 69 67 68 74 3a 20 31 32 30 70 78 3b 20 7d 0a 2e 78 44 69 61 6c 6f 67 20 7b 20 77 69 64 74 68 3a 33 30 30 70 78 3b 20 68 65 69 67 68 74 3a 20 31 32 30 70 78 3b 20 6c 65 66 74 3a 30 70 78 3b 7d 0a 7d 0a 0a 2d 2d 3e 3c 2f 73 74 79 6c 65 3e 0a 3c 73 74 79 6c 65 20 69 64 3d 27 74 65 6d 70 6c 61 74 65 2d 73 6b 69 6e 2d 31 27 20 74 79 70 65 3d 27 74 65 78 74 2f 63 73 73 27 3e 3c 21 2d 2d 0a 62 6f 64 79 23 6c 61 79 6f 75 74 20 23 48 54 4d 4c 31 20 7b 0a 76 69 73 69 62 69 6c 69 74 79 3a 20 76 69 73 69 62 6c 65 3b 0a 6f 70 61 63 69 74 79 3a 20 31 3b 0a 68 65 69 67 68 74 3a 20 61 75 74 6f 3b 0a 6f 76 65 72 66 6c 6f 77 3a 20 75 6e 73 65 74 3b 0a 7d 0a 62 6f 64 79 23 6c 61 79 6f 75 74 20 23 48 54 4d 4c 31 20 2e 77 69 64 67 65 74 2d 63 6f 6e 74 65 Data Ascii: 0px; height: 120px; }.xDialog { width:300px; height: 120px; left:0px;}}--></style><style id='template-skin-1' type='text/css'>...body#layout #HTML1 {visibility: visible;opacity: 1;height: auto;overflow: unset;}body#layout #HTML1 .widget-conte
2024-10-14 09:12:27 UTC	1390	IN	Data Raw: 38 30 30 30 0d 0a 55 46 34 45 4d 4b 4a 55 70 4a 55 73 56 44 53 55 6f 58 43 75 68 6f 61 6b 46 41 46 68 33 5a 56 6b 6f 50 30 77 4e 53 49 34 58 6b 47 65 4a 6f 52 51 41 6d 51 43 63 41 51 45 52 46 51 6d 46 45 5a 2b 30 53 6b 78 75 61 6b 6c 50 4a 33 46 7a 42 67 42 65 57 49 63 46 65 6e 78 2b 58 67 6b 55 6b 4d 6a 5a 45 57 63 58 49 77 63 51 62 69 49 43 41 6b 34 57 55 48 35 55 6b 32 56 6c 45 52 64 62 58 53 63 52 58 41 2f 30 39 66 63 55 33 58 68 44 70 4b 44 41 67 66 41 4d 4b 6b 53 59 53 79 45 52 68 67 51 64 36 67 67 42 41 44 73 3d 22 29 20 31 30 30 25 20 31 30 30 25 20 6e 6f 2d 72 65 70 65 61 74 3b 27 3e 0a 3c 73 63 72 69 70 74 20 61 73 79 6e 63 3d 27 61 73 79 6e 63 27 20 73 72 63 3d 27 2f 2f 70 61 67 65 61 64 32 2e 67 6f 6f 67 6c 65 73 79 6e 64 69 63 61 74 69 6f 6e Data Ascii: 8000UF4EMKJUpJUsVDSUoXCuhoakFAFh3ZVkoP0wNSI4XkGeJoRQAmQCcAQERFQmFEZ+0SkxuaklPJ3FzBgBeWIcFenx+XgkUkMjZEWcXIwcQbiICAk4WUH5Uk2VlERdbXScRXA/09fcU3XhDpKDAgfAMKkSYSyERhgQd6ggBADs=") 100% 100% no-repeat;'><script async='async' src='//pagead2.googlesyndication

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:28 UTC	741	OUT	GET /?arsae=https%3A%2F%2Fmy7recovery.blogspot.com%2F&arsae_ref= HTTP/1.1 Host: ald.my.id Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: document Referer: https://my7recovery.blogspot.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:12:28 UTC	582	IN	HTTP/1.1 302 Found Connection: close x-powered-by: PHP/7.4.33 set-cookie: PHPSESSID=2c9ae318eca212bf3b3eaa782940d04f; path=/; secure expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache location: https://ald.my.id content-type: text/html; charset=UTF-8 content-length: 0 date: Mon, 14 Oct 2024 09:12:28 GMT server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:28 UTC	734	OUT	GET / HTTP/1.1 Host: ald.my.id Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Referer: https://my7recovery.blogspot.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=2c9ae318eca212bf3b3eaa782940d04f
2024-10-14 09:12:28 UTC	469	IN	HTTP/1.1 200 OK Connection: close x-powered-by: PHP/7.4.33 expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache content-type: text/html; charset=UTF-8 content-length: 219 date: Mon, 14 Oct 2024 09:12:28 GMT server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
2024-10-14 09:12:28 UTC	219	IN	Data Raw: 3c 68 74 6d 6c 3e 0a 09 3c 68 65 61 64 3e 0a 09 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 31 3b 55 52 4c 3d 2f 22 3e 0a 09 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 0a 09 3c 2f 68 65 61 64 3e 0a 09 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 22 3e 0a 09 09 3c 70 3e 50 6c 65 61 73 65 20 77 61 69 74 2e 09 3c 2f 70 3e 0a 09 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e Data Ascii: <html><head><meta http-equiv="refresh" content="1;URL=/"><meta name="viewport" content="width=device-width, initial-scale=1"></head><body style="text-align:center; "><p>Please wait.</p></body></html>

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:28 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-10-14 09:12:28 UTC	467	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF70) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-neu-z1 Cache-Control: public, max-age=113587 Date: Mon, 14 Oct 2024 09:12:28 GMT Connection: close X-CID: 2

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:29 UTC	626	OUT	GET /favicon.ico HTTP/1.1 Host: ald.my.id Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://ald.my.id/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=2c9ae318eca212bf3b3eaa782940d04f
2024-10-14 09:12:29 UTC	415	IN	HTTP/1.1 404 Not Found Connection: close cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache content-type: text/html content-length: 796 date: Mon, 14 Oct 2024 09:12:29 GMT server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
2024-10-14 09:12:29 UTC	796	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 73 74 79 6c 65 3e 40 6d 65 64 69 61 20 28 70 72 65 66 65 72 73 2d 63 6f 6c 6f 72 2d 73 63 68 65 6d 65 3a 64 61 72 6b 29 7b 62 6f 64 79 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 30 21 69 6d 70 6f 72 74 61 6e 74 7d 7d 3c 2f 73 74 79 Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /><title> 404 Not Found</title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</sty

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:29 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-10-14 09:12:29 UTC	515	IN	HTTP/1.1 200 OK ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF06) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=113527 Date: Mon, 14 Oct 2024 09:12:29 GMT Content-Length: 55 Connection: close X-CID: 2
2024-10-14 09:12:29 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:30 UTC	766	OUT	GET / HTTP/1.1 Host: ald.my.id Connection: keep-alive Cache-Control: max-age=0 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Referer: https://ald.my.id/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=2c9ae318eca212bf3b3eaa782940d04f
2024-10-14 09:12:30 UTC	469	IN	HTTP/1.1 200 OK Connection: close x-powered-by: PHP/7.4.33 expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache content-type: text/html; charset=UTF-8 content-length: 222 date: Mon, 14 Oct 2024 09:12:30 GMT server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
2024-10-14 09:12:30 UTC	222	IN	Data Raw: 3c 68 74 6d 6c 3e 0a 09 3c 68 65 61 64 3e 0a 09 09 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 31 3b 55 52 4c 3d 2f 22 3e 0a 09 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 0a 09 3c 2f 68 65 61 64 3e 0a 09 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 22 3e 0a 09 09 3c 70 3e 50 6c 65 61 73 65 20 77 61 69 74 2e 2e 2e 2e 09 3c 2f 70 3e 0a 09 3c 2f 62 6f 64 79 3e 0a 3c 2f 68 74 6d 6c 3e Data Ascii: <html><head><meta http-equiv="refresh" content="1;URL=/"><meta name="viewport" content="width=device-width, initial-scale=1"></head><body style="text-align:center; "><p>Please wait....</p></body></html>

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (3515)
Category:	dropped
Size (bytes):	211246
Entropy (8bit):	5.433882832602869
Encrypted:	false
SSDEEP:	6144:BBnfymOe6JT4BlSRsJrNZNK9GeMDyW+UP:bFVBIvUP
MD5:	BE384F708BFBE4E22DD8704031E6136A
SHA1:	B4219E9718DA56A4C975A8D517929246290D2FE4
SHA-256:	ADACA75980F7679FC20F76DA5FF23AA94315E142B85949FDCF05796B2680BFDE
SHA-512:	6AB58C1F3AB01FE7FA08A6DCB497645B7D4A87FF383E48EE86EA03995C42D0F2C790D59D5E632D86024D4D0B94BBFF52B86CB23E788350BF0EF0E9B292E35738
Malicious:	false
Reputation:	low
Preview:	(function(){var n,aa=function(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}},ba=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,c){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=c.value;return a},ca=function(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("a");},p=ca(this),.u=function(a,b){if(b)a:{var c=p;a=a.split(".");for(var d=0;d<a.length-1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&ba(c,a,{configurable:!0,writable:!0,value:b})}};.u("Symbol",function(a){if(a)return a;var b=function(f,g){this.sg=f;ba(this,"description",{configurable:!0,writable:!0,value:g})};b.prototype.toString=function(){return this.sg};var c="jscomp_symbol_"+(Math.random()*1E9>>>0)+"_",d=0,e=function(f){if(this instanceof e)t

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	SVG Scalable Vector Graphics image
Category:	dropped
Size (bytes):	3329
Entropy (8bit):	5.156625370653912
Encrypted:	false
SSDEEP:	48:skeJejbLPMA/nLEaHOHOzw3UYHNIH9YkNNHyGHRHLHOzw3UYHNIH9YkNNHyGHOHy:gqL7ON3t6y+VyQhLN3t6y+VyQoCNCWB
MD5:	C652FEB45186E77E43CE8A82F424E4DB
SHA1:	70FFCF48C7DA3850470633F717BA6D2ACCA0080A
SHA-256:	A71B80BE2C30F68FCC9BA168FD22E001FF7BCBC1C64D4A6A59C2DD362C636FA1
SHA-512:	84AB8A9D2D95A9BC7283DD29B561CA46F49CBB4DCD6B02A61DFB82555CE068194133AA43C897D19751E45AE96A15ACD5E82C2AA27322D0CD4D4FD9FEB8973A3C
Malicious:	false
Reputation:	low
Preview:	<svg width="1440" height="1030" viewBox="0 0 1440 1030" fill="none" xmlns="http://www.w3.org/2000/svg">.<g clip-path="url(#clip0_1169_3143)">.<rect width="1440" height="1030" fill="#E4EFFF"/>.<g opacity="0.4" filter="url(#filter0_ii_1169_3143)">.<path d="M1207.04 1030L1551 0H-112L231.955 1030H1207.04Z" fill="url(#paint0_linear_1169_3143)" fill-opacity="0.2"/>.</g>.<g opacity="0.8" filter="url(#filter1_ii_1169_3143)">.<path d="M1105.61 1030L1378 0H61L333.393 1030H1105.61Z" fill="url(#paint1_linear_1169_3143)" fill-opacity="0.2"/>.</g>.</g>.<defs>.<filter id="filter0_ii_1169_3143" x="-182" y="0" width="1803" height="1034" filterUnits="userSpaceOnUse" color-interpolation-filters="sRGB">.<feFlood flood-opacity="0" result="BackgroundImageFix"/>.<feBlend mode="normal" in="SourceGraphic" in2="BackgroundImageFix" result="shape"/>.<feColorMatrix in="SourceAlpha" type="matrix" values="0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 127 0" result="hardAlpha"/>.<feOffset dx="70" dy="4"/>.<feGaussianBlur stdDe

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:31 UTC	746	OUT	GET / HTTP/1.1 Host: ald.my.id Connection: keep-alive Cache-Control: max-age=0 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: navigate Sec-Fetch-Dest: document Referer: https://ald.my.id/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=2c9ae318eca212bf3b3eaa782940d04f
2024-10-14 09:12:31 UTC	476	IN	HTTP/1.1 200 OK Connection: close x-powered-by: PHP/7.4.33 expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache content-type: text/html; charset=UTF-8 transfer-encoding: chunked date: Mon, 14 Oct 2024 09:12:31 GMT server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
2024-10-14 09:12:31 UTC	892	IN	Data Raw: 63 37 37 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 69 72 3d 22 6c 74 72 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 20 78 6d 6c 6e 73 3a 62 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 32 30 30 35 2f 67 6d 6c 2f 62 22 20 78 6d 6c 6e 73 3a 64 61 74 61 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 32 30 30 35 2f 67 6d 6c 2f 64 61 74 61 22 20 78 6d 6c 6e 73 3a 65 78 70 72 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 32 30 30 35 2f 67 6d 6c 2f 65 78 70 72 22 3e 0a 3c 68 65 61 64 3e 0a 3c 73 63 72 69 70 74 3e 0a 20 20 2f 2f 3c 21 5b 43 44 41 54 41 5b 0a 76 61 72 20 61 72 73 20 Data Ascii: c779<!DOCTYPE html><html dir="ltr" xmlns="http://www.w3.org/1999/xhtml" xmlns:b="http://www.google.com/2005/gml/b" xmlns:data="http://www.google.com/2005/gml/data" xmlns:expr="http://www.google.com/2005/gml/expr"><head><script> //<![CDATA[var ars
2024-10-14 09:12:31 UTC	14994	IN	Data Raw: 70 6e 67 22 20 70 72 6f 70 65 72 74 79 3d 22 6f 67 3a 69 6d 61 67 65 22 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 3e 0a 3c 21 2d 2d 20 43 68 72 6f 6d 65 2c 20 46 69 72 65 66 6f 78 20 4f 53 20 61 6e 64 20 4f 70 65 72 61 20 2d 2d 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 22 20 6e 61 6d 65 3d 22 74 68 65 6d 65 2d 63 6f 6c 6f 72 22 3e 0a 3c 21 2d 2d 20 57 69 6e 64 6f 77 73 20 50 68 6f 6e 65 20 2d 2d 3e 0a 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 22 20 6e 61 6d 65 3d 22 6d 73 61 70 70 6c 69 63 61 74 69 6f 6e 2d 6e 61 76 62 75 74 74 6f 6e 2d 63 6f 6c 6f 72 22 3e 0a 3c 6d 65 74 61 20 63 6f Data Ascii: png" property="og:image"><meta content="text/html; charset=UTF-8" http-equiv="Content-Type">... Chrome, Firefox OS and Opera --><meta content="" name="theme-color">... Windows Phone --><meta content="" name="msapplication-navbutton-color"><meta co
2024-10-14 09:12:31 UTC	16384	IN	Data Raw: 72 20 69 6e 73 75 72 61 6e 63 65 20 63 6f 6d 70 61 72 65 0a 6d 6f 74 6f 72 20 76 65 68 69 63 6c 65 20 69 6e 73 75 72 61 6e 63 65 0a 62 65 73 74 20 63 61 72 20 69 6e 73 75 72 61 6e 63 65 0a 6d 6f 74 6f 72 20 69 6e 73 75 72 61 6e 63 65 20 6f 6e 6c 69 6e 65 20 71 75 6f 74 65 0a 63 61 72 20 69 6e 73 75 72 61 6e 63 65 20 6f 6e 6c 69 6e 65 20 71 75 6f 74 65 0a 6c 69 66 65 20 69 6e 73 75 72 61 6e 63 65 20 6f 6e 6c 69 6e 65 0a 73 75 70 70 6c 65 6d 65 6e 74 61 6c 20 68 65 61 6c 74 68 20 69 6e 73 75 72 61 6e 63 65 0a 62 65 73 74 20 63 61 72 20 69 6e 73 75 72 61 6e 63 65 20 72 61 74 65 73 0a 63 61 72 20 69 6e 73 75 72 61 6e 63 65 20 64 69 73 63 6f 75 6e 74 73 0a 6d 6f 74 6f 72 20 76 65 68 69 63 6c 65 20 69 6e 73 75 72 61 6e 63 65 20 71 75 6f 74 65 73 0a 61 75 74 6f Data Ascii: r insurance comparemotor vehicle insurancebest car insurancemotor insurance online quotecar insurance online quotelife insurance onlinesupplemental health insurancebest car insurance ratescar insurance discountsmotor vehicle insurance quotesauto
2024-10-14 09:12:32 UTC	16384	IN	Data Raw: 74 6f 72 0a 63 72 65 64 69 74 20 63 61 72 64 20 62 61 6c 61 6e 63 65 0a 63 72 65 64 69 74 20 63 61 72 64 20 6e 75 6d 62 65 72 73 0a 63 72 65 64 69 74 20 63 61 72 64 20 74 72 61 6e 73 66 65 72 0a 63 72 65 64 69 74 20 63 61 72 64 20 69 6e 74 65 72 65 73 74 20 72 61 74 65 73 0a 63 72 65 64 69 74 20 63 61 72 64 20 69 6e 74 65 72 65 73 74 0a 67 6f 6c 64 20 63 61 72 64 0a 63 72 65 64 69 74 20 63 61 72 64 20 6f 6e 6c 69 6e 65 0a 62 65 73 74 20 72 61 74 65 20 63 72 65 64 69 74 20 63 61 72 64 73 0a 63 72 65 64 69 74 20 63 61 72 64 20 6c 6f 77 20 69 6e 74 65 72 65 73 74 0a 76 69 73 61 20 63 61 72 64 20 6f 6e 6c 69 6e 65 0a 6f 6e 6c 69 6e 65 20 63 72 65 64 69 74 20 63 61 72 64 0a 68 6f 77 20 74 6f 20 61 70 70 6c 79 20 61 20 63 72 65 64 69 74 20 63 61 72 64 0a 30 20 Data Ascii: torcredit card balancecredit card numberscredit card transfercredit card interest ratescredit card interestgold cardcredit card onlinebest rate credit cardscredit card low interestvisa card onlineonline credit cardhow to apply a credit card0
2024-10-14 09:12:32 UTC	2419	IN	Data Raw: 6b 27 7d 7d 2c 20 7b 27 6e 61 6d 65 27 3a 20 27 74 65 6d 70 6c 61 74 65 27 2c 20 27 64 61 74 61 27 3a 20 7b 27 6e 61 6d 65 27 3a 20 27 63 75 73 74 6f 6d 27 2c 20 27 6c 6f 63 61 6c 69 7a 65 64 4e 61 6d 65 27 3a 20 27 43 75 73 74 6f 6d 27 2c 20 27 69 73 52 65 73 70 6f 6e 73 69 76 65 27 3a 20 74 72 75 65 2c 20 27 69 73 41 6c 74 65 72 6e 61 74 65 52 65 6e 64 65 72 69 6e 67 27 3a 20 66 61 6c 73 65 2c 20 27 69 73 43 75 73 74 6f 6d 27 3a 20 74 72 75 65 7d 7d 2c 20 7b 27 6e 61 6d 65 27 3a 20 27 76 69 65 77 27 2c 20 27 64 61 74 61 27 3a 20 7b 27 63 6c 61 73 73 69 63 27 3a 20 7b 27 6e 61 6d 65 27 3a 20 27 63 6c 61 73 73 69 63 27 2c 20 27 75 72 6c 27 3a 20 27 3f 76 69 65 77 5c 78 33 64 63 6c 61 73 73 69 63 27 7d 2c 20 27 66 6c 69 70 63 61 72 64 27 3a 20 7b 27 6e 61 Data Ascii: k'}}, {'name': 'template', 'data': {'name': 'custom', 'localizedName': 'Custom', 'isResponsive': true, 'isAlternateRendering': false, 'isCustom': true}}, {'name': 'view', 'data': {'classic': {'name': 'classic', 'url': '?view\x3dclassic'}, 'flipcard': {'na
2024-10-14 09:12:32 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:31 UTC	195	OUT	GET /rules/other-Win32-v19.bundle HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:31 UTC	540	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:31 GMT Content-Type: text/plain Content-Length: 218853 Connection: close Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Cache-Control: public Last-Modified: Sun, 13 Oct 2024 10:59:53 GMT ETag: "0x8DCEB762AD2C54E" x-ms-request-id: 88bd8b3f-d01e-0049-5d65-1de7dc000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091231Z-17db6f7c8cf9wwz8ehu7c5p33g00000003fg00000000467a x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:31 UTC	15844	IN	Data Raw: 31 30 30 30 76 35 2b 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 30 30 30 22 20 56 3d 22 35 22 20 44 43 3d 22 45 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 52 75 6c 65 45 72 72 6f 72 73 41 67 67 72 65 67 61 74 65 64 22 20 41 54 54 3d 22 66 39 39 38 63 63 35 62 61 34 64 34 34 38 64 36 61 31 65 38 65 39 31 33 66 66 31 38 62 65 39 34 2d 64 64 31 32 32 65 30 61 2d 66 63 66 38 2d 34 64 63 35 2d 39 64 62 62 2d 36 61 66 61 63 35 33 32 35 31 38 33 2d 37 34 30 35 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 53 3d 22 37 30 22 20 44 4c 3d 22 41 22 20 44 43 61 3d 22 50 53 50 20 50 53 55 22 20 Data Ascii: 1000v5+<?xml version="1.0" encoding="utf-8"?><R Id="1000" V="5" DC="ESM" EN="Office.Telemetry.RuleErrorsAggregated" ATT="f998cc5ba4d448d6a1e8e913ff18be94-dd122e0a-fcf8-4dc5-9dbb-6afac5325183-7405" SP="CriticalBusinessImpact" S="70" DL="A" DCa="PSP PSU"
2024-10-14 09:12:31 UTC	16384	IN	Data Raw: 22 30 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 34 30 30 22 20 54 3d 22 49 33 32 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 42 22 20 49 3d 22 35 22 20 4f 3d 22 66 61 6c 73 65 22 3e 0d 0a 20 20 20 20 3c 4f 20 54 3d 22 41 4e 44 22 3e 0d 0a 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 47 45 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 2f 3e Data Ascii: "0" /> </L> <R> <V V="400" T="I32" /> </R> </O> </R> </O> </C> <C T="B" I="5" O="false"> <O T="AND"> <L> <O T="GE"> <L> <S T="1" F="0" />
2024-10-14 09:12:31 UTC	16384	IN	Data Raw: 20 20 3c 53 54 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 31 22 20 2f 3e 0d 0a 20 20 3c 2f 53 54 3e 0d 0a 3c 2f 52 3e 0d 0a 3c 24 21 23 3e 31 30 38 32 30 76 33 2b 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 30 38 32 30 22 20 56 3d 22 33 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 4f 75 74 6c 6f 6f 6b 2e 44 65 73 6b 74 6f 70 2e 43 6f 6e 74 61 63 74 43 61 72 64 50 72 6f 70 65 72 74 69 65 73 43 6f 75 6e 74 73 22 20 41 54 54 3d 22 64 38 30 37 36 30 39 32 37 36 37 34 34 32 34 35 62 61 66 38 31 62 66 37 62 63 38 30 33 33 66 36 2d 32 32 36 38 65 33 37 34 2d 37 37 36 36 2d 34 39 37 36 2d 62 65 34 34 2d 62 36 61 64 35 62 64 64 63 35 62 36 2d 37 38 31 Data Ascii: <ST> <S T="1" /> </ST></R><$!#>10820v3+<?xml version="1.0" encoding="utf-8"?><R Id="10820" V="3" DC="SM" EN="Office.Outlook.Desktop.ContactCardPropertiesCounts" ATT="d807609276744245baf81bf7bc8033f6-2268e374-7766-4976-be44-b6ad5bddc5b6-781
2024-10-14 09:12:32 UTC	16384	IN	Data Raw: 20 54 3d 22 55 36 34 22 20 49 3d 22 38 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 45 76 65 6e 74 73 5f 41 76 67 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 32 22 20 46 3d 22 41 76 65 72 61 67 65 22 20 2f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 39 22 20 4f 3d 22 74 72 75 65 22 20 4e 3d 22 50 75 72 67 65 64 5f 41 67 65 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 34 22 20 46 3d 22 43 6f 75 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 30 22 20 4f 3d 22 74 72 75 65 22 20 4e 3d 22 50 75 72 67 65 64 5f 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 35 22 20 46 3d 22 43 6f 75 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 Data Ascii: T="U64" I="8" O="false" N="Events_Avg"> <S T="2" F="Average" /> </C> <C T="U32" I="9" O="true" N="Purged_Age"> <S T="4" F="Count" /> </C> <C T="U32" I="10" O="true" N="Purged_Count"> <S T="5" F="Count" /> </C> <C T="U32"
2024-10-14 09:12:32 UTC	16384	IN	Data Raw: 22 30 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 43 6f 75 6e 74 5f 43 72 65 61 74 65 43 61 72 64 5f 56 61 6c 69 64 50 65 72 73 6f 6e 61 5f 46 61 6c 73 65 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 43 6f 75 6e 74 5f 43 72 65 61 74 65 43 61 72 64 5f 56 61 6c 69 64 4d 61 6e 61 67 65 72 5f 46 61 6c 73 65 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 32 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 43 6f Data Ascii: "0" O="false" N="Count_CreateCard_ValidPersona_False"> <C> <S T="10" /> </C> </C> <C T="U32" I="1" O="false" N="Count_CreateCard_ValidManager_False"> <C> <S T="11" /> </C> </C> <C T="U32" I="2" O="false" N="Co
2024-10-14 09:12:32 UTC	16384	IN	Data Raw: 20 20 20 20 3c 53 20 54 3d 22 33 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 39 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 50 61 69 6e 74 5f 49 4d 73 6f 50 65 72 73 6f 6e 61 5f 57 61 73 4e 75 6c 6c 5f 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 33 32 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 32 30 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 50 61 69 6e 74 5f 49 4d 73 6f 50 65 72 73 6f 6e 61 5f 4e 75 6c 6c 5f 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 33 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a Data Ascii: <S T="31" /> </C> </C> <C T="U32" I="19" O="false" N="Paint_IMsoPersona_WasNull_Count"> <C> <S T="32" /> </C> </C> <C T="U32" I="20" O="false" N="Paint_IMsoPersona_Null_Count"> <C> <S T="33" /> </C>
2024-10-14 09:12:32 UTC	16384	IN	Data Raw: 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 52 65 74 72 69 65 76 61 6c 4d 69 6c 6c 69 73 65 63 6f 6e 64 73 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 32 30 30 22 20 54 3d 22 49 36 34 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 4c 54 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 52 65 74 72 69 65 76 61 6c 4d 69 6c 6c 69 73 65 63 Data Ascii: <S T="3" F="RetrievalMilliseconds" /> </L> <R> <V V="200" T="I64" /> </R> </O> </L> <R> <O T="LT"> <L> <S T="3" F="RetrievalMillisec
2024-10-14 09:12:32 UTC	16384	IN	Data Raw: 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 30 22 20 54 3d 22 49 33 32 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 3c 2f 46 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 30 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 4f 63 6f 6d 32 49 55 43 4f 66 66 69 63 65 49 6e 74 65 67 72 61 74 69 6f 6e 46 69 72 73 74 43 61 6c 6c 53 75 63 63 65 73 73 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 4f 63 6f 6d 32 49 55 43 4f 66 66 69 63 65 49 6e Data Ascii: R> <V V="0" T="I32" /> </R> </O> </F> </S> <C T="U32" I="0" O="false" N="Ocom2IUCOfficeIntegrationFirstCallSuccessCount"> <C> <S T="9" /> </C> </C> <C T="U32" I="1" O="false" N="Ocom2IUCOfficeIn
2024-10-14 09:12:32 UTC	16384	IN	Data Raw: 52 3e 0d 0a 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 3c 2f 46 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 36 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 41 4e 44 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 54 65 6e 61 6e 74 20 65 6e 61 62 6c 65 64 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 55 73 65 72 20 65 6e 61 62 6c 65 64 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 Data Ascii: R> </O> </F> <F T="6"> <O T="AND"> <L> <S T="3" F="Tenant enabled" /> </L> <R> <O T="EQ"> <L> <S T="3" F="User enabled" /> </L>
2024-10-14 09:12:32 UTC	16384	IN	Data Raw: 54 3d 22 36 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 32 22 20 46 3d 22 48 74 74 70 53 74 61 74 75 73 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 34 30 34 22 20 54 3d 22 55 33 32 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 3c 2f 46 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 37 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 41 4e 44 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 47 45 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c Data Ascii: T="6"> <O T="EQ"> <L> <S T="2" F="HttpStatus" /> </L> <R> <V V="404" T="U32" /> </R> </O> </F> <F T="7"> <O T="AND"> <L> <O T="GE"> <

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	192	OUT	GET /rules/rule120608v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:33 UTC	563	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/xml Content-Length: 2160 Connection: close Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:03 GMT ETag: "0x8DC582BA3B95D81" x-ms-request-id: b913ea27-a01e-0002-1718-1c5074000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091233Z-17db6f7c8cf8rgvlb86c9c0098000000049g0000000059vb x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:33 UTC	2160	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 44 43 61 3d 22 50 53 55 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 30 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 32 22 20 52 3d 22 31 32 30 36 37 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 33 22 20 52 3d 22 31 32 30 36 31 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 34 22 20 52 3d 22 31 32 30 36 31 32 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 35 22 20 52 3d 22 31 32 30 36 31 34 22 20 2f 3e 0d 0a 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120608" V="0" DC="SM" T="Subrule" DCa="PSU" xmlns=""> <S> <R T="1" R="120609" /> <R T="2" R="120679" /> <R T="3" R="120610" /> <R T="4" R="120612" /> <R T="5" R="120614" />

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	192	OUT	GET /rules/rule224902v2s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:33 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/xml Content-Length: 450 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:25 GMT ETag: "0x8DC582BD4C869AE" x-ms-request-id: d08e5818-a01e-003d-3417-1c98d7000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091233Z-17db6f7c8cfcrfgzd01a8emnyg00000003pg000000006s2u x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:33 UTC	450	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 32 32 34 39 30 32 22 20 56 3d 22 32 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 31 30 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 55 54 53 20 54 3d 22 32 22 20 49 64 3d 22 62 62 72 35 71 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 53 20 54 3d 22 33 22 20 47 3d 22 7b 61 33 36 61 39 37 30 64 2d 34 35 61 39 2d 34 65 30 64 2d 39 63 61 62 2d 32 61 32 33 35 63 63 39 64 37 63 36 7d 22 20 2f 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 47 22 20 49 3d 22 30 22 20 4f 3d 22 66 61 6c 73 65 4e Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="224902" V="2" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120100" /> <UTS T="2" Id="bbr5q" /> <SS T="3" G="{a36a970d-45a9-4e0d-9cab-2a235cc9d7c6}" /> </S> <C T="G" I="0" O="falseN

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	193	OUT	GET /rules/rule120402v21s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:33 UTC	563	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/xml Content-Length: 3788 Connection: close Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:17 GMT ETag: "0x8DC582BAC2126A6" x-ms-request-id: c1f175ba-101e-0028-7611-1c8f64000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091233Z-17db6f7c8cf9c22xp43k2gbqvn00000003ug000000005h14 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:33 UTC	3788	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 34 30 32 22 20 56 3d 22 32 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 53 79 73 74 65 6d 2e 53 79 73 74 65 6d 48 65 61 6c 74 68 55 6e 67 72 61 63 65 66 75 6c 41 70 70 45 78 69 74 44 65 73 6b 74 6f 70 22 20 41 54 54 3d 22 63 64 38 33 36 36 32 36 36 31 31 63 34 63 61 61 61 38 66 63 35 62 32 65 37 32 38 65 65 38 31 64 2d 33 62 36 64 36 63 34 35 2d 36 33 37 37 2d 34 62 66 35 2d 39 37 39 32 2d 64 62 66 38 65 31 38 38 31 30 38 38 2d 37 35 32 31 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 43 65 6e 73 75 73 22 20 44 4c 3d 22 41 22 20 44 43 61 3d 22 50 53 50 22 20 78 6d 6c 6e 73 3d 22 22 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120402" V="21" DC="SM" EN="Office.System.SystemHealthUngracefulAppExitDesktop" ATT="cd836626611c4caaa8fc5b2e728ee81d-3b6d6c45-6377-4bf5-9792-dbf8e1881088-7521" SP="CriticalCensus" DL="A" DCa="PSP" xmlns=""

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	192	OUT	GET /rules/rule120600v4s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:33 UTC	563	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/xml Content-Length: 2980 Connection: close Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:10 GMT ETag: "0x8DC582BA80D96A1" x-ms-request-id: 466b9802-701e-000d-0d1f-1c6de3000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091233Z-17db6f7c8cfvtw4hh2496wp8p800000004ng000000004fbk x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:33 UTC	2980	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 30 22 20 56 3d 22 34 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 53 79 73 74 65 6d 2e 53 79 73 74 65 6d 48 65 61 6c 74 68 4d 65 74 61 64 61 74 61 44 65 76 69 63 65 43 6f 6e 73 6f 6c 69 64 61 74 65 64 22 20 41 54 54 3d 22 63 64 38 33 36 36 32 36 36 31 31 63 34 63 61 61 61 38 66 63 35 62 32 65 37 32 38 65 65 38 31 64 2d 33 62 36 64 36 63 34 35 2d 36 33 37 37 2d 34 62 66 35 2d 39 37 39 32 2d 64 62 66 38 65 31 38 38 31 30 38 38 2d 37 35 32 31 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 44 43 61 3d 22 44 43 22 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120600" V="4" DC="SM" EN="Office.System.SystemHealthMetadataDeviceConsolidated" ATT="cd836626611c4caaa8fc5b2e728ee81d-3b6d6c45-6377-4bf5-9792-dbf8e1881088-7521" SP="CriticalBusinessImpact" DL="A" DCa="DC"

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	914	OUT	GET /img/b/R29vZ2xl/AVvXsEhV2mufCwic-NGC9wpgCnQ_tNbFA-l8rrqbieFyIxc-hwTYbS3a1TQOLU60Y3imqy1yV2Ra0mLvkxr0mtirFQzRdl8HUIFGwZeHbN-1ZYAFW0XPgAB4Joue2DmmjAJHamVEq0bhi80fVeW8ke7prIDNkNsCHk_8H_jfvg2VB1AGMJndzaxuFOSC_HidiCg3/s1600/motor%20insurance%20quote.jpg HTTP/1.1 Host: blogger.googleusercontent.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc= Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://ald.my.id/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:12:33 UTC	482	IN	HTTP/1.1 200 OK Content-Type: image/jpeg Vary: Origin Access-Control-Expose-Headers: Content-Length ETag: "v472" Expires: Tue, 15 Oct 2024 09:12:33 GMT Cache-Control: public, max-age=86400, no-transform Content-Disposition: inline;filename="motor insurance quote.jpg" X-Content-Type-Options: nosniff Date: Mon, 14 Oct 2024 09:12:33 GMT Server: fife Content-Length: 29882 X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-10-14 09:12:33 UTC	908	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 01 00 60 00 60 00 00 ff e1 00 78 45 78 69 66 00 00 49 49 2a 00 08 00 00 00 04 00 12 01 03 00 01 00 00 00 01 00 00 00 31 01 02 00 07 00 00 00 3e 00 00 00 12 02 03 00 02 00 00 00 02 00 02 00 69 87 04 00 01 00 00 00 46 00 00 00 00 00 00 00 47 6f 6f 67 6c 65 00 00 03 00 00 90 07 00 04 00 00 00 30 32 32 30 02 a0 04 00 01 00 00 00 40 01 00 00 03 a0 04 00 01 00 00 00 40 01 00 00 00 00 00 00 ff db 00 43 00 02 01 01 02 01 01 02 02 02 02 02 02 02 02 03 05 03 03 03 03 03 06 04 04 03 05 07 06 07 07 07 06 07 07 08 09 0b 09 08 08 0a 08 07 07 0a 0d 0a 0a 0b 0c 0c 0c 0c 07 09 0e 0f 0d 0c 0e 0b 0c 0c 0c ff db 00 43 01 02 02 02 03 03 03 06 03 03 06 0c 08 07 08 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c 0c Data Ascii: JFIF``xExifII*1>iFGoogle0220@@CC
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: db ef 5f 59 ff 00 10 bf 23 ed 3f fc 0b fe 01 f3 3f f1 10 33 7e f1 ff 00 c0 4f d2 51 ff 00 05 9f f8 73 ff 00 42 df 8d 3d 3f d5 43 ff 00 c7 68 ff 00 87 cf fc 39 1f f3 2d f8 d3 fe fd 43 ff 00 c7 6b f3 6b 6f bd 1b 7d e9 ff 00 c4 2f c8 fb 4f ff 00 02 ff 00 80 1f f1 10 33 7e f1 ff 00 c0 7f e0 9f a4 bf f0 f9 ff 00 87 24 7f c8 b7 e3 4f 4f f5 50 ff 00 f1 da 5f f8 7d 07 c3 a0 73 ff 00 08 df 8d 3f ef d4 1f fc 76 bf 36 76 fb d1 b7 de 97 fc 42 fc 8f b4 ff 00 f0 2f f8 01 ff 00 11 03 37 ef 1f fc 04 fd 25 1f f0 59 ff 00 87 3f f4 2d f8 d3 d3 fd 54 3f fc 76 8f f8 7c ff 00 c3 91 ff 00 32 df 8d 3f ef d4 3f fc 76 bf 36 b6 fb d1 b7 de 9f fc 42 fc 8f b4 ff 00 f0 2f f8 01 ff 00 11 03 37 ef 1f fc 07 fe 09 fa 4b ff 00 0f 9f f8 72 47 fc 8b 7e 34 f4 ff 00 55 0f ff 00 1d a5 ff 00 87 Data Ascii: _Y#??3~OQsB=?Ch9-Ckko}/O3~$OOP_}s?v6vB/7%Y?-T?v\|2??v6B/7KrG~4U
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: dd 8a 7d fe c0 0e 49 f6 f7 f4 1e b5 f4 d6 99 fb 26 f8 5f e3 26 a3 fd 8b e0 78 7e cb f6 17 81 35 2d 5e 4d 41 e4 d4 34 ac 59 3c f7 10 ea 7a 7d c1 8f c9 95 dc 0f 21 c6 23 c7 cc 5b 0a 6b ea f3 5c ef 0f 97 f2 bc 45 ed 2b eb a5 95 b7 be be 7a 25 76 fa 1f 39 80 cb 6b 63 39 95 1d d5 b4 ef 73 e6 9d d4 9b 87 ad 7b ff 00 85 3f 63 fd 0f c7 de 04 82 eb 47 f1 46 9b 7d 67 75 79 0e aa 35 b8 6f ad 6e 0a 69 72 69 6f 7a 60 78 d2 66 b6 37 08 e1 41 61 2e c2 08 60 76 f2 72 f5 ff 00 d9 6b c2 9e 04 9f 43 97 55 f8 80 b7 36 7e 28 b8 91 b4 63 a4 d9 a5 fc 77 91 46 b1 bb ac c6 09 ca 23 61 8a 93 19 60 b8 dc 4e 2b cc a7 c6 59 64 df 2c 66 db e8 ac ee ff 00 0f f8 3d ec 77 4f 86 f1 b1 f8 92 b7 7b a3 c5 37 0a 5d d5 ec 7e 29 fd 9f 7c 3f a9 fe d6 5e 36 f0 7e 8f 75 aa 58 f8 7f c3 61 ee 03 98 Data Ascii: }I&_&x~5-^MA4Y<z}!#[k\E+z%v9kc9s{?cGF}guy5onirioz`xf7Aa.`vrkCU6~(cwF#a`N+Yd,f=wO{7]~)\|?^6~uXa
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 90 e5 48 20 81 5a 9e 21 fd 91 3e 27 78 5b c5 fa 1f 87 ef bc 17 a9 43 ad f8 92 17 9f 4e b3 59 e0 96 59 55 0e 24 2d e5 c8 c2 30 bc 1c b1 1d 7b 53 be 2c 7e c8 1f 13 be 07 78 65 b5 af 15 f8 42 eb 47 d2 54 61 ae da ee de e2 18 4e 0f fa d6 86 49 04 6b 9c 0d ed c6 48 af 4e 15 b2 39 54 82 84 a9 b9 3b 28 d9 c6 ef 97 65 1f 47 b5 b6 b1 e7 4a 86 66 a9 ce f1 9a 4b 7d 1d b5 de fe a9 99 9a 6f ed 17 e3 bd 23 40 d2 34 cb 5f 14 5e 5b da e8 7b 16 c9 96 da 0f b4 45 1c 4e 5e 18 5e 6f 2f cc 9a 35 24 fc b2 b3 2f 00 e3 20 11 d2 ea 3f b6 bf c4 5b 9b eb 0b fb 1d 73 fb 37 50 b5 b2 b7 b4 b8 9a 2b 1b 79 16 f0 c0 ee d1 cc 62 68 cc 71 c8 3c c6 19 40 38 aa bf 0c 7f 62 ef 8a 7f 1a 3c 31 1e b9 e1 9f 06 ea 17 da 35 c3 95 86 e6 e2 78 2c 7c f0 00 f9 d5 66 75 dc 84 9c 06 04 e7 19 c6 2b d1 3f Data Ascii: H Z!>'x[CNYYU$-0{S,~xeBGTaNIkHN9T;(eGJfK}o#@4_^[{EN^^o/5$/ ?[s7P+ybhq<@8b<15x,\|fu+?
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 66 89 2d ff 00 76 2f 23 44 12 a4 60 2b 4a a0 91 b8 01 c1 e9 54 ff 00 62 24 d7 67 fd ae fe 3b 2f 88 97 53 93 6d cd a7 d8 05 fe e3 fe 8d be 52 9e 5e ee b1 82 38 c7 19 af 83 f4 8f da bb e2 0e 89 f1 9d be 20 27 88 ee 26 f1 74 b1 7d 9d ae a6 81 65 8e 48 7f e7 8e cc 6d db d3 81 cf 15 d8 5b ff 00 c1 48 fe 2e 5b 78 de f3 c4 51 6b 5a 4a ea 97 d6 b1 69 f3 16 d1 e0 d8 62 46 76 8c 05 0d d9 9d b2 49 ce 0f b5 7c 66 3b 81 73 39 c2 70 82 a6 f9 e9 42 2d fc 36 94 5a 6e ca dd 6c 7d 36 17 8a f0 11 9c 65 27 35 cb 52 52 5d 6e a4 9d b5 bf 43 ea 2f f8 26 d7 c7 1d 73 e3 d7 c5 7f 88 93 78 bb 57 6d 57 58 d0 8f d9 34 b5 30 c7 1b 5b 5a b4 8f b8 47 80 0e 4e 06 4f b0 ab 3f 14 7e 33 78 7f c1 9f b3 3f c6 cd 27 52 5f 8c de 2a b2 fe c9 d4 cd ec de 24 d1 9e 78 ac c3 c0 ea 16 27 11 a0 f2 54 Data Ascii: f-v/#D`+JTb$g;/SmR^8 '&t}eHm[H.[xQkZJibFvI\|f;s9pB-6Znl}6e'5RR]nC/&sxWmWX40[ZGNO?~3x?'R_*$x'T
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 7d 13 6e cd 34 d3 d3 6b 5a c7 2e 23 8b 30 35 15 68 fb d6 93 6d 2b 5b 56 92 bd d3 bf ae e7 89 c2 fe 65 ba b0 dc 37 28 24 30 da 73 df 8a b4 3a 54 2a 9e 5a 6d 5f ba bc 0a 90 38 c7 5a fd aa 3b 1f 97 3d c7 51 40 6c d1 54 20 a2 8a 28 00 a2 8a 28 00 a2 8a 28 00 a2 8a 28 00 a2 8a 28 00 a2 8a 28 00 a2 8a 28 00 a2 8a 28 01 91 ff 00 c7 ca fd 45 7e aa fe c5 5f f2 8c 0f 08 ff 00 d8 9d 3f fe 81 2d 7e 55 47 ff 00 1f 2b f5 15 fa ab fb 14 f1 ff 00 04 bf f0 8f fd 89 b3 ff 00 e8 12 d7 e4 de 2e 7f c8 ba 87 f8 ff 00 f6 d6 7e 8f e1 9f fb f5 5f f0 7f ed c8 e0 ff 00 e0 b6 7f f2 43 3c 1b ff 00 63 40 ff 00 d2 59 eb f3 9d 3a 57 e8 c7 fc 16 cf fe 48 67 83 7f ec 68 1f fa 4b 3d 7e 73 a7 4a f5 fc 31 ff 00 91 14 7f c5 3f cd 1e 5f 1f ff 00 c8 e2 5f e1 8f e4 47 a8 ca 61 b0 99 86 dc aa 12 Data Ascii: }n4kZ.#05hm+[Ve7($0s:T*Zm_8Z;=Q@lT ((((((((E~_?-~UG+.~_C<c@Y:WHghK=~sJ1?__Ga
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 3d 13 e0 8f ec fb e0 8f 13 78 6b 5e bb b7 d5 34 bf 19 ac c7 4f 8e d4 ca d7 36 d3 69 52 49 7f f6 79 62 96 3d dc ab 28 c8 35 c8 fc 51 fd 9d 6c 7e 1c c7 79 26 a1 e2 6d 27 45 d7 6e 60 93 59 d2 74 69 44 ce 2e 2d d2 f4 c3 15 ba dc e4 3f 99 22 a6 42 31 e4 03 51 e9 1f b5 ae b9 e1 b8 56 0d 27 43 f0 b6 8f 66 7e ce cd 6f 6f 64 76 ef 82 e4 dc 2b 13 9c b6 58 9c e4 f4 aa ba b7 ed 37 ad 78 87 48 5b 5b ed 37 c3 f7 37 7e 4b d8 c5 ab 4b 65 e6 5e 58 5a b5 df da 4c 71 92 70 40 62 71 9e 42 82 b9 f9 b2 38 e8 e5 f9 ec 31 2e a7 37 ba df 78 dd 68 bc ad eb 6d 7b 6a 74 4b 17 95 4a 92 8f 2e ab c9 f7 7d 56 b7 fc 0d 6f db 4b e0 1d 8f ec ef f1 37 53 b5 82 6b 5d 3e 1d 53 55 bd 7d 23 40 82 26 f2 ec 34 98 a4 58 e2 62 e7 23 e6 93 cd 21 49 23 0d d3 8a ef fe 1e 7e c4 36 be 1f f8 b3 e1 bb 3d Data Ascii: =xk^4O6iRIyb=(5Ql~y&m'En`YtiD.-?"B1QV'Cf~oodv+X7xH[[77~KKe^XZLqp@bqB81.7xhm{jtKJ.}VoK7Sk]>SU}#@&4Xb#!I#~6=
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: f0 af 1f f1 fd e3 8f fc 19 c3 ff 00 c6 2b e6 75 f1 46 a9 ff 00 41 6d 63 e9 f6 e9 f8 ff 00 c7 e9 7f e1 27 d5 7f e8 2d ac 7f e0 74 ff 00 fc 5d 3f f5 cf 3c ff 00 a0 ba 9f f8 13 0f f5 6f 2a ff 00 a0 78 7d c8 fa 5f fe 1c dd f0 af 1f f1 fd e3 8f fc 19 c3 ff 00 c6 28 ff 00 87 37 7c 2b ff 00 9f ef 1c 7f e0 ce 1f fe 31 5f 34 7f c2 4f aa ff 00 d0 5b 58 ff 00 c0 e9 ff 00 f8 ba ab aa f8 b7 59 8a c6 7f 2b 5a d6 a3 7f 29 d9 5c 5f cd f2 90 a4 8c 82 dd 0d 2f f5 cf 3c ff 00 a0 ba 9f f8 13 0f f5 6f 2a ff 00 a0 78 7d c8 fa 84 7f c1 1c 3e 15 37 4b ef 1c 1c 75 c6 a9 0f 1f f9 02 8f f8 73 6f c2 bc 7f c7 f7 8e 3f f0 67 0f ff 00 18 af 22 fd a6 3c 45 a8 d9 7c 46 b2 8e d7 52 d4 6d e3 ff 00 84 7b 4a 7f 2a 1b b9 22 57 76 b6 5c bb 61 ba e0 7d 6b 82 97 c4 fa af 97 ff 00 21 6d 63 e8 6f Data Ascii: +uFAmc'-t]?<ox}_(7\|+1_4O[XY+Z)\_/<ox}>7Kuso?g"<E\|FRm{J*"Wv\a}k!mco
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: ca ab e2 9d 50 8c 9d 57 58 cf fd 7f 4d ff 00 c5 d4 69 e2 6d 50 15 ff 00 89 be ad ff 00 81 f2 ff 00 f1 54 7f ae 79 e7 fd 05 d4 ff 00 c0 98 3e 19 ca 97 fc c3 c3 ff 00 01 47 d5 df f0 e6 ef 85 78 ff 00 8f ef 1c 7f e0 ce 1f fe 31 47 fc 39 bb e1 5f fc ff 00 78 e3 ff 00 06 70 ff 00 f1 8a f9 4e 4f 13 ea 84 0f f8 9b 6a ff 00 f8 1d 30 ff 00 d9 e8 8f c4 fa a0 1f f2 16 d5 ff 00 f0 3a 6f fe 2e 8f f5 cf 3c ff 00 a0 ba 9f f8 13 27 fd 5a ca bf e8 1e 1f f8 0a 3e ac 1f f0 46 ef 85 6a 7f e3 fb c7 43 1e 9a 9c 3f fc 62 bd 8f 47 f8 4d a6 fc 10 fd 98 ee 3c 27 a2 b5 e1 d1 fc 3f a0 5c da 5a 8b a9 3c c9 42 08 a5 3f 31 01 72 79 1c e3 b5 7e 79 0f 14 ea 80 2f fc 4d b5 7e a3 1f e9 b3 7f f1 75 f7 8f c0 9b 99 2f ff 00 60 5d 26 69 a7 9a e6 66 f0 b4 ec f2 c8 e5 9e 4f dd 49 cb 13 c9 af 3f Data Ascii: PWXMimPTy>Gx1G9_xpNOj0:o.<'Z>FjC?bGM<'?\Z<B?1ry~y/M~u/`]&ifOI?
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 1e 79 e9 eb 48 ad 95 14 c9 13 6a 55 8c 50 04 2c 72 78 35 df 78 0c ff 00 c6 33 7c 4e ff 00 b0 a6 83 ff 00 a3 cd 70 77 03 00 7d 6b bc f0 1f fc 9b 37 c4 ef fb 0a 68 5f fa 3c d0 12 d8 e0 43 66 46 a5 38 22 96 21 c9 fa 0a 93 14 01 0e 07 af eb 4a 14 1f 5f ce a5 c5 46 78 90 fd 05 00 08 80 c7 9e 7a 7a d3 54 02 07 3f ad 49 17 fa a5 fa 52 4c 30 9f 88 fe 74 00 dd bf 5f ce 8d bf 5f ce 96 8a 00 8e 1f f5 ab f5 af bf 3f 67 81 bb fe 09 f5 a3 ff 00 b3 e1 39 f1 ff 00 7e a4 af 80 e1 ff 00 58 bf ef 7f 85 7d f9 fb 3b ff 00 ca 3e 74 9f fb 14 e6 ff 00 d1 72 53 88 a4 65 7f c1 47 50 bf c3 4f 0f e3 b6 b6 3f f4 44 95 f2 3a c4 db be ef 61 de be bc ff 00 82 8b 0d df 0d 74 1f fb 0d 0f fd 11 25 7c 92 db 91 f1 ed 51 29 24 c8 20 e8 48 db f7 68 8d c4 bf 74 66 a6 36 8c ce c7 70 eb 8e 94 d8 Data Ascii: yHjUP,rx5x3\|Npw}k7h_<CfF8"!J_FxzzT?IRL0t__?g9~X};>trSeGPO?D:at%\|Q)$ Hhtf6p

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	909	OUT	GET /img/b/R29vZ2xl/AVvXsEhTZef2smB-4WzKsOkrjN080E4YRXcWmVbIq6jcTxUMgr56k-eUFqy-Jm7D6EXXqB1WQfk-XifK51XMT1BsWcREtTRxd8-6dGx6m_nWYjXwYtdWuSM5xKwP0FgJhf4pxe8oEKqIizH5_bYtcQc3HUz44jaH9QX0JyjQKcO_NqOZwd1QZx9dzpk_d77Uaw/s300/Best%20Auto%20Insurance.png HTTP/1.1 Host: blogger.googleusercontent.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc= Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://ald.my.id/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:12:33 UTC	479	IN	HTTP/1.1 200 OK Content-Type: image/png Vary: Origin Access-Control-Expose-Headers: Content-Length ETag: "v2a8" Expires: Tue, 15 Oct 2024 09:12:33 GMT Cache-Control: public, max-age=86400, no-transform Content-Disposition: inline;filename="Best Auto Insurance.png" X-Content-Type-Options: nosniff Date: Mon, 14 Oct 2024 09:12:33 GMT Server: fife Content-Length: 14864 X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-10-14 09:12:33 UTC	911	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 01 2c 00 00 00 fa 08 02 00 00 00 94 0f ed a4 00 00 00 03 73 42 49 54 08 08 08 db e1 4f e0 00 00 00 5f 7a 54 58 74 52 61 77 20 70 72 6f 66 69 6c 65 20 74 79 70 65 20 41 50 50 31 00 00 08 99 e3 4a 4f cd 4b 2d ca 4c 56 28 28 ca 4f cb cc 49 e5 52 00 03 63 13 2e 13 4b 13 4b a3 44 03 03 03 0b 03 08 30 34 30 30 36 04 92 46 40 b6 39 54 28 d1 00 05 98 98 9b a5 01 a1 b9 59 b2 99 29 88 cf 05 00 4f ba 15 68 1b 2d d8 8c 00 00 20 00 49 44 41 54 78 9c ed 9d 7b 7c 14 d5 f9 ff 9f e7 cc ec e6 b2 09 49 b8 24 10 ee 17 e5 26 05 51 7f d0 56 84 2f 54 01 45 d1 2f 08 b5 68 4b 15 ad 28 a2 b5 a0 6d 55 a8 ad 50 45 fc 5a a3 82 08 b5 2a 16 2a 15 10 a2 04 94 20 08 88 48 40 c3 55 30 24 24 11 72 21 64 93 90 cd 5e e7 3c bf 3f ce ee 64 Data Ascii: PNGIHDR,sBITO_zTXtRaw profile type APP1JOK-LV((OIRc.KKD04006F@9T(Y)Oh- IDATx{\|I$&QV/TE/hK(mUPEZ** H@U0$$r!d^<?d
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 6e b7 fb 7c be 66 a8 a2 a9 84 97 25 04 80 ff fc e7 3f 44 54 52 52 d2 90 cc 23 46 8c 68 4d 57 7b df be 7d db dc f8 84 70 71 e5 e5 e5 99 58 07 8b c5 12 1f 1f ff 43 f2 5b ad 56 b7 db 3d 7c f8 f0 a0 9c f1 f1 f1 c2 b3 d0 a6 09 bb 71 42 b7 db dd f0 cc c5 c5 c5 62 a3 b0 b0 f0 c2 85 0b 56 ab 55 d3 34 9b cd d6 bd 7b f7 d0 cc 17 2e 5c 28 2b 2b 73 b9 5c 8c b1 6e dd ba c5 c6 c6 ea 1f 71 ce cb cb cb 63 63 63 2b 2b 2b ab aa aa ec 76 7b 42 42 42 55 55 55 d7 ae 5d a3 a2 a2 f4 6c fa 4f 17 22 8a 94 ec ec ec 75 eb d6 cd 9f 3f bf 9e 47 c1 e1 70 68 9a d6 ae 5d 3b bd 10 a7 d3 69 b1 58 42 f5 7c ee dc 39 b1 e1 f1 78 ac 56 6b 52 52 92 b1 d8 f2 f2 72 87 c3 d1 b1 63 47 63 a3 ce e9 74 da ed f6 a0 44 9d aa aa aa f3 e7 cf 03 80 f1 a7 ea e2 c5 8b c6 6b 2f 2d 2d 75 38 1c e2 44 55 55 55 Data Ascii: n\|f%?DTRR#FhMW{}pqXC[V=\|qBbVU4{.\(++s\nqccc+++v{BBBUUU]lO"u?Gph];iXB\|9xVkRRrcGctDk/--u8DUUU
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: e8 bb 9b 36 6d 1a 3c 78 f0 ce 9d 3b 1f 7c f0 c1 55 ab 56 5d d2 db e1 f1 78 12 12 12 a6 4c 99 62 4c 3c 72 e4 08 63 4c 3c 9d 44 b4 78 f1 e2 c8 c8 c8 f4 f4 f4 d0 c3 d7 af 5f 0f 00 4b 97 2e 15 bb 37 de 78 63 7c 7c 7c 50 9e 47 1e 79 24 36 36 b6 1e b7 c7 da b5 6b ad 56 6b 90 13 ff ec d9 b3 5d bb 76 1d 3f 7e 7c ad 87 5c 73 cd 35 16 8b 45 6c ef d9 b3 47 55 d5 f7 df 7f bf be eb 24 22 a2 07 1f 7c 30 2a 2a 2a 3b 3b 5b ec 7e fa e9 a7 23 46 8c 10 db 59 59 59 51 51 51 ab 56 ad d2 33 df 72 cb 2d 56 ab 75 e0 c0 81 bd 02 0c 1a 34 48 f7 bb 84 e6 ff fb df ff ae 28 ca f1 e3 c7 83 4e 3a 67 ce 1c e3 03 f0 f0 c3 0f df 7d f7 dd 41 79 5e 7f fd f5 51 a3 46 e9 5f d6 4f 7f fa 53 45 51 0e 1f 3e 2c 76 dd 6e f7 e9 d3 a7 93 93 93 ef ba eb 2e b3 7c 3c 61 d7 1c ad ac ac e4 9c 9f 3b 77 ae Data Ascii: 6m<x;\|UV]xLbL<rcL<Dx_K.7xc\|\|\|PGy$66kVk]v?~\|\s5ElGU$"\|0***;;[~#FYYYQQQV3r-Vu4H(N:g}Ay^QF_OSEQ>,vn.\|<a;w
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 7b 2d 00 14 16 16 6e d9 b2 65 c8 90 21 46 73 e4 74 3a d7 ac 59 73 cd 35 d7 0c 1b 36 4c 2f 39 32 32 72 c6 8c 19 fa e9 f6 ef df bf 63 c7 8e a3 47 8f de 7c f3 cd c2 47 62 a4 aa aa 6a d3 a6 4d 59 59 59 36 9b 2d 2a 2a 6a f2 e4 c9 c9 c9 c9 a7 4e 9d ea df bf ff 82 05 0b 9e 7d f6 59 91 8d 88 3e fd f4 d3 03 07 0e 18 83 d1 19 63 b7 de 7a ab b1 34 b7 db bd 6f df be 6f bf fd b6 4b 97 2e 4e a7 53 51 94 eb af bf de 6a b5 66 64 64 0c 18 30 a0 67 cf 9e b5 de a2 8d 1b 37 66 67 67 4f 9f 3e bd 5b b7 6e 41 1f 1d 3e 7c 78 df be 7d 56 ab 55 b7 d5 4e a7 f3 86 1b 6e 30 36 2b f6 ef df 9f 9d 9d 7d c3 0d 37 74 ed da b5 be 6f 22 40 6e 6e ee e6 cd 9b a7 4f 9f 6e 74 e1 ee db b7 ef cc 99 33 b7 df 7e bb ae ab c3 87 0f 7f f2 c9 27 62 a4 c1 e9 74 76 ea d4 69 dc b8 71 f5 e4 2f 2d 2d 5d bb Data Ascii: {-ne!Fst:Ys56L/922rcG\|GbjMYYY6-**jN}Y>cz4ooK.NSQjfdd0g7fggO>[nA>\|x}VUNn06+}7to"@nnOnt3~'btviq/--]
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 98 31 a3 6b d7 ae 75 9d 62 fb f6 ed 09 09 09 f9 f9 f9 a1 1f ad 59 b3 46 ff 6d 7d ef bd f7 00 40 2f 79 d9 b2 65 11 11 11 b5 be b9 41 bc b2 e2 c5 17 5f 24 22 b1 1c e0 fc f9 f3 39 e7 e2 d3 ca ca ca 17 5e 78 21 2a 2a 6a cb 96 2d 97 ba 7a 49 a3 91 cd d1 e6 87 88 22 22 22 c8 10 0f 58 5a 5a 6a 5c 83 23 31 31 d1 38 f5 fb e4 c9 93 57 5c 71 45 d0 5a 4f 67 ce 9c 39 7b f6 6c 7e 7e 7e 5d e1 a6 76 bb 3d 2b 2b 2b 68 be 7c 45 45 c5 ac 59 b3 ee b8 e3 0e b1 2b 96 ea d1 fb 7b ff f8 c7 3f 3a 77 ee 3c 79 f2 e4 d0 d2 84 f3 46 ac 0a 91 94 94 74 f3 cd 37 bf fd f6 db d9 d9 d9 13 27 4e 3c 7f fe fc f6 ed db 5d 2e d7 96 2d 5b c6 8c 19 d3 f0 fb 20 69 20 d2 3b da fc 08 9f 87 71 b1 b0 ce 9d 3b 1b e3 83 0f 1d 3a 64 b7 db f5 dd d4 d4 54 63 00 da d9 b3 67 7f ff fb df 9f 3d 7b 16 02 ee cd Data Ascii: 1kubYFm}@/yeA_$"9^x!**j-zI"""XZZj\#118W\qEZOg9{l~~~]v=+++h\|EEY+{?:w<yFt7'N<].-[ i ;q;:dTcg={
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 44 04 a4 00 00 67 1a 11 89 74 0e 8c 88 18 55 eb 47 03 42 44 f0 79 19 63 84 c0 18 b3 44 45 76 ec 9e dc ef ff 0d 83 d1 d7 60 cf 78 b0 01 59 02 86 32 f8 bc d2 06 4a 1a 47 d8 2d f4 e4 17 15 fa b7 15 60 c4 79 79 e1 f9 ad af fe ab f0 ab a3 91 25 9e 78 0f 8b b6 a8 56 54 88 10 02 1a d0 95 60 e8 9b e9 09 c4 48 5c a6 5f 84 44 54 ab 08 75 38 02 11 59 10 38 e7 c0 90 73 ee 03 72 33 aa 40 af bb 6b 5c af 71 d7 dd 30 e3 8e f8 5e 5d 00 00 01 44 3b 59 1a 40 49 93 09 47 11 0a fb 86 88 e0 01 28 76 6a 6b 76 ec fc ef 66 57 d9 45 ab d5 6a b1 a0 a2 28 1a 6a 8c 31 dd 0c 32 c6 34 d0 00 80 11 03 00 8e 0c 00 90 6b 00 a0 01 12 11 72 22 22 24 46 44 c4 45 7b b2 a6 db 93 08 38 22 a2 68 ca 0a 79 2b 1c 00 80 18 02 00 72 e2 9c 13 43 4d d3 bc 2e 77 5c 5c dc 75 53 6f 8a bd 6b 22 f4 8f 01 00 Data Ascii: DgtUGBDycDEv`xY2JG-`yy%xVT`H\_DTu8Y8sr3@k\q0^]D;Y@IG(vjkvfWEj(j124kr""$FDE{8"hy+rCM.w\\uSok"
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: ea 30 70 e0 2f ef bd 37 26 26 c6 e3 f1 88 d2 82 44 55 ab 1b 30 48 6f c6 dd a0 27 c9 68 63 bd 5e 2f 34 b8 87 f9 63 43 de 96 7a 08 23 11 1a 65 06 00 8c 31 45 65 8c a9 8a 62 51 55 2b 30 06 8c 31 e6 ff df 20 4b 0e c0 b9 82 88 a8 02 2a e4 f3 b4 8b 80 48 c5 ef 47 b1 a9 da e8 21 bd df fc 93 7d c2 4f ca bc 0e 50 35 60 a8 20 22 70 86 84 c4 91 98 86 04 0a d3 5b 9e a1 83 f8 a1 01 3d 41 54 07 df 48 24 8d 27 8c 44 a8 a3 ff 6a ea 0e 4c fd d1 0f 75 66 1a cd 63 f5 46 cd 81 66 6b 7c fc 84 7b ef bd f6 da 6b 9d 4e a7 b1 9d 29 ca 07 a3 6f 36 a4 0e 50 c7 af 78 68 35 ea 51 a9 44 52 0f e1 22 c2 a0 67 17 91 10 01 91 84 a1 43 24 a6 00 53 6a b8 55 18 f8 c3 d7 18 63 48 c0 11 48 61 1a 02 d3 48 8f 89 45 00 06 48 2a 42 27 5b fc e2 07 3c bf 1e 5b 0e 1e 2f 23 2f 72 4e 48 08 1c 48 65 0a Data Ascii: 0p/7&&DU0Ho'hc^/4cCz#e1EebQU+01 KHG!}OP5` "p[=ATH$'DjLufcFfk\|{kN)o6Pxh5QDR"gC$SjUcHHaHEHB'[<[/#/rNHHe
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: a6 dd 1c e3 81 c6 c2 8d db c6 3c c6 e7 cc 58 81 a0 5d 63 9d 9b 05 fd 97 c8 36 ae 67 f7 b5 93 6d e3 7a 76 9c 3f a2 e3 3c 7f 2b b4 b1 9a 6f ec 55 37 ed 10 53 08 53 11 0a c8 80 b0 78 ba b9 d3 02 f8 7c 3e ad 26 7a 4c 4c 68 69 28 86 37 c0 3f 68 e1 ef 76 72 9e dc bd fb af 9f 7e fa da 6b af 75 b9 5c 41 eb 88 1a 87 22 8d 26 b1 d6 8e 62 f8 a3 1b a2 5a 77 9b 17 5d d5 31 63 7b e9 89 a2 51 20 31 12 a6 7d 42 ce 7d 40 56 ae 11 47 e2 62 b6 84 46 44 c4 b8 c6 11 09 19 22 02 23 00 a0 80 99 22 22 d0 08 bc 0c 34 2e de 1f 01 41 93 37 84 ed aa e1 6e 41 22 02 31 de f8 93 b8 01 ab e7 97 be bc e6 ab d5 a9 03 2f 46 32 c6 34 51 13 04 aa db 17 4a 8d 0f 91 69 72 17 ab 85 68 b9 fa 28 09 91 42 87 46 6b a3 77 c6 9a 51 8d 66 8d 58 36 17 61 2b 42 4e 44 c4 85 01 04 d0 63 51 c4 7b 26 90 10 Data Ascii: <X]c6gmzv?<+oU7SSx\|>&zLLhi(7?hvr~ku\A"&bZw]1c{Q 1}B}@VGbFD"#""4.A7nA"1/F24QJirh(BFkwQfX6a+BNDcQ{&
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 56 2b 43 45 3f 9d 7e 78 ad 0e 18 0a 44 a0 42 6d f3 36 ea c2 38 56 7e b9 46 8d 38 d2 73 f5 86 68 c7 f9 23 84 27 26 79 d9 78 c7 0e 7f 7a c9 d2 fd ed a6 f6 3f f7 d0 36 7d 37 61 d6 d0 1f ad c3 26 4c 45 a8 3f df a4 2f 4e e1 1f c4 47 22 62 fe 88 35 f1 66 5c 91 ee 3f 8c 73 62 81 e0 6c 51 94 2e 45 e6 1f ef e3 04 80 80 cc 6f e6 00 f2 5c c7 e6 bd 0c fb 8f 5c 11 13 ef 45 4e 58 43 f9 0c 30 30 93 bf b6 b0 18 6c f4 ba f7 67 26 be af 6f b7 4e d0 63 d3 16 b0 f9 21 18 8d aa 6e 00 95 84 c8 e4 65 e3 f3 ef da 04 00 9a dd 95 3d f2 5d 5d a8 2d 34 40 d2 56 08 bf e6 68 6d cb 9c e9 01 34 7a f0 8a 71 86 a1 71 26 61 d0 40 42 cd 82 fd b3 28 fc fb 88 00 e0 ac ac fc f0 c5 17 4f 9c 38 11 13 13 63 8c 8c 09 ea f2 19 83 63 82 11 13 33 00 1a 6e 0c c3 93 16 92 81 b1 58 63 a3 54 57 a0 3e d3 Data Ascii: V+CE?~xDBm68V~F8sh#'&yxz?6}7a&LE?/NG"b5f\?sblQ.Eo\\ENXC00lg&oNc!ne=]]-4@Vhm4zqq&a@B(O8cc3nXcTW>
2024-10-14 09:12:33 UTC	1390	IN	Data Raw: 00 ff 5b 11 c5 87 22 9e 86 13 00 80 37 42 01 84 a6 3d 9d fa fd 10 55 68 d4 31 c6 96 79 3d 19 2e 79 ec 25 cb 31 1e 15 da 98 af 95 50 f1 84 2a 4a 7f 06 42 53 ea 2a e4 92 e7 6d 5b 98 2c 42 fd 3e 56 cf 55 8f 8d b5 58 2c e4 0e be c5 b5 7e e5 46 9d 88 74 8b c5 92 9b 9b 0b e7 0a 20 a1 33 63 ec c2 99 9c d5 7f 7e 2e f9 c8 c5 58 9b cd 9f 07 6b b8 3a 83 ec 6a 50 ba be 6d 74 87 06 3a a5 fe bc 9c 48 45 a6 a8 6a 42 fb f6 10 f2 5b de c8 07 25 dc 9f aa d0 9f aa fa 2f 30 48 d8 b5 aa fd 92 65 d6 7a 8a cb 46 81 60 ba 08 05 35 1c 2d dd db 3b 93 db c5 1f b7 2b aa ca 45 ab 92 71 4e 5c 01 66 7c a6 83 7e 1d 39 53 34 4d 53 81 18 63 5d 72 9d 19 73 5f 1e 3a 61 8c c3 e1 38 9a fa 59 df 0b 55 91 91 b6 80 ef 84 7c c4 d1 f0 96 ec ba da b7 02 63 4b 58 b8 41 19 43 ce 03 93 15 d1 ef 79 f5 Data Ascii: ["7B=Uh1y=.y%1PJBSm[,B>VUX,~Ft 3c~.Xk:jPmt:HEjB[%/0HezF`5-;+EqN\f\|~9S4MSc]rs_:a8YU\|cKXACy

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	192	OUT	GET /rules/rule120609v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:33 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/xml Content-Length: 408 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:33 GMT ETag: "0x8DC582BB56D3AFB" x-ms-request-id: 8bb3084a-701e-0053-175b-1c3a0a000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091233Z-17db6f7c8cf9c22xp43k2gbqvn00000003sg0000000089ee x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:33 UTC	408	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 38 32 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 44 64 5d 5b 45 65 5d 5b 4c 6c 5d 5b 4c 6c 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120609" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120682" /> <SR T="2" R="^([Dd][Ee][Ll][Ll])"> <S T="1" F="0" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	539	OUT	GET /igniel/blogger/master/iglo/v2.js HTTP/1.1 Host: cdn.rawgit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://ald.my.id/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:12:33 UTC	1034	IN	HTTP/1.1 301 Moved Permanently Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 94 Connection: close Server: BunnyCDN-IL1-1206 CDN-PullZone: 201235 CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74 CDN-RequestCountryCode: US Access-Control-Allow-Origin: * Access-Control-Expose-Headers: * Age: 37407 Alt-Svc: h3=":443" Alt-Svc: h3-29=":443" Alt-Svc: h3-27=":443" Cache-Control: public, max-age=2592000 Location: https://cdn.jsdelivr.net/gh/igniel/blogger@master/iglo/v2.js Timing-Allow-Origin: * Cross-Origin-Resource-Policy: cross-origin X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Served-By: cache-fra-etou8220086-FRA, cache-chi-kigq8000048-CHI X-Cache: MISS, HIT CDN-ProxyVer: 1.04 CDN-RequestPullSuccess: True CDN-RequestPullCode: 301 CDN-CachedAt: 10/14/2024 09:12:33 CDN-EdgeStorageId: 1029 CDN-Status: 301 CDN-RequestTime: 0 CDN-RequestId: 04bab3861cd45a8c003a59d91fc999ee CDN-Cache: EXPIRED
2024-10-14 09:12:33 UTC	94	IN	Data Raw: 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 2e 20 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 68 74 74 70 73 3a 2f 2f 63 64 6e 2e 6a 73 64 65 6c 69 76 72 2e 6e 65 74 2f 67 68 2f 69 67 6e 69 65 6c 2f 62 6c 6f 67 67 65 72 40 6d 61 73 74 65 72 2f 69 67 6c 6f 2f 76 32 2e 6a 73 Data Ascii: Moved Permanently. Redirecting to https://cdn.jsdelivr.net/gh/igniel/blogger@master/iglo/v2.js

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 192

Chrome Cache Entry: 193

Chrome Cache Entry: 194

Chrome Cache Entry: 195

Chrome Cache Entry: 196

Chrome Cache Entry: 197

Chrome Cache Entry: 198

Chrome Cache Entry: 199

Chrome Cache Entry: 200

Chrome Cache Entry: 201

Chrome Cache Entry: 202

Chrome Cache Entry: 203

Chrome Cache Entry: 204

Chrome Cache Entry: 205

Chrome Cache Entry: 206

Chrome Cache Entry: 207

Chrome Cache Entry: 208

Chrome Cache Entry: 209

Chrome Cache Entry: 210

Chrome Cache Entry: 211

Chrome Cache Entry: 212

Chrome Cache Entry: 213

Chrome Cache Entry: 214

Chrome Cache Entry: 215

Chrome Cache Entry: 216

Chrome Cache Entry: 217

Chrome Cache Entry: 218

Chrome Cache Entry: 219

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	737	OUT	GET /stats/0.php?4525035&@f16&@g1&@h1&@i1&@j1728897152149&@k0&@l1&@mCsh%20Verify&@n0&@ohttps%3A%2F%2Fald.my.id%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:105209297&@b3:1728897152&@b4:js15_as.js&@b5:-240&@a-_0.2.1&@vhttps%3A%2F%2Fald.my.id%2F&@w HTTP/1.1 Host: s4.histats.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://ald.my.id/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:12:33 UTC	135	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/html;charset=UTF-8 Content-Length: 380 Connection: close
2024-10-14 09:12:33 UTC	380	IN	Data Raw: 5f 48 53 54 5f 63 6e 74 76 61 6c 3d 22 23 33 56 69 73 2e 20 74 6f 64 61 79 3d 37 31 33 30 22 3b 63 68 66 68 32 28 5f 48 53 54 5f 63 6e 74 76 61 6c 29 3b 3b 21 66 75 6e 63 74 69 6f 6e 28 29 7b 74 72 79 7b 76 61 72 20 62 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 73 63 72 69 70 74 22 29 3b 62 2e 73 72 63 3d 22 2f 2f 65 2e 64 74 73 63 6f 75 74 2e 63 6f 6d 2f 65 2f 3f 76 3d 31 61 26 70 69 64 3d 35 32 30 30 26 73 69 74 65 3d 31 26 6c 3d 22 2b 65 6e 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 68 72 65 66 29 2b 22 26 6a 3d 22 2b 65 6e 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 64 6f 63 75 6d 65 6e 74 2e 72 65 66 65 72 72 65 72 29 3b 0a 62 2e 61 73 79 6e 63 3d 22 61 73 Data Ascii: _HST_cntval="#3Vis. today=7130";chfh2(_HST_cntval);;!function(){try{var b=document.createElement("script");b.src="//e.dtscout.com/e/?v=1a&pid=5200&site=1&l="+encodeURIComponent(window.location.href)+"&j="+encodeURIComponent(document.referrer);b.async="as

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	192	OUT	GET /rules/rule120611v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:33 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/xml Content-Length: 415 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:56 GMT ETag: "0x8DC582B9F6F3512" x-ms-request-id: 66411a6b-c01e-00a1-1eca-1a7e4a000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091233Z-17db6f7c8cf6qp7g7r97wxgbqc00000005dg000000009rgx x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:33 UTC	415	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 30 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4c 6c 5d 5b 45 65 5d 5b 4e 6e 5d 5b 4f 6f 5d 5b 56 76 5d 5b 4f 6f 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120611" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120609" /> <SR T="2" R="([Ll][Ee][Nn][Oo][Vv][Oo])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tru

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	192	OUT	GET /rules/rule120612v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:33 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/xml Content-Length: 471 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:25 GMT ETag: "0x8DC582BB10C598B" x-ms-request-id: 52965a57-601e-000d-5970-1c2618000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091233Z-17db6f7c8cf9c22xp43k2gbqvn00000003wg0000000022dp x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:33 UTC	471	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120612" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120611" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	192	OUT	GET /rules/rule120610v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:33 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/xml Content-Length: 474 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:46 GMT ETag: "0x8DC582B9964B277" x-ms-request-id: 6aeebda2-001e-008d-31ea-1ad91e000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091233Z-17db6f7c8cf6qp7g7r97wxgbqc00000005k00000000033w8 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:33 UTC	474	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 30 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120610" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120609" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	192	OUT	GET /rules/rule120613v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:34 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/xml Content-Length: 632 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:35 GMT ETag: "0x8DC582BB6E3779E" x-ms-request-id: 0e59abf9-f01e-003c-2b47-1c8cf0000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091233Z-17db6f7c8cf6f7vv3recfp4a6w000000036g0000000079vf x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:34 UTC	632	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 48 68 5d 5b 50 70 5d 28 5b 5e 45 5d 7c 24 29 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 33 22 20 52 3d 22 28 5b 48 68 5d 5b 45 65 5d 5b 57 77 5d 5b 4c 6c 5d 5b 45 65 5d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120613" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120611" /> <SR T="2" R="^([Hh][Pp]([^E]\|$))"> <S T="1" F="1" M="Ignore" /> </SR> <SR T="3" R="([Hh][Ee][Ww][Ll][Ee]

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:33 UTC	192	OUT	GET /rules/rule120614v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:34 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:33 GMT Content-Type: text/xml Content-Length: 467 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:08 GMT ETag: "0x8DC582BA6C038BC" x-ms-request-id: dbc5b3b7-c01e-00a2-28e5-1a2327000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091233Z-17db6f7c8cfp6mfve0htepzbps00000005r00000000002ag x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:34 UTC	467	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120614" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120613" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:34 UTC	192	OUT	GET /rules/rule120616v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:34 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:34 GMT Content-Type: text/xml Content-Length: 486 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:29 GMT ETag: "0x8DC582BB344914B" x-ms-request-id: aec2753b-d01e-007a-1ef5-1cf38c000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091234Z-17db6f7c8cfnqpbkckdefmqa44000000063000000000atrm x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:34 UTC	486	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120616" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120615" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:34 UTC	192	OUT	GET /rules/rule120617v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:34 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:34 GMT Content-Type: text/xml Content-Length: 427 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:02 GMT ETag: "0x8DC582BA310DA18" x-ms-request-id: c03f5215-301e-005d-4a1d-1ce448000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091234Z-17db6f7c8cfcrfgzd01a8emnyg00000003qg0000000050n1 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:34 UTC	427	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4d 6d 5d 5b 49 69 5d 5b 43 63 5d 5b 52 72 5d 5b 4f 6f 5d 5b 53 73 5d 5b 4f 6f 5d 5b 46 66 5d 5b 54 74 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120617" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120615" /> <SR T="2" R="([Mm][Ii][Cc][Rr][Oo][Ss][Oo][Ff][Tt])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W"

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:34 UTC	192	OUT	GET /rules/rule120615v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:34 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:34 GMT Content-Type: text/xml Content-Length: 407 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:42 GMT ETag: "0x8DC582BBAD04B7B" x-ms-request-id: 0f9ac3ff-201e-0003-4016-1cf85a000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091234Z-17db6f7c8cf9c22xp43k2gbqvn00000003xg000000000qqk x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:34 UTC	407	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 41 61 5d 5b 53 73 5d 5b 55 75 5d 5b 53 73 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120615" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120613" /> <SR T="2" R="([Aa][Ss][Uu][Ss])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:12:34 UTC	192	OUT	GET /rules/rule120619v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-10-14 09:12:34 UTC	470	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:12:34 GMT Content-Type: text/xml Content-Length: 407 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:41 GMT ETag: "0x8DC582B9698189B" x-ms-request-id: e456ac6c-b01e-0097-6bbf-1a4f33000000 x-ms-version: 2018-03-28 x-azure-ref: 20241014T091234Z-17db6f7c8cfqkqk8bn4ck6f72000000005w00000000090th x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 09:12:34 UTC	407	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 41 61 5d 5b 43 63 5d 5b 45 65 5d 5b 52 72 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120619" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120617" /> <SR T="2" R="([Aa][Cc][Ee][Rr])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">