Edit tour

Windows Analysis Report
http://bdvonline-personasv.pages.dev/

Overview

General Information

Sample URL:	http://bdvonline-personasv.pages.dev/
Analysis ID:	1533065
Tags:	openphish
Infos:

Detection

HTMLPhisher

Score:	56
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Yara detected BlockedWebSite

Detected non-DNS traffic on DNS port

Classification

Process Tree

System is w10x64

chrome.exe (PID: 3992 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 5924 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2044 --field-trial-handle=1940,i,11648397335190655950,10649712295189264968,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6312 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://bdvonline-personasv.pages.dev/" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Yara Signatures

Dropped Files

Source	Rule	Description	Author
dropped/chromecache_297	JoeSecurity_BlockedWebSite	Yara detected BlockedWebSite	Joe Security
dropped/chromecache_124	JoeSecurity_BlockedWebSite	Yara detected BlockedWebSite	Joe Security
dropped/chromecache_271	JoeSecurity_BlockedWebSite	Yara detected BlockedWebSite	Joe Security

HTML

Source	Rule	Description	Author	Strings
0.0.pages.csv	JoeSecurity_BlockedWebSite	Yara detected BlockedWebSite	Joe Security

HTTP traffic detected: POST /report/v4?s=NTn43gh%2BA%2FQE19TFzjdAzA7lacenls2metwRgfo7F3ZuWlLCv2OgZp4vYTE0mhUt7GMc0a2ygpm%2F%2B08cwmNJcYtJcVOk5McJriTWgqoVIo%2FwFN3CAwYLwF%2B5aDf4P4DDdis%2Fbg%3D%3D HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 469Content-Type: application/reports+jsonUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Mon, 14 Oct 2024 09:45:31 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Mon, 14 Oct 2024 09:45:49 GMTContent-Type: text/html; charset=UTF-8Content-Length: 9597Connection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 036cb751-f9b4-46c8-ad45-60a6198916d0vary: Origindate: Mon, 14 Oct 2024 09:45:55 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 72128613-4eb7-4bc6-9f5f-39d03770a3f4vary: Origindate: Mon, 14 Oct 2024 09:45:58 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 8ec0b11c-81fa-47e8-b0cc-cdb6af62ca17vary: Origindate: Mon, 14 Oct 2024 09:46:01 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: cc59a982-cf26-474f-a84c-ce3bfc7817b4vary: Origindate: Mon, 14 Oct 2024 09:46:02 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: fa0acfd5-0b2a-477d-898b-ed054b7792a1vary: Origindate: Mon, 14 Oct 2024 09:46:04 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 1451b8cb-0ca7-4f80-9ed1-22bcf2dc349dvary: Origindate: Mon, 14 Oct 2024 09:46:05 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 7ed096dd-ef67-436e-91ba-db985cedb6d2vary: Origindate: Mon, 14 Oct 2024 09:46:05 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 53b1b762-eba7-4b3a-9893-c3be8ba48811vary: Origindate: Mon, 14 Oct 2024 09:46:15 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 7ebb096c-e5dd-42aa-9ab0-2a7d1452d5c5vary: Origindate: Mon, 14 Oct 2024 09:46:16 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 8cfe63bd-f937-4cab-a54b-256976125544vary: Origindate: Mon, 14 Oct 2024 09:46:20 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: cc38c8ad-60f2-4dfc-ba36-e73b020cc2d8vary: Origindate: Mon, 14 Oct 2024 09:46:20 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: c622a98f-f2f7-4d2d-941e-260e2c3dcb75vary: Origindate: Mon, 14 Oct 2024 09:46:20 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: ad2990cf-917b-458b-b23f-1dc47323b18evary: Origindate: Mon, 14 Oct 2024 09:46:29 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: caae6677-70d4-40b1-b5f7-eed75a73793cvary: Origindate: Mon, 14 Oct 2024 09:46:29 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 86070b73-761a-46c0-aab9-4172a9a5bad2vary: Origindate: Mon, 14 Oct 2024 09:46:31 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 5def0a76-deb9-4d52-a3d6-ce7f3cdd6803vary: Origindate: Mon, 14 Oct 2024 09:46:33 GMTx-konductor: N/Ax-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close

Source: chromecache_256.2.dr	String found in binary or memory: http://www.cloudflare.com/lp/esg-zero-trust-considerations-2024
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://1.1.1.1/
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://1.1.1.1/pt-BR/dns/
Source: chromecache_295.2.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_280.2.dr, chromecache_181.2.dr, chromecache_275.2.dr, chromecache_295.2.dr	String found in binary or memory: https://ade.googlesyndication.com
Source: chromecache_295.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_248.2.dr	String found in binary or memory: https://alb.reddit.com/rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1728899153770&uuid=18477e05-e8de-45e
Source: chromecache_302.2.dr, chromecache_184.2.dr	String found in binary or memory: https://api.www.cloudflare.com/api/v1
Source: chromecache_223.2.dr, chromecache_137.2.dr	String found in binary or memory: https://app.qualified.com
Source: chromecache_172.2.dr, chromecache_242.2.dr	String found in binary or memory: https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.js
Source: chromecache_235.2.dr, chromecache_157.2.dr	String found in binary or memory: https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_Acti
Source: chromecache_228.2.dr, chromecache_220.2.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/621485069190/RC392ad6d4bbf94c7283b4eda6cbf689a
Source: chromecache_289.2.dr, chromecache_198.2.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/launch-efab6d095ce0.js
Source: chromecache_256.2.dr	String found in binary or memory: https://blog.cloudflare.com/a-wild-week-in-phishing-and-what-it-means-for-you
Source: chromecache_256.2.dr	String found in binary or memory: https://blog.cloudflare.com/cloudflare-2024-annual-founders-letter
Source: chromecache_213.2.dr, chromecache_280.2.dr, chromecache_155.2.dr, chromecache_181.2.dr, chromecache_275.2.dr, chromecache_295.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_201.2.dr, chromecache_178.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/1W5s21iEz5Zk92rEr9cGr3/729e55fb2d26df7970d1c04d604
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/1f2iRYyLtJPAYkKFR9G5h2/9c58683aa4b33bc18ab0431847c
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/1og1GRXZoNPcakdJLEHnf5/3a477a3d2103937858ae3e9a5ff
Source: chromecache_178.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/1qyDEBnfSjGjDAj5V6Zo1g/f8c8126789bc16fa0329943b0d4
Source: chromecache_178.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/1rVmRBDX3KhZOe2FREoYOz/24f44a8dbe53111346d97dc59b7
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/2EpMDcOzRGz0qkeQbuOoB1/647e0c54d93967efd46237dec01
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/2MwUTWYt0psg5xd55Vkvfo/7822687bbbf2b0738c770e183b7
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/2ZP0AQ92YBysyPFLsuoKOC/84f7aa80a36755aa94cb56c5e0a
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/2qsPuuImKhFS0I6IchnUR0/33dfb6b56317ac494a108a86158
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/2yRCuqitoxUATzrEEpNPeA/49494485e77713ddfaf56b7b338
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/33pNtP0fhgTrjCgk4Ahdyo/c3b0e163c89573659e2898c2aa8
Source: chromecache_178.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/35yeieyQns5B8WsFes9Z20/8bf36cbf9edf546c30cc9e3e082
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/3Vjcj5r39nYQK9FAZ6tx1i/15048294cd989a6e460a61e56ad
Source: chromecache_178.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/3jxszSMXRhwiwHDa1VPXFw/cc6439cd93a107bd0986bb6d5dc
Source: chromecache_134.2.dr, chromecache_131.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/42XkFj9Uywkm8Jahf62RtP/0563d91cc1fa54da2bf2c50bad8
Source: chromecache_134.2.dr, chromecache_131.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/4sfL2iS6H10uq2waT6ehym/ad18b77fa469ce07f23d22e19ab
Source: chromecache_201.2.dr, chromecache_178.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/53qCYhQbir5WtIU0VDWESo/954a48bfb17f429acf469e5f143
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/5qOkL7b52oII5tM50rXHvx/244e247fb24d4b337481750c11a
Source: chromecache_201.2.dr, chromecache_178.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/68TLXIuB6HOZo3RgLAp1Ji/6a953e33858490426d4e2ca753b
Source: chromecache_132.2.dr, chromecache_293.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/6i8d186tH2iueYvgwVRaJf/ab27fd31033bdd31aea69065480
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/6vZgJjE7OFLINDHPAGZ3PJ/30ff0ceac9ad2088a52f4ad43ac
Source: chromecache_201.2.dr, chromecache_178.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/78RmfBmlwmzHeGK2Aqj65M/369cfa6b2402b7e6007941839e0
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/7a6m6bwj1zKlcQ7JHe2981/fefe33b4f70020feb9afd168ea9
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/7ctAQnKr7LFaJzwd5gbbeu/dffc3ef872495ac11a0250f524a
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/7dreyVsx0FLF3WjCQvWrVT/a9bb912272cd7f8bc9a294f768b
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/7kPjwE4j84Rj5KSJRPRptE/177ac67e5aa1838880c3beffb1d
Source: chromecache_256.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/j7NrSvTrwrPuI9f2Yjlkq/4f977f52415357c91c93b692a34c
Source: chromecache_132.2.dr, chromecache_293.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/mJZqOomHta2MLLB73P8Hs/9378861761815b3adf7bcb7734d6
Source: chromecache_256.2.dr	String found in binary or memory: https://cloudflare.com/application-services/products/load-balancing/)
Source: chromecache_256.2.dr	String found in binary or memory: https://cloudflare.tv/cio-week/fireside-chat-with-juan-rodriguez-estevez/Mg6QNmZl
Source: chromecache_249.2.dr, chromecache_211.2.dr, chromecache_145.2.dr, chromecache_136.2.dr	String found in binary or memory: https://developers.marketo.com/MunchkinLicense.pdf
Source: chromecache_170.2.dr	String found in binary or memory: https://dsum-sec.casalemedia.com/rum?cm_dsp_id=18&expiry=1744623956&external_user_id=9d07cf8
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://explore.zoom.us
Source: chromecache_192.2.dr	String found in binary or memory: https://github.com/jonsuh/hamburgers
Source: chromecache_146.2.dr, chromecache_283.2.dr	String found in binary or memory: https://github.com/js-cookie/js-cookie
Source: chromecache_256.2.dr	String found in binary or memory: https://glovoapp.com/)
Source: chromecache_275.2.dr	String found in binary or memory: https://google.com
Source: chromecache_275.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_256.2.dr	String found in binary or memory: https://hungerstation.com/)
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://ibc-flow.techtarget.com/a/gif.gif
Source: chromecache_256.2.dr	String found in binary or memory: https://inc42.com/buzz/phonepe-maintains-lead-in-upi-with-49-market-share-in-jan-2022-whatsapp-at-0-
Source: chromecache_192.2.dr	String found in binary or memory: https://jonsuh.com/hamburgers
Source: chromecache_223.2.dr, chromecache_137.2.dr	String found in binary or memory: https://js.qualified.com
Source: chromecache_295.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_213.2.dr, chromecache_280.2.dr, chromecache_155.2.dr, chromecache_181.2.dr, chromecache_275.2.dr, chromecache_295.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_170.2.dr	String found in binary or memory: https://partners.tremorhub.com/sync?UIDM=9d07cf81-15c4-4c17-8627-0f078a2782cb
Source: chromecache_170.2.dr	String found in binary or memory: https://pixel.rubiconproject.com/tap.php?nid=5578&put=9d07cf81-15c4-4c17-8627-0f078a2782cb&v
Source: chromecache_248.2.dr	String found in binary or memory: https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Fplans%2Fenter
Source: chromecache_248.2.dr, chromecache_200.2.dr	String found in binary or memory: https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif
Source: chromecache_223.2.dr, chromecache_137.2.dr	String found in binary or memory: https://schedule.qualified.com
Source: chromecache_248.2.dr, chromecache_200.2.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_142.2.dr, chromecache_163.2.dr	String found in binary or memory: https://staging.mrk.cfdata.org/mrk/redwood-blade-repository/
Source: chromecache_248.2.dr	String found in binary or memory: https://static.ads-twitter.com/uwt.js
Source: chromecache_213.2.dr, chromecache_155.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://support.cloudflare.com/hc/en-us
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://support.cloudflare.com/hc/en-us/articles/200171906-Error-522
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://support.cloudflare.com/hc/en-us/articles/200171916-Error-521
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://support.cloudflare.com/hc/en-us/articles/200171936-Error-520
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://support.cloudflare.com/hc/en-us/articles/217720788-Why-doesn-t-my-site-display-correctly-whe
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://support.cloudflare.com/hc/en-us/requests/new
Source: chromecache_248.2.dr	String found in binary or memory: https://tag.demandbase.com/1be41a80498a5b73.min.js
Source: chromecache_213.2.dr, chromecache_280.2.dr, chromecache_155.2.dr, chromecache_181.2.dr, chromecache_275.2.dr, chromecache_295.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_248.2.dr	String found in binary or memory: https://trk.techtarget.com/tracking.js
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://us02web.zoom.us
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://us05web.zoom.us
Source: chromecache_302.2.dr, chromecache_184.2.dr	String found in binary or memory: https://www.cloudflare.com
Source: chromecache_297.2.dr, chromecache_124.2.dr, chromecache_271.2.dr	String found in binary or memory: https://www.cloudflare.com/5xx-error-landing
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/application-services/).
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/application-services/products/argo-smart-routing/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/application-services/products/ssl-for-saas-providers/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/application-services/products/waf/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/application-services/solutions/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/application-services/solutions/certificate-lifecycle-management/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/connectivity-cloud/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/data-localization/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/ddos/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/developer-platform/r2/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/developer-platform/solutions/live-streaming/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/developer-platform/workers/)
Source: chromecache_297.2.dr, chromecache_124.2.dr, chromecache_271.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/access-management/phishing-attack/
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/access-management/security-service-edge-sse/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/access-management/what-is-remote-access-security/).
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/access-management/what-is-sso/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/access-management/what-is-ztna/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/bots/what-is-bot-management/)
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/cdn/what-is-a-cdn
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/ddos/ddos-mitigation/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/ddos/glossary/web-application-firewall-waf/)
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/ddos/what-is-a-ddos-attack
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/dns/what-is-dns
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/dns/what-is-dns/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/security/glossary/what-is-zero-trust/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/security/what-is-an-attack-surface/)
Source: chromecache_223.2.dr, chromecache_137.2.dr	String found in binary or memory: https://www.cloudflare.com/lp/multi-channel-phishing-demo?utm_medium=banner
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/lp/securitybuildersworkshops/
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://www.cloudflare.com/media-and-entertainment
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/press-releases/2024/cloudflare-acquires-bastionzero-to-add-zero-trust-inf
Source: chromecache_171.2.dr, chromecache_247.2.dr	String found in binary or memory: https://www.cloudflare.com/saas/)
Source: chromecache_227.2.dr	String found in binary or memory: https://www.cloudflare.com/static/z/s.js?z=
Source: chromecache_200.2.dr, chromecache_227.2.dr	String found in binary or memory: https://www.cloudflare.com/static/z/t
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/the-net/building-cyber-resilience/preparing-ai-future/
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/the-net/illuminate/fighting-phishing/
Source: chromecache_256.2.dr	String found in binary or memory: https://www.cloudflare.com/the-net/platform-consolidation-costs
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://www.cloudflarestatus.com/
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://www.cloudflarestatus.com/?_ga=2.206399059.190221946.1556053151-1076456093.1556053151
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://www.cloudflarestatus.com/?_ga=2.35996259.2108316469.1554333761-13370612.1552956708
Source: chromecache_256.2.dr	String found in binary or memory: https://www.deliveryhero.com/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.e-food.gr/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.foodora.com/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.foodpanda.com/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.foody.com.cy)
Source: chromecache_295.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_275.2.dr, chromecache_295.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_295.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_181.2.dr, chromecache_275.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_280.2.dr, chromecache_181.2.dr, chromecache_275.2.dr, chromecache_295.2.dr	String found in binary or memory: https://www.googletagmanager.com/dclk/ns/v1.js
Source: chromecache_181.2.dr, chromecache_275.2.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_256.2.dr	String found in binary or memory: https://www.livemint.com/companies/people/will-become-data-localization-compliant-in-india-by-decend
Source: chromecache_213.2.dr, chromecache_155.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_256.2.dr	String found in binary or memory: https://www.pedidosya.com/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.porsche-holding.com/en)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.talabat.com/)
Source: chromecache_256.2.dr	String found in binary or memory: https://www.yemeksepeti.com/)
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://www.zoom.us
Source: chromecache_268.2.dr, chromecache_122.2.dr	String found in binary or memory: https://zoom.us

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50211 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 50359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 50347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 50335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 50282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 50313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50337
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50336
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50338
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50330
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50332
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50349
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 50352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50345
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50358
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50351
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50350
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50353
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50112
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50357
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50356
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 50255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50361
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50365
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50304
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50305
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50309
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50201 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50300
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50301
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50316
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50319
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50318
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50311
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50313
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50325
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50320
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50321
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50324
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50323
Source: unknown	Network traffic detected: HTTP traffic on port 50290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50295
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 50286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 50331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 50205 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50092
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50091
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 50136 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50093
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50365 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 50193 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50259
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50254
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50253
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50256
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50255
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 50353 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50257
Source: unknown	Network traffic detected: HTTP traffic on port 50161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50215 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 50318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50265
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50264
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50268
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50264 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50270
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50272
Source: unknown	Network traffic detected: HTTP traffic on port 50138 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50271
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 50298 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50273
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50276
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50278
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50035

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:50038 version: TLS 1.2

Source: classification engine

Classification label: mal56.phis.win@21/296@175/54

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2044 --field-trial-handle=1940,i,11648397335190655950,10649712295189264968,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://bdvonline-personasv.pages.dev/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2044 --field-trial-handle=1940,i,11648397335190655950,10649712295189264968,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Drive-by Compromise	Windows Management Instrumentation	Path Interception	1 Process Injection	1 Process Injection	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	Rootkit	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Source	Detection	Scanner	Label	Link
http://bdvonline-personasv.pages.dev/	100%	SlashNext	Credential Stealing type: Phishing & Social Engineering

Dropped Files

⊘No Antivirus matches

Unpacked PE Files

⊘No Antivirus matches

Domains

⊘No Antivirus matches

URLs

Source	Detection	Scanner	Label
https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	0%	URL Reputation	safe
https://stats.g.doubleclick.net/g/collect	0%	URL Reputation	safe
https://developers.marketo.com/MunchkinLicense.pdf	0%	URL Reputation	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
bdvonline-personasv.pages.dev	172.66.44.97	true	false	unknown
prod-default.lb.logrocket.network	104.198.23.205	true	false	unknown
static.cloudflareinsights.com	104.16.80.73	true	false	unknown
s.dsp-prod.demandbase.com	34.96.71.22	true	false	unknown
adservice.google.com	172.217.23.98	true	false	unknown
fp2e7a.wpc.phicdn.net	192.229.221.95	true	false	unknown
platform.twitter.map.fastly.net	199.232.188.157	true	false	unknown
stats.g.doubleclick.net	173.194.76.156	true	false	unknown
ot.www.cloudflare.com	104.16.124.96	true	false	unknown
tag.demandbase.com	18.245.46.25	true	false	unknown
t.co	162.159.140.229	true	false	unknown
performance.radar.cloudflare.com	104.18.30.78	true	false	unknown
www.google.com	142.250.186.36	true	false	unknown
demdex.net.ssl.sc.omtrdc.net	63.140.62.17	true	false	unknown
api.www.cloudflare.com	104.16.123.96	true	false	unknown
dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com	34.255.28.93	true	false	unknown
id.rlcdn.com	35.244.174.68	true	false	unknown
cf-assets.www.cloudflare.com	104.16.123.96	true	false	unknown
tag-logger.demandbase.com	18.173.205.127	true	false	unknown
a.nel.cloudflare.com	35.190.80.1	true	false	unknown
s.twitter.com	104.244.42.195	true	false	unknown
ax-0001.ax-dc-msedge.net	150.171.30.10	true	false	unknown
ad.doubleclick.net	172.217.16.198	true	false	unknown
s-part-0017.t-0009.t-msedge.net	13.107.246.45	true	false	unknown
js.qualified.com	104.18.17.5	true	false	unknown
ws6.qualified.com	104.18.16.5	true	false	unknown
ax-0001.ax-msedge.net	150.171.27.10	true	false	unknown
bg.microsoft.map.fastly.net	199.232.210.172	true	false	unknown
di.rlcdn.com	35.244.174.68	true	false	unknown
www.cloudflare.com	104.16.124.96	true	false	unknown
cdn.logr-ingest.com	188.114.97.3	true	false	unknown
reddit.map.fastly.net	151.101.193.140	true	false	unknown
googleads.g.doubleclick.net	172.217.18.2	true	false	unknown
dsum-sec.casalemedia.com	172.64.151.101	true	false	unknown
challenges.cloudflare.com	104.18.95.41	true	false	unknown
adobedc.net.ssl.sc.omtrdc.net	63.140.62.222	true	false	unknown
ibc-flow.techtarget.com	34.111.208.231	true	false	unknown
api.company-target.com	18.66.102.127	true	false	unknown
td.doubleclick.net	142.250.184.194	true	false	unknown
analytics.google.com	216.58.212.142	true	false	unknown
fp2c5c.wac.kappacdn.net	152.195.15.58	true	false	unknown
partners-alb-1113315349.us-east-1.elb.amazonaws.com	44.194.70.0	true	false	unknown
713-xsc-918.mktoresp.com	192.28.144.124	true	false	unknown
alb.reddit.com	unknown	unknown	false	unknown
static.ads-twitter.com	unknown	unknown	false	unknown
cm.everesttech.net	unknown	unknown	false	unknown
cdn.bizibly.com	unknown	unknown	false	unknown
cloudflareinc.demdex.net	unknown	unknown	false	unknown
adobedc.demdex.net	unknown	unknown	false	unknown
cdn.bizible.com	unknown	unknown	false	unknown
dpm.demdex.net	unknown	unknown	false	unknown
s.company-target.com	unknown	unknown	false	unknown
assets.adobedtm.com	unknown	unknown	false	unknown
www.linkedin.com	unknown	unknown	false	unknown
pixel.rubiconproject.com	unknown	unknown	false	unknown
px.ads.linkedin.com	unknown	unknown	false	unknown
munchkin.marketo.net	unknown	unknown	false	unknown
analytics.twitter.com	unknown	unknown	false	unknown
r.logr-ingest.com	unknown	unknown	false	unknown
snap.licdn.com	unknown	unknown	false	unknown
partners.tremorhub.com	unknown	unknown	false	unknown
edge.adobedc.net	unknown	unknown	false	unknown
trk.techtarget.com	unknown	unknown	false	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://www.cloudflare.com/learning/access-management/phishing-attack/	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6XVeELky7fceWRpfBvN8qr/4e13aa3d8dd73e1f091f3de966fdc9cb/logo_shopify_trusted-by_gray.svg	false		unknown
https://edge.adobedc.net/ee/irl1/v1/collect?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=4db37e76-47b9-44b0-8ae9-29a95b097571	false		unknown
https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	false	URL Reputation: safe	unknown
https://stats.g.doubleclick.net/g/collect?t=dc&aip=1&_r=3&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=6c2231af-7b31-42da-b9f3-79797e98ee08&_u=KGDAAEADQAAAAC%7E&z=845403669	false		unknown
https://cloudflareinc.demdex.net/dest5.html?d_nsid=0	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/78RmfBmlwmzHeGK2Aqj65M/369cfa6b2402b7e6007941839e0c763f/target.svg	false		unknown
https://edge.adobedc.net/ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=86070b73-761a-46c0-aab9-4172a9a5bad2	false		unknown
https://challenges.cloudflare.com/turnstile/v0/b/62ec4f065604/api.js	false		unknown
https://www.cloudflare.com/static/z/i.js	false		unknown
https://edge.adobedc.net/ee/irl1/v1/collect?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=3e23aecb-6c67-45f0-a47b-4ac25de8d7fa	false		unknown
https://edge.adobedc.net/ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=cc59a982-cf26-474f-a84c-ce3bfc7817b4	false		unknown
https://www.cloudflare.com/page-data/under-attack-hotline/page-data.json	false		unknown
https://stats.g.doubleclick.net/g/collect?t=dc&aip=1&_r=3&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=6c2231af-7b31-42da-b9f3-79797e98ee08&_u=KGDAAEADQAAAAC%7E&z=442844695	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/68TLXIuB6HOZo3RgLAp1Ji/6a953e33858490426d4e2ca753bea3ad/documentation-list.svg	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/2TfcZ86qvZor2xtI2z4Vvr/ef54112582296119f4296869c34ba025/logo_23andme_color_32px-wrapper.svg	false		unknown
https://ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=16554798&r=1728899187997&ref=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F&version=2.4	false		unknown
https://stats.g.doubleclick.net/g/collect?t=dc&aip=1&_r=3&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=6c2231af-7b31-42da-b9f3-79797e98ee08&_u=KGDAAEADQAAAAC%7E&z=813516571	false		unknown
https://www.cloudflare.com/component---src-components-page-page-template-tsx-e8f402608db957d80aa4.js	false		unknown
https://www.cloudflare.com/page-data/plans/page-data.json	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/OMwO1Fr8BxHVum0iBbatc/979c1807f5810edc903d4b07c18e0cb0/logo_ibm_trusted-by_gray.svg	false		unknown
https://edge.adobedc.net/ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=ad2990cf-917b-458b-b23f-1dc47323b18e	false		unknown
https://cdn.bizible.com/ipv?_biz_r=https%3A%2F%2Fwww.cloudflare.com%2Fplans%2Fenterprise%2Fcontact%2F&_biz_h=-1777624096&_biz_u=b9c97b6d7e9146d2b11b843c56528b5f&_biz_l=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F&_biz_t=1728899187978&_biz_i=Website%20Under%20Attack%3F%20%7C%20Get%2024%2F7%20Emergency%20Support%20%7C%20Cloudflare&_biz_n=5&rnd=704747&cdn_o=a&_biz_z=1728899187979	false		unknown
https://ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=16554798&r=1728899160232&ref=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F&version=2.4	false		unknown
https://api.www.cloudflare.com/api/v1/marketo/form/4116	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/1W5s21iEz5Zk92rEr9cGr3/729e55fb2d26df7970d1c04d6040ffca/cloudflare-spectrum.svg	false		unknown
https://api.www.cloudflare.com/api/v1/marketo/form/1639	false		unknown
https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=6c2231af-7b31-42da-b9f3-79797e98ee08&_u=KGDAAEADQAAAAC%7E&z=627365257&slf_rd=1	false		unknown
https://dpm.demdex.net/ibs:dpid=411&dpuuid=ZwzoUwAAAJqteAOJ	false		unknown
https://dpm.demdex.net/id?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=8AD56F28618A50850A495FB6%40AdobeOrg&d_nsid=0&ts=1728899152276	false		unknown
https://ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=16554798&r=1728899173930&ref=https%3A%2F%2Fwww.cloudflare.com%2Fplans%2Fenterprise%2Fcontact%2F&version=2.4	false		unknown
https://ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=16554798&r=1728899154508&ref=https%3A%2F%2Fwww.cloudflare.com%2Fplans%2Fenterprise%2Fcontact%2F&version=2.4	false		unknown
https://edge.adobedc.net/ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=72128613-4eb7-4bc6-9f5f-39d03770a3f4	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/5YRPa33UFrfL2zoZd2AXTq/658995f16c7ee4818875c254c18573d3/logo_zendesk_gray_32px-wrapper.svg	false		unknown
https://edge.adobedc.net/ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=c622a98f-f2f7-4d2d-941e-260e2c3dcb75	false		unknown
https://ws6.qualified.com/cable?wv=9&token=37pXYrro6wCZbsU7&vu=1c3ec125-d9ff-43a2-8580-d922e62ce3c7&wu=04a54f3e-7410-4dc7-9c89-a8b0e6f1ab9f&ca=2024-10-14T09%3A45%3A54.465Z&tz=America%2FNew_York&bis=5&referrer=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&pv=1&fv=2024-10-14-0ff1e48010&iml=false&ic=false	false		unknown
https://www.cloudflare.com/cdn-cgi/rum?	false		unknown
https://www.cloudflare.com/page-data/sq/d/3199558980.json	false		unknown
https://edge.adobedc.net/ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=fa0acfd5-0b2a-477d-898b-ed054b7792a1	false		unknown
https://bdvonline-personasv.pages.dev/cdn-cgi/styles/cf.errors.css	false		unknown
https://bdvonline-personasv.pages.dev/	false		unknown
https://js.qualified.com/qualified.js?token=37pXYrro6wCZbsU7	false		unknown
https://edge.adobedc.net/ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=7ebb096c-e5dd-42aa-9ab0-2a7d1452d5c5	false		unknown
https://713-xsc-918.mktoresp.com/webevents/visitWebPage?_mchNc=1728899154965&_mchCn=&_mchId=713-XSC-918&_mchTk=_mch-cloudflare.com-1728899154964-69441&_mchHo=www.cloudflare.com&_mchPo=&_mchRu=%2Fplans%2Fenterprise%2Fcontact%2F&_mchPc=https%3A&_mchVr=163&_mchEcid=8AD56F28618A50850A495FB6%40AdobeOrg%3A6%3A43144148438891952391304787163249835389&_mchHa=&_mchRe=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&_mchQp=	false		unknown
https://stats.g.doubleclick.net/g/collect?t=dc&aip=1&_r=3&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=6c2231af-7b31-42da-b9f3-79797e98ee08&_u=KGDAAEADQAAAAC%7E&z=627365257	false		unknown
https://ot.www.cloudflare.com/public/vendor/onetrust/scripttemplates/otSDKStub.js	false		unknown
https://ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=16554798&r=1728899173927&ref=https%3A%2F%2Fwww.cloudflare.com%2Fplans%2Fenterprise%2Fcontact%2F&version=2.4	false		unknown
https://www.cloudflare.com/plans/enterprise/contact/	false		unknown
https://ot.www.cloudflare.com/public/vendor/onetrust/scripttemplates/202407.2.0/assets/otCommonStyles.css	false		unknown
https://www.cloudflare.com/under-attack-hotline/	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/1AsuJijKk8EMH5s1ae56nx/b13406881aa864b7e17b2233a0d090ef/logo_labcorp_trusted-by_gray.svg	false		unknown
https://www.cloudflare.com/page-data/sq/d/1048862057.json	false		unknown
https://www.cloudflare.com/static/enablement-background-6de78040ef0acc8d2e8a596988c5f5d8.svg	false		unknown
https://ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=16554798&r=1728899187998&ref=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F&version=2.4	false		unknown
https://713-xsc-918.mktoresp.com/webevents/clickLink?_mchNc=1728899172586&_mchHr=https%3A%2F%2Fwww.cloudflare.com%2Fplans%2Fenterprise%2Fcontact%2F&_mchId=713-XSC-918&_mchTk=_mch-cloudflare.com-1728899154964-69441&_mchCn=&_mchHo=www.cloudflare.com&_mchPo=&_mchRu=%2Funder-attack-hotline%2F&_mchPc=https%3A&_mchVr=163&_mchEcid=8AD56F28618A50850A495FB6%40AdobeOrg%3A6%3A43144148438891952391304787163249835389&	false		unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://support.cloudflare.com/hc/en-us/articles/200171906-Error-522	chromecache_268.2.dr, chromecache_122.2.dr	false		unknown
https://stats.g.doubleclick.net/g/collect	chromecache_213.2.dr, chromecache_155.2.dr	false	URL Reputation: safe	unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/78RmfBmlwmzHeGK2Aqj65M/369cfa6b2402b7e6007941839e0	chromecache_201.2.dr, chromecache_178.2.dr	false		unknown
https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif	chromecache_248.2.dr, chromecache_200.2.dr	false		unknown
https://www.cloudflare.com/application-services/products/argo-smart-routing/)	chromecache_256.2.dr	false		unknown
https://www.cloudflare.com/saas/)	chromecache_171.2.dr, chromecache_247.2.dr	false		unknown
https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_Acti	chromecache_235.2.dr, chromecache_157.2.dr	false		unknown
https://1.1.1.1/	chromecache_268.2.dr, chromecache_122.2.dr	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/4sfL2iS6H10uq2waT6ehym/ad18b77fa469ce07f23d22e19ab	chromecache_134.2.dr, chromecache_131.2.dr	false		unknown
https://www.cloudflare.com/application-services/solutions/certificate-lifecycle-management/)	chromecache_256.2.dr	false		unknown
https://www.cloudflare.com/ddos/)	chromecache_256.2.dr	false		unknown
https://glovoapp.com/)	chromecache_256.2.dr	false		unknown
https://www.pedidosya.com/)	chromecache_256.2.dr	false		unknown
https://www.deliveryhero.com/)	chromecache_256.2.dr	false		unknown
https://us05web.zoom.us	chromecache_268.2.dr, chromecache_122.2.dr	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/7dreyVsx0FLF3WjCQvWrVT/a9bb912272cd7f8bc9a294f768b	chromecache_256.2.dr	false		unknown
https://www.cloudflare.com/static/z/s.js?z=	chromecache_227.2.dr	false		unknown
https://support.cloudflare.com/hc/en-us/articles/200171916-Error-521	chromecache_268.2.dr, chromecache_122.2.dr	false		unknown
https://www.yemeksepeti.com/)	chromecache_256.2.dr	false		unknown
https://pixel.rubiconproject.com/tap.php?nid=5578&put=9d07cf81-15c4-4c17-8627-0f078a2782cb&v	chromecache_170.2.dr	false		unknown
https://www.cloudflare.com/5xx-error-landing	chromecache_297.2.dr, chromecache_124.2.dr, chromecache_271.2.dr	false		unknown
https://www.cloudflare.com/learning/bots/what-is-bot-management/)	chromecache_256.2.dr	false		unknown
https://www.cloudflare.com/connectivity-cloud/)	chromecache_256.2.dr	false		unknown
https://developers.marketo.com/MunchkinLicense.pdf	chromecache_249.2.dr, chromecache_211.2.dr, chromecache_145.2.dr, chromecache_136.2.dr	false	URL Reputation: safe	unknown
https://www.cloudflare.com/learning/ddos/glossary/web-application-firewall-waf/)	chromecache_256.2.dr	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/3jxszSMXRhwiwHDa1VPXFw/cc6439cd93a107bd0986bb6d5dc	chromecache_178.2.dr	false		unknown
https://github.com/js-cookie/js-cookie	chromecache_146.2.dr, chromecache_283.2.dr	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/2yRCuqitoxUATzrEEpNPeA/49494485e77713ddfaf56b7b338	chromecache_256.2.dr	false		unknown
https://staging.mrk.cfdata.org/mrk/redwood-blade-repository/	chromecache_142.2.dr, chromecache_163.2.dr	false		unknown
http://www.cloudflare.com/lp/esg-zero-trust-considerations-2024	chromecache_256.2.dr	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/3Vjcj5r39nYQK9FAZ6tx1i/15048294cd989a6e460a61e56ad	chromecache_256.2.dr	false		unknown
https://support.cloudflare.com/hc/en-us/requests/new	chromecache_268.2.dr, chromecache_122.2.dr	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/1W5s21iEz5Zk92rEr9cGr3/729e55fb2d26df7970d1c04d604	chromecache_201.2.dr, chromecache_178.2.dr	false		unknown
https://js.qualified.com	chromecache_223.2.dr, chromecache_137.2.dr	false		unknown
https://www.cloudflare.com/learning/security/what-is-an-attack-surface/)	chromecache_256.2.dr	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/2MwUTWYt0psg5xd55Vkvfo/7822687bbbf2b0738c770e183b7	chromecache_256.2.dr	false		unknown
https://www.foodpanda.com/)	chromecache_256.2.dr	false		unknown
https://zoom.us	chromecache_268.2.dr, chromecache_122.2.dr	false		unknown
https://www.cloudflare.com/media-and-entertainment	chromecache_268.2.dr, chromecache_122.2.dr	false		unknown
https://assets.adobedtm.com/f597f8065f97/065ba81630d7/launch-efab6d095ce0.js	chromecache_289.2.dr, chromecache_198.2.dr	false		unknown
https://app.qualified.com	chromecache_223.2.dr, chromecache_137.2.dr	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6vZgJjE7OFLINDHPAGZ3PJ/30ff0ceac9ad2088a52f4ad43ac	chromecache_256.2.dr	false		unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/2ZP0AQ92YBysyPFLsuoKOC/84f7aa80a36755aa94cb56c5e0a	chromecache_256.2.dr	false		unknown
https://support.cloudflare.com/hc/en-us	chromecache_268.2.dr, chromecache_122.2.dr	false		unknown
https://ibc-flow.techtarget.com/a/gif.gif	chromecache_268.2.dr, chromecache_122.2.dr	false		unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
173.194.76.156	stats.g.doubleclick.net	United States	15169	GOOGLEUS	false
142.250.186.68	unknown	United States	15169	GOOGLEUS	false
192.28.144.124	713-xsc-918.mktoresp.com	United States	15224	OMNITUREUS	false
216.58.212.142	analytics.google.com	United States	15169	GOOGLEUS	false
18.66.102.127	api.company-target.com	United States	3	MIT-GATEWAYSUS	false
104.16.80.73	static.cloudflareinsights.com	United States	13335	CLOUDFLARENETUS	false
18.173.205.94	unknown	United States	3	MIT-GATEWAYSUS	false
3.228.180.107	unknown	United States	14618	AMAZON-AESUS	false
151.101.193.140	reddit.map.fastly.net	United States	54113	FASTLYUS	false
104.198.23.205	prod-default.lb.logrocket.network	United States	15169	GOOGLEUS	false
63.140.62.222	adobedc.net.ssl.sc.omtrdc.net	United States	15224	OMNITUREUS	false
104.18.30.78	performance.radar.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
34.248.198.130	unknown	United States	16509	AMAZON-02US	false
18.173.205.127	tag-logger.demandbase.com	United States	3	MIT-GATEWAYSUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
104.16.124.96	ot.www.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
162.159.140.229	t.co	United States	13335	CLOUDFLARENETUS	false
142.250.186.36	www.google.com	United States	15169	GOOGLEUS	false
34.96.71.22	s.dsp-prod.demandbase.com	United States	15169	GOOGLEUS	false
142.250.184.194	td.doubleclick.net	United States	15169	GOOGLEUS	false
104.18.95.41	challenges.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
104.244.42.131	unknown	United States	13414	TWITTERUS	false
63.140.62.17	demdex.net.ssl.sc.omtrdc.net	United States	15224	OMNITUREUS	false
34.248.127.197	unknown	United States	16509	AMAZON-02US	false
172.217.18.2	googleads.g.doubleclick.net	United States	15169	GOOGLEUS	false
104.18.16.5	ws6.qualified.com	United States	13335	CLOUDFLARENETUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
172.66.47.159	unknown	United States	13335	CLOUDFLARENETUS	false
188.114.97.3	cdn.logr-ingest.com	European Union	13335	CLOUDFLARENETUS	false
142.250.185.230	unknown	United States	15169	GOOGLEUS	false
199.232.188.157	platform.twitter.map.fastly.net	United States	54113	FASTLYUS	false
35.244.174.68	id.rlcdn.com	United States	15169	GOOGLEUS	false
172.217.16.194	unknown	United States	15169	GOOGLEUS	false
172.217.16.198	ad.doubleclick.net	United States	15169	GOOGLEUS	false
152.195.15.58	fp2c5c.wac.kappacdn.net	United States	15133	EDGECASTUS	false
172.64.151.101	dsum-sec.casalemedia.com	United States	13335	CLOUDFLARENETUS	false
172.66.44.97	bdvonline-personasv.pages.dev	United States	13335	CLOUDFLARENETUS	false
44.194.70.0	partners-alb-1113315349.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
63.140.62.27	unknown	United States	15224	OMNITUREUS	false
34.255.28.93	dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
34.111.208.231	ibc-flow.techtarget.com	United States	15169	GOOGLEUS	false
150.171.30.10	ax-0001.ax-dc-msedge.net	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
172.217.23.98	adservice.google.com	United States	15169	GOOGLEUS	false
18.245.46.25	tag.demandbase.com	United States	16509	AMAZON-02US	false
18.245.46.22	unknown	United States	16509	AMAZON-02US	false
18.66.102.85	unknown	United States	3	MIT-GATEWAYSUS	false
142.250.185.132	unknown	United States	15169	GOOGLEUS	false
104.244.42.195	s.twitter.com	United States	13414	TWITTERUS	false
150.171.27.10	ax-0001.ax-msedge.net	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
104.18.17.5	js.qualified.com	United States	13335	CLOUDFLARENETUS	false
188.114.96.3	unknown	European Union	13335	CLOUDFLARENETUS	false
104.16.123.96	api.www.cloudflare.com	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.8
192.168.2.4

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1533065
Start date and time:	2024-10-14 11:44:15 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 59s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	http://bdvonline-personasv.pages.dev/
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	8
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal56.phis.win@21/296@175/54
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.185.67, 172.217.16.142, 64.233.184.84, 34.104.35.123, 4.175.87.197, 199.232.210.172, 192.229.221.95, 20.242.39.171, 20.3.187.198, 184.28.89.29, 142.250.185.232, 142.250.184.202, 142.250.186.106, 142.250.186.74, 172.217.18.106, 172.217.18.10, 216.58.212.138, 216.58.206.42, 216.58.206.74, 172.217.16.202, 172.217.23.106, 142.250.186.138, 142.250.186.42, 142.250.74.202, 142.250.185.106, 142.250.186.170, 142.250.185.138, 88.221.110.227, 88.221.110.136, 104.102.43.106, 104.18.19.71, 104.18.18.71, 13.107.42.14, 142.250.185.136, 52.18.168.199, 34.255.61.41, 34.252.167.206, 172.64.146.215, 104.18.41.41, 69.173.144.138, 69.173.144.165, 69.173.144.139, 216.58.206.35, 142.250.185.110, 142.250.184.206
Excluded domains from analysis (whitelisted): pixel.rubiconproject.net.akadns.net, slscr.update.microsoft.com, trk.techtarget.com.cdn.cloudflare.net, otelrules.afd.azureedge.net, cn-assets.adobedtm.com.edgekey.net, clientservices.googleapis.com, e10776.b.akamaiedge.net, wildcard.marketo.net.edgekey.net, l-0005.l-msedge.net, clients2.google.com, ocsp.digicert.com, www.googletagmanager.com, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, bat.bing.com, update.googleapis.com, wu-b-net.trafficmanager.net, glb.sls.prod.dcat.dsp.trafficmanager.net, www.google-analytics.com, www-linkedin-com.l-0005.l-msedge.net, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, ctldl.windowsupdate.com.delivery.microsoft.com, otelrules.azureedge.net, cm.everesttech.net.akadns.net, ctldl.windowsupdate.com, od.linkedin.edgesuite.net, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, www.linkedin.com.cdn.cloudflare.net, edgedl.me.gvt1.com, e7808.dscg.akamaied
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing network information.
Report size getting too big, too many NtSetInformationFile calls found.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: http://bdvonline-personasv.pages.dev/

Simulations

Behavior and APIs

⊘No simulations

LLM Input / Output

Joe Sandbox View / Context

IPs

⊘No context

Domains

⊘No context

ASNs

⊘No context

JA3 Fingerprints

⊘No context

Dropped Files

⊘No context

Source: Yara match	File source: 0.0.pages.csv, type: HTML
Source: Yara match	File source: dropped/chromecache_297, type: DROPPED
Source: Yara match	File source: dropped/chromecache_124, type: DROPPED
Source: Yara match	File source: dropped/chromecache_271, type: DROPPED

Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: Iframe src: https://s.company-target.com/s/sync?exc=lr
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: Iframe src: https://s.company-target.com/s/sync?exc=lr
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: Iframe src: https://s.company-target.com/s/sync?exc=lr
Source: https://www.cloudflare.com/under-attack-hotline/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/under-attack-hotline/	HTTP Parser: Iframe src: https://s.company-target.com/s/sync?exc=lr
Source: https://www.cloudflare.com/under-attack-hotline/	HTTP Parser: Iframe src: https://td.doubleclick.net/td/fls/rul/activityi;fledge=1;src=9309168;type=a_pri_pv;cat=0p_qual;ord=6389003134209;npa=0;auiddc=1233124589.1728899153;u1=FL%20-%20Brand%20-%20GLOBAL%20-%20Quality%20Visit;u2=www.cloudflare.com;u3=%2Fplans%2Fenterprise%2Fcontact%2F;u4=en-US;u5=1728899172685;u6=US;u7=false;u8=undefined;u9=undefined;u10=call_to_action;u12=undefined;ps=1;pcor=872799517;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe4a90v9164255219z8890325950za201zb890325950;gcs=G111;gcd=13r3r3r3r5l1;dma=0;tag_exp=101671035~101686685;epver=2?
Source: https://www.cloudflare.com/under-attack-hotline/	HTTP Parser: Iframe src: https://td.doubleclick.net/td/fls/rul/activityi;fledge=1;src=9309168;type=a_eng0;cat=3_timer;ord=109179131655;npa=0;auiddc=1233124589.1728899153;u1=timer_event%20(30%20Sec);u2=www.cloudflare.com;u3=%2Fplans%2Fenterprise%2Fcontact%2F;u4=en-US;u5=1728899172685;u6=US;u7=false;u8=undefined;u9=undefined;u10=call_to_action;u12=undefined;ps=1;pcor=802778679;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe4a90v9164255219z8890325950za201zb890325950;gcs=G111;gcd=13r3r3r3r5l1;dma=0;tag_exp=101671035~101686685;epver=2?
Source: https://www.cloudflare.com/under-attack-hotline/	HTTP Parser: Iframe src: https://td.doubleclick.net/td/ga/rul?tid=G-SQCRB0TXZW&gacid=1574808390.1728899184&gtm=45je4a90v895724479z8890325950za200zb890325950&dma=0&gcs=G111&gcd=13r3r3r3r5l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=101529665~101533422~101671035~101686685&z=760448477

Source: https://bdvonline-personasv.pages.dev/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: No favicon

Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/under-attack-hotline/	HTTP Parser: No <meta name="author".. found

Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/plans/enterprise/contact/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/under-attack-hotline/	HTTP Parser: No <meta name="copyright".. found

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: chromecache_248.2.dr	String found in binary or memory: -->`;document.body.appendChild(d);};{\n!function(e,t,n,s,u,a){e.twq\|\|(s=e.twq=function(){s.exe?s.exe.apply(s,arguments):s.queue.push(arguments);\n},s.version='1.1',s.queue=[],u=t.createElement(n),u.async=!0,u.src='https://static.ads-twitter.com/uwt.js',\na=t.getElementsByTagName(n)[0],a.parentNode.insertBefore(u,a))}(window,document,'script');\n// Insert Twitter Advertiser ID\ntwq('config','nvldc', {\n restricted_data_use: 'restrict_optimization' // or 'off'\n});\n};{const d = document.createElement('div');d.innerHTML = `<!-- Qualified -->\n\n\n<!-- End Qualified -->`;document.body.appendChild(d);};{\n(function(w,q){w['QualifiedObject']=q;w[q]=w[q]\|\|function(){\n(w[q].q=w[q].q\|\|[]).push(arguments)};})(window,'qualified')\n\n};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22async%22%3A%22%22%2C%22src%22%3A%22https%3A%2F%2Fjs.qualified.com%2Fqualified.js%3Ftoken%3D37pXYrro6wCZbsU7%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-142248e4-bc5b-4e5b-b5f8-2ec2a0848f8a%5C%22))%7D%22%2C%22order-id%22%3A%22142248e4-bc5b-4e5b-b5f8-2ec2a0848f8a%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{\n(function() {\n var didInit = false;\n function initMunchkin() {\n if(didInit === false) {\n didInit = true;\n Munchkin.init('713-XSC-918');\n }\n }\n var s = document.createElement('script');\n s.type = 'text/javascript';\n s.async = true;\n s.src = '//munchkin.marketo.net/munchkin-beta.js';\n s.onreadystatechange = function() {\n if (this.readyState == 'complete' \|\| this.readyState == 'loaded') {\n initMunchkin();\n }\n };\n s.onload = initMunchkin;\n document.getElementsByTagName('head')[0].appendChild(s);\n})();\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22type%22%3A%22text%2Fjavascript%22%2C%22src%22%3A%22https%3A%2F%2Fcdn.bizible.com%2Fscripts%2Fbizible.js%22%2C%22async%22%3A%22%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-e1e42dff-de69-41ac-88cc-7297d46d8f58%5C%22))%7D%22%2C%22order-id%22%3A%22e1e42dff-de69-41ac-88cc-7297d46d8f58%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{(function(w, d, c) {w['techtargetic'] = w['techtargetic'] \|\| {};w['techtargetic'].client = c;var s = d.createElement(\"script\");s.type = \"text/javascript\";s.async = !0;s.crossorigin = \"anonymous\";var rd = new Date();rd=rd.getFullYear()+''+rd.getMonth()+rd.getDate();s.src = \"https://trk.techtarget.com/tracking.js\";var n = d.getElementsByTagName(\"script\")[0];n.parentNode.insertBefore(s, n);})(window, document, '16554798');};{const d = document.c
Source: chromecache_248.2.dr	String found in binary or memory: -->`;document.body.appendChild(d);};{\n!function(e,t,n,s,u,a){e.twq\|\|(s=e.twq=function(){s.exe?s.exe.apply(s,arguments):s.queue.push(arguments);\n},s.version='1.1',s.queue=[],u=t.createElement(n),u.async=!0,u.src='https://static.ads-twitter.com/uwt.js',\na=t.getElementsByTagName(n)[0],a.parentNode.insertBefore(u,a))}(window,document,'script');\n// Insert Twitter Advertiser ID\ntwq('config','nvldc', {\n restricted_data_use: 'restrict_optimization' // or 'off'\n});\n};{const d = document.createElement('div');d.innerHTML = `<!-- Qualified -->\n\n\n<!-- End Qualified -->`;document.body.appendChild(d);};{\n(function(w,q){w['QualifiedObject']=q;w[q]=w[q]\|\|function(){\n(w[q].q=w[q].q\|\|[]).push(arguments)};})(window,'qualified')\n\n};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22async%22%3A%22%22%2C%22src%22%3A%22https%3A%2F%2Fjs.qualified.com%2Fqualified.js%3Ftoken%3D37pXYrro6wCZbsU7%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-142248e4-bc5b-4e5b-b5f8-2ec2a0848f8a%5C%22))%7D%22%2C%22order-id%22%3A%22142248e4-bc5b-4e5b-b5f8-2ec2a0848f8a%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{\n(function() {\n var didInit = false;\n function initMunchkin() {\n if(didInit === false) {\n didInit = true;\n Munchkin.init('713-XSC-918');\n }\n }\n var s = document.createElement('script');\n s.type = 'text/javascript';\n s.async = true;\n s.src = '//munchkin.marketo.net/munchkin-beta.js';\n s.onreadystatechange = function() {\n if (this.readyState == 'complete' \|\| this.readyState == 'loaded') {\n initMunchkin();\n }\n };\n s.onload = initMunchkin;\n document.getElementsByTagName('head')[0].appendChild(s);\n})();\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22type%22%3A%22text%2Fjavascript%22%2C%22src%22%3A%22https%3A%2F%2Fcdn.bizible.com%2Fscripts%2Fbizible.js%22%2C%22async%22%3A%22%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-e1e42dff-de69-41ac-88cc-7297d46d8f58%5C%22))%7D%22%2C%22order-id%22%3A%22e1e42dff-de69-41ac-88cc-7297d46d8f58%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{(function(w, d, c) {w['techtargetic'] = w['techtargetic'] \|\| {};w['techtargetic'].client = c;var s = d.createElement(\"script\");s.type = \"text/javascript\";s.async = !0;s.crossorigin = \"anonymous\";var rd = new Date();rd=rd.getFullYear()+''+rd.getMonth()+rd.getDate();s.src = \"https://trk.techtarget.com/tracking.js\";var n = d.getElementsByTagName(\"script\")[0];n.parentNode.insertBefore(s, n);})(window, document, '16554798');};{const d = document.c
Source: chromecache_213.2.dr, chromecache_280.2.dr, chromecache_155.2.dr, chromecache_181.2.dr, chromecache_275.2.dr, chromecache_295.2.dr	String found in binary or memory: return b}WC.F="internal.enableAutoEventOnTimer";var hc=la(["data-gtm-yt-inspected-"]),YC=["www.youtube.com","www.youtube-nocookie.com"],ZC,$C=!1; equals www.youtube.com (Youtube)
Source: chromecache_200.2.dr	String found in binary or memory: return fetch("https://www.cloudflare.com/static/z/t",{credentials:"include",method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify(oO)})})).then((function(oX){zarazData._let=(new Date).getTime();oX.ok\|\|oN();return 204!==oX.status&&oX.json()})).then((async oW=>{await zaraz._p(oW);"function"==typeof oL&&oL()})).finally((()=>oM()))}))};zaraz.set=function(oY,oZ,o$){try{oZ=JSON.stringify(oZ)}catch(pa){return}prefixedKey="_zaraz_"+oY;sessionStorage&&sessionStorage.removeItem(prefixedKey);localStorage&&localStorage.removeItem(prefixedKey);delete zaraz.pageVariables[oY];if(void 0!==oZ){o$&&"session"==o$.scope?sessionStorage&&sessionStorage.setItem(prefixedKey,oZ):o$&&"page"==o$.scope?zaraz.pageVariables[oY]=oZ:localStorage&&localStorage.setItem(prefixedKey,oZ);zaraz.__watchVar={key:oY,value:oZ}}};for(const{m:pb,a:pc}of zarazData.q.filter((({m:pd})=>["debug","set"].includes(pd))))zaraz[pb](...pc);for(const{m:pe,a:pf}of zaraz.q)zaraz[pe](...pf);delete zaraz.q;delete zarazData.q;zaraz.spaPageview=()=>{zarazData.l=d.location.href;zarazData.t=d.title;zaraz.pageVariables={};zaraz.__zarazMCListeners={};zaraz.track("__zarazSPA")};zaraz.fulfilTrigger=function(pg,ph,pi,pj){zaraz.__zarazTriggerMap\|\|(zaraz.__zarazTriggerMap={});zaraz.__zarazTriggerMap[pg]\|\|(zaraz.__zarazTriggerMap[pg]="");zaraz.__zarazTriggerMap[pg]+=""+ph+"";zaraz.track("__zarazEmpty",{...pi,__zarazClientTriggers:zaraz.__zarazTriggerMap[pg]},pj)};zaraz._c=nt=>{const{event:nu,...nv}=nt;zaraz.track(nu,{...nv,__zarazClientEvent:!0})};zaraz._syncedAttributes=["altKey","clientX","clientY","pageX","pageY","button"];zaraz.__zcl.track=!0;zaraz._p({"e":["(function(w,d){(function(){const pm=\"25%,50%,75%,100%\",pn=[];for(let pp=0;pp<pm.split(\",\").length;pp+=1){const pq=pm.split(\",\")[pp].trim().match(/^([0-9]{1,999999999})(px\|%)?$/);pq&&pq[1]&&pn.push([parseInt(pq[1],10),pq[2]\|\|\"%\"])}let po=()=>{const pr=d.scrollingElement\|\|d.documentElement,ps=pr.scrollHeight-pr.clientHeight,pt=pr.scrollTop/ps*100;for(let pu=0;pu<pn.length;pu+=1)if(pn[pu]){const[pv,pw]=pn[pu];if(\"%\"===pw&&pt>=pv\|\|\"px\"===pw&&pr.scrollTop>=pv){delete pn[pu];zaraz.fulfilTrigger(\"zDVF\",\"Frnx\",{scrollDepth:pv+pw})}}};w.zaraz._al(d,\"scroll\",po);w.zaraz._al(w,\"resize\",po);po();})();w.zarazData.executed.push(\"EnMz\");w.zarazData.executed.push(\"SWTL\");w.zarazData.executed.push(\"TjNa\");w.zarazData.executed.push(\"WeOV\");w.zarazData.executed.push(\"Pageview\");})(window,document)","(function(w,d){{const d = document.createElement('div');d.innerHTML = `<noscript>\n<img height=\"1\" width=\"1\" style=\"display:none;\" alt=\"\" src=\"https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif\" />\n</noscript>`;document.body.appendChild(d);};{\n_linkedin_partner_id = \"28851\";\nwindow._linkedin_data_partner_ids = window._linkedin_data_partner_ids \|\| [];\nwindow._linkedin_data_partner_ids.push(_linkedin_partner_id);\n};{\n(function(l) {\nif (!l){window.lintrk = function(a,b){window.lintrk.q.push([a,b])};\nwindow
Source: chromecache_200.2.dr	String found in binary or memory: return fetch("https://www.cloudflare.com/static/z/t",{credentials:"include",method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify(oO)})})).then((function(oX){zarazData._let=(new Date).getTime();oX.ok\|\|oN();return 204!==oX.status&&oX.json()})).then((async oW=>{await zaraz._p(oW);"function"==typeof oL&&oL()})).finally((()=>oM()))}))};zaraz.set=function(oY,oZ,o$){try{oZ=JSON.stringify(oZ)}catch(pa){return}prefixedKey="_zaraz_"+oY;sessionStorage&&sessionStorage.removeItem(prefixedKey);localStorage&&localStorage.removeItem(prefixedKey);delete zaraz.pageVariables[oY];if(void 0!==oZ){o$&&"session"==o$.scope?sessionStorage&&sessionStorage.setItem(prefixedKey,oZ):o$&&"page"==o$.scope?zaraz.pageVariables[oY]=oZ:localStorage&&localStorage.setItem(prefixedKey,oZ);zaraz.__watchVar={key:oY,value:oZ}}};for(const{m:pb,a:pc}of zarazData.q.filter((({m:pd})=>["debug","set"].includes(pd))))zaraz[pb](...pc);for(const{m:pe,a:pf}of zaraz.q)zaraz[pe](...pf);delete zaraz.q;delete zarazData.q;zaraz.spaPageview=()=>{zarazData.l=d.location.href;zarazData.t=d.title;zaraz.pageVariables={};zaraz.__zarazMCListeners={};zaraz.track("__zarazSPA")};zaraz.fulfilTrigger=function(pg,ph,pi,pj){zaraz.__zarazTriggerMap\|\|(zaraz.__zarazTriggerMap={});zaraz.__zarazTriggerMap[pg]\|\|(zaraz.__zarazTriggerMap[pg]="");zaraz.__zarazTriggerMap[pg]+=""+ph+"";zaraz.track("__zarazEmpty",{...pi,__zarazClientTriggers:zaraz.__zarazTriggerMap[pg]},pj)};zaraz._c=nt=>{const{event:nu,...nv}=nt;zaraz.track(nu,{...nv,__zarazClientEvent:!0})};zaraz._syncedAttributes=["altKey","clientX","clientY","pageX","pageY","button"];zaraz.__zcl.track=!0;zaraz._p({"e":["(function(w,d){(function(){const pm=\"25%,50%,75%,100%\",pn=[];for(let pp=0;pp<pm.split(\",\").length;pp+=1){const pq=pm.split(\",\")[pp].trim().match(/^([0-9]{1,999999999})(px\|%)?$/);pq&&pq[1]&&pn.push([parseInt(pq[1],10),pq[2]\|\|\"%\"])}let po=()=>{const pr=d.scrollingElement\|\|d.documentElement,ps=pr.scrollHeight-pr.clientHeight,pt=pr.scrollTop/ps*100;for(let pu=0;pu<pn.length;pu+=1)if(pn[pu]){const[pv,pw]=pn[pu];if(\"%\"===pw&&pt>=pv\|\|\"px\"===pw&&pr.scrollTop>=pv){delete pn[pu];zaraz.fulfilTrigger(\"zDVF\",\"Frnx\",{scrollDepth:pv+pw})}}};w.zaraz._al(d,\"scroll\",po);w.zaraz._al(w,\"resize\",po);po();})();w.zarazData.executed.push(\"EnMz\");w.zarazData.executed.push(\"SWTL\");w.zarazData.executed.push(\"TjNa\");w.zarazData.executed.push(\"WeOV\");w.zarazData.executed.push(\"Pageview\");})(window,document)","(function(w,d){{const d = document.createElement('div');d.innerHTML = `<noscript>\n<img height=\"1\" width=\"1\" style=\"display:none;\" alt=\"\" src=\"https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif\" />\n</noscript>`;document.body.appendChild(d);};{\n_linkedin_partner_id = \"28851\";\nwindow._linkedin_data_partner_ids = window._linkedin_data_partner_ids \|\| [];\nwindow._linkedin_data_partner_ids.push(_linkedin_partner_id);\n};{\n(function(l) {\nif (!l){window.lintrk = function(a,b){window.lintrk.q.push([a,b])};\nwindow

Source: global traffic	DNS traffic detected: DNS query: bdvonline-personasv.pages.dev
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: static.cloudflareinsights.com
Source: global traffic	DNS traffic detected: DNS query: performance.radar.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: ot.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdn.logr-ingest.com
Source: global traffic	DNS traffic detected: DNS query: assets.adobedtm.com
Source: global traffic	DNS traffic detected: DNS query: api.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: dpm.demdex.net
Source: global traffic	DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic	DNS traffic detected: DNS query: static.ads-twitter.com
Source: global traffic	DNS traffic detected: DNS query: js.qualified.com
Source: global traffic	DNS traffic detected: DNS query: munchkin.marketo.net
Source: global traffic	DNS traffic detected: DNS query: cdn.bizible.com
Source: global traffic	DNS traffic detected: DNS query: trk.techtarget.com
Source: global traffic	DNS traffic detected: DNS query: tag.demandbase.com
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: alb.reddit.com
Source: global traffic	DNS traffic detected: DNS query: ibc-flow.techtarget.com
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: adobedc.demdex.net
Source: global traffic	DNS traffic detected: DNS query: cloudflareinc.demdex.net
Source: global traffic	DNS traffic detected: DNS query: di.rlcdn.com
Source: global traffic	DNS traffic detected: DNS query: cm.everesttech.net
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: t.co
Source: global traffic	DNS traffic detected: DNS query: r.logr-ingest.com
Source: global traffic	DNS traffic detected: DNS query: analytics.twitter.com
Source: global traffic	DNS traffic detected: DNS query: api.company-target.com
Source: global traffic	DNS traffic detected: DNS query: cdn.bizibly.com
Source: global traffic	DNS traffic detected: DNS query: www.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: s.company-target.com
Source: global traffic	DNS traffic detected: DNS query: ws6.qualified.com
Source: global traffic	DNS traffic detected: DNS query: id.rlcdn.com
Source: global traffic	DNS traffic detected: DNS query: dsum-sec.casalemedia.com
Source: global traffic	DNS traffic detected: DNS query: partners.tremorhub.com
Source: global traffic	DNS traffic detected: DNS query: pixel.rubiconproject.com
Source: global traffic	DNS traffic detected: DNS query: 713-xsc-918.mktoresp.com
Source: global traffic	DNS traffic detected: DNS query: tag-logger.demandbase.com
Source: global traffic	DNS traffic detected: DNS query: edge.adobedc.net
Source: global traffic	DNS traffic detected: DNS query: cf-assets.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: ad.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: analytics.google.com
Source: global traffic	DNS traffic detected: DNS query: adservice.google.com

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	downloaded
Size (bytes):	43
Entropy (8bit):	3.16293190511019
Encrypted:	false
SSDEEP:	3:CUmExltxlHh/:Jb/
MD5:	FC94FB0C3ED8A8F909DBC7630A0987FF
SHA1:	56D45F8A17F5078A20AF9962C992CA4678450765
SHA-256:	2DFE28CBDB83F01C940DE6A88AB86200154FD772D568035AC568664E52068363
SHA-512:	C87BF81FD70CF6434CA3A6C05AD6E9BD3F1D96F77DDDAD8D45EE043B126B2CB07A5CF23B4137B9D8462CD8A9ADF2B463AB6DE2B38C93DB72D2D511CA60E3B57E
Malicious:	false
Reputation:	low
URL:	https://ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=16554798&r=1728899173927&ref=https%3A%2F%2Fwww.cloudflare.com%2Fplans%2Fenterprise%2Fcontact%2F&version=2.4
Preview:	GIF89a.............!.......,...........D..;

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Oct 14, 2024 11:45:01.207079887 CEST	49675	443	192.168.2.4	173.222.162.32
Oct 14, 2024 11:45:10.815742016 CEST	49675	443	192.168.2.4	173.222.162.32
Oct 14, 2024 11:45:12.009844065 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.009948969 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.010045052 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.010272980 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.010297060 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.491301060 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.491728067 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.491749048 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.492711067 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.492799044 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.493957043 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.494016886 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.494231939 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.494240046 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.536849022 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.606364012 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.606508017 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.606581926 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.606601954 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.606688023 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.606756926 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.606765032 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.606914997 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.606971979 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.608341932 CEST	49735	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.608364105 CEST	443	49735	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.642929077 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.642975092 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:12.643085003 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.643342972 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:12.643361092 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.116156101 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.116502047 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.116528034 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.116852045 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.117335081 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.117394924 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.117510080 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.159415007 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.242850065 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.242902994 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.242923975 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.242943048 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.242963076 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.242980003 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.242991924 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.243001938 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.243062973 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.243082047 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.243120909 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.243444920 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.243475914 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.243513107 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.243525982 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.248125076 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.248183012 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.248208046 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.303150892 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.332451105 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.332530975 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.332587957 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.332606077 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.332633018 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.332658052 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.332724094 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.332772970 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.360850096 CEST	49738	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.360882998 CEST	443	49738	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.526807070 CEST	49739	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.526942015 CEST	443	49739	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:13.527019978 CEST	49739	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.527245045 CEST	49739	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:13.527275085 CEST	443	49739	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.025454998 CEST	443	49739	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.025716066 CEST	49739	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.025751114 CEST	443	49739	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.026216984 CEST	443	49739	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.026504993 CEST	49739	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.026587009 CEST	443	49739	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.026635885 CEST	49739	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.028821945 CEST	49740	443	192.168.2.4	142.250.186.36
Oct 14, 2024 11:45:14.028915882 CEST	443	49740	142.250.186.36	192.168.2.4
Oct 14, 2024 11:45:14.029014111 CEST	49740	443	192.168.2.4	142.250.186.36
Oct 14, 2024 11:45:14.029212952 CEST	49740	443	192.168.2.4	142.250.186.36
Oct 14, 2024 11:45:14.029247999 CEST	443	49740	142.250.186.36	192.168.2.4
Oct 14, 2024 11:45:14.066587925 CEST	49739	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.066643000 CEST	443	49739	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.169557095 CEST	443	49739	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.169758081 CEST	443	49739	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.170945883 CEST	49739	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.171351910 CEST	49739	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.171375990 CEST	443	49739	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.179589987 CEST	49741	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.179646015 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.179728985 CEST	49741	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.180064917 CEST	49741	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.180084944 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.200716019 CEST	49742	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.200814962 CEST	443	49742	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:14.200932980 CEST	49742	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.201206923 CEST	49742	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.201247931 CEST	443	49742	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:14.589500904 CEST	49743	443	192.168.2.4	184.28.90.27
Oct 14, 2024 11:45:14.589531898 CEST	443	49743	184.28.90.27	192.168.2.4
Oct 14, 2024 11:45:14.589636087 CEST	49743	443	192.168.2.4	184.28.90.27
Oct 14, 2024 11:45:14.599256039 CEST	49743	443	192.168.2.4	184.28.90.27
Oct 14, 2024 11:45:14.599267006 CEST	443	49743	184.28.90.27	192.168.2.4
Oct 14, 2024 11:45:14.645670891 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.646061897 CEST	49741	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.646078110 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.646473885 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.646931887 CEST	49741	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.647005081 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.647119045 CEST	49741	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.683945894 CEST	443	49740	142.250.186.36	192.168.2.4
Oct 14, 2024 11:45:14.684289932 CEST	49740	443	192.168.2.4	142.250.186.36
Oct 14, 2024 11:45:14.684310913 CEST	443	49740	142.250.186.36	192.168.2.4
Oct 14, 2024 11:45:14.685343981 CEST	443	49740	142.250.186.36	192.168.2.4
Oct 14, 2024 11:45:14.685415030 CEST	49740	443	192.168.2.4	142.250.186.36
Oct 14, 2024 11:45:14.686902046 CEST	49740	443	192.168.2.4	142.250.186.36
Oct 14, 2024 11:45:14.686980963 CEST	443	49740	142.250.186.36	192.168.2.4
Oct 14, 2024 11:45:14.687400103 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.703727007 CEST	443	49742	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:14.704138041 CEST	49742	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.704196930 CEST	443	49742	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:14.705347061 CEST	443	49742	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:14.705445051 CEST	49742	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.712029934 CEST	49742	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.712065935 CEST	49742	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.712165117 CEST	49742	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.712196112 CEST	443	49742	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:14.712285042 CEST	49742	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.714193106 CEST	49744	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.714260101 CEST	443	49744	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:14.714344025 CEST	49744	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.715006113 CEST	49744	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.715019941 CEST	443	49744	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:14.753046989 CEST	49740	443	192.168.2.4	142.250.186.36
Oct 14, 2024 11:45:14.753097057 CEST	443	49740	142.250.186.36	192.168.2.4
Oct 14, 2024 11:45:14.788367033 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.788413048 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.788439035 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.788458109 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.788506031 CEST	49741	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.788537979 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.788559914 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.788561106 CEST	49741	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.788615942 CEST	49741	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.799904108 CEST	49740	443	192.168.2.4	142.250.186.36
Oct 14, 2024 11:45:14.816180944 CEST	49741	443	192.168.2.4	172.66.44.97
Oct 14, 2024 11:45:14.816227913 CEST	443	49741	172.66.44.97	192.168.2.4
Oct 14, 2024 11:45:14.830723047 CEST	49745	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.830769062 CEST	443	49745	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:14.830858946 CEST	49745	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.832509995 CEST	49745	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:14.832528114 CEST	443	49745	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.184943914 CEST	443	49744	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.186136961 CEST	49744	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.186155081 CEST	443	49744	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.187207937 CEST	443	49744	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.187273979 CEST	49744	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.188123941 CEST	49744	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.188186884 CEST	443	49744	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.188786983 CEST	49744	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.188793898 CEST	443	49744	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.237257957 CEST	49744	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.300431013 CEST	443	49745	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.301160097 CEST	49745	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.301179886 CEST	443	49745	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.303549051 CEST	443	49745	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.303610086 CEST	49745	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.304636955 CEST	443	49743	184.28.90.27	192.168.2.4
Oct 14, 2024 11:45:15.304713964 CEST	49743	443	192.168.2.4	184.28.90.27
Oct 14, 2024 11:45:15.305104017 CEST	49745	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.305125952 CEST	49745	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.305202961 CEST	443	49745	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.305273056 CEST	49745	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.305284023 CEST	443	49745	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.305311918 CEST	49745	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.305339098 CEST	49745	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.306025982 CEST	49746	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.306049109 CEST	443	49746	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.306113958 CEST	49746	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.306408882 CEST	49746	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.306422949 CEST	443	49746	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.307805061 CEST	443	49744	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.307864904 CEST	443	49744	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.307936907 CEST	49744	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.314563990 CEST	49743	443	192.168.2.4	184.28.90.27
Oct 14, 2024 11:45:15.314573050 CEST	443	49743	184.28.90.27	192.168.2.4
Oct 14, 2024 11:45:15.314843893 CEST	443	49743	184.28.90.27	192.168.2.4
Oct 14, 2024 11:45:15.316433907 CEST	49744	443	192.168.2.4	172.66.47.159
Oct 14, 2024 11:45:15.316451073 CEST	443	49744	172.66.47.159	192.168.2.4
Oct 14, 2024 11:45:15.361790895 CEST	49743	443	192.168.2.4	184.28.90.27
Oct 14, 2024 11:45:15.388343096 CEST	49743	443	192.168.2.4	184.28.90.27
Oct 14, 2024 11:45:15.431412935 CEST	443	49743	184.28.90.27	192.168.2.4
Oct 14, 2024 11:45:15.631458044 CEST	443	49743	184.28.90.27	192.168.2.4
Oct 14, 2024 11:45:15.631546974 CEST	443	49743	184.28.90.27	192.168.2.4

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: bdvonline-personasv.pages.devConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/styles/cf.errors.css HTTP/1.1Host: bdvonline-personasv.pages.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://bdvonline-personasv.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1Host: bdvonline-personasv.pages.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bdvonline-personasv.pages.dev/cdn-cgi/styles/cf.errors.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: bdvonline-personasv.pages.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bdvonline-personasv.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1Host: bdvonline-personasv.pages.devConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: bdvonline-personasv.pages.devConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /learning/access-management/phishing-attack/ HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://bdvonline-personasv.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /learning/access-management/phishing-attack/ HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://bdvonline-personasv.pages.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /plans/enterprise/contact/ HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /img/privacyoptions.svg HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.cloudflare.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /img/privacyoptions.svg HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /webpack-runtime-427b32d69ea0c2817175.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /framework-957a522640f43541ca6a.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /app-f94b51f9187182a89b22.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/scripttemplates/otSDKStub.js HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/api.js?render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/b/62ec4f065604/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/consent/b1e05d49-f072-4bae-9116-bdb78af15448/b1e05d49-f072-4bae-9116-bdb78af15448.json HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.cloudflare.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.js HTTP/1.1Host: performance.radar.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/scripttemplates/202407.2.0/otBannerSdk.js HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /page-data/app-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /page-data/plans/enterprise/contact/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /webpack-runtime-427b32d69ea0c2817175.js HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/scripttemplates/otSDKStub.js HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /framework-957a522640f43541ca6a.js HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/consent/b1e05d49-f072-4bae-9116-bdb78af15448/b1e05d49-f072-4bae-9116-bdb78af15448.json HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /app-f94b51f9187182a89b22.js HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/b/62ec4f065604/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logger-1.min.js HTTP/1.1Host: cdn.logr-ingest.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/app-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/1048862057.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/3199558980.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/333361657.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/plans/enterprise/contact/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:12 UTC	672	OUT	GET / HTTP/1.1 Host: bdvonline-personasv.pages.dev Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:45:12 UTC	612	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:12 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Frame-Options: SAMEORIGIN Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wdb4o2ztf6WfPRWKdKuGPOBKsKriwJRIIgaRw%2BcxqoY8KmkDD45k4qOypnHSDZJJa4ej4hxMlm1pFgD9T1K2%2B1INUloMZNiG5ojtmRqJCmLohsl12tQlLSNafWL79%2F8hPrcTOduMS0ghv9khd8GsWA%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Speculation-Rules: "/cdn-cgi/speculation" Server: cloudflare CF-RAY: 8d26a29d6c0b1993-EWR
2024-10-14 09:45:12 UTC	757	IN	Data Raw: 31 31 34 65 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 5d 3e 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 36 20 6f 6c 64 69 65 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 37 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 37 20 6f 6c 64 69 65 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 38 20 6f 6c 64 69 65 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 Data Ascii: 114e<!DOCTYPE html>...[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]-->...[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]-->...[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]-->...[if
2024-10-14 09:45:12 UTC	1369	IN	Data Raw: 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 27 63 66 5f 73 74 79 6c 65 73 2d 69 65 2d 63 73 73 27 20 68 72 65 66 3d 22 2f 63 64 6e 2d 63 67 69 2f 73 74 79 6c 65 73 2f 63 66 2e 65 72 72 6f 72 73 2e 69 65 2e 63 73 73 22 20 2f 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 73 74 79 6c 65 3e 62 6f 64 79 7b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 7d 3c 2f 73 74 79 6c 65 3e 0a 0a 0a 3c 21 2d 2d 5b 69 66 20 67 74 65 20 49 45 20 31 30 5d 3e 3c 21 2d 2d 3e 0a 3c 73 63 72 69 70 74 3e 0a 20 20 69 66 20 28 21 6e 61 76 69 67 61 74 6f 72 2e 63 6f 6f 6b 69 65 45 6e 61 62 6c 65 64 29 20 7b 0a 20 20 20 20 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 27 44 4f 4d 43 6f 6e 74 65 6e 74 4c 6f 61 64 65 64 27 2c 20 66 75 6e Data Ascii: rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--><style>body{margin:0;padding:0}</style>...[if gte IE 10]>...><script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', fun
2024-10-14 09:45:12 UTC	1369	IN	Data Raw: 20 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 6c 6f 75 64 66 6c 61 72 65 2e 63 6f 6d 2f 6c 65 61 72 6e 69 6e 67 2f 61 63 63 65 73 73 2d 6d 61 6e 61 67 65 6d 65 6e 74 2f 70 68 69 73 68 69 6e 67 2d 61 74 74 61 63 6b 2f 22 20 63 6c 61 73 73 3d 22 63 66 2d 62 74 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 34 30 34 30 34 30 3b 20 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 20 62 6f 72 64 65 72 3a 20 30 3b 22 3e 4c 65 61 72 6e 20 4d 6f 72 65 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 66 6f 72 6d 20 61 63 74 69 6f 6e 3d 22 2f 63 64 6e 2d 63 67 69 2f 70 68 69 73 68 2d 62 79 70 61 73 73 22 Data Ascii: <a href="https://www.cloudflare.com/learning/access-management/phishing-attack/" class="cf-btn" style="background-color: #404040; color: #fff; border: 0;">Learn More</a> <form action="/cdn-cgi/phish-bypass"
2024-10-14 09:45:12 UTC	943	IN	Data Raw: 6e 20 63 6c 61 73 73 3d 22 68 69 64 64 65 6e 22 20 69 64 3d 22 63 66 2d 66 6f 6f 74 65 72 2d 69 70 22 3e 38 2e 34 36 2e 31 32 33 2e 33 33 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 20 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 63 66 2d 66 6f 6f 74 65 72 2d 73 65 70 61 72 61 74 6f 72 20 73 6d 3a 68 69 64 64 65 6e 22 3e 26 62 75 6c 6c 3b 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 63 66 2d 66 6f 6f 74 65 72 2d 69 74 65 6d 20 73 6d 3a 62 6c 6f 63 6b 20 73 6d 3a 6d 62 2d 31 22 3e 3c 73 70 61 6e 3e 50 65 72 66 6f 72 6d 61 6e 63 65 20 26 61 6d 70 3b 20 73 65 63 75 72 69 74 79 20 62 79 3c 2f 73 70 61 6e 3e 20 3c 61 20 72 65 6c 3d 22 6e 6f 6f 70 65 6e 65 72 20 6e 6f 72 65 66 65 72 72 65 72 22 20 68 72 65 Data Ascii: n class="hidden" id="cf-footer-ip">8.46.123.33</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" hre
2024-10-14 09:45:12 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:13 UTC	585	OUT	GET /cdn-cgi/styles/cf.errors.css HTTP/1.1 Host: bdvonline-personasv.pages.dev Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://bdvonline-personasv.pages.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:45:13 UTC	411	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:13 GMT Content-Type: text/css Content-Length: 24051 Connection: close Last-Modified: Tue, 08 Oct 2024 16:37:09 GMT ETag: "67055fb5-5df3" Server: cloudflare CF-RAY: 8d26a2a1782c0f9b-EWR X-Frame-Options: DENY X-Content-Type-Options: nosniff Expires: Mon, 14 Oct 2024 11:45:13 GMT Cache-Control: max-age=7200 Cache-Control: public Accept-Ranges: bytes
2024-10-14 09:45:13 UTC	958	IN	Data Raw: 23 63 66 2d 77 72 61 70 70 65 72 20 61 2c 23 63 66 2d 77 72 61 70 70 65 72 20 61 62 62 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 61 72 74 69 63 6c 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 61 73 69 64 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 62 2c 23 63 66 2d 77 72 61 70 70 65 72 20 62 69 67 2c 23 63 66 2d 77 72 61 70 70 65 72 20 62 6c 6f 63 6b 71 75 6f 74 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 62 6f 64 79 2c 23 63 66 2d 77 72 61 70 70 65 72 20 63 61 6e 76 61 73 2c 23 63 66 2d 77 72 61 70 70 65 72 20 63 61 70 74 69 6f 6e 2c 23 63 66 2d 77 72 61 70 70 65 72 20 63 65 6e 74 65 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 63 69 74 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 63 6f 64 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 64 64 2c 23 63 66 2d 77 72 61 70 70 Data Ascii: #cf-wrapper a,#cf-wrapper abbr,#cf-wrapper article,#cf-wrapper aside,#cf-wrapper b,#cf-wrapper big,#cf-wrapper blockquote,#cf-wrapper body,#cf-wrapper canvas,#cf-wrapper caption,#cf-wrapper center,#cf-wrapper cite,#cf-wrapper code,#cf-wrapper dd,#cf-wrapp
2024-10-14 09:45:13 UTC	1369	IN	Data Raw: 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 74 72 6f 6e 67 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 75 62 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 75 6d 6d 61 72 79 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 75 70 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 61 62 6c 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 62 6f 64 79 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 64 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 66 6f 6f 74 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 68 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 68 65 61 64 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 74 2c 23 63 66 2d 77 72 61 70 70 65 72 20 75 2c 23 63 66 2d 77 72 61 70 70 65 72 20 75 6c 7b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 3b 62 6f Data Ascii: e,#cf-wrapper strong,#cf-wrapper sub,#cf-wrapper summary,#cf-wrapper sup,#cf-wrapper table,#cf-wrapper tbody,#cf-wrapper td,#cf-wrapper tfoot,#cf-wrapper th,#cf-wrapper thead,#cf-wrapper tr,#cf-wrapper tt,#cf-wrapper u,#cf-wrapper ul{margin:0;padding:0;bo
2024-10-14 09:45:13 UTC	1369	IN	Data Raw: 31 2e 35 21 69 6d 70 6f 72 74 61 6e 74 3b 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 6e 6f 6e 65 21 69 6d 70 6f 72 74 61 6e 74 3b 6c 65 74 74 65 72 2d 73 70 61 63 69 6e 67 3a 6e 6f 72 6d 61 6c 3b 2d 77 65 62 6b 69 74 2d 74 61 70 2d 68 69 67 68 6c 69 67 68 74 2d 63 6f 6c 6f 72 3a 72 67 62 61 28 32 34 36 2c 31 33 39 2c 33 31 2c 2e 33 29 3b 2d 77 65 62 6b 69 74 2d 66 6f 6e 74 2d 73 6d 6f 6f 74 68 69 6e 67 3a 61 6e 74 69 61 6c 69 61 73 65 64 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 73 65 63 74 69 6f 6e 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 65 63 74 69 6f 6e 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 30 20 30 3b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 32 65 6d 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 65 6d Data Ascii: 1.5!important;text-decoration:none!important;letter-spacing:normal;-webkit-tap-highlight-color:rgba(246,139,31,.3);-webkit-font-smoothing:antialiased}#cf-wrapper .cf-section,#cf-wrapper section{background:0 0;display:block;margin-bottom:2em;margin-top:2em
2024-10-14 09:45:13 UTC	1369	IN	Data Raw: 6c 64 28 32 6e 29 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 63 6f 6c 73 2d 34 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 6c 64 28 32 6e 29 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 66 6f 75 72 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 6c 64 28 32 6e 29 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 74 77 6f 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 6c 64 28 32 6e 29 7b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 32 32 2e 35 70 78 3b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 30 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 63 6f 6c 73 2d 32 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 Data Ascii: ld(2n),#cf-wrapper .cf-columns.cols-4>.cf-column:nth-child(2n),#cf-wrapper .cf-columns.four>.cf-column:nth-child(2n),#cf-wrapper .cf-columns.two>.cf-column:nth-child(2n){padding-left:22.5px;padding-right:0}#cf-wrapper .cf-columns.cols-2>.cf-column:nth-chi
2024-10-14 09:45:13 UTC	1369	IN	Data Raw: 29 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 66 6f 75 72 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 6c 64 28 6f 64 64 29 7b 63 6c 65 61 72 3a 6e 6f 6e 65 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 63 6f 6c 73 2d 34 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 66 69 72 73 74 2d 63 68 69 6c 64 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 63 6f 6c 73 2d 34 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 6c 64 28 34 6e 2b 31 29 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 66 6f 75 72 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 66 69 72 73 74 2d 63 68 69 6c 64 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 Data Ascii: ),#cf-wrapper .cf-columns.four>.cf-column:nth-child(odd){clear:none}#cf-wrapper .cf-columns.cols-4>.cf-column:first-child,#cf-wrapper .cf-columns.cols-4>.cf-column:nth-child(4n+1),#cf-wrapper .cf-columns.four>.cf-column:first-child,#cf-wrapper .cf-columns
2024-10-14 09:45:13 UTC	1369	IN	Data Raw: 30 3b 70 61 64 64 69 6e 67 3a 30 7d 23 63 66 2d 77 72 61 70 70 65 72 20 68 31 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 32 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 33 7b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 34 30 30 7d 23 63 66 2d 77 72 61 70 70 65 72 20 68 34 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 35 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 36 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 74 72 6f 6e 67 7b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 36 30 30 7d 23 63 66 2d 77 72 61 70 70 65 72 20 68 31 7b 66 6f 6e 74 2d 73 69 7a 65 3a 33 36 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 7d 23 63 66 2d 77 72 61 70 70 65 72 20 68 32 7b 66 6f 6e 74 2d 73 69 7a 65 3a 33 30 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 33 7d 23 63 66 2d 77 72 61 70 70 65 Data Ascii: 0;padding:0}#cf-wrapper h1,#cf-wrapper h2,#cf-wrapper h3{font-weight:400}#cf-wrapper h4,#cf-wrapper h5,#cf-wrapper h6,#cf-wrapper strong{font-weight:600}#cf-wrapper h1{font-size:36px;line-height:1.2}#cf-wrapper h2{font-size:30px;line-height:1.3}#cf-wrappe
2024-10-14 09:45:13 UTC	1369	IN	Data Raw: 68 32 2b 68 34 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 32 2b 68 35 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 32 2b 68 36 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 33 2b 68 35 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 33 2b 68 36 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 33 2b 70 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 34 2b 70 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 35 2b 6f 6c 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 35 2b 70 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 35 2b 75 6c 7b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2e 35 65 6d 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 74 72 61 6e 73 70 61 72 65 6e 74 3b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 39 39 39 3b 63 6f 6c Data Ascii: h2+h4,#cf-wrapper h2+h5,#cf-wrapper h2+h6,#cf-wrapper h3+h5,#cf-wrapper h3+h6,#cf-wrapper h3+p,#cf-wrapper h4+p,#cf-wrapper h5+ol,#cf-wrapper h5+p,#cf-wrapper h5+ul{margin-top:.5em}#cf-wrapper .cf-btn{background-color:transparent;border:1px solid #999;col
2024-10-14 09:45:13 UTC	1369	IN	Data Raw: 3a 23 36 32 61 31 64 38 3b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 31 36 33 39 35 39 3b 63 6f 6c 6f 72 3a 23 66 66 66 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 2d 64 61 6e 67 65 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 2d 65 72 72 6f 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 2d 69 6d 70 6f 72 74 61 6e 74 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 62 64 32 34 32 36 3b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 74 72 61 6e 73 70 61 72 65 6e 74 3b 63 6f 6c 6f 72 3a 23 66 66 66 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 2d 64 61 6e 67 65 72 3a 68 6f 76 65 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 2d 65 72 72 6f 72 3a 68 6f 76 65 72 2c 23 Data Ascii: :#62a1d8;border:1px solid #163959;color:#fff}#cf-wrapper .cf-btn-danger,#cf-wrapper .cf-btn-error,#cf-wrapper .cf-btn-important{background-color:#bd2426;border-color:transparent;color:#fff}#cf-wrapper .cf-btn-danger:hover,#cf-wrapper .cf-btn-error:hover,#
2024-10-14 09:45:13 UTC	1369	IN	Data Raw: 61 63 65 3a 6e 6f 77 72 61 70 7d 23 63 66 2d 77 72 61 70 70 65 72 20 69 6e 70 75 74 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 65 6c 65 63 74 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 65 78 74 61 72 65 61 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 23 66 66 66 21 69 6d 70 6f 72 74 61 6e 74 3b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 39 39 39 21 69 6d 70 6f 72 74 61 6e 74 3b 63 6f 6c 6f 72 3a 23 34 30 34 30 34 30 21 69 6d 70 6f 72 74 61 6e 74 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 36 36 36 37 65 6d 21 69 6d 70 6f 72 74 61 6e 74 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 34 21 69 6d 70 6f 72 74 61 6e 74 3b 6d 61 72 67 69 6e 3a 30 20 30 20 31 65 6d 21 69 6d 70 6f 72 74 61 6e 74 3b 6d 61 78 2d 77 69 64 74 68 3a 31 30 30 25 21 69 6d 70 6f 72 74 61 6e Data Ascii: ace:nowrap}#cf-wrapper input,#cf-wrapper select,#cf-wrapper textarea{background:#fff!important;border:1px solid #999!important;color:#404040!important;font-size:.86667em!important;line-height:1.24!important;margin:0 0 1em!important;max-width:100%!importan
2024-10-14 09:45:13 UTC	1369	IN	Data Raw: 3a 23 34 30 34 30 34 30 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 70 61 64 64 69 6e 67 3a 37 2e 35 70 78 20 31 35 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 6d 69 64 64 6c 65 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 32 70 78 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 61 6c 65 72 74 3a 65 6d 70 74 79 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 61 6c 65 72 74 20 2e 63 66 2d 63 6c 6f 73 65 7b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 74 72 61 6e 73 70 61 72 65 6e 74 3b 63 6f 6c 6f 72 3a 69 6e 68 65 72 69 74 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 38 2e 37 35 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 3b 70 61 64 64 69 6e Data Ascii: :#404040;font-size:13px;padding:7.5px 15px;position:relative;vertical-align:middle;border-radius:2px}#cf-wrapper .cf-alert:empty{display:none}#cf-wrapper .cf-alert .cf-close{border:1px solid transparent;color:inherit;font-size:18.75px;line-height:1;paddin

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:14 UTC	677	OUT	GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1 Host: bdvonline-personasv.pages.dev Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://bdvonline-personasv.pages.dev/cdn-cgi/styles/cf.errors.css Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:45:14 UTC	409	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:14 GMT Content-Type: image/png Content-Length: 452 Connection: close Last-Modified: Tue, 08 Oct 2024 16:37:09 GMT ETag: "67055fb5-1c4" Server: cloudflare CF-RAY: 8d26a2a73ff6435c-EWR X-Frame-Options: DENY X-Content-Type-Options: nosniff Expires: Mon, 14 Oct 2024 11:45:14 GMT Cache-Control: max-age=7200 Cache-Control: public Accept-Ranges: bytes
2024-10-14 09:45:14 UTC	452	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 36 00 00 00 36 08 03 00 00 00 bb 9b 9a ef 00 00 00 33 50 4c 54 45 c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f ab b2 22 ed 00 00 00 11 74 52 4e 53 00 40 30 10 60 8f bf ff ef 7f af 9f df 20 50 cf 70 60 82 c8 9b 00 00 01 2f 49 44 41 54 78 01 bd d3 05 d2 b4 30 10 06 e1 8e 6c de c1 36 dc ff b2 9f 2b 95 c9 12 7e 79 4a 91 46 22 b8 c2 8b c8 80 94 6f 45 1f ac 4c 81 33 f2 ac 03 5b 1e 95 69 32 b5 94 6e 98 57 79 4a c4 91 8a 7a 26 9a 82 a9 af a4 46 95 f5 d0 1a fb 95 c7 62 bf b2 f2 e9 70 7e e3 a7 a0 df ee 7c 3a 74 35 f1 6d b3 b3 99 66 70 af 69 f2 2f 65 ef c7 fa 99 25 de 25 1b c9 b4 f0 6e d2 50 a6 ed fb 65 Data Ascii: PNGIHDR663PLTEE?E?E?E?E?E?E?E?E?E?E?E?E?E?E?E?E?"tRNS@0` Pp`/IDATx0l6+~yJF"oEL3[i2nWyJz&Fbp~\|:t5mfpi/e%%nPe

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:14 UTC	614	OUT	GET /favicon.ico HTTP/1.1 Host: bdvonline-personasv.pages.dev Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://bdvonline-personasv.pages.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:45:14 UTC	636	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:14 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Frame-Options: SAMEORIGIN Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MYzgcCmV%2B4L1KuWsuk2zz%2FM%2BB%2B%2FV3p6jIxbwNIUp%2FyGD%2B%2BR0RMtWc23moT%2FPfF0a%2FTnsIrLSf4htkoYv%2FlUJlW1rdCBBeP6G4FrYBoqNZlDFnt%2FxAW4aeb2LVPD%2FV%2BI1m%2BLzbsjRBjwDeYTjElwrJg%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Speculation-Rules: "/cdn-cgi/speculation" Server: cloudflare CF-RAY: 8d26a2ab190280dc-EWR
2024-10-14 09:45:14 UTC	733	IN	Data Raw: 31 31 35 39 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 5d 3e 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 36 20 6f 6c 64 69 65 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 37 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 37 20 6f 6c 64 69 65 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 38 20 6f 6c 64 69 65 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 Data Ascii: 1159<!DOCTYPE html>...[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]-->...[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]-->...[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]-->...[if
2024-10-14 09:45:14 UTC	1369	IN	Data Raw: 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 39 5d 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 69 64 3d 27 63 66 5f 73 74 79 6c 65 73 2d 69 65 2d 63 73 73 27 20 68 72 65 66 3d 22 2f 63 64 6e 2d 63 67 69 2f 73 74 79 6c 65 73 2f 63 66 2e 65 72 72 6f 72 73 2e 69 65 2e 63 73 73 22 20 2f 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 73 74 79 6c 65 3e 62 6f 64 79 7b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 7d 3c 2f 73 74 79 6c 65 3e 0a 0a 0a 3c 21 2d 2d 5b 69 66 20 67 74 65 20 49 45 20 31 30 5d 3e 3c 21 2d 2d 3e 0a 3c 73 63 72 69 70 74 3e 0a 20 20 69 66 20 28 21 6e 61 76 69 67 61 74 6f 72 2e 63 6f 6f 6b 69 65 45 6e 61 62 6c 65 64 29 20 7b 0a 20 20 20 20 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 Data Ascii: ...[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--><style>body{margin:0;padding:0}</style>...[if gte IE 10]>...><script> if (!navigator.cookieEnabled) { window.addEventListener
2024-10-14 09:45:14 UTC	1369	IN	Data Raw: 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 6c 6f 75 64 66 6c 61 72 65 2e 63 6f 6d 2f 6c 65 61 72 6e 69 6e 67 2f 61 63 63 65 73 73 2d 6d 61 6e 61 67 65 6d 65 6e 74 2f 70 68 69 73 68 69 6e 67 2d 61 74 74 61 63 6b 2f 22 20 63 6c 61 73 73 3d 22 63 66 2d 62 74 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 34 30 34 30 34 30 3b 20 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 20 62 6f 72 64 65 72 3a 20 30 3b 22 3e 4c 65 61 72 6e 20 4d 6f 72 65 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 66 6f 72 6d 20 61 63 74 69 6f 6e Data Ascii: <a href="https://www.cloudflare.com/learning/access-management/phishing-attack/" class="cf-btn" style="background-color: #404040; color: #fff; border: 0;">Learn More</a> <form action
2024-10-14 09:45:14 UTC	978	IN	Data Raw: 43 6c 69 63 6b 20 74 6f 20 72 65 76 65 61 6c 3c 2f 62 75 74 74 6f 6e 3e 0a 20 20 20 20 20 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 68 69 64 64 65 6e 22 20 69 64 3d 22 63 66 2d 66 6f 6f 74 65 72 2d 69 70 22 3e 38 2e 34 36 2e 31 32 33 2e 33 33 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 20 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 63 66 2d 66 6f 6f 74 65 72 2d 73 65 70 61 72 61 74 6f 72 20 73 6d 3a 68 69 64 64 65 6e 22 3e 26 62 75 6c 6c 3b 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 63 66 2d 66 6f 6f 74 65 72 2d 69 74 65 6d 20 73 6d 3a 62 6c 6f 63 6b 20 73 6d 3a 6d 62 2d 31 22 3e 3c 73 70 61 6e 3e 50 65 72 66 6f 72 6d 61 6e 63 65 20 26 61 6d 70 3b 20 73 65 63 75 72 69 74 79 20 62 79 3c 2f 73 70 61 Data Ascii: Click to reveal</button> <span class="hidden" id="cf-footer-ip">8.46.123.33</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</spa
2024-10-14 09:45:14 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:15 UTC	399	OUT	GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1 Host: bdvonline-personasv.pages.dev Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:45:15 UTC	409	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:15 GMT Content-Type: image/png Content-Length: 452 Connection: close Last-Modified: Tue, 08 Oct 2024 16:37:09 GMT ETag: "67055fb5-1c4" Server: cloudflare CF-RAY: 8d26a2ae5c6343ab-EWR X-Frame-Options: DENY X-Content-Type-Options: nosniff Expires: Mon, 14 Oct 2024 11:45:15 GMT Cache-Control: max-age=7200 Cache-Control: public Accept-Ranges: bytes
2024-10-14 09:45:15 UTC	452	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 36 00 00 00 36 08 03 00 00 00 bb 9b 9a ef 00 00 00 33 50 4c 54 45 c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f ab b2 22 ed 00 00 00 11 74 52 4e 53 00 40 30 10 60 8f bf ff ef 7f af 9f df 20 50 cf 70 60 82 c8 9b 00 00 01 2f 49 44 41 54 78 01 bd d3 05 d2 b4 30 10 06 e1 8e 6c de c1 36 dc ff b2 9f 2b 95 c9 12 7e 79 4a 91 46 22 b8 c2 8b c8 80 94 6f 45 1f ac 4c 81 33 f2 ac 03 5b 1e 95 69 32 b5 94 6e 98 57 79 4a c4 91 8a 7a 26 9a 82 a9 af a4 46 95 f5 d0 1a fb 95 c7 62 bf b2 f2 e9 70 7e e3 a7 a0 df ee 7c 3a 74 35 f1 6d b3 b3 99 66 70 af 69 f2 2f 65 ef c7 fa 99 25 de 25 1b c9 b4 f0 6e d2 50 a6 ed fb 65 Data Ascii: PNGIHDR663PLTEE?E?E?E?E?E?E?E?E?E?E?E?E?E?E?E?E?"tRNS@0` Pp`/IDATx0l6+~yJF"oEL3[i2nWyJz&Fbp~\|:t5mfpi/e%%nPe

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:15 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-10-14 09:45:15 UTC	467	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF70) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-neu-z1 Cache-Control: public, max-age=111620 Date: Mon, 14 Oct 2024 09:45:15 GMT Connection: close X-CID: 2

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:16 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-10-14 09:45:16 UTC	515	IN	HTTP/1.1 200 OK ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF06) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=111560 Date: Mon, 14 Oct 2024 09:45:16 GMT Content-Length: 55 Connection: close X-CID: 2
2024-10-14 09:45:16 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:31 UTC	759	OUT	GET /learning/access-management/phishing-attack/ HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Referer: https://bdvonline-personasv.pages.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:45:32 UTC	1285	IN	HTTP/1.1 403 Forbidden Date: Mon, 14 Oct 2024 09:45:31 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA Critical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Content-Options: nosniff X-Frame-Options: SAMEORIGIN cf-mitigated: challenge
2024-10-14 09:45:32 UTC	1049	IN	Data Raw: 63 66 2d 63 68 6c 2d 6f 75 74 3a 20 6b 44 30 52 72 2b 59 2b 34 2b 6d 64 57 6f 49 50 74 76 4e 6f 69 5a 51 36 70 39 52 68 6a 78 57 44 58 70 53 76 73 56 43 45 6c 57 30 6f 69 4f 47 6a 6b 67 31 4c 38 6a 59 46 68 78 39 32 64 39 5a 6b 50 7a 62 4e 4f 4c 42 2b 7a 6d 49 6e 72 6c 5a 67 74 51 4c 42 71 73 71 43 6d 45 2f 71 56 33 43 39 4f 6f 2b 64 6d 68 31 58 54 39 71 75 4a 63 46 76 62 52 48 43 42 57 4c 44 44 51 58 58 45 4b 64 44 4b 52 39 67 67 6d 4b 61 46 30 7a 46 45 68 61 41 30 64 51 43 56 41 3d 3d 24 43 55 49 46 4a 47 5a 42 74 4a 41 35 67 43 45 78 59 37 46 4f 45 41 3d 3d 0d 0a 43 61 63 68 65 2d 43 6f 6e 74 72 6f 6c 3a 20 70 72 69 76 61 74 65 2c 20 6d 61 78 2d 61 67 65 3d 30 2c 20 6e 6f 2d 73 74 6f 72 65 2c 20 6e 6f 2d 63 61 63 68 65 2c 20 6d 75 73 74 2d 72 65 76 61 Data Ascii: cf-chl-out: kD0Rr+Y+4+mdWoIPtvNoiZQ6p9RhjxWDXpSvsVCElW0oiOGjkg1L8jYFhx92d9ZkPzbNOLB+zmInrlZgtQLBqsqCmE/qV3C9Oo+dmh1XT9quJcFvbRHCBWLDDQXXEKdDKR9ggmKaF0zFEhaA0dQCVA==$CUIFJGZBtJA5gCExY7FOEA==Cache-Control: private, max-age=0, no-store, no-cache, must-reva
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 32 62 31 63 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 4a 75 73 74 20 61 20 6d 6f 6d 65 6e 74 2e 2e 2e 3c 2f 74 69 74 6c 65 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 45 64 67 65 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6e 6f 69 6e 64 65 78 2c 6e 6f 66 6f 6c 6c 6f 77 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d Data Ascii: 2b1c<!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta name="robots" content="noindex,nofollow"><meta name=
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 75 4d 7a 67 34 4c 6a 51 77 4e 79 34 7a 4f 44 6b 75 4e 44 41 33 4c 6a 6b 35 4e 43 41 77 49 43 34 31 4f 54 59 74 4c 6a 51 77 4e 79 34 35 4f 44 51 74 4c 6a 4d 35 4e 79 34 7a 4f 53 30 78 4c 6a 41 31 4e 79 34 7a 4f 44 6b 74 4c 6a 59 31 49 44 41 74 4d 53 34 77 4e 54 59 74 4c 6a 4d 34 4f 53 30 75 4d 7a 6b 34 4c 53 34 7a 4f 44 6b 74 4c 6a 4d 35 4f 43 30 75 4f 54 67 30 49 44 41 74 4c 6a 55 35 4e 79 34 7a 4f 54 67 74 4c 6a 6b 34 4e 53 34 30 4d 44 59 74 4c 6a 4d 35 4e 79 41 78 4c 6a 41 31 4e 69 30 75 4d 7a 6b 33 49 69 38 2b 50 43 39 7a 64 6d 63 2b 29 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 72 65 70 65 61 74 3a 6e 6f 2d 72 65 70 65 61 74 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 73 69 7a 65 3a 63 6f 6e 74 61 69 6e 3b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 33 34 70 78 7d 40 6d Data Ascii: uMzg4LjQwNy4zODkuNDA3Ljk5NCAwIC41OTYtLjQwNy45ODQtLjM5Ny4zOS0xLjA1Ny4zODktLjY1IDAtMS4wNTYtLjM4OS0uMzk4LS4zODktLjM5OC0uOTg0IDAtLjU5Ny4zOTgtLjk4NS40MDYtLjM5NyAxLjA1Ni0uMzk3Ii8+PC9zdmc+);background-repeat:no-repeat;background-size:contain;padding-left:34px}@m
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 5f 4a 39 4b 45 65 77 77 32 7a 77 4c 6e 35 31 4f 72 34 70 49 75 38 5a 73 52 4e 4b 41 71 45 79 4d 2d 31 37 32 38 38 39 39 31 33 31 2d 31 2e 31 2e 31 2e 31 2d 74 53 50 75 53 39 54 61 57 33 42 74 52 31 74 37 4d 53 7a 42 72 46 2e 64 6e 7a 72 70 70 44 5a 61 67 6d 77 62 70 52 6f 74 34 32 42 76 6d 44 74 61 4a 38 33 6b 2e 6a 34 52 79 67 33 76 77 44 56 32 37 71 73 48 58 6b 58 66 44 6d 79 78 31 64 53 48 59 4e 78 70 49 39 67 64 55 50 77 4e 67 73 6c 69 64 51 30 31 4a 34 52 6b 45 65 41 55 48 65 42 67 50 59 70 77 54 30 4c 70 64 66 30 71 38 36 6f 6f 57 42 67 62 58 67 59 30 42 56 4e 48 44 71 79 4c 74 4e 6e 7a 70 64 30 58 74 65 7a 73 4e 72 73 31 31 52 78 41 4b 58 74 56 52 31 33 50 45 47 4d 56 72 61 41 56 4b 42 50 78 6d 4d 64 6e 4f 53 75 7a 36 76 54 44 67 4b 61 68 6d 64 4c Data Ascii: _J9KEeww2zwLn51Or4pIu8ZsRNKAqEyM-1728899131-1.1.1.1-tSPuS9TaW3BtR1t7MSzBrF.dnzrppDZagmwbpRot42BvmDtaJ83k.j4Ryg3vwDV27qsHXkXfDmyx1dSHYNxpI9gdUPwNgslidQ01J4RkEeAUHeBgPYpwT0Lpdf0q86ooWBgbXgY0BVNHDqyLtNnzpd0XtezsNrs11RxAKXtVR13PEGMVraAVKBPxmMdnOSuz6vTDgKahmdL
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 65 79 77 45 49 6d 36 4b 5a 5a 5a 39 73 43 72 6a 4c 77 35 4b 2e 36 38 43 6d 41 4d 42 37 65 6d 79 53 55 49 6a 79 6f 6f 68 53 53 4a 6b 54 67 78 61 68 39 55 75 52 44 43 72 61 69 6b 6e 68 46 30 2e 2e 38 77 4f 49 41 72 4c 4e 32 77 72 43 61 56 79 67 49 39 43 51 33 66 78 37 56 56 35 52 42 71 67 63 53 42 4c 59 4c 47 54 43 59 6d 64 6b 74 70 46 70 77 43 70 30 56 79 52 4d 37 30 74 46 59 59 75 32 71 39 42 62 6e 31 74 58 72 54 6c 54 72 4b 36 61 37 58 4c 57 44 6e 34 51 30 46 72 5a 71 59 38 67 43 61 4f 52 59 6b 51 31 58 44 6e 72 33 49 4c 46 38 54 62 64 39 35 6b 72 69 53 76 62 32 38 6f 75 37 58 42 2e 5f 6d 55 42 52 39 4e 6d 7a 64 4d 43 70 6a 46 79 36 45 48 59 70 64 77 56 64 2e 43 51 75 6a 78 66 36 75 71 69 67 33 73 2e 58 49 34 6a 30 65 38 4f 36 6f 5a 68 74 4b 5f 45 44 72 Data Ascii: eywEIm6KZZZ9sCrjLw5K.68CmAMB7emySUIjyoohSSJkTgxah9UuRDCraiknhF0..8wOIArLN2wrCaVygI9CQ3fx7VV5RBqgcSBLYLGTCYmdktpFpwCp0VyRM70tFYYu2q9Bbn1tXrTlTrK6a7XLWDn4Q0FrZqY8gCaORYkQ1XDnr3ILF8Tbd95kriSvb28ou7XB._mUBR9NmzdMCpjFy6EHYpdwVd.CQujxf6uqig3s.XI4j0e8O6oZhtK_EDr
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 54 37 42 30 4c 77 49 53 6f 63 42 31 5a 33 4b 6c 78 78 76 71 73 37 50 52 44 44 41 50 79 76 44 64 36 71 6e 53 57 62 67 77 7a 2e 34 73 5f 76 73 75 64 67 36 34 56 65 44 66 74 70 6b 31 62 4d 47 35 6d 2e 48 6b 6d 7a 63 39 46 65 71 6d 67 51 4d 6f 36 67 77 2e 45 33 36 50 54 51 53 30 39 4e 5f 45 5f 53 45 75 49 48 7a 63 6e 36 49 39 6a 6b 31 6f 76 68 65 2e 4f 63 56 51 71 47 70 39 67 33 4c 55 57 48 65 65 58 2e 38 31 75 68 35 70 72 49 2e 68 34 79 71 53 73 46 6c 7a 50 42 33 61 6d 70 35 7a 4d 38 56 53 7a 73 59 6c 72 36 2e 50 59 22 2c 6d 64 72 64 3a 20 22 66 66 73 50 54 4a 58 6e 63 73 49 47 5a 36 5f 63 76 55 59 37 68 76 65 45 2e 53 6c 6f 33 6b 53 66 31 75 38 64 36 4e 42 45 75 72 55 2d 31 37 32 38 38 39 39 31 33 31 2d 31 2e 31 2e 31 2e 31 2d 61 64 76 34 4e 4a 6c 4f 31 2e Data Ascii: T7B0LwISocB1Z3Klxxvqs7PRDDAPyvDd6qnSWbgwz.4s_vsudg64VeDftpk1bMG5m.Hkmzc9FeqmgQMo6gw.E36PTQS09N_E_SEuIHzcn6I9jk1ovhe.OcVQqGp9g3LUWHeeX.81uh5prI.h4yqSsFlzPB3amp5zM8VSzsYlr6.PY",mdrd: "ffsPTJXncsIGZ6_cvUY7hveE.Slo3kSf1u8d6NBEurU-1728899131-1.1.1.1-adv4NJlO1.
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 73 34 75 39 6c 6e 58 62 4f 49 47 52 32 45 55 6c 43 4a 68 4c 46 5a 2e 69 35 6c 38 76 62 6a 69 30 45 49 62 33 74 57 42 7a 5f 48 72 68 45 68 62 4d 55 67 72 4a 2e 31 49 75 50 36 5a 37 6f 66 69 75 64 61 31 79 53 79 4d 4e 63 6b 2e 74 72 63 4a 72 6f 45 68 74 6f 4c 4b 30 6d 52 62 75 44 6b 32 32 35 50 54 54 45 67 6f 6f 67 31 56 34 32 4e 35 75 65 69 33 73 67 45 71 71 36 30 61 47 6f 79 30 37 5f 77 45 6d 63 32 36 64 34 6f 32 75 69 39 4d 4f 34 37 4a 32 43 79 66 49 30 33 4a 76 38 49 62 6c 73 5a 63 74 31 54 67 54 75 37 4f 44 6c 35 4b 7a 53 68 76 30 2e 55 49 6d 47 5a 38 31 6f 39 41 70 49 58 46 61 6c 77 51 43 58 43 56 38 33 34 64 70 71 46 32 49 4e 79 6b 39 4e 68 37 6e 70 4a 58 6e 4d 6c 64 7a 2e 76 57 62 75 33 57 67 4b 6e 72 68 4a 5a 2e 6f 38 51 66 5a 49 35 44 63 77 38 6d Data Ascii: s4u9lnXbOIGR2EUlCJhLFZ.i5l8vbji0EIb3tWBz_HrhEhbMUgrJ.1IuP6Z7ofiuda1ySyMNck.trcJroEhtoLK0mRbuDk225PTTEgoog1V42N5uei3sgEqq60aGoy07_wEmc26d4o2ui9MO47J2CyfI03Jv8IblsZct1TgTu7ODl5KzShv0.UImGZ81o9ApIXFalwQCXCV834dpqF2INyk9Nh7npJXnMldz.vWbu3WgKnrhJZ.o8QfZI5Dcw8m
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 34 74 4a 54 45 63 46 51 68 34 57 56 58 62 42 4a 49 4f 62 66 65 41 77 6d 76 75 73 70 4a 4d 6b 62 74 46 74 38 45 62 76 38 70 4f 59 45 66 41 46 43 38 43 49 4e 75 4a 4c 71 78 66 63 7a 37 57 49 34 67 66 5f 58 4e 70 30 48 6a 51 6e 51 4a 59 36 54 57 54 45 38 46 65 46 7a 63 56 7a 43 75 4b 38 68 6d 67 5f 7a 51 47 4f 2e 77 64 73 51 62 37 51 45 69 71 42 75 39 56 6f 44 79 41 35 58 33 63 51 4f 39 6e 4e 37 49 43 68 42 36 35 50 56 6a 2e 55 46 75 34 44 6f 42 6c 76 52 42 32 46 35 7a 39 75 57 71 32 55 50 49 4e 68 48 6c 4d 50 35 48 38 6d 48 78 33 38 46 4b 58 42 66 71 6c 30 74 56 6f 4e 36 35 6c 6a 50 30 6d 30 4a 37 6b 4d 31 48 57 5a 47 37 43 79 65 46 67 32 78 74 31 6f 79 61 55 48 4a 59 6b 66 42 30 4a 39 31 65 56 4b 70 65 77 62 5a 52 63 33 39 64 46 76 43 4e 56 68 46 63 6a 4a Data Ascii: 4tJTEcFQh4WVXbBJIObfeAwmvuspJMkbtFt8Ebv8pOYEfAFC8CINuJLqxfcz7WI4gf_XNp0HjQnQJY6TWTE8FeFzcVzCuK8hmg_zQGO.wdsQb7QEiqBu9VoDyA5X3cQO9nN7IChB65PVj.UFu4DoBlvRB2F5z9uWq2UPINhHlMP5H8mHx38FKXBfql0tVoN65ljP0m0J7kM1HWZG7CyeFg2xt1oyaUHJYkfB0J91eVKpewbZRc39dFvCNVhFcjJ
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 38 50 63 2b 6b 6a 41 55 54 62 6d 30 4c 72 53 6c 41 77 58 4f 72 49 69 38 35 63 3d 27 2c 7d 7d 3b 76 61 72 20 63 70 6f 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 27 73 63 72 69 70 74 27 29 3b 63 70 6f 2e 73 72 63 20 3d 20 27 2f 63 64 6e 2d 63 67 69 2f 63 68 61 6c 6c 65 6e 67 65 2d 70 6c 61 74 66 6f 72 6d 2f 68 2f 62 2f 6f 72 63 68 65 73 74 72 61 74 65 2f 63 68 6c 5f 70 61 67 65 2f 76 31 3f 72 61 79 3d 38 64 32 36 61 33 31 36 63 62 35 35 38 63 39 63 27 3b 77 69 6e 64 6f 77 2e 5f 63 66 5f 63 68 6c 5f 6f 70 74 2e 63 4f 67 55 48 61 73 68 20 3d 20 6c 6f 63 61 74 69 6f 6e 2e 68 61 73 68 20 3d 3d 3d 20 27 27 20 26 26 20 6c 6f 63 61 74 69 6f 6e 2e 68 72 65 66 2e 69 6e 64 65 78 4f 66 28 27 23 27 29 20 21 3d 3d 20 2d 31 20 3f 20 27 Data Ascii: 8Pc+kjAUTbm0LrSlAwXOrIi85c=',}};var cpo = document.createElement('script');cpo.src = '/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8d26a316cb558c9c';window._cf_chl_opt.cOgUHash = location.hash === '' && location.href.indexOf('#') !== -1 ? '
2024-10-14 09:45:32 UTC	92	IN	Data Raw: 36 66 39 61 32 32 30 32 32 31 33 38 34 38 66 35 62 66 66 39 33 34 35 39 32 34 38 39 65 33 35 31 22 2c 22 62 22 3a 31 7d 27 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0d 0a Data Ascii: 6f9a2202213848f5bff934592489e351","b":1}' crossorigin="anonymous"></script></body></html>

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:32 UTC	1219	OUT	GET /learning/access-management/phishing-attack/ HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-full-version: "117.0.5938.132" sec-ch-ua-arch: "x86" sec-ch-ua-platform: "Windows" sec-ch-ua-platform-version: "10.0.0" sec-ch-ua-model: "" sec-ch-ua-bitness: "64" sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132" Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Referer: https://bdvonline-personasv.pages.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
2024-10-14 09:45:32 UTC	916	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:32 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Cache-Control: public, max-age=0, must-revalidate Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US x-RM: GW X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ALIpl69LOObOjVRel3CklSoQ4wexaFfAiPmAAfzM346J0V7IRpAyW6nxRQrlyyzCg66WhH2Pjdud2mmuBD6qifAT15wy3wovNXpTmHRyMjt0ZRnW6gyaDbOZvICXzNmRnlDdWQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8d26a3177b18c44f-EWR alt-svc: h3=":443"; ma=86400
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 37 66 61 64 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 75 73 22 3e 3c 68 65 61 64 3e 3c 73 63 72 69 70 74 3e 77 69 6e 64 6f 77 2e 72 65 64 77 6f 6f 64 3d 7b 22 63 6f 6e 73 65 6e 74 47 72 6f 75 70 73 22 3a 7b 22 43 30 30 30 31 22 3a 74 72 75 65 2c 22 43 30 30 30 32 22 3a 74 72 75 65 2c 22 43 30 30 30 33 22 3a 74 72 75 65 2c 22 43 30 30 30 34 22 3a 74 72 75 65 7d 2c 22 63 6f 75 6e 74 72 79 22 3a 22 55 53 22 2c 22 63 6f 6c 6f 22 3a 22 45 57 52 22 2c 22 75 73 65 72 22 3a 6e 75 6c 6c 2c 22 72 76 31 22 3a 22 62 68 71 22 2c 22 6c 6f 63 61 6c 65 22 3a 22 65 6e 2d 55 53 22 7d 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a Data Ascii: 7fad<!DOCTYPE html><html lang="en-us"><head><script>window.redwood={"consentGroups":{"C0001":true,"C0002":true,"C0003":true,"C0004":true},"country":"US","colo":"EWR","user":null,"rv1":"bhq","locale":"en-US"}</script> <script type="text/javascript">
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 3d 3d 20 27 77 77 77 2e 63 6c 6f 75 64 66 6c 61 72 65 2d 63 6e 2e 63 6f 6d 27 29 20 7b 0a 20 20 20 20 20 20 69 66 20 28 6c 6f 63 61 6c 53 74 6f 72 61 67 65 2e 67 65 74 49 74 65 6d 28 27 6c 61 6e 67 50 72 65 66 65 72 65 6e 63 65 27 29 29 20 7b 0a 20 20 20 20 20 20 20 20 69 66 20 28 6c 6f 63 61 6c 53 74 6f 72 61 67 65 2e 67 65 74 49 74 65 6d 28 27 6c 61 6e 67 50 72 65 66 65 72 65 6e 63 65 27 29 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 20 21 3d 20 27 65 6e 2d 75 73 27 29 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6f 6e 73 74 20 6c 61 6e 67 50 72 65 66 65 72 65 6e 63 65 20 3d 20 6c 6f 63 61 6c 53 74 6f 72 61 67 65 2e 67 65 74 49 74 65 6d 28 27 6c 61 6e 67 50 72 65 66 65 72 65 6e 63 65 27 29 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 3b 0a 20 20 20 20 20 Data Ascii: == 'www.cloudflare-cn.com') { if (localStorage.getItem('langPreference')) { if (localStorage.getItem('langPreference').toLowerCase() != 'en-us') { const langPreference = localStorage.getItem('langPreference').toLowerCase();
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 68 61 6e 73 2d 63 6e 2c 20 73 77 69 74 63 68 20 74 6f 20 7a 68 2d 63 6e 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6f 6e 73 74 20 72 65 64 69 72 65 63 74 50 61 74 68 20 3d 20 67 65 74 50 61 74 68 46 72 6f 6d 4c 6f 63 61 6c 65 28 6d 61 79 62 65 4c 6f 63 61 6c 65 2c 20 72 65 71 75 65 73 74 65 64 4c 61 6e 67 43 6f 64 65 2c 20 73 70 6c 69 74 50 61 74 68 53 74 72 69 6e 67 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 66 20 28 72 65 64 69 72 65 63 74 50 61 74 68 20 26 26 20 21 69 67 6e 6f 72 65 4c 69 73 74 2e 69 6e 63 6c 75 64 65 73 28 6d 61 79 62 65 4c 6f 63 61 6c 65 29 29 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 70 6c 61 63 65 28 27 68 74 74 70 73 3a 2f 2f 27 20 2b 20 77 69 6e 64 6f 77 2e 6c 6f Data Ascii: hans-cn, switch to zh-cn const redirectPath = getPathFromLocale(maybeLocale, requestedLangCode, splitPathString); if (redirectPath && !ignoreList.includes(maybeLocale)) { window.location.replace('https://' + window.lo
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 76 33 37 2f 32 4f 54 72 43 66 75 4e 42 74 79 77 69 73 69 32 78 66 42 50 56 70 2f 64 35 34 61 38 34 39 34 39 30 39 31 61 65 64 32 31 35 36 30 30 62 34 32 62 62 34 37 65 64 33 65 2f 73 65 63 75 72 69 74 79 2d 6c 63 2e 70 6e 67 22 20 64 61 74 61 2d 67 61 74 73 62 79 2d 68 65 61 64 3d 22 74 72 75 65 22 20 2f 3e 3c 6d 65 74 61 20 69 64 3d 22 74 77 69 74 74 65 72 2d 64 65 73 63 72 69 70 74 69 6f 6e 22 20 6e 61 6d 65 3d 22 74 77 69 74 74 65 72 3a 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 50 68 69 73 68 69 6e 67 20 61 74 74 61 63 6b 73 20 69 6e 76 6f 6c 76 65 64 20 74 72 69 63 6b 69 6e 67 20 61 20 76 69 63 74 69 6d 20 69 6e 74 6f 20 74 61 6b 69 6e 67 20 73 6f 6d 65 20 61 63 74 69 6f 6e 20 74 68 61 74 20 62 65 6e 65 66 69 74 73 20 74 68 65 Data Ascii: v37/2OTrCfuNBtywisi2xfBPVp/d54a84949091aed215600b42bb47ed3e/security-lc.png" data-gatsby-head="true" /><meta id="twitter-description" name="twitter:description" content="Phishing attacks involved tricking a victim into taking some action that benefits the
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 20 6c 69 3e 73 70 61 6e 3e 73 70 61 6e 20 70 3a 6c 61 73 74 2d 63 68 69 6c 64 7b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 30 7d 2e 72 69 63 68 2d 74 65 78 74 2d 72 65 6e 64 65 72 65 72 20 74 61 62 6c 65 20 74 68 20 73 70 61 6e 2e 66 77 37 7b 63 6f 6c 6f 72 3a 23 66 36 33 7d 2e 72 69 63 68 2d 74 65 78 74 2d 72 65 6e 64 65 72 65 72 20 74 61 62 6c 65 20 74 64 20 70 2e 62 6c 61 63 6b 2e 66 33 7b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 30 3b 70 61 64 64 69 6e 67 3a 32 65 6d 20 30 7d 40 6d 65 64 69 61 20 73 63 72 65 65 6e 20 61 6e 64 20 28 6d 69 6e 2d 77 69 64 74 68 3a 31 30 30 30 70 78 29 7b 2e 73 74 69 63 6b 79 2d 72 69 63 68 2d 74 65 78 74 2d 72 65 6e 64 65 72 65 72 7b 6d 61 78 2d 68 65 69 67 68 74 3a 37 30 30 70 78 3b 6f 76 65 72 66 6c 6f 77 2d 79 3a 73 Data Ascii: li>span>span p:last-child{margin-bottom:0}.rich-text-renderer table th span.fw7{color:#f63}.rich-text-renderer table td p.black.f3{margin-bottom:0;padding:2em 0}@media screen and (min-width:1000px){.sticky-rich-text-renderer{max-height:700px;overflow-y:s
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 72 65 2d 63 61 72 64 20 2e 6f 6c 2d 74 65 78 74 7b 70 61 64 64 69 6e 67 3a 32 35 70 78 7d 2e 66 65 61 74 75 72 65 2d 63 61 72 64 20 2e 6f 6c 2d 74 65 78 74 5f 5f 73 75 70 7b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 32 72 65 6d 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 35 70 78 7d 2e 66 65 61 74 75 72 65 2d 63 61 72 64 20 2e 6f 6c 2d 74 65 78 74 5f 5f 74 65 78 74 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 2e 35 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 32 2e 34 72 65 6d 7d 7d 2e 65 6c 65 6d 65 6e 74 2d 72 65 73 6f 75 72 63 65 2d 63 61 72 64 2d 73 68 61 64 6f 77 7b 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 34 70 78 20 31 30 70 78 20 23 30 30 30 30 30 30 31 66 7d 2e 65 6c 65 6d 65 6e 74 2d 72 65 73 6f 75 72 63 65 2d 63 61 72 64 7b 68 65 69 67 68 74 3a 31 30 30 Data Ascii: re-card .ol-text{padding:25px}.feature-card .ol-text__sup{font-size:1.2rem;margin-bottom:15px}.feature-card .ol-text__text{font-size:2.5rem;line-height:2.4rem}}.element-resource-card-shadow{box-shadow:0 4px 10px #0000001f}.element-resource-card{height:100
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 31 30 30 31 70 78 29 7b 2e 62 6c 61 64 65 2d 63 61 72 64 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 70 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 73 69 7a 65 3a 61 75 74 6f 7d 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 31 30 30 30 70 78 29 7b 2e 62 6c 61 64 65 2d 63 61 72 64 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 70 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 73 69 7a 65 3a 63 6f 76 65 72 7d 7d 2e 62 6c 61 64 65 2d 63 61 72 64 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 70 65 72 20 2e 73 6c 69 64 65 7b 6d 61 72 67 69 6e 3a 32 34 70 78 21 69 6d 70 6f 72 74 61 6e 74 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 37 35 30 70 78 29 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 31 30 30 31 70 78 Data Ascii: nd (max-width:1001px){.blade-card-carousel-wrapper{background-size:auto}}@media (min-width:1000px){.blade-card-carousel-wrapper{background-size:cover}}.blade-card-carousel-wrapper .slide{margin:24px!important}@media (min-width:750px) and (max-width:1001px
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 3b 66 6c 65 78 2d 77 72 61 70 3a 6e 6f 77 72 61 70 3b 6f 72 64 65 72 3a 31 7d 2e 62 6c 61 64 65 2d 66 75 6c 6c 2d 77 69 64 74 68 2d 68 65 72 6f 2d 62 61 63 6b 67 72 6f 75 6e 64 2d 69 6d 61 67 65 2d 77 72 61 70 70 65 72 20 2e 66 65 61 74 75 72 65 73 2d 77 72 61 70 70 65 72 3e 64 69 76 7b 6d 61 78 2d 77 69 64 74 68 3a 6e 6f 6e 65 3b 70 61 64 64 69 6e 67 2d 74 6f 70 3a 34 38 70 78 7d 2e 62 6c 61 64 65 2d 66 75 6c 6c 2d 77 69 64 74 68 2d 68 65 72 6f 2d 62 61 63 6b 67 72 6f 75 6e 64 2d 69 6d 61 67 65 2d 77 72 61 70 70 65 72 20 2e 66 65 61 74 75 72 65 73 2d 69 6d 61 67 65 2d 77 72 61 70 70 65 72 7b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 2d 72 Data Ascii: ex-direction:column;flex-wrap:nowrap;order:1}.blade-full-width-hero-background-image-wrapper .features-wrapper>div{max-width:none;padding-top:48px}.blade-full-width-hero-background-image-wrapper .features-image-wrapper{display:flex;flex-direction:column-r
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 31 36 70 78 3b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 36 30 30 7d 2e 74 61 62 2d 61 72 72 6f 77 7b 63 6f 6c 6f 72 3a 23 66 36 33 3b 66 6c 6f 61 74 3a 6c 65 66 74 7d 2e 68 65 72 6f 2d 73 65 63 74 69 6f 6e 2d 74 6f 70 7b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 36 30 70 78 3b 6d 69 6e 2d 68 65 69 67 68 74 3a 34 30 30 70 78 7d 2e 68 65 72 6f 2d 73 65 63 74 69 6f 6e 2d 74 6f 70 20 2e 72 6f 77 7b 6d 61 78 2d 68 65 69 67 68 74 3a 34 30 30 70 78 7d 2e 68 65 72 6f 2d 6d 65 64 69 61 7b 68 65 69 67 68 74 3a 33 30 38 70 78 3b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 7d 2e 68 65 72 6f 2d 6d 65 64 69 61 20 69 6d 67 2c 2e 68 65 72 6f 2d 6d 65 64 69 61 20 76 69 64 65 6f 7b 68 65 69 67 68 74 3a 31 30 30 25 3b 77 69 Data Ascii: 16px;font-weight:600}.tab-arrow{color:#f63;float:left}.hero-section-top{margin-bottom:60px;min-height:400px}.hero-section-top .row{max-height:400px}.hero-media{height:308px;overflow:hidden;position:relative}.hero-media img,.hero-media video{height:100%;wi
2024-10-14 09:45:32 UTC	1369	IN	Data Raw: 2e 6c 68 2d 63 6f 70 79 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 69 6e 69 74 69 61 6c 21 69 6d 70 6f 72 74 61 6e 74 3b 63 6f 6c 6f 72 3a 23 66 36 33 21 69 6d 70 6f 72 74 61 6e 74 3b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 35 30 30 21 69 6d 70 6f 72 74 61 6e 74 3b 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 32 34 70 78 3b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 30 21 69 6d 70 6f 72 74 61 6e 74 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 31 30 30 30 70 78 29 7b 2e 68 65 72 6f 2d 70 72 6f 6d 6f 74 69 6f 6e 61 6c 2d 62 61 6e 6e 65 72 2d 77 72 61 70 70 65 72 20 2e 6c 65 61 72 6e 2d 6d 6f 72 65 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 32 34 70 78 7d 7d 2e 68 65 72 6f 2d 70 72 6f 6d 6f 74 69 6f 6e 61 6c 2d 62 61 6e 6e 65 72 2d 77 72 61 70 70 65 Data Ascii: .lh-copy{background-color:initial!important;color:#f63!important;font-weight:500!important;margin-right:24px;padding-right:0!important}@media (min-width:1000px){.hero-promotional-banner-wrapper .learn-more{margin-left:24px}}.hero-promotional-banner-wrappe

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:32 UTC	553	OUT	OPTIONS /report/v4?s=NTn43gh%2BA%2FQE19TFzjdAzA7lacenls2metwRgfo7F3ZuWlLCv2OgZp4vYTE0mhUt7GMc0a2ygpm%2F%2B08cwmNJcYtJcVOk5McJriTWgqoVIo%2FwFN3CAwYLwF%2B5aDf4P4DDdis%2Fbg%3D%3D HTTP/1.1 Host: a.nel.cloudflare.com Connection: keep-alive Origin: https://www.cloudflare.com Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:45:32 UTC	336	IN	HTTP/1.1 200 OK Content-Length: 0 access-control-max-age: 86400 access-control-allow-methods: POST, OPTIONS access-control-allow-origin: * access-control-allow-headers: content-type, content-length date: Mon, 14 Oct 2024 09:45:32 GMT Via: 1.1 google Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report http://bdvonline-personasv.pages.dev/

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Dropped Files

HTML

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 120

Chrome Cache Entry: 121

Chrome Cache Entry: 122

Chrome Cache Entry: 123

Chrome Cache Entry: 124

Chrome Cache Entry: 125

Chrome Cache Entry: 126

Chrome Cache Entry: 127

Chrome Cache Entry: 128

Chrome Cache Entry: 129

Chrome Cache Entry: 130

Chrome Cache Entry: 131

Chrome Cache Entry: 132

Chrome Cache Entry: 133

Chrome Cache Entry: 134

Chrome Cache Entry: 135

Chrome Cache Entry: 136

Chrome Cache Entry: 137

Chrome Cache Entry: 138

Chrome Cache Entry: 139

Chrome Cache Entry: 140

Chrome Cache Entry: 141

Chrome Cache Entry: 142

Chrome Cache Entry: 143

Chrome Cache Entry: 144

Windows Analysis Report
http://bdvonline-personasv.pages.dev/

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:33 UTC	492	OUT	POST /report/v4?s=NTn43gh%2BA%2FQE19TFzjdAzA7lacenls2metwRgfo7F3ZuWlLCv2OgZp4vYTE0mhUt7GMc0a2ygpm%2F%2B08cwmNJcYtJcVOk5McJriTWgqoVIo%2FwFN3CAwYLwF%2B5aDf4P4DDdis%2Fbg%3D%3D HTTP/1.1 Host: a.nel.cloudflare.com Connection: keep-alive Content-Length: 469 Content-Type: application/reports+json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:45:33 UTC	469	OUT	Data Raw: 5b 7b 22 61 67 65 22 3a 31 2c 22 62 6f 64 79 22 3a 7b 22 65 6c 61 70 73 65 64 5f 74 69 6d 65 22 3a 36 31 34 2c 22 6d 65 74 68 6f 64 22 3a 22 47 45 54 22 2c 22 70 68 61 73 65 22 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 22 2c 22 70 72 6f 74 6f 63 6f 6c 22 3a 22 68 74 74 70 2f 31 2e 31 22 2c 22 72 65 66 65 72 72 65 72 22 3a 22 68 74 74 70 73 3a 2f 2f 62 64 76 6f 6e 6c 69 6e 65 2d 70 65 72 73 6f 6e 61 73 76 2e 70 61 67 65 73 2e 64 65 76 2f 22 2c 22 73 61 6d 70 6c 69 6e 67 5f 66 72 61 63 74 69 6f 6e 22 3a 31 2e 30 2c 22 73 65 72 76 65 72 5f 69 70 22 3a 22 31 30 34 2e 31 36 2e 31 32 34 2e 39 36 22 2c 22 73 74 61 74 75 73 5f 63 6f 64 65 22 3a 34 30 33 2c 22 74 79 70 65 22 3a 22 68 74 74 70 2e 65 72 72 6f 72 22 7d 2c 22 74 79 70 65 22 3a 22 6e 65 74 77 6f 72 6b 2d Data Ascii: [{"age":1,"body":{"elapsed_time":614,"method":"GET","phase":"application","protocol":"http/1.1","referrer":"https://bdvonline-personasv.pages.dev/","sampling_fraction":1.0,"server_ip":"104.16.124.96","status_code":403,"type":"http.error"},"type":"network-
2024-10-14 09:45:33 UTC	168	IN	HTTP/1.1 200 OK Content-Length: 0 date: Mon, 14 Oct 2024 09:45:32 GMT Via: 1.1 google Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:45 UTC	1234	OUT	GET /plans/enterprise/contact/ HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-full-version: "117.0.5938.132" sec-ch-ua-arch: "x86" sec-ch-ua-platform: "Windows" sec-ch-ua-platform-version: "10.0.0" sec-ch-ua-model: "" sec-ch-ua-bitness: "64" sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Referer: https://www.cloudflare.com/learning/access-management/phishing-attack/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
2024-10-14 09:45:45 UTC	924	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:45 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Cache-Control: public, max-age=0, must-revalidate Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US x-RM: GW X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y1Pio0zWgSpb586NyzBuzueqoNWcH6cFiXfwUegvMQpH4rQvByduFuaDH%2F%2F%2FamHljjYT0NOrcuxAdC06Zdea01kyXGOUt3Kds%2BNBndfBMDAQMG2kIrMVdb2ROfjPb4xaJ8HaQQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8d26a36d0c4443da-EWR alt-svc: h3=":443"; ma=86400
2024-10-14 09:45:45 UTC	445	IN	Data Raw: 33 63 31 38 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 75 73 22 3e 3c 68 65 61 64 3e 3c 73 63 72 69 70 74 3e 77 69 6e 64 6f 77 2e 72 65 64 77 6f 6f 64 3d 7b 22 63 6f 6e 73 65 6e 74 47 72 6f 75 70 73 22 3a 7b 22 43 30 30 30 31 22 3a 74 72 75 65 2c 22 43 30 30 30 32 22 3a 74 72 75 65 2c 22 43 30 30 30 33 22 3a 74 72 75 65 2c 22 43 30 30 30 34 22 3a 74 72 75 65 7d 2c 22 63 6f 75 6e 74 72 79 22 3a 22 55 53 22 2c 22 63 6f 6c 6f 22 3a 22 45 57 52 22 2c 22 75 73 65 72 22 3a 6e 75 6c 6c 2c 22 72 76 31 22 3a 22 62 68 71 22 2c 22 6c 6f 63 61 6c 65 22 3a 22 65 6e 2d 55 53 22 7d 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a Data Ascii: 3c18<!DOCTYPE html><html lang="en-us"><head><script>window.redwood={"consentGroups":{"C0001":true,"C0002":true,"C0003":true,"C0004":true},"country":"US","colo":"EWR","user":null,"rv1":"bhq","locale":"en-US"}</script> <script type="text/javascript">
2024-10-14 09:45:45 UTC	1369	IN	Data Raw: 27 65 6e 2d 69 6e 27 2c 0a 20 20 20 20 20 20 27 65 6e 2d 75 73 27 2c 0a 20 20 20 20 20 20 27 64 65 2d 64 65 27 2c 0a 20 20 20 20 20 20 27 65 73 2d 65 73 27 2c 0a 20 20 20 20 20 20 27 66 72 2d 66 72 27 2c 0a 20 20 20 20 20 20 27 69 74 2d 69 74 27 2c 0a 20 20 20 20 20 20 27 6a 61 2d 6a 70 27 2c 0a 20 20 20 20 20 20 27 6b 6f 2d 6b 72 27 2c 0a 09 09 09 27 70 6c 2d 70 6c 27 2c 0a 20 20 20 20 20 20 27 70 74 2d 62 72 27 2c 0a 20 20 20 20 20 20 27 72 75 2d 72 75 27 2c 0a 20 20 20 20 20 20 27 7a 68 2d 74 77 27 2c 0a 20 20 20 20 20 20 27 7a 68 2d 63 6e 27 2c 0a 20 20 20 20 20 20 27 7a 68 2d 68 61 6e 73 2d 63 6e 27 2c 0a 20 20 20 20 5d 3b 0a 20 20 20 20 63 6f 6e 73 74 20 6f 72 70 68 61 6e 4c 6f 63 61 6c 65 73 20 3d 20 5b 0a 20 20 20 20 20 20 27 65 73 2d 6c 61 27 2c Data Ascii: 'en-in', 'en-us', 'de-de', 'es-es', 'fr-fr', 'it-it', 'ja-jp', 'ko-kr','pl-pl', 'pt-br', 'ru-ru', 'zh-tw', 'zh-cn', 'zh-hans-cn', ]; const orphanLocales = [ 'es-la',
2024-10-14 09:45:45 UTC	1369	IN	Data Raw: 20 26 26 20 21 6f 72 70 68 61 6e 4c 6f 63 61 6c 65 73 2e 69 6e 63 6c 75 64 65 73 28 63 75 72 72 65 6e 74 4c 61 6e 67 29 20 26 26 20 21 69 67 6e 6f 72 65 4c 69 73 74 2e 69 6e 63 6c 75 64 65 73 28 73 70 6c 69 74 50 61 74 68 5b 30 5d 29 29 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 73 70 6c 69 74 50 61 74 68 2e 73 70 6c 69 63 65 28 30 2c 20 30 2c 20 6c 61 6e 67 50 72 65 66 65 72 65 6e 63 65 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6f 6e 73 74 20 6e 65 77 55 72 6c 20 3d 20 27 68 74 74 70 73 3a 2f 2f 27 20 2b 20 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 68 6f 73 74 6e 61 6d 65 20 2b 20 27 2f 27 20 2b 20 73 70 6c 69 74 50 61 74 68 2e 6a 6f 69 6e 28 27 2f 27 29 20 2b 20 27 2f 27 20 2b 20 77 69 Data Ascii: && !orphanLocales.includes(currentLang) && !ignoreList.includes(splitPath[0])) { splitPath.splice(0, 0, langPreference.toLowerCase()); const newUrl = 'https://' + window.location.hostname + '/' + splitPath.join('/') + '/' + wi
2024-10-14 09:45:45 UTC	1369	IN	Data Raw: 22 69 65 3d 65 64 67 65 22 20 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 20 2f 3e 3c 6d 65 74 61 20 69 64 3d 22 6d 65 74 61 2d 74 69 74 6c 65 22 20 6e 61 6d 65 3d 22 74 69 74 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 43 6f 6e 74 61 63 74 20 45 6e 74 65 72 70 72 69 73 65 20 53 61 6c 65 73 20 7c 20 53 70 65 61 6b 20 74 6f 20 61 6e 20 45 78 70 65 72 74 20 7c 20 43 6c 6f 75 64 66 6c 61 72 65 22 20 64 61 74 61 2d 67 61 74 73 62 79 2d 68 65 61 64 3d 22 74 72 75 65 22 20 2f 3e 3c 6d 65 74 61 20 69 64 3d 22 6d 65 74 61 2d 64 65 73 63 72 69 70 74 69 6f 6e 22 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 Data Ascii: "ie=edge" /><meta name="viewport" content="width=device-width, initial-scale=1" /><meta id="meta-title" name="title" content="Contact Enterprise Sales \| Speak to an Expert \| Cloudflare" data-gatsby-head="true" /><meta id="meta-description" name="descripti
2024-10-14 09:45:45 UTC	1369	IN	Data Raw: 69 64 3d 22 6f 67 2d 74 69 74 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 43 6f 6e 74 61 63 74 20 45 6e 74 65 72 70 72 69 73 65 20 53 61 6c 65 73 20 7c 20 53 70 65 61 6b 20 74 6f 20 61 6e 20 45 78 70 65 72 74 22 20 64 61 74 61 2d 67 61 74 73 62 79 2d 68 65 61 64 3d 22 74 72 75 65 22 20 2f 3e 3c 6d 65 74 61 20 69 64 3d 22 6f 67 2d 64 65 73 63 72 69 70 74 69 6f 6e 22 20 70 72 6f 70 65 72 74 79 3d 22 6f 67 3a 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 43 6f 6e 74 61 63 74 20 43 6c 6f 75 64 66 6c 61 72 65 20 65 6e 74 65 72 70 72 69 73 65 20 73 61 6c 65 73 20 74 6f 64 61 79 20 74 6f 20 67 61 69 6e 20 61 63 63 65 73 73 20 74 6f 20 61 64 76 61 6e 63 65 64 20 66 65 61 74 75 72 65 73 2e 20 44 69 73 63 6f 76 65 72 20 74 68 65 20 61 64 76 61 6e 74 Data Ascii: id="og-title" content="Contact Enterprise Sales \| Speak to an Expert" data-gatsby-head="true" /><meta id="og-description" property="og:description" content="Contact Cloudflare enterprise sales today to gain access to advanced features. Discover the advant
2024-10-14 09:45:45 UTC	1369	IN	Data Raw: 73 65 72 2d 73 65 6c 65 63 74 3a 6e 6f 6e 65 3b 75 73 65 72 2d 73 65 6c 65 63 74 3a 6e 6f 6e 65 7d 2e 62 72 2d 63 68 65 63 6b 62 6f 78 20 69 6e 70 75 74 7b 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 7d 2e 62 72 2d 63 68 65 63 6b 62 6f 78 20 69 6e 70 75 74 3a 63 68 65 63 6b 65 64 7e 2e 63 68 65 63 6b 6d 61 72 6b 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 35 31 63 33 3b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 23 30 30 35 31 63 33 7d 2e 62 72 2d 63 68 65 63 6b 62 6f 78 20 69 6e 70 75 74 3a 63 68 65 63 6b 65 64 7e 2e 63 68 65 63 6b 6d 61 72 6b 3a 61 66 74 65 72 7b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 7d 2e 62 72 2d 63 68 65 63 6b 62 6f 78 20 2e 63 68 65 63 6b 6d 61 72 6b 7b 6c 65 66 74 3a 30 3b 74 6f 70 3a 30 7d 2e 62 72 2d 63 68 65 63 6b Data Ascii: ser-select:none;user-select:none}.br-checkbox input{cursor:pointer}.br-checkbox input:checked~.checkmark{background-color:#0051c3;border-color:#0051c3}.br-checkbox input:checked~.checkmark:after{display:block}.br-checkbox .checkmark{left:0;top:0}.br-check
2024-10-14 09:45:45 UTC	1369	IN	Data Raw: 30 30 25 3b 6d 69 6e 2d 68 65 69 67 68 74 3a 69 6e 68 65 72 69 74 7d 2e 65 6c 65 6d 65 6e 74 2d 72 65 73 6f 75 72 63 65 2d 63 61 72 64 20 2e 6c 65 61 72 6e 2d 6d 6f 72 65 7b 61 6c 69 67 6e 2d 73 65 6c 66 3a 66 6c 65 78 2d 73 74 61 72 74 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 34 70 78 3b 6c 65 74 74 65 72 2d 73 70 61 63 69 6e 67 3a 2d 2e 33 32 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 6e 6f 72 6d 61 6c 7d 2e 65 6c 65 6d 65 6e 74 2d 72 65 73 6f 75 72 63 65 2d 63 61 72 64 20 2e 6c 65 61 72 6e 2d 6d 6f 72 65 3a 61 66 74 65 72 7b 63 6f 6e 74 65 6e 74 3a 75 72 6c 28 22 64 61 74 61 3a 69 6d 61 67 65 2f 73 76 67 2b 78 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 2c 25 33 43 73 76 67 20 78 6d 6c 6e 73 3d 27 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f Data Ascii: 00%;min-height:inherit}.element-resource-card .learn-more{align-self:flex-start;font-size:14px;letter-spacing:-.32px;line-height:normal}.element-resource-card .learn-more:after{content:url("data:image/svg+xml;charset=utf-8,%3Csvg xmlns='http://www.w3.org/
2024-10-14 09:45:45 UTC	1369	IN	Data Raw: 6f 72 74 61 6e 74 7d 2e 62 6c 61 64 65 2d 63 61 72 64 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 70 65 72 20 2e 73 6c 69 64 65 3a 66 69 72 73 74 2d 63 68 69 6c 64 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 31 32 70 78 21 69 6d 70 6f 72 74 61 6e 74 7d 7d 2e 62 6c 61 64 65 2d 63 61 72 64 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 70 65 72 20 2e 63 61 72 6f 75 73 65 6c 2d 61 72 72 6f 77 20 73 76 67 7b 68 65 69 67 68 74 3a 31 39 70 78 3b 77 69 64 74 68 3a 31 39 70 78 7d 2e 66 65 61 74 75 72 65 64 2d 63 6f 6d 70 61 6e 79 2d 6c 6f 67 6f 73 7b 72 6f 77 2d 67 61 70 3a 33 32 70 78 7d 40 6d 65 64 69 61 20 73 63 72 65 65 6e 20 61 6e 64 20 28 6d 69 6e 2d 77 69 64 74 68 3a 37 35 30 70 78 29 7b 2e 66 65 61 74 75 72 65 64 2d 63 6f 6d 70 61 6e 79 2d 6c 6f 67 6f 73 7b 72 6f 77 Data Ascii: ortant}.blade-card-carousel-wrapper .slide:first-child{margin-left:12px!important}}.blade-card-carousel-wrapper .carousel-arrow svg{height:19px;width:19px}.featured-company-logos{row-gap:32px}@media screen and (min-width:750px){.featured-company-logos{row
2024-10-14 09:45:45 UTC	1369	IN	Data Raw: 6f 75 6e 64 2d 69 6d 61 67 65 2d 77 72 61 70 70 65 72 20 2e 66 65 61 74 75 72 65 73 2d 69 6d 61 67 65 2d 77 72 61 70 70 65 72 20 2e 66 65 61 74 75 72 65 73 2d 69 6d 61 67 65 7b 6f 72 64 65 72 3a 32 7d 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 33 32 30 30 70 78 29 7b 2e 62 6c 61 64 65 2d 66 75 6c 6c 2d 77 69 64 74 68 2d 68 65 72 6f 2d 77 72 61 70 70 65 72 20 2e 62 6c 61 64 65 2d 66 75 6c 6c 2d 77 69 64 74 68 2d 68 65 72 6f 2d 62 61 63 6b 67 72 6f 75 6e 64 2d 69 6d 61 67 65 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 73 69 7a 65 3a 63 6f 76 65 72 21 69 6d 70 6f 72 74 61 6e 74 7d 7d 2e 62 6c 61 64 65 2d 66 75 6c 6c 2d 77 69 64 74 68 2d 68 65 72 6f 2d 77 72 61 70 70 65 72 20 2e 74 65 72 74 69 61 72 79 2d 62 75 74 74 6f 6e 2d 77 72 61 70 70 65 72 7b 64 Data Ascii: ound-image-wrapper .features-image-wrapper .features-image{order:2}}@media (min-width:3200px){.blade-full-width-hero-wrapper .blade-full-width-hero-background-image{background-size:cover!important}}.blade-full-width-hero-wrapper .tertiary-button-wrapper{d
2024-10-14 09:45:45 UTC	1369	IN	Data Raw: 6f 74 69 6f 6e 61 6c 2d 62 61 6e 6e 65 72 2d 77 72 61 70 70 65 72 7b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 38 70 78 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 34 70 78 20 31 32 70 78 20 30 20 23 30 30 30 30 30 30 31 66 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 7d 2e 68 65 72 6f 2d 70 72 6f 6d 6f 74 69 6f 6e 61 6c 2d 62 61 6e 6e 65 72 2d 77 72 61 70 70 65 72 3a 61 66 74 65 72 2c 2e 68 65 72 6f 2d 70 72 6f 6d 6f 74 69 6f 6e 61 6c 2d 62 61 6e 6e 65 72 2d 77 72 61 70 70 65 72 3a 62 65 66 6f 72 65 7b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 38 70 78 3b 63 6f 6e 74 65 6e 74 3a 22 22 3b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 68 65 69 67 68 74 3a 31 30 30 25 3b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 77 69 64 74 68 3a 31 31 35 70 Data Ascii: otional-banner-wrapper{border-radius:8px;box-shadow:0 4px 12px 0 #0000001f;position:relative}.hero-promotional-banner-wrapper:after,.hero-promotional-banner-wrapper:before{border-radius:8px;content:"";display:block;height:100%;position:absolute;width:115p

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:46 UTC	1088	OUT	GET /img/privacyoptions.svg HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-arch: "x86" sec-ch-ua-full-version: "117.0.5938.132" sec-ch-ua-platform-version: "10.0.0" sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132" sec-ch-ua-bitness: "64" sec-ch-ua-model: "" sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.cloudflare.com/plans/enterprise/contact/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
2024-10-14 09:45:46 UTC	900	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:46 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: close ETag: W/"5a8d3dae7c1ddd64826cea94a93139d4" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xY%2FNr%2FGRE33XGBq2sTxi1f1R7ApTS%2FvCXHnWya5XOXOyAfQHqWC7yuFhc91LjIJFwhellXu22UgcjrTKUFSgMuHW3RrfiRcczO9wDU7JcN2zdRn%2FOfXPSMPCs0%2B%2BGBvghOMlYQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8d26a370fac74231-EWR alt-svc: h3=":443"; ma=86400
2024-10-14 09:45:46 UTC	469	IN	Data Raw: 37 30 31 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0a 3c 21 2d 2d 20 47 65 6e 65 72 61 74 6f 72 3a 20 41 64 6f 62 65 20 49 6c 6c 75 73 74 72 61 74 6f 72 20 32 34 2e 33 2e 30 2c 20 53 56 47 20 45 78 70 6f 72 74 20 50 6c 75 67 2d 49 6e 20 2e 20 53 56 47 20 56 65 72 73 69 6f 6e 3a 20 36 2e 30 30 20 42 75 69 6c 64 20 30 29 20 20 2d 2d 3e 0a 3c 73 76 67 20 76 65 72 73 69 6f 6e 3d 22 31 2e 31 22 20 69 64 3d 22 4c 61 79 65 72 5f 31 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 78 6d 6c 6e 73 3a 78 6c 69 6e 6b 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 6c 69 6e 6b 22 20 78 3d 22 30 70 78 Data Ascii: 701<?xml version="1.0" encoding="utf-8"?>... Generator: Adobe Illustrator 24.3.0, SVG Export Plug-In . SVG Version: 6.00 Build 0) --><svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px
2024-10-14 09:45:46 UTC	1331	IN	Data Raw: 6f 64 64 3b 66 69 6c 6c 3a 23 30 30 36 36 46 46 3b 7d 0a 09 2e 73 74 32 7b 66 69 6c 6c 3a 23 46 46 46 46 46 46 3b 7d 0a 09 2e 73 74 33 7b 66 69 6c 6c 3a 23 30 30 36 36 46 46 3b 7d 0a 3c 2f 73 74 79 6c 65 3e 0a 3c 67 3e 0a 09 3c 67 20 69 64 3d 22 66 69 6e 61 6c 2d 2d 2d 64 65 63 2e 31 31 2d 32 30 32 30 5f 31 5f 22 3e 0a 09 09 3c 67 20 69 64 3d 22 5f 78 33 30 5f 32 30 38 2d 6f 75 72 2d 74 6f 67 67 6c 65 5f 32 5f 22 20 74 72 61 6e 73 66 6f 72 6d 3d 22 74 72 61 6e 73 6c 61 74 65 28 2d 31 32 37 35 2e 30 30 30 30 30 30 2c 20 2d 32 30 30 2e 30 30 30 30 30 30 29 22 3e 0a 09 09 09 3c 67 20 69 64 3d 22 46 69 6e 61 6c 2d 43 6f 70 79 2d 32 5f 32 5f 22 20 74 72 61 6e 73 66 6f 72 6d 3d 22 74 72 61 6e 73 6c 61 74 65 28 31 32 37 35 2e 30 30 30 30 30 30 2c 20 32 30 30 2e Data Ascii: odd;fill:#0066FF;}.st2{fill:#FFFFFF;}.st3{fill:#0066FF;}</style><g><g id="final---dec.11-2020_1_"><g id="_x30_208-our-toggle_2_" transform="translate(-1275.000000, -200.000000)"><g id="Final-Copy-2_2_" transform="translate(1275.000000, 200.
2024-10-14 09:45:46 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:46 UTC	1069	OUT	GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-arch: "x86" sec-ch-ua-full-version: "117.0.5938.132" sec-ch-ua-platform-version: "10.0.0" sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132" sec-ch-ua-bitness: "64" sec-ch-ua-model: "" sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/plans/enterprise/contact/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
2024-10-14 09:45:46 UTC	760	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:46 GMT Content-Type: application/javascript Content-Length: 12332 Connection: close Last-Modified: Tue, 08 Oct 2024 16:37:40 GMT ETag: "67055fd4-302c" Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WeIrIyyarJCjmUwt2KK7uo6DYh%2FsJQmrnIzwwUfPwiqlRXyCrlvXM67dvqT4wiV8N1OVtyij2qKYpK1jYz0oSUA8%2BDfKeesKv0ekmIJbGDNVavKG%2Fz25dm4vaAnIUGTL%2FbsUxA%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8d26a3744d47429a-EWR X-Frame-Options: DENY X-Content-Type-Options: nosniff Expires: Wed, 16 Oct 2024 09:45:46 GMT Cache-Control: max-age=172800 Cache-Control: public Accept-Ranges: bytes
2024-10-14 09:45:46 UTC	609	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 74 28 29 7b 72 65 74 75 72 6e 22 63 66 2d 6d 61 72 6b 65 72 2d 22 2b 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2e 74 6f 53 74 72 69 6e 67 28 29 2e 73 6c 69 63 65 28 32 29 7d 66 75 6e 63 74 69 6f 6e 20 65 28 29 7b 66 6f 72 28 76 61 72 20 74 3d 5b 5d 2c 65 3d 30 3b 65 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 65 2b 2b 29 74 5b 65 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 65 5d 3b 28 6e 3d 63 6f 6e 73 6f 6c 65 2e 77 61 72 6e 7c 7c 63 6f 6e 73 6f 6c 65 2e 6c 6f 67 29 2e 63 61 6c 6c 2e 61 70 70 6c 79 28 6e 2c 5b 63 6f 6e 73 6f 6c 65 2c 22 5b 52 4f 43 4b 45 54 20 4c 4f 41 44 45 52 5d 20 22 5d 2e 63 6f 6e 63 61 74 28 74 29 29 3b 76 61 72 20 6e 7d 66 75 6e 63 Data Ascii: !function(){"use strict";function t(){return"cf-marker-"+Math.random().toString().slice(2)}function e(){for(var t=[],e=0;e<arguments.length;e++)t[e]=arguments[e];(n=console.warn\|\|console.log).call.apply(n,[console,"[ROCKET LOADER] "].concat(t));var n}func
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 6e 20 63 28 74 29 7b 72 65 74 75 72 6e 20 61 28 74 2c 22 22 29 7d 66 75 6e 63 74 69 6f 6e 20 73 28 74 2c 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 69 66 28 65 28 29 2c 74 29 72 65 74 75 72 6e 20 74 2e 63 61 6c 6c 28 74 68 69 73 2c 6e 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 75 28 74 2c 65 29 7b 74 2e 6f 6e 6c 6f 61 64 3d 73 28 74 2e 6f 6e 6c 6f 61 64 2c 65 29 2c 74 2e 6f 6e 65 72 72 6f 72 3d 73 28 74 2e 6f 6e 65 72 72 6f 72 2c 65 29 7d 66 75 6e 63 74 69 6f 6e 20 70 28 74 29 7b 76 61 72 20 65 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 4e 53 28 74 2e 6e 61 6d 65 73 70 61 63 65 55 52 49 2c 22 73 63 72 69 70 74 22 29 3b 65 2e 61 73 79 6e 63 3d 74 2e 68 61 73 41 74 74 72 69 62 75 74 65 28 22 61 73 79 6e 63 22 29 2c Data Ascii: n c(t){return a(t,"")}function s(t,e){return function(n){if(e(),t)return t.call(this,n)}}function u(t,e){t.onload=s(t.onload,e),t.onerror=s(t.onerror,e)}function p(t){var e=document.createElementNS(t.namespaceURI,"script");e.async=t.hasAttribute("async"),
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 3b 69 66 28 21 65 29 72 65 74 75 72 6e 20 6e 75 6c 6c 3b 76 61 72 20 6e 3d 65 2e 73 70 6c 69 74 28 54 29 3b 72 65 74 75 72 6e 7b 6e 6f 6e 63 65 3a 6e 5b 30 5d 2c 68 61 6e 64 6c 65 72 50 72 65 66 69 78 4c 65 6e 67 74 68 3a 2b 6e 5b 31 5d 2c 62 61 69 6c 6f 75 74 3a 21 74 2e 68 61 73 41 74 74 72 69 62 75 74 65 28 22 64 65 66 65 72 22 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 67 28 74 29 7b 76 61 72 20 65 3d 42 2b 74 2e 6e 6f 6e 63 65 3b 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 2e 63 61 6c 6c 28 64 6f 63 75 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 5b 22 2b 65 2b 22 5d 22 29 2c 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 6e 2e 72 65 6d 6f 76 65 41 74 74 72 69 62 75 74 65 28 65 29 2c 41 72 72 61 79 2e 70 72 6f 74 6f 74 Data Ascii: ;if(!e)return null;var n=e.split(T);return{nonce:n[0],handlerPrefixLength:+n[1],bailout:!t.hasAttribute("defer")}}function g(t){var e=B+t.nonce;Array.prototype.forEach.call(document.querySelectorAll("["+e+"]"),function(n){n.removeAttribute(e),Array.protot
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 30 22 3a 21 30 2c 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 31 2e 31 22 3a 21 30 2c 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 31 2e 32 22 3a 21 30 2c 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 31 2e 33 22 3a 21 30 2c 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 31 2e 34 22 3a 21 30 2c 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 31 2e 35 22 3a 21 30 2c 22 74 65 78 74 2f 6a 73 63 72 69 70 74 22 3a 21 30 2c 22 74 65 78 74 2f 6c 69 76 65 73 63 72 69 70 74 22 3a 21 30 2c 22 74 65 78 74 2f 78 2d 65 63 6d 61 73 63 72 69 70 74 22 3a 21 30 2c 22 74 65 78 74 2f 78 2d 6a 61 76 61 73 63 72 69 70 74 22 3a 21 30 2c 6d 6f 64 75 6c 65 3a 21 30 7d 2c 6b 3d 76 6f 69 64 20 30 21 3d 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 Data Ascii: 0":!0,"text/javascript1.1":!0,"text/javascript1.2":!0,"text/javascript1.3":!0,"text/javascript1.4":!0,"text/javascript1.5":!0,"text/jscript":!0,"text/livescript":!0,"text/x-ecmascript":!0,"text/x-javascript":!0,module:!0},k=void 0!==document.createElement
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 6f 74 6f 74 79 70 65 2e 68 61 73 4e 6f 6e 63 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 30 3d 3d 3d 28 74 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 74 79 70 65 22 29 7c 7c 22 22 29 2e 69 6e 64 65 78 4f 66 28 74 68 69 73 2e 6e 6f 6e 63 65 29 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 72 65 6d 6f 76 65 4e 6f 6e 63 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 74 2e 74 79 70 65 3d 74 2e 74 79 70 65 2e 73 75 62 73 74 72 28 74 68 69 73 2e 6e 6f 6e 63 65 2e 6c 65 6e 67 74 68 29 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 6d 61 6b 65 4e 6f 6e 45 78 65 63 75 74 61 62 6c 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 74 2e 74 79 70 65 3d 74 68 69 73 2e 6e 6f 6e 63 65 2b 74 2e 74 79 70 65 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 69 73 50 65 6e 64 69 6e Data Ascii: ototype.hasNonce=function(t){return 0===(t.getAttribute("type")\|\|"").indexOf(this.nonce)},t.prototype.removeNonce=function(t){t.type=t.type.substr(this.nonce.length)},t.prototype.makeNonExecutable=function(t){t.type=this.nonce+t.type},t.prototype.isPendin
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 6f 74 79 70 65 2e 65 6e 61 62 6c 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 3d 74 68 69 73 3b 74 68 69 73 2e 69 6e 73 65 72 74 69 6f 6e 50 6f 69 6e 74 4d 61 72 6b 65 72 3d 74 2c 74 68 69 73 2e 62 75 66 66 65 72 3d 22 22 2c 64 6f 63 75 6d 65 6e 74 2e 77 72 69 74 65 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 6f 72 28 76 61 72 20 74 3d 5b 5d 2c 6e 3d 30 3b 6e 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 6e 2b 2b 29 74 5b 6e 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 6e 5d 3b 72 65 74 75 72 6e 20 65 2e 77 72 69 74 65 28 74 2c 21 31 29 7d 2c 64 6f 63 75 6d 65 6e 74 2e 77 72 69 74 65 6c 6e 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 6f 72 28 76 61 72 20 74 3d 5b 5d 2c 6e 3d 30 3b 6e 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 6e 2b 2b 29 74 5b Data Ascii: otype.enable=function(t){var e=this;this.insertionPointMarker=t,this.buffer="",document.write=function(){for(var t=[],n=0;n<arguments.length;n++)t[n]=arguments[n];return e.write(t,!1)},document.writeln=function(){for(var t=[],n=0;n<arguments.length;n++)t[
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 70 65 2e 77 72 69 74 65 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 76 61 72 20 6e 3d 64 6f 63 75 6d 65 6e 74 2e 63 75 72 72 65 6e 74 53 63 72 69 70 74 3b 6e 26 26 69 28 6e 29 26 26 6e 2e 68 61 73 41 74 74 72 69 62 75 74 65 28 22 61 73 79 6e 63 22 29 3f 28 72 3d 65 3f 5f 3a 4c 29 2e 63 61 6c 6c 2e 61 70 70 6c 79 28 72 2c 5b 64 6f 63 75 6d 65 6e 74 5d 2e 63 6f 6e 63 61 74 28 74 29 29 3a 74 68 69 73 2e 62 75 66 66 65 72 2b 3d 74 2e 6d 61 70 28 53 74 72 69 6e 67 29 2e 6a 6f 69 6e 28 65 3f 22 5c 6e 22 3a 22 22 29 3b 76 61 72 20 72 7d 2c 74 7d 28 29 2c 6a 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 74 28 29 7b 76 61 72 20 74 3d 74 68 69 73 3b 74 68 69 73 2e 73 69 6d 75 6c 61 74 65 64 52 65 61 64 79 53 74 61 74 65 3d 22 6c 6f 61 64 69 6e 67 Data Ascii: pe.write=function(t,e){var n=document.currentScript;n&&i(n)&&n.hasAttribute("async")?(r=e?_:L).call.apply(r,[document].concat(t)):this.buffer+=t.map(String).join(e?"\n":"");var r},t}(),j=function(){function t(){var t=this;this.simulatedReadyState="loading
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 73 49 6e 50 72 6f 78 69 65 73 3d 21 30 7d 2c 30 29 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 73 65 74 75 70 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 50 72 6f 78 79 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 3d 74 68 69 73 3b 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 45 76 65 6e 74 54 61 72 67 65 74 3f 5b 45 76 65 6e 74 54 61 72 67 65 74 2e 70 72 6f 74 6f 74 79 70 65 5d 3a 5b 4e 6f 64 65 2e 70 72 6f 74 6f 74 79 70 65 2c 57 69 6e 64 6f 77 2e 70 72 6f 74 6f 74 79 70 65 5d 29 2e 66 6f 72 45 61 63 68 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 74 2e 70 61 74 63 68 45 76 65 6e 74 54 61 72 67 65 74 4d 65 74 68 6f 64 73 28 65 29 7d 29 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 70 61 74 63 68 45 76 65 6e 74 54 61 72 67 65 Data Ascii: sInProxies=!0},0)},t.prototype.setupEventListenerProxy=function(){var t=this;("undefined"!=typeof EventTarget?[EventTarget.prototype]:[Node.prototype,Window.prototype]).forEach(function(e){return t.patchEventTargetMethods(e)})},t.prototype.patchEventTarge
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 75 6c 61 74 6f 72 22 2c 7b 76 61 6c 75 65 3a 6e 65 77 20 6a 7d 29 2c 74 2e 5f 5f 72 6f 63 6b 65 74 4c 6f 61 64 65 72 4c 6f 61 64 50 72 6f 67 72 65 73 73 53 69 6d 75 6c 61 74 6f 72 7d 28 29 2c 57 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 74 28 74 2c 65 29 7b 74 68 69 73 2e 73 63 72 69 70 74 53 74 61 63 6b 3d 74 2c 74 68 69 73 2e 73 65 74 74 69 6e 67 73 3d 65 2c 74 68 69 73 2e 70 72 65 6c 6f 61 64 48 69 6e 74 73 3d 5b 5d 7d 72 65 74 75 72 6e 20 74 2e 70 72 6f 74 6f 74 79 70 65 2e 69 6e 73 65 72 74 50 72 65 6c 6f 61 64 48 69 6e 74 73 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 3d 74 68 69 73 3b 74 68 69 73 2e 73 63 72 69 70 74 53 74 61 63 6b 2e 66 6f 72 45 61 63 68 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 66 28 61 28 65 2c 74 2e Data Ascii: ulator",{value:new j}),t.__rocketLoaderLoadProgressSimulator}(),W=function(){function t(t,e){this.scriptStack=t,this.settings=e,this.preloadHints=[]}return t.prototype.insertPreloadHints=function(){var t=this;this.scriptStack.forEach(function(e){if(a(e,t.
2024-10-14 09:45:46 UTC	771	IN	Data Raw: 61 74 65 53 63 72 69 70 74 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 6e 3d 74 2e 73 63 72 69 70 74 2c 72 3d 74 2e 70 6c 61 63 65 68 6f 6c 64 65 72 2c 6f 3d 74 2e 65 78 74 65 72 6e 61 6c 2c 69 3d 74 2e 61 73 79 6e 63 2c 61 3d 72 2e 70 61 72 65 6e 74 4e 6f 64 65 3b 69 66 28 21 64 6f 63 75 6d 65 6e 74 2e 63 6f 6e 74 61 69 6e 73 28 72 29 29 72 65 74 75 72 6e 20 65 28 22 50 6c 61 63 65 68 6f 6c 64 65 72 20 66 6f 72 20 73 63 72 69 70 74 20 5c 6e 22 2b 6e 2e 6f 75 74 65 72 48 54 4d 4c 2b 22 5c 6e 20 77 61 73 20 64 65 74 61 63 68 65 64 20 66 72 6f 6d 20 64 6f 63 75 6d 65 6e 74 2e 22 2c 22 53 63 72 69 70 74 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 65 78 65 63 75 74 65 64 2e 22 29 2c 6e 75 6c 6c 3b 76 61 72 20 63 3d 74 68 69 73 2e 73 65 74 74 69 6e 67 73 2e Data Ascii: ateScript=function(t){var n=t.script,r=t.placeholder,o=t.external,i=t.async,a=r.parentNode;if(!document.contains(r))return e("Placeholder for script \n"+n.outerHTML+"\n was detached from document.","Script will not be executed."),null;var c=this.settings.

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:46 UTC	624	OUT	GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1 Host: static.cloudflareinsights.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://www.cloudflare.com sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 09:45:46 UTC	373	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:46 GMT Content-Type: text/javascript;charset=UTF-8 Content-Length: 19948 Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=86400 ETag: W/"2024.6.1" Last-Modified: Thu, 06 Jun 2024 15:52:56 GMT Cross-Origin-Resource-Policy: cross-origin Server: cloudflare CF-RAY: 8d26a3742bca2361-EWR
2024-10-14 09:45:46 UTC	996	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 65 3d 7b 33 34 33 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 6f 72 28 76 61 72 20 74 3d 5b 5d 2c 6e 3d 30 3b 6e 3c 32 35 36 3b 2b 2b 6e 29 74 5b 6e 5d 3d 28 6e 2b 32 35 36 29 2e 74 6f 53 74 72 69 6e 67 28 31 36 29 2e 73 75 62 73 74 72 28 31 29 3b 65 2e 65 78 70 6f 72 74 73 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 29 7b 76 61 72 20 72 3d 6e 7c 7c 30 2c 69 3d 74 3b 72 65 74 75 72 6e 5b 69 5b 65 5b 72 2b 2b 5d 5d 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 22 2d 22 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 22 2d 22 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 22 2d 22 2c 69 5b 65 5b 72 2b Data Ascii: !function(){var e={343:function(e){"use strict";for(var t=[],n=0;n<256;++n)t[n]=(n+256).toString(16).substr(1);e.exports=function(e,n){var r=n\|\|0,i=t;return[i[e[r++]],i[e[r++]],i[e[r++]],i[e[r++]],"-",i[e[r++]],i[e[r++]],"-",i[e[r++]],i[e[r++]],"-",i[e[r+
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 3b 69 66 28 61 5b 36 5d 3d 31 35 26 61 5b 36 5d 7c 36 34 2c 61 5b 38 5d 3d 36 33 26 61 5b 38 5d 7c 31 32 38 2c 74 29 66 6f 72 28 76 61 72 20 63 3d 30 3b 63 3c 31 36 3b 2b 2b 63 29 74 5b 6f 2b 63 5d 3d 61 5b 63 5d 3b 72 65 74 75 72 6e 20 74 7c 7c 69 28 61 29 7d 7d 2c 31 36 38 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 72 3d 74 68 69 73 26 26 74 68 69 73 2e 5f 5f 61 73 73 69 67 6e 7c 7c 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 72 3d 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 7c 7c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 66 6f 72 28 76 61 72 20 74 2c 6e 3d 31 2c 72 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 6e 3c 72 3b 6e 2b 2b 29 66 6f 72 28 76 61 72 20 69 20 69 6e 20 74 3d 61 72 67 Data Ascii: ;if(a[6]=15&a[6]\|64,a[8]=63&a[8]\|128,t)for(var c=0;c<16;++c)t[o+c]=a[c];return t\|\|i(a)}},168:function(e,t,n){"use strict";var r=this&&this.__assign\|\|function(){return r=Object.assign\|\|function(e){for(var t,n=1,r=arguments.length;n<r;n++)for(var i in t=arg
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 72 63 68 50 61 72 61 6d 73 29 7b 76 61 72 20 79 3d 6e 65 77 20 55 52 4c 53 65 61 72 63 68 50 61 72 61 6d 73 28 67 2e 72 65 70 6c 61 63 65 28 2f 5e 5b 5e 5c 3f 5d 2b 5c 3f 3f 2f 2c 22 22 29 29 2c 68 3d 79 2e 67 65 74 28 22 74 6f 6b 65 6e 22 29 3b 68 26 26 28 70 2e 74 6f 6b 65 6e 3d 68 29 3b 76 61 72 20 54 3d 79 2e 67 65 74 28 22 73 70 61 22 29 3b 70 2e 73 70 61 3d 6e 75 6c 6c 3d 3d 3d 54 7c 7c 22 74 72 75 65 22 3d 3d 3d 54 7d 7d 70 26 26 22 6d 75 6c 74 69 22 21 3d 3d 70 2e 6c 6f 61 64 26 26 28 70 2e 6c 6f 61 64 3d 22 73 69 6e 67 6c 65 22 29 2c 77 69 6e 64 6f 77 2e 5f 5f 63 66 42 65 61 63 6f 6e 3d 70 7d 69 66 28 73 26 26 70 26 26 70 2e 74 6f 6b 65 6e 29 7b 76 61 72 20 77 2c 53 2c 62 3d 21 31 3b 64 6f 63 75 6d 65 6e 74 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 Data Ascii: rchParams){var y=new URLSearchParams(g.replace(/^[^\?]+\??/,"")),h=y.get("token");h&&(p.token=h);var T=y.get("spa");p.spa=null===T\|\|"true"===T}}p&&"multi"!==p.load&&(p.load="single"),window.__cfBeacon=p}if(s&&p&&p.token){var w,S,b=!1;document.addEventList
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 2e 74 69 6d 69 6e 67 73 56 32 3d 7b 7d 2c 64 2e 76 65 72 73 69 6f 6e 73 2e 74 69 6d 69 6e 67 73 3d 32 2c 64 2e 64 74 3d 6d 5b 30 5d 2e 64 65 6c 69 76 65 72 79 54 79 70 65 2c 64 65 6c 65 74 65 20 64 2e 74 69 6d 69 6e 67 73 2c 74 28 6d 5b 30 5d 2c 64 2e 74 69 6d 69 6e 67 73 56 32 29 29 7d 31 3d 3d 3d 64 2e 76 65 72 73 69 6f 6e 73 2e 74 69 6d 69 6e 67 73 26 26 74 28 63 2c 64 2e 74 69 6d 69 6e 67 73 29 2c 74 28 75 2c 64 2e 6d 65 6d 6f 72 79 29 7d 65 6c 73 65 20 4f 28 64 29 3b 72 65 74 75 72 6e 20 64 2e 66 69 72 73 74 50 61 69 6e 74 3d 6b 28 22 66 69 72 73 74 2d 70 61 69 6e 74 22 29 2c 64 2e 66 69 72 73 74 43 6f 6e 74 65 6e 74 66 75 6c 50 61 69 6e 74 3d 6b 28 22 66 69 72 73 74 2d 63 6f 6e 74 65 6e 74 66 75 6c 2d 70 61 69 6e 74 22 29 2c 70 26 26 28 70 2e 69 63 Data Ascii: .timingsV2={},d.versions.timings=2,d.dt=m[0].deliveryType,delete d.timings,t(m[0],d.timingsV2))}1===d.versions.timings&&t(c,d.timings),t(u,d.memory)}else O(d);return d.firstPaint=k("first-paint"),d.firstContentfulPaint=k("first-contentful-paint"),p&&(p.ic
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 65 72 65 64 3a 21 30 7d 7d 3b 22 63 6f 6d 70 6c 65 74 65 22 3d 3d 3d 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3f 52 28 29 3a 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 77 69 6e 64 6f 77 2e 73 65 74 54 69 6d 65 6f 75 74 28 52 29 7d 29 29 3b 76 61 72 20 41 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 4c 26 26 30 3d 3d 3d 76 2e 66 69 6c 74 65 72 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 2e 69 64 3d 3d 3d 6c 7d 29 29 2e 6c 65 6e 67 74 68 7d 2c 5f 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 2e 70 75 73 68 28 7b 69 64 3a 6c 2c 75 72 6c 3a 65 2c 74 73 3a 28 6e 65 77 20 44 61 74 65 29 2e 67 65 74 54 69 6d 65 Data Ascii: ered:!0}};"complete"===window.document.readyState?R():window.addEventListener("load",(function(){window.setTimeout(R)}));var A=function(){return L&&0===v.filter((function(e){return e.id===l})).length},_=function(e){v.push({id:l,url:e,ts:(new Date).getTime
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 72 63 65 4c 6f 61 64 54 69 6d 65 2c 45 2e 6c 63 70 2e 65 72 64 3d 63 2e 65 6c 65 6d 65 6e 74 52 65 6e 64 65 72 44 65 6c 61 79 2c 45 2e 6c 63 70 2e 69 74 3d 6e 75 6c 6c 3d 3d 3d 28 69 3d 63 2e 6c 63 70 52 65 73 6f 75 72 63 65 45 6e 74 72 79 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 69 3f 76 6f 69 64 20 30 3a 69 2e 69 6e 69 74 69 61 74 6f 72 54 79 70 65 2c 45 2e 6c 63 70 2e 66 70 3d 6e 75 6c 6c 3d 3d 3d 28 61 3d 6e 75 6c 6c 3d 3d 3d 28 6f 3d 63 2e 6c 63 70 45 6e 74 72 79 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 6f 3f 76 6f 69 64 20 30 3a 6f 2e 65 6c 65 6d 65 6e 74 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 61 3f 76 6f 69 64 20 30 3a 61 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 66 65 74 63 68 70 72 69 6f 72 69 74 79 22 29 29 3b 62 72 65 61 6b 3b 63 61 73 65 22 49 4e 50 22 Data Ascii: rceLoadTime,E.lcp.erd=c.elementRenderDelay,E.lcp.it=null===(i=c.lcpResourceEntry)\|\|void 0===i?void 0:i.initiatorType,E.lcp.fp=null===(a=null===(o=c.lcpEntry)\|\|void 0===o?void 0:o.element)\|\|void 0===a?void 0:a.getAttribute("fetchpriority"));break;case"INP"
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 64 65 64 42 6f 64 79 53 69 7a 65 26 26 28 72 2e 64 65 63 6f 64 65 64 42 6f 64 79 53 69 7a 65 3d 6e 5b 30 5d 2e 64 65 63 6f 64 65 64 42 6f 64 79 53 69 7a 65 29 2c 65 2e 64 74 3d 6e 5b 30 5d 2e 64 65 6c 69 76 65 72 79 54 79 70 65 29 2c 74 28 72 2c 65 2e 74 69 6d 69 6e 67 73 56 32 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 6b 28 65 29 7b 76 61 72 20 74 3b 69 66 28 22 66 69 72 73 74 2d 63 6f 6e 74 65 6e 74 66 75 6c 2d 70 61 69 6e 74 22 3d 3d 3d 65 26 26 45 2e 66 63 70 26 26 45 2e 66 63 70 2e 76 61 6c 75 65 29 72 65 74 75 72 6e 20 45 2e 66 63 70 2e 76 61 6c 75 65 3b 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 73 2e 67 65 74 45 6e 74 72 69 65 73 42 79 54 79 70 65 29 7b 76 61 72 20 6e 3d 6e 75 6c 6c 3d 3d 3d 28 74 3d 73 2e 67 65 74 45 6e 74 72 69 Data Ascii: dedBodySize&&(r.decodedBodySize=n[0].decodedBodySize),e.dt=n[0].deliveryType),t(r,e.timingsV2)}}function k(e){var t;if("first-contentful-paint"===e&&E.fcp&&E.fcp.value)return E.fcp.value;if("function"==typeof s.getEntriesByType){var n=null===(t=s.getEntri
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 76 65 6e 74 54 79 70 65 3d 7b 7d 29 29 5b 72 2e 4c 6f 61 64 3d 31 5d 3d 22 4c 6f 61 64 22 2c 72 5b 72 2e 41 64 64 69 74 69 6f 6e 61 6c 3d 32 5d 3d 22 41 64 64 69 74 69 6f 6e 61 6c 22 2c 72 5b 72 2e 57 65 62 56 69 74 61 6c 73 56 32 3d 33 5d 3d 22 57 65 62 56 69 74 61 6c 73 56 32 22 2c 28 6e 3d 74 2e 46 65 74 63 68 50 72 69 6f 72 69 74 79 7c 7c 28 74 2e 46 65 74 63 68 50 72 69 6f 72 69 74 79 3d 7b 7d 29 29 2e 48 69 67 68 3d 22 68 69 67 68 22 2c 6e 2e 4c 6f 77 3d 22 6c 6f 77 22 2c 6e 2e 41 75 74 6f 3d 22 61 75 74 6f 22 7d 2c 31 30 34 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 21 66 75 6e 63 74 69 6f 6e 28 65 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 74 2c 6e 2c 72 2c 69 2c 6f 2c 61 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 77 Data Ascii: ventType={}))[r.Load=1]="Load",r[r.Additional=2]="Additional",r[r.WebVitalsV2=3]="WebVitalsV2",(n=t.FetchPriority\|\|(t.FetchPriority={})).High="high",n.Low="low",n.Auto="auto"},104:function(e,t){!function(e){"use strict";var t,n,r,i,o,a=function(){return w
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 30 3f 72 3d 22 70 72 65 72 65 6e 64 65 72 22 3a 64 6f 63 75 6d 65 6e 74 2e 77 61 73 44 69 73 63 61 72 64 65 64 3f 72 3d 22 72 65 73 74 6f 72 65 22 3a 6e 2e 74 79 70 65 26 26 28 72 3d 6e 2e 74 79 70 65 2e 72 65 70 6c 61 63 65 28 2f 5f 2f 67 2c 22 2d 22 29 29 29 2c 7b 6e 61 6d 65 3a 65 2c 76 61 6c 75 65 3a 76 6f 69 64 20 30 3d 3d 3d 74 3f 2d 31 3a 74 2c 72 61 74 69 6e 67 3a 22 67 6f 6f 64 22 2c 64 65 6c 74 61 3a 30 2c 65 6e 74 72 69 65 73 3a 5b 5d 2c 69 64 3a 22 76 33 2d 22 2e 63 6f 6e 63 61 74 28 44 61 74 65 2e 6e 6f 77 28 29 2c 22 2d 22 29 2e 63 6f 6e 63 61 74 28 4d 61 74 68 2e 66 6c 6f 6f 72 28 38 39 39 39 39 39 39 39 39 39 39 39 39 2a 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 29 2b 31 65 31 32 29 2c 6e 61 76 69 67 61 74 69 6f 6e 54 79 70 65 3a 72 7d 7d 2c Data Ascii: 0?r="prerender":document.wasDiscarded?r="restore":n.type&&(r=n.type.replace(/_/g,"-"))),{name:e,value:void 0===t?-1:t,rating:"good",delta:0,entries:[],id:"v3-".concat(Date.now(),"-").concat(Math.floor(8999999999999*Math.random())+1e12),navigationType:r}},
2024-10-14 09:45:46 UTC	1369	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 76 69 73 69 62 69 6c 69 74 79 63 68 61 6e 67 65 22 2c 62 2c 21 30 29 2c 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 70 72 65 72 65 6e 64 65 72 69 6e 67 63 68 61 6e 67 65 22 2c 62 2c 21 30 29 7d 2c 43 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 77 3c 30 26 26 28 77 3d 53 28 29 2c 45 28 29 2c 6c 28 28 66 75 6e 63 74 69 6f 6e 28 29 7b 73 65 74 54 69 6d 65 6f 75 74 28 28 66 75 6e 63 74 69 6f 6e 28 29 7b 77 3d 53 28 29 2c 45 28 29 7d 29 2c 30 29 7d 29 29 29 2c 7b 67 65 74 20 66 69 72 73 74 48 69 64 64 65 6e 54 69 6d 65 28 29 7b 72 65 74 75 72 6e 20 77 7d 7d 7d 2c 50 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 64 6f 63 75 6d 65 6e 74 2e 70 Data Ascii: function(){removeEventListener("visibilitychange",b,!0),removeEventListener("prerenderingchange",b,!0)},C=function(){return w<0&&(w=S(),E(),l((function(){setTimeout((function(){w=S(),E()}),0)}))),{get firstHiddenTime(){return w}}},P=function(e){document.p

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:47 UTC	552	OUT	GET /img/privacyoptions.svg HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
2024-10-14 09:45:47 UTC	892	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:47 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: close ETag: W/"5a8d3dae7c1ddd64826cea94a93139d4" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R3DddOK9di17DC8ZBOXSi02d%2F6VBECyK3eo7eEPPsc2NZgQkvkrhrEf2ryKbnMc7skfPmNTrhMx2UDWq8X5mk8WN9iRnk0rZBYX4rb7inkdHXm%2BTnH2KHhwWKq24HsWg0oHmtA%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8d26a376bdc38c7b-EWR alt-svc: h3=":443"; ma=86400
2024-10-14 09:45:47 UTC	477	IN	Data Raw: 37 30 31 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0a 3c 21 2d 2d 20 47 65 6e 65 72 61 74 6f 72 3a 20 41 64 6f 62 65 20 49 6c 6c 75 73 74 72 61 74 6f 72 20 32 34 2e 33 2e 30 2c 20 53 56 47 20 45 78 70 6f 72 74 20 50 6c 75 67 2d 49 6e 20 2e 20 53 56 47 20 56 65 72 73 69 6f 6e 3a 20 36 2e 30 30 20 42 75 69 6c 64 20 30 29 20 20 2d 2d 3e 0a 3c 73 76 67 20 76 65 72 73 69 6f 6e 3d 22 31 2e 31 22 20 69 64 3d 22 4c 61 79 65 72 5f 31 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 78 6d 6c 6e 73 3a 78 6c 69 6e 6b 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 6c 69 6e 6b 22 20 78 3d 22 30 70 78 Data Ascii: 701<?xml version="1.0" encoding="utf-8"?>... Generator: Adobe Illustrator 24.3.0, SVG Export Plug-In . SVG Version: 6.00 Build 0) --><svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px
2024-10-14 09:45:47 UTC	1323	IN	Data Raw: 3a 23 30 30 36 36 46 46 3b 7d 0a 09 2e 73 74 32 7b 66 69 6c 6c 3a 23 46 46 46 46 46 46 3b 7d 0a 09 2e 73 74 33 7b 66 69 6c 6c 3a 23 30 30 36 36 46 46 3b 7d 0a 3c 2f 73 74 79 6c 65 3e 0a 3c 67 3e 0a 09 3c 67 20 69 64 3d 22 66 69 6e 61 6c 2d 2d 2d 64 65 63 2e 31 31 2d 32 30 32 30 5f 31 5f 22 3e 0a 09 09 3c 67 20 69 64 3d 22 5f 78 33 30 5f 32 30 38 2d 6f 75 72 2d 74 6f 67 67 6c 65 5f 32 5f 22 20 74 72 61 6e 73 66 6f 72 6d 3d 22 74 72 61 6e 73 6c 61 74 65 28 2d 31 32 37 35 2e 30 30 30 30 30 30 2c 20 2d 32 30 30 2e 30 30 30 30 30 30 29 22 3e 0a 09 09 09 3c 67 20 69 64 3d 22 46 69 6e 61 6c 2d 43 6f 70 79 2d 32 5f 32 5f 22 20 74 72 61 6e 73 66 6f 72 6d 3d 22 74 72 61 6e 73 6c 61 74 65 28 31 32 37 35 2e 30 30 30 30 30 30 2c 20 32 30 30 2e 30 30 30 30 30 30 29 22 Data Ascii: :#0066FF;}.st2{fill:#FFFFFF;}.st3{fill:#0066FF;}</style><g><g id="final---dec.11-2020_1_"><g id="_x30_208-our-toggle_2_" transform="translate(-1275.000000, -200.000000)"><g id="Final-Copy-2_2_" transform="translate(1275.000000, 200.000000)"
2024-10-14 09:45:47 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:47 UTC	1045	OUT	GET /webpack-runtime-427b32d69ea0c2817175.js HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-arch: "x86" sec-ch-ua-full-version: "117.0.5938.132" sec-ch-ua-platform-version: "10.0.0" sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132" sec-ch-ua-bitness: "64" sec-ch-ua-model: "" sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/plans/enterprise/contact/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
2024-10-14 09:45:47 UTC	954	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:47 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: close Cache-Control: public, max-age=0, must-revalidate ETag: W/"b4579fb212289968a09b0fdb665397a5" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4OEFgQsRx8YL%2BnZyuF9Rm7wg1wI5UgyI4L4ej0zlQi8WDxB26XEf0eOvztw8vcRfiZ5JhKdw4CoZQP8ZchJdOop%2B5bPCyTPVMMy2ytwIo8LbDtJYhmm0wBtCX%2FZj08hUrNWxiw%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8d26a37818d30c7e-EWR alt-svc: h3=":443"; ma=86400
2024-10-14 09:45:47 UTC	415	IN	Data Raw: 31 38 65 33 0d 0a 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 65 2c 74 2c 6e 2c 72 2c 6f 2c 61 3d 7b 7d 2c 63 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 76 61 72 20 74 3d 63 5b 65 5d 3b 69 66 28 76 6f 69 64 20 30 21 3d 3d 74 29 72 65 74 75 72 6e 20 74 2e 65 78 70 6f 72 74 73 3b 76 61 72 20 6e 3d 63 5b 65 5d 3d 7b 69 64 3a 65 2c 6c 6f 61 64 65 64 3a 21 31 2c 65 78 70 6f 72 74 73 3a 7b 7d 7d 3b 72 65 74 75 72 6e 20 61 5b 65 5d 2e 63 61 6c 6c 28 6e 2e 65 78 70 6f 72 74 73 2c 6e 2c 6e 2e 65 78 70 6f 72 74 73 2c 73 29 2c 6e 2e 6c 6f 61 64 65 64 3d 21 30 2c 6e 2e 65 78 70 6f 72 74 73 7d 73 2e 6d 3d 61 2c 65 3d 5b 5d 2c 73 2e 4f 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 6e 2c 72 2c 6f 29 7b 69 66 28 21 6e 29 7b 76 Data Ascii: 18e3!function(){"use strict";var e,t,n,r,o,a={},c={};function s(e){var t=c[e];if(void 0!==t)return t.exports;var n=c[e]={id:e,loaded:!1,exports:{}};return a[e].call(n.exports,n,n.exports,s),n.loaded=!0,n.exports}s.m=a,e=[],s.O=function(t,n,r,o){if(!n){v
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 5b 66 5d 29 7d 29 29 3f 6e 2e 73 70 6c 69 63 65 28 66 2d 2d 2c 31 29 3a 28 63 3d 21 31 2c 6f 3c 61 26 26 28 61 3d 6f 29 29 3b 69 66 28 63 29 7b 65 2e 73 70 6c 69 63 65 28 75 2d 2d 2c 31 29 3b 76 61 72 20 69 3d 72 28 29 3b 76 6f 69 64 20 30 21 3d 3d 69 26 26 28 74 3d 69 29 7d 7d 72 65 74 75 72 6e 20 74 7d 6f 3d 6f 7c 7c 30 3b 66 6f 72 28 76 61 72 20 75 3d 65 2e 6c 65 6e 67 74 68 3b 75 3e 30 26 26 65 5b 75 2d 31 5d 5b 32 5d 3e 6f 3b 75 2d 2d 29 65 5b 75 5d 3d 65 5b 75 2d 31 5d 3b 65 5b 75 5d 3d 5b 6e 2c 72 2c 6f 5d 7d 2c 73 2e 6e 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 65 26 26 65 2e 5f 5f 65 73 4d 6f 64 75 6c 65 3f 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 65 2e 64 65 66 61 75 6c 74 7d 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 Data Ascii: [f])}))?n.splice(f--,1):(c=!1,o<a&&(a=o));if(c){e.splice(u--,1);var i=r();void 0!==i&&(t=i)}}return t}o=o\|\|0;for(var u=e.length;u>0&&e[u-1][2]>o;u--)e[u]=e[u-1];e[u]=[n,r,o]},s.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){re
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 65 2d 74 73 78 22 2c 32 35 33 3a 22 61 30 36 63 66 66 39 33 34 65 39 35 37 39 35 33 36 63 65 31 63 31 30 62 61 64 32 31 63 31 64 36 64 37 66 36 33 61 65 30 22 2c 32 38 35 3a 22 63 6f 6d 70 6f 6e 65 6e 74 2d 2d 2d 73 72 63 2d 63 6f 6d 70 6f 6e 65 6e 74 73 2d 64 65 6d 6f 2d 70 61 67 65 73 2d 61 72 69 61 2d 6c 61 62 65 6c 73 2d 61 72 69 61 2d 6c 61 62 65 6c 73 2d 74 73 78 22 2c 32 39 37 3a 22 63 6f 6d 70 6f 6e 65 6e 74 2d 2d 2d 73 72 63 2d 63 6f 6d 70 6f 6e 65 6e 74 73 2d 70 61 67 65 2d 70 61 67 65 2d 74 65 6d 70 6c 61 74 65 2d 74 73 78 22 2c 33 30 39 3a 22 38 64 32 36 37 37 38 34 38 61 64 63 31 38 36 61 37 66 61 34 66 38 33 38 65 61 66 38 61 34 36 30 31 33 35 61 32 32 66 34 22 2c 33 32 38 3a 22 63 6f 6d 70 6f 6e 65 6e 74 2d 2d 2d 73 72 63 2d 63 6f 6d 70 6f Data Ascii: e-tsx",253:"a06cff934e9579536ce1c10bad21c1d6d7f63ae0",285:"component---src-components-demo-pages-aria-labels-aria-labels-tsx",297:"component---src-components-page-page-template-tsx",309:"8d2677848adc186a7fa4f838eaf8a460135a22f4",328:"component---src-compo
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 32 66 38 64 39 31 66 63 33 37 31 65 38 61 65 22 2c 39 32 3a 22 66 38 39 65 66 63 32 37 66 38 39 32 65 32 61 35 32 65 37 33 22 2c 39 38 3a 22 63 35 36 38 64 66 66 64 64 63 65 34 36 64 30 64 64 37 66 33 22 2c 31 32 34 3a 22 33 31 36 33 37 64 38 61 62 38 62 31 35 34 38 37 65 34 63 31 22 2c 31 36 36 3a 22 36 64 35 32 39 31 64 33 34 37 33 35 32 65 32 62 65 65 62 38 22 2c 31 37 34 3a 22 32 34 32 37 37 32 65 66 31 30 64 38 64 31 36 31 61 65 32 34 22 2c 32 32 33 3a 22 31 65 62 32 30 30 36 35 34 37 34 36 65 31 33 66 30 32 34 33 22 2c 32 35 33 3a 22 37 66 37 30 62 33 35 32 38 64 37 39 38 37 32 66 34 39 38 30 22 2c 32 37 38 3a 22 63 64 39 64 34 34 30 39 39 31 31 35 65 30 32 30 37 35 34 62 22 2c 32 38 35 3a 22 39 35 66 61 34 32 64 39 36 36 32 62 34 35 64 30 31 61 34 Data Ascii: 2f8d91fc371e8ae",92:"f89efc27f892e2a52e73",98:"c568dffddce46d0dd7f3",124:"31637d8ab8b15487e4c1",166:"6d5291d347352e2beeb8",174:"242772ef10d8d161ae24",223:"1eb200654746e13f0243",253:"7f70b3528d79872f4980",278:"cd9d44099115e020754b",285:"95fa42d9662b45d01a4
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 30 21 3d 3d 6e 29 66 6f 72 28 76 61 72 20 69 3d 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 28 22 73 63 72 69 70 74 22 29 2c 75 3d 30 3b 75 3c 69 2e 6c 65 6e 67 74 68 3b 75 2b 2b 29 7b 76 61 72 20 64 3d 69 5b 75 5d 3b 69 66 28 64 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 73 72 63 22 29 3d 3d 65 7c 7c 64 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 64 61 74 61 2d 77 65 62 70 61 63 6b 22 29 3d 3d 6f 2b 6e 29 7b 63 3d 64 3b 62 72 65 61 6b 7d 7d 63 7c 7c 28 66 3d 21 30 2c 28 63 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 73 63 72 69 70 74 22 29 29 2e 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2c 63 2e 74 69 6d 65 6f 75 74 3d 31 32 30 2c 73 2e 6e 63 26 26 63 2e 73 65 74 41 74 74 72 Data Ascii: 0!==n)for(var i=document.getElementsByTagName("script"),u=0;u<i.length;u++){var d=i[u];if(d.getAttribute("src")==e\|\|d.getAttribute("data-webpack")==o+n){c=d;break}}c\|\|(f=!0,(c=document.createElement("script")).charset="utf-8",c.timeout=120,s.nc&&c.setAttr
2024-10-14 09:45:47 UTC	488	IN	Data Raw: 6e 6b 4c 6f 61 64 45 72 72 6f 72 22 2c 63 2e 74 79 70 65 3d 6f 2c 63 2e 72 65 71 75 65 73 74 3d 61 2c 72 5b 31 5d 28 63 29 7d 7d 29 2c 22 63 68 75 6e 6b 2d 22 2b 74 2c 74 29 7d 7d 2c 73 2e 4f 2e 6a 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 30 3d 3d 3d 65 5b 74 5d 7d 3b 76 61 72 20 74 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 6e 29 7b 76 61 72 20 72 2c 6f 2c 61 3d 6e 5b 30 5d 2c 63 3d 6e 5b 31 5d 2c 66 3d 6e 5b 32 5d 2c 69 3d 30 3b 69 66 28 61 2e 73 6f 6d 65 28 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 30 21 3d 3d 65 5b 74 5d 7d 29 29 29 7b 66 6f 72 28 72 20 69 6e 20 63 29 73 2e 6f 28 63 2c 72 29 26 26 28 73 2e 6d 5b 72 5d 3d 63 5b 72 5d 29 3b 69 66 28 66 29 76 61 72 20 75 3d 66 28 73 29 7d 66 6f 72 28 74 26 26 74 28 6e 29 3b Data Ascii: nkLoadError",c.type=o,c.request=a,r[1](c)}}),"chunk-"+t,t)}},s.O.j=function(t){return 0===e[t]};var t=function(t,n){var r,o,a=n[0],c=n[1],f=n[2],i=0;if(a.some((function(t){return 0!==e[t]}))){for(r in c)s.o(c,r)&&(s.m[r]=c[r]);if(f)var u=f(s)}for(t&&t(n);
2024-10-14 09:45:47 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:47 UTC	1039	OUT	GET /framework-957a522640f43541ca6a.js HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-arch: "x86" sec-ch-ua-full-version: "117.0.5938.132" sec-ch-ua-platform-version: "10.0.0" sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132" sec-ch-ua-bitness: "64" sec-ch-ua-model: "" sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/plans/enterprise/contact/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
2024-10-14 09:45:47 UTC	962	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:47 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: close Cache-Control: public, max-age=0, must-revalidate ETag: W/"d711fa5a10b8d800843871fd03aeef22" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cpQ2%2Bg7nF76%2Fr%2FiZvvc1oYiHypv311OiF3D0YHI48%2FMMmBxCQbvD4RhrkgngSFK6GVg9y1TGEkm72IhASYLeJ%2FT3zULUVcmFEoI8%2FE1cZwZgkrW4FomiVjdSyu%2F189YAUjgvNw%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8d26a3783cd14334-EWR alt-svc: h3=":443"; ma=86400
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 37 66 66 32 0d 0a 2f 2a 21 20 46 6f 72 20 6c 69 63 65 6e 73 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 73 65 65 20 66 72 61 6d 65 77 6f 72 6b 2d 39 35 37 61 35 32 32 36 34 30 66 34 33 35 34 31 63 61 36 61 2e 6a 73 2e 4c 49 43 45 4e 53 45 2e 74 78 74 20 2a 2f 0a 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 63 6c 6f 75 64 66 6c 61 72 65 5f 6d 72 6b 65 6e 67 5f 72 65 64 77 6f 6f 64 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 63 6c 6f 75 64 66 6c 61 72 65 5f 6d 72 6b 65 6e 67 5f 72 65 64 77 6f 6f 64 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 35 39 33 5d 2c 7b 32 36 39 34 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 74 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 72 3d 74 28 36 39 32 35 29 3b 66 75 6e 63 74 69 Data Ascii: 7ff2/! For license information please see framework-957a522640f43541ca6a.js.LICENSE.txt /(self.webpackChunk_cloudflare_mrkeng_redwood=self.webpackChunk_cloudflare_mrkeng_redwood\|\|[]).push([[593],{2694:function(e,n,t){"use strict";var r=t(6925);functi
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 6e 67 73 2e 22 7d 76 61 72 20 6f 3d 6e 65 77 20 53 65 74 2c 75 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 69 28 65 2c 6e 29 7b 73 28 65 2c 6e 29 2c 73 28 65 2b 22 43 61 70 74 75 72 65 22 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 6e 29 7b 66 6f 72 28 75 5b 65 5d 3d 6e 2c 65 3d 30 3b 65 3c 6e 2e 6c 65 6e 67 74 68 3b 65 2b 2b 29 6f 2e 61 64 64 28 6e 5b 65 5d 29 7d 76 61 72 20 63 3d 21 28 22 75 6e 64 65 66 69 6e 65 64 22 3d 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 7c 7c 76 6f 69 64 20 30 3d 3d 3d 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 7c 7c 76 6f 69 64 20 30 3d 3d 3d 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 29 2c 66 3d 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 2e 68 61 73 4f 77 6e 50 72 6f 70 65 Data Ascii: ngs."}var o=new Set,u={};function i(e,n){s(e,n),s(e+"Capture",n)}function s(e,n){for(u[e]=n,e=0;e<n.length;e++)o.add(n[e])}var c=!("undefined"==typeof window\|\|void 0===window.document\|\|void 0===window.document.createElement),f=Object.prototype.hasOwnPrope
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 6f 75 72 63 65 73 52 65 71 75 69 72 65 64 22 2c 22 66 6f 63 75 73 61 62 6c 65 22 2c 22 70 72 65 73 65 72 76 65 41 6c 70 68 61 22 5d 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 5b 65 5d 3d 6e 65 77 20 68 28 65 2c 32 2c 21 31 2c 65 2c 6e 75 6c 6c 2c 21 31 2c 21 31 29 7d 29 29 2c 22 61 6c 6c 6f 77 46 75 6c 6c 53 63 72 65 65 6e 20 61 73 79 6e 63 20 61 75 74 6f 46 6f 63 75 73 20 61 75 74 6f 50 6c 61 79 20 63 6f 6e 74 72 6f 6c 73 20 64 65 66 61 75 6c 74 20 64 65 66 65 72 20 64 69 73 61 62 6c 65 64 20 64 69 73 61 62 6c 65 50 69 63 74 75 72 65 49 6e 50 69 63 74 75 72 65 20 64 69 73 61 62 6c 65 52 65 6d 6f 74 65 50 6c 61 79 62 61 63 6b 20 66 6f 72 6d 4e 6f 56 61 6c 69 64 61 74 65 20 68 69 64 64 65 6e 20 6c 6f 6f 70 20 6e 6f 4d 6f 64 75 6c Data Ascii: ourcesRequired","focusable","preserveAlpha"].forEach((function(e){v[e]=new h(e,2,!1,e,null,!1,!1)})),"allowFullScreen async autoFocus autoPlay controls default defer disabled disablePictureInPicture disableRemotePlayback formNoValidate hidden loop noModul
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 74 75 72 6e 20 69 73 4e 61 4e 28 6e 29 7c 7c 31 3e 6e 7d 72 65 74 75 72 6e 21 31 7d 28 6e 2c 74 2c 6c 2c 72 29 26 26 28 74 3d 6e 75 6c 6c 29 2c 72 7c 7c 6e 75 6c 6c 3d 3d 3d 6c 3f 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 21 21 66 2e 63 61 6c 6c 28 6d 2c 65 29 7c 7c 21 66 2e 63 61 6c 6c 28 70 2c 65 29 26 26 28 64 2e 74 65 73 74 28 65 29 3f 6d 5b 65 5d 3d 21 30 3a 28 70 5b 65 5d 3d 21 30 2c 21 31 29 29 7d 28 6e 29 26 26 28 6e 75 6c 6c 3d 3d 3d 74 3f 65 2e 72 65 6d 6f 76 65 41 74 74 72 69 62 75 74 65 28 6e 29 3a 65 2e 73 65 74 41 74 74 72 69 62 75 74 65 28 6e 2c 22 22 2b 74 29 29 3a 6c 2e 6d 75 73 74 55 73 65 50 72 6f 70 65 72 74 79 3f 65 5b 6c 2e 70 72 6f 70 65 72 74 79 4e 61 6d 65 5d 3d 6e 75 6c 6c 3d 3d 3d 74 3f 33 21 3d 3d 6c 2e 74 79 70 65 Data Ascii: turn isNaN(n)\|\|1>n}return!1}(n,t,l,r)&&(t=null),r\|\|null===l?function(e){return!!f.call(m,e)\|\|!f.call(p,e)&&(d.test(e)?m[e]=!0:(p[e]=!0,!1))}(n)&&(null===t?e.removeAttribute(n):e.setAttribute(n,""+t)):l.mustUseProperty?e[l.propertyName]=null===t?3!==l.type
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 61 6e 67 69 6e 67 20 76 2d 69 64 65 6f 67 72 61 70 68 69 63 20 76 2d 6d 61 74 68 65 6d 61 74 69 63 61 6c 20 76 65 63 74 6f 72 2d 65 66 66 65 63 74 20 76 65 72 74 2d 61 64 76 2d 79 20 76 65 72 74 2d 6f 72 69 67 69 6e 2d 78 20 76 65 72 74 2d 6f 72 69 67 69 6e 2d 79 20 77 6f 72 64 2d 73 70 61 63 69 6e 67 20 77 72 69 74 69 6e 67 2d 6d 6f 64 65 20 78 6d 6c 6e 73 3a 78 6c 69 6e 6b 20 78 2d 68 65 69 67 68 74 22 2e 73 70 6c 69 74 28 22 20 22 29 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 6e 3d 65 2e 72 65 70 6c 61 63 65 28 67 2c 79 29 3b 76 5b 6e 5d 3d 6e 65 77 20 68 28 6e 2c 31 2c 21 31 2c 65 2c 6e 75 6c 6c 2c 21 31 2c 21 31 29 7d 29 29 2c 22 78 6c 69 6e 6b 3a 61 63 74 75 61 74 65 20 78 6c 69 6e 6b 3a 61 72 63 72 6f 6c 65 20 78 Data Ascii: anging v-ideographic v-mathematical vector-effect vert-adv-y vert-origin-x vert-origin-y word-spacing writing-mode xmlns:xlink x-height".split(" ").forEach((function(e){var n=e.replace(g,y);v[n]=new h(n,1,!1,e,null,!1,!1)})),"xlink:actuate xlink:arcrole x
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 66 66 73 63 72 65 65 6e 22 29 3b 53 79 6d 62 6f 6c 2e 66 6f 72 28 22 72 65 61 63 74 2e 6c 65 67 61 63 79 5f 68 69 64 64 65 6e 22 29 2c 53 79 6d 62 6f 6c 2e 66 6f 72 28 22 72 65 61 63 74 2e 63 61 63 68 65 22 29 2c 53 79 6d 62 6f 6c 2e 66 6f 72 28 22 72 65 61 63 74 2e 74 72 61 63 69 6e 67 5f 6d 61 72 6b 65 72 22 29 3b 76 61 72 20 4d 3d 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 3b 66 75 6e 63 74 69 6f 6e 20 46 28 65 29 7b 72 65 74 75 72 6e 20 6e 75 6c 6c 3d 3d 3d 65 7c 7c 22 6f 62 6a 65 63 74 22 21 3d 74 79 70 65 6f 66 20 65 3f 6e 75 6c 6c 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 28 65 3d 4d 26 26 65 5b 4d 5d 7c 7c 65 5b 22 40 40 69 74 65 72 61 74 6f 72 22 5d 29 3f 65 3a 6e 75 6c 6c 7d 76 61 72 20 44 2c 49 3d 4f 62 6a 65 63 74 2e 61 73 73 Data Ascii: ffscreen");Symbol.for("react.legacy_hidden"),Symbol.for("react.cache"),Symbol.for("react.tracing_marker");var M=Symbol.iterator;function F(e){return null===e\|\|"object"!=typeof e?null:"function"==typeof(e=M&&e[M]\|\|e["@@iterator"])?e:null}var D,I=Object.ass
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 20 55 28 22 4c 61 7a 79 22 29 3b 63 61 73 65 20 31 33 3a 72 65 74 75 72 6e 20 55 28 22 53 75 73 70 65 6e 73 65 22 29 3b 63 61 73 65 20 31 39 3a 72 65 74 75 72 6e 20 55 28 22 53 75 73 70 65 6e 73 65 4c 69 73 74 22 29 3b 63 61 73 65 20 30 3a 63 61 73 65 20 32 3a 63 61 73 65 20 31 35 3a 72 65 74 75 72 6e 20 65 3d 41 28 65 2e 74 79 70 65 2c 21 31 29 3b 63 61 73 65 20 31 31 3a 72 65 74 75 72 6e 20 65 3d 41 28 65 2e 74 79 70 65 2e 72 65 6e 64 65 72 2c 21 31 29 3b 63 61 73 65 20 31 3a 72 65 74 75 72 6e 20 65 3d 41 28 65 2e 74 79 70 65 2c 21 30 29 3b 64 65 66 61 75 6c 74 3a 72 65 74 75 72 6e 22 22 7d 7d 66 75 6e 63 74 69 6f 6e 20 6a 28 65 29 7b 69 66 28 6e 75 6c 6c 3d 3d 65 29 72 65 74 75 72 6e 20 6e 75 6c 6c 3b 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 Data Ascii: U("Lazy");case 13:return U("Suspense");case 19:return U("SuspenseList");case 0:case 2:case 15:return e=A(e.type,!1);case 11:return e=A(e.type.render,!1);case 1:return e=A(e.type,!0);default:return""}}function j(e){if(null==e)return null;if("function"==ty
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 74 4d 6f 64 65 22 3a 22 4d 6f 64 65 22 3b 63 61 73 65 20 32 32 3a 72 65 74 75 72 6e 22 4f 66 66 73 63 72 65 65 6e 22 3b 63 61 73 65 20 31 32 3a 72 65 74 75 72 6e 22 50 72 6f 66 69 6c 65 72 22 3b 63 61 73 65 20 32 31 3a 72 65 74 75 72 6e 22 53 63 6f 70 65 22 3b 63 61 73 65 20 31 33 3a 72 65 74 75 72 6e 22 53 75 73 70 65 6e 73 65 22 3b 63 61 73 65 20 31 39 3a 72 65 74 75 72 6e 22 53 75 73 70 65 6e 73 65 4c 69 73 74 22 3b 63 61 73 65 20 32 35 3a 72 65 74 75 72 6e 22 54 72 61 63 69 6e 67 4d 61 72 6b 65 72 22 3b 63 61 73 65 20 31 3a 63 61 73 65 20 30 3a 63 61 73 65 20 31 37 3a 63 61 73 65 20 32 3a 63 61 73 65 20 31 34 3a 63 61 73 65 20 31 35 3a 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 6e 29 72 65 74 75 72 6e 20 6e 2e 64 69 73 70 6c 61 Data Ascii: tMode":"Mode";case 22:return"Offscreen";case 12:return"Profiler";case 21:return"Scope";case 13:return"Suspense";case 19:return"SuspenseList";case 25:return"TracingMarker";case 1:case 0:case 17:case 2:case 14:case 15:if("function"==typeof n)return n.displa
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 6f 69 64 20 30 29 29 29 72 65 74 75 72 6e 20 6e 75 6c 6c 3b 74 72 79 7b 72 65 74 75 72 6e 20 65 2e 61 63 74 69 76 65 45 6c 65 6d 65 6e 74 7c 7c 65 2e 62 6f 64 79 7d 63 61 74 63 68 28 6e 29 7b 72 65 74 75 72 6e 20 65 2e 62 6f 64 79 7d 7d 66 75 6e 63 74 69 6f 6e 20 59 28 65 2c 6e 29 7b 76 61 72 20 74 3d 6e 2e 63 68 65 63 6b 65 64 3b 72 65 74 75 72 6e 20 49 28 7b 7d 2c 6e 2c 7b 64 65 66 61 75 6c 74 43 68 65 63 6b 65 64 3a 76 6f 69 64 20 30 2c 64 65 66 61 75 6c 74 56 61 6c 75 65 3a 76 6f 69 64 20 30 2c 76 61 6c 75 65 3a 76 6f 69 64 20 30 2c 63 68 65 63 6b 65 64 3a 6e 75 6c 6c 21 3d 74 3f 74 3a 65 2e 5f 77 72 61 70 70 65 72 53 74 61 74 65 2e 69 6e 69 74 69 61 6c 43 68 65 63 6b 65 64 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 58 28 65 2c 6e 29 7b 76 61 72 20 74 3d 6e Data Ascii: oid 0)))return null;try{return e.activeElement\|\|e.body}catch(n){return e.body}}function Y(e,n){var t=n.checked;return I({},n,{defaultChecked:void 0,defaultValue:void 0,value:void 0,checked:null!=t?t:e._wrapperState.initialChecked})}function X(e,n){var t=n
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 75 6c 6c 3d 3d 74 3f 65 2e 64 65 66 61 75 6c 74 56 61 6c 75 65 3d 22 22 2b 65 2e 5f 77 72 61 70 70 65 72 53 74 61 74 65 2e 69 6e 69 74 69 61 6c 56 61 6c 75 65 3a 65 2e 64 65 66 61 75 6c 74 56 61 6c 75 65 21 3d 3d 22 22 2b 74 26 26 28 65 2e 64 65 66 61 75 6c 74 56 61 6c 75 65 3d 22 22 2b 74 29 29 7d 76 61 72 20 6e 65 3d 41 72 72 61 79 2e 69 73 41 72 72 61 79 3b 66 75 6e 63 74 69 6f 6e 20 74 65 28 65 2c 6e 2c 74 2c 72 29 7b 69 66 28 65 3d 65 2e 6f 70 74 69 6f 6e 73 2c 6e 29 7b 6e 3d 7b 7d 3b 66 6f 72 28 76 61 72 20 6c 3d 30 3b 6c 3c 74 2e 6c 65 6e 67 74 68 3b 6c 2b 2b 29 6e 5b 22 24 22 2b 74 5b 6c 5d 5d 3d 21 30 3b 66 6f 72 28 74 3d 30 3b 74 3c 65 2e 6c 65 6e 67 74 68 3b 74 2b 2b 29 6c 3d 6e 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 28 22 24 22 2b 65 5b Data Ascii: ull==t?e.defaultValue=""+e._wrapperState.initialValue:e.defaultValue!==""+t&&(e.defaultValue=""+t))}var ne=Array.isArray;function te(e,n,t,r){if(e=e.options,n){n={};for(var l=0;l<t.length;l++)n["$"+t[l]]=!0;for(t=0;t<e.length;t++)l=n.hasOwnProperty("$"+e[

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:47 UTC	1033	OUT	GET /app-f94b51f9187182a89b22.js HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-arch: "x86" sec-ch-ua-full-version: "117.0.5938.132" sec-ch-ua-platform-version: "10.0.0" sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132" sec-ch-ua-bitness: "64" sec-ch-ua-model: "" sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/plans/enterprise/contact/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
2024-10-14 09:45:47 UTC	954	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:47 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: close Cache-Control: public, max-age=0, must-revalidate ETag: W/"73924cb00069cf3351adaad51dd88003" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=glWpVhNg3QO6P6%2BKCraGwDUs5FIf1SMIJYoZQlZT9%2BOMDFv53xCPAdV8G52AVcvs1PJ5At28yi0PGPpqFlPOWTw3rOjLlsZEpyL7I5ylW1p9m8Qj%2BD4NElNj6mSpKFm1klyraw%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8d26a3781d6841f8-EWR alt-svc: h3=":443"; ma=86400
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 37 66 66 32 0d 0a 2f 2a 21 20 46 6f 72 20 6c 69 63 65 6e 73 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 73 65 65 20 61 70 70 2d 66 39 34 62 35 31 66 39 31 38 37 31 38 32 61 38 39 62 32 32 2e 6a 73 2e 4c 49 43 45 4e 53 45 2e 74 78 74 20 2a 2f 0a 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 63 6c 6f 75 64 66 6c 61 72 65 5f 6d 72 6b 65 6e 67 5f 72 65 64 77 6f 6f 64 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 63 6c 6f 75 64 66 6c 61 72 65 5f 6d 72 6b 65 6e 67 5f 72 65 64 77 6f 6f 64 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 35 32 34 5d 2c 7b 33 38 31 35 37 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 5a 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 Data Ascii: 7ff2/! For license information please see app-f94b51f9187182a89b22.js.LICENSE.txt /(self.webpackChunk_cloudflare_mrkeng_redwood=self.webpackChunk_cloudflare_mrkeng_redwood\|\|[]).push([[524],{38157:function(e,t,n){"use strict";n.d(t,{Z:function(){retur
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 61 6d 65 3a 6f 2c 73 74 79 6c 65 3a 6e 3f 6c 3a 76 6f 69 64 20 30 7d 2c 74 29 7d 2c 6d 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 65 2e 73 72 63 2c 6e 3d 65 2e 63 75 73 74 6f 6d 65 72 43 6f 64 65 2c 6f 3d 65 2e 61 64 55 72 6c 2c 6c 3d 65 2e 63 6f 6e 74 72 6f 6c 73 2c 63 3d 76 6f 69 64 20 30 21 3d 3d 6c 26 26 6c 2c 6d 3d 65 2e 6d 75 74 65 64 2c 70 3d 76 6f 69 64 20 30 21 3d 3d 6d 26 26 6d 2c 66 3d 65 2e 61 75 74 6f 70 6c 61 79 2c 68 3d 76 6f 69 64 20 30 21 3d 3d 66 26 26 66 2c 67 3d 65 2e 6c 6f 6f 70 2c 5f 3d 76 6f 69 64 20 30 21 3d 3d 67 26 26 67 2c 76 3d 65 2e 70 72 65 6c 6f 61 64 2c 79 3d 76 6f 69 64 20 30 3d 3d 3d 76 3f 22 6d 65 74 61 64 61 74 61 22 3a 76 2c 62 3d 65 2e 70 72 69 6d 61 72 79 43 6f 6c 6f 72 2c 45 3d 65 2e 6c 65 74 74 65 72 Data Ascii: ame:o,style:n?l:void 0},t)},m=function(e){var t=e.src,n=e.customerCode,o=e.adUrl,l=e.controls,c=void 0!==l&&l,m=e.muted,p=void 0!==m&&m,f=e.autoplay,h=void 0!==f&&f,g=e.loop,_=void 0!==g&&g,v=e.preload,y=void 0===v?"metadata":v,b=e.primaryColor,E=e.letter
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 6c 65 74 74 65 72 62 6f 78 43 6f 6c 6f 72 3d 22 2b 65 6e 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 75 29 2c 6d 26 26 22 73 74 61 72 74 54 69 6d 65 3d 22 2b 6d 2c 6e 26 26 22 6d 75 74 65 64 3d 74 72 75 65 22 2c 6f 26 26 22 70 72 65 6c 6f 61 64 3d 22 2b 6f 2c 61 26 26 22 6c 6f 6f 70 3d 74 72 75 65 22 2c 69 26 26 22 61 75 74 6f 70 6c 61 79 3d 74 72 75 65 22 2c 21 73 26 26 22 63 6f 6e 74 72 6f 6c 73 3d 66 61 6c 73 65 22 5d 2e 66 69 6c 74 65 72 28 42 6f 6f 6c 65 61 6e 29 2e 6a 6f 69 6e 28 22 26 22 29 3b 72 65 74 75 72 6e 28 30 2c 72 2e 75 73 65 4d 65 6d 6f 29 28 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 66 3f 22 68 74 74 70 73 3a 2f 2f 63 75 73 74 6f 6d 65 72 2d 22 2b 66 2b 22 2e 63 6c 6f 75 64 66 6c 61 72 65 73 74 72 65 61 6d 2e 63 6f Data Ascii: letterboxColor="+encodeURIComponent(u),m&&"startTime="+m,n&&"muted=true",o&&"preload="+o,a&&"loop=true",i&&"autoplay=true",!s&&"controls=false"].filter(Boolean).join("&");return(0,r.useMemo)((function(){return f?"https://customer-"+f+".cloudflarestream.co
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 74 65 22 2c 75 65 2c 72 65 29 2c 73 28 22 76 6f 6c 75 6d 65 63 68 61 6e 67 65 22 2c 75 65 2c 6f 65 29 2c 73 28 22 77 61 69 74 69 6e 67 22 2c 75 65 2c 61 65 29 2c 73 28 22 73 74 72 65 61 6d 2d 61 64 73 74 61 72 74 22 2c 75 65 2c 69 65 29 2c 73 28 22 73 74 72 65 61 6d 2d 61 64 65 6e 64 22 2c 75 65 2c 73 65 29 2c 73 28 22 73 74 72 65 61 6d 2d 61 64 74 69 6d 65 6f 75 74 22 2c 75 65 2c 6c 65 29 2c 73 28 22 72 65 73 69 7a 65 22 2c 75 65 2c 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 66 28 75 65 2e 63 75 72 72 65 6e 74 29 7b 76 61 72 20 74 3d 75 65 2e 63 75 72 72 65 6e 74 2c 6e 3d 74 2e 76 69 64 65 6f 48 65 69 67 68 74 2c 72 3d 74 2e 76 69 64 65 6f 57 69 64 74 68 3b 70 65 28 7b 76 69 64 65 6f 48 65 69 67 68 74 3a 6e 2c 76 69 64 65 6f 57 69 64 74 68 3a 72 7d 29 2c Data Ascii: te",ue,re),s("volumechange",ue,oe),s("waiting",ue,ae),s("stream-adstart",ue,ie),s("stream-adend",ue,se),s("stream-adtimeout",ue,le),s("resize",ue,(function(e){if(ue.current){var t=ue.current,n=t.videoHeight,r=t.videoWidth;pe({videoHeight:n,videoWidth:r}),
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 41 44 49 4e 47 5f 32 3d 22 68 65 61 64 69 6e 67 2d 32 22 2c 65 2e 48 45 41 44 49 4e 47 5f 33 3d 22 68 65 61 64 69 6e 67 2d 33 22 2c 65 2e 48 45 41 44 49 4e 47 5f 34 3d 22 68 65 61 64 69 6e 67 2d 34 22 2c 65 2e 48 45 41 44 49 4e 47 5f 35 3d 22 68 65 61 64 69 6e 67 2d 35 22 2c 65 2e 48 45 41 44 49 4e 47 5f 36 3d 22 68 65 61 64 69 6e 67 2d 36 22 2c 65 2e 4f 4c 5f 4c 49 53 54 3d 22 6f 72 64 65 72 65 64 2d 6c 69 73 74 22 2c 65 2e 55 4c 5f 4c 49 53 54 3d 22 75 6e 6f 72 64 65 72 65 64 2d 6c 69 73 74 22 2c 65 2e 4c 49 53 54 5f 49 54 45 4d 3d 22 6c 69 73 74 2d 69 74 65 6d 22 2c 65 2e 48 52 3d 22 68 72 22 2c 65 2e 51 55 4f 54 45 3d 22 62 6c 6f 63 6b 71 75 6f 74 65 22 2c 65 2e 45 4d 42 45 44 44 45 44 5f 45 4e 54 52 59 3d 22 65 6d 62 65 64 64 65 64 2d 65 6e 74 72 79 Data Ascii: ADING_2="heading-2",e.HEADING_3="heading-3",e.HEADING_4="heading-4",e.HEADING_5="heading-5",e.HEADING_6="heading-6",e.OL_LIST="ordered-list",e.UL_LIST="unordered-list",e.LIST_ITEM="list-item",e.HR="hr",e.QUOTE="blockquote",e.EMBEDDED_ENTRY="embedded-entry
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 65 66 61 75 6c 74 7c 7c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 26 26 65 2e 5f 5f 65 73 4d 6f 64 75 6c 65 3f 65 3a 7b 64 65 66 61 75 6c 74 3a 65 7d 7d 3b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 5f 5f 65 73 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 2c 74 2e 56 31 5f 4d 41 52 4b 53 3d 74 2e 56 31 5f 4e 4f 44 45 5f 54 59 50 45 53 3d 74 2e 54 45 58 54 5f 43 4f 4e 54 41 49 4e 45 52 53 3d 74 2e 48 45 41 44 49 4e 47 53 3d 74 2e 43 4f 4e 54 41 49 4e 45 52 53 3d 74 2e 56 4f 49 44 5f 42 4c 4f 43 4b 53 3d 74 2e 54 41 42 4c 45 5f 42 4c 4f 43 4b 53 3d 74 2e 4c 49 53 54 5f 49 54 45 4d 5f 42 4c 4f 43 4b 53 3d 74 2e 54 4f 50 5f 4c 45 56 45 4c 5f 42 4c 4f 43 4b 53 3d 76 6f 69 64 20 30 3b 76 61 72 20 61 Data Ascii: efault\|\|function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.V1_MARKS=t.V1_NODE_TYPES=t.TEXT_CONTAINERS=t.HEADINGS=t.CONTAINERS=t.VOID_BLOCKS=t.TABLE_BLOCKS=t.LIST_ITEM_BLOCKS=t.TOP_LEVEL_BLOCKS=void 0;var a
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 5d 3d 5b 75 2e 42 4c 4f 43 4b 53 2e 50 41 52 41 47 52 41 50 48 5d 2c 6e 5b 75 2e 42 4c 4f 43 4b 53 2e 54 41 42 4c 45 5f 48 45 41 44 45 52 5f 43 45 4c 4c 5d 3d 5b 75 2e 42 4c 4f 43 4b 53 2e 50 41 52 41 47 52 41 50 48 5d 2c 6e 29 2c 74 2e 48 45 41 44 49 4e 47 53 3d 5b 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 31 2c 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 32 2c 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 33 2c 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 34 2c 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 35 2c 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 36 5d 2c 74 2e 54 45 58 54 5f 43 4f 4e 54 41 49 4e 45 52 53 3d 72 28 5b 75 2e 42 4c 4f 43 4b 53 2e 50 41 52 41 47 52 41 50 48 5d 2c 74 2e 48 45 41 44 49 4e 47 53 Data Ascii: ]=[u.BLOCKS.PARAGRAPH],n[u.BLOCKS.TABLE_HEADER_CELL]=[u.BLOCKS.PARAGRAPH],n),t.HEADINGS=[u.BLOCKS.HEADING_1,u.BLOCKS.HEADING_2,u.BLOCKS.HEADING_3,u.BLOCKS.HEADING_4,u.BLOCKS.HEADING_5,u.BLOCKS.HEADING_6],t.TEXT_CONTAINERS=r([u.BLOCKS.PARAGRAPH],t.HEADINGS
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 74 3d 3d 3d 65 5b 72 5b 6e 5d 5d 29 72 65 74 75 72 6e 21 30 7d 72 65 74 75 72 6e 21 31 7d 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 5f 5f 65 73 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 2c 74 2e 69 73 54 65 78 74 3d 74 2e 69 73 42 6c 6f 63 6b 3d 74 2e 69 73 49 6e 6c 69 6e 65 3d 76 6f 69 64 20 30 2c 74 2e 69 73 49 6e 6c 69 6e 65 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 6e 28 64 2e 49 4e 4c 49 4e 45 53 2c 65 2e 6e 6f 64 65 54 79 70 65 29 7d 2c 74 2e 69 73 42 6c 6f 63 6b 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 6e 28 75 2e 42 4c 4f 43 4b 53 2c 65 2e 6e 6f 64 65 54 79 70 65 29 7d 2c 74 2e 69 73 54 65 78 74 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 22 74 65 78 Data Ascii: t===e[r[n]])return!0}return!1}Object.defineProperty(t,"__esModule",{value:!0}),t.isText=t.isBlock=t.isInline=void 0,t.isInline=function(e){return n(d.INLINES,e.nodeType)},t.isBlock=function(e){return n(u.BLOCKS,e.nodeType)},t.isText=function(e){return"tex
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 74 2c 22 49 4e 4c 49 4e 45 53 22 2c 7b 65 6e 75 6d 65 72 61 62 6c 65 3a 21 30 2c 67 65 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 64 2e 49 4e 4c 49 4e 45 53 7d 7d 29 2c 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 4d 41 52 4b 53 22 2c 7b 65 6e 75 6d 65 72 61 62 6c 65 3a 21 30 2c 67 65 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 69 28 6d 29 2e 64 65 66 61 75 6c 74 7d 7d 29 2c 6f 28 70 2c 74 29 2c 6f 28 66 2c 74 29 2c 6f 28 68 2c 74 29 2c 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 45 4d 50 54 59 5f 44 4f 43 55 4d 45 4e 54 22 2c 7b 65 6e 75 6d 65 72 61 62 6c 65 3a 21 30 2c 67 65 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 69 28 67 29 2e 64 65 66 61 Data Ascii: t,"INLINES",{enumerable:!0,get:function(){return d.INLINES}}),Object.defineProperty(t,"MARKS",{enumerable:!0,get:function(){return i(m).default}}),o(p,t),o(f,t),o(h,t),Object.defineProperty(t,"EMPTY_DOCUMENT",{enumerable:!0,get:function(){return i(g).defa
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 65 6e 74 28 22 68 34 22 2c 6e 75 6c 6c 2c 74 29 7d 2c 79 5b 4d 2e 48 45 41 44 49 4e 47 5f 35 5d 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 61 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 68 35 22 2c 6e 75 6c 6c 2c 74 29 7d 2c 79 5b 4d 2e 48 45 41 44 49 4e 47 5f 36 5d 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 61 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 68 36 22 2c 6e 75 6c 6c 2c 74 29 7d 2c 79 5b 4d 2e 45 4d 42 45 44 44 45 44 5f 45 4e 54 52 59 5d 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 61 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 64 69 76 22 2c 6e 75 6c 6c 2c 74 29 7d 2c 79 5b 4d 2e 45 4d 42 45 44 44 45 44 5f 52 45 53 4f 55 52 43 45 5d 3d 66 75 6e 63 74 69 6f 6e 28 65 Data Ascii: ent("h4",null,t)},y[M.HEADING_5]=function(e,t){return a.createElement("h5",null,t)},y[M.HEADING_6]=function(e,t){return a.createElement("h6",null,t)},y[M.EMBEDDED_ENTRY]=function(e,t){return a.createElement("div",null,t)},y[M.EMBEDDED_RESOURCE]=function(e

Timestamp	Bytes transferred	Direction	Data
2024-10-14 09:45:47 UTC	761	OUT	GET /public/vendor/onetrust/scripttemplates/otSDKStub.js HTTP/1.1 Host: ot.www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=KgZo9KzGDSCGdJImhcAxGVs_lnJdwNSWHijQaMT5i6k-1728899131-1.0.1.1-W4wEGtowNaa0olFo4JhO76z.7miq2AbuUJpNXChHnjva5Sux2siLAbaOf9MMEPvtHaeeAiOegcK7ORf6ekYzQJDG9qqWMIVhv6nJqt6mOo0
2024-10-14 09:45:47 UTC	839	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 09:45:47 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=0, must-revalidate ETag: W/"c26259f649def56fbb3b494c9ae5b5a1" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff X-Robots-Tag: noindex Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9AnIlVbJgwqC6kNbLa5PJJL2j3GlC7RdLsQG2s%2FKDq92rdeBDwVG4gchLnXGsp2oVPxxoMH2Xvijl57KSjiSmkbtub%2FOA1%2FRl11%2FZwLm8YsBaFN3tNDTjsLdQeWlwQDfex1b%2B4THO%2Bw%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding CF-Cache-Status: MISS Server: cloudflare CF-RAY: 8d26a378390541f2-EWR alt-svc: h3=":443"; ma=86400
2024-10-14 09:45:47 UTC	530	IN	Data Raw: 35 32 65 65 0d 0a 76 61 72 20 4f 6e 65 54 72 75 73 74 53 74 75 62 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 61 2c 6f 2c 70 3d 6e 65 77 20 66 75 6e 63 74 69 6f 6e 28 29 7b 74 68 69 73 2e 6f 70 74 61 6e 6f 6e 43 6f 6f 6b 69 65 4e 61 6d 65 3d 22 4f 70 74 61 6e 6f 6e 43 6f 6e 73 65 6e 74 22 2c 74 68 69 73 2e 6f 70 74 61 6e 6f 6e 48 74 6d 6c 47 72 6f 75 70 44 61 74 61 3d 5b 5d 2c 74 68 69 73 2e 6f 70 74 61 6e 6f 6e 48 6f 73 74 44 61 74 61 3d 5b 5d 2c 74 68 69 73 2e 67 65 6e 56 65 6e 64 6f 72 73 44 61 74 61 3d 5b 5d 2c 74 68 69 73 2e 76 65 6e 64 6f 72 73 53 65 72 76 69 63 65 44 61 74 61 3d 5b 5d 2c 74 68 69 73 2e 49 41 42 43 6f 6f 6b 69 65 56 61 6c 75 65 3d 22 22 2c 74 68 69 73 2e 6f 6e 65 54 72 75 73 74 49 41 42 Data Ascii: 52eevar OneTrustStub=function(t){"use strict";var a,o,p=new function(){this.optanonCookieName="OptanonConsent",this.optanonHtmlGroupData=[],this.optanonHostData=[],this.genVendorsData=[],this.vendorsServiceData=[],this.IABCookieValue="",this.oneTrustIAB
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 49 22 2c 22 53 4b 22 2c 22 46 49 22 2c 22 53 45 22 2c 22 47 42 22 2c 22 48 52 22 2c 22 4c 49 22 2c 22 4e 4f 22 2c 22 49 53 22 5d 2c 74 68 69 73 2e 73 74 75 62 46 69 6c 65 4e 61 6d 65 3d 22 6f 74 53 44 4b 53 74 75 62 22 2c 74 68 69 73 2e 44 41 54 41 46 49 4c 45 41 54 54 52 49 42 55 54 45 3d 22 64 61 74 61 2d 64 6f 6d 61 69 6e 2d 73 63 72 69 70 74 22 2c 74 68 69 73 2e 62 61 6e 6e 65 72 53 63 72 69 70 74 4e 61 6d 65 3d 22 6f 74 42 61 6e 6e 65 72 53 64 6b 2e 6a 73 22 2c 74 68 69 73 2e 6d 6f 62 69 6c 65 4f 6e 6c 69 6e 65 55 52 4c 3d 5b 5d 2c 74 68 69 73 2e 69 73 4d 69 67 72 61 74 65 64 55 52 4c 3d 21 31 2c 74 68 69 73 2e 6d 69 67 72 61 74 65 64 43 43 54 49 44 3d 22 5b 5b 4f 6c 64 43 43 54 49 44 5d 5d 22 2c 74 68 69 73 2e 6d 69 67 72 61 74 65 64 44 6f 6d 61 69 Data Ascii: I","SK","FI","SE","GB","HR","LI","NO","IS"],this.stubFileName="otSDKStub",this.DATAFILEATTRIBUTE="data-domain-script",this.bannerScriptName="otBannerSdk.js",this.mobileOnlineURL=[],this.isMigratedURL=!1,this.migratedCCTID="[[OldCCTID]]",this.migratedDomai
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 2b 29 2f 29 29 5b 31 5d 29 72 65 74 75 72 6e 20 6e 75 6c 6c 3b 65 5b 74 68 69 73 2e 63 61 6d 65 6c 69 7a 65 28 61 5b 30 5d 29 5d 3d 61 5b 31 5d 2e 74 72 69 6d 28 29 7d 72 65 74 75 72 6e 20 65 7d 2c 65 29 3b 66 75 6e 63 74 69 6f 6e 20 65 28 29 7b 76 61 72 20 74 3d 74 68 69 73 3b 74 68 69 73 2e 69 6d 70 6c 65 6d 65 6e 74 54 68 65 50 6f 6c 79 66 69 6c 6c 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 61 3d 74 2c 6f 3d 45 6c 65 6d 65 6e 74 2e 70 72 6f 74 6f 74 79 70 65 2e 73 65 74 41 74 74 72 69 62 75 74 65 3b 72 65 74 75 72 6e 20 45 6c 65 6d 65 6e 74 2e 70 72 6f 74 6f 74 79 70 65 2e 73 65 74 41 74 74 72 69 62 75 74 65 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 69 66 28 22 73 74 79 6c 65 22 21 3d 3d 74 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 26 26 6f 2e Data Ascii: +)/))[1])return null;e[this.camelize(a[0])]=a[1].trim()}return e},e);function e(){var t=this;this.implementThePolyfill=function(){var a=t,o=Element.prototype.setAttribute;return Element.prototype.setAttribute=function(t,e){if("style"!==t.toLowerCase()&&o.
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 4c 4f 43 41 54 4f 52 5f 4e 41 4d 45 29 29 7d 2c 74 68 69 73 2e 72 65 6d 6f 76 65 47 70 70 41 70 69 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 64 65 6c 65 74 65 20 73 2e 77 69 6e 2e 5f 5f 67 70 70 3b 76 61 72 20 74 3d 64 6f 63 75 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 69 66 72 61 6d 65 5b 6e 61 6d 65 3d 22 2b 73 2e 4c 4f 43 41 54 4f 52 5f 4e 41 4d 45 2b 22 5d 22 29 5b 30 5d 3b 74 26 26 74 2e 70 61 72 65 6e 74 45 6c 65 6d 65 6e 74 2e 72 65 6d 6f 76 65 43 68 69 6c 64 28 74 29 7d 2c 74 68 69 73 2e 65 78 65 63 75 74 65 47 70 70 41 70 69 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 6f 72 28 76 61 72 20 74 3d 5b 5d 2c 65 3d 30 3b 65 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 65 2b 2b 29 74 5b 65 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 65 Data Ascii: LOCATOR_NAME))},this.removeGppApi=function(){delete s.win.__gpp;var t=document.querySelectorAll("iframe[name="+s.LOCATOR_NAME+"]")[0];t&&t.parentElement.removeChild(t)},this.executeGppApi=function(){for(var t=[],e=0;e<arguments.length;e++)t[e]=arguments[e
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 73 73 54 65 78 74 3d 22 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 22 2c 65 2e 6e 61 6d 65 3d 74 2c 65 2e 73 65 74 41 74 74 72 69 62 75 74 65 28 22 74 69 74 6c 65 22 2c 22 47 50 50 20 4c 6f 63 61 74 6f 72 22 29 2c 69 2e 62 6f 64 79 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 65 29 29 3a 73 65 74 54 69 6d 65 6f 75 74 28 66 75 6e 63 74 69 6f 6e 28 29 7b 73 2e 61 64 64 46 72 61 6d 65 28 74 29 7d 2c 35 29 29 2c 21 6e 7d 2c 74 68 69 73 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 76 61 72 20 69 2c 6e 3d 73 2e 77 69 6e 2e 5f 5f 67 70 70 3b 72 65 74 75 72 6e 20 6e 2e 65 76 65 6e 74 73 3d 6e 2e 65 76 65 6e 74 73 7c 7c 5b 5d 2c 6e 75 6c 6c 21 3d 28 69 3d 6e 29 26 26 69 2e 6c 61 73 74 49 64 7c 7c 28 6e 2e 6c 61 73 74 49 64 3d Data Ascii: ssText="display:none",e.name=t,e.setAttribute("title","GPP Locator"),i.body.appendChild(e)):setTimeout(function(){s.addFrame(t)},5)),!n},this.addEventListener=function(t,e){var i,n=s.win.__gpp;return n.events=n.events\|\|[],null!=(i=n)&&i.lastId\|\|(n.lastId=
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 7d 2c 68 2e 70 72 6f 74 6f 74 79 70 65 2e 63 61 70 74 75 72 65 4e 6f 6e 63 65 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 74 68 69 73 2e 6e 6f 6e 63 65 3d 70 2e 73 74 75 62 53 63 72 69 70 74 45 6c 65 6d 65 6e 74 2e 6e 6f 6e 63 65 7c 7c 70 2e 73 74 75 62 53 63 72 69 70 74 45 6c 65 6d 65 6e 74 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 6e 6f 6e 63 65 22 29 7c 7c 6e 75 6c 6c 7d 2c 68 2e 70 72 6f 74 6f 74 79 70 65 2e 66 65 74 63 68 42 61 6e 6e 65 72 53 44 4b 44 65 70 65 6e 64 65 6e 63 79 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 74 68 69 73 2e 73 65 74 44 6f 6d 61 69 6e 44 61 74 61 46 69 6c 65 55 52 4c 28 29 2c 74 68 69 73 2e 63 72 6f 73 73 4f 72 69 67 69 6e 3d 70 2e 73 74 75 62 53 63 72 69 70 74 45 6c 65 6d 65 6e 74 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 63 72 6f Data Ascii: },h.prototype.captureNonce=function(){this.nonce=p.stubScriptElement.nonce\|\|p.stubScriptElement.getAttribute("nonce")\|\|null},h.prototype.fetchBannerSDKDependency=function(){this.setDomainDataFileURL(),this.crossOrigin=p.stubScriptElement.getAttribute("cro
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 2e 4f 6e 65 54 72 75 73 74 2e 67 65 6f 6c 6f 63 61 74 69 6f 6e 52 65 73 70 6f 6e 73 65 2c 74 68 69 73 2e 73 65 74 47 65 6f 4c 6f 63 61 74 69 6f 6e 28 69 2e 63 6f 75 6e 74 72 79 43 6f 64 65 2c 69 2e 73 74 61 74 65 43 6f 64 65 29 2c 74 68 69 73 2e 61 64 64 42 61 6e 6e 65 72 53 44 4b 53 63 72 69 70 74 28 74 29 29 3a 28 69 3d 74 68 69 73 2e 72 65 61 64 43 6f 6f 6b 69 65 50 61 72 61 6d 28 70 2e 6f 70 74 61 6e 6f 6e 43 6f 6f 6b 69 65 4e 61 6d 65 2c 70 2e 67 65 6f 6c 6f 63 61 74 69 6f 6e 43 6f 6f 6b 69 65 73 50 61 72 61 6d 29 29 7c 7c 74 2e 53 6b 69 70 47 65 6f 6c 6f 63 61 74 69 6f 6e 3f 28 65 3d 69 2e 73 70 6c 69 74 28 22 3b 22 29 5b 30 5d 2c 69 3d 69 2e 73 70 6c 69 74 28 22 3b 22 29 5b 31 5d 2c 74 68 69 73 2e 73 65 74 47 65 6f 4c 6f 63 61 74 69 6f 6e 28 65 2c Data Ascii: .OneTrust.geolocationResponse,this.setGeoLocation(i.countryCode,i.stateCode),this.addBannerSDKScript(t)):(i=this.readCookieParam(p.optanonCookieName,p.geolocationCookiesParam))\|\|t.SkipGeolocation?(e=i.split(";")[0],i=i.split(";")[1],this.setGeoLocation(e,
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 74 47 65 6f 4c 6f 63 61 74 69 6f 6e 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 70 2e 75 73 65 72 4c 6f 63 61 74 69 6f 6e 3d 7b 63 6f 75 6e 74 72 79 3a 74 2c 73 74 61 74 65 3a 65 3d 76 6f 69 64 20 30 3d 3d 3d 65 3f 22 22 3a 65 7d 7d 2c 68 2e 70 72 6f 74 6f 74 79 70 65 2e 6f 74 46 65 74 63 68 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 69 2c 65 2c 6e 2c 61 29 7b 76 6f 69 64 20 30 3d 3d 3d 65 26 26 28 65 3d 21 31 29 2c 76 6f 69 64 20 30 3d 3d 3d 6e 26 26 28 6e 3d 6e 75 6c 6c 29 3b 76 61 72 20 6f 3d 77 69 6e 64 6f 77 2e 73 65 73 73 69 6f 6e 53 74 6f 72 61 67 65 26 26 77 69 6e 64 6f 77 2e 73 65 73 73 69 6f 6e 53 74 6f 72 61 67 65 2e 67 65 74 49 74 65 6d 28 22 6f 74 50 72 65 76 69 65 77 44 61 74 61 22 29 3b 69 66 28 6e 65 77 20 52 65 67 45 78 70 28 22 5e 66 69 6c 65 Data Ascii: tGeoLocation=function(t,e){p.userLocation={country:t,state:e=void 0===e?"":e}},h.prototype.otFetch=function(t,i,e,n,a){void 0===e&&(e=!1),void 0===n&&(n=null);var o=window.sessionStorage&&window.sessionStorage.getItem("otPreviewData");if(new RegExp("^file
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 76 61 72 20 65 2c 69 2c 6e 2c 61 3d 70 2e 75 73 65 72 4c 6f 63 61 74 69 6f 6e 2c 6f 3d 74 2e 52 75 6c 65 53 65 74 2e 66 69 6c 74 65 72 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 21 30 3d 3d 3d 74 2e 44 65 66 61 75 6c 74 7d 29 3b 69 66 28 21 61 2e 63 6f 75 6e 74 72 79 26 26 21 61 2e 73 74 61 74 65 29 72 65 74 75 72 6e 20 6f 26 26 30 3c 6f 2e 6c 65 6e 67 74 68 3f 6f 5b 30 5d 3a 6e 75 6c 6c 3b 66 6f 72 28 76 61 72 20 73 3d 61 2e 73 74 61 74 65 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 2c 72 3d 61 2e 63 6f 75 6e 74 72 79 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 2c 75 3d 30 3b 75 3c 74 2e 52 75 6c 65 53 65 74 2e 6c 65 6e 67 74 68 3b 75 2b 2b 29 69 66 28 21 30 3d 3d 3d 74 2e 52 75 6c 65 53 65 74 5b 75 5d 2e 47 6c 6f 62 61 6c 29 6e 3d 74 2e 52 75 Data Ascii: var e,i,n,a=p.userLocation,o=t.RuleSet.filter(function(t){return!0===t.Default});if(!a.country&&!a.state)return o&&0<o.length?o[0]:null;for(var s=a.state.toLowerCase(),r=a.country.toLowerCase(),u=0;u<t.RuleSet.length;u++)if(!0===t.RuleSet[u].Global)n=t.Ru
2024-10-14 09:45:47 UTC	1369	IN	Data Raw: 70 2e 49 41 42 43 6f 6f 6b 69 65 56 61 6c 75 65 3d 74 68 69 73 2e 67 65 74 43 6f 6f 6b 69 65 28 70 2e 6f 6e 65 54 72 75 73 74 49 41 42 43 6f 6f 6b 69 65 4e 61 6d 65 29 29 3a 70 2e 69 73 53 74 75 62 52 65 61 64 79 3d 21 31 7d 2c 68 2e 70 72 6f 74 6f 74 79 70 65 2e 76 61 6c 69 64 61 74 65 49 41 42 47 44 50 52 41 70 70 6c 69 65 64 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 3d 74 68 69 73 2e 72 65 61 64 43 6f 6f 6b 69 65 50 61 72 61 6d 28 70 2e 6f 70 74 61 6e 6f 6e 43 6f 6f 6b 69 65 4e 61 6d 65 2c 70 2e 67 65 6f 6c 6f 63 61 74 69 6f 6e 43 6f 6f 6b 69 65 73 50 61 72 61 6d 29 2e 73 70 6c 69 74 28 22 3b 22 29 5b 30 5d 3b 74 3f 74 68 69 73 2e 69 73 42 6f 6f 6c 65 61 6e 28 74 29 3f 70 2e 6f 6e 65 54 72 75 73 74 49 41 42 67 64 70 72 41 70 70 6c 69 65 73 47 Data Ascii: p.IABCookieValue=this.getCookie(p.oneTrustIABCookieName)):p.isStubReady=!1},h.prototype.validateIABGDPRApplied=function(){var t=this.readCookieParam(p.optanonCookieName,p.geolocationCookiesParam).split(";")[0];t?this.isBoolean(t)?p.oneTrustIABgdprAppliesG