Edit tour

Windows Analysis Report
https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e

Overview

General Information

Sample URL:	https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e
Analysis ID:	1533113
Tags:	openphish
Infos:

Detection

Score:	52
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Uses dynamic DNS services

HTML body contains low number of good links

HTML title does not match URL

Invalid T&C link found

Stores files to the Windows start menu directory

Suspicious form URL found

Uses insecure TLS / SSL version for HTTPS connection

Classification

Process Tree

System is w10x64

chrome.exe (PID: 2764 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 1288 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2076 --field-trial-handle=2036,i,12625179767181255259,17846544642908355843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 4580 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4220 --field-trial-handle=2036,i,12625179767181255259,17846544642908355843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 5708 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4060 --field-trial-handle=2036,i,12625179767181255259,17846544642908355843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 1672 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Joe Sandbox Signatures

• AV Detection
• Phishing
• Compliance
• Networking
• System Summary
• Boot Survival

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e

SlashNext: detection malicious, Label: Credential Stealing type: Phishing & Social Engineering

Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e

HTTP Parser: Number of links: 0

Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e

HTTP Parser: Title: RBC Royal Bank Secure Sign In does not match URL

Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Legal Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Accessibility Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Privacy & Security Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Legal Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Accessibility Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Privacy & Security Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Legal Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Accessibility Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Privacy & Security Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Legal Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Accessibility Opens in a new Tab
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Invalid link: Privacy & Security Opens in a new Tab

Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Form action: ../ses/SendLogin.php
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: Form action: ../ses/SendLogin.php

Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e

HTTP Parser: Iframe src: https://h.online-metrix.net/nc_QBeHCzRYpxDI5?1bec9bc67d4532b6=byEcRYgajAdm8AVUpJrlUUjD18tue8YGcGmpHIIC8ElVPLJzbTTafjMammaRkVOptMDXa5vdwVv8wxpLS8eV5XHFAUFPD0Sbi2j3QHfHrBxxfLszAeH-A7fDFZj4nslpfZcM81ihQLUSmG8Ohpt63w&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.asp

Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e

HTTP Parser: <input type="password" .../> found

Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No favicon
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No favicon
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No favicon
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No favicon
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No favicon
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No favicon
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No favicon
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No favicon

Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No <meta name="author".. found
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No <meta name="author".. found

Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No <meta name="copyright".. found
Source: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	HTTP Parser: No <meta name="copyright".. found

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49796 version: TLS 1.0

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49755 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.5:49788 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.5:49810 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.5:50077 version: TLS 1.2

Networking

Uses dynamic DNS services

Source: unknown

DNS query: name: www.finaltestwebsite.duckdns.org

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49796 version: TLS 1.0

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56

Source: global traffic	HTTP traffic detected: GET /UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e HTTP/1.1Host: www.finaltestwebsite.duckdns.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e HTTP/1.1Host: www.finaltestwebsite.duckdns.orgConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /UpdateVerifyPrss!/RBC/21-es2015.bb6a77a7815a933a151f.js HTTP/1.1Host: www.finaltestwebsite.duckdns.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=0k9ttg06mdgtom806i5srvqsbd
Source: global traffic	HTTP traffic detected: GET /s/0.7.48/clarity.js HTTP/1.1Host: www.clarity.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tag/uet/5488685?insights=1 HTTP/1.1Host: www.clarity.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /UpdateVerifyPrss!/RBC/3-es2015.bd681035a5935e50c9eb.js HTTP/1.1Host: www.finaltestwebsite.duckdns.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=0k9ttg06mdgtom806i5srvqsbd
Source: global traffic	HTTP traffic detected: GET /jstag/17acdab537e/bf00533cik/e6f72f64ed2c7fa_complete.js HTTP/1.1Host: js-cdn.dynatrace.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.finaltestwebsite.duckdns.orgsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/0.7.48/clarity.js HTTP/1.1Host: www.clarity.msConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tag/uet/5488685?insights=1 HTTP/1.1Host: www.clarity.msConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CLID=5399a5bee21643fd8cc1818d9d2fb7b2.20241014.20251014
Source: global traffic	HTTP traffic detected: GET /1yg5id05d7mqmpq2.js?oia45jq18eqdhuwv=4rvrfbxt&lc0xyztxiq5a78so=b97457d29e6f23aebaa806049c2e2abf HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jstag/17acdab537e/bf00533cik/e6f72f64ed2c7fa_complete.js HTTP/1.1Host: js-cdn.dynatrace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/10254029-60e4-4141-b6e9-3582cc281f3b/cecd808d-ce03-46a2-adbd-3e5049e18f33/86cf55bb-0e3f-4426-ab59-8417f63ca9fe/RBC_Shield.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/powered_by_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bat.js HTTP/1.1Host: bat.bing.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1yg5id05d7mqmpq2.js?oia45jq18eqdhuwv=4rvrfbxt&lc0xyztxiq5a78so=b97457d29e6f23aebaa806049c2e2abf HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAw-QTT8rLR7TZwGJgxlzEFMxnr_i6izZeJnTsgv-B41FgUCkhP8PXTfZ3-Zks6R8iWcGnGbe4pOW60cG4yAOmyMmRbsBw
Source: global traffic	HTTP traffic detected: GET /logos/10254029-60e4-4141-b6e9-3582cc281f3b/cecd808d-ce03-46a2-adbd-3e5049e18f33/86cf55bb-0e3f-4426-ab59-8417f63ca9fe/RBC_Shield.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/powered_by_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bat.js HTTP/1.1Host: bat.bing.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202408.1.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /p/action/5488685.js HTTP/1.1Host: bat.bing.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /UpdateVerifyPrss!/RBC/rbc-app-icon.e5eb0da3a5c3a7df6f81.svg HTTP/1.1Host: www.finaltestwebsite.duckdns.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=0k9ttg06mdgtom806i5srvqsbd; dtCookie=v_4_srv_-2D48_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K; rxVisitor=17289053278032EP8BJHAFENDQNQ5EP015GBORV5VFDTN; dtPC=-48$305327797_355h1vHLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0e0; dtSa=-; rxvt=1728907128799\|1728905327805
Source: global traffic	HTTP traffic detected: GET /tag/uet/5488685?insights=1 HTTP/1.1Host: www.clarity.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CLID=5399a5bee21643fd8cc1818d9d2fb7b2.20241014.20251014
Source: global traffic	HTTP traffic detected: GET /p/action/5488685.js HTTP/1.1Host: bat.bing.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202408.1.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tag/uet/5488685?insights=1 HTTP/1.1Host: www.clarity.msConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CLID=5399a5bee21643fd8cc1818d9d2fb7b2.20241014.20251014
Source: global traffic	HTTP traffic detected: GET /e8hjRJHX-ugmMZr7?b2e24aef952dc573=6rHyMJleFKJTUebwuB58DQ17O44lQw7dFA5Dz4I1C0cL7l2HCKk46mQPEy4XJzOPFSn4uXnpb4GcLLIYuf1yvFbt4QdxyHYxfJql2qzKOZSsAZFPYDvXHNkRGbZ0x0AfBtGj0qh0o4qK79EFbq7HzMPs9-oHGeya3FEGJ8mZp8psJsjIReVYT8GcV1wtt0qf5KeZZ_fi3UA&jb=373124266a716f7735576b6c666d7773246a73673d55696e6c6d757327323233322e687362773d4160726d6f67246a73603d4360726d6d652d3032313337 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /jyXYqb76tk4jGg4x?bd0ee88d5db3e926=ZZ0_EYOsZtwv_c9EAten5yvPonxDpEk8IOTHFPWyd99cG6ECfNaqSLaeUNybYkWko2bDi3wPowXg7UMVSULKiG9itaF94M4MTzPnrfZNxW8n1c9J8tmRfdM0XJrwhbLRwWWRXjpniKNn_wl_D1BYohCAeEOVEOXErQ HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /7fo_IhhKOM6S2NZ0?5a772f137357b373=U0BjyoXYSndtLZT7VoV-SaaSfwfK0wTe2au62MEMT2w4CSSx64LWW3ZvY9LPioqWtnmV6bx63vqND9nExd_ntkX5qEeHDIHyBMJN1H6CfcPuiU_ajk2vmCgMP29KWEOJcLxCsyiAaA2PEDAumvQjWW8f_KsZr4BPig HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /bf?type=js3&sn=v_4_srv_-2D48_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K&svrid=-48&flavor=cors&vi=HLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0&modifiedSince=1710841527681&rf=https%3A%2F%2Fwww.finaltestwebsite.duckdns.org%2FUpdateVerifyPrss!%2FRBC%2F%3Fkey%3D5050d2156464f8b75b40f3d8cba168a3d4aa145e&bp=3&app=0e6f72f64ed2c7fa&crc=2494667261&en=vmd7une8&end=1 HTTP/1.1Host: bf00533cik.bf.dynatrace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jyXYqb76tk4jGg4x?bd0ee88d5db3e926=ZZ0_EYOsZtwv_c9EAten5yvPonxDpEk8IOTHFPWyd99cG6ECfNaqSLaeUNybYkWko2bDi3wPowXg7UMVSULKiG9itaF94M4MTzPnrfZNxW8n1c9J8tmRfdM0XJrwhbLRwWWRXjpniKNn_wl_D1BYohCAeEOVEOXErQ HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /7fo_IhhKOM6S2NZ0?5a772f137357b373=U0BjyoXYSndtLZT7VoV-SaaSfwfK0wTe2au62MEMT2w4CSSx64LWW3ZvY9LPioqWtnmV6bx63vqND9nExd_ntkX5qEeHDIHyBMJN1H6CfcPuiU_ajk2vmCgMP29KWEOJcLxCsyiAaA2PEDAumvQjWW8f_KsZr4BPig HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=D3DAApB68YDUCmX&MD=BdrFWYN7 HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /nc_QBeHCzRYpxDI5?1bec9bc67d4532b6=byEcRYgajAdm8AVUpJrlUUjD18tue8YGcGmpHIIC8ElVPLJzbTTafjMammaRkVOptMDXa5vdwVv8wxpLS8eV5XHFAUFPD0Sbi2j3QHfHrBxxfLszAeH-A7fDFZj4nslpfZcM81ihQLUSmG8Ohpt63w&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.
Source: global traffic	HTTP traffic detected: GET /fp/clear.png HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /, 4rvrfbxt/88ed39bd48aa9e35b97457d29e6f23aebaa806049c2e2abfsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.finaltestwebsite.duckdns.orgSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /-5cngaDHNBs0Plpk?2d1a6d0f4ecf53e6=q7FJ51nGU9bVGdEWz04H2ZCO8f6VbDV5o0_5SeIjH5lA2k6kOgtmjEshiwHE1K3ssgiPT4rwUOAuTM08HEBG1fnXjD5VSHb8bbaEK_fvpat47kNMa0Wze1KvOz1dKnn6HjjSrrinywd5FS9d8GLNbVqp4cSKP1R3CwTbPEbRUbmjJYIhg_JCADWXRt1j8NW2IspVsVZNSlQUjQ HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /bnzB2n1wYsdSjqW2?6e473b4e0c0c59ed=YZpfJfcDimtLkp3-0SLaPCuW8mV_8ZA8G4zYGsm6eEwtsazifTJrQ64OSYIWLHHWOH6uAO5e3ChcJ1goxErWrtNVwKMT_KUAxnjfBrj8AF3rz7cgvGTOWGlqNh_mTH93rs7hkHZgh-U0_4Tl6m9vGaCnANSEoC2qsXMQvbTUg-0YtZhtZSKw_C4UdUdS9rrviNMsEFQubq-Apx4 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /VuJzmDjg0ajxgJPH?571bff3c6958d3fd=xWihm8Nv8X6qNvOc7OzGnXPU4UrpsA0nZXgS53QXEtKYGm_7CZ71pIPGX3vj7VO5jn3FcfPh0inGtqvz8s2b8Z0OtQeSQfMhYCH4E0uCD8qYtqpgGrceIU2qa3ODbd1L165DtkInLKr1nE1nkTAfiQ&jb=313e246c73633d3638613132303664363534623c633a62386c673a343464666134303537663466 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /n3fsUKIrowqsrozQ?2fe3f4ce0eedf246=i5kmFps7DM_f7iSaZIzb9fQFKtbYwAyYmOmHwd1c9oEZPenbhlH5xaZUlt2RubqYahUFHbiXAFqxlWhKv6lLK59mHGju1F3aGSFnGTJ2P8ZrrCaES67AA_cf-fxdj-7BuMdrXwkCqMzV5SIu HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /UG1bn6fGwsTLk8Db?c9ec2f11d6531fdd=ygbjW-XEce4ZYYIBDmoed6SvXWuy257f0F9eWvpstbS2ZjI-b5uljXNSMh0jOhrQjhJnlM4vyfMcnmtJ3sKFmU_JkT0W9EP577mQavBqhnqdl4KqIRDjrjdtqeFMA4w7-UdhtJ5QeZSwxbR7FXquHhfPAMIyt_5_s2Qc4P3tnSP4_hKnmZls4ZufKEPXdxZaoFrH_Ye9yOJDd64 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /fYFYRWAd61pYwcQM?819a2a867a2b8c76=k-EmwVUhRu3TxyJOLtmnSOv1k3rb8i09ekXd4GBvUaLwxRixdofnYwEjHVq18JaCZYBfkHe-_bUm44k2KHDWF3LAxxfoh7BOVqNjeg5DznlgU_YewmRVfrJNz3qkwtoOt251xQ__xcjc2Z01i92tRQ2r2VE HTTP/1.1Host: h64.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /VuJzmDjg0ajxgJPH?571bff3c6958d3fd=xWihm8Nv8X6qNvOc7OzGnXPU4UrpsA0nZXgS53QXEtKYGm_7CZ71pIPGX3vj7VO5jn3FcfPh0inGtqvz8s2b8Z0OtQeSQfMhYCH4E0uCD8qYtqpgGrceIU2qa3ODbd1L165DtkInLKr1nE1nkTAfiQ&ja=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
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /IQhCRfziehjT88cc?86f6acb28b0c481c=j1wfsTFj3ehnEk_bNOhEB74PZoIWp1_nPLwgd5kLkplCMZLOD8D9BxxnXS4XIN-y8J3LiY6H9aVxOvNEyo7tA1t-TFndsQcWqcYmyWsaSuYTiCe1Z5hACcH64JUh2zHe3aMQuHc0Jw57aSfR7pEPHDZC04tSlWU HTTP/1.1Host: 4rvrfbxt5op3gbbg2eaooqlbtr2xkuubotrgfmwy88ed39bd48aa9e35am1.e.aa.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /e8hjRJHX-ugmMZr7?b2e24aef952dc573=6rHyMJleFKJTUebwuB58DQ17O44lQw7dFA5Dz4I1C0cL7l2HCKk46mQPEy4XJzOPFSn4uXnpb4GcLLIYuf1yvFbt4QdxyHYxfJql2qzKOZSsAZFPYDvXHNkRGbZ0x0AfBtGj0qh0o4qK79EFbq7HzMPs9-oHGeya3FEGJ8mZp8psJsjIReVYT8GcV1wtt0qf5KeZZ_fi3UA&jb=373124266a716f7735576b6c666d7773246a73673d55696e6c6d757327323233322e687362773d4160726d6f67246a73603d4360726d6d652d3032313337 HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /VuJzmDjg0ajxgJPH?571bff3c6958d3fd=xWihm8Nv8X6qNvOc7OzGnXPU4UrpsA0nZXgS53QXEtKYGm_7CZ71pIPGX3vj7VO5jn3FcfPh0inGtqvz8s2b8Z0OtQeSQfMhYCH4E0uCD8qYtqpgGrceIU2qa3ODbd1L165DtkInLKr1nE1nkTAfiQ&jac=1&je=333a31312624706f356e6d2460637473763d253f42273232646774656e253030273b43312e3230273a432730307174617675732d32302533492730326168637065616c67253032273f4424637766683d6165666a616734373034353764303064606a6639373136333f363b30666064396136343d306066353e36333634396760676e3335393761603f343763303331372465783b3d3062626c61643335366663343c3035353238313f62303a343064393539343c346362623d6767343126677a36356137383534303a386363643b32373630613b62643565383b6065643635646138246a736d3d55616e666d757125323231302e7563683d2d3540253032637061606b74656174777a6527303027334127323270383425323a273043273230606b7c6c65737125303a253143273032363625323a253043253a306072636e6671273a3025334325374a2535402730326270616e6c253032253b43273230476d6d656467253232436a7a6f6f67273032253043253a327465727b6b6d6e2732302731492732323331352d323027354625324125374a253032627a636c642732302731492732324c6f762d3340432731444270616e6c253032253a4127323076677071616d6e253032273b412730303a25323025374c253043253f402732306270636c6c2732322733432d3230416a706f6d6b756d2d323025324b273032746570716b676c253230253149253030333337253032253f442735442d304125303264776e6454657271696d664c6b71762732322733412d354025374a2730326072636c662d3032253141273a32456d6d656c652732304b68706f6d6d27303227324127303a74657271696d662530302731412530323139372c302e3d3b31382c313130273a3025374625304b2535402730326270616e6c253032253b432732304e6d76273b4041253144407a616c66273032253043253a327465727b6b6d6e2732302731492732323a2e3226302c32273032253544253a432737422d30306270616c66273a3025334325303a436a706d6f69756f25323a253043253a30746570736b6d6c2d3032253141273a323333352c302e373933302e3333322d30302535442737462d30432530326f67626b6e672732322733416e616e73652d30412530326f6d666d6e253230253149253030273032253043253a32726c617c646d726f253030273b43253230576b66646d75712732322732432d3230706c6976646f706d5467707b6b6f6e2732302d334327303031302c302e38253032253a41273230776d75343c2732322733436e616e7167273744247561643d2737422d30306270616c66712d3032253141273d4227354027323260726166642732322d3143253032456d6d6f6e652530304160726d6f672732322732432d323076657a716b6f6c253030273b4325323031333f253030273544253043253f422732326a70636e66253030273b432532304e6d7c2531404327334440726166642732322d30412530327467707b6b6f6e2732302d334327303038253032253f442732432d35402530326070636666253230253149253030416a726f6f697565253032253a4127323076677071616d6e253032273b412730303331372732322d374625354c2730432732306f6d6a6b6c652732302d334364636e73652732432d3230706c6976646f706d2730302d314125303255616e666d757125323025374c HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /
Source: global traffic	HTTP traffic detected: GET /DNElIsMczhTFCzpH?a4dfa7c7b579b571=jWjFLsg_zyA_1QAXMTEi6FMSwuGw5PSuKX8LR4Tk2MzqA610iINRTkbdexklxlUvbXqD5A9Coe4HWIphbs9yfvVujp61Zt0T_NBy7mhysX10Oj59o8RnS0_HbPx-oiQ_qaDdxifRuTk8hJqT0wQcfVkup1ju6QRsRGSlOE4 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://h.online-metrix.net/nc_QBeHCzRYpxDI5?1bec9bc67d4532b6=byEcRYgajAdm8AVUpJrlUUjD18tue8YGcGmpHIIC8ElVPLJzbTTafjMammaRkVOptMDXa5vdwVv8wxpLS8eV5XHFAUFPD0Sbi2j3QHfHrBxxfLszAeH-A7fDFZj4nslpfZcM81ihQLUSmG8Ohpt63w&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/o
Source: global traffic	HTTP traffic detected: GET /vMk1n5p-ynw1KBkl?f5df13a721df4f47=FPxX32D9HnkutFfRBaY_a2QT0aMGL2V3RB5nXKv5PKzmTyXBR0UyzYUr1exA0OBXph0Ko7VRtUQzWq_6uqpoY2wQm03qGc2zgLtzshRzewfeTHodkBaYmdx0in3dRZeycJw6lApSzs3NOknHplkso_M6PeDq7LlDPRzuJJnWaUt_zUaxQsJ3aues5b8vKYeZdhSNXKg2u5KDeg&jac=1&je=3a3c24266d67646a35283327304130253043312d324134343b66376561366166316934633736653b6e623a3b36643862303962313630303939313a333a313164306e6166356764333a32603a6735396330636269393b29 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /8iRu8MFvD6t3CRdC?d0c6c5bfaf846054=y2PVQLi_eCpXMPTuZEV58Hd7b6Cl698YffeGGdjPw7N1WOTgbT3My_w9gAhdtIE0mXPAJQVNAyt_XPQgPJb9SFkjSwX4_V27HktgKmJPBjVD55EbSd2AIbsTuor4C9amuLXVFl500sTRIKihvW881A&jf=313e246c73603d633d306064306133333533343c33336262393261313637603460386461323564 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://h.online-metrix.net/-5cngaDHNBs0Plpk?2d1a6d0f4ecf53e6=q7FJ51nGU9bVGdEWz04H2ZCO8f6VbDV5o0_5SeIjH5lA2k6kOgtmjEshiwHE1K3ssgiPT4rwUOAuTM08HEBG1fnXjD5VSHb8bbaEK_fvpat47kNMa0Wze1KvOz1dKnn6HjjSrrinywd5FS9d8GLNbVqp4cSKP1R3CwTbPEbRUbmjJYIhg_JCADWXRt1j8NW2IspVsVZNSlQUjQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /D_qHMAbslKDc0Ocx?161e18ca7400891c=iXC5yQonCX_0yYyPJ-zcjvn1aDW_DUsvK4KhhAJLsprRqCT3Efrv4gbntU9pQKp7MplTrX01tIKrA2obwLK9XuMk4475X5cVFhN_Aafqkc8x798Pl3RRHcP7r3cLNB2Gb9jAk4Jsnt6k-T3x&fr HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://h.online-metrix.net/-5cngaDHNBs0Plpk?2d1a6d0f4ecf53e6=q7FJ51nGU9bVGdEWz04H2ZCO8f6VbDV5o0_5SeIjH5lA2k6kOgtmjEshiwHE1K3ssgiPT4rwUOAuTM08HEBG1fnXjD5VSHb8bbaEK_fvpat47kNMa0Wze1KvOz1dKnn6HjjSrrinywd5FS9d8GLNbVqp4cSKP1R3CwTbPEbRUbmjJYIhg_JCADWXRt1j8NW2IspVsVZNSlQUjQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /H4PrvFxQ3xKNbNIe?718e90158696489e=YgtErbPosXHqIVoKJ1rjsPfZDiSHU5NQ8yTJQw3jQfyG9U3Bx7E09wYXO1iAbo1thHCecjTGVmDQVhwArmJAKo5NQZHLtz1acONGab7Jkbcr3-vrqW4yxfzPLskin3Z6tCTlqkUT1gXpOeRnXK1iePG0_sCs8arykbNR0QktzMXfOOFWGNv-vfbxfSV_PS_UwDQGx6xzHc-k1A&jf=36393626736b645d7a6e663f7666725f5261317234336c6e7c723a4a486e7567247b6b645f6661766d3d3335303a3930373334392671696457767b70673d756760326763647161247b69665d6967793d31303531333231333834323730613a34363061653366303038313234323a32613a363430636733643831323132373231363a32303036393b3f333a37376434303335626b376038336b60363131666637316a6334316035313f32363a643536323166643d373137346c3132653462313166303532346734363e353b31343764623464373e636132633c6360333b356733636b6066333b613a3a3232643630313632353639333432323930333333336630613f3038643a267161645d716b653d3332343438323030363167366331326661646d30626563653b6c383660673b626561353831366631326b66663866626461646c6130313038336b363a32373036636666623d393237303a30323667313336676b3a31333b32336d3466323536323035326569366438343e3b35653b353630676d3a303767313338306133603733303a35623d313235393a333b26716964703f38 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /jOFKxf3F-K518wsE?b75b38b07c7cf524=klj5a-GlKvZFIPz7HYTspTAO5jKZDJWbpBXvONnq3_3axVf6AJ7sCz07pAAfEwxurt9WV6ageeho1TlKcYwdF_EjhxW77YzwGO8zqsVma44622YEVX31mWdl6IdNQ34AMDK_2wom81Ps4zltY4JDQYdqEnXdb52jBmKclpp3UB5IQ7TBPwEI8aqq_7sdNqgAzo25zg2ppx-new&jf=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://h.online-metrix.net/bnzB2n1wYsdSjqW2?6e473b4e0c0c59ed=YZpfJfcDimtLkp3-0SLaPCuW8mV_8ZA8G4zYGsm6eEwtsazifTJrQ64OSYIWLHHWOH6uAO5e3ChcJ1goxErWrtNVwKMT_KUAxnjfBrj8AF3rz7cgvGTOWGlqNh_mTH93rs7hkHZgh-U0_4Tl6m9vGaCnANSEoC2qsXMQvbTUg-0YtZhtZSKw_C4UdUdS9rrviNMsEFQubq-Apx4Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120100v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /bf?type=js3&sn=v_4_srv_19_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K_app-3A0e6f72f64ed2c7fa_1_ol_0_perc_100000_mul_1&svrid=19&flavor=cors&vi=HLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0&modifiedSince=1728388269899&rf=https%3A%2F%2Fwww.finaltestwebsite.duckdns.org%2FUpdateVerifyPrss!%2FRBC%2F%3Fkey%3D5050d2156464f8b75b40f3d8cba168a3d4aa145e&bp=3&app=0e6f72f64ed2c7fa&crc=524928686&en=vmd7une8&end=1 HTTP/1.1Host: bf00533cik.bf.dynatrace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dtCookie=v_4_srv_2_sn_E0252D80E1DE8FD461E7AEE1D76361C3_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0
Source: global traffic	HTTP traffic detected: GET /UpdateVerifyPrss!/RBC/favicon.ico HTTP/1.1Host: www.finaltestwebsite.duckdns.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=0k9ttg06mdgtom806i5srvqsbd; rxVisitor=17289053278032EP8BJHAFENDQNQ5EP015GBORV5VFDTN; dtSa=-; rxvt=1728907137072\|1728905327805; dtPC=-48$305327797_355h-vHLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0e0; dtCookie=v_4_srv_19_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K_app-3A0e6f72f64ed2c7fa_1_ol_0_perc_100000_mul_1
Source: global traffic	HTTP traffic detected: GET /vMk1n5p-ynw1KBkl?f5df13a721df4f47=FPxX32D9HnkutFfRBaY_a2QT0aMGL2V3RB5nXKv5PKzmTyXBR0UyzYUr1exA0OBXph0Ko7VRtUQzWq_6uqpoY2wQm03qGc2zgLtzshRzewfeTHodkBaYmdx0in3dRZeycJw6lApSzs3NOknHplkso_M6PeDq7LlDPRzuJJnWaUt_zUaxQsJ3aues5b8vKYeZdhSNXKg2u5KDeg&je=333e3a2672663d247a64763f34313333312d313d30322c353132322d333532322e3d3b30312f313738302e373b32322d333530382c3739303b2f333532302e3131303b2d3137303224353b37322f313532302c3d3931312d393732302e353b313b25333530322c3438333b2f333730302e35393c342f313538322e363234322f333d32302c373931302d333732322c35303739253137303024353237322d333732382e323133322f39353232 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /VuJzmDjg0ajxgJPH?571bff3c6958d3fd=xWihm8Nv8X6qNvOc7OzGnXPU4UrpsA0nZXgS53QXEtKYGm_7CZ71pIPGX3vj7VO5jn3FcfPh0inGtqvz8s2b8Z0OtQeSQfMhYCH4E0uCD8qYtqpgGrceIU2qa3ODbd1L165DtkInLKr1nE1nkTAfiQ&jb=313e246c73633d3638613132303664363534623c633a62386c673a343464666134303537663466 HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /n3fsUKIrowqsrozQ?2fe3f4ce0eedf246=i5kmFps7DM_f7iSaZIzb9fQFKtbYwAyYmOmHwd1c9oEZPenbhlH5xaZUlt2RubqYahUFHbiXAFqxlWhKv6lLK59mHGju1F3aGSFnGTJ2P8ZrrCaES67AA_cf-fxdj-7BuMdrXwkCqMzV5SIu HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /fYFYRWAd61pYwcQM?819a2a867a2b8c76=k-EmwVUhRu3TxyJOLtmnSOv1k3rb8i09ekXd4GBvUaLwxRixdofnYwEjHVq18JaCZYBfkHe-_bUm44k2KHDWF3LAxxfoh7BOVqNjeg5DznlgU_YewmRVfrJNz3qkwtoOt251xQ__xcjc2Z01i92tRQ2r2VE HTTP/1.1Host: h64.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /IQhCRfziehjT88cc?86f6acb28b0c481c=j1wfsTFj3ehnEk_bNOhEB74PZoIWp1_nPLwgd5kLkplCMZLOD8D9BxxnXS4XIN-y8J3LiY6H9aVxOvNEyo7tA1t-TFndsQcWqcYmyWsaSuYTiCe1Z5hACcH64JUh2zHe3aMQuHc0Jw57aSfR7pEPHDZC04tSlWU HTTP/1.1Host: 4rvrfbxt5op3gbbg2eaooqlbtr2xkuubotrgfmwy88ed39bd48aa9e35am1.e.aa.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fp/clear.png HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /VuJzmDjg0ajxgJPH?571bff3c6958d3fd=xWihm8Nv8X6qNvOc7OzGnXPU4UrpsA0nZXgS53QXEtKYGm_7CZ71pIPGX3vj7VO5jn3FcfPh0inGtqvz8s2b8Z0OtQeSQfMhYCH4E0uCD8qYtqpgGrceIU2qa3ODbd1L165DtkInLKr1nE1nkTAfiQ&jac=1&je=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;
Source: global traffic	HTTP traffic detected: GET /8iRu8MFvD6t3CRdC?d0c6c5bfaf846054=y2PVQLi_eCpXMPTuZEV58Hd7b6Cl698YffeGGdjPw7N1WOTgbT3My_w9gAhdtIE0mXPAJQVNAyt_XPQgPJb9SFkjSwX4_V27HktgKmJPBjVD55EbSd2AIbsTuor4C9amuLXVFl500sTRIKihvW881A&jf=313e246c73603d633d306064306133333533343c33336262393261313637603460386461323564 HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /D_qHMAbslKDc0Ocx?161e18ca7400891c=iXC5yQonCX_0yYyPJ-zcjvn1aDW_DUsvK4KhhAJLsprRqCT3Efrv4gbntU9pQKp7MplTrX01tIKrA2obwLK9XuMk4475X5cVFhN_Aafqkc8x798Pl3RRHcP7r3cLNB2Gb9jAk4Jsnt6k-T3x&fr HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /ut6-RkZ4HlE9LrRz?625e41203933a7c0=nMxTTw4tlF5jMQhmAg-JVZtvk0QdSOQRwPEbtt9v7i9jOcBxdQFydD-E4NnK82Y1jg2KpyHvXw7-4YVoUQPcol5FVHaxTxp2fTcVYK4X8GtaGutGVY98VBTBkwEa0jO-oGxOzEUGS8Z0A9M8r0LaMKxcVUZ_D0jBG_w6H2OYnj5ccnVS0apC_fxBLk8xF--sfhs497zBxroSnY9ANlitKQ&sera_parametere=XkhYAgJdWlYNDABTDQBQBF5bVgUBX1VSDQACBQkEBwcLXgQFBFtTBVEOV0dKFg5cVkgQEEAcUSARDyNEDiEWBwhSFgFfXA8BWkwSRAohFgJ6CEBTdxxQVFxXEhVKQABxHQ8nQQR9RABdBVRZC1UAB1wKAVMBXQFXUFlRVFhXBgUBDwZdC1tSVFBeAgcIXApTCghDClxXAQEJAFkEXVYKV1wMXQVSAAdXAR4LEgRVS1FZXFdRBAhWVAxZVlMBVAYFXAkHVQANBgEMAFkCDFBVVggNBl1RWlVCVVFcUwFdAxNRUVhJAh8SDQkBWFgAXRVdUwVDBg56ChZbVQRHWxMOBAkPQwZcSl8zXVYFDk4WFVZaBREASWYBBVhUAwBaDhVQTAVRVwU%3D&count=0&max=0 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://h.online-metrix.net/nc_QBeHCzRYpxDI5?1bec9bc67d4532b6=byEcRYgajAdm8AVUpJrlUUjD18tue8YGcGmpHIIC8ElVPLJzbTTafjMammaRkVOptMDXa5vdwVv8wxpLS8eV5XHFAUFPD0Sbi2j3QHfHrBxxfLszAeH-A7fDFZj4nslpfZcM81ihQLUSmG8Ohpt63w&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.co
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /DNElIsMczhTFCzpH?a4dfa7c7b579b571=jWjFLsg_zyA_1QAXMTEi6FMSwuGw5PSuKX8LR4Tk2MzqA610iINRTkbdexklxlUvbXqD5A9Coe4HWIphbs9yfvVujp61Zt0T_NBy7mhysX10Oj59o8RnS0_HbPx-oiQ_qaDdxifRuTk8hJqT0wQcfVkup1ju6QRsRGSlOE4 HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /vMk1n5p-ynw1KBkl?f5df13a721df4f47=FPxX32D9HnkutFfRBaY_a2QT0aMGL2V3RB5nXKv5PKzmTyXBR0UyzYUr1exA0OBXph0Ko7VRtUQzWq_6uqpoY2wQm03qGc2zgLtzshRzewfeTHodkBaYmdx0in3dRZeycJw6lApSzs3NOknHplkso_M6PeDq7LlDPRzuJJnWaUt_zUaxQsJ3aues5b8vKYeZdhSNXKg2u5KDeg&je=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /bf?type=js3&sn=v_4_srv_19_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K_app-3A0e6f72f64ed2c7fa_1_ol_0_perc_100000_mul_1&svrid=19&flavor=cors&vi=HLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0&modifiedSince=1728388269899&rf=https%3A%2F%2Fwww.finaltestwebsite.duckdns.org%2FUpdateVerifyPrss!%2FRBC%2F%3Fkey%3D5050d2156464f8b75b40f3d8cba168a3d4aa145e&bp=3&app=0e6f72f64ed2c7fa&crc=1789980364&en=vmd7une8&end=1 HTTP/1.1Host: bf00533cik.bf.dynatrace.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dtCookie=v_4_srv_2_sn_E0252D80E1DE8FD461E7AEE1D76361C3_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /ut6-RkZ4HlE9LrRz?625e41203933a7c0=nMxTTw4tlF5jMQhmAg-JVZtvk0QdSOQRwPEbtt9v7i9jOcBxdQFydD-E4NnK82Y1jg2KpyHvXw7-4YVoUQPcol5FVHaxTxp2fTcVYK4X8GtaGutGVY98VBTBkwEa0jO-oGxOzEUGS8Z0A9M8r0LaMKxcVUZ_D0jBG_w6H2OYnj5ccnVS0apC_fxBLk8xF--sfhs497zBxroSnY9ANlitKQ&sera_parametere=XkhYAgJdWlYNDABTDQBQBF5bVgUBX1VSDQACBQkEBwcLXgQFBFtTBVEOV0dKFg5cVkgQEEAcUSARDyNEDiEWBwhSFgFfXA8BWkwSRAohFgJ6CEBTdxxQVFxXEhVKQABxHQ8nQQR9RABdBVRZC1UAB1wKAVMBXQFXUFlRVFhXBgUBDwZdC1tSVFBeAgcIXApTCghDClxXAQEJAFkEXVYKV1wMXQVSAAdXAR4LEgRVS1FZXFdRBAhWVAxZVlMBVAYFXAkHVQANBgEMAFkCDFBVVggNBl1RWlVCVVFcUwFdAxNRUVhJAh8SDQkBWFgAXRVdUwVDBg56ChZbVQRHWxMOBAkPQwZcSl8zXVYFDk4WFVZaBREASWYBBVhUAwBaDhVQTAVRVwU%3D&count=0&max=0 HTTP/1.1Host: h.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /vMk1n5p-ynw1KBkl?f5df13a721df4f47=FPxX32D9HnkutFfRBaY_a2QT0aMGL2V3RB5nXKv5PKzmTyXBR0UyzYUr1exA0OBXph0Ko7VRtUQzWq_6uqpoY2wQm03qGc2zgLtzshRzewfeTHodkBaYmdx0in3dRZeycJw6lApSzs3NOknHplkso_M6PeDq7LlDPRzuJJnWaUt_zUaxQsJ3aues5b8vKYeZdhSNXKg2u5KDeg&je=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /vMk1n5p-ynw1KBkl?f5df13a721df4f47=FPxX32D9HnkutFfRBaY_a2QT0aMGL2V3RB5nXKv5PKzmTyXBR0UyzYUr1exA0OBXph0Ko7VRtUQzWq_6uqpoY2wQm03qGc2zgLtzshRzewfeTHodkBaYmdx0in3dRZeycJw6lApSzs3NOknHplkso_M6PeDq7LlDPRzuJJnWaUt_zUaxQsJ3aues5b8vKYeZdhSNXKg2u5KDeg&je=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.f
Source: global traffic	HTTP traffic detected: GET /vMk1n5p-ynw1KBkl?f5df13a721df4f47=FPxX32D9HnkutFfRBaY_a2QT0aMGL2V3RB5nXKv5PKzmTyXBR0UyzYUr1exA0OBXph0Ko7VRtUQzWq_6uqpoY2wQm03qGc2zgLtzshRzewfeTHodkBaYmdx0in3dRZeycJw6lApSzs3NOknHplkso_M6PeDq7LlDPRzuJJnWaUt_zUaxQsJ3aues5b8vKYeZdhSNXKg2u5KDeg&je=3a3b3126267065743531332c31322c31322e30382c31352e3d342e34372e35332e3e362e30322c343c2e32322e34342e32302c3e342c30302434362e32302e34362632302c34342c38302e34362c30302e36342630322c363c2c323038302c34343e34372c322e343d3937352e322e363732313f2c322e363c3636342e302c34373132392c322e343d3133342e322e363436363f2c322e363d3a37342e302c34373832302c322e343c3132312e322e36313135302c322e363c3a34352e302c3431303a392c322e343a3837352e322e363337363d2c322e36383432362e302c34303d32302c322e343c3533342e322e363133333b2c322e363d3733372e302c34363a3a362c322e343a3934312e322e363733383d2c322e363c3232302e302c34303d32302c322e343d3233352e322e363136333e2c322e36393b32352e302c34323832302c322e343b31373a2e322e363436363f2c322e363c3532362e302c34303d32302c322e343e3634352e322e363632383e2c322e36393731382e302c373a3b31332c322e373c3536372e322e36323030382c322e353d3737362e302c37323832302c322e363a3837352e322e333133333b2c322e34383232302e302c37323832302c322e343e3634352e322e35323030382c332e30383232303842465d4160706f6d673a4a5235332c3736362c31312e3d34342c343b2c36373a2c353a2c3f36302c312e343a372e34372c33353b2c32392e3533392430312e3a31322e363d2c3435372c313a2e3a3b372e35352c38363e2c31322e3d35312c31322c3634302e33332c32303b2c31322c3139352e3635263337392c3e3b2c3436342e3130263636382e35342638333a2e33372e32363524313b2e393a322e36312e343b362431312e3035322433312c3232332c3a362e3a30352c31312c3a30302c30332c393a362c31322c3935362e34372e3337392c3e322c31313a2e30342c3833362e3a372e3935342e3f302c3630312c33322e3530312e3332263134322e33332c343c342c33302e363e382e343b2c3434362c33382e3130332431302e36363a2e31392c3834352c313a2e3134302e36302c39373e2c3a322e3e36372c37352c37373e2e32312c30373b2c35342c3133363841523253415f303241565f363838464f57313239 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /vMk1n5p-ynw1KBkl?f5df13a721df4f47=FPxX32D9HnkutFfRBaY_a2QT0aMGL2V3RB5nXKv5PKzmTyXBR0UyzYUr1exA0OBXph0Ko7VRtUQzWq_6uqpoY2wQm03qGc2zgLtzshRzewfeTHodkBaYmdx0in3dRZeycJw6lApSzs3NOknHplkso_M6PeDq7LlDPRzuJJnWaUt_zUaxQsJ3aues5b8vKYeZdhSNXKg2u5KDeg&je=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule90401v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /vMk1n5p-ynw1KBkl?f5df13a721df4f47=FPxX32D9HnkutFfRBaY_a2QT0aMGL2V3RB5nXKv5PKzmTyXBR0UyzYUr1exA0OBXph0Ko7VRtUQzWq_6uqpoY2wQm03qGc2zgLtzshRzewfeTHodkBaYmdx0in3dRZeycJw6lApSzs3NOknHplkso_M6PeDq7LlDPRzuJJnWaUt_zUaxQsJ3aues5b8vKYeZdhSNXKg2u5KDeg&je=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.f
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703051v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703050v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /vMk1n5p-ynw1KBkl?f5df13a721df4f47=FPxX32D9HnkutFfRBaY_a2QT0aMGL2V3RB5nXKv5PKzmTyXBR0UyzYUr1exA0OBXph0Ko7VRtUQzWq_6uqpoY2wQm03qGc2zgLtzshRzewfeTHodkBaYmdx0in3dRZeycJw6lApSzs3NOknHplkso_M6PeDq7LlDPRzuJJnWaUt_zUaxQsJ3aues5b8vKYeZdhSNXKg2u5KDeg&je=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.f
Source: global traffic	HTTP traffic detected: GET /rules/rule700950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703550v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703551v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704000v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704001v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=D3DAApB68YDUCmX&MD=BdrFWYN7 HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /rules/rule702400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703300v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703301v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120128v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230157v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230104v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120607v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120603v8s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230158v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230162v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230164v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230166v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230165v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230167v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230170v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230168v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230169v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230171v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230172v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230174v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230173v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120119v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704101v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704200v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704201v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704151v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704100v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704150v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule226009v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /vMk1n5p-ynw1KBkl?f5df13a721df4f47=FPxX32D9HnkutFfRBaY_a2QT0aMGL2V3RB5nXKv5PKzmTyXBR0UyzYUr1exA0OBXph0Ko7VRtUQzWq_6uqpoY2wQm03qGc2zgLtzshRzewfeTHodkBaYmdx0in3dRZeycJw6lApSzs3NOknHplkso_M6PeDq7LlDPRzuJJnWaUt_zUaxQsJ3aues5b8vKYeZdhSNXKg2u5KDeg&je=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fin

Source: chromecache_150.2.dr	String found in binary or memory: L.getElementsByTagName("iframe"),na=P.length,ma=0;ma<na;ma++)if(!v&&c(P[ma],G.Ie)){GJ("https://www.youtube.com/iframe_api");v=!0;break}})}}else F(u.vtp_gtmOnSuccess)}var q=["www.youtube.com","www.youtube-nocookie.com"],r={UNSTARTED:-1,ENDED:0,PLAYING:1,PAUSED:2,BUFFERING:3,CUED:5},t,v=!1;Z.__ytl=n;Z.__ytl.o="ytl";Z.__ytl.isVendorTemplate=!0;Z.__ytl.priorityOverride=0;Z.__ytl.isInfrastructure=!1; equals www.youtube.com (Youtube)
Source: chromecache_146.2.dr, chromecache_142.2.dr, chromecache_150.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	String found in binary or memory: Math.round(q);u["gtm.videoElapsedTime"]=Math.round(f);u["gtm.videoPercent"]=r;u["gtm.videoVisible"]=t;return u},kk:function(){e=Ab()},sd:function(){d()}}};var hc=la(["data-gtm-yt-inspected-"]),YC=["www.youtube.com","www.youtube-nocookie.com"],ZC,$C=!1; equals www.youtube.com (Youtube)
Source: chromecache_142.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	String found in binary or memory: if(!(e\|\|f\|\|g\|\|k.length\|\|m.length))return;var p={nh:e,lh:f,mh:g,Xh:k,Yh:m,Ie:n,Eb:b},q=C.YT;if(q)return q.ready&&q.ready(d),b;var r=C.onYouTubeIframeAPIReady;C.onYouTubeIframeAPIReady=function(){r&&r();d()};F(function(){for(var t=E.getElementsByTagName("script"),v=t.length,u=0;u<v;u++){var w=t[u].getAttribute("src");if(iD(w,"iframe_api")\|\|iD(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!$C&&gD(x[A],p.Ie))return xc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_128.2.dr, chromecache_143.2.dr	String found in binary or memory: return b}WC.F="internal.enableAutoEventOnTimer";var hc=la(["data-gtm-yt-inspected-"]),YC=["www.youtube.com","www.youtube-nocookie.com"],ZC,$C=!1; equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: www.finaltestwebsite.duckdns.org
Source: global traffic	DNS traffic detected: DNS query: www.clarity.ms
Source: global traffic	DNS traffic detected: DNS query: www1.royalbank.com
Source: global traffic	DNS traffic detected: DNS query: secure.royalbank.com
Source: global traffic	DNS traffic detected: DNS query: js-cdn.dynatrace.com
Source: global traffic	DNS traffic detected: DNS query: www.rbcroyalbank.com
Source: global traffic	DNS traffic detected: DNS query: h.online-metrix.net
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: cdn.cookielaw.org
Source: global traffic	DNS traffic detected: DNS query: bf00533cik.bf.dynatrace.com
Source: global traffic	DNS traffic detected: DNS query: c.clarity.ms
Source: global traffic	DNS traffic detected: DNS query: h64.online-metrix.net
Source: global traffic	DNS traffic detected: DNS query: 4rvrfbxt5op3gbbg2eaooqlbtr2xkuubotrgfmwy88ed39bd48aa9e35am1.e.aa.online-metrix.net

Source: unknown

HTTP traffic detected: POST /bf?type=js3&sn=v_4_srv_-2D48_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K&svrid=-48&flavor=cors&vi=HLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0&modifiedSince=1710841527681&rf=https%3A%2F%2Fwww.finaltestwebsite.duckdns.org%2FUpdateVerifyPrss!%2FRBC%2F%3Fkey%3D5050d2156464f8b75b40f3d8cba168a3d4aa145e&bp=3&app=0e6f72f64ed2c7fa&crc=2494667261&en=vmd7une8&end=1 HTTP/1.1Host: bf00533cik.bf.dynatrace.comConnection: keep-aliveContent-Length: 1594sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plain;charset=UTF-8Accept: */*Origin: https://www.finaltestwebsite.duckdns.orgSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.finaltestwebsite.duckdns.org/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundcontent-type: text/htmlcache-control: private, no-cache, max-age=0pragma: no-cachecontent-length: 1249date: Mon, 14 Oct 2024 11:28:47 GMTserver: LiteSpeedalt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundcontent-type: text/htmlcache-control: private, no-cache, max-age=0pragma: no-cachecontent-length: 1249date: Mon, 14 Oct 2024 11:28:47 GMTserver: LiteSpeedalt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundcontent-type: text/htmlcache-control: private, no-cache, max-age=0pragma: no-cachecontent-length: 1249date: Mon, 14 Oct 2024 11:28:52 GMTserver: LiteSpeedalt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundcontent-type: text/htmlcache-control: private, no-cache, max-age=0pragma: no-cachecontent-length: 1249date: Mon, 14 Oct 2024 11:29:04 GMTserver: LiteSpeedalt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"connection: close

Source: chromecache_117.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_138.2.dr, chromecache_141.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_131.2.dr, chromecache_158.2.dr	String found in binary or memory: https://bf00533cik.bf.dynatrace.com/bf
Source: chromecache_146.2.dr, chromecache_142.2.dr, chromecache_150.2.dr, chromecache_128.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_137.2.dr, chromecache_163.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_146.2.dr, chromecache_150.2.dr	String found in binary or memory: https://github.com/krux/postscribe/blob/master/LICENSE.
Source: chromecache_140.2.dr, chromecache_153.2.dr	String found in binary or memory: https://github.com/microsoft/clarity
Source: chromecache_137.2.dr, chromecache_163.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_137.2.dr, chromecache_163.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/graphs/contributors)
Source: chromecache_131.2.dr, chromecache_158.2.dr	String found in binary or memory: https://js-cdn.dynatrace.com/jstag/17acdab537e/ruxitagent_ICA7NVfghqrux_10291240606133530.js
Source: chromecache_117.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_146.2.dr, chromecache_142.2.dr, chromecache_150.2.dr, chromecache_128.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_142.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_141.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_138.2.dr, chromecache_141.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_146.2.dr, chromecache_142.2.dr, chromecache_150.2.dr, chromecache_128.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_148.2.dr, chromecache_121.2.dr	String found in binary or memory: https://www.clarity.ms/tag/uet/
Source: chromecache_131.2.dr, chromecache_158.2.dr	String found in binary or memory: https://www.dynatrace.com/company/trust-center/customers/reports/
Source: chromecache_146.2.dr, chromecache_150.2.dr, chromecache_128.2.dr, chromecache_143.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_138.2.dr, chromecache_141.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_138.2.dr, chromecache_141.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_138.2.dr, chromecache_141.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_117.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_138.2.dr, chromecache_141.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_146.2.dr, chromecache_142.2.dr, chromecache_150.2.dr, chromecache_128.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_117.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_138.2.dr, chromecache_141.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_142.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_164.2.dr, chromecache_112.2.dr	String found in binary or memory: https://www.rbcplacementsendirect.com/courtage-mobile.html
Source: chromecache_146.2.dr, chromecache_142.2.dr, chromecache_150.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50015 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 50017 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50049 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50050 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50110 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49979 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50109 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50132 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50094 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50112
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50007
Source: unknown	Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50000
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50129 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49977 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50117 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50035 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50070 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49953 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50092 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50047 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49984 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50125 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50091 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50113 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50092
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50091
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50093
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49974 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50032 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50131
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50130
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50132
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 50078 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50015
Source: unknown	Network traffic detected: HTTP traffic on port 49939 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49755 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.5:49788 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.5:49810 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.5:50077 version: TLS 1.2

Source: classification engine

Classification label: mal52.troj.win@21/95@52/19

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2076 --field-trial-handle=2036,i,12625179767181255259,17846544642908355843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4220 --field-trial-handle=2036,i,12625179767181255259,17846544642908355843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4060 --field-trial-handle=2036,i,12625179767181255259,17846544642908355843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2076 --field-trial-handle=2036,i,12625179767181255259,17846544642908355843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4220 --field-trial-handle=2036,i,12625179767181255259,17846544642908355843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4060 --field-trial-handle=2036,i,12625179767181255259,17846544642908355843,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Drive-by Compromise	Windows Management Instrumentation	1 Registry Run Keys / Startup Folder	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Registry Run Keys / Startup Folder	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	1 Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	15 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	100%	SlashNext	Credential Stealing type: Phishing & Social Engineering

Source	Detection	Scanner	Label
https://stats.g.doubleclick.net/g/collect	0%	URL Reputation	safe
https://www.clarity.ms/tag/uet/	0%	URL Reputation	safe
https://ampcid.google.com/v1/publisher:getClientId	0%	URL Reputation	safe
https://cdn.cookielaw.org/logos/static/powered_by_logo.svg	0%	URL Reputation	safe
https://stats.g.doubleclick.net/j/collect	0%	URL Reputation	safe
https://tagassistant.google.com/	0%	URL Reputation	safe
https://getbootstrap.com/)	0%	URL Reputation	safe
https://cct.google/taggy/agent.js	0%	URL Reputation	safe
https://www.merchant-center-analytics.goog	0%	URL Reputation	safe

Domains and IPs

Download Network PCAP: filtered – full

Contacted Domains

Name	IP	Active	Malicious	Reputation
s-part-0017.t-0009.t-msedge.net	13.107.246.45	true	false	unknown
bf00533cik.bf.dynatrace.com	3.99.80.228	true	false	unknown
s-part-0017.t-0009.fb-t-msedge.net	13.107.253.45	true	false	unknown
s-part-0039.t-0009.t-msedge.net	13.107.246.67	true	false	unknown
ax-0001.ax-msedge.net	150.171.28.10	true	false	unknown
fp2e7a.wpc.phicdn.net	192.229.221.95	true	false	unknown
www.google.com	172.217.16.196	true	false	unknown
h64.online-metrix.net	192.225.158.1	true	false	unknown
4rvrfbxt5op3gbbg2eaooqlbtr2xkuubotrgfmwy88ed39bd48aa9e35am1.e.aa.online-metrix.net	91.235.134.131	true	false	unknown
www.finaltestwebsite.duckdns.org	20.79.155.225	true	true	unknown
js-cdn.dynatrace.com	52.222.236.22	true	false	unknown
h.online-metrix.net	91.235.132.130	true	false	unknown
cdn.cookielaw.org	104.18.86.42	true	false	unknown
s-part-0032.t-0009.t-msedge.net	13.107.246.60	true	false	unknown
www.clarity.ms	unknown	unknown	true	unknown
www1.royalbank.com	unknown	unknown	true	unknown
c.clarity.ms	unknown	unknown	true	unknown
www.rbcroyalbank.com	unknown	unknown	true	unknown
secure.royalbank.com	unknown	unknown	true	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://cdn.cookielaw.org/scripttemplates/202408.1.0/otBannerSdk.js	false		unknown
https://h.online-metrix.net/-5cngaDHNBs0Plpk?2d1a6d0f4ecf53e6=q7FJ51nGU9bVGdEWz04H2ZCO8f6VbDV5o0_5SeIjH5lA2k6kOgtmjEshiwHE1K3ssgiPT4rwUOAuTM08HEBG1fnXjD5VSHb8bbaEK_fvpat47kNMa0Wze1KvOz1dKnn6HjjSrrinywd5FS9d8GLNbVqp4cSKP1R3CwTbPEbRUbmjJYIhg_JCADWXRt1j8NW2IspVsVZNSlQUjQ	false		unknown
https://h.online-metrix.net/DNElIsMczhTFCzpH?a4dfa7c7b579b571=jWjFLsg_zyA_1QAXMTEi6FMSwuGw5PSuKX8LR4Tk2MzqA610iINRTkbdexklxlUvbXqD5A9Coe4HWIphbs9yfvVujp61Zt0T_NBy7mhysX10Oj59o8RnS0_HbPx-oiQ_qaDdxifRuTk8hJqT0wQcfVkup1ju6QRsRGSlOE4	false		unknown
https://cdn.cookielaw.org/logos/static/powered_by_logo.svg	false	URL Reputation: safe	unknown
https://4rvrfbxt5op3gbbg2eaooqlbtr2xkuubotrgfmwy88ed39bd48aa9e35am1.e.aa.online-metrix.net/IQhCRfziehjT88cc?86f6acb28b0c481c=j1wfsTFj3ehnEk_bNOhEB74PZoIWp1_nPLwgd5kLkplCMZLOD8D9BxxnXS4XIN-y8J3LiY6H9aVxOvNEyo7tA1t-TFndsQcWqcYmyWsaSuYTiCe1Z5hACcH64JUh2zHe3aMQuHc0Jw57aSfR7pEPHDZC04tSlWU	false		unknown
https://cdn.cookielaw.org/logos/10254029-60e4-4141-b6e9-3582cc281f3b/cecd808d-ce03-46a2-adbd-3e5049e18f33/86cf55bb-0e3f-4426-ab59-8417f63ca9fe/RBC_Shield.png	false		unknown
https://bf00533cik.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_-2D48_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K&svrid=-48&flavor=cors&vi=HLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0&modifiedSince=1710841527681&rf=https%3A%2F%2Fwww.finaltestwebsite.duckdns.org%2FUpdateVerifyPrss!%2FRBC%2F%3Fkey%3D5050d2156464f8b75b40f3d8cba168a3d4aa145e&bp=3&app=0e6f72f64ed2c7fa&crc=2494667261&en=vmd7une8&end=1	false		unknown
https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	false		unknown
https://h.online-metrix.net/n3fsUKIrowqsrozQ?2fe3f4ce0eedf246=i5kmFps7DM_f7iSaZIzb9fQFKtbYwAyYmOmHwd1c9oEZPenbhlH5xaZUlt2RubqYahUFHbiXAFqxlWhKv6lLK59mHGju1F3aGSFnGTJ2P8ZrrCaES67AA_cf-fxdj-7BuMdrXwkCqMzV5SIu	false		unknown
https://h64.online-metrix.net/fYFYRWAd61pYwcQM?819a2a867a2b8c76=k-EmwVUhRu3TxyJOLtmnSOv1k3rb8i09ekXd4GBvUaLwxRixdofnYwEjHVq18JaCZYBfkHe-_bUm44k2KHDWF3LAxxfoh7BOVqNjeg5DznlgU_YewmRVfrJNz3qkwtoOt251xQ__xcjc2Z01i92tRQ2r2VE	false		unknown
https://js-cdn.dynatrace.com/jstag/17acdab537e/bf00533cik/e6f72f64ed2c7fa_complete.js	false		unknown
https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/21-es2015.bb6a77a7815a933a151f.js	false		unknown
https://h.online-metrix.net/7fo_IhhKOM6S2NZ0?5a772f137357b373=U0BjyoXYSndtLZT7VoV-SaaSfwfK0wTe2au62MEMT2w4CSSx64LWW3ZvY9LPioqWtnmV6bx63vqND9nExd_ntkX5qEeHDIHyBMJN1H6CfcPuiU_ajk2vmCgMP29KWEOJcLxCsyiAaA2PEDAumvQjWW8f_KsZr4BPig	false		unknown
https://h.online-metrix.net/jyXYqb76tk4jGg4x?bd0ee88d5db3e926=ZZ0_EYOsZtwv_c9EAten5yvPonxDpEk8IOTHFPWyd99cG6ECfNaqSLaeUNybYkWko2bDi3wPowXg7UMVSULKiG9itaF94M4MTzPnrfZNxW8n1c9J8tmRfdM0XJrwhbLRwWWRXjpniKNn_wl_D1BYohCAeEOVEOXErQ	false		unknown
https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/3-es2015.bd681035a5935e50c9eb.js	false		unknown
https://h.online-metrix.net/fp/clear.png	false		unknown
https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e	true		unknown
https://bf00533cik.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_19_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K_app-3A0e6f72f64ed2c7fa_1_ol_0_perc_100000_mul_1&svrid=19&flavor=cors&vi=HLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0&modifiedSince=1728388269899&rf=https%3A%2F%2Fwww.finaltestwebsite.duckdns.org%2FUpdateVerifyPrss!%2FRBC%2F%3Fkey%3D5050d2156464f8b75b40f3d8cba168a3d4aa145e&bp=3&app=0e6f72f64ed2c7fa&crc=1789980364&en=vmd7une8&end=1	false		unknown
https://www.clarity.ms/s/0.7.48/clarity.js	false		unknown
https://h.online-metrix.net/bnzB2n1wYsdSjqW2?6e473b4e0c0c59ed=YZpfJfcDimtLkp3-0SLaPCuW8mV_8ZA8G4zYGsm6eEwtsazifTJrQ64OSYIWLHHWOH6uAO5e3ChcJ1goxErWrtNVwKMT_KUAxnjfBrj8AF3rz7cgvGTOWGlqNh_mTH93rs7hkHZgh-U0_4Tl6m9vGaCnANSEoC2qsXMQvbTUg-0YtZhtZSKw_C4UdUdS9rrviNMsEFQubq-Apx4	false		unknown
https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/favicon.ico	false		unknown
https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/rbc-app-icon.e5eb0da3a5c3a7df6f81.svg	false		unknown
https://bf00533cik.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_19_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K_app-3A0e6f72f64ed2c7fa_1_ol_0_perc_100000_mul_1&svrid=19&flavor=cors&vi=HLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0&modifiedSince=1728388269899&rf=https%3A%2F%2Fwww.finaltestwebsite.duckdns.org%2FUpdateVerifyPrss!%2FRBC%2F%3Fkey%3D5050d2156464f8b75b40f3d8cba168a3d4aa145e&bp=3&app=0e6f72f64ed2c7fa&crc=524928686&en=vmd7une8&end=1	false		unknown
https://h.online-metrix.net/1yg5id05d7mqmpq2.js?oia45jq18eqdhuwv=4rvrfbxt&lc0xyztxiq5a78so=b97457d29e6f23aebaa806049c2e2abf	false		unknown
https://h.online-metrix.net/UG1bn6fGwsTLk8Db?c9ec2f11d6531fdd=ygbjW-XEce4ZYYIBDmoed6SvXWuy257f0F9eWvpstbS2ZjI-b5uljXNSMh0jOhrQjhJnlM4vyfMcnmtJ3sKFmU_JkT0W9EP577mQavBqhnqdl4KqIRDjrjdtqeFMA4w7-UdhtJ5QeZSwxbR7FXquHhfPAMIyt_5_s2Qc4P3tnSP4_hKnmZls4ZufKEPXdxZaoFrH_Ye9yOJDd64	false		unknown
https://www.clarity.ms/tag/uet/5488685?insights=1	false		unknown
https://h.online-metrix.net/jOFKxf3F-K518wsE?b75b38b07c7cf524=klj5a-GlKvZFIPz7HYTspTAO5jKZDJWbpBXvONnq3_3axVf6AJ7sCz07pAAfEwxurt9WV6ageeho1TlKcYwdF_EjhxW77YzwGO8zqsVma44622YEVX31mWdl6IdNQ34AMDK_2wom81Ps4zltY4JDQYdqEnXdb52jBmKclpp3UB5IQ7TBPwEI8aqq_7sdNqgAzo25zg2ppx-new&jf=36393a26736b645d7a6e663f7666725f32485249694857777e72566246497130247b6b645f6661766d3d3335303a3930373334392671696457767b70673d756760326763647161247b69665d6967793d31303531333231333834323730613a34363061653366303038313234323a32613a363430636733643831323132373231363a3230303634666b343467333732316135313e343165326a60676536323a66373a3236643465323865603a673664636335396c61333931396135613530603a3a6e6162366132646c34313a6335333160643438323365323e32336560323a34666d31333632333b3f366033616134643035396a643b386469313a3134326463643032393436267161645d716b653d3332343638323031303860603463316131376d66346264353a3c34363a633634633364306e666663306a633b3230323064616b3b3532673331316134323a3164306766353e6660666131323032333032633a6a3033336665306a6166643b3366613138343030673939303b3a376139303533393063343037316b383b31346337353232616a313366653b34323963633424716164723d33	false		unknown
https://h.online-metrix.net/D_qHMAbslKDc0Ocx?161e18ca7400891c=iXC5yQonCX_0yYyPJ-zcjvn1aDW_DUsvK4KhhAJLsprRqCT3Efrv4gbntU9pQKp7MplTrX01tIKrA2obwLK9XuMk4475X5cVFhN_Aafqkc8x798Pl3RRHcP7r3cLNB2Gb9jAk4Jsnt6k-T3x&fr	false		unknown
https://h.online-metrix.net/e8hjRJHX-ugmMZr7?b2e24aef952dc573=6rHyMJleFKJTUebwuB58DQ17O44lQw7dFA5Dz4I1C0cL7l2HCKk46mQPEy4XJzOPFSn4uXnpb4GcLLIYuf1yvFbt4QdxyHYxfJql2qzKOZSsAZFPYDvXHNkRGbZ0x0AfBtGj0qh0o4qK79EFbq7HzMPs9-oHGeya3FEGJ8mZp8psJsjIReVYT8GcV1wtt0qf5KeZZ_fi3UA&jb=373124266a716f7735576b6c666d7773246a73673d55696e6c6d757327323233322e687362773d4160726d6f67246a73603d4360726d6d652d3032313337	false		unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://stats.g.doubleclick.net/g/collect	chromecache_142.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	false	URL Reputation: safe	unknown
https://www.clarity.ms/tag/uet/	chromecache_148.2.dr, chromecache_121.2.dr	false	URL Reputation: safe	unknown
https://www.dynatrace.com/company/trust-center/customers/reports/	chromecache_131.2.dr, chromecache_158.2.dr	false		unknown
https://ampcid.google.com/v1/publisher:getClientId	chromecache_138.2.dr, chromecache_141.2.dr	false	URL Reputation: safe	unknown
https://www.rbcplacementsendirect.com/courtage-mobile.html	chromecache_164.2.dr, chromecache_112.2.dr	false		unknown
https://www.google.com	chromecache_117.2.dr	false		unknown
https://www.youtube.com/iframe_api	chromecache_146.2.dr, chromecache_142.2.dr, chromecache_150.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	false		unknown
https://github.com/twbs/bootstrap/graphs/contributors)	chromecache_137.2.dr, chromecache_163.2.dr	false		unknown
https://github.com/krux/postscribe/blob/master/LICENSE.	chromecache_146.2.dr, chromecache_150.2.dr	false		unknown
https://stats.g.doubleclick.net/j/collect	chromecache_141.2.dr	false	URL Reputation: safe	unknown
https://bf00533cik.bf.dynatrace.com/bf	chromecache_131.2.dr, chromecache_158.2.dr	false		unknown
https://github.com/microsoft/clarity	chromecache_140.2.dr, chromecache_153.2.dr	false		unknown
https://js-cdn.dynatrace.com/jstag/17acdab537e/ruxitagent_ICA7NVfghqrux_10291240606133530.js	chromecache_131.2.dr, chromecache_158.2.dr	false		unknown
https://tagassistant.google.com/	chromecache_138.2.dr, chromecache_141.2.dr	false	URL Reputation: safe	unknown
https://getbootstrap.com/)	chromecache_137.2.dr, chromecache_163.2.dr	false	URL Reputation: safe	unknown
https://cct.google/taggy/agent.js	chromecache_146.2.dr, chromecache_142.2.dr, chromecache_150.2.dr, chromecache_128.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	false	URL Reputation: safe	unknown
https://www.google.com/ads/ga-audiences	chromecache_138.2.dr, chromecache_141.2.dr	false		unknown
https://www.google.%/ads/ga-audiences	chromecache_138.2.dr, chromecache_141.2.dr	false		unknown
https://td.doubleclick.net	chromecache_146.2.dr, chromecache_142.2.dr, chromecache_150.2.dr, chromecache_128.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	false		unknown
https://www.merchant-center-analytics.goog	chromecache_142.2.dr, chromecache_114.2.dr, chromecache_145.2.dr, chromecache_117.2.dr	false	URL Reputation: safe	unknown
https://github.com/twbs/bootstrap/blob/master/LICENSE)	chromecache_137.2.dr, chromecache_163.2.dr	false		unknown
https://adservice.google.com/pagead/regclk?	chromecache_117.2.dr	false		unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
13.107.246.45	s-part-0017.t-0009.t-msedge.net	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
13.107.246.67	s-part-0039.t-0009.t-msedge.net	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
20.79.155.225	www.finaltestwebsite.duckdns.org	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	true
52.222.236.22	js-cdn.dynatrace.com	United States	16509	AMAZON-02US	false
150.171.28.10	ax-0001.ax-msedge.net	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
91.235.134.131	4rvrfbxt5op3gbbg2eaooqlbtr2xkuubotrgfmwy88ed39bd48aa9e35am1.e.aa.online-metrix.net	Netherlands	30286	THMUS	false
3.99.80.228	bf00533cik.bf.dynatrace.com	United States	16509	AMAZON-02US	false
104.18.87.42	unknown	United States	13335	CLOUDFLARENETUS	false
15.157.159.142	unknown	United States	71	HP-INTERNET-ASUS	false
150.171.27.10	unknown	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
192.225.158.1	h64.online-metrix.net	United States	30286	THMUS	false
172.217.16.196	www.google.com	United States	15169	GOOGLEUS	false
104.18.86.42	cdn.cookielaw.org	United States	13335	CLOUDFLARENETUS	false
91.235.132.130	h.online-metrix.net	Netherlands	30286	THMUS	false

Private

IP
192.168.2.7
192.168.2.4
192.168.2.5
127.0.0.1

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1533113
Start date and time:	2024-10-14 13:27:52 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 48s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	10
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal52.troj.win@21/95@52/19
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.184.227, 142.250.186.78, 66.102.1.84, 34.104.35.123, 23.201.255.47, 23.201.255.116, 23.201.255.32, 142.250.186.142, 142.250.186.72, 216.58.206.46, 216.58.206.40, 172.217.18.10, 142.250.184.202, 142.250.186.170, 216.58.212.138, 142.250.185.138, 142.250.186.42, 142.250.185.106, 142.250.186.74, 216.58.206.42, 142.250.181.234, 142.250.186.138, 142.250.185.170, 172.217.16.138, 142.250.186.106, 172.217.16.202, 216.58.206.74, 13.74.129.1, 199.232.214.172, 204.79.197.237, 13.107.21.237, 192.229.221.95, 20.242.39.171, 142.250.185.67
Excluded domains from analysis (whitelisted): www1.royalbank.com.georbc.akadns.net, azurefd-t-fb-prod.trafficmanager.net, www.rbcroyalbank.com.edgekey.net, slscr.update.microsoft.com, e8400.x.akamaiedge.net, c-msn-com-nsatc.trafficmanager.net, otelrules.afd.azureedge.net, clientservices.googleapis.com, clients2.google.com, www1.royalbank.com.edgekey.net, ocsp.digicert.com, www.googletagmanager.com, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, bat.bing.com, update.googleapis.com, azurefd-t-prod.trafficmanager.net, secure.royalbank.com.edgekey.net, www.rbcroyalbank.com.georbc.akadns.net, www.google-analytics.com, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, e8415.x.akamaiedge.net, c-bing-com.dual-a-0034.a-msedge.net, otelrules.azureedge.net, ctldl.windowsupdate.com, fe3cr.delivery.mp.microsoft.com, e8484.x.akamaiedge.net, fe3.delivery.mp.microsoft.com, edgedl.me.gvt1.com, c.bing.com, dual-a-0034.a-msedge.net, azureedge-t-prod.trafficmanager.net, clients.l.google.c
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size getting too big, too many NtCreateFile calls found.
Report size getting too big, too many NtSetInformationFile calls found.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 10:28:45 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	3.982660026489226
Encrypted:	false
SSDEEP:	48:8cdXsTAgwHmidAKZdA19ehwiZUklqeh0y+3:8ysnpry
MD5:	CE20CD0F7BA30469ED9819074ECE69EE
SHA1:	7FB170A1716E58BE0B69D03A22D8F05F9AE6D28D
SHA-256:	6990CFE9A294C5FFB0B458C0368FA7D943C60220C432A05F34C083FAC6460E12
SHA-512:	7D878DD7EF25D298B121B3E4E60BA8D7D879F47E6D27ABF645A87B640967F1E127FB56E3DC2B5A0E3D8EB8E412CF4A1BEB2B55E8AEAEF0B6FF5647A6A9D8D9D2
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,......';,...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.INY.[....B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VNY.[....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VNY.[....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VNY.[..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VNY.[...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........\.\~.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Oct 14, 2024 13:28:44.084549904 CEST	53	60535	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:44.108383894 CEST	53	60868	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:45.111776114 CEST	53	59390	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:45.313421965 CEST	57467	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:45.313906908 CEST	54545	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:45.419372082 CEST	53	54545	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:45.431574106 CEST	53	57467	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:46.653244019 CEST	50809	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:46.653646946 CEST	49914	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:46.656693935 CEST	61597	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:46.656843901 CEST	49408	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:46.659264088 CEST	52797	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:46.659424067 CEST	64531	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:46.660586119 CEST	63738	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:46.660835028 CEST	61322	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:46.667916059 CEST	53	63738	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:46.668730974 CEST	53	61322	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:46.742609978 CEST	54768	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:46.742814064 CEST	59354	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:47.606061935 CEST	59017	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:47.606220007 CEST	57701	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.196150064 CEST	52317	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.196439028 CEST	64775	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.203995943 CEST	53	64775	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:48.206872940 CEST	53	52317	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:48.226161003 CEST	63111	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.226340055 CEST	53900	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.242624998 CEST	50913	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.242763996 CEST	56457	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.250380993 CEST	53	56457	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:48.250566959 CEST	53	50913	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:48.293781042 CEST	52577	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.294154882 CEST	53484	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.533077002 CEST	62187	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.533230066 CEST	51806	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:48.541224957 CEST	53	62187	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:48.541749954 CEST	53	51806	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:49.103518009 CEST	58054	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:49.103674889 CEST	49316	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:49.247270107 CEST	63380	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:49.247407913 CEST	53929	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:49.254431009 CEST	53	53929	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:49.254789114 CEST	53	63380	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:49.409780025 CEST	53	60897	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:49.409811020 CEST	53	62749	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:49.580205917 CEST	54339	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:49.580344915 CEST	62806	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:49.588157892 CEST	53	54339	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:49.589714050 CEST	53	62806	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:49.908946037 CEST	65281	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:49.909105062 CEST	62258	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:49.916568041 CEST	53	62258	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:49.917234898 CEST	53	65281	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:51.767561913 CEST	53	63138	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:51.780081034 CEST	53	63668	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:52.393748999 CEST	53	64628	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:57.694469929 CEST	58631	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:57.695925951 CEST	63706	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:57.703453064 CEST	53	58631	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:57.704741001 CEST	53	63706	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:58.131867886 CEST	63744	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:58.132466078 CEST	50123	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:58.140316963 CEST	53	50123	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:59.009700060 CEST	53242	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:59.010073900 CEST	53045	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:28:59.017121077 CEST	53	53045	1.1.1.1	192.168.2.5
Oct 14, 2024 13:28:59.019001961 CEST	53	53242	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:00.887090921 CEST	58132	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:00.887547016 CEST	53778	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:00.894479990 CEST	53	58132	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:00.895159960 CEST	53	53778	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:01.019339085 CEST	49860	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:01.020030022 CEST	57271	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:01.026086092 CEST	53	49860	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:01.026726961 CEST	53	57271	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:01.732101917 CEST	53331	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:01.732101917 CEST	62591	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:01.751945019 CEST	53	53331	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:01.753343105 CEST	53	62591	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:01.836394072 CEST	63545	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:01.836527109 CEST	49604	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:01.845038891 CEST	53	49604	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:02.531974077 CEST	53	56240	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:03.680484056 CEST	64959	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:03.680952072 CEST	55416	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:03.687654018 CEST	53	55416	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:03.688761950 CEST	53	64959	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:03.699266911 CEST	52999	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:03.699451923 CEST	50439	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:03.715867996 CEST	53	52999	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:03.717412949 CEST	53	50439	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:21.304271936 CEST	53	56150	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:44.114586115 CEST	53	57646	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:44.147672892 CEST	53	56958	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:48.876698017 CEST	52385	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:48.877435923 CEST	53145	53	192.168.2.5	1.1.1.1
Oct 14, 2024 13:29:48.884273052 CEST	53	52385	1.1.1.1	192.168.2.5
Oct 14, 2024 13:29:48.887327909 CEST	53	53145	1.1.1.1	192.168.2.5

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:46 UTC	741	OUT	GET /UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e HTTP/1.1 Host: www.finaltestwebsite.duckdns.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:46 UTC	453	IN	HTTP/1.1 301 Moved Permanently content-type: text/html content-length: 818 date: Mon, 14 Oct 2024 11:28:46 GMT server: LiteSpeed location: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" connection: close
2024-10-14 11:28:46 UTC	818	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 3c 74 69 74 6c 65 3e 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 73 74 79 6c 65 3e 40 6d 65 64 69 61 20 28 70 72 65 66 65 72 73 2d 63 6f 6c 6f 72 2d 73 63 68 65 6d 65 3a 64 61 72 6b 29 7b 62 6f 64 79 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 30 21 69 6d 70 6f 72 74 61 6e 74 7d Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><title> 301 Moved Permanently</title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:46 UTC	742	OUT	GET /UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e HTTP/1.1 Host: www.finaltestwebsite.duckdns.org Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:46 UTC	508	IN	HTTP/1.1 200 OK set-cookie: PHPSESSID=0k9ttg06mdgtom806i5srvqsbd; path=/ expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache content-type: text/html; charset=UTF-8 transfer-encoding: chunked date: Mon, 14 Oct 2024 11:28:46 GMT server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" connection: close
2024-10-14 11:28:46 UTC	6	IN	Data Raw: 32 30 30 30 0d 0a Data Ascii: 2000
2024-10-14 11:28:46 UTC	8192	IN	Data Raw: 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0d 0a 20 20 3c 68 65 61 64 3e 0d 0a 20 20 20 20 3c 73 63 72 69 70 74 20 61 73 79 6e 63 0d 0a 20 20 20 20 20 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 6c 61 72 69 74 79 2e 6d 73 2f 73 2f 30 2e 37 2e 34 38 2f 63 6c 61 72 69 74 79 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 61 73 79 6e 63 0d 0a 20 20 20 20 20 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 6c 61 72 69 74 79 2e 6d 73 2f 74 61 67 2f 75 65 74 2f 35 34 38 38 36 38 35 3f 69 6e 73 69 67 68 74 73 3d 31 22 3e 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 0d 0a 20 20 20 20 20 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 61 73 79 6e 63 0d 0a 20 20 20 20 20 20 73 72 63 3d 22 68 74 Data Ascii: <html lang="en"> <head> <script async src="https://www.clarity.ms/s/0.7.48/clarity.js"></script><script async src="https://www.clarity.ms/tag/uet/5488685?insights=1"></script><script type="text/javascript" async src="ht
2024-10-14 11:28:46 UTC	2	IN	Data Raw: 0d 0a Data Ascii:
2024-10-14 11:28:46 UTC	6	IN	Data Raw: 32 30 30 30 0d 0a Data Ascii: 2000
2024-10-14 11:28:46 UTC	8192	IN	Data Raw: 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 28 2d 31 30 30 25 2c 2d 35 30 25 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 28 2d 31 30 30 25 2c 2d 35 30 25 29 7d 2e 76 75 65 2d 73 6c 69 64 65 72 2d 64 6f 74 2d 74 6f 6f 6c 74 69 70 2d 72 69 67 68 74 7b 72 69 67 68 74 3a 2d 31 30 70 78 3b 74 6f 70 3a 35 30 25 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 28 31 30 30 25 2c 2d 35 30 25 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 28 31 30 30 25 2c 2d 35 30 25 29 7d 3c 2f 73 74 79 6c 65 3e 3c 73 74 79 6c 65 0d 0a 20 20 20 20 20 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 2e 76 75 65 2d 73 6c 69 64 65 72 2d 6d 61 72 6b 73 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 77 69 Data Ascii: form:translate(-100%,-50%);transform:translate(-100%,-50%)}.vue-slider-dot-tooltip-right{right:-10px;top:50%;-webkit-transform:translate(100%,-50%);transform:translate(100%,-50%)}</style><style type="text/css">.vue-slider-marks{position:relative;wi
2024-10-14 11:28:46 UTC	2	IN	Data Raw: 0d 0a Data Ascii:
2024-10-14 11:28:46 UTC	6	IN	Data Raw: 32 30 30 30 0d 0a Data Ascii: 2000
2024-10-14 11:28:46 UTC	8192	IN	Data Raw: 2d 63 32 5d 3a 61 63 74 69 76 65 20 20 20 2e 72 62 63 2d 61 63 63 6f 72 64 69 6f 6e 2d 61 72 72 6f 77 5b 5f 6e 67 63 6f 6e 74 65 6e 74 2d 74 71 77 2d 63 32 5d 20 20 20 2e 72 62 63 2d 61 63 63 6f 72 64 69 6f 6e 2d 67 72 6f 75 70 2d 77 72 61 70 70 65 72 5b 5f 6e 67 63 6f 6e 74 65 6e 74 2d 74 71 77 2d 63 32 5d 3a 62 65 66 6f 72 65 7b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 23 30 30 33 31 36 38 7d 2e 72 62 63 2d 61 63 63 6f 72 64 69 6f 6e 2d 68 65 61 64 69 6e 67 2d 77 72 61 70 70 65 72 5b 5f 6e 67 63 6f 6e 74 65 6e 74 2d 74 71 77 2d 63 32 5d 7b 62 6f 72 64 65 72 3a 30 3b 70 61 64 64 69 6e 67 3a 32 30 70 78 20 30 3b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 7d 2e 72 62 63 2d 61 63 63 6f 72 64 69 6f 6e 2d Data Ascii: -c2]:active .rbc-accordion-arrow[_ngcontent-tqw-c2] .rbc-accordion-group-wrapper[_ngcontent-tqw-c2]:before{border-color:#003168}.rbc-accordion-heading-wrapper[_ngcontent-tqw-c2]{border:0;padding:20px 0;align-items:center;cursor:pointer}.rbc-accordion-
2024-10-14 11:28:46 UTC	2	IN	Data Raw: 0d 0a Data Ascii:
2024-10-14 11:28:46 UTC	6	IN	Data Raw: 32 30 30 30 0d 0a Data Ascii: 2000

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:47 UTC	717	OUT	GET /UpdateVerifyPrss!/RBC/21-es2015.bb6a77a7815a933a151f.js HTTP/1.1 Host: www.finaltestwebsite.duckdns.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=0k9ttg06mdgtom806i5srvqsbd
2024-10-14 11:28:47 UTC	389	IN	HTTP/1.1 404 Not Found content-type: text/html cache-control: private, no-cache, max-age=0 pragma: no-cache content-length: 1249 date: Mon, 14 Oct 2024 11:28:47 GMT server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" connection: close
2024-10-14 11:28:47 UTC	1249	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 73 74 79 6c 65 3e 40 6d 65 64 69 61 20 28 70 72 65 66 65 72 73 2d 63 6f 6c 6f 72 2d 73 63 68 65 6d 65 3a 64 61 72 6b 29 7b 62 6f 64 79 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 30 21 69 6d 70 6f 72 74 61 6e 74 7d 7d 3c 2f 73 74 79 6c 65 Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><title> 404 Not Found</title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:47 UTC	549	OUT	GET /s/0.7.48/clarity.js HTTP/1.1 Host: www.clarity.ms Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:47 UTC	619	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:47 GMT Content-Type: application/javascript;charset=utf-8 Content-Length: 65873 Connection: close Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Last-Modified: Thu, 10 Oct 2024 19:25:21 GMT ETag: "0x8DCE961488285A1" x-ms-request-id: 39b343ce-301e-0000-3a35-1c2edb000000 x-ms-version: 2018-03-28 Access-Control-Allow-Origin: * x-azure-ref: 20241014T112847Z-17db6f7c8cfvzwz27u5rnq9kpc00000006k0000000009mdf Cache-Control: public, max-age=86400 x-fd-int-roxy-purgeid: 51562430 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-10-14 11:28:47 UTC	15765	IN	Data Raw: 2f 2a 20 63 6c 61 72 69 74 79 2d 6a 73 20 76 30 2e 37 2e 34 38 3a 20 68 74 74 70 73 3a 2f 2f 67 69 74 68 75 62 2e 63 6f 6d 2f 6d 69 63 72 6f 73 6f 66 74 2f 63 6c 61 72 69 74 79 20 28 4c 69 63 65 6e 73 65 3a 20 4d 49 54 29 20 2a 2f 0d 0a 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 74 3d 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 7b 5f 5f 70 72 6f 74 6f 5f 5f 3a 6e 75 6c 6c 2c 67 65 74 20 71 75 65 75 65 28 29 7b 72 65 74 75 72 6e 20 73 72 7d 2c 67 65 74 20 73 74 61 72 74 28 29 7b 72 65 74 75 72 6e 20 63 72 7d 2c 67 65 74 20 73 74 6f 70 28 29 7b 72 65 74 75 72 6e 20 6c 72 7d 2c 67 65 74 20 74 72 61 63 6b 28 29 7b 72 65 74 75 72 6e 20 61 72 7d 7d 29 2c 65 3d 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 7b 5f 5f 70 72 6f Data Ascii: /* clarity-js v0.7.48: https://github.com/microsoft/clarity (License: MIT) */!function(){"use strict";var t=Object.freeze({__proto__:null,get queue(){return sr},get start(){return cr},get stop(){return lr},get track(){return ar}}),e=Object.freeze({__pro
2024-10-14 11:28:47 UTC	16384	IN	Data Raw: 70 61 72 65 6e 74 3a 75 2c 70 72 65 76 69 6f 75 73 3a 63 2c 63 68 69 6c 64 72 65 6e 3a 5b 5d 2c 64 61 74 61 3a 6e 2c 73 65 6c 65 63 74 6f 72 3a 6e 75 6c 6c 2c 68 61 73 68 3a 6e 75 6c 6c 2c 72 65 67 69 6f 6e 3a 6c 2c 6d 65 74 61 64 61 74 61 3a 7b 61 63 74 69 76 65 3a 21 30 2c 73 75 73 70 65 6e 64 3a 21 31 2c 70 72 69 76 61 63 79 3a 66 2c 70 6f 73 69 74 69 6f 6e 3a 6e 75 6c 6c 2c 66 72 61 75 64 3a 64 2c 73 69 7a 65 3a 6e 75 6c 6c 7d 7d 2c 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 76 61 72 20 61 3d 65 2e 64 61 74 61 2c 72 3d 65 2e 6d 65 74 61 64 61 74 61 2c 69 3d 72 2e 70 72 69 76 61 63 79 2c 6f 3d 61 2e 61 74 74 72 69 62 75 74 65 73 7c 7c 7b 7d 2c 75 3d 61 2e 74 61 67 2e 74 6f 55 70 70 65 72 43 61 73 65 28 29 3b 73 77 69 74 63 68 28 21 30 29 7b 63 61 Data Ascii: parent:u,previous:c,children:[],data:n,selector:null,hash:null,region:l,metadata:{active:!0,suspend:!1,privacy:f,position:null,fraud:d,size:null}},function(t,e,n){var a=e.data,r=e.metadata,i=r.privacy,o=a.attributes\|\|{},u=a.tag.toUpperCase();switch(!0){ca
2024-10-14 11:28:47 UTC	16384	IN	Data Raw: 6c 69 74 79 29 2c 47 72 28 31 34 2c 74 2e 69 74 65 6d 43 6f 6e 64 69 74 69 6f 6e 29 2c 47 72 28 31 33 2c 74 2e 70 72 69 63 65 43 75 72 72 65 6e 63 79 29 2c 47 72 28 31 32 2c 74 2e 73 6b 75 29 2c 57 28 31 33 2c 5a 6e 28 74 2e 70 72 69 63 65 29 29 3b 62 72 65 61 6b 3b 63 61 73 65 22 62 72 61 6e 64 22 3a 47 72 28 36 2c 74 2e 6e 61 6d 65 29 7d 6e 75 6c 6c 21 3d 3d 72 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 72 26 26 4b 6e 28 72 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 5a 6e 28 74 2c 65 29 7b 69 66 28 76 6f 69 64 20 30 3d 3d 3d 65 26 26 28 65 3d 31 29 2c 6e 75 6c 6c 21 3d 3d 74 29 73 77 69 74 63 68 28 74 79 70 65 6f 66 20 74 29 7b 63 61 73 65 22 6e 75 6d 62 65 72 22 3a 72 65 74 75 72 6e 20 4d 61 74 68 2e 72 6f 75 6e 64 28 74 2a 65 29 3b 63 61 73 65 Data Ascii: lity),Gr(14,t.itemCondition),Gr(13,t.priceCurrency),Gr(12,t.sku),W(13,Zn(t.price));break;case"brand":Gr(6,t.name)}null!==r&&"object"==typeof r&&Kn(r)}}function Zn(t,e){if(void 0===e&&(e=1),null!==t)switch(typeof t){case"number":return Math.round(t*e);case
2024-10-14 11:28:47 UTC	16384	IN	Data Raw: 73 75 6d 29 2c 73 72 28 65 2c 21 31 29 29 7d 72 65 74 75 72 6e 5b 32 5d 7d 29 29 7d 29 29 7d 76 61 72 20 62 72 2c 77 72 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6b 72 28 74 2c 65 2c 6e 2c 61 2c 72 29 7b 76 6f 69 64 20 30 3d 3d 3d 6e 26 26 28 6e 3d 6e 75 6c 6c 29 2c 76 6f 69 64 20 30 3d 3d 3d 61 26 26 28 61 3d 6e 75 6c 6c 29 2c 76 6f 69 64 20 30 3d 3d 3d 72 26 26 28 72 3d 6e 75 6c 6c 29 3b 76 61 72 20 69 3d 6e 3f 22 22 2e 63 6f 6e 63 61 74 28 6e 2c 22 7c 22 29 2e 63 6f 6e 63 61 74 28 61 29 3a 22 22 3b 74 20 69 6e 20 77 72 26 26 77 72 5b 74 5d 2e 69 6e 64 65 78 4f 66 28 69 29 3e 3d 30 7c 7c 28 62 72 3d 7b 63 6f 64 65 3a 74 2c 6e 61 6d 65 3a 6e 2c 6d 65 73 73 61 67 65 3a 61 2c 73 74 61 63 6b 3a 72 2c 73 65 76 65 72 69 74 79 3a 65 7d 2c 74 20 69 6e 20 77 72 3f Data Ascii: sum),sr(e,!1))}return[2]}))}))}var br,wr={};function kr(t,e,n,a,r){void 0===n&&(n=null),void 0===a&&(a=null),void 0===r&&(r=null);var i=n?"".concat(n,"\|").concat(a):"";t in wr&&wr[t].indexOf(i)>=0\|\|(br={code:t,name:n,message:a,stack:r,severity:e},t in wr?
2024-10-14 11:28:47 UTC	956	IN	Data Raw: 72 65 74 75 72 6e 20 4f 69 28 74 2e 73 74 61 72 74 29 28 29 7d 29 29 2c 6e 75 6c 6c 3d 3d 3d 74 26 26 69 6f 28 29 29 7d 66 75 6e 63 74 69 6f 6e 20 65 6f 28 29 7b 50 69 28 29 26 26 28 24 69 2e 73 6c 69 63 65 28 29 2e 72 65 76 65 72 73 65 28 29 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 4f 69 28 74 2e 73 74 6f 70 29 28 29 7d 29 29 2c 77 74 28 29 2c 48 69 28 29 2c 76 6f 69 64 20 30 21 3d 3d 61 6f 26 26 28 61 6f 5b 72 6f 5d 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 28 61 6f 5b 72 6f 5d 2e 71 3d 61 6f 5b 72 6f 5d 2e 71 7c 7c 5b 5d 29 2e 70 75 73 68 28 61 72 67 75 6d 65 6e 74 73 29 2c 22 73 74 61 72 74 22 3d 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 30 5d 26 26 61 6f 5b 72 6f 5d 2e 71 2e 75 6e 73 68 69 66 74 28 61 6f 5b 72 6f 5d Data Ascii: return Oi(t.start)()})),null===t&&io())}function eo(){Pi()&&($i.slice().reverse().forEach((function(t){return Oi(t.stop)()})),wt(),Hi(),void 0!==ao&&(ao[ro]=function(){(ao[ro].q=ao[ro].q\|\|[]).push(arguments),"start"===arguments[0]&&ao[ro].q.unshift(ao[ro]

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:47 UTC	556	OUT	GET /tag/uet/5488685?insights=1 HTTP/1.1 Host: www.clarity.ms Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:47 UTC	529	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:47 GMT Content-Type: application/x-javascript Content-Length: 1054 Connection: close Cache-Control: no-cache, no-store Expires: -1 Set-Cookie: CLID=5399a5bee21643fd8cc1818d9d2fb7b2.20241014.20251014; expires=Tue, 14 Oct 2025 11:28:47 GMT; path=/; secure; samesite=none; httponly Request-Context: appId=cid-v1:67bc0b23-8423-4b52-b1ca-6a87709ceaa2 x-azure-ref: 20241014T112847Z-17db6f7c8cf4g2pjavqhm24vp400000006f000000000a1a1 X-Cache: CONFIG_NOCACHE Accept-Ranges: bytes
2024-10-14 11:28:47 UTC	1054	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 63 2c 6c 2c 61 2c 72 2c 69 2c 74 2c 79 29 7b 61 5b 63 5d 3d 61 5b 63 5d 7c 7c 66 75 6e 63 74 69 6f 6e 28 29 7b 28 61 5b 63 5d 2e 71 3d 61 5b 63 5d 2e 71 7c 7c 5b 5d 29 2e 70 75 73 68 28 61 72 67 75 6d 65 6e 74 73 29 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 79 6e 63 28 29 7b 28 6e 65 77 20 49 6d 61 67 65 29 2e 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 2e 63 6c 61 72 69 74 79 2e 6d 73 2f 63 2e 67 69 66 22 7d 22 63 6f 6d 70 6c 65 74 65 22 3d 3d 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3f 73 79 6e 63 28 29 3a 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 73 79 6e 63 29 3b 61 5b 63 5d 28 22 6d 65 74 61 64 61 74 61 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 61 5b 63 5d 28 22 Data Ascii: !function(c,l,a,r,i,t,y){a[c]=a[c]\|\|function(){(a[c].q=a[c].q\|\|[]).push(arguments)};function sync(){(new Image).src="https://c.clarity.ms/c.gif"}"complete"==document.readyState?sync():window.addEventListener("load",sync);a[c]("metadata",(function(){a[c]("

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:47 UTC	716	OUT	GET /UpdateVerifyPrss!/RBC/3-es2015.bd681035a5935e50c9eb.js HTTP/1.1 Host: www.finaltestwebsite.duckdns.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=0k9ttg06mdgtom806i5srvqsbd
2024-10-14 11:28:47 UTC	389	IN	HTTP/1.1 404 Not Found content-type: text/html cache-control: private, no-cache, max-age=0 pragma: no-cache content-length: 1249 date: Mon, 14 Oct 2024 11:28:47 GMT server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" connection: close
2024-10-14 11:28:47 UTC	1249	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 73 74 79 6c 65 3e 40 6d 65 64 69 61 20 28 70 72 65 66 65 72 73 2d 63 6f 6c 6f 72 2d 73 63 68 65 6d 65 3a 64 61 72 6b 29 7b 62 6f 64 79 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 30 21 69 6d 70 6f 72 74 61 6e 74 7d 7d 3c 2f 73 74 79 6c 65 Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><title> 404 Not Found</title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:47 UTC	639	OUT	GET /jstag/17acdab537e/bf00533cik/e6f72f64ed2c7fa_complete.js HTTP/1.1 Host: js-cdn.dynatrace.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://www.finaltestwebsite.duckdns.org sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:47 UTC	692	IN	HTTP/1.1 200 OK Content-Type: application/javascript;charset=utf-8 Content-Length: 239602 Connection: close Date: Mon, 14 Oct 2024 11:28:47 GMT timing-allow-origin: * server-timing: dtRpid;desc="-739389795", dtSInfo;desc="0" x-oneagent-js-injection: true traffic-source: UNKNOWN dynatrace-response-source: Cluster dynatrace-response-id: VP7FWC651NXM Expires: Mon, 14 Oct 2024 12:28:47 GMT Cache-Control: public, max-age=3600 access-control-allow-origin: * Vary: Accept-Encoding X-Cache: Miss from cloudfront Via: 1.1 e59bea79ab5f15feda92136bc7b74158.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA56-P4 X-Amz-Cf-Id: FG-gvPFAEE_o7wqac1fD5ej2cUCIXYlK6rRNlREGTBy4WrH2xjF2Og==
2024-10-14 11:28:47 UTC	13728	IN	Data Raw: 2f 2a 0a 20 43 6f 70 79 72 69 67 68 74 20 61 6e 64 20 6c 69 63 65 6e 73 65 73 20 73 65 65 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 64 79 6e 61 74 72 61 63 65 2e 63 6f 6d 2f 63 6f 6d 70 61 6e 79 2f 74 72 75 73 74 2d 63 65 6e 74 65 72 2f 63 75 73 74 6f 6d 65 72 73 2f 72 65 70 6f 72 74 73 2f 20 2a 2f 0a 28 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 4d 61 28 29 7b 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 3d 22 22 2e 63 6f 6e 63 61 74 28 22 5f 5f 64 54 43 6f 6f 6b 69 65 22 2c 22 3d 22 29 2e 63 6f 6e 63 61 74 28 22 31 22 2c 22 3b 53 61 6d 65 53 69 74 65 3d 4c 61 78 22 29 3b 76 61 72 20 43 61 3d 2d 31 21 3d 3d 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 2e 69 6e 64 65 78 4f 66 28 22 5f 5f 64 54 43 6f 6f 6b 69 65 22 29 3b 64 6f 63 75 6d 65 6e Data Ascii: /* Copyright and licenses see https://www.dynatrace.com/company/trust-center/customers/reports/ */(function(){function Ma(){document.cookie="".concat("__dTCookie","=").concat("1",";SameSite=Lax");var Ca=-1!==document.cookie.indexOf("__dTCookie");documen
2024-10-14 11:28:47 UTC	16384	IN	Data Raw: 63 28 29 7d 66 75 6e 63 74 69 6f 6e 20 58 62 28 67 2c 71 29 7b 66 75 6e 63 74 69 6f 6e 20 77 28 29 7b 64 65 6c 65 74 65 20 68 65 5b 73 61 5d 3b 67 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 7d 66 6f 72 28 76 61 72 20 54 3d 5b 5d 2c 46 3d 32 3b 46 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 46 2b 2b 29 54 5b 46 2d 0a 32 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 46 5d 3b 69 66 28 22 61 70 70 6c 79 22 69 6e 20 75 65 29 7b 54 2e 75 6e 73 68 69 66 74 28 77 2c 71 29 3b 76 61 72 20 73 61 3d 75 65 2e 61 70 70 6c 79 28 54 61 2c 54 29 7d 65 6c 73 65 20 73 61 3d 75 65 28 77 2c 71 29 3b 68 65 5b 73 61 5d 3d 21 30 3b 72 65 74 75 72 6e 20 73 61 7d 66 75 6e 63 74 69 6f 6e 20 79 62 28 67 29 7b 64 65 6c 65 74 65 20 68 65 5b 67 5d 3b 22 61 70 70 Data Ascii: c()}function Xb(g,q){function w(){delete he[sa];g.apply(this,arguments)}for(var T=[],F=2;F<arguments.length;F++)T[F-2]=arguments[F];if("apply"in ue){T.unshift(w,q);var sa=ue.apply(Ta,T)}else sa=ue(w,q);he[sa]=!0;return sa}function yb(g){delete he[g];"app
2024-10-14 11:28:48 UTC	12576	IN	Data Raw: 3b 76 6f 69 64 20 30 21 3d 3d 50 62 5b 69 63 5d 26 26 28 73 62 5b 69 63 5d 3d 50 62 5b 69 63 5d 29 7d 47 65 3d 54 61 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3b 75 3d 54 61 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3b 74 3d 54 61 2e 64 6f 63 75 6d 65 6e 74 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3b 7a 3d 54 61 2e 64 6f 63 75 6d 65 6e 74 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 3b 75 65 3d 54 61 2e 73 65 74 54 69 6d 65 6f 75 74 3b 5a 64 3d 54 61 2e 73 65 74 49 6e 74 65 72 76 61 6c 3b 4f 64 7c 7c 28 59 64 3d 54 61 2e 63 6c 65 61 72 54 69 6d 65 6f 75 74 2c 68 64 3d 54 61 2e 63 6c 65 61 72 49 6e 74 65 72 76 61 6c 29 3b 76 61 72 20 4c 63 3d 4f 3f 4f 28 29 3a 6e 61 76 69 67 61 74 6f 72 2e 63 6f 6f 6b 69 Data Ascii: ;void 0!==Pb[ic]&&(sb[ic]=Pb[ic])}Ge=Ta.addEventListener;u=Ta.removeEventListener;t=Ta.document.addEventListener;z=Ta.document.removeEventListener;ue=Ta.setTimeout;Zd=Ta.setInterval;Od\|\|(Yd=Ta.clearTimeout,hd=Ta.clearInterval);var Lc=O?O():navigator.cooki
2024-10-14 11:28:48 UTC	1448	IN	Data Raw: 6e 63 74 69 6f 6e 20 5a 62 28 61 29 7b 69 66 28 21 61 29 72 65 74 75 72 6e 22 22 3b 74 72 79 7b 76 61 72 20 62 3d 76 6f 69 64 20 30 2c 66 3d 64 63 28 61 29 3b 69 66 28 21 7a 62 2e 6c 6f 63 61 74 69 6f 6e 29 72 65 74 75 72 6e 20 66 3b 76 61 72 20 6b 3d 7a 62 2e 6c 6f 63 61 74 69 6f 6e 2c 6e 3d 6b 2e 6f 72 69 67 69 6e 3b 69 66 28 21 6e 29 7b 69 66 28 21 6b 2e 70 72 6f 74 6f 63 6f 6c 7c 7c 21 6b 2e 68 6f 73 74 29 72 65 74 75 72 6e 20 66 3b 6e 3d 6b 2e 70 72 6f 74 6f 63 6f 6c 2b 22 2f 2f 22 2b 6b 2e 68 6f 73 74 7d 76 61 72 20 41 3d 62 3d 66 2e 73 75 62 73 74 72 69 6e 67 28 30 2c 6e 2e 6c 65 6e 67 74 68 2b 31 29 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 3d 3d 3d 28 6e 2b 22 2f 22 29 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 3f 66 2e 73 75 62 73 74 72 69 6e 67 Data Ascii: nction Zb(a){if(!a)return"";try{var b=void 0,f=dc(a);if(!zb.location)return f;var k=zb.location,n=k.origin;if(!n){if(!k.protocol\|\|!k.host)return f;n=k.protocol+"//"+k.host}var A=b=f.substring(0,n.length+1).toLowerCase()===(n+"/").toLowerCase()?f.substring
2024-10-14 11:28:48 UTC	4344	IN	Data Raw: 23 2f 2c 62 2b 31 2b 22 22 29 2e 72 65 70 6c 61 63 65 28 2f 23 74 6f 74 61 6c 23 2f 2c 61 2b 22 22 29 2b 6b 5b 62 5d 3b 72 65 74 75 72 6e 20 6b 7d 66 75 6e 63 74 69 6f 6e 20 45 28 61 29 7b 72 65 74 75 72 6e 21 31 3d 3d 3d 61 3f 30 3a 22 6e 75 6d 62 65 72 22 3d 3d 3d 74 79 70 65 6f 66 20 61 3f 32 3a 31 7d 66 75 6e 63 74 69 6f 6e 20 6b 61 28 61 2c 62 29 7b 76 6f 69 64 20 30 3d 3d 3d 62 26 26 28 62 3d 57 62 28 22 72 74 75 22 29 29 3b 69 66 28 21 61 29 72 65 74 75 72 6e 22 22 3b 76 61 72 20 66 3d 57 62 28 22 72 74 70 22 29 3b 69 66 28 21 66 7c 7c 61 2e 6c 65 6e 67 74 68 3e 62 26 26 32 3d 3d 3d 66 29 61 3d 6a 63 28 61 29 3b 76 61 72 20 6b 3d 65 61 28 61 29 3b 69 66 28 6b 2e 6c 65 6e 67 74 68 3e 62 29 7b 66 3d 65 61 28 56 28 61 29 29 3b 61 3d 61 2e 73 70 6c 69 Data Ascii: #/,b+1+"").replace(/#total#/,a+"")+k[b];return k}function E(a){return!1===a?0:"number"===typeof a?2:1}function ka(a,b){void 0===b&&(b=Wb("rtu"));if(!a)return"";var f=Wb("rtp");if(!f\|\|a.length>b&&2===f)a=jc(a);var k=ea(a);if(k.length>b){f=ea(V(a));a=a.spli
2024-10-14 11:28:48 UTC	16384	IN	Data Raw: 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 2e 66 69 6c 74 65 72 2e 63 61 6c 6c 28 61 2c 62 29 3b 66 6f 72 28 76 61 72 20 66 3d 5b 5d 2c 6b 3d 30 3b 6b 3c 61 2e 6c 65 6e 67 74 68 3b 6b 2b 2b 29 7b 76 61 72 20 6e 3d 61 5b 6b 5d 3b 0a 62 28 6e 2c 6b 2c 61 29 26 26 66 2e 70 75 73 68 28 6e 29 7d 72 65 74 75 72 6e 20 66 7d 66 75 6e 63 74 69 6f 6e 20 71 61 28 61 2c 62 2c 66 2c 6b 29 7b 76 6f 69 64 20 30 3d 3d 3d 6b 26 26 28 6b 3d 21 31 29 3b 72 65 74 75 72 6e 20 66 3f 6e 65 77 20 44 64 28 66 75 6e 63 74 69 6f 6e 28 6e 2c 41 29 7b 76 61 72 20 4b 3d 5b 5d 3b 69 61 28 61 2c 66 75 6e 63 74 69 6f 6e 28 62 61 2c 76 61 29 7b 62 28 62 61 2c 76 61 2c 61 29 26 26 4b 2e 70 75 73 68 28 62 61 29 7d 2c 6e 75 6c 6c 2c 66 75 6e 63 74 69 6f 6e 28 62 61 2c 76 61 29 7b 76 61 3f 41 28 Data Ascii: ray.prototype.filter.call(a,b);for(var f=[],k=0;k<a.length;k++){var n=a[k];b(n,k,a)&&f.push(n)}return f}function qa(a,b,f,k){void 0===k&&(k=!1);return f?new Dd(function(n,A){var K=[];ia(a,function(ba,va){b(ba,va,a)&&K.push(ba)},null,function(ba,va){va?A(
2024-10-14 11:28:48 UTC	16384	IN	Data Raw: 2e 51 65 3b 0a 47 28 22 44 45 42 55 47 5f 49 4e 46 4f 5f 52 45 51 55 45 53 54 45 44 22 2c 69 62 29 7d 66 75 6e 63 74 69 6f 6e 20 73 62 28 29 7b 66 6f 72 28 76 61 72 20 61 3d 21 31 2c 62 3d 5b 5d 2c 66 3d 30 2c 6b 3d 56 63 3b 66 3c 6b 2e 6c 65 6e 67 74 68 3b 66 2b 2b 29 7b 76 61 72 20 6e 3d 6b 5b 66 5d 3b 6e 2e 63 63 26 26 30 3c 6e 2e 63 63 26 26 28 6e 2e 54 61 26 26 6e 63 28 29 3e 6e 2e 54 61 26 26 28 6e 2e 54 61 2b 3d 36 45 34 2c 62 2e 70 75 73 68 28 6e 29 29 2c 61 3d 21 30 29 7d 30 3c 62 2e 6c 65 6e 67 74 68 26 26 57 65 28 21 30 2c 21 30 29 3b 66 6f 72 28 66 3d 30 3b 66 3c 62 2e 6c 65 6e 67 74 68 3b 66 2b 2b 29 6b 3d 62 5b 66 5d 2c 6b 2e 63 63 26 26 6b 2e 63 63 2d 2d 3b 61 26 26 4f 62 28 73 62 2c 31 45 33 29 7d 66 75 6e 63 74 69 6f 6e 20 54 62 28 61 2c Data Ascii: .Qe;G("DEBUG_INFO_REQUESTED",ib)}function sb(){for(var a=!1,b=[],f=0,k=Vc;f<k.length;f++){var n=k[f];n.cc&&0<n.cc&&(n.Ta&&nc()>n.Ta&&(n.Ta+=6E4,b.push(n)),a=!0)}0<b.length&&We(!0,!0);for(f=0;f<b.length;f++)k=b[f],k.cc&&k.cc--;a&&Ob(sb,1E3)}function Tb(a,
2024-10-14 11:28:48 UTC	16384	IN	Data Raw: 73 68 28 5b 22 73 76 6e 22 2c 0a 6e 5d 29 2c 62 2e 70 75 73 68 28 5b 22 73 76 74 22 2c 41 2b 22 22 5d 29 2c 62 2e 70 75 73 68 28 5b 22 73 76 74 72 67 22 2c 62 61 2b 22 22 5d 29 2c 62 2e 70 75 73 68 28 5b 22 73 76 6d 22 2c 6d 62 28 66 29 5d 29 29 3b 4b 26 26 62 2e 70 75 73 68 28 5b 22 73 76 67 22 2c 4b 5d 29 7d 66 3d 6b 2e 6e 61 6d 65 3b 4b 3d 6b 2e 67 72 6f 75 70 3b 62 61 3d 6b 2e 74 72 69 67 67 65 72 3b 62 2e 70 75 73 68 28 5b 22 74 76 6e 22 2c 66 5d 29 3b 62 2e 70 75 73 68 28 5b 22 74 76 74 72 67 22 2c 62 61 2b 22 22 5d 29 3b 62 2e 70 75 73 68 28 5b 22 74 76 6d 22 2c 6d 62 28 6b 29 5d 29 3b 4b 26 26 62 2e 70 75 73 68 28 5b 22 74 76 67 22 2c 4b 5d 29 3b 62 2e 6c 65 6e 67 74 68 26 26 61 66 28 22 5f 76 69 65 77 5f 22 2c 62 2c 21 31 2c 61 2e 6e 65 77 56 69 Data Ascii: sh(["svn",n]),b.push(["svt",A+""]),b.push(["svtrg",ba+""]),b.push(["svm",mb(f)]));K&&b.push(["svg",K])}f=k.name;K=k.group;ba=k.trigger;b.push(["tvn",f]);b.push(["tvtrg",ba+""]);b.push(["tvm",mb(k)]);K&&b.push(["tvg",K]);b.length&&af("_view_",b,!1,a.newVi
2024-10-14 11:28:48 UTC	2976	IN	Data Raw: 6e 20 4d 61 28 4d 61 28 7b 7d 2c 61 29 2c 7a 69 28 62 28 61 2e 6e 61 6d 65 29 29 29 7d 0a 66 75 6e 63 74 69 6f 6e 20 55 6c 28 61 29 7b 76 6f 69 64 20 30 3d 3d 3d 6e 6a 26 26 28 6e 6a 3d 57 62 28 22 70 72 66 53 6d 70 6c 22 29 3e 4d 61 74 68 2e 66 6c 6f 6f 72 28 31 45 34 2a 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 29 29 3b 6e 6a 26 26 28 30 3e 46 66 26 26 28 46 66 3d 57 62 28 22 6d 73 6c 22 29 2c 6a 66 2e 64 54 5f 2e 73 69 28 66 75 6e 63 74 69 6f 6e 28 29 7b 61 63 28 29 7d 2c 33 45 34 29 2c 68 66 28 7a 62 2c 22 62 65 66 6f 72 65 75 6e 6c 6f 61 64 22 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 61 63 28 21 30 29 7d 29 29 2c 72 6c 2e 70 75 73 68 28 61 29 29 7d 66 75 6e 63 74 69 6f 6e 20 56 6c 28 61 29 7b 76 61 72 20 62 3d 22 22 3b 69 61 28 61 2e 64 2c 66 75 6e 63 74 69 Data Ascii: n Ma(Ma({},a),zi(b(a.name)))}function Ul(a){void 0===nj&&(nj=Wb("prfSmpl")>Math.floor(1E4*Math.random()));nj&&(0>Ff&&(Ff=Wb("msl"),jf.dT_.si(function(){ac()},3E4),hf(zb,"beforeunload",function(){ac(!0)})),rl.push(a))}function Vl(a){var b="";ia(a.d,functi
2024-10-14 11:28:48 UTC	2896	IN	Data Raw: 66 28 22 5f 77 76 5f 22 2c 5b 5b 22 41 41 49 22 2c 4d 64 2b 22 22 5d 2c 5b 22 6c 63 70 45 22 2c 61 2e 49 63 7c 7c 22 2d 22 5d 2c 5b 22 6c 63 70 53 65 6c 22 2c 61 2e 72 64 7c 7c 22 2d 22 5d 2c 5b 22 6c 63 70 53 22 2c 61 2e 73 69 7a 65 2b 22 22 5d 2c 5b 22 6c 63 70 54 22 2c 61 2e 4d 61 2b 22 22 5d 2c 5b 22 6c 63 70 55 22 2c 61 2e 75 72 6c 7c 7c 22 2d 22 5d 2c 5b 22 6c 63 70 4c 54 22 2c 61 2e 6c 6f 61 64 54 69 6d 65 2b 22 22 5d 5d 2c 0a 21 31 2c 76 6f 69 64 20 30 2c 31 29 29 7d 7d 29 3b 74 72 79 7b 62 6b 2e 6f 62 73 65 72 76 65 28 7b 74 79 70 65 3a 22 6c 61 72 67 65 73 74 2d 63 6f 6e 74 65 6e 74 66 75 6c 2d 70 61 69 6e 74 22 2c 62 75 66 66 65 72 65 64 3a 21 30 7d 29 7d 63 61 74 63 68 28 61 29 7b 62 6b 2e 6f 62 73 65 72 76 65 28 7b 65 6e 74 72 79 54 79 70 65 Data Ascii: f("_wv_",[["AAI",Md+""],["lcpE",a.Ic\|\|"-"],["lcpSel",a.rd\|\|"-"],["lcpS",a.size+""],["lcpT",a.Ma+""],["lcpU",a.url\|\|"-"],["lcpLT",a.loadTime+""]],!1,void 0,1))}});try{bk.observe({type:"largest-contentful-paint",buffered:!0})}catch(a){bk.observe({entryType

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:48 UTC	429	OUT	GET /tag/uet/5488685?insights=1 HTTP/1.1 Host: www.clarity.ms Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: CLID=5399a5bee21643fd8cc1818d9d2fb7b2.20241014.20251014
2024-10-14 11:28:49 UTC	380	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:48 GMT Content-Type: application/x-javascript Content-Length: 1049 Connection: close Cache-Control: no-cache, no-store Expires: -1 Request-Context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64 x-azure-ref: 20241014T112848Z-17db6f7c8cf6qp7g7r97wxgbqc00000005rg000000002kys X-Cache: CONFIG_NOCACHE Accept-Ranges: bytes
2024-10-14 11:28:49 UTC	1049	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 63 2c 6c 2c 61 2c 72 2c 69 2c 74 2c 79 29 7b 61 5b 63 5d 3d 61 5b 63 5d 7c 7c 66 75 6e 63 74 69 6f 6e 28 29 7b 28 61 5b 63 5d 2e 71 3d 61 5b 63 5d 2e 71 7c 7c 5b 5d 29 2e 70 75 73 68 28 61 72 67 75 6d 65 6e 74 73 29 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 79 6e 63 28 29 7b 28 6e 65 77 20 49 6d 61 67 65 29 2e 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 2e 63 6c 61 72 69 74 79 2e 6d 73 2f 63 2e 67 69 66 22 7d 22 63 6f 6d 70 6c 65 74 65 22 3d 3d 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3f 73 79 6e 63 28 29 3a 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 73 79 6e 63 29 3b 61 5b 63 5d 28 22 6d 65 74 61 64 61 74 61 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 61 5b 63 5d 28 22 Data Ascii: !function(c,l,a,r,i,t,y){a[c]=a[c]\|\|function(){(a[c].q=a[c].q\|\|[]).push(arguments)};function sync(){(new Image).src="https://c.clarity.ms/c.gif"}"complete"==document.readyState?sync():window.addEventListener("load",sync);a[c]("metadata",(function(){a[c]("

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:48 UTC	630	OUT	GET /1yg5id05d7mqmpq2.js?oia45jq18eqdhuwv=4rvrfbxt&lc0xyztxiq5a78so=b97457d29e6f23aebaa806049c2e2abf HTTP/1.1 Host: h.online-metrix.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:49 UTC	788	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:49 GMT Server: Apache Strict-Transport-Security: max-age=31536000 Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Connection: Keep-Alive, close X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Expires: Thu, 01 Jan 1970 00:00:00 GMT X-Robots-Tag: noindex, nofollow Set-Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; Max-Age=155520000; Version=1; HttpOnly; Path=/; Secure; SameSite=None; P3P: CP=IVAa PSAa Set-Cookie: tmx_guid=AAw-QTT8rLR7TZwGJgxlzEFMxnr_i6izZeJnTsgv-B41FgUCkhP8PXTfZ3-Zks6R8iWcGnGbe4pOW60cG4yAOmyMmRbsBw; Max-Age=155520000; Version=1; HttpOnly; Path=/; Secure; SameSite=None; Content-Type: text/javascript;charset=UTF-8 Vary: Accept-Encoding Transfer-Encoding: chunked
2024-10-14 11:28:49 UTC	7404	IN	Data Raw: 66 66 66 38 0d 0a 28 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 64 5f 36 6f 3d 74 64 5f 36 6f 7c 7c 7b 7d 3b 74 64 5f 36 6f 2e 74 64 5f 31 7a 3d 66 75 6e 63 74 69 6f 6e 28 74 64 5f 47 2c 74 64 5f 6c 29 7b 74 72 79 7b 76 61 72 20 74 64 5f 72 3d 5b 22 22 5d 3b 76 61 72 20 74 64 5f 50 3d 30 3b 66 6f 72 28 76 61 72 20 74 64 5f 4d 3d 30 3b 74 64 5f 4d 3c 74 64 5f 6c 2e 6c 65 6e 67 74 68 3b 2b 2b 74 64 5f 4d 29 7b 74 64 5f 72 2e 70 75 73 68 28 53 74 72 69 6e 67 2e 66 72 6f 6d 43 68 61 72 43 6f 64 65 28 74 64 5f 47 2e 63 68 61 72 43 6f 64 65 41 74 28 74 64 5f 50 29 5e 74 64 5f 6c 2e 63 68 61 72 43 6f 64 65 41 74 28 74 64 5f 4d 29 29 29 3b 74 64 5f 50 2b 2b 3b 0a 69 66 28 74 64 5f 50 3e 3d 74 64 5f 47 2e 6c 65 6e 67 74 68 29 7b 74 64 5f 50 3d 30 3b 7d 7d 72 Data Ascii: fff8(function(){var td_6o=td_6o\|\|{};td_6o.td_1z=function(td_G,td_l){try{var td_r=[""];var td_P=0;for(var td_M=0;td_M<td_l.length;++td_M){td_r.push(String.fromCharCode(td_G.charCodeAt(td_P)^td_l.charCodeAt(td_M)));td_P++;if(td_P>=td_G.length){td_P=0;}}r
2024-10-14 11:28:49 UTC	16384	IN	Data Raw: 5f 30 43 21 3d 3d 5b 5d 5b 5b 5d 5d 2b 22 22 29 7b 74 64 5f 30 43 28 29 3b 7d 69 66 28 74 79 70 65 6f 66 20 74 64 5f 32 4a 21 3d 3d 5b 5d 5b 5b 5d 5d 2b 22 22 29 7b 74 64 5f 32 4a 28 29 3b 7d 69 66 28 74 79 70 65 6f 66 20 74 64 5f 33 66 21 3d 3d 5b 5d 5b 5b 5d 5d 2b 22 22 29 7b 74 64 5f 33 66 28 29 3b 7d 69 66 28 74 79 70 65 6f 66 20 74 64 5f 32 77 21 3d 3d 5b 5d 5b 5b 5d 5d 2b 22 22 29 7b 69 66 28 74 79 70 65 6f 66 20 74 64 5f 36 4d 21 3d 3d 5b 5d 5b 5b 5d 5d 2b 22 22 26 26 74 64 5f 36 4d 21 3d 3d 6e 75 6c 6c 29 7b 74 64 5f 32 77 28 74 64 5f 36 4d 2c 66 61 6c 73 65 29 3b 0a 7d 69 66 28 74 79 70 65 6f 66 20 74 64 5f 36 45 21 3d 3d 5b 5d 5b 5b 5d 5d 2b 22 22 26 26 74 64 5f 36 45 21 3d 3d 6e 75 6c 6c 29 7b 74 64 5f 32 77 28 74 64 5f 36 45 2c 74 72 75 65 29 Data Ascii: _0C!==[][[]]+""){td_0C();}if(typeof td_2J!==[][[]]+""){td_2J();}if(typeof td_3f!==[][[]]+""){td_3f();}if(typeof td_2w!==[][[]]+""){if(typeof td_6M!==[][[]]+""&&td_6M!==null){td_2w(td_6M,false);}if(typeof td_6E!==[][[]]+""&&td_6E!==null){td_2w(td_6E,true)
2024-10-14 11:28:49 UTC	16384	IN	Data Raw: 30 29 29 3a 6e 75 6c 6c 29 2c 76 65 72 73 69 6f 6e 53 65 61 72 63 68 3a 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 28 31 34 2c 31 30 29 29 3a 6e 75 6c 6c 29 2c 69 64 65 6e 74 69 74 79 3a 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 Data Ascii: 0)):null),versionSearch:((typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd)!=="undefined"&&typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f)!=="undefined")?(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f(14,10)):null),identity:((typeof(td_6o.tdz_6
2024-10-14 11:28:49 UTC	16384	IN	Data Raw: 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 28 32 38 34 2c 37 29 29 3a 6e 75 6c 6c 29 2c 69 64 65 6e 74 69 74 79 3a 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 29 21 Data Ascii: td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd)!=="undefined"&&typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f)!=="undefined")?(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f(284,7)):null),identity:((typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd)!
2024-10-14 11:28:49 UTC	8978	IN	Data Raw: 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 28 33 32 30 2c 36 29 29 3a 6e 75 6c 6c 29 3a 63 61 73 65 20 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 Data Ascii: 9a4825090f7bd9bd)!=="undefined"&&typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f)!=="undefined")?(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f(320,6)):null):case ((typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd)!=="undefined"&&typeof(td_6o.td
2024-10-14 11:28:49 UTC	2	IN	Data Raw: 0d 0a Data Ascii:
2024-10-14 11:28:49 UTC	8192	IN	Data Raw: 38 31 66 32 0d 0a 22 29 26 26 28 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 2e 79 61 6e 64 65 78 21 3d 3d 5b 5d 5b 5b 5d 5d 2b 22 22 29 3b 69 66 28 63 68 65 63 6b 29 7b 72 65 74 75 72 6e 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 28 37 31 2c 36 29 29 Data Ascii: 81f2")&&(typeof window.yandex!==[][[]]+"");if(check){return((typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd)!=="undefined"&&typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f)!=="undefined")?(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f(71,6))
2024-10-14 11:28:49 UTC	16384	IN	Data Raw: 34 5c 78 36 35 5c 78 33 31 5c 78 33 30 5c 78 33 35 5c 78 33 35 5c 78 33 38 5c 78 33 37 5c 78 33 34 5c 78 33 33 5c 78 33 31 5c 78 33 37 5c 78 33 35 5c 78 33 39 5c 78 33 34 5c 78 36 34 5c 78 33 35 5c 78 36 32 5c 78 33 35 5c 78 36 36 5c 78 33 30 5c 78 33 34 5c 78 33 30 5c 78 33 34 5c 78 33 35 5c 78 36 31 5c 78 33 34 5c 78 33 33 5c 78 33 30 5c 78 33 33 5c 78 33 35 5c 78 33 34 5c 78 33 34 5c 78 33 34 5c 78 33 34 5c 78 36 33 5c 78 33 34 5c 78 33 38 5c 78 33 30 5c 78 36 34 5c 78 33 30 5c 78 33 38 5c 78 33 35 5c 78 36 34 5c 78 33 35 5c 78 33 35 5c 78 33 35 5c 78 33 31 5c 78 33 35 5c 78 36 35 5c 78 33 34 5c 78 33 31 5c 78 33 35 5c 78 36 34 5c 78 33 34 5c 78 36 34 5c 78 33 33 5c 78 36 32 5c 78 33 30 5c 78 33 31 5c 78 33 34 5c 78 33 33 5c 78 33 36 5c 78 36 36 5c 78 Data Ascii: 4\x65\x31\x30\x35\x35\x38\x37\x34\x33\x31\x37\x35\x39\x34\x64\x35\x62\x35\x66\x30\x34\x30\x34\x35\x61\x34\x33\x30\x33\x35\x34\x34\x34\x34\x63\x34\x38\x30\x64\x30\x38\x35\x64\x35\x35\x35\x31\x35\x65\x34\x31\x35\x64\x34\x64\x33\x62\x30\x31\x34\x33\x36\x66\x
2024-10-14 11:28:49 UTC	8696	IN	Data Raw: 61 30 36 65 34 65 37 61 38 32 39 35 37 33 65 35 63 30 30 64 61 66 63 34 2e 74 64 5f 66 28 32 38 33 2c 34 29 29 3a 6e 75 6c 6c 29 2b 74 64 5f 36 6f 2e 74 64 5f 30 65 28 74 64 5f 49 37 2c 74 64 5f 36 6f 2e 74 64 5f 31 6a 29 3b 0a 74 64 5f 53 73 2b 3d 74 64 5f 4a 33 3b 7d 7d 74 64 5f 36 6f 2e 74 64 5f 33 64 28 74 64 5f 68 48 2c 74 64 5f 53 73 29 3b 74 64 5f 36 6f 2e 74 64 5f 35 78 28 74 64 5f 68 48 29 3b 74 68 69 73 2e 62 6f 64 79 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 74 64 5f 68 48 29 3b 76 61 72 20 74 64 5f 4b 35 3d 74 68 69 73 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 65 37 65 34 30 32 30 33 61 30 36 65 34 65 37 61 38 32 39 35 37 33 65 35 63 30 30 64 61 66 63 34 29 21 3d 3d 22 75 6e 64 65 66 69 Data Ascii: a06e4e7a829573e5c00dafc4.td_f(283,4)):null)+td_6o.td_0e(td_I7,td_6o.td_1j);td_Ss+=td_J3;}}td_6o.td_3d(td_hH,td_Ss);td_6o.td_5x(td_hH);this.body.appendChild(td_hH);var td_K5=this.createElement(((typeof(td_6o.tdz_e7e40203a06e4e7a829573e5c00dafc4)!=="undefi
2024-10-14 11:28:49 UTC	2	IN	Data Raw: 0d 0a Data Ascii:

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:49 UTC	724	OUT	GET /logos/10254029-60e4-4141-b6e9-3582cc281f3b/cecd808d-ce03-46a2-adbd-3e5049e18f33/86cf55bb-0e3f-4426-ab59-8417f63ca9fe/RBC_Shield.png HTTP/1.1 Host: cdn.cookielaw.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:49 UTC	869	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:49 GMT Content-Type: mage/png Content-Length: 3011 Connection: close Content-MD5: Qfj8Rvd+EenLbj+49O01EA== Last-Modified: Mon, 31 Jul 2023 17:58:24 GMT ETag: 0x8DB91EFBC79D663 x-ms-request-id: f50d99c0-201e-0081-0903-229959000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding Access-Control-Allow-Origin: * Cache-Control: max-age=86400 CF-Cache-Status: HIT Age: 67339 Accept-Ranges: bytes Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Content-Type-Options: nosniff Cross-Origin-Resource-Policy: cross-origin Server: cloudflare CF-RAY: 8d273a673a6041e0-EWR
2024-10-14 11:28:49 UTC	500	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 30 00 00 00 3f 08 06 00 00 00 a6 54 4b 52 00 00 00 09 70 48 59 73 00 00 0b 13 00 00 0b 13 01 00 9a 9c 18 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 04 67 41 4d 41 00 00 b1 8f 0b fc 61 05 00 00 0b 58 49 44 41 54 78 01 d5 5a 5d 6c 14 d7 15 3e db 42 05 38 2a 6b 84 4d 0b 09 bb 9b a2 d6 29 a4 5e 42 e2 d0 07 f0 ba 95 0a 91 5a 79 a1 52 71 a4 22 af fd 00 51 ab c8 eb a6 0f ad a0 f1 5a 8d 79 2a b5 51 9a 48 e4 01 db 2d 6a 92 fe 60 5b 4a 55 a8 d4 b2 26 0f fc 44 a9 97 c6 24 44 85 78 9d 06 92 1a b7 5e b7 d8 d0 b8 92 73 be 33 73 c7 77 67 ef ac 77 22 3b 82 4f 1a ef ec cc bd 33 e7 f7 3b e7 5e 6f 60 76 76 36 4c 44 31 ba 3b 91 5e c2 7f 62 d9 b1 a9 ee c1 4b ff a4 bb 09 b5 1b d7 50 b8 b2 ac 09 0a 50 9a 85 6f 7a f6 Data Ascii: PNGIHDR0?TKRpHYssRGBgAMAaXIDATxZ]l>B8kM)^BZyRq"QZyQH-j`[JU&D$Dx^s3swgw";O3;^o`vv6LD1;^bKPPoz
2024-10-14 11:28:49 UTC	1369	IN	Data Raw: 5e dc 4f a9 53 bb 29 ba f6 5d 2a 86 10 87 18 80 10 5c 68 14 28 d0 f6 8d 13 34 3a b1 9a 7a 5e db 2e f1 9f 64 4f 14 03 c6 a8 3c 41 38 55 bb 94 89 ae 1b 75 ce 17 dd 03 b0 7c 82 d9 27 f2 4c 17 f9 45 5f 53 a7 27 33 41 f0 76 f6 d4 a2 2b 00 ee 4f 5f f5 4f 73 08 31 08 8f 9a b1 eb 58 ab 7c 87 b0 b9 db 56 c8 e0 3a aa fa 62 20 4f 81 6a 76 f7 80 c6 32 3a 50 b8 20 98 a9 85 98 6b 33 02 52 bd 27 6f af 90 78 5f c9 42 67 ae ad 17 9a c5 bc de d7 b6 d1 42 23 8f 85 ca b5 7e c7 84 16 4e 68 13 90 03 99 6b 21 bb 72 73 de f4 ed a5 d3 7f 7f 40 be c3 33 c8 83 a6 1a ff 95 bb 14 e4 29 30 c1 56 d3 93 4e 07 42 0b 02 a1 2e 98 b0 ab 3b 29 a1 82 f9 a0 de 24 d3 2b 8a db 42 57 5e 37 f2 42 e8 e2 f5 f5 54 bf e9 75 27 86 75 c0 b2 10 a6 fb f1 17 a8 8e 8b 56 96 99 ca 7d 1f c9 8f e2 a7 3c 21 c5 Data Ascii: ^OS)]*\h(4:z^.dO<A8Uu\|'LE_S'3Av+O_Os1X\|V:b Ojv2:P k3R'ox_BgB#~Nhk!rs@3)0VNB.;)$+BW^7BTu'uV}<!
2024-10-14 11:28:49 UTC	1142	IN	Data Raw: 8c 36 71 68 9f 30 1b 3a 53 cc 37 15 d8 92 15 00 60 5d d5 55 aa 10 41 a7 ea a6 5b d5 12 00 8a 6e 7b 2f 6c 73 da 10 2f 20 4f c0 52 75 cf 1d a4 e8 cf 3a 28 f0 83 e3 14 f9 69 97 3c 0b ed 86 69 83 c0 97 02 80 0a 25 ac 03 9a 5e dc e7 d0 2d d6 ca c5 76 a0 13 dc 52 c3 13 6a c7 db 0b 3d 9a 95 11 42 b0 be 6a 0e 4d f0 ad 80 5a 89 a9 97 81 a9 10 5a b2 9d c2 db 8b c5 a0 3a 55 ac 03 4c 50 31 8f 4d 34 b0 1f c2 07 5e 43 f5 37 e5 0b 30 ef 3f 38 4c 88 f3 f6 a1 82 62 2a 78 42 85 53 b1 85 0f 2c 89 71 88 75 6c a4 21 ee 43 ab 6e 88 01 dc 55 56 01 d4 8c bc 32 25 f1 c7 52 c0 04 f0 39 42 04 89 8a fc f0 ea 89 30 ce 5a 89 bd 29 0d 63 e6 fd f5 72 0c 5c ca 17 0e 8a c1 fa e8 97 f0 89 50 42 2e b9 69 74 c1 14 00 10 5e b0 14 0a 5e b2 3f e4 39 4e b1 19 76 1a e6 83 08 6f 37 8d f3 ae c8 16 Data Ascii: 6qh0:S7`]UA[n{/ls/ ORu:(i<i%^-vRj=BjMZZ:ULP1M4^C70?8Lb*xBS,qul!CnUV2%R9B0Z)cr\PB.it^^?9Nvo7

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:49 UTC	625	OUT	GET /logos/static/powered_by_logo.svg HTTP/1.1 Host: cdn.cookielaw.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:49 UTC	922	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:49 GMT Content-Type: image/svg+xml Content-Length: 5194 Connection: close Content-MD5: Y+c301RBZNK39PvKQWrIBw== Last-Modified: Sat, 12 Oct 2024 02:22:50 GMT ETag: 0x8DCEA64C56803ED x-ms-request-id: 57310edb-701e-00ed-7ae2-1c9a0e000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding Access-Control-Allow-Origin: * Age: 62713 Expires: Mon, 14 Oct 2024 18:03:36 GMT Cache-Control: public, max-age=86400 CF-Cache-Status: HIT Accept-Ranges: bytes Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Content-Type-Options: nosniff Cross-Origin-Resource-Policy: cross-origin Server: cloudflare CF-RAY: 8d273a674eec8c6f-EWR
2024-10-14 11:28:49 UTC	447	IN	Data Raw: 3c 73 76 67 20 68 65 69 67 68 74 3d 22 31 36 22 20 77 69 64 74 68 3d 22 31 33 36 22 20 64 61 74 61 2d 6e 61 6d 65 3d 22 4c 61 79 65 72 20 31 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 31 33 36 20 31 34 2e 36 22 3e 3c 64 65 66 73 3e 3c 63 6c 69 70 50 61 74 68 20 69 64 3d 22 61 22 3e 3c 70 61 74 68 20 66 69 6c 6c 3d 22 6e 6f 6e 65 22 20 64 3d 22 4d 35 33 2e 37 36 20 30 48 31 33 36 76 31 34 2e 36 48 35 33 2e 37 36 7a 22 2f 3e 3c 2f 63 6c 69 70 50 61 74 68 3e 3c 2f 64 65 66 73 3e 3c 70 61 74 68 20 64 3d 22 4d 30 20 31 32 2e 33 56 35 2e 35 39 68 32 2e 32 37 61 32 2e 36 32 20 32 2e 36 32 20 30 20 30 31 31 2e 32 39 2e 32 38 20 31 2e 38 33 20 31 2e 38 33 20 Data Ascii: <svg height="16" width="136" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 136 14.6"><defs><clipPath id="a"><path fill="none" d="M53.76 0H136v14.6H53.76z"/></clipPath></defs><path d="M0 12.3V5.59h2.27a2.62 2.62 0 011.29.28 1.83 1.83
2024-10-14 11:28:49 UTC	1369	IN	Data Raw: 30 30 33 2e 36 20 37 61 31 2e 31 20 31 2e 31 20 30 20 30 30 2d 2e 34 38 2d 2e 35 20 31 2e 38 36 20 31 2e 38 36 20 30 20 30 30 2d 2e 38 38 2d 2e 31 38 48 2e 38 31 76 36 7a 6d 37 2e 37 34 2e 31 61 32 2e 32 39 20 32 2e 32 39 20 30 20 30 31 2d 31 2e 32 2d 2e 33 32 20 32 2e 32 39 20 32 2e 32 39 20 30 20 30 31 2d 2e 38 2d 2e 39 31 20 33 2e 30 36 20 33 2e 30 36 20 30 20 30 31 2d 2e 32 38 2d 31 2e 33 36 20 33 2e 30 37 20 33 2e 30 37 20 30 20 30 31 2e 32 38 2d 31 2e 33 37 20 32 2e 31 34 20 32 2e 31 34 20 30 20 30 31 32 2d 31 2e 32 34 20 32 2e 31 34 20 32 2e 31 34 20 30 20 30 31 32 20 31 2e 32 34 41 33 2e 30 37 20 33 2e 30 37 20 30 20 30 31 31 30 20 39 2e 38 31 61 33 2e 30 36 20 33 2e 30 36 20 30 20 30 31 2d 2e 32 39 20 31 2e 33 36 20 32 2e 31 31 20 32 2e 31 31 20 Data Ascii: 003.6 7a1.1 1.1 0 00-.48-.5 1.86 1.86 0 00-.88-.18H.81v6zm7.74.1a2.29 2.29 0 01-1.2-.32 2.29 2.29 0 01-.8-.91 3.06 3.06 0 01-.28-1.36 3.07 3.07 0 01.28-1.37 2.14 2.14 0 012-1.24 2.14 2.14 0 012 1.24A3.07 3.07 0 0110 9.81a3.06 3.06 0 01-.29 1.36 2.11 2.11
2024-10-14 11:28:49 UTC	1369	IN	Data Raw: 32 20 30 20 30 31 2d 31 2e 32 36 2d 2e 33 32 20 32 2e 31 34 20 32 2e 31 34 20 30 20 30 31 2d 2e 38 31 2d 2e 39 20 33 2e 32 20 33 2e 32 20 30 20 30 31 2d 2e 32 38 2d 31 2e 33 36 41 33 2e 32 34 20 33 2e 32 34 20 30 20 30 31 32 37 20 38 2e 34 36 61 32 2e 31 38 20 32 2e 31 38 20 30 20 30 31 2e 38 2d 2e 39 32 41 32 2e 30 35 20 32 2e 30 35 20 30 20 30 31 32 39 20 37 2e 32 61 32 2e 35 34 20 32 2e 35 34 20 30 20 30 31 2e 37 37 2e 31 33 20 31 2e 39 20 31 2e 39 20 30 20 30 31 2e 37 2e 34 33 20 31 2e 39 34 20 31 2e 39 34 20 30 20 30 31 2e 35 2e 37 37 20 33 2e 31 39 20 33 2e 31 39 20 30 20 30 31 2e 31 39 20 31 2e 31 39 56 31 30 68 2d 33 2e 38 35 76 2d 2e 36 32 68 33 2e 30 39 61 31 2e 35 35 20 31 2e 35 35 20 30 20 30 30 2d 2e 31 37 2d 2e 37 36 20 31 2e 32 38 20 31 2e Data Ascii: 2 0 01-1.26-.32 2.14 2.14 0 01-.81-.9 3.2 3.2 0 01-.28-1.36A3.24 3.24 0 0127 8.46a2.18 2.18 0 01.8-.92A2.05 2.05 0 0129 7.2a2.54 2.54 0 01.77.13 1.9 1.9 0 01.7.43 1.94 1.94 0 01.5.77 3.19 3.19 0 01.19 1.19V10h-3.85v-.62h3.09a1.55 1.55 0 00-.17-.76 1.28 1.
2024-10-14 11:28:49 UTC	1369	IN	Data Raw: 2e 31 34 2d 2e 31 38 2d 2e 32 35 2d 2e 32 34 2d 2e 33 35 68 2d 2e 30 39 76 2e 37 38 7a 6d 2e 37 36 2d 32 2e 35 32 61 32 2e 38 35 20 32 2e 38 35 20 30 20 30 30 2e 31 37 20 31 20 31 2e 35 20 31 2e 35 20 30 20 30 30 2e 34 39 2e 36 38 20 31 2e 33 39 20 31 2e 33 39 20 30 20 30 30 31 2e 35 39 20 30 20 31 2e 34 36 20 31 2e 34 36 20 30 20 30 30 2e 34 39 2d 2e 36 39 20 32 2e 35 35 20 32 2e 35 35 20 30 20 30 30 2e 31 37 2d 31 20 32 2e 35 39 20 32 2e 35 39 20 30 20 30 30 2d 2e 31 36 2d 2e 39 35 20 31 2e 34 35 20 31 2e 34 35 20 30 20 30 30 2d 2e 34 39 2d 2e 36 38 41 31 2e 32 39 20 31 2e 32 39 20 30 20 30 30 34 33 20 37 2e 39 61 31 2e 33 36 20 31 2e 33 36 20 30 20 30 30 2d 2e 37 39 2e 32 33 20 31 2e 34 37 20 31 2e 34 37 20 30 20 30 30 2d 2e 34 38 2e 36 37 20 32 2e 36 Data Ascii: .14-.18-.25-.24-.35h-.09v.78zm.76-2.52a2.85 2.85 0 00.17 1 1.5 1.5 0 00.49.68 1.39 1.39 0 001.59 0 1.46 1.46 0 00.49-.69 2.55 2.55 0 00.17-1 2.59 2.59 0 00-.16-.95 1.45 1.45 0 00-.49-.68A1.29 1.29 0 0043 7.9a1.36 1.36 0 00-.79.23 1.47 1.47 0 00-.48.67 2.6
2024-10-14 11:28:49 UTC	640	IN	Data Raw: 33 2d 34 2e 33 31 68 2d 32 2e 33 39 63 2d 2e 31 37 20 31 2e 36 33 2d 2e 38 34 20 32 2e 36 33 2d 32 2e 38 32 20 32 2e 36 33 7a 6d 2d 2e 30 37 2d 38 2e 34 37 61 32 2e 37 36 20 32 2e 37 36 20 30 20 30 31 32 2e 37 37 20 32 2e 39 33 68 2d 35 2e 36 43 38 31 20 35 2e 34 36 20 38 32 20 34 2e 34 36 20 38 33 2e 35 34 20 34 2e 34 36 7a 4d 31 30 35 2e 35 38 20 33 76 32 2e 33 35 63 2d 2e 37 38 20 30 2d 31 2e 30 39 2d 2e 30 37 2d 31 2e 33 36 2d 2e 30 37 2d 31 2e 36 35 20 30 2d 32 2e 37 31 2e 37 32 2d 33 2e 30 36 20 32 2e 37 38 61 37 2e 38 35 20 37 2e 38 35 20 30 20 30 30 2d 2e 30 39 20 31 2e 31 39 76 35 2e 31 34 68 2d 32 2e 33 33 56 33 68 32 2e 31 32 76 33 2e 35 38 61 31 34 2e 39 20 31 34 2e 39 20 30 20 30 31 2e 37 39 2d 32 41 32 2e 35 39 20 32 2e 35 39 20 30 20 30 31 Data Ascii: 3-4.31h-2.39c-.17 1.63-.84 2.63-2.82 2.63zm-.07-8.47a2.76 2.76 0 012.77 2.93h-5.6C81 5.46 82 4.46 83.54 4.46zM105.58 3v2.35c-.78 0-1.09-.07-1.36-.07-1.65 0-2.71.72-3.06 2.78a7.85 7.85 0 00-.09 1.19v5.14h-2.33V3h2.12v3.58a14.9 14.9 0 01.79-2A2.59 2.59 0 01

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:49 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-10-14 11:28:50 UTC	467	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF70) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-neu-z1 Cache-Control: public, max-age=105406 Date: Mon, 14 Oct 2024 11:28:49 GMT Connection: close X-CID: 2

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:49 UTC	534	OUT	GET /bat.js HTTP/1.1 Host: bat.bing.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:50 UTC	651	IN	HTTP/1.1 200 OK Cache-Control: private,max-age=1800 Content-Length: 50523 Content-Type: application/javascript Last-Modified: Thu, 19 Sep 2024 15:43:41 GMT Accept-Ranges: bytes ETag: "803483b3aaadb1:0" Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Cache: CONFIG_NOCACHE Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: C3231C366DF44B20AD23C79400C599DE Ref B: EWR30EDGE0911 Ref C: 2024-10-14T11:28:50Z Date: Mon, 14 Oct 2024 11:28:49 GMT Connection: close
2024-10-14 11:28:50 UTC	1270	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 20 55 45 54 28 6f 29 7b 74 68 69 73 2e 73 74 72 69 6e 67 45 78 69 73 74 73 3d 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 72 65 74 75 72 6e 20 6e 26 26 6e 2e 6c 65 6e 67 74 68 3e 30 7d 3b 74 68 69 73 2e 64 6f 6d 61 69 6e 3d 22 62 61 74 2e 62 69 6e 67 2e 63 6f 6d 22 3b 74 68 69 73 2e 64 6f 6d 61 69 6e 43 6c 3d 22 62 61 74 2e 62 69 6e 67 2e 6e 65 74 22 3b 74 68 69 73 2e 55 52 4c 4c 45 4e 47 54 48 4c 49 4d 49 54 3d 34 30 39 36 3b 74 68 69 73 2e 70 61 67 65 4c 6f 61 64 45 76 74 3d 22 70 61 67 65 4c 6f 61 64 22 3b 74 68 69 73 2e 63 75 73 74 6f 6d 45 76 74 3d 22 63 75 73 74 6f 6d 22 3b 74 68 69 73 2e 70 61 67 65 56 69 65 77 45 76 74 3d 22 70 61 67 65 5f 76 69 65 77 22 3b 6f 2e 56 65 72 3d 6f 2e 56 65 72 21 3d 3d 75 6e 64 65 66 69 6e 65 64 26 26 Data Ascii: function UET(o){this.stringExists=function(n){return n&&n.length>0};this.domain="bat.bing.com";this.domainCl="bat.bing.net";this.URLLENGTHLIMIT=4096;this.pageLoadEvt="pageLoad";this.customEvt="custom";this.pageViewEvt="page_view";o.Ver=o.Ver!==undefined&&
2024-10-14 11:28:50 UTC	8192	IN	Data Raw: 20 6d 75 73 74 20 62 65 20 61 6e 20 6f 62 6a 65 63 74 20 77 69 74 68 20 31 2b 20 65 6c 65 6d 65 6e 74 73 22 7d 7d 3b 74 68 69 73 2e 6b 6e 6f 77 6e 50 61 72 61 6d 73 3d 7b 65 76 65 6e 74 5f 61 63 74 69 6f 6e 3a 7b 62 65 61 63 6f 6e 3a 22 65 61 22 7d 2c 65 76 65 6e 74 5f 63 61 74 65 67 6f 72 79 3a 7b 62 65 61 63 6f 6e 3a 22 65 63 22 7d 2c 65 76 65 6e 74 5f 6c 61 62 65 6c 3a 7b 62 65 61 63 6f 6e 3a 22 65 6c 22 7d 2c 65 76 65 6e 74 5f 76 61 6c 75 65 3a 7b 74 79 70 65 3a 22 6e 75 6d 62 65 72 22 2c 62 65 61 63 6f 6e 3a 22 65 76 22 7d 2c 70 61 67 65 5f 74 69 74 6c 65 3a 7b 7d 2c 70 61 67 65 5f 6c 6f 63 61 74 69 6f 6e 3a 7b 7d 2c 70 61 67 65 5f 70 61 74 68 3a 7b 7d 2c 65 63 6f 6d 6d 5f 70 72 6f 64 69 64 3a 7b 62 65 61 63 6f 6e 3a 22 70 72 6f 64 69 64 22 7d 2c 65 Data Ascii: must be an object with 1+ elements"}};this.knownParams={event_action:{beacon:"ea"},event_category:{beacon:"ec"},event_label:{beacon:"el"},event_value:{type:"number",beacon:"ev"},page_title:{},page_location:{},page_path:{},ecomm_prodid:{beacon:"prodid"},e
2024-10-14 11:28:50 UTC	6546	IN	Data Raw: 64 29 26 26 21 74 68 69 73 2e 73 74 72 69 6e 67 45 78 69 73 74 73 28 6f 2e 74 69 29 26 26 28 6f 2e 74 69 3d 6f 2e 74 61 67 49 64 29 2c 74 68 69 73 2e 73 74 72 69 6e 67 45 78 69 73 74 73 28 6f 2e 74 69 29 26 26 28 6f 2e 74 69 3d 6f 2e 74 69 2e 72 65 70 6c 61 63 65 28 2f 5e 5c 73 2b 7c 5c 73 2b 24 2f 67 2c 22 22 29 29 29 7d 3b 74 68 69 73 2e 69 73 44 75 70 6c 69 63 61 74 65 3d 66 75 6e 63 74 69 6f 6e 28 6f 29 7b 74 72 79 7b 72 65 74 75 72 6e 21 6f 7c 7c 21 6f 2e 71 7c 7c 74 79 70 65 6f 66 20 6f 2e 71 21 3d 22 6f 62 6a 65 63 74 22 3f 21 31 3a 6f 2e 56 65 72 21 3d 3d 32 7c 7c 21 6f 2e 71 2e 62 65 61 63 6f 6e 50 61 72 61 6d 73 7c 7c 6f 2e 71 2e 62 65 61 63 6f 6e 50 61 72 61 6d 73 2e 56 65 72 21 3d 3d 32 3f 21 31 3a 21 6f 2e 71 2e 62 65 61 63 6f 6e 50 61 72 61 Data Ascii: d)&&!this.stringExists(o.ti)&&(o.ti=o.tagId),this.stringExists(o.ti)&&(o.ti=o.ti.replace(/^\s+\|\s+$/g,"")))};this.isDuplicate=function(o){try{return!o\|\|!o.q\|\|typeof o.q!="object"?!1:o.Ver!==2\|\|!o.q.beaconParams\|\|o.q.beaconParams.Ver!==2?!1:!o.q.beaconPara
2024-10-14 11:28:50 UTC	8192	IN	Data Raw: 75 6e 64 65 66 69 6e 65 64 29 72 65 74 75 72 6e 3b 68 3d 75 3d 3d 3d 74 68 69 73 2e 70 61 67 65 56 69 65 77 45 76 74 3f 74 68 69 73 2e 70 61 67 65 4c 6f 61 64 45 76 74 3a 74 68 69 73 2e 63 75 73 74 6f 6d 45 76 74 3b 74 68 69 73 2e 65 76 74 28 68 2c 75 2c 73 2c 6e 5b 32 5d 29 7d 65 6c 73 65 20 69 66 28 6e 5b 30 5d 3d 3d 3d 22 73 65 74 22 29 7b 69 66 28 74 79 70 65 6f 66 20 6e 5b 31 5d 5b 30 5d 21 3d 22 6f 62 6a 65 63 74 22 29 72 65 74 75 72 6e 3b 66 6f 72 28 69 20 69 6e 20 6e 5b 31 5d 5b 30 5d 29 74 68 69 73 2e 6b 6e 6f 77 6e 50 61 72 61 6d 73 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 28 69 29 26 26 28 74 68 69 73 2e 70 61 67 65 4c 65 76 65 6c 50 61 72 61 6d 73 5b 69 5d 3d 6e 5b 31 5d 5b 30 5d 5b 69 5d 2c 69 3d 3d 3d 22 70 69 64 22 26 26 74 68 69 73 2e Data Ascii: undefined)return;h=u===this.pageViewEvt?this.pageLoadEvt:this.customEvt;this.evt(h,u,s,n[2])}else if(n[0]==="set"){if(typeof n[1][0]!="object")return;for(i in n[1][0])this.knownParams.hasOwnProperty(i)&&(this.pageLevelParams[i]=n[1][0][i],i==="pid"&&this.
2024-10-14 11:28:50 UTC	8192	IN	Data Raw: 6e 2e 6d 74 70 3d 6e 61 76 69 67 61 74 6f 72 2e 6d 61 78 54 6f 75 63 68 50 6f 69 6e 74 73 29 2c 6e 7d 3b 74 68 69 73 2e 72 65 6d 6f 76 65 54 72 61 69 6c 69 6e 67 41 6d 70 3d 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 76 61 72 20 74 3d 6e 2e 63 68 61 72 41 74 28 6e 2e 6c 65 6e 67 74 68 2d 31 29 3b 72 65 74 75 72 6e 28 74 3d 3d 3d 22 26 22 7c 7c 74 3d 3d 3d 22 3f 22 29 26 26 28 6e 3d 6e 2e 73 75 62 73 74 72 69 6e 67 28 30 2c 6e 2e 6c 65 6e 67 74 68 2d 31 29 29 2c 6e 7d 3b 74 68 69 73 2e 68 65 6c 70 65 72 45 72 72 6f 72 3d 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 69 66 28 74 79 70 65 6f 66 20 43 75 73 74 6f 6d 45 76 65 6e 74 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 29 7b 76 61 72 20 74 3d 7b 65 72 72 4d 73 67 3a 6e 2c 74 61 67 49 64 3a 74 68 69 73 2e 62 65 61 63 6f 6e 50 61 Data Ascii: n.mtp=navigator.maxTouchPoints),n};this.removeTrailingAmp=function(n){var t=n.charAt(n.length-1);return(t==="&"\|\|t==="?")&&(n=n.substring(0,n.length-1)),n};this.helperError=function(n){if(typeof CustomEvent=="function"){var t={errMsg:n,tagId:this.beaconPa
2024-10-14 11:28:50 UTC	8192	IN	Data Raw: 74 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 28 22 70 61 67 65 74 79 70 65 22 29 3e 30 3f 28 74 2e 70 61 67 65 74 79 70 65 3d 74 68 69 73 2e 76 61 6c 69 64 61 74 65 50 61 67 65 54 79 70 65 28 74 2e 70 61 67 65 74 79 70 65 2c 74 68 69 73 2e 76 61 6c 69 64 52 65 74 61 69 6c 50 61 67 65 54 79 70 65 56 61 6c 75 65 73 29 2c 74 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 28 22 70 72 6f 64 69 64 22 29 3e 30 26 26 28 74 2e 70 72 6f 64 69 64 3d 74 68 69 73 2e 76 61 6c 69 64 61 74 65 50 72 6f 64 49 64 28 74 2e 70 72 6f 64 69 64 29 29 29 3a 74 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 28 22 70 72 6f 64 69 64 22 29 3e 30 26 26 74 68 69 73 2e 74 68 72 6f 77 45 72 72 6f 72 28 74 68 69 73 2e 6d 69 73 73 69 6e 67 50 61 67 65 54 79 70 65 45 78 63 65 70 74 69 6f 6e Data Ascii: t.hasOwnProperty("pagetype")>0?(t.pagetype=this.validatePageType(t.pagetype,this.validRetailPageTypeValues),t.hasOwnProperty("prodid")>0&&(t.prodid=this.validateProdId(t.prodid))):t.hasOwnProperty("prodid")>0&&this.throwError(this.missingPageTypeException
2024-10-14 11:28:50 UTC	8192	IN	Data Raw: 75 3c 3d 33 3f 74 5b 69 5d 3d 22 22 3a 64 65 6c 65 74 65 20 74 5b 69 5d 2c 72 3d 74 68 69 73 2e 73 74 72 69 6e 67 69 66 79 54 6f 52 65 71 75 65 73 74 28 74 29 2c 66 3d 74 68 69 73 2e 72 65 6d 6f 76 65 54 72 61 69 6c 69 6e 67 41 6d 70 28 65 2b 72 29 29 3b 74 68 69 73 2e 66 69 72 65 42 65 61 63 6f 6e 49 6d 67 28 66 29 3b 74 68 69 73 2e 73 6e 69 70 70 65 74 45 76 65 6e 74 51 75 65 75 65 2e 70 75 73 68 28 72 29 3b 74 68 69 73 2e 73 6e 69 70 70 65 74 45 76 65 6e 74 51 75 65 75 65 2e 6c 65 6e 67 74 68 3e 32 30 26 26 74 68 69 73 2e 73 6e 69 70 70 65 74 45 76 65 6e 74 51 75 65 75 65 2e 73 68 69 66 74 28 29 3b 74 72 79 7b 74 79 70 65 6f 66 20 43 75 73 74 6f 6d 45 76 65 6e 74 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 26 26 28 73 3d 6e 65 77 20 43 75 73 74 6f 6d 45 76 65 Data Ascii: u<=3?t[i]="":delete t[i],r=this.stringifyToRequest(t),f=this.removeTrailingAmp(e+r));this.fireBeaconImg(f);this.snippetEventQueue.push(r);this.snippetEventQueue.length>20&&this.snippetEventQueue.shift();try{typeof CustomEvent=="function"&&(s=new CustomEve
2024-10-14 11:28:50 UTC	1747	IN	Data Raw: 28 21 74 68 69 73 2e 69 73 41 64 53 74 6f 72 61 67 65 41 6c 6c 6f 77 65 64 28 29 29 72 65 74 75 72 6e 20 6e 75 6c 6c 3b 76 61 72 20 69 3d 6e 3d 3d 3d 30 3f 74 68 69 73 2e 73 65 73 73 69 6f 6e 43 6f 6f 6b 69 65 4e 61 6d 65 3a 74 68 69 73 2e 75 65 74 43 6f 6e 66 69 67 2e 76 69 64 43 6f 6f 6b 69 65 2c 74 3d 74 68 69 73 2e 67 65 74 43 6f 6f 6b 69 65 28 69 2c 22 22 2c 74 68 69 73 2e 69 6e 73 69 67 68 74 73 43 6f 6f 6b 69 65 4d 61 78 4c 65 6e 67 74 68 29 3b 72 65 74 75 72 6e 20 74 68 69 73 2e 73 74 72 69 6e 67 45 78 69 73 74 73 28 74 29 7c 7c 28 74 3d 74 68 69 73 2e 67 65 74 4c 6f 63 61 6c 53 74 6f 72 61 67 65 42 61 63 6b 75 70 28 69 2c 74 68 69 73 2e 69 6e 73 69 67 68 74 73 43 6f 6f 6b 69 65 4d 61 78 4c 65 6e 67 74 68 29 29 2c 74 68 69 73 2e 69 6e 73 69 67 68 Data Ascii: (!this.isAdStorageAllowed())return null;var i=n===0?this.sessionCookieName:this.uetConfig.vidCookie,t=this.getCookie(i,"",this.insightsCookieMaxLength);return this.stringExists(t)\|\|(t=this.getLocalStorageBackup(i,this.insightsCookieMaxLength)),this.insigh

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:50 UTC	342	OUT	GET /bat.js HTTP/1.1 Host: bat.bing.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:51 UTC	651	IN	HTTP/1.1 200 OK Cache-Control: private,max-age=1800 Content-Length: 50523 Content-Type: application/javascript Last-Modified: Thu, 19 Sep 2024 15:43:41 GMT Accept-Ranges: bytes ETag: "803483b3aaadb1:0" Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Cache: CONFIG_NOCACHE Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: A6BEB5C2873B4B55AF80C8A276803375 Ref B: EWR30EDGE1010 Ref C: 2024-10-14T11:28:51Z Date: Mon, 14 Oct 2024 11:28:50 GMT Connection: close
2024-10-14 11:28:51 UTC	1254	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 20 55 45 54 28 6f 29 7b 74 68 69 73 2e 73 74 72 69 6e 67 45 78 69 73 74 73 3d 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 72 65 74 75 72 6e 20 6e 26 26 6e 2e 6c 65 6e 67 74 68 3e 30 7d 3b 74 68 69 73 2e 64 6f 6d 61 69 6e 3d 22 62 61 74 2e 62 69 6e 67 2e 63 6f 6d 22 3b 74 68 69 73 2e 64 6f 6d 61 69 6e 43 6c 3d 22 62 61 74 2e 62 69 6e 67 2e 6e 65 74 22 3b 74 68 69 73 2e 55 52 4c 4c 45 4e 47 54 48 4c 49 4d 49 54 3d 34 30 39 36 3b 74 68 69 73 2e 70 61 67 65 4c 6f 61 64 45 76 74 3d 22 70 61 67 65 4c 6f 61 64 22 3b 74 68 69 73 2e 63 75 73 74 6f 6d 45 76 74 3d 22 63 75 73 74 6f 6d 22 3b 74 68 69 73 2e 70 61 67 65 56 69 65 77 45 76 74 3d 22 70 61 67 65 5f 76 69 65 77 22 3b 6f 2e 56 65 72 3d 6f 2e 56 65 72 21 3d 3d 75 6e 64 65 66 69 6e 65 64 26 26 Data Ascii: function UET(o){this.stringExists=function(n){return n&&n.length>0};this.domain="bat.bing.com";this.domainCl="bat.bing.net";this.URLLENGTHLIMIT=4096;this.pageLoadEvt="pageLoad";this.customEvt="custom";this.pageViewEvt="page_view";o.Ver=o.Ver!==undefined&&
2024-10-14 11:28:51 UTC	8192	IN	Data Raw: 6a 65 63 74 22 2c 65 72 72 6f 72 3a 22 7b 70 7d 20 6d 75 73 74 20 62 65 20 61 6e 20 6f 62 6a 65 63 74 20 77 69 74 68 20 31 2b 20 65 6c 65 6d 65 6e 74 73 22 7d 7d 3b 74 68 69 73 2e 6b 6e 6f 77 6e 50 61 72 61 6d 73 3d 7b 65 76 65 6e 74 5f 61 63 74 69 6f 6e 3a 7b 62 65 61 63 6f 6e 3a 22 65 61 22 7d 2c 65 76 65 6e 74 5f 63 61 74 65 67 6f 72 79 3a 7b 62 65 61 63 6f 6e 3a 22 65 63 22 7d 2c 65 76 65 6e 74 5f 6c 61 62 65 6c 3a 7b 62 65 61 63 6f 6e 3a 22 65 6c 22 7d 2c 65 76 65 6e 74 5f 76 61 6c 75 65 3a 7b 74 79 70 65 3a 22 6e 75 6d 62 65 72 22 2c 62 65 61 63 6f 6e 3a 22 65 76 22 7d 2c 70 61 67 65 5f 74 69 74 6c 65 3a 7b 7d 2c 70 61 67 65 5f 6c 6f 63 61 74 69 6f 6e 3a 7b 7d 2c 70 61 67 65 5f 70 61 74 68 3a 7b 7d 2c 65 63 6f 6d 6d 5f 70 72 6f 64 69 64 3a 7b 62 65 Data Ascii: ject",error:"{p} must be an object with 1+ elements"}};this.knownParams={event_action:{beacon:"ea"},event_category:{beacon:"ec"},event_label:{beacon:"el"},event_value:{type:"number",beacon:"ev"},page_title:{},page_location:{},page_path:{},ecomm_prodid:{be
2024-10-14 11:28:51 UTC	6562	IN	Data Raw: 69 6e 67 45 78 69 73 74 73 28 6f 2e 74 61 67 49 64 29 26 26 21 74 68 69 73 2e 73 74 72 69 6e 67 45 78 69 73 74 73 28 6f 2e 74 69 29 26 26 28 6f 2e 74 69 3d 6f 2e 74 61 67 49 64 29 2c 74 68 69 73 2e 73 74 72 69 6e 67 45 78 69 73 74 73 28 6f 2e 74 69 29 26 26 28 6f 2e 74 69 3d 6f 2e 74 69 2e 72 65 70 6c 61 63 65 28 2f 5e 5c 73 2b 7c 5c 73 2b 24 2f 67 2c 22 22 29 29 29 7d 3b 74 68 69 73 2e 69 73 44 75 70 6c 69 63 61 74 65 3d 66 75 6e 63 74 69 6f 6e 28 6f 29 7b 74 72 79 7b 72 65 74 75 72 6e 21 6f 7c 7c 21 6f 2e 71 7c 7c 74 79 70 65 6f 66 20 6f 2e 71 21 3d 22 6f 62 6a 65 63 74 22 3f 21 31 3a 6f 2e 56 65 72 21 3d 3d 32 7c 7c 21 6f 2e 71 2e 62 65 61 63 6f 6e 50 61 72 61 6d 73 7c 7c 6f 2e 71 2e 62 65 61 63 6f 6e 50 61 72 61 6d 73 2e 56 65 72 21 3d 3d 32 3f 21 31 Data Ascii: ingExists(o.tagId)&&!this.stringExists(o.ti)&&(o.ti=o.tagId),this.stringExists(o.ti)&&(o.ti=o.ti.replace(/^\s+\|\s+$/g,"")))};this.isDuplicate=function(o){try{return!o\|\|!o.q\|\|typeof o.q!="object"?!1:o.Ver!==2\|\|!o.q.beaconParams\|\|o.q.beaconParams.Ver!==2?!1
2024-10-14 11:28:51 UTC	8192	IN	Data Raw: 75 6e 64 65 66 69 6e 65 64 29 72 65 74 75 72 6e 3b 68 3d 75 3d 3d 3d 74 68 69 73 2e 70 61 67 65 56 69 65 77 45 76 74 3f 74 68 69 73 2e 70 61 67 65 4c 6f 61 64 45 76 74 3a 74 68 69 73 2e 63 75 73 74 6f 6d 45 76 74 3b 74 68 69 73 2e 65 76 74 28 68 2c 75 2c 73 2c 6e 5b 32 5d 29 7d 65 6c 73 65 20 69 66 28 6e 5b 30 5d 3d 3d 3d 22 73 65 74 22 29 7b 69 66 28 74 79 70 65 6f 66 20 6e 5b 31 5d 5b 30 5d 21 3d 22 6f 62 6a 65 63 74 22 29 72 65 74 75 72 6e 3b 66 6f 72 28 69 20 69 6e 20 6e 5b 31 5d 5b 30 5d 29 74 68 69 73 2e 6b 6e 6f 77 6e 50 61 72 61 6d 73 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 28 69 29 26 26 28 74 68 69 73 2e 70 61 67 65 4c 65 76 65 6c 50 61 72 61 6d 73 5b 69 5d 3d 6e 5b 31 5d 5b 30 5d 5b 69 5d 2c 69 3d 3d 3d 22 70 69 64 22 26 26 74 68 69 73 2e Data Ascii: undefined)return;h=u===this.pageViewEvt?this.pageLoadEvt:this.customEvt;this.evt(h,u,s,n[2])}else if(n[0]==="set"){if(typeof n[1][0]!="object")return;for(i in n[1][0])this.knownParams.hasOwnProperty(i)&&(this.pageLevelParams[i]=n[1][0][i],i==="pid"&&this.
2024-10-14 11:28:51 UTC	8192	IN	Data Raw: 6e 2e 6d 74 70 3d 6e 61 76 69 67 61 74 6f 72 2e 6d 61 78 54 6f 75 63 68 50 6f 69 6e 74 73 29 2c 6e 7d 3b 74 68 69 73 2e 72 65 6d 6f 76 65 54 72 61 69 6c 69 6e 67 41 6d 70 3d 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 76 61 72 20 74 3d 6e 2e 63 68 61 72 41 74 28 6e 2e 6c 65 6e 67 74 68 2d 31 29 3b 72 65 74 75 72 6e 28 74 3d 3d 3d 22 26 22 7c 7c 74 3d 3d 3d 22 3f 22 29 26 26 28 6e 3d 6e 2e 73 75 62 73 74 72 69 6e 67 28 30 2c 6e 2e 6c 65 6e 67 74 68 2d 31 29 29 2c 6e 7d 3b 74 68 69 73 2e 68 65 6c 70 65 72 45 72 72 6f 72 3d 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 69 66 28 74 79 70 65 6f 66 20 43 75 73 74 6f 6d 45 76 65 6e 74 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 29 7b 76 61 72 20 74 3d 7b 65 72 72 4d 73 67 3a 6e 2c 74 61 67 49 64 3a 74 68 69 73 2e 62 65 61 63 6f 6e 50 61 Data Ascii: n.mtp=navigator.maxTouchPoints),n};this.removeTrailingAmp=function(n){var t=n.charAt(n.length-1);return(t==="&"\|\|t==="?")&&(n=n.substring(0,n.length-1)),n};this.helperError=function(n){if(typeof CustomEvent=="function"){var t={errMsg:n,tagId:this.beaconPa
2024-10-14 11:28:51 UTC	8192	IN	Data Raw: 74 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 28 22 70 61 67 65 74 79 70 65 22 29 3e 30 3f 28 74 2e 70 61 67 65 74 79 70 65 3d 74 68 69 73 2e 76 61 6c 69 64 61 74 65 50 61 67 65 54 79 70 65 28 74 2e 70 61 67 65 74 79 70 65 2c 74 68 69 73 2e 76 61 6c 69 64 52 65 74 61 69 6c 50 61 67 65 54 79 70 65 56 61 6c 75 65 73 29 2c 74 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 28 22 70 72 6f 64 69 64 22 29 3e 30 26 26 28 74 2e 70 72 6f 64 69 64 3d 74 68 69 73 2e 76 61 6c 69 64 61 74 65 50 72 6f 64 49 64 28 74 2e 70 72 6f 64 69 64 29 29 29 3a 74 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 28 22 70 72 6f 64 69 64 22 29 3e 30 26 26 74 68 69 73 2e 74 68 72 6f 77 45 72 72 6f 72 28 74 68 69 73 2e 6d 69 73 73 69 6e 67 50 61 67 65 54 79 70 65 45 78 63 65 70 74 69 6f 6e Data Ascii: t.hasOwnProperty("pagetype")>0?(t.pagetype=this.validatePageType(t.pagetype,this.validRetailPageTypeValues),t.hasOwnProperty("prodid")>0&&(t.prodid=this.validateProdId(t.prodid))):t.hasOwnProperty("prodid")>0&&this.throwError(this.missingPageTypeException
2024-10-14 11:28:51 UTC	8192	IN	Data Raw: 75 3c 3d 33 3f 74 5b 69 5d 3d 22 22 3a 64 65 6c 65 74 65 20 74 5b 69 5d 2c 72 3d 74 68 69 73 2e 73 74 72 69 6e 67 69 66 79 54 6f 52 65 71 75 65 73 74 28 74 29 2c 66 3d 74 68 69 73 2e 72 65 6d 6f 76 65 54 72 61 69 6c 69 6e 67 41 6d 70 28 65 2b 72 29 29 3b 74 68 69 73 2e 66 69 72 65 42 65 61 63 6f 6e 49 6d 67 28 66 29 3b 74 68 69 73 2e 73 6e 69 70 70 65 74 45 76 65 6e 74 51 75 65 75 65 2e 70 75 73 68 28 72 29 3b 74 68 69 73 2e 73 6e 69 70 70 65 74 45 76 65 6e 74 51 75 65 75 65 2e 6c 65 6e 67 74 68 3e 32 30 26 26 74 68 69 73 2e 73 6e 69 70 70 65 74 45 76 65 6e 74 51 75 65 75 65 2e 73 68 69 66 74 28 29 3b 74 72 79 7b 74 79 70 65 6f 66 20 43 75 73 74 6f 6d 45 76 65 6e 74 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 26 26 28 73 3d 6e 65 77 20 43 75 73 74 6f 6d 45 76 65 Data Ascii: u<=3?t[i]="":delete t[i],r=this.stringifyToRequest(t),f=this.removeTrailingAmp(e+r));this.fireBeaconImg(f);this.snippetEventQueue.push(r);this.snippetEventQueue.length>20&&this.snippetEventQueue.shift();try{typeof CustomEvent=="function"&&(s=new CustomEve
2024-10-14 11:28:51 UTC	1747	IN	Data Raw: 28 21 74 68 69 73 2e 69 73 41 64 53 74 6f 72 61 67 65 41 6c 6c 6f 77 65 64 28 29 29 72 65 74 75 72 6e 20 6e 75 6c 6c 3b 76 61 72 20 69 3d 6e 3d 3d 3d 30 3f 74 68 69 73 2e 73 65 73 73 69 6f 6e 43 6f 6f 6b 69 65 4e 61 6d 65 3a 74 68 69 73 2e 75 65 74 43 6f 6e 66 69 67 2e 76 69 64 43 6f 6f 6b 69 65 2c 74 3d 74 68 69 73 2e 67 65 74 43 6f 6f 6b 69 65 28 69 2c 22 22 2c 74 68 69 73 2e 69 6e 73 69 67 68 74 73 43 6f 6f 6b 69 65 4d 61 78 4c 65 6e 67 74 68 29 3b 72 65 74 75 72 6e 20 74 68 69 73 2e 73 74 72 69 6e 67 45 78 69 73 74 73 28 74 29 7c 7c 28 74 3d 74 68 69 73 2e 67 65 74 4c 6f 63 61 6c 53 74 6f 72 61 67 65 42 61 63 6b 75 70 28 69 2c 74 68 69 73 2e 69 6e 73 69 67 68 74 73 43 6f 6f 6b 69 65 4d 61 78 4c 65 6e 67 74 68 29 29 2c 74 68 69 73 2e 69 6e 73 69 67 68 Data Ascii: (!this.isAdStorageAllowed())return null;var i=n===0?this.sessionCookieName:this.uetConfig.vidCookie,t=this.getCookie(i,"",this.insightsCookieMaxLength);return this.stringExists(t)\|\|(t=this.getLocalStorageBackup(i,this.insightsCookieMaxLength)),this.insigh

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:51 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-10-14 11:28:51 UTC	515	IN	HTTP/1.1 200 OK ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF06) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=105345 Date: Mon, 14 Oct 2024 11:28:51 GMT Content-Length: 55 Connection: close X-CID: 2
2024-10-14 11:28:51 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:51 UTC	574	OUT	GET /scripttemplates/202408.1.0/otBannerSdk.js HTTP/1.1 Host: cdn.cookielaw.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:51 UTC	859	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:51 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: close Content-MD5: cSmNeMyDkvSieWRwSFHuAQ== Last-Modified: Tue, 10 Sep 2024 03:34:09 GMT x-ms-request-id: 102b1af8-501e-0014-2b52-0350ee000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding Access-Control-Allow-Origin: * Cache-Control: max-age=86400 CF-Cache-Status: HIT Age: 15975 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Content-Type-Options: nosniff Cross-Origin-Resource-Policy: cross-origin Server: cloudflare CF-RAY: 8d273a72ee044374-EWR
2024-10-14 11:28:51 UTC	510	IN	Data Raw: 37 63 34 35 0d 0a 2f 2a 2a 20 0a 20 2a 20 6f 6e 65 74 72 75 73 74 2d 62 61 6e 6e 65 72 2d 73 64 6b 0a 20 2a 20 76 32 30 32 34 30 38 2e 31 2e 30 0a 20 2a 20 62 79 20 4f 6e 65 54 72 75 73 74 20 4c 4c 43 0a 20 2a 20 43 6f 70 79 72 69 67 68 74 20 32 30 32 34 20 0a 20 2a 2f 0a 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 78 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 28 78 3d 4f 62 6a 65 63 74 2e 73 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 7c 7c 28 7b 5f 5f 70 72 6f 74 6f 5f 5f 3a 5b 5d 7d 69 6e 73 74 61 6e 63 65 6f 66 20 41 72 72 61 79 3f 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 65 2e 5f 5f 70 72 6f 74 6f 5f 5f 3d 74 7d 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 66 6f 72 28 76 61 72 20 6f 20 69 6e Data Ascii: 7c45/** * onetrust-banner-sdk * v202408.1.0 * by OneTrust LLC * Copyright 2024 */!function(){"use strict";var x=function(e,t){return(x=Object.setPrototypeOf\|\|({__proto__:[]}instanceof Array?function(e,t){e.__proto__=t}:function(e,t){for(var o in
2024-10-14 11:28:51 UTC	1369	IN	Data Raw: 75 6c 6c 3d 3d 3d 74 3f 4f 62 6a 65 63 74 2e 63 72 65 61 74 65 28 74 29 3a 28 6f 2e 70 72 6f 74 6f 74 79 70 65 3d 74 2e 70 72 6f 74 6f 74 79 70 65 2c 6e 65 77 20 6f 29 7d 76 61 72 20 48 2c 52 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 28 52 3d 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 7c 7c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 66 6f 72 28 76 61 72 20 74 2c 6f 3d 31 2c 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 6f 3c 6e 3b 6f 2b 2b 29 66 6f 72 28 76 61 72 20 72 20 69 6e 20 74 3d 61 72 67 75 6d 65 6e 74 73 5b 6f 5d 29 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 2e 63 61 6c 6c 28 74 2c 72 29 26 26 28 65 5b 72 5d 3d 74 5b 72 5d 29 3b 72 65 74 75 72 6e 20 65 7d 29 2e 61 70 70 6c 79 28 74 68 Data Ascii: ull===t?Object.create(t):(o.prototype=t.prototype,new o)}var H,R=function(){return(R=Object.assign\|\|function(e){for(var t,o=1,n=arguments.length;o<n;o++)for(var r in t=arguments[o])Object.prototype.hasOwnProperty.call(t,r)&&(e[r]=t[r]);return e}).apply(th
2024-10-14 11:28:51 UTC	1369	IN	Data Raw: 26 6c 2e 6c 61 62 65 6c 3c 61 5b 31 5d 29 6c 2e 6c 61 62 65 6c 3d 61 5b 31 5d 2c 61 3d 74 3b 65 6c 73 65 7b 69 66 28 21 28 61 26 26 6c 2e 6c 61 62 65 6c 3c 61 5b 32 5d 29 29 7b 61 5b 32 5d 26 26 6c 2e 6f 70 73 2e 70 6f 70 28 29 2c 6c 2e 74 72 79 73 2e 70 6f 70 28 29 3b 63 6f 6e 74 69 6e 75 65 7d 6c 2e 6c 61 62 65 6c 3d 61 5b 32 5d 2c 6c 2e 6f 70 73 2e 70 75 73 68 28 74 29 7d 7d 74 3d 72 2e 63 61 6c 6c 28 6e 2c 6c 29 7d 63 61 74 63 68 28 65 29 7b 74 3d 5b 36 2c 65 5d 2c 73 3d 30 7d 66 69 6e 61 6c 6c 79 7b 69 3d 61 3d 30 7d 69 66 28 35 26 74 5b 30 5d 29 74 68 72 6f 77 20 74 5b 31 5d 3b 72 65 74 75 72 6e 7b 76 61 6c 75 65 3a 74 5b 30 5d 3f 74 5b 31 5d 3a 76 6f 69 64 20 30 2c 64 6f 6e 65 3a 21 30 7d 7d 7d 7d 66 75 6e 63 74 69 6f 6e 20 4d 28 29 7b 66 6f 72 28 Data Ascii: &l.label<a[1])l.label=a[1],a=t;else{if(!(a&&l.label<a[2])){a[2]&&l.ops.pop(),l.trys.pop();continue}l.label=a[2],l.ops.push(t)}}t=r.call(n,l)}catch(e){t=[6,e],s=0}finally{i=a=0}if(5&t[0])throw t[1];return{value:t[0]?t[1]:void 0,done:!0}}}}function M(){for(
2024-10-14 11:28:51 UTC	1369	IN	Data Raw: 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 65 29 29 7b 76 61 72 20 6f 3d 65 2e 74 68 65 6e 3b 69 66 28 65 20 69 6e 73 74 61 6e 63 65 6f 66 20 7a 29 72 65 74 75 72 6e 20 74 2e 5f 73 74 61 74 65 3d 33 2c 74 2e 5f 76 61 6c 75 65 3d 65 2c 76 6f 69 64 20 4a 28 74 29 3b 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 6f 29 72 65 74 75 72 6e 20 76 6f 69 64 20 51 28 28 6e 3d 6f 2c 72 3d 65 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 6e 2e 61 70 70 6c 79 28 72 2c 61 72 67 75 6d 65 6e 74 73 29 7d 29 2c 74 29 7d 74 2e 5f 73 74 61 74 65 3d 31 2c 74 2e 5f 76 61 6c 75 65 3d 65 2c 4a 28 74 29 7d 63 61 74 63 68 28 65 29 7b 59 28 74 2c 65 29 7d 76 61 72 20 6e 2c 72 7d 66 75 6e 63 74 69 6f 6e 20 59 28 65 2c 74 29 7b 65 2e 5f 73 74 61 74 65 3d 32 2c 65 2e 5f Data Ascii: nction"==typeof e)){var o=e.then;if(e instanceof z)return t._state=3,t._value=e,void J(t);if("function"==typeof o)return void Q((n=o,r=e,function(){n.apply(r,arguments)}),t)}t._state=1,t._value=e,J(t)}catch(e){Y(t,e)}var n,r}function Y(e,t){e._state=2,e._
2024-10-14 11:28:51 UTC	1369	IN	Data Raw: 66 20 65 29 29 7b 76 61 72 20 6e 3d 65 2e 74 68 65 6e 3b 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 6e 29 72 65 74 75 72 6e 20 76 6f 69 64 20 6e 2e 63 61 6c 6c 28 65 2c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 74 28 6f 2c 65 29 7d 2c 69 29 7d 73 5b 6f 5d 3d 65 2c 30 3d 3d 2d 2d 61 26 26 72 28 73 29 7d 63 61 74 63 68 28 65 29 7b 69 28 65 29 7d 7d 28 65 2c 73 5b 65 5d 29 7d 29 7d 2c 7a 2e 72 65 73 6f 6c 76 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 74 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 74 26 26 74 2e 63 6f 6e 73 74 72 75 63 74 6f 72 3d 3d 3d 7a 3f 74 3a 6e 65 77 20 7a 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 65 28 74 29 7d 29 7d 2c 7a 2e 72 65 6a 65 63 74 3d 66 75 6e 63 74 69 6f 6e 28 6f 29 7b 72 65 Data Ascii: f e)){var n=e.then;if("function"==typeof n)return void n.call(e,function(e){t(o,e)},i)}s[o]=e,0==--a&&r(s)}catch(e){i(e)}}(e,s[e])})},z.resolve=function(t){return t&&"object"==typeof t&&t.constructor===z?t:new z(function(e){e(t)})},z.reject=function(o){re
2024-10-14 11:28:51 UTC	1369	IN	Data Raw: 7c 7c 65 21 3d 65 26 26 73 21 3d 73 29 72 65 74 75 72 6e 21 30 3b 69 2b 2b 7d 7d 72 65 74 75 72 6e 21 31 7d 2c 77 72 69 74 61 62 6c 65 3a 21 30 2c 63 6f 6e 66 69 67 75 72 61 62 6c 65 3a 21 30 7d 29 7d 2c 5a 2e 70 72 6f 74 6f 74 79 70 65 2e 69 6e 69 74 45 6e 64 73 57 69 74 68 50 6f 6c 79 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 53 74 72 69 6e 67 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 64 73 57 69 74 68 7c 7c 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 53 74 72 69 6e 67 2e 70 72 6f 74 6f 74 79 70 65 2c 22 65 6e 64 73 57 69 74 68 22 2c 7b 76 61 6c 75 65 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 28 76 6f 69 64 20 30 3d 3d 3d 74 7c 7c 74 3e 74 68 69 73 2e 6c 65 6e 67 74 68 29 26 26 28 74 3d 74 68 69 73 2e 6c 65 6e 67 74 68 Data Ascii: \|\|e!=e&&s!=s)return!0;i++}}return!1},writable:!0,configurable:!0})},Z.prototype.initEndsWithPoly=function(){String.prototype.endsWith\|\|Object.defineProperty(String.prototype,"endsWith",{value:function(e,t){return(void 0===t\|\|t>this.length)&&(t=this.length
2024-10-14 11:28:51 UTC	1369	IN	Data Raw: 7d 2c 77 72 69 74 61 62 6c 65 3a 21 30 2c 63 6f 6e 66 69 67 75 72 61 62 6c 65 3a 21 30 7d 29 7d 2c 5a 2e 70 72 6f 74 6f 74 79 70 65 2e 69 6e 69 74 41 72 72 61 79 46 69 6c 6c 50 6f 6c 79 66 69 6c 6c 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 2e 66 69 6c 6c 7c 7c 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 2c 22 66 69 6c 6c 22 2c 7b 76 61 6c 75 65 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 66 28 6e 75 6c 6c 3d 3d 74 68 69 73 29 74 68 72 6f 77 20 6e 65 77 20 54 79 70 65 45 72 72 6f 72 28 22 74 68 69 73 20 69 73 20 6e 75 6c 6c 20 6f 72 20 6e 6f 74 20 64 65 66 69 6e 65 64 22 29 3b 66 6f 72 28 76 61 72 20 74 3d 4f 62 6a 65 63 74 28 74 68 69 73 29 2c 6f 3d 74 Data Ascii: },writable:!0,configurable:!0})},Z.prototype.initArrayFillPolyfill=function(){Array.prototype.fill\|\|Object.defineProperty(Array.prototype,"fill",{value:function(e){if(null==this)throw new TypeError("this is null or not defined");for(var t=Object(this),o=t
2024-10-14 11:28:51 UTC	1369	IN	Data Raw: 2e 42 61 6e 6e 65 72 53 61 76 65 53 65 74 74 69 6e 67 73 3d 35 5d 3d 22 42 61 6e 6e 65 72 53 61 76 65 53 65 74 74 69 6e 67 73 22 2c 65 5b 65 2e 43 6f 6e 74 69 6e 75 65 57 69 74 68 6f 75 74 41 63 63 65 70 74 69 6e 67 42 75 74 74 6f 6e 3d 36 5d 3d 22 43 6f 6e 74 69 6e 75 65 57 69 74 68 6f 75 74 41 63 63 65 70 74 69 6e 67 42 75 74 74 6f 6e 22 2c 28 65 3d 65 65 3d 65 65 7c 7c 7b 7d 29 5b 65 2e 42 61 6e 6e 65 72 3d 31 5d 3d 22 42 61 6e 6e 65 72 22 2c 65 5b 65 2e 50 43 3d 32 5d 3d 22 50 43 22 2c 65 5b 65 2e 41 50 49 3d 33 5d 3d 22 41 50 49 22 2c 28 65 3d 74 65 3d 74 65 7c 7c 7b 7d 29 2e 41 63 63 65 70 74 41 6c 6c 3d 22 41 63 63 65 70 74 41 6c 6c 22 2c 65 2e 52 65 6a 65 63 74 41 6c 6c 3d 22 52 65 6a 65 63 74 41 6c 6c 22 2c 65 2e 55 70 64 61 74 65 43 6f 6e 73 65 Data Ascii: .BannerSaveSettings=5]="BannerSaveSettings",e[e.ContinueWithoutAcceptingButton=6]="ContinueWithoutAcceptingButton",(e=ee=ee\|\|{})[e.Banner=1]="Banner",e[e.PC=2]="PC",e[e.API=3]="API",(e=te=te\|\|{}).AcceptAll="AcceptAll",e.RejectAll="RejectAll",e.UpdateConse
2024-10-14 11:28:51 UTC	1369	IN	Data Raw: 72 65 66 65 72 65 6e 63 65 20 43 65 6e 74 65 72 20 2d 20 41 6c 6c 6f 77 20 41 6c 6c 22 5d 3d 34 5d 3d 22 50 72 65 66 65 72 65 6e 63 65 20 43 65 6e 74 65 72 20 2d 20 41 6c 6c 6f 77 20 41 6c 6c 22 2c 65 5b 65 5b 22 50 72 65 66 65 72 65 6e 63 65 20 43 65 6e 74 65 72 20 2d 20 52 65 6a 65 63 74 20 41 6c 6c 22 5d 3d 35 5d 3d 22 50 72 65 66 65 72 65 6e 63 65 20 43 65 6e 74 65 72 20 2d 20 52 65 6a 65 63 74 20 41 6c 6c 22 2c 65 5b 65 5b 22 50 72 65 66 65 72 65 6e 63 65 20 43 65 6e 74 65 72 20 2d 20 43 6f 6e 66 69 72 6d 22 5d 3d 36 5d 3d 22 50 72 65 66 65 72 65 6e 63 65 20 43 65 6e 74 65 72 20 2d 20 43 6f 6e 66 69 72 6d 22 2c 65 5b 65 5b 22 47 50 43 20 76 61 6c 75 65 20 63 68 61 6e 67 65 64 22 5d 3d 37 5d 3d 22 47 50 43 20 76 61 6c 75 65 20 63 68 61 6e 67 65 64 22 Data Ascii: reference Center - Allow All"]=4]="Preference Center - Allow All",e[e["Preference Center - Reject All"]=5]="Preference Center - Reject All",e[e["Preference Center - Confirm"]=6]="Preference Center - Confirm",e[e["GPC value changed"]=7]="GPC value changed"
2024-10-14 11:28:51 UTC	1369	IN	Data Raw: 6e 61 6c 69 7a 61 74 69 6f 6e 3d 22 61 64 5f 70 65 72 73 6f 6e 61 6c 69 7a 61 74 69 6f 6e 22 2c 65 2e 72 65 67 69 6f 6e 3d 22 72 65 67 69 6f 6e 22 2c 65 2e 77 61 69 74 5f 66 6f 72 5f 75 70 64 61 74 65 3d 22 77 61 69 74 5f 66 6f 72 5f 75 70 64 61 74 65 22 2c 28 65 3d 41 65 3d 41 65 7c 7c 7b 7d 29 2e 67 72 61 6e 74 65 64 3d 22 67 72 61 6e 74 65 64 22 2c 65 2e 64 65 6e 69 65 64 3d 22 64 65 6e 69 65 64 22 2c 30 2c 28 65 3d 49 65 3d 49 65 7c 7c 7b 7d 29 2e 4f 42 4a 45 43 54 5f 54 4f 5f 4c 49 3d 22 4f 62 6a 65 63 74 54 6f 4c 49 22 2c 65 2e 4c 49 5f 41 43 54 49 56 45 5f 49 46 5f 4c 45 47 41 4c 5f 42 41 53 49 53 3d 22 4c 49 41 63 74 69 76 65 49 66 4c 65 67 61 6c 42 61 73 69 73 22 2c 28 65 3d 4c 65 3d 4c 65 7c 7c 7b 7d 29 2e 63 6f 6f 6b 69 65 73 3d 22 63 6f 6f 6b Data Ascii: nalization="ad_personalization",e.region="region",e.wait_for_update="wait_for_update",(e=Ae=Ae\|\|{}).granted="granted",e.denied="denied",0,(e=Ie=Ie\|\|{}).OBJECT_TO_LI="ObjectToLI",e.LI_ACTIVE_IF_LEGAL_BASIS="LIActiveIfLegalBasis",(e=Le=Le\|\|{}).cookies="cook

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:51 UTC	547	OUT	GET /p/action/5488685.js HTTP/1.1 Host: bat.bing.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:51 UTC	569	IN	HTTP/1.1 200 OK Cache-Control: private,max-age=60 Content-Length: 4111 Content-Type: application/javascript; charset=utf-8 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Cache: CONFIG_NOCACHE Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 50E99DBD1AE943BDB64E8BBF8B3A378B Ref B: EWR30EDGE1107 Ref C: 2024-10-14T11:28:51Z Date: Mon, 14 Oct 2024 11:28:51 GMT Connection: close
2024-10-14 11:28:51 UTC	1342	IN	Data Raw: 28 66 75 6e 63 74 69 6f 6e 28 77 2c 64 2c 63 2c 6b 2c 61 2c 62 2c 74 2c 65 29 20 7b 0d 0a 20 20 20 20 76 61 72 20 63 73 20 3d 20 64 2e 63 75 72 72 65 6e 74 53 63 72 69 70 74 3b 0d 0a 20 20 20 20 69 66 20 28 63 73 29 20 7b 0d 0a 20 20 20 20 20 20 20 20 76 61 72 20 75 6f 20 3d 20 63 73 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 27 64 61 74 61 2d 75 65 74 6f 27 29 3b 0d 0a 20 20 20 20 20 20 20 20 69 66 20 28 75 6f 20 26 26 20 77 5b 75 6f 5d 20 26 26 20 74 79 70 65 6f 66 20 77 5b 75 6f 5d 2e 73 65 74 55 73 65 72 53 69 67 6e 61 6c 73 20 3d 3d 3d 20 27 66 75 6e 63 74 69 6f 6e 27 29 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 77 5b 75 6f 5d 2e 73 65 74 55 73 65 72 53 69 67 6e 61 6c 73 28 7b 27 63 6f 27 3a 20 63 2c 20 27 6b 63 27 3a 20 6b 2c 20 27 61 74 27 3a Data Ascii: (function(w,d,c,k,a,b,t,e) { var cs = d.currentScript; if (cs) { var uo = cs.getAttribute('data-ueto'); if (uo && w[uo] && typeof w[uo].setUserSignals === 'function') { w[uo].setUserSignals({'co': c, 'kc': k, 'at':
2024-10-14 11:28:51 UTC	2471	IN	Data Raw: 20 20 20 20 20 20 20 20 20 77 2e 63 6c 61 72 69 74 79 28 27 6d 65 74 61 64 61 74 61 27 2c 20 28 66 75 6e 63 74 69 6f 6e 20 28 29 20 7b 20 77 2e 63 6c 61 72 69 74 79 28 27 73 65 74 27 2c 20 27 5f 75 65 74 6d 69 64 27 2c 20 6d 29 3b 20 7d 29 2c 20 66 61 6c 73 65 29 3b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 64 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 27 55 65 74 45 76 65 6e 74 27 2c 20 66 75 6e 63 74 69 6f 6e 28 65 29 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 76 61 72 20 6e 6d 20 3d 20 75 2e 62 65 61 63 6f 6e 50 61 72 61 6d 73 2e 6d 69 64 3b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 69 66 20 28 6d 20 21 3d 3d 20 6e 6d 29 20 7b 20 6d 20 3d 20 6e 6d 3b 20 77 2e 63 6c 61 72 69 74 79 28 27 73 65 74 27 2c 20 27 5f 75 Data Ascii: w.clarity('metadata', (function () { w.clarity('set', '_uetmid', m); }), false); d.addEventListener('UetEvent', function(e) { var nm = u.beaconParams.mid; if (m !== nm) { m = nm; w.clarity('set', '_u
2024-10-14 11:28:51 UTC	298	IN	Data Raw: 7d 2c 20 65 2e 6f 72 69 67 69 6e 29 3b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 7d 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 2e 70 61 72 65 6e 74 4e 6f 64 65 2e 69 6e 73 65 72 74 42 65 66 6f 72 65 28 65 73 74 2c 66 29 3b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 7d 3b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 2e 70 61 72 65 6e 74 4e 6f 64 65 2e 69 6e 73 65 72 74 42 65 66 6f 72 65 28 63 70 2c 66 29 3b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 77 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 27 6d 65 73 73 61 67 65 27 2c 20 65 76 65 6e 74 4c 69 73 74 65 6e 65 72 29 3b 0d 0a 20 20 20 20 20 20 20 20 7d 29 3b 0d 0a 20 20 20 20 7d 0d 0a 20 20 20 20 6c 61 75 6e 63 68 45 76 65 6e 74 53 65 74 75 70 28 29 3b 0d 0a 7d Data Ascii: }, e.origin); } f.parentNode.insertBefore(est,f); }; f.parentNode.insertBefore(cp,f); w.removeEventListener('message', eventListener); }); } launchEventSetup();}

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:52 UTC	1003	OUT	GET /UpdateVerifyPrss!/RBC/rbc-app-icon.e5eb0da3a5c3a7df6f81.svg HTTP/1.1 Host: www.finaltestwebsite.duckdns.org Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC/?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=0k9ttg06mdgtom806i5srvqsbd; dtCookie=v_4_srv_-2D48_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K; rxVisitor=17289053278032EP8BJHAFENDQNQ5EP015GBORV5VFDTN; dtPC=-48$305327797_355h1vHLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0e0; dtSa=-; rxvt=1728907128799\|1728905327805
2024-10-14 11:28:52 UTC	389	IN	HTTP/1.1 404 Not Found content-type: text/html cache-control: private, no-cache, max-age=0 pragma: no-cache content-length: 1249 date: Mon, 14 Oct 2024 11:28:52 GMT server: LiteSpeed alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" connection: close
2024-10-14 11:28:52 UTC	1249	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 3e 0a 3c 74 69 74 6c 65 3e 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 73 74 79 6c 65 3e 40 6d 65 64 69 61 20 28 70 72 65 66 65 72 73 2d 63 6f 6c 6f 72 2d 73 63 68 65 6d 65 3a 64 61 72 6b 29 7b 62 6f 64 79 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 30 21 69 6d 70 6f 72 74 61 6e 74 7d 7d 3c 2f 73 74 79 6c 65 Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"><title> 404 Not Found</title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:53 UTC	429	OUT	GET /tag/uet/5488685?insights=1 HTTP/1.1 Host: www.clarity.ms Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: CLID=5399a5bee21643fd8cc1818d9d2fb7b2.20241014.20251014
2024-10-14 11:28:54 UTC	380	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:53 GMT Content-Type: application/x-javascript Content-Length: 1042 Connection: close Cache-Control: no-cache, no-store Expires: -1 Request-Context: appId=cid-v1:593e4080-f032-4d00-a652-e17f01252a9d x-azure-ref: 20241014T112853Z-17db6f7c8cf4g2pjavqhm24vp400000006ng000000000vbe X-Cache: CONFIG_NOCACHE Accept-Ranges: bytes
2024-10-14 11:28:54 UTC	1042	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 63 2c 6c 2c 61 2c 72 2c 69 2c 74 2c 79 29 7b 61 5b 63 5d 3d 61 5b 63 5d 7c 7c 66 75 6e 63 74 69 6f 6e 28 29 7b 28 61 5b 63 5d 2e 71 3d 61 5b 63 5d 2e 71 7c 7c 5b 5d 29 2e 70 75 73 68 28 61 72 67 75 6d 65 6e 74 73 29 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 79 6e 63 28 29 7b 28 6e 65 77 20 49 6d 61 67 65 29 2e 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 2e 63 6c 61 72 69 74 79 2e 6d 73 2f 63 2e 67 69 66 22 7d 22 63 6f 6d 70 6c 65 74 65 22 3d 3d 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3f 73 79 6e 63 28 29 3a 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 73 79 6e 63 29 3b 61 5b 63 5d 28 22 6d 65 74 61 64 61 74 61 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 61 5b 63 5d 28 22 Data Ascii: !function(c,l,a,r,i,t,y){a[c]=a[c]\|\|function(){(a[c].q=a[c].q\|\|[]).push(arguments)};function sync(){(new Image).src="https://c.clarity.ms/c.gif"}"complete"==document.readyState?sync():window.addEventListener("load",sync);a[c]("metadata",(function(){a[c]("

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Boot Survival

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Chrome Cache Entry: 109

Chrome Cache Entry: 110

Chrome Cache Entry: 111

Chrome Cache Entry: 112

Chrome Cache Entry: 113

Chrome Cache Entry: 114

Chrome Cache Entry: 115

Chrome Cache Entry: 116

Chrome Cache Entry: 117

Chrome Cache Entry: 118

Chrome Cache Entry: 119

Chrome Cache Entry: 120

Chrome Cache Entry: 121

Chrome Cache Entry: 122

Chrome Cache Entry: 123

Chrome Cache Entry: 124

Chrome Cache Entry: 125

Chrome Cache Entry: 126

Chrome Cache Entry: 127

Chrome Cache Entry: 128

Windows Analysis Report
https://www.finaltestwebsite.duckdns.org/UpdateVerifyPrss!/RBC?key=5050d2156464f8b75b40f3d8cba168a3d4aa145e

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:58 UTC	991	OUT	POST /bf?type=js3&sn=v_4_srv_-2D48_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K&svrid=-48&flavor=cors&vi=HLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0&modifiedSince=1710841527681&rf=https%3A%2F%2Fwww.finaltestwebsite.duckdns.org%2FUpdateVerifyPrss!%2FRBC%2F%3Fkey%3D5050d2156464f8b75b40f3d8cba168a3d4aa145e&bp=3&app=0e6f72f64ed2c7fa&crc=2494667261&en=vmd7une8&end=1 HTTP/1.1 Host: bf00533cik.bf.dynatrace.com Connection: keep-alive Content-Length: 1594 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: text/plain;charset=UTF-8 Accept: / Origin: https://www.finaltestwebsite.duckdns.org Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:58 UTC	1594	OUT	Data Raw: 24 61 3d 31 25 37 43 31 25 37 43 5f 6c 6f 61 64 5f 25 37 43 5f 6c 6f 61 64 5f 25 37 43 2d 25 37 43 31 37 32 38 39 30 35 33 32 34 35 36 30 25 37 43 30 25 37 43 64 6e 25 37 43 2d 31 25 37 43 73 76 74 72 67 25 37 43 31 25 37 43 73 76 6d 25 37 43 69 31 25 35 45 73 6b 30 25 35 45 73 68 30 25 32 43 32 25 37 43 32 25 37 43 67 6f 6f 67 6c 65 5f 74 61 67 5f 6d 61 6e 61 67 65 72 25 32 30 69 73 25 32 30 6e 6f 74 25 32 30 64 65 66 69 6e 65 64 25 37 43 5f 65 72 72 6f 72 5f 25 37 43 2d 25 37 43 31 37 32 38 39 30 35 33 32 38 37 39 32 25 37 43 31 37 32 38 39 30 35 33 32 38 37 39 32 25 37 43 64 6e 25 37 43 2d 31 25 32 43 33 25 37 43 33 25 37 43 52 65 66 65 72 65 6e 63 65 45 72 72 6f 72 25 37 43 5f 74 79 70 65 5f 25 37 43 2d 25 37 43 31 37 32 38 39 30 35 33 32 38 37 39 34 Data Ascii: $a=1%7C1%7C_load_%7C_load_%7C-%7C1728905324560%7C0%7Cdn%7C-1%7Csvtrg%7C1%7Csvm%7Ci1%5Esk0%5Esh0%2C2%7C2%7Cgoogle_tag_manager%20is%20not%20defined%7C_error_%7C-%7C1728905328792%7C1728905328792%7Cdn%7C-1%2C3%7C3%7CReferenceError%7C_type_%7C-%7C1728905328794
2024-10-14 11:28:58 UTC	423	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:58 GMT Content-Type: text/plain;charset=utf-8 Content-Length: 629 Connection: close set-cookie: dtCookie=v_4_srv_17_sn_5AD7137E00CF08383C9A293236FDA25A_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.dynatrace.com x-oneagent-js-injection: true access-control-allow-origin: https://www.finaltestwebsite.duckdns.org cache-control: no-cache
2024-10-14 11:28:58 UTC	629	IN	Data Raw: 4f 4b 28 42 46 29 7c 73 6e 3d 76 5f 34 5f 73 72 76 5f 31 39 5f 73 6e 5f 32 34 55 50 52 4b 4f 42 4b 50 47 44 48 30 36 4d 31 45 4c 39 4d 35 43 39 36 35 52 43 32 56 38 4b 5f 61 70 70 2d 33 41 30 65 36 66 37 32 66 36 34 65 64 32 63 37 66 61 5f 31 5f 6f 6c 5f 30 5f 70 65 72 63 5f 31 30 30 30 30 30 5f 6d 75 6c 5f 31 7c 6e 61 6d 65 3d 72 75 78 69 74 61 67 65 6e 74 7c 63 6f 6e 66 69 67 3d 61 70 70 25 33 44 30 65 36 66 37 32 66 36 34 65 64 32 63 37 66 61 25 37 43 63 75 63 25 33 44 76 6d 64 37 75 6e 65 38 25 37 43 63 6f 72 73 25 33 44 31 25 37 43 6d 65 6c 25 33 44 31 30 30 30 30 30 25 37 43 66 65 61 74 75 72 65 48 61 73 68 25 33 44 41 37 4e 56 66 67 68 71 72 75 78 25 37 43 64 70 76 63 25 33 44 31 25 37 43 6d 64 25 33 44 6d 64 63 63 31 25 33 44 61 25 32 33 75 73 65 Data Ascii: OK(BF)\|sn=v_4_srv_19_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K_app-3A0e6f72f64ed2c7fa_1_ol_0_perc_100000_mul_1\|name=ruxitagent\|config=app%3D0e6f72f64ed2c7fa%7Ccuc%3Dvmd7une8%7Ccors%3D1%7Cmel%3D100000%7CfeatureHash%3DA7NVfghqrux%7Cdpvc%3D1%7Cmd%3Dmdcc1%3Da%23use

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:58 UTC	1056	OUT	GET /e8hjRJHX-ugmMZr7?b2e24aef952dc573=6rHyMJleFKJTUebwuB58DQ17O44lQw7dFA5Dz4I1C0cL7l2HCKk46mQPEy4XJzOPFSn4uXnpb4GcLLIYuf1yvFbt4QdxyHYxfJql2qzKOZSsAZFPYDvXHNkRGbZ0x0AfBtGj0qh0o4qK79EFbq7HzMPs9-oHGeya3FEGJ8mZp8psJsjIReVYT8GcV1wtt0qf5KeZZ_fi3UA&jb=373124266a716f7735576b6c666d7773246a73673d55696e6c6d757327323233322e687362773d4160726d6f67246a73603d4360726d6d652d3032313337 HTTP/1.1 Host: h.online-metrix.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
2024-10-14 11:28:59 UTC	482	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:59 GMT Server: Apache Strict-Transport-Security: max-age=31536000 Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Connection: Keep-Alive, close X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Expires: Thu, 01 Jan 1970 00:00:00 GMT tmx-nonce: 88ed39bd48aa9e35 X-Robots-Tag: noindex, nofollow Content-Type: text/javascript;charset=UTF-8 Vary: Accept-Encoding Transfer-Encoding: chunked
2024-10-14 11:28:59 UTC	7710	IN	Data Raw: 66 66 66 38 0d 0a 76 61 72 20 74 64 5f 36 6f 3d 74 64 5f 36 6f 7c 7c 7b 7d 3b 74 64 5f 36 6f 2e 74 64 5f 31 7a 3d 66 75 6e 63 74 69 6f 6e 28 74 64 5f 47 2c 74 64 5f 6c 29 7b 74 72 79 7b 76 61 72 20 74 64 5f 72 3d 5b 22 22 5d 3b 76 61 72 20 74 64 5f 50 3d 30 3b 66 6f 72 28 76 61 72 20 74 64 5f 4d 3d 30 3b 74 64 5f 4d 3c 74 64 5f 6c 2e 6c 65 6e 67 74 68 3b 2b 2b 74 64 5f 4d 29 7b 74 64 5f 72 2e 70 75 73 68 28 53 74 72 69 6e 67 2e 66 72 6f 6d 43 68 61 72 43 6f 64 65 28 74 64 5f 47 2e 63 68 61 72 43 6f 64 65 41 74 28 74 64 5f 50 29 5e 74 64 5f 6c 2e 63 68 61 72 43 6f 64 65 41 74 28 74 64 5f 4d 29 29 29 3b 74 64 5f 50 2b 2b 3b 0a 69 66 28 74 64 5f 50 3e 3d 74 64 5f 47 2e 6c 65 6e 67 74 68 29 7b 74 64 5f 50 3d 30 3b 7d 7d 72 65 74 75 72 6e 20 74 64 5f 72 2e 6a Data Ascii: fff8var td_6o=td_6o\|\|{};td_6o.td_1z=function(td_G,td_l){try{var td_r=[""];var td_P=0;for(var td_M=0;td_M<td_l.length;++td_M){td_r.push(String.fromCharCode(td_G.charCodeAt(td_P)^td_l.charCodeAt(td_M)));td_P++;if(td_P>=td_G.length){td_P=0;}}return td_r.j
2024-10-14 11:28:59 UTC	16384	IN	Data Raw: 30 5c 78 33 31 5c 78 33 31 5c 78 33 39 5c 78 33 31 5c 78 33 30 5c 78 33 31 5c 78 33 35 5c 78 33 35 5c 78 33 33 5c 78 33 31 5c 78 33 39 5c 78 33 31 5c 78 36 34 5c 78 33 35 5c 78 36 36 5c 78 33 35 5c 78 33 38 5c 78 33 35 5c 78 33 30 5c 78 33 34 5c 78 33 33 5c 78 33 34 5c 78 33 34 5c 78 33 30 5c 78 36 35 5c 78 33 30 5c 78 36 33 5c 78 33 35 5c 78 33 31 5c 78 33 30 5c 78 33 30 5c 78 33 34 5c 78 33 36 5c 78 33 35 5c 78 33 39 5c 78 33 35 5c 78 33 38 5c 78 33 35 5c 78 36 31 5c 78 33 31 5c 78 36 34 5c 78 33 31 5c 78 36 32 5c 78 33 34 5c 78 33 39 5c 78 33 30 5c 78 36 36 5c 78 33 35 5c 78 33 37 5c 78 33 31 5c 78 33 34 5c 78 33 35 5c 78 33 33 5c 78 33 34 5c 78 36 32 5c 78 33 35 5c 78 33 31 5c 78 33 34 5c 78 33 36 5c 78 33 31 5c 78 33 36 5c 78 33 35 5c 78 36 36 5c 78 Data Ascii: 0\x31\x31\x39\x31\x30\x31\x35\x35\x33\x31\x39\x31\x64\x35\x66\x35\x38\x35\x30\x34\x33\x34\x34\x30\x65\x30\x63\x35\x31\x30\x30\x34\x36\x35\x39\x35\x38\x35\x61\x31\x64\x31\x62\x34\x39\x30\x66\x35\x37\x31\x34\x35\x33\x34\x62\x35\x31\x34\x36\x31\x36\x35\x66\x
2024-10-14 11:28:59 UTC	16384	IN	Data Raw: 33 31 2c 36 29 29 3a 6e 75 6c 6c 29 3b 0a 7d 63 61 74 63 68 28 74 64 5f 59 45 29 7b 74 64 5f 4a 76 3d 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 30 36 66 33 64 36 63 63 34 32 65 32 34 31 33 34 62 65 32 61 32 30 37 34 32 63 64 65 36 62 32 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 30 36 66 33 64 36 63 63 34 32 65 32 34 31 33 34 62 65 32 61 32 30 37 34 32 63 64 65 36 62 32 66 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 30 36 66 33 64 36 63 63 34 32 65 32 34 31 33 34 62 65 32 61 32 30 37 34 32 63 64 65 36 62 32 66 2e 74 64 5f 66 28 34 33 37 2c 38 29 29 3a 6e 75 6c 6c 29 3b 0a 7d 7d 65 6c 73 65 7b 69 66 28 74 64 5f 59 49 29 7b 74 Data Ascii: 31,6)):null);}catch(td_YE){td_Jv=((typeof(td_6o.tdz_06f3d6cc42e24134be2a20742cde6b2f)!=="undefined"&&typeof(td_6o.tdz_06f3d6cc42e24134be2a20742cde6b2f.td_f)!=="undefined")?(td_6o.tdz_06f3d6cc42e24134be2a20742cde6b2f.td_f(437,8)):null);}}else{if(td_YI){t
2024-10-14 11:28:59 UTC	16384	IN	Data Raw: 62 66 66 64 36 65 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 61 65 30 34 33 65 39 35 33 37 65 32 34 39 65 39 61 66 32 63 61 30 35 65 38 33 62 66 66 64 36 65 2e 74 64 5f 66 28 32 39 2c 38 29 29 3a 6e 75 6c 6c 29 2b 74 64 5f 62 4e 2e 74 6f 46 69 78 65 64 28 32 29 3b 0a 7d 69 66 28 74 79 70 65 6f 66 20 74 64 5f 4b 7a 21 3d 3d 5b 5d 5b 5b 5d 5d 2b 22 22 29 7b 69 66 28 74 64 5f 79 68 29 7b 74 64 5f 79 68 2b 3d 22 2c 22 3b 7d 74 64 5f 79 68 2b 3d 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 61 65 30 34 33 65 39 35 33 37 65 32 34 39 65 39 61 66 32 63 61 30 35 65 38 33 62 66 66 64 36 65 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 61 65 30 Data Ascii: bffd6e.td_f)!=="undefined")?(td_6o.tdz_ae043e9537e249e9af2ca05e83bffd6e.td_f(29,8)):null)+td_bN.toFixed(2);}if(typeof td_Kz!==[][[]]+""){if(td_yh){td_yh+=",";}td_yh+=((typeof(td_6o.tdz_ae043e9537e249e9af2ca05e83bffd6e)!=="undefined"&&typeof(td_6o.tdz_ae0
2024-10-14 11:28:59 UTC	8672	IN	Data Raw: 61 72 20 74 64 5f 46 70 3d 74 64 5f 31 4f 2b 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 66 32 34 34 61 31 62 33 36 39 64 34 63 65 61 38 33 63 63 34 32 37 35 31 35 62 34 63 65 30 63 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 66 32 34 34 61 31 62 33 36 39 64 34 63 65 61 38 33 63 63 34 32 37 35 31 35 62 34 63 65 30 63 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 66 32 34 34 61 31 62 33 36 39 64 34 63 65 61 38 33 63 63 34 32 37 35 31 35 62 34 63 65 30 63 2e 74 64 5f 66 28 36 32 2c 34 29 29 3a 6e 75 6c 6c 29 2b 74 64 5f 36 6f 2e 74 64 5f 30 65 28 74 64 5f 6a 6f 2c 74 64 5f 34 6b 29 3b 0a 69 66 28 74 64 5f 46 70 2e 6c 65 6e 67 Data Ascii: ar td_Fp=td_1O+((typeof(td_6o.tdz_6f244a1b369d4cea83cc427515b4ce0c)!=="undefined"&&typeof(td_6o.tdz_6f244a1b369d4cea83cc427515b4ce0c.td_f)!=="undefined")?(td_6o.tdz_6f244a1b369d4cea83cc427515b4ce0c.td_f(62,4)):null)+td_6o.td_0e(td_jo,td_4k);if(td_Fp.leng
2024-10-14 11:28:59 UTC	2	IN	Data Raw: 0d 0a Data Ascii:
2024-10-14 11:28:59 UTC	8192	IN	Data Raw: 66 66 66 38 0d 0a 66 31 37 30 65 30 33 33 36 38 33 37 34 32 38 63 38 65 33 31 34 33 35 36 61 34 63 30 38 61 30 65 2e 74 64 5f 66 28 31 32 2c 35 29 29 3a 6e 75 6c 6c 29 2b 74 64 5f 36 6f 2e 74 6f 46 69 78 65 64 28 74 64 5f 58 44 2e 6d 69 6e 2c 74 64 5f 6e 6b 29 2b 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 66 31 37 30 65 30 33 33 36 38 33 37 34 32 38 63 38 65 33 31 34 33 35 36 61 34 63 30 38 61 30 65 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 66 31 37 30 65 30 33 33 36 38 33 37 34 32 38 63 38 65 33 31 34 33 35 36 61 34 63 30 38 61 30 65 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 66 31 37 30 65 30 33 33 36 38 33 37 34 32 38 63 38 Data Ascii: fff8f170e0336837428c8e314356a4c08a0e.td_f(12,5)):null)+td_6o.toFixed(td_XD.min,td_nk)+((typeof(td_6o.tdz_f170e0336837428c8e314356a4c08a0e)!=="undefined"&&typeof(td_6o.tdz_f170e0336837428c8e314356a4c08a0e.td_f)!=="undefined")?(td_6o.tdz_f170e0336837428c8
2024-10-14 11:28:59 UTC	16384	IN	Data Raw: 33 35 36 61 34 63 30 38 61 30 65 2e 74 64 5f 66 28 31 35 38 2c 33 29 29 3a 6e 75 6c 6c 29 2c 74 64 5f 67 58 29 3b 0a 69 66 28 74 64 5f 42 4a 3e 30 29 7b 74 64 5f 45 31 2b 3d 74 64 5f 48 72 28 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 66 31 37 30 65 30 33 33 36 38 33 37 34 32 38 63 38 65 33 31 34 33 35 36 61 34 63 30 38 61 30 65 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 66 31 37 30 65 30 33 33 36 38 33 37 34 32 38 63 38 65 33 31 34 33 35 36 61 34 63 30 38 61 30 65 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 66 31 37 30 65 30 33 33 36 38 33 37 34 32 38 63 38 65 33 31 34 33 35 36 61 34 63 30 38 61 30 65 2e 74 64 5f 66 28 31 36 31 Data Ascii: 356a4c08a0e.td_f(158,3)):null),td_gX);if(td_BJ>0){td_E1+=td_Hr(((typeof(td_6o.tdz_f170e0336837428c8e314356a4c08a0e)!=="undefined"&&typeof(td_6o.tdz_f170e0336837428c8e314356a4c08a0e.td_f)!=="undefined")?(td_6o.tdz_f170e0336837428c8e314356a4c08a0e.td_f(161
2024-10-14 11:28:59 UTC	16384	IN	Data Raw: 34 62 32 35 61 34 30 30 61 62 31 30 65 39 62 30 31 30 30 35 2e 74 64 5f 66 28 38 39 2c 35 29 29 3a 6e 75 6c 6c 29 3a 63 61 73 65 20 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 39 63 37 32 36 30 65 64 30 38 33 36 34 62 32 35 61 34 30 30 61 62 31 30 65 39 62 30 31 30 30 35 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 39 63 37 32 36 30 65 64 30 38 33 36 34 62 32 35 61 34 30 30 61 62 31 30 65 39 62 30 31 30 30 35 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 39 63 37 32 36 30 65 64 30 38 33 36 34 62 32 35 61 34 30 30 61 62 31 30 65 39 62 30 31 30 30 35 2e 74 64 5f 66 28 39 34 2c 35 29 29 3a 6e 75 6c 6c 29 3a 63 61 73 65 20 4e 75 6d 62 65 Data Ascii: 4b25a400ab10e9b01005.td_f(89,5)):null):case ((typeof(td_6o.tdz_9c7260ed08364b25a400ab10e9b01005)!=="undefined"&&typeof(td_6o.tdz_9c7260ed08364b25a400ab10e9b01005.td_f)!=="undefined")?(td_6o.tdz_9c7260ed08364b25a400ab10e9b01005.td_f(94,5)):null):case Numbe
2024-10-14 11:28:59 UTC	16384	IN	Data Raw: 72 5b 74 64 5f 6c 4c 5d 3b 0a 76 61 72 20 74 64 5f 77 34 3d 74 64 5f 4e 72 5b 74 64 5f 43 38 5d 3b 74 64 5f 72 78 5b 74 64 5f 53 61 2e 69 64 65 6e 74 5d 3d 74 64 5f 4c 6f 28 29 3b 74 64 5f 72 78 5b 74 64 5f 53 61 2e 69 64 65 6e 74 5d 2e 54 59 50 45 3d 74 64 5f 77 34 3b 74 64 5f 54 7a 28 74 64 5f 77 34 2c 74 64 5f 78 66 2c 74 64 5f 52 6e 2c 6e 75 6c 6c 29 3b 7d 74 64 5f 72 78 5b 74 64 5f 53 61 2e 69 64 65 6e 74 5d 2e 4f 50 3d 74 72 75 65 3b 7d 74 64 5f 53 61 3d 6e 75 6c 6c 3b 7d 7d 7d 66 75 6e 63 74 69 6f 6e 20 74 64 5f 58 51 28 74 64 5f 56 63 2c 74 64 5f 6f 37 29 7b 72 65 74 75 72 6e 20 4d 61 74 68 2e 6d 61 78 28 74 64 5f 56 63 2c 74 64 5f 6f 37 29 2d 4d 61 74 68 2e 6d 69 6e 28 74 64 5f 56 63 2c 74 64 5f 6f 37 29 3b 0a 7d 66 75 6e 63 74 69 6f 6e 20 74 64 Data Ascii: r[td_lL];var td_w4=td_Nr[td_C8];td_rx[td_Sa.ident]=td_Lo();td_rx[td_Sa.ident].TYPE=td_w4;td_Tz(td_w4,td_xf,td_Rn,null);}td_rx[td_Sa.ident].OP=true;}td_Sa=null;}}}function td_XQ(td_Vc,td_o7){return Math.max(td_Vc,td_o7)-Math.min(td_Vc,td_o7);}function td

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:58 UTC	947	OUT	GET /jyXYqb76tk4jGg4x?bd0ee88d5db3e926=ZZ0_EYOsZtwv_c9EAten5yvPonxDpEk8IOTHFPWyd99cG6ECfNaqSLaeUNybYkWko2bDi3wPowXg7UMVSULKiG9itaF94M4MTzPnrfZNxW8n1c9J8tmRfdM0XJrwhbLRwWWRXjpniKNn_wl_D1BYohCAeEOVEOXErQ HTTP/1.1 Host: h.online-metrix.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
2024-10-14 11:28:59 UTC	357	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:59 GMT Server: Apache Strict-Transport-Security: max-age=31536000 Pragma: no-cache Cache-Control: no-cache, no-store, must-revalidate X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Expires: Thu, 01 Jan 1970 00:00:00 GMT Connection: close Content-Length: 81 Content-Type: image/png
2024-10-14 11:28:59 UTC	81	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 02 00 00 00 01 08 06 00 00 00 f4 22 7f 8a 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 0b 49 44 41 54 08 d7 63 60 80 02 00 00 09 00 01 63 2a 16 0d 00 00 00 00 49 45 4e 44 ae 42 60 82 Data Ascii: PNGIHDR"sRGBIDATc`c*IENDB`

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:58 UTC	947	OUT	GET /7fo_IhhKOM6S2NZ0?5a772f137357b373=U0BjyoXYSndtLZT7VoV-SaaSfwfK0wTe2au62MEMT2w4CSSx64LWW3ZvY9LPioqWtnmV6bx63vqND9nExd_ntkX5qEeHDIHyBMJN1H6CfcPuiU_ajk2vmCgMP29KWEOJcLxCsyiAaA2PEDAumvQjWW8f_KsZr4BPig HTTP/1.1 Host: h.online-metrix.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
2024-10-14 11:28:59 UTC	357	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:59 GMT Server: Apache Strict-Transport-Security: max-age=31536000 Pragma: no-cache Cache-Control: no-cache, no-store, must-revalidate X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Expires: Thu, 01 Jan 1970 00:00:00 GMT Connection: close Content-Length: 81 Content-Type: image/png
2024-10-14 11:28:59 UTC	81	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 02 00 00 00 01 08 06 00 00 00 f4 22 7f 8a 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 0b 49 44 41 54 08 d7 63 60 80 02 00 00 09 00 01 63 2a 16 0d 00 00 00 00 49 45 4e 44 ae 42 60 82 Data Ascii: PNGIHDR"sRGBIDATc`c*IENDB`

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:59 UTC	690	OUT	GET /bf?type=js3&sn=v_4_srv_-2D48_sn_24UPRKOBKPGDH06M1EL9M5C965RC2V8K&svrid=-48&flavor=cors&vi=HLBSUHDHJLNMMHHVBOVWPABQQENGVKRU-0&modifiedSince=1710841527681&rf=https%3A%2F%2Fwww.finaltestwebsite.duckdns.org%2FUpdateVerifyPrss!%2FRBC%2F%3Fkey%3D5050d2156464f8b75b40f3d8cba168a3d4aa145e&bp=3&app=0e6f72f64ed2c7fa&crc=2494667261&en=vmd7une8&end=1 HTTP/1.1 Host: bf00533cik.bf.dynatrace.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:28:59 UTC	350	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:28:59 GMT Content-Type: text/plain;charset=utf-8 Content-Length: 33 Connection: close set-cookie: dtCookie=v_4_srv_2_sn_E0252D80E1DE8FD461E7AEE1D76361C3_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.dynatrace.com x-oneagent-js-injection: true cache-control: no-cache
2024-10-14 11:28:59 UTC	33	IN	Data Raw: 46 4c 28 42 46 29 7c 45 72 72 6f 72 3d 42 65 61 63 6f 6e 20 62 6f 64 79 20 69 73 20 65 6d 70 74 79 Data Ascii: FL(BF)\|Error=Beacon body is empty

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:28:59 UTC	695	OUT	GET /jyXYqb76tk4jGg4x?bd0ee88d5db3e926=ZZ0_EYOsZtwv_c9EAten5yvPonxDpEk8IOTHFPWyd99cG6ECfNaqSLaeUNybYkWko2bDi3wPowXg7UMVSULKiG9itaF94M4MTzPnrfZNxW8n1c9J8tmRfdM0XJrwhbLRwWWRXjpniKNn_wl_D1BYohCAeEOVEOXErQ HTTP/1.1 Host: h.online-metrix.net Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
2024-10-14 11:29:00 UTC	357	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:29:00 GMT Server: Apache Strict-Transport-Security: max-age=31536000 Pragma: no-cache Cache-Control: no-cache, no-store, must-revalidate X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Expires: Thu, 01 Jan 1970 00:00:00 GMT Connection: close Content-Length: 81 Content-Type: image/png
2024-10-14 11:29:00 UTC	81	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 02 00 00 00 01 08 06 00 00 00 f4 22 7f 8a 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 0b 49 44 41 54 08 d7 63 60 80 02 00 00 09 00 01 63 2a 16 0d 00 00 00 00 49 45 4e 44 ae 42 60 82 Data Ascii: PNGIHDR"sRGBIDATc`c*IENDB`

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:29:01 UTC	306	OUT	GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=D3DAApB68YDUCmX&MD=BdrFWYN7 HTTP/1.1 Connection: Keep-Alive Accept: / User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33 Host: slscr.update.microsoft.com
2024-10-14 11:29:01 UTC	560	IN	HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Type: application/octet-stream Expires: -1 Last-Modified: Mon, 01 Jan 0001 00:00:00 GMT ETag: "XAopazV00XDWnJCwkmEWRv6JkbjRA9QSSZ2+e/3MzEk=_2880" MS-CorrelationId: 642868c4-4a5a-4b11-ad06-fe3a8a3cec69 MS-RequestId: 52f05764-0894-4eeb-b291-5fa4a8436a3a MS-CV: MAEZFOldGUG0C9o0.0 X-Microsoft-SLSClientCache: 2880 Content-Disposition: attachment; filename=environment.cab X-Content-Type-Options: nosniff Date: Mon, 14 Oct 2024 11:29:00 GMT Connection: close Content-Length: 24490
2024-10-14 11:29:01 UTC	15824	IN	Data Raw: 4d 53 43 46 00 00 00 00 92 1e 00 00 00 00 00 00 44 00 00 00 00 00 00 00 03 01 01 00 01 00 04 00 23 d0 00 00 14 00 00 00 00 00 10 00 92 1e 00 00 18 41 00 00 00 00 00 00 00 00 00 00 64 00 00 00 01 00 01 00 e6 42 00 00 00 00 00 00 00 00 00 00 00 00 80 00 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 63 61 62 00 78 cf 8d 5c 26 1e e6 42 43 4b ed 5c 07 54 13 db d6 4e a3 f7 2e d5 d0 3b 4c 42 af 4a 57 10 e9 20 bd 77 21 94 80 88 08 24 2a 02 02 d2 55 10 a4 a8 88 97 22 8a 0a d2 11 04 95 ae d2 8b 20 28 0a 88 20 45 05 f4 9f 80 05 bd ed dd f7 ff 77 dd f7 bf 65 d6 4a 66 ce 99 33 67 4e d9 7b 7f fb db 7b 56 f4 4d 34 b4 21 e0 a7 03 0a d9 fc 68 6e 1d 20 70 28 14 02 85 20 20 ad 61 10 08 e3 66 0d ed 66 9b 1d 6a 90 af 1f 17 f0 4b 68 35 01 83 6c fb 44 42 5c 7d 83 3d 03 30 be 3e ae be 58 Data Ascii: MSCFD#AdBenvironment.cabx\&BCK\TN.;LBJW w!$*U" ( EweJf3gN{{VM4!hn p( affjKh5lDB\}=0>X
2024-10-14 11:29:01 UTC	8666	IN	Data Raw: 04 01 31 2f 30 2d 30 0a 02 05 00 e1 2b 8a 50 02 01 00 30 0a 02 01 00 02 02 12 fe 02 01 ff 30 07 02 01 00 02 02 11 e6 30 0a 02 05 00 e1 2c db d0 02 01 00 30 36 06 0a 2b 06 01 04 01 84 59 0a 04 02 31 28 30 26 30 0c 06 0a 2b 06 01 04 01 84 59 0a 03 02 a0 0a 30 08 02 01 00 02 03 07 a1 20 a1 0a 30 08 02 01 00 02 03 01 86 a0 30 0d 06 09 2a 86 48 86 f7 0d 01 01 05 05 00 03 81 81 00 0c d9 08 df 48 94 57 65 3e ad e7 f2 17 9c 1f ca 3d 4d 6c cd 51 e1 ed 9c 17 a5 52 35 0f fd de 4b bd 22 92 c5 69 e5 d7 9f 29 23 72 40 7a ca 55 9d 8d 11 ad d5 54 00 bb 53 b4 87 7b 72 84 da 2d f6 e3 2c 4f 7e ba 1a 58 88 6e d6 b9 6d 16 ae 85 5b b5 c2 81 a8 e0 ee 0a 9c 60 51 3a 7b e4 61 f8 c3 e4 38 bd 7d 28 17 d6 79 f0 c8 58 c6 ef 1f f7 88 65 b1 ea 0a c0 df f7 ee 5c 23 c2 27 fd 98 63 08 31 Data Ascii: 1/0-0+P000,06+Y1(0&0+Y0 00*HHWe>=MlQR5K"i)#r@zUTS{r-,O~Xnm[`Q:{a8}(yXe\#'c1

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:29:01 UTC	4776	OUT	GET /nc_QBeHCzRYpxDI5?1bec9bc67d4532b6=byEcRYgajAdm8AVUpJrlUUjD18tue8YGcGmpHIIC8ElVPLJzbTTafjMammaRkVOptMDXa5vdwVv8wxpLS8eV5XHFAUFPD0Sbi2j3QHfHrBxxfLszAeH-A7fDFZj4nslpfZcM81ihQLUSmG8Ohpt63w&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co. [TRUNCATED] Host: h.online-metrix.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
2024-10-14 11:29:01 UTC	465	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:29:01 GMT Server: Apache Strict-Transport-Security: max-age=31536000 Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Connection: Keep-Alive, close X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Expires: Thu, 01 Jan 1970 00:00:00 GMT X-UA-Compatible: IE=Edge Content-Type: text/html;charset=UTF-8 Content-Language: en-US Vary: Accept-Encoding Transfer-Encoding: chunked
2024-10-14 11:29:01 UTC	7727	IN	Data Raw: 34 61 61 62 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 0a 3c 68 74 6d 6c 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 65 6d 70 74 79 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 45 64 67 65 22 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6e 6f 69 6e 64 65 78 2c 6e 6f 66 6f 6c 6c 6f 77 22 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 20 6e 6f 6e 63 65 3d 22 38 38 65 64 33 39 62 64 34 38 61 61 39 65 33 35 22 20 73 72 63 Data Ascii: 4aab<!doctype html><html> <head> <title>empty</title> <meta http-equiv="X-UA-Compatible" content="IE=Edge"> <meta name="robots" content="noindex,nofollow"> <script type="text/javascript" nonce="88ed39bd48aa9e35" src
2024-10-14 11:29:02 UTC	11394	IN	Data Raw: 29 3b 20 64 6f 63 75 6d 65 6e 74 2e 77 72 69 74 65 28 27 3c 2f 64 69 76 3e 27 29 3b 0d 0a 64 6f 63 75 6d 65 6e 74 2e 77 72 69 74 65 28 27 3c 61 20 68 72 65 66 3d 22 6a 61 76 61 73 63 72 69 70 74 3a 22 27 29 3b 0d 0a 76 61 72 20 70 61 73 73 77 6f 72 64 20 3d 20 22 22 3b 0d 0a 64 6f 63 75 6d 65 6e 74 2e 77 72 69 74 65 28 27 3c 61 20 68 72 65 66 3d 22 6a 61 76 61 73 63 72 69 70 74 3a 22 27 20 2b 20 70 61 73 73 77 6f 72 64 29 3b 0d 0a 20 20 20 20 7d 0d 0a 7d 3c 2f 73 63 72 69 70 74 3e 0d 0a 3c 64 69 76 20 69 64 3d 22 6d 61 69 6e 22 3e 3c 2f 64 69 76 3e 0d 0a 2d 2d 3e 0d 0a 3c 21 2d 2d 0d 0a 3c 69 6e 70 75 74 20 6e 61 6d 65 3d 22 75 73 72 5f 6e 61 6d 65 22 20 69 64 3d 22 75 73 72 5f 6e 61 6d 65 22 20 73 69 7a 65 3d 22 31 22 20 6d 61 78 6c 65 6e 67 74 68 3d 22 Data Ascii: ); document.write('</div>');document.write('<a href="javascript:"');var password = "";document.write('<a href="javascript:"' + password); }}</script><div id="main"></div>-->...<input name="usr_name" id="usr_name" size="1" maxlength="
2024-10-14 11:29:02 UTC	2	IN	Data Raw: 0d 0a Data Ascii:
2024-10-14 11:29:02 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:29:01 UTC	652	OUT	GET /fp/clear.png HTTP/1.1 Host: h.online-metrix.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Accept: /, 4rvrfbxt/88ed39bd48aa9e35b97457d29e6f23aebaa806049c2e2abf sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Origin: https://www.finaltestwebsite.duckdns.org Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-14 11:29:01 UTC	430	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:29:01 GMT Server: Apache Strict-Transport-Security: max-age=31536000 Last-Modified: Mon, 14 Oct 2024 11:29:01 GMT Expires: Sat, 13 Oct 2029 11:29:01 GMT Etag: 5a2b22e85e0e4c8f910acef5490bb49b Cache-Control: private, must-revalidate, max-age=0 Access-Control-Allow-Origin: https://www.finaltestwebsite.duckdns.org Content-Length: 81 Connection: close Content-Type: image/png
2024-10-14 11:29:01 UTC	81	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 02 00 00 00 01 08 06 00 00 00 f4 22 7f 8a 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 0b 49 44 41 54 08 d7 63 60 80 02 00 00 09 00 01 63 2a 16 0d 00 00 00 00 49 45 4e 44 ae 42 60 82 Data Ascii: PNGIHDR"sRGBIDATc`c*IENDB`

Timestamp	Bytes transferred	Direction	Data
2024-10-14 11:29:01 UTC	1094	OUT	GET /-5cngaDHNBs0Plpk?2d1a6d0f4ecf53e6=q7FJ51nGU9bVGdEWz04H2ZCO8f6VbDV5o0_5SeIjH5lA2k6kOgtmjEshiwHE1K3ssgiPT4rwUOAuTM08HEBG1fnXjD5VSHb8bbaEK_fvpat47kNMa0Wze1KvOz1dKnn6HjjSrrinywd5FS9d8GLNbVqp4cSKP1R3CwTbPEbRUbmjJYIhg_JCADWXRt1j8NW2IspVsVZNSlQUjQ HTTP/1.1 Host: h.online-metrix.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://www.finaltestwebsite.duckdns.org/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: thx_guid=215a544b8553e4159d19ba7c55bdffe6; tmx_guid=AAxjTnMDcYLZWbckuC9HtG5DwBpkKhg1_KjmsPSJHr-u2EF0jcpYtg8nb_di3mWtePbYMfJzE5DJr2_6p0rUO-0xbuqm4A
2024-10-14 11:29:02 UTC	447	IN	HTTP/1.1 200 OK Date: Mon, 14 Oct 2024 11:29:01 GMT Server: Apache Strict-Transport-Security: max-age=31536000 Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Connection: Keep-Alive, close X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Expires: Thu, 01 Jan 1970 00:00:00 GMT X-Robots-Tag: noindex, nofollow Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Transfer-Encoding: chunked
2024-10-14 11:29:02 UTC	7745	IN	Data Raw: 66 66 66 38 0d 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 74 69 74 6c 65 3e 65 6d 70 74 79 3c 2f 74 69 74 6c 65 3e 3c 62 6f 64 79 3e 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 76 61 72 20 74 64 5f 36 6f 3d 74 64 5f 36 6f 7c 7c 7b 7d 3b 74 64 5f 36 6f 2e 74 64 5f 31 7a 3d 66 75 6e 63 74 69 6f 6e 28 74 64 5f 47 2c 74 64 5f 6c 29 7b 74 72 79 7b 76 61 72 20 74 64 5f 72 3d 5b 22 22 5d 3b 76 61 72 20 74 64 5f 50 3d 30 3b 66 6f 72 28 76 61 72 20 74 64 5f 4d 3d 30 3b 74 64 5f 4d 3c 74 64 5f 6c 2e 6c 65 6e 67 74 68 3b 2b 2b 74 64 5f 4d 29 7b 74 64 5f 72 2e 70 75 73 68 28 53 74 72 69 6e 67 2e 66 72 6f 6d 43 68 61 72 43 6f 64 65 28 74 64 5f 47 2e 63 68 61 72 43 6f 64 65 41 74 28 74 64 5f 50 29 5e 74 64 5f Data Ascii: fff8<html lang="en"><title>empty</title><body><script type="text/javascript">var td_6o=td_6o\|\|{};td_6o.td_1z=function(td_G,td_l){try{var td_r=[""];var td_P=0;for(var td_M=0;td_M<td_l.length;++td_M){td_r.push(String.fromCharCode(td_G.charCodeAt(td_P)^td_
2024-10-14 11:29:02 UTC	16384	IN	Data Raw: 33 39 5c 78 33 36 5c 78 33 34 5c 78 33 33 5c 78 36 34 5c 78 33 32 5c 78 33 39 5c 78 33 37 5c 78 33 39 5c 78 33 30 5c 78 33 37 5c 78 33 34 5c 78 36 32 5c 78 33 36 5c 78 36 32 5c 78 33 37 5c 78 36 34 5c 78 33 37 5c 78 36 36 5c 78 33 32 5c 78 36 32 5c 78 33 36 5c 78 33 36 5c 78 33 36 5c 78 33 36 5c 78 33 36 5c 78 33 34 5c 78 33 34 5c 78 36 32 5c 78 33 35 5c 78 33 37 5c 78 33 31 5c 78 33 36 5c 78 33 30 5c 78 33 39 5c 78 33 32 5c 78 36 32 5c 78 33 34 5c 78 33 32 5c 78 33 34 5c 78 36 34 5c 78 33 30 5c 78 33 39 5c 78 33 30 5c 78 36 36 5c 78 33 35 5c 78 33 36 5c 78 33 31 5c 78 36 35 5c 78 33 36 5c 78 36 31 5c 78 33 32 5c 78 33 39 5c 78 33 37 5c 78 33 39 5c 78 33 32 5c 78 36 35 5c 78 33 36 5c 78 33 37 5c 78 33 36 5c 78 33 30 5c 78 33 33 5c 78 33 32 5c 78 33 32 5c Data Ascii: 39\x36\x34\x33\x64\x32\x39\x37\x39\x30\x37\x34\x62\x36\x62\x37\x64\x37\x66\x32\x62\x36\x36\x36\x36\x36\x34\x34\x62\x35\x37\x31\x36\x30\x39\x32\x62\x34\x32\x34\x64\x30\x39\x30\x66\x35\x36\x31\x65\x36\x61\x32\x39\x37\x39\x32\x65\x36\x37\x36\x30\x33\x32\x32\
2024-10-14 11:29:02 UTC	16384	IN	Data Raw: 6e 75 6c 6c 3b 7d 66 75 6e 63 74 69 6f 6e 20 74 64 5f 32 51 28 74 64 5f 56 70 29 7b 74 72 79 7b 77 69 6e 64 6f 77 2e 6c 6f 63 61 6c 53 74 6f 72 61 67 65 2e 73 65 74 49 74 65 6d 28 74 64 5f 34 49 2c 74 64 5f 56 70 29 3b 7d 63 61 74 63 68 28 74 64 5f 4e 53 29 7b 7d 72 65 74 75 72 6e 20 6e 75 6c 6c 3b 7d 74 64 5f 36 6f 2e 74 64 5f 32 5a 2e 70 75 73 68 28 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 64 5f 32 41 3d 20 6e 65 77 20 74 64 5f 36 6f 2e 74 64 5f 32 49 28 22 63 66 30 61 32 64 65 64 35 37 31 61 34 32 39 31 39 64 63 38 38 37 38 33 31 32 35 34 31 61 61 61 30 42 31 32 34 34 31 31 34 31 35 45 34 41 34 42 35 44 31 39 35 45 30 46 35 38 35 42 35 37 35 34 31 34 30 39 30 36 34 43 34 41 35 45 34 30 31 44 35 46 35 37 34 31 31 42 37 35 33 45 31 30 32 39 32 45 Data Ascii: null;}function td_2Q(td_Vp){try{window.localStorage.setItem(td_4I,td_Vp);}catch(td_NS){}return null;}td_6o.td_2Z.push(function(){var td_2A= new td_6o.td_2I("cf0a2ded571a42919dc8878312541aaa0B124411415E4A4B5D195E0F585B57541409064C4A5E401D5F57411B753E10292E
2024-10-14 11:29:02 UTC	16384	IN	Data Raw: 29 2c 69 64 65 6e 74 69 74 79 3a 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 28 32 39 2c 34 29 29 3a 6e 75 6c 6c 29 7d 2c 7b 73 74 72 69 6e 67 3a 74 64 5f 54 2c 73 75 62 53 74 72 69 6e 67 3a 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f Data Ascii: ),identity:((typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd)!=="undefined"&&typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f)!=="undefined")?(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f(29,4)):null)},{string:td_T,subString:((typeof(td_6o.tdz_
2024-10-14 11:29:02 UTC	8637	IN	Data Raw: 79 3a 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 28 33 33 37 2c 34 29 29 3a 6e 75 6c 6c 29 7d 5d 3b 0a 74 68 69 73 2e 74 64 5f 77 3d 5b 7b 73 74 72 69 6e 67 3a 74 64 5f 78 2c 73 75 62 53 74 72 69 6e 67 3a 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f Data Ascii: y:((typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd)!=="undefined"&&typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f)!=="undefined")?(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f(337,4)):null)}];this.td_w=[{string:td_x,subString:((typeof(td_6o
2024-10-14 11:29:02 UTC	2	IN	Data Raw: 0d 0a Data Ascii:
2024-10-14 11:29:02 UTC	8192	IN	Data Raw: 38 62 63 61 0d 0a 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 28 35 35 39 2c 31 37 29 29 3a 6e 75 6c 6c 29 2c 72 3a 2f 57 69 6e 64 6f 77 73 20 50 68 6f 6e 65 20 38 2e 30 2f 7d 2c 7b 73 3a 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 Data Ascii: 8bca6o.tdz_64f77accc2644d2c9a4825090f7bd9bd)!=="undefined"&&typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f)!=="undefined")?(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f(559,17)):null),r:/Windows Phone 8.0/},{s:((typeof(td_6o.tdz_64f77accc2644
2024-10-14 11:29:02 UTC	16384	IN	Data Raw: 26 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 29 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 3f 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 2e 74 64 5f 66 28 36 36 38 2c 36 29 29 3a 6e 75 6c 6c 29 29 7c 7c 28 28 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 2e 6f 70 72 21 3d 3d 5b 5d 5b 5b 5d 5d 2b 22 22 29 26 26 28 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 2e 6f 70 72 3d 3d 3d 28 28 74 79 70 65 6f 66 28 74 64 5f 36 6f 2e 74 64 7a 5f 36 34 66 37 37 61 63 63 63 32 36 34 34 64 32 63 39 61 34 38 32 35 30 39 30 66 37 62 64 39 62 64 29 21 3d 3d 22 75 6e 64 65 66 69 6e Data Ascii: &typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f)!=="undefined")?(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd.td_f(668,6)):null))\|\|((typeof window.opr!==[][[]]+"")&&(typeof window.opr===((typeof(td_6o.tdz_64f77accc2644d2c9a4825090f7bd9bd)!=="undefin
2024-10-14 11:29:02 UTC	11216	IN	Data Raw: 5f 57 56 2b 2b 26 33 5d 3b 0a 74 64 5f 41 59 5b 74 64 5f 57 56 3e 3e 32 5d 7c 3d 28 31 32 38 7c 28 28 74 64 5f 51 71 3e 3e 36 29 26 36 33 29 29 3c 3c 74 64 5f 4c 69 5b 74 64 5f 57 56 2b 2b 26 33 5d 3b 74 64 5f 41 59 5b 74 64 5f 57 56 3e 3e 32 5d 7c 3d 28 31 32 38 7c 28 74 64 5f 51 71 26 36 33 29 29 3c 3c 74 64 5f 4c 69 5b 74 64 5f 57 56 2b 2b 26 33 5d 3b 7d 65 6c 73 65 7b 74 64 5f 51 71 3d 36 35 35 33 36 2b 28 28 28 74 64 5f 51 71 26 31 30 32 33 29 3c 3c 31 30 29 7c 28 74 64 5f 6d 57 2e 63 68 61 72 43 6f 64 65 41 74 28 2b 2b 74 64 5f 44 36 29 26 31 30 32 33 29 29 3b 74 64 5f 41 59 5b 74 64 5f 57 56 3e 3e 32 5d 7c 3d 28 32 34 30 7c 28 74 64 5f 51 71 3e 3e 31 38 29 29 3c 3c 74 64 5f 4c 69 5b 74 64 5f 57 56 2b 2b 26 33 5d 3b 0a 74 64 5f 41 59 5b 74 64 5f 57 Data Ascii: _WV++&3];td_AY[td_WV>>2]\|=(128\|((td_Qq>>6)&63))<<td_Li[td_WV++&3];td_AY[td_WV>>2]\|=(128\|(td_Qq&63))<<td_Li[td_WV++&3];}else{td_Qq=65536+(((td_Qq&1023)<<10)\|(td_mW.charCodeAt(++td_D6)&1023));td_AY[td_WV>>2]\|=(240\|(td_Qq>>18))<<td_Li[td_WV++&3];td_AY[td_W
2024-10-14 11:29:02 UTC	2	IN	Data Raw: 0d 0a Data Ascii: