Windows Analysis Report
https:/wentworth.az1.qualtrics.com/jfe/form/SV_bEnaGtb0Jw7NaWa?Q_DL=QrigjMFTYZVVTqH_bEnaGtb0Jw7NaWa_CGC_gCML4CuBSL0ABp7&Q_CHL=email

Overview

General Information

Sample URL:	https:/wentworth.az1.qualtrics.com/jfe/form/SV_bEnaGtb0Jw7NaWa?Q_DL=QrigjMFTYZVVTqH_bEnaGtb0Jw7NaWa_CGC_gCML4CuBSL0ABp7&Q_CHL=email
Analysis ID:	1543826
Infos:

Detection

Score:	0
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Detected non-DNS traffic on DNS port

Classification

Signatures

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:59216 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:59225 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.4:59214 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.126.137
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.126.137
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: global traffic	DNS traffic detected: DNS query: wentworth.az1.qualtrics.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: eu.qualtrics.com
Source: global traffic	DNS traffic detected: DNS query: qualtricsxmhgpw8frtb.qualtrics.com

Source: chromecache_156.2.dr, chromecache_172.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFL
Source: chromecache_156.2.dr, chromecache_172.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLCopyright
Source: chromecache_172.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLPoppinsLight
Source: chromecache_156.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLPoppinsMedium
Source: chromecache_172.2.dr	String found in binary or memory: https://indiantypefoundry.comThis

Source: unknown	Network traffic detected: HTTP traffic on port 59351 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59265 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 59322 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59294 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59288 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59309
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59308
Source: unknown	Network traffic detected: HTTP traffic on port 59316 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59305
Source: unknown	Network traffic detected: HTTP traffic on port 59339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59304
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59307
Source: unknown	Network traffic detected: HTTP traffic on port 59242 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59306
Source: unknown	Network traffic detected: HTTP traffic on port 59374 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59312
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59311
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59314
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59313
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59310
Source: unknown	Network traffic detected: HTTP traffic on port 59380 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59271 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59304 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59319
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59316
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59318
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59317
Source: unknown	Network traffic detected: HTTP traffic on port 59356 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59323
Source: unknown	Network traffic detected: HTTP traffic on port 59253 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59322
Source: unknown	Network traffic detected: HTTP traffic on port 59362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59324
Source: unknown	Network traffic detected: HTTP traffic on port 59299 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59310 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59321
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59320
Source: unknown	Network traffic detected: HTTP traffic on port 59236 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59219 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59328 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59248 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59329
Source: unknown	Network traffic detected: HTTP traffic on port 59225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59334
Source: unknown	Network traffic detected: HTTP traffic on port 59254 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59336
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59330
Source: unknown	Network traffic detected: HTTP traffic on port 59311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59332
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59331
Source: unknown	Network traffic detected: HTTP traffic on port 59367 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59344 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59231 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59287 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59293 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59333 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59217
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59338
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59216
Source: unknown	Network traffic detected: HTTP traffic on port 59220 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59337
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59219
Source: unknown	Network traffic detected: HTTP traffic on port 59375 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59218
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59339
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59224
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59345
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59223
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59344
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59226
Source: unknown	Network traffic detected: HTTP traffic on port 59276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59225
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59220
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59221
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59342
Source: unknown	Network traffic detected: HTTP traffic on port 59259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59381 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59326 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59355 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59261 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59332 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59361 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59237 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59321 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59295 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59226 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59338 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59278 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59314 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59320 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59366 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59232 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59376 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59244 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59216 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59348 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59266 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59283 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59249 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59371 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59354 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59301
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59300
Source: unknown	Network traffic detected: HTTP traffic on port 59337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59303
Source: unknown	Network traffic detected: HTTP traffic on port 59360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59302
Source: unknown	Network traffic detected: HTTP traffic on port 59272 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59238 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59309 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 59227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59279
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59278
Source: unknown	Network traffic detected: HTTP traffic on port 59313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59336 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59256 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59277
Source: unknown	Network traffic detected: HTTP traffic on port 59279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59276
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59271
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59270
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59273
Source: unknown	Network traffic detected: HTTP traffic on port 59342 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59272
Source: unknown	Network traffic detected: HTTP traffic on port 59233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59365 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59291 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59285 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59377 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59289
Source: unknown	Network traffic detected: HTTP traffic on port 59280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59285
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59288
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59287
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59282
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59284
Source: unknown	Network traffic detected: HTTP traffic on port 59274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59283
Source: unknown	Network traffic detected: HTTP traffic on port 59307 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59280
Source: unknown	Network traffic detected: HTTP traffic on port 59267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59330 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59353 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59228 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59293
Source: unknown	Network traffic detected: HTTP traffic on port 59296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59292
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59295
Source: unknown	Network traffic detected: HTTP traffic on port 59273 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59294
Source: unknown	Network traffic detected: HTTP traffic on port 59308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59290
Source: unknown	Network traffic detected: HTTP traffic on port 59302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59319 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59358 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59251 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59364 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59217 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59246 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59378 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59228
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59349
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59227
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59229
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59235
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59356
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59234
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59237
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59358
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59236
Source: unknown	Network traffic detected: HTTP traffic on port 59281 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59357
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59231
Source: unknown	Network traffic detected: HTTP traffic on port 59275 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59230
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59351
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59233
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59232
Source: unknown	Network traffic detected: HTTP traffic on port 59298 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59353
Source: unknown	Network traffic detected: HTTP traffic on port 59306 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59350
Source: unknown	Network traffic detected: HTTP traffic on port 59346 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59329 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59264 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59300 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59239
Source: unknown	Network traffic detected: HTTP traffic on port 59352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59238
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59359
Source: unknown	Network traffic detected: HTTP traffic on port 59373 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59246
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59367
Source: unknown	Network traffic detected: HTTP traffic on port 59229 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59245
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59248
Source: unknown	Network traffic detected: HTTP traffic on port 59335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59247
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59242
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59241
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59244
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59365
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59243
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59240
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59361
Source: unknown	Network traffic detected: HTTP traffic on port 59257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59360
Source: unknown	Network traffic detected: HTTP traffic on port 59270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59263 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59334 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59249
Source: unknown	Network traffic detected: HTTP traffic on port 59357 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59257
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59378
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59256
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59377
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59259
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59258
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59379
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59253
Source: unknown	Network traffic detected: HTTP traffic on port 59340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59374
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59373
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59255
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59376
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59254
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59375
Source: unknown	Network traffic detected: HTTP traffic on port 59235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59370
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59251
Source: unknown	Network traffic detected: HTTP traffic on port 59258 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59372
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59250
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59371
Source: unknown	Network traffic detected: HTTP traffic on port 59218 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59363 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59379 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59224 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59241 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59268
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59267
Source: unknown	Network traffic detected: HTTP traffic on port 59230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59312 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59264
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59265
Source: unknown	Network traffic detected: HTTP traffic on port 59297 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59260
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59381
Source: unknown	Network traffic detected: HTTP traffic on port 59368 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59380
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59262
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59261

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:59216 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:59225 version: TLS 1.2

Source: classification engine

Classification label: clean0.win@21/58@12/3

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1736 --field-trial-handle=2012,i,2871850995218753826,7982395101669501192,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https:/wentworth.az1.qualtrics.com/jfe/form/SV_bEnaGtb0Jw7NaWa?Q_DL=QrigjMFTYZVVTqH_bEnaGtb0Jw7NaWa_CGC_gCML4CuBSL0ABp7&Q_CHL=email"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1736 --field-trial-handle=2012,i,2871850995218753826,7982395101669501192,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	Flag	ASN	ASN Name	Malicious
239.255.255.250	unknown	Reserved		unknown	unknown	false
172.217.18.4	www.google.com	United States		15169	GOOGLEUS	false

Private

IP
192.168.2.4

Contacted Domains

Name	IP	Active
bg.microsoft.map.fastly.net	199.232.214.172	true
s-part-0044.t-0009.fb-t-msedge.net	13.107.253.72	true
s-part-0017.t-0009.t-msedge.net	13.107.246.45	true
www.google.com	172.217.18.4	true
fp2e7a.wpc.phicdn.net	192.229.221.95	true
wentworth.az1.qualtrics.com	unknown	unknown
eu.qualtrics.com	unknown	unknown
qualtricsxmhgpw8frtb.qualtrics.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://wentworth.az1.qualtrics.com/jfe/form/SV_bEnaGtb0Jw7NaWa?Q_DL=QrigjMFTYZVVTqH_bEnaGtb0Jw7NaWa_CGC_gCML4CuBSL0ABp7&Q_CHL=email	false		unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 143	PNG image data, 3001 x 3222, 8-bit/color RGBA, non-interlaced	2D08F34A9688184E5021240269F0536C	7624AD86EE18E41446CCC2EF771A311E35E41675	6B5AF4C6C23ADA997C1D25812E21896F7E91EBD6E0ABAD224970D6F76C9538BF
Chrome Cache Entry: 144	ASCII text, with very long lines (42270), with no line terminators	3F1BC90B4574781C4F3E933ECC5DF8DA	DA214D00E184EE9BF37B7EF7C0A3613A89DF3787	AE94D26CFDE4187035A3810193330DC6DFA2F77ACF9F44771E304BDE0F9A6BB8
Chrome Cache Entry: 145	ASCII text, with very long lines (11183), with no line terminators	A41C2211AC2ACE5C5D1885295D15C199	00B0EEEA0E86E002AF5210D959BAEF7367C476E7	2D620B124D7EF6B8C7E26A2FCDC1F365C69D5F5861D0C85FCA0C492EBBA376C9
Chrome Cache Entry: 146	HTML document, ASCII text, with very long lines (65536), with no line terminators	753537E017B352916E502805AF2D68F9	4FC2F6F19C50777D9FB5B31DA78C6C37B9AF121A	79D5B420874984EACC49FC39D4116BD7D840DAF22FC41A20A68CF61C40BECB10
Chrome Cache Entry: 147	ASCII text, with very long lines (20437), with no line terminators	22812B4CB6F2A4646F5CC34FD298AB90	89CCBC265541F91CD826C1AC0840FF8721E6BAB8	6261EC668D75C90E14C1D7DD649B97C1303B08BF78379DE6EB5AAA19AF2D5D21
Chrome Cache Entry: 148	ASCII text, with very long lines (65424)	C96922F2734F593CC9DC4135F2F0907C	8669A741F3195154282914C66AEA8BBD1EA305F6	71C57D558852FCA86691A74B9C13BD78E3508BECF53B324818ECBA2BDBC74B58
Chrome Cache Entry: 149	Unicode text, UTF-8 text, with very long lines (65426)	3C0F75D2411B40FE379AB5E53E4992ED	E94ECBE96585A3D4C178C14BE834BB5F0D3BBBA9	99A0FF6AFD1BD344C37E83D34E6BF20D1409BDB73485DB6018DEB7BA46E5658C
Chrome Cache Entry: 150	HTML document, ASCII text, with very long lines (2707), with no line terminators	267B301356C044B4F1A91E0E1E3CD0AC	135F734A868757E0124DEAB78F70FE3BF66451A2	6725E78351C515173843310CA7E9B2FECFB372280EFB21DC87AE42E5B56677CE
Chrome Cache Entry: 151	PNG image data, 910 x 139, 8-bit/color RGBA, non-interlaced	E1B864FD6CAFDB0D6D369B9DF619E016	1C03E0B020E657702FA0F7F037018C05BED83579	2E0AB0B637FBA84D89605424237CD02EC685BCB103D4D05649AD74F94B12F931
Chrome Cache Entry: 152	ASCII text, with very long lines (20437), with no line terminators	22812B4CB6F2A4646F5CC34FD298AB90	89CCBC265541F91CD826C1AC0840FF8721E6BAB8	6261EC668D75C90E14C1D7DD649B97C1303B08BF78379DE6EB5AAA19AF2D5D21
Chrome Cache Entry: 153	Web Open Font Format, TrueType, length 1004, version 1.0	90CF29AB19DC601F2E5A9F9B3C4898FB	A1A366B0BC23887A1F2645C8F68CB7521706D8E1	C5550D7F8CC83561C801D3CDC4BB3C1784672CF0413EA79B5B32E890B1558C38
Chrome Cache Entry: 154	HTML document, ASCII text, with very long lines (65536), with no line terminators	753537E017B352916E502805AF2D68F9	4FC2F6F19C50777D9FB5B31DA78C6C37B9AF121A	79D5B420874984EACC49FC39D4116BD7D840DAF22FC41A20A68CF61C40BECB10
Chrome Cache Entry: 155	ASCII text, with very long lines (11183), with no line terminators	A41C2211AC2ACE5C5D1885295D15C199	00B0EEEA0E86E002AF5210D959BAEF7367C476E7	2D620B124D7EF6B8C7E26A2FCDC1F365C69D5F5861D0C85FCA0C492EBBA376C9
Chrome Cache Entry: 156	TrueType Font data, digitally signed, 15 tables, 1st "DSIG", 26 names, Macintosh, Copyright 2014-2017 Indian Type Foundry (info@indiantypefoundry.com)PoppinsMedium2.201;ITFO;Popp	C7B158E33A04CFACDC79A1DD1A48DBDD	6575DBF38E9E61BEEC498E2BE61C89D43399DB24	E47FA644E37CC516F7C22208DF798F28EFDD0AC3E118CBD6323A434186DB68C9
Chrome Cache Entry: 157	PNG image data, 1459 x 368, 8-bit/color RGBA, non-interlaced	1DBF2737F05574A2AA4B0419FE43D147	0C832C70A04E0AA3E114B844F70DE323C30C725D	58840B3E3F01CC144D6600A2019AE6E4E3190AFD62E39CBBC97EC969A1DB100A
Chrome Cache Entry: 158	data	AE3B35F7CA39297465B6BEFB038A01CE	7996707D949ABEC182EA1361BA9E641CC18F4011	CE1268587AA13C2C6FF851ACED6A3140E6BEF2F4BAB8D7CD597F0073619E2843
Chrome Cache Entry: 159	ASCII text, with very long lines (42270), with no line terminators	3F1BC90B4574781C4F3E933ECC5DF8DA	DA214D00E184EE9BF37B7EF7C0A3613A89DF3787	AE94D26CFDE4187035A3810193330DC6DFA2F77ACF9F44771E304BDE0F9A6BB8
Chrome Cache Entry: 160	PNG image data, 3001 x 3222, 8-bit/color RGBA, non-interlaced	2D08F34A9688184E5021240269F0536C	7624AD86EE18E41446CCC2EF771A311E35E41675	6B5AF4C6C23ADA997C1D25812E21896F7E91EBD6E0ABAD224970D6F76C9538BF
Chrome Cache Entry: 161	ASCII text, with very long lines (47710), with no line terminators	C6619A5DDBBC896B8F7001B652F74F8B	A97AA0BE2F9C6FCE8DAA714C25E6FDEF2368F281	8E23CB128CF6F4AFC9B994C6926B0FF3FCE1ACFFA2881892038716482748F4CB
Chrome Cache Entry: 162	ASCII text, with very long lines (65444)	24E70922BDE35CCB8D0605F19228D4EE	DF02ECB08A9B90A599E55F36F6F28EB6101CC7AE	AC10E14F3F3D460DA0929D8E6F6088CFC997E07A8B84E46C99A0FA3330CDDBC1
Chrome Cache Entry: 163	SVG Scalable Vector Graphics image	C73613741A974260124FF4800D30CADB	4F139BE9E9C01CA8D26CF24303515192B791A3F3	299B92560AA9D76C058B1B3E63ADCA9C405E5D671B413BC5B0677995C97BD073
Chrome Cache Entry: 164	Unicode text, UTF-8 text, with very long lines (559)	9069DA639CA1A8935A6700DACDEA498F	B57B0900F7F4225B0830576BA09FBE2D54C51820	CB13B38DD85445A738AFD926FEFF90985B2A505FE5CBE24F77D420393D580470
Chrome Cache Entry: 165	PNG image data, 910 x 139, 8-bit/color RGBA, non-interlaced	E1B864FD6CAFDB0D6D369B9DF619E016	1C03E0B020E657702FA0F7F037018C05BED83579	2E0AB0B637FBA84D89605424237CD02EC685BCB103D4D05649AD74F94B12F931
Chrome Cache Entry: 166	data	AE3B35F7CA39297465B6BEFB038A01CE	7996707D949ABEC182EA1361BA9E641CC18F4011	CE1268587AA13C2C6FF851ACED6A3140E6BEF2F4BAB8D7CD597F0073619E2843
Chrome Cache Entry: 167	Unicode text, UTF-8 text, with very long lines (65426)	3C0F75D2411B40FE379AB5E53E4992ED	E94ECBE96585A3D4C178C14BE834BB5F0D3BBBA9	99A0FF6AFD1BD344C37E83D34E6BF20D1409BDB73485DB6018DEB7BA46E5658C
Chrome Cache Entry: 168	HTML document, ASCII text, with very long lines (2707), with no line terminators	267B301356C044B4F1A91E0E1E3CD0AC	135F734A868757E0124DEAB78F70FE3BF66451A2	6725E78351C515173843310CA7E9B2FECFB372280EFB21DC87AE42E5B56677CE
Chrome Cache Entry: 169	ASCII text, with very long lines (65444)	24E70922BDE35CCB8D0605F19228D4EE	DF02ECB08A9B90A599E55F36F6F28EB6101CC7AE	AC10E14F3F3D460DA0929D8E6F6088CFC997E07A8B84E46C99A0FA3330CDDBC1
Chrome Cache Entry: 170	ASCII text, with very long lines (24499), with no line terminators	694AAA8D4A8882242F6A6A54CE212B28	4B4A9EFDBA0E3BD47695163A26C8C7F1960C7B3A	06ACE17721DAD81AAF092760B0739736C50B74736BDF655D32B603506CFD208C
Chrome Cache Entry: 171	ASCII text, with very long lines (36501), with no line terminators	8AF02AC83C0B39B87162A97ACFF7726C	AA4322F4C5DB648A781AB8AA6CFDD8737828B49A	29CC58992275B6BCE773BE6C160A500237DB55E458C77B728002513E225B1216
Chrome Cache Entry: 172	TrueType Font data, digitally signed, 15 tables, 1st "DSIG", 26 names, Macintosh, Copyright 2014-2017 Indian Type Foundry (info@indiantypefoundry.com)PoppinsLight2.201;ITFO;Poppi	32B18121A85A090C974BAA27EAA801FB	107454FB84957D1EA4BD4C0335377DF253EB2258	BD289695AF1C1055DBB65D8043E59F658B4F66BE770410A1CC4A1C1714008618
Chrome Cache Entry: 173	ASCII text, with very long lines (65424)	C96922F2734F593CC9DC4135F2F0907C	8669A741F3195154282914C66AEA8BBD1EA305F6	71C57D558852FCA86691A74B9C13BD78E3508BECF53B324818ECBA2BDBC74B58
Chrome Cache Entry: 174	PNG image data, 1459 x 368, 8-bit/color RGBA, non-interlaced	1DBF2737F05574A2AA4B0419FE43D147	0C832C70A04E0AA3E114B844F70DE323C30C725D	58840B3E3F01CC144D6600A2019AE6E4E3190AFD62E39CBBC97EC969A1DB100A
Chrome Cache Entry: 175	ASCII text, with very long lines (36501), with no line terminators	8AF02AC83C0B39B87162A97ACFF7726C	AA4322F4C5DB648A781AB8AA6CFDD8737828B49A	29CC58992275B6BCE773BE6C160A500237DB55E458C77B728002513E225B1216
Chrome Cache Entry: 176	ASCII text, with no line terminators	E1E6B367E7C329F86A97AD847ECECA32	D4476E07131C3C3764D7899100FB8076F41F7A01	17D5BBC2A3945838A37FE07FC3344B8EF4CE21424A6E2A535995D634BE9392D1
Chrome Cache Entry: 177	ASCII text, with very long lines (24499), with no line terminators	694AAA8D4A8882242F6A6A54CE212B28	4B4A9EFDBA0E3BD47695163A26C8C7F1960C7B3A	06ACE17721DAD81AAF092760B0739736C50B74736BDF655D32B603506CFD208C
Chrome Cache Entry: 178	SVG Scalable Vector Graphics image	C73613741A974260124FF4800D30CADB	4F139BE9E9C01CA8D26CF24303515192B791A3F3	299B92560AA9D76C058B1B3E63ADCA9C405E5D671B413BC5B0677995C97BD073
Chrome Cache Entry: 179	ASCII text, with very long lines (47710), with no line terminators	C6619A5DDBBC896B8F7001B652F74F8B	A97AA0BE2F9C6FCE8DAA714C25E6FDEF2368F281	8E23CB128CF6F4AFC9B994C6926B0FF3FCE1ACFFA2881892038716482748F4CB

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:59216 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:59225 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.4:59214 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.126.137
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.126.137
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: global traffic	DNS traffic detected: DNS query: wentworth.az1.qualtrics.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: eu.qualtrics.com
Source: global traffic	DNS traffic detected: DNS query: qualtricsxmhgpw8frtb.qualtrics.com

Source: chromecache_156.2.dr, chromecache_172.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFL
Source: chromecache_156.2.dr, chromecache_172.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLCopyright
Source: chromecache_172.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLPoppinsLight
Source: chromecache_156.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLPoppinsMedium
Source: chromecache_172.2.dr	String found in binary or memory: https://indiantypefoundry.comThis

Source: unknown	Network traffic detected: HTTP traffic on port 59351 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59265 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 59322 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59294 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59288 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59309
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59308
Source: unknown	Network traffic detected: HTTP traffic on port 59316 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59305
Source: unknown	Network traffic detected: HTTP traffic on port 59339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59304
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59307
Source: unknown	Network traffic detected: HTTP traffic on port 59242 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59306
Source: unknown	Network traffic detected: HTTP traffic on port 59374 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59312
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59311
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59314
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59313
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59310
Source: unknown	Network traffic detected: HTTP traffic on port 59380 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59271 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59304 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59319
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59316
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59318
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59317
Source: unknown	Network traffic detected: HTTP traffic on port 59356 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59323
Source: unknown	Network traffic detected: HTTP traffic on port 59253 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59322
Source: unknown	Network traffic detected: HTTP traffic on port 59362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59324
Source: unknown	Network traffic detected: HTTP traffic on port 59299 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59310 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59321
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59320
Source: unknown	Network traffic detected: HTTP traffic on port 59236 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59219 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59328 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59248 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59329
Source: unknown	Network traffic detected: HTTP traffic on port 59225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59334
Source: unknown	Network traffic detected: HTTP traffic on port 59254 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59336
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59330
Source: unknown	Network traffic detected: HTTP traffic on port 59311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59332
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59331
Source: unknown	Network traffic detected: HTTP traffic on port 59367 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59344 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59231 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59287 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59293 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59333 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59217
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59338
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59216
Source: unknown	Network traffic detected: HTTP traffic on port 59220 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59337
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59219
Source: unknown	Network traffic detected: HTTP traffic on port 59375 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59218
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59339
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59224
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59345
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59223
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59344
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59226
Source: unknown	Network traffic detected: HTTP traffic on port 59276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59225
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59220
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59221
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59342
Source: unknown	Network traffic detected: HTTP traffic on port 59259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59381 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59326 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59355 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59261 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59332 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59361 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59237 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59321 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59295 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59226 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59338 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59278 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59314 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59320 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59366 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59232 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59376 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59244 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59216 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59348 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59266 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59283 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59249 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59371 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59354 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59301
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59300
Source: unknown	Network traffic detected: HTTP traffic on port 59337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59303
Source: unknown	Network traffic detected: HTTP traffic on port 59360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59302
Source: unknown	Network traffic detected: HTTP traffic on port 59272 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59238 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59309 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 59227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59279
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59278
Source: unknown	Network traffic detected: HTTP traffic on port 59313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59336 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59256 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59277
Source: unknown	Network traffic detected: HTTP traffic on port 59279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59276
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59271
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59270
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59273
Source: unknown	Network traffic detected: HTTP traffic on port 59342 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59272
Source: unknown	Network traffic detected: HTTP traffic on port 59233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59365 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59291 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59285 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59377 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59289
Source: unknown	Network traffic detected: HTTP traffic on port 59280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59285
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59288
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59287
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59282
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59284
Source: unknown	Network traffic detected: HTTP traffic on port 59274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59283
Source: unknown	Network traffic detected: HTTP traffic on port 59307 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59280
Source: unknown	Network traffic detected: HTTP traffic on port 59267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59330 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59353 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59228 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59293
Source: unknown	Network traffic detected: HTTP traffic on port 59296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59292
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59295
Source: unknown	Network traffic detected: HTTP traffic on port 59273 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59294
Source: unknown	Network traffic detected: HTTP traffic on port 59308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59290
Source: unknown	Network traffic detected: HTTP traffic on port 59302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59319 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59358 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59251 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59364 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59217 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59246 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59378 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59228
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59349
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59227
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59229
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59235
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59356
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59234
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59237
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59358
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59236
Source: unknown	Network traffic detected: HTTP traffic on port 59281 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59357
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59231
Source: unknown	Network traffic detected: HTTP traffic on port 59275 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59230
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59351
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59233
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59232
Source: unknown	Network traffic detected: HTTP traffic on port 59298 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59353
Source: unknown	Network traffic detected: HTTP traffic on port 59306 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59350
Source: unknown	Network traffic detected: HTTP traffic on port 59346 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59329 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59264 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59300 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59239
Source: unknown	Network traffic detected: HTTP traffic on port 59352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59238
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59359
Source: unknown	Network traffic detected: HTTP traffic on port 59373 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59246
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59367
Source: unknown	Network traffic detected: HTTP traffic on port 59229 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59245
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59248
Source: unknown	Network traffic detected: HTTP traffic on port 59335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59247
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59242
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59241
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59244
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59365
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59243
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59240
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59361
Source: unknown	Network traffic detected: HTTP traffic on port 59257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59360
Source: unknown	Network traffic detected: HTTP traffic on port 59270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59263 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59334 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59249
Source: unknown	Network traffic detected: HTTP traffic on port 59357 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59257
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59378
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59256
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59377
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59259
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59258
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59379
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59253
Source: unknown	Network traffic detected: HTTP traffic on port 59340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59374
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59373
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59255
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59376
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59254
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59375
Source: unknown	Network traffic detected: HTTP traffic on port 59235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59370
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59251
Source: unknown	Network traffic detected: HTTP traffic on port 59258 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59372
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59250
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59371
Source: unknown	Network traffic detected: HTTP traffic on port 59218 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59363 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59379 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59224 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59241 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59268
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59267
Source: unknown	Network traffic detected: HTTP traffic on port 59230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 59312 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59264
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59265
Source: unknown	Network traffic detected: HTTP traffic on port 59297 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59260
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59381
Source: unknown	Network traffic detected: HTTP traffic on port 59368 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59380
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59262
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 59261

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:59216 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:59225 version: TLS 1.2

Source: classification engine

Classification label: clean0.win@21/58@12/3

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1736 --field-trial-handle=2012,i,2871850995218753826,7982395101669501192,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https:/wentworth.az1.qualtrics.com/jfe/form/SV_bEnaGtb0Jw7NaWa?Q_DL=QrigjMFTYZVVTqH_bEnaGtb0Jw7NaWa_CGC_gCML4CuBSL0ABp7&Q_CHL=email"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1736 --field-trial-handle=2012,i,2871850995218753826,7982395101669501192,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1543826
Product:	CloudBasic
Start time:	14:24:38
Start date:	28.10.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https:/wentworth.az1.qualtrics.com/jfe/form/SV_bEnaGtb0Jw7NaWa?Q_DL=QrigjMFTYZVVTqH_bEnaGtb0Jw7NaWa_CGC_gCML4CuBSL0ABp7&Q_CHL=email

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https:/wentworth.az1.qualtrics.com/jfe/form/SV_bEnaGtb0Jw7NaWa?Q_DL=QrigjMFTYZVVTqH_bEnaGtb0Jw7NaWa_CGC_gCML4CuBSL0ABp7&Q_CHL=email

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https:/wentworth.az1.qualtrics.com/jfe/form/SV_bEnaGtb0Jw7NaWa?Q_DL=QrigjMFTYZVVTqH_bEnaGtb0Jw7NaWa_CGC_gCML4CuBSL0ABp7&Q_CHL=email