| Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.200 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.200 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.200 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 4.245.163.56 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.203 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.203 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.203 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.203 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.13 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.13 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.203 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.13 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.13 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.13 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.203 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 192.229.211.108 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 192.229.211.108 |
| Source: global traffic | HTTP traffic detected: GET /url?q=queryy8px(spellCorrectionEnabled%3Atrue%2CrecentSearchParam%3A(id%3A3891228890%2CdoLogHistory%3Atrue)%2Cfilters%3AList((type%3AREGION%2Cvalues%3AList((id%3A103644278%2Ctext%3AUnited%2520States%2CselectionType%3AINCLUDED))))%2Ckeywords%3Aremote)&sessionId=5NTcRf4wT3OOZdAOuNu6%2FQ%3D%3Dquery(spellCorrectionEnabled%3Atrue%2CrecentSearchParam%3A(id%3A3891228890%2CdoLogHistory%3Atrue)%2Cfilters%3AList((type%3AREGION%2Cvalues%3AList((id%3A103644278%2Ctext%3AUnited%2520States%2CselectionType%3AINCLUDED))))%2Ckeywords%3Aremote)&sessionId=5NTcRf4wT3OOZdAOuNu6%2FQ%3D%3Dquery(spellCorrectionEnabled%3Atrue%2CrecentSearchParam%3A(id%3A3891228890%2CdoLogHistory%3Atrue)%2Cfilters%3AList((type%3AREGION%2Cvalues%3AList((id%3A103644278%2Ctext%3AUnited%2520States%2CselectionType%3AINCLUDED))))%2Ckeywords%3Aremote)&sessionId=5NTcRf4wT3OOZdAOuNu6%2FQ%3D%3Dquery(spellCorrectionEnabled%3Atrue%2CrecentSearchParam%3A(id%3A3891228890%2CdoLogHistory%3Atrue)%2Cfilters%3AList((type%3AREGION%2Cvalues%3AList((id%3A103644278%2Ctext%3AUnited%2520States%2CselectionType%3AINCLUDED))))%2Ckeywords%3Aremote)&sessionId=5NTcRf4wT3OOZdAOuNu6%2FQ%3D%3D&sa=t&url=amp%2ftranscabrera.com%2fyaya%2f37w6telbuncxaji5ywvxeooxd1ok88ou67nhi/bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$? HTTP/1.1Host: www.google.ieConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIlaHLAQiFoM0BCNy9zQEIksrNAQi5ys0BCLbLzQEI6dLNAQiK080BCMHUzQEIz9bNAQjj1s0BCI7XzQEIp9jNAQi62M0BCPnA1BUYuL/NARj2yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /amp/transcabrera.com/yaya/37w6telbuncxaji5ywvxeooxd1ok88ou67nhi/bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$? HTTP/1.1Host: www.google.ieConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIlaHLAQiFoM0BCNy9zQEIksrNAQi5ys0BCLbLzQEI6dLNAQiK080BCMHUzQEIz9bNAQjj1s0BCI7XzQEIp9jNAQi62M0BCPnA1BUYuL/NARj2yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=519=xSNbthA1mH0WR7zk949MIkHsVKyJGX4_31XlITI_zHpuj6oe5izJl5gbOHwTBWX9tVemlNwQeiZSZRCgT5lls_8BPWrzT8UyyY69XQEBrk9PxbVDpwP2lhGnwzJ3TI2EiN4kenQdufsqYy-7bAQBoxdFhda469ofJmas607PswWnS2ejEleNyuXjW3HjO8c |
| Source: global traffic | HTTP traffic detected: GET /yaya/37w6telbuncxaji5ywvxeooxd1ok88ou67nhi/bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$ HTTP/1.1Host: transcabrera.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: transcabrera.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://transcabrera.com/yaya/37w6telbuncxaji5ywvxeooxd1ok88ou67nhi/bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /?nf=bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$ HTTP/1.1Host: djhdknfkfnkfjkfnf.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://transcabrera.com/yaya/37w6telbuncxaji5ywvxeooxd1ok88ou67nhi/bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=XH7uDNN191FGgun&MD=ace9Pcrg HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com |
| Source: global traffic | HTTP traffic detected: GET /?nf=bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$ HTTP/1.1Host: djhdknfkfnkfjkfnf.kumovers.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://djhdknfkfnkfjkfnf.kumovers.com/?nf=bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /shared/1.0/content/js/BssoInterrupt_Core_zKox_QMcTIVut7mG_Z9Eew2.js HTTP/1.1Host: 3c5a958a-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://djhdknfkfnkfjkfnf.kumovers.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://djhdknfkfnkfjkfnf.kumovers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /de5da622bf084ff0b0c5db3b58bf1c67/ HTTP/1.1Host: djhdknfkfnkfjkfnf.kumovers.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://djhdknfkfnkfjkfnf.kumovers.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA=="Sec-WebSocket-Key: 3qo4lcQXNS1vQQY40LeEKg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits |
| Source: global traffic | HTTP traffic detected: GET /shared/1.0/content/js/BssoInterrupt_Core_zKox_QMcTIVut7mG_Z9Eew2.js HTTP/1.1Host: 3c5a958a-de5da622.kumovers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /?nf=bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$&sso_reload=true HTTP/1.1Host: djhdknfkfnkfjkfnf.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://djhdknfkfnkfjkfnf.kumovers.com/?nf=bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA=="; AADSSO=NA|NoExtension; SSOCOOKIEPULLED=1 |
| Source: global traffic | HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: djhdknfkfnkfjkfnf.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://djhdknfkfnkfjkfnf.kumovers.com/?nf=bWFyay5tY2tlbnppZUBtYWdlbGxhbmxwLmNvbQ==$Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA=="; AADSSO=NA|NoExtension; SSOCOOKIEPULLED=1 |
| Source: global traffic | HTTP traffic detected: GET /de5da622bf084ff0b0c5db3b58bf1c67/ HTTP/1.1Host: djhdknfkfnkfjkfnf.kumovers.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://djhdknfkfnkfjkfnf.kumovers.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA=="; AADSSO=NA|NoExtension; SSOCOOKIEPULLED=1Sec-WebSocket-Key: ad6GMhDXrPhrl/9t+TVoIA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits |
| Source: global traffic | HTTP traffic detected: GET /app/office365/exk177x2glprLjvIp697/sso/wsfed/passive?login_hint=mark.mckenzie%40magellanlp.com&client-request-id=93b0a0fa-c150-42e3-8d5a-a6dcdac8441c&username=mark.mckenzie%40magellanlp.com&wa=wsignin1.0&wtrealm=urn%3afederation%3aMicrosoftOnline&wctx=estsredirect%3d2%26estsrequest%3drQQIARAA42Kw0skoKSkottLXL8gvKknM0cvNTC7KL85PK8nPy8nMS9VLzs_Vyy9Kz0wBsYqEuAR-LdgwOeDgY6feqGV3bp1wkVnFqEzYCP0LjIwvGBknMcnkJhZl6-UmZ6fmVWWmOuQmpqfm5CTm5RSAVN1iEvQvSvdMCS92S01JLUosyczPe8SMV8sFFoFXLDwGzFYcHFwCDBIMCgw_WBgXsQLd-U_yhZRQX7DLqse98w2cnBhOsep755qlu4fpu2dmG7kZ-VpWVHkGmmQmGlqEhPlXmbkGZZT4aBtE5pckm2Tl25pbGU5gE5rAxnSKjeEDG2MHO8MsdoYDnIwHeBl-8DXf-fd60ZxD7zw2CDA8EGAAAA2 HTTP/1.1Host: 00c5488c-de5da622.kumovers.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://djhdknfkfnkfjkfnf.kumovers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com |
| Source: global traffic | HTTP traffic detected: GET /api/internal/brand/theme/style-sheet?touch-point=SIGN_IN_PAGE&v=0c87dd7c98ddc6357b84282899638428bbdf1fc84909aed3df3b474c8f376dd3ef084354afcd8447c32e0cf7d2b6de79 HTTP/1.1Host: 00c5488c-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://00c5488c-de5da622.kumovers.com/app/office365/exk177x2glprLjvIp697/sso/wsfed/passive?login_hint=mark.mckenzie%40magellanlp.com&client-request-id=93b0a0fa-c150-42e3-8d5a-a6dcdac8441c&username=mark.mckenzie%40magellanlp.com&wa=wsignin1.0&wtrealm=urn%3afederation%3aMicrosoftOnline&wctx=estsredirect%3d2%26estsrequest%3drQQIARAA42Kw0skoKSkottLXL8gvKknM0cvNTC7KL85PK8nPy8nMS9VLzs_Vyy9Kz0wBsYqEuAR-LdgwOeDgY6feqGV3bp1wkVnFqEzYCP0LjIwvGBknMcnkJhZl6-UmZ6fmVWWmOuQmpqfm5CTm5RSAVN1iEvQvSvdMCS92S01JLUosyczPe8SMV8sFFoFXLDwGzFYcHFwCDBIMCgw_WBgXsQLd-U_yhZRQX7DLqse98w2cnBhOsep755qlu4fpu2dmG7kZ-VpWVHkGmmQmGlqEhPlXmbkGZZT4aBtE5pckm2Tl25pbGU5gE5rAxnSKjeEDG2MHO8MsdoYDnIwHeBl-8DXf-fd60ZxD7zw2CDA8EGAAAA2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /assets/loginpage/css/loginpage-theme.c8c15f6857642c257bcd94823d968bb1.css HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://00c5488c-de5da622.kumovers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /assets/js/sdk/okta-signin-widget/7.25.0/css/okta-sign-in.min.css HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://00c5488c-de5da622.kumovers.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleReferer: https://00c5488c-de5da622.kumovers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /assets/js/sdk/okta-signin-widget/7.25.0/js/okta-sign-in.min.js HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://00c5488c-de5da622.kumovers.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://00c5488c-de5da622.kumovers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /fs/bcg/4/gfs1iitj6mtRHwXoE1d8 HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://00c5488c-de5da622.kumovers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /fs/bco/1/fs0tjdpam4AAR2CqZ696 HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://00c5488c-de5da622.kumovers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /fs/bco/1/fs0tjdpam4AAR2CqZ696 HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /fs/bcg/4/gfs1iitj6mtRHwXoE1d8 HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /assets/js/sdk/okta-signin-widget/7.25.0/js/okta-sign-in.min.js HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /assets/js/mvc/loginpage/initLoginPage.pack.58de3be0c9b511a0fdfd7ea4f69b56fc.js HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://00c5488c-de5da622.kumovers.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://00c5488c-de5da622.kumovers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /fs/bco/7/fs0tlth7zFaclj5Hj696 HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://00c5488c-de5da622.kumovers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /assets/loginpage/font/assets/Aeonik-Regular.c672e6fbaa411f5719f3.woff2 HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://00c5488c-de5da622.kumovers.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://87fe9df4-de5da622.kumovers.com/assets/loginpage/css/loginpage-theme.c8c15f6857642c257bcd94823d968bb1.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /ab HTTP/1.1Host: evoke-windowsservices-tas.msedge.netCache-Control: no-store, no-cacheX-PHOTOS-CALLERID: 9NMPJ99VJBWVX-EVOKE-RING: X-WINNEXT-RING: PublicX-WINNEXT-TELEMETRYLEVEL: BasicX-WINNEXT-OSVERSION: 10.0.19045.0X-WINNEXT-APPVERSION: 1.23082.131.0X-WINNEXT-PLATFORM: DesktopX-WINNEXT-CANTAILOR: FalseX-MSEDGE-CLIENTID: {c1afbad7-f7da-40f2-92f9-8846a91d69bd}X-WINNEXT-PUBDEVICEID: dbfen2nYS7HW6ON4OdOknKxxv2CCI5LJBTojzDztjwI=If-None-Match: 2056388360_-1434155563Accept-Encoding: gzip, deflate, br |
| Source: global traffic | HTTP traffic detected: GET /assets/js/mvc/loginpage/initLoginPage.pack.58de3be0c9b511a0fdfd7ea4f69b56fc.js HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /discovery/iframe.html HTTP/1.1Host: login-okta.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://00c5488c-de5da622.kumovers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /fs/bco/7/fs0tlth7zFaclj5Hj696 HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /lib/discoveryIframe-a869d3b07ebd94f8cfae.min.js HTTP/1.1Host: login-okta.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://login-okta.kumovers.com/discovery/iframe.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /assets/js/sdk/okta-signin-widget/7.25.0/img/ui/forms/checkbox-sign-in-widget.png HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://87fe9df4-de5da622.kumovers.com/assets/js/sdk/okta-signin-widget/7.25.0/css/okta-sign-in.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /idp/idx/introspect HTTP/1.1Host: 00c5488c-de5da622.kumovers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /assets/loginpage/font/assets/Inter-SemiBold.b5f0f109bc88052d4000.woff2 HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://00c5488c-de5da622.kumovers.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://87fe9df4-de5da622.kumovers.com/assets/loginpage/css/loginpage-theme.c8c15f6857642c257bcd94823d968bb1.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /assets/loginpage/font/assets/Inter-Regular.c8ba52b05a9ef10f4758.woff2 HTTP/1.1Host: 87fe9df4-de5da622.kumovers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://00c5488c-de5da622.kumovers.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://87fe9df4-de5da622.kumovers.com/assets/loginpage/css/loginpage-theme.c8c15f6857642c257bcd94823d968bb1.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /lib/discoveryIframe-a869d3b07ebd94f8cfae.min.js HTTP/1.1Host: login-okta.kumovers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA==" |
| Source: global traffic | HTTP traffic detected: GET /de5da622bf084ff0b0c5db3b58bf1c67/ HTTP/1.1Host: login-okta.kumovers.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://login-okta.kumovers.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA=="Sec-WebSocket-Key: iI7NvBkX4hK2juzRii6GIA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits |
| Source: global traffic | HTTP traffic detected: GET /de5da622bf084ff0b0c5db3b58bf1c67/ HTTP/1.1Host: login-okta.kumovers.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://login-okta.kumovers.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: iRfY7p="ZGU1ZGE2MjItYmYwOC00ZmYwLWIwYzUtZGIzYjU4YmYxYzY3OmY1MTFjNjIyLTNlMTQtNDc4YS04NWIxLWE5MDZhYmJkNTU3NA=="Sec-WebSocket-Key: eRHbJXchAShGB1FE28AFEQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits |
| Source: global traffic | HTTP traffic detected: GET /client/config?cc=CH&setlang=en-CH HTTP/1.1X-Search-CortanaAvailableCapabilities: NoneX-Search-SafeSearch: ModerateAccept-Encoding: gzip, deflateX-Device-MachineId: {92C86F7C-DB2B-4F6A-95AD-98B4A2AE008A}X-UserAgeClass: UnknownX-BM-Market: CHX-BM-DateFormat: dd/MM/yyyyX-Device-OSSKU: 48X-BM-DTZ: -300X-DeviceID: 01000A41090080B6X-BM-WindowsFlights: FX:117B9872,FX:119E26AD,FX:11C0E96C,FX:11C6E5C2,FX:11C7EB6A,FX:11C9408A,FX:11C940DB,FX:11CB9A9F,FX:11CB9AC1,FX:11CC111C,FX:11D5BFCD,FX:11DF5B12,FX:11DF5B75,FX:1240931B,FX:124B38D0,FX:127FC878,FX:1283FFE8,FX:12840617,FX:128979F9,FX:128EBD7E,FX:129135BB,FX:129E053F,FX:12A74DB5,FX:12AB734D,FX:12B8450E,FX:12BD6E73,FX:12C3331B,FX:12C7D66EX-Search-TimeZone: Bias=300; StandardBias=0; TimeZoneKeyName=Eastern Standard TimeX-BM-Theme: 000000;0078d7X-Search-RPSToken: t%3DEwDoAkR8BAAUcvamItSE/vUHpyZRp3BeyOJPQDsAAWrIGbEKEyJ5cpVPjtjoWLysULzqm9PUxIWjWnSw/sBpKIcpy3pRN7wP09FcKZePE%2B6e1v5IcQK1CeDlwp5ee9/E1ge8wC848JQidXlthP5yURjrM3W0w1GH/ysSxgKEqMUCtVcuHddlYhNejUTrjc0md9jKWUrsv7yn38hxf%2BcOQcD93SR6zLMe0LfKG9FGZwbVmC3JVp5NswgCqQNDwcJp6LzPAwBEE2MuEIdtJva4fcd1rSf0TJFvkhDYTsaxpf7BYQ3d8S%2BeVp7dYiQKO/g6RVOsvJUxSH3jcNgBGpCDKm9ir6LfoPeteBvuM0ezCbvVXqt6cfU2Ct3JgeTO6LQQZgAAEGLE58aeSwUjYeiIdJ5qi9mwATW8TCUw9r57gSbI9g8stedhFfjv4anQU0ZdrMGFRuNDZ0YKWYW8ljiMEi7zvEp6gqi%2BEgN4czFqFJo%2Be1WdcvsBCgB0pWZjWBEWhgOw7SX/nilj2S98KglERbIsO0cwKDaw6VGM7zT/gYkRfdmZOsMhC4ifHYXi8zEQPjV20OpSXCNCHcy8iFkXTCVz5GaJjF1sfl5iU8zR%2BY8Qmyg6YpNYwwEp%2BM7eb5f730OtBNRxz83z8GQa4gXqCkdRppiFwm%2B5rNqfT%2BomO6CJbyIyxXMIdO6hf1UwEvGPgrMKUe5YyVALckxpLUTHbf226wS0wSqHgTiZRQ5YcshIsgnxS5msDJvxKZFtXSMbANFn7lzwv6jHm11kEuO/qrejoUOQEWKaqziZ8MpDrrWHtFol6otRMLM6GGqE9v9quhFt7Vd5YTVT8MQ1muvhsFLegLAURIETRjEQDVXmFohGUduvnZb%2ByTNzB/%2Bou8fN224M1juaS7e%2B9K7/u3QEyUBl2Cplb6LZ1Y8jNLTJ4NQkPrdGidbpYQEGCuUslyVtvqXn8N9pGMAfpsHYVp7IcRpfyBbBXtcB%26p%3DX-Agent-DeviceId: 01000A41090080B6X-BM-CBT: 1732052179User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045X-Device-isOptin: falseAccept-language: en-GB, en, en-USX-Device-Touch: falseX-Device-ClientSession: 07752558FB2A4FC88EDB108A5C67F8C2X-Search-AppId: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUIHost: www.bing.comConnection: Keep-AliveCookie: SRCHUID=V=2&GUID=C4EAB6C130004333A34B5668AE4E4D10&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=en; MUID=4590362 |
Edit tour
chrome.exe (PID: 6896 cmdline: 
