Edit tour

Windows Analysis Report
https://0azeevmdi7.codedesign.app/

Overview

General Information

Sample URL:	https://0azeevmdi7.codedesign.app/
Analysis ID:	1567666
Infos:

Detection

Score:	48
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

AI detected landing page (webpage, office document or email)

Phishing site or detected (based on various text indicators)

Detected suspicious crossdomain redirect

HTML page contains hidden javascript code

Classification

Process Tree

System is w10x64

chrome.exe (PID: 3152 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 2836 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=1992,i,3117396300510305123,13054745563636875955,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6520 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://0azeevmdi7.codedesign.app/" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

AI detected landing page (webpage, office document or email)

Source: https://0azeevmdi7.codedesign.app/

Joe Sandbox AI: Page contains button: 'CLICK HERE TO VIEW DOCUMENT' Source: '0.0.pages.csv'

Phishing site or detected (based on various text indicators)

Source: Chrome DOM: 0.3

OCR Text: LT Foods Americas (2) New PDF Documents Received. You have received (2) new PDF messages ; Received : Tuesday: 12/03/24 Reference: Invoice/PO LT Foods Americas Pages : 2 Click the below button to load content in browser; CLICK HERE TO VIEW DOCUMENT Built with CodeDesign.ai

Source: https://0azeevmdi7.codedesign.app/

HTTP Parser: Base64 decoded: sv=o365_1_nom&rand=N0dvcEQ=&uid=USER20112024U33112019

Source: https://0azeevmdi7.codedesign.app/	HTTP Parser: No favicon
Source: https://0azeevmdi7.codedesign.app/	HTTP Parser: No favicon
Source: https://0azeevmdi7.codedesign.app/	HTTP Parser: No favicon
Source: https://0azeevmdi7.codedesign.app/	HTTP Parser: No favicon
Source: https://google.com/404/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon
Source: https://www.google.com/	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 23.218.208.109:443 -> 192.168.2.4:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.218.208.109:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.218.208.109:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.4:49801 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.43:443 -> 192.168.2.4:49802 version: TLS 1.2

Source:	Binary string: a);e.searchParams.set("msc","gwsrpc");_.hja(e.searchParams,!1,!1);c=e.toString();e={Txa:")]}'\n\n",withCredentials:_.pDb()};c=d?qDb(c,a,e):rDb(c,e);var g=b.Maa();return c.then(function(h){return new g(h)})},tDb=function(a,b){b&&b.Txa&&(b=b.Txa,_.ig(a,b)&&(a=a.substring(b.length)));return JSON.parse(a)},qDb=function(a,b,c){return _.gDb("POST",a,b,c).then(function(d){return tDb(d.responseText,c)})},rDb=function(a,b){return _.gDb("GET",a,null,b).then(function(c){return tDb(c.responseText,b)})},lDb=new Map, source: chromecache_164.2.dr, chromecache_149.2.dr
Source:	Binary string: _.MDb.prototype.handle=function(a,b,c){if(!this.matches(a))return!1;var d=a.ju();d=this.oa(d,b);Array.isArray(d)\|\|(d=[d]);d=_.ei(d,function(e){return!!e});this.ka(d,c,a,b);return!0};var NDb=function(a){var b=new WeakMap;return function(c){b.has(c)\|\|b.set(c,a(c));return b.get(c)}};var ODb=function(a,b,c,d){_.MDb.call(this,a,b,d);this.wa=c};_.G(ODb,_.MDb);ODb.prototype.ka=function(a,b,c,d){var e=c.ju();_.Qa(a,function(f){var g=this,h=NDb(function(k){return g.wa(e,d,k)});f instanceof _.r?b.update(f,h,!1):LDb(b,f,h);this.eventManager.addEvent({Rj:c.mj(),request:e,Zta:f,c3:h,sqa:"n"})},this)};_.PDb=function(a,b,c,d){var e=_.uhb.getInstance();a=new ODb(a,b,c,d);e.oa.push(a)}; source: chromecache_164.2.dr, chromecache_149.2.dr
Source:	Binary string: _.XDb.prototype.hb="X00L7";_.YDb=function(a){this.Ea=_.n(a)};_.G(_.YDb,_.r);_.ZDb=function(a,b){return _.hh(a,2,b)};_.YDb.prototype.hb="dE0Zid";_.$Db=function(a){this.Ea=_.n(a)};_.G(_.$Db,_.r);var aEb=function(a){this.Ea=_.n(a)};_.G(aEb,_.r);aEb.prototype.Jp=function(){return _.Pi(this,1)};aEb.prototype.hb="kgvkKd";var bEb=function(a){this.Ea=_.n(a)};_.G(bEb,_.r);bEb.prototype.getStatus=function(){return _.t(this,aEb,1)};bEb.prototype.Un=function(){return _.ri(this,aEb,1)};bEb.prototype.hb="AWK1P";_.PDb({requestType:_.$Db,responseType:bEb},function(){return _.YDb},function(a,b,c){var d=_.t(a,_.UDb,1);return _.ZDb(c,_.Pf(c,_.XDb,2,_.Qf()).filter(function(e){e=_.VDb(_.t(e,_.xv,2));return!(_.Oi(e,1)===_.Oi(d,1)&&_.Oi(e,2)===_.Oi(d,2)&&_.ej(_.t(e,_.WDb,3),1,_.TDb)===_.ej(_.t(d,_.WDb,3),1,_.TDb))}))},"QOndhf");new _.Lg(_.$Db);new _.Lg(bEb);_.cEb=new _.og("TTP4dc",bEb,_.$Db,[{key:_.Eq,value:!1},{key:_.Fq,value:"/ContributionsService.WriteReaction"}]); source: chromecache_164.2.dr, chromecache_149.2.dr
Source:	Binary string: mDb=new Set;_.oDb=function(){};_.nDb=function(){return""};_.pDb=function(){return!1};_.uDb=function(){_.no.call(this)};_.G(_.uDb,_.oo);_.uDb.Ha=_.oo.Ha;_.uDb.prototype.fetch=function(a){return sDb(a).then(function(b){return a.mj().ku(b)})};_.uDb.prototype.Vb=function(a){return _.zib.getInstance().execute(function(){return sDb(a)}).then(function(b){return a.mj().ku(b)})};_.qo(_.kOa,_.uDb);vv("EXtmgd","web/AdBlockingService/BlockAds",!0);vv("WWkTtd","web/AdBlockingService/BlockAdsUndo",!0);vv("GTKGqe","retry/AdsEmbeddedReportService/UpdateSearchTermStatus",!0);vv("st5iIf","retry/AdsEmbeddedReportService/UpdateCampaignBudget",!0);vv("jNxjKc","retry/AdsEmbeddedReportService/UpdateCampaignStatus",!0);vv("QVhSIb","retry/AdsEmbeddedReportService/MutateCreative",!0);vv("q1ykpd","retry/AdsEmbeddedReportService/ValidateCreative");vv("wwfc4c","retry/AdsEmbeddedReportService/MutateKeywordTheme",!0);vv("zpNKu","retry/AdsEmbeddedReportService/LoggingActivities");vv("ADtCDc","retry/AdsEmbeddedReportService/GetBudgetSuggestion"); source: chromecache_164.2.dr, chromecache_149.2.dr

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

HTTP traffic: Redirect from: lottones.com to https://google.com/404/

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 23.218.208.109
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.43
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.43
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.43
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.43
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.43
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.43
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50

Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/css/a63a29fe10a5e89e.css HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"downlink: 1.45sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36viewport-width: 1280sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dmuecdqxy/q_auto/v1733242206/static/logo-ltfoodspng_1733242204_91211.png HTTP/1.1Host: res.cloudinary.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/webpack-dfa48d46ec8ebab7.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"downlink: 1.45sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36viewport-width: 1280sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/main-2bde8bbd115c7241.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"downlink: 1.45sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36viewport-width: 1280sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/framework-acb9ef830b9b8407.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"downlink: 1.45sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36viewport-width: 1280sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/_app-3f3731a847579feb.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"downlink: 1.45sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36viewport-width: 1280sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/%5B%5B...slug%5D%5D-16bf7767862b2199.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"downlink: 1.45sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36viewport-width: 1280sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/xg_hCbnfA67zv-9idGfYU/_buildManifest.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"downlink: 1.45sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36viewport-width: 1280sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dmuecdqxy/q_auto/v1733242206/static/logo-ltfoodspng_1733242204_91211.png HTTP/1.1Host: res.cloudinary.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/xg_hCbnfA67zv-9idGfYU/_ssgManifest.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"downlink: 1.45sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36viewport-width: 1280sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/xg_hCbnfA67zv-9idGfYU/_middlewareManifest.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"downlink: 1.45sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36viewport-width: 1280sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/webpack-dfa48d46ec8ebab7.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/framework-acb9ef830b9b8407.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/%5B%5B...slug%5D%5D-16bf7767862b2199.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/main-2bde8bbd115c7241.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/xg_hCbnfA67zv-9idGfYU/_buildManifest.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=t9LvwNpyY+GAaEF&MD=a2x59HdK HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v3 HTTP/1.1Host: js.stripe.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/_app-3f3731a847579feb.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/xg_hCbnfA67zv-9idGfYU/_ssgManifest.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/xg_hCbnfA67zv-9idGfYU/_middlewareManifest.js HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v3 HTTP/1.1Host: js.stripe.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"downlink: 1.4sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36viewport-width: 1280sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: 0azeevmdi7.codedesign.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html HTTP/1.1Host: js.stripe.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://0azeevmdi7.codedesign.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js HTTP/1.1Host: js.stripe.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js HTTP/1.1Host: js.stripe.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /inner.html HTTP/1.1Host: m.stripe.networkConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://js.stripe.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /out-4.5.43.js HTTP/1.1Host: m.stripe.networkConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://m.stripe.network/inner.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /out-4.5.43.js HTTP/1.1Host: m.stripe.networkConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mah/o/?c3Y9bzM2NV8xX25vbSZyYW5kPU4wZHZjRVE9JnVpZD1VU0VSMjAxMTIwMjRVMzMxMTIwMTk=N0123N[EMAIL] HTTP/1.1Host: lottones.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /404/ HTTP/1.1Host: google.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/errors/robot.png HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/branding/googlelogo/1x/googlelogo_color_150x54dp.png HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /6 HTTP/1.1Host: m.stripe.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: m=a8a94531-521f-4876-97d7-a16eaaa6bcf7e7fc5e
Source: global traffic	HTTP traffic detected: GET /images/errors/robot.png HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/branding/googlelogo/1x/googlelogo_color_150x54dp.png HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: stripe.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /6 HTTP/1.1Host: m.stripe.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: m=a8a94531-521f-4876-97d7-a16eaaa6bcf7e7fc5e
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: stripe.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=t9LvwNpyY+GAaEF&MD=a2x59HdK HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xjs/_/ss/k=xjs.hd._zVEtO-Y3ZI.L.B1.O/am=CKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAAAYAGAXIEAAAAAAAAwAQBBAAAQACAEEEACsAAAAAgCgBACAAgAEABQAAAACowAQQEAGACUACR2AAFAQAIAAgABgABk0BKICEAUAAAAAAAAAAAEAAABDAAgEAOgACAADQCQAAKIHAQAAAAAEAQCYCQBDwAAEAAAAAAAAkAEAAAAMKSAAAAAAAAAAAAAAAAAAQBAMBQAUBAAAAAAAAAAAAAAAAAAAgEATBA/d=1/ed=1/br=1/rs=ACT90oG-Eru8S6ZYG_mDj6maBRsW1oKs4w/m=cdos,hsm,jsa,mb4ZUb,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl,YV5bee,d,csi HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /logos/doodles/2024/seasonal-holidays-2024-6753651837110333-law.gif HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBBAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=1/ed=1/dg=3/br=1/rs=ACT90oGqvA8Z2LoeT1Yg8IP18qNF5ae-Ng/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DULqB:RKfG5c;Dkk6ge:JZmW9e;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HoYVKb:PkDN7e;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXJSm:ii1RGf;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KpRAue:Tia57b;LBgRLc:SdcwHb,XVMNvd;LEikZe:byfTOb,lsjVmc;LXA8b:q7OdKd;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RCF5Sd:X1kBmd;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO,fTfGO;SNUn3:ZwDk9d,x8cHvb;ScI3Yc:e7Hzgb,e7Hzgb;ShpF6e:N0pvGc;SzQQ3e:dNhofb;TxfV6d:YORN0b;U96pRd:FsR04;UBKJZ:LGDJGb;UDrY1c:eps46d;UVmjEd:EesRsb;UVzb9c:IvPZ6d;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YIZmRd:A1yn5d;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZSH6tc:QAvyLe;ZWEUA:afR4Cf;ZlOOMb:P0I0Ec;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aCJ9tf:qKftvc;aZ61od:arTwJ;af0EJf:ghinId;bDXwRe:UsyOtc;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;dowIGb:ebZ3mb,ebZ3mb;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:audvde;eHDfl:ofjVkb;eO3lse:nFClrf;euOXY:OZjbQ;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lOO0Vd:OTA3Ae;lbfkyf:MqGdUd;nAFL3:NTMZac,s39S4;nJw4Gd:dPFZH;oGtAuc:sOXFj;oSUNyd:fTfGO,fTfGO;oUlnpc:RagDlc;oVHXxc:HODIOb;okUaUd:wItadb;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:ww04Df;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qafBPd:sgY6Zb;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;ropkZ:UT1DG;sTsDMc:kHVSUb;sZmdvc:rdGEfc;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uuQkY:u2V3ud;vEYCNb:FaqsVd;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:O1Gjze,TtcOte;wV5Pjc:L8KGxe;xBbsrc:NEW1Qc;ysNiMc:CpIBjd;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=cdos,hsm,jsa,mb4ZUb,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl,YV5bee,d,csi HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"se
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /images/searchbox/desktop_searchbox_sprites318_hr.webp HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /logos/doodles/2024/seasonal-holidays-2024-6753651837110333-law.gif HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /complete/search?q&cp=0&client=gws-wiz&xssi=t&gs_pcrt=2&hl=en&authuser=0&psi=qjtPZ7aIIfWmkdUP9IykuAg.1733245871329&dpr=1&nolsbt=1 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBBAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=1/ed=1/dg=3/br=1/rs=ACT90oGqvA8Z2LoeT1Yg8IP18qNF5ae-Ng/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DULqB:RKfG5c;Dkk6ge:JZmW9e;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HoYVKb:PkDN7e;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXJSm:ii1RGf;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KpRAue:Tia57b;LBgRLc:SdcwHb,XVMNvd;LEikZe:byfTOb,lsjVmc;LXA8b:q7OdKd;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RCF5Sd:X1kBmd;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO,fTfGO;SNUn3:ZwDk9d,x8cHvb;ScI3Yc:e7Hzgb,e7Hzgb;ShpF6e:N0pvGc;SzQQ3e:dNhofb;TxfV6d:YORN0b;U96pRd:FsR04;UBKJZ:LGDJGb;UDrY1c:eps46d;UVmjEd:EesRsb;UVzb9c:IvPZ6d;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YIZmRd:A1yn5d;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZSH6tc:QAvyLe;ZWEUA:afR4Cf;ZlOOMb:P0I0Ec;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aCJ9tf:qKftvc;aZ61od:arTwJ;af0EJf:ghinId;bDXwRe:UsyOtc;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;dowIGb:ebZ3mb,ebZ3mb;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:audvde;eHDfl:ofjVkb;eO3lse:nFClrf;euOXY:OZjbQ;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lOO0Vd:OTA3Ae;lbfkyf:MqGdUd;nAFL3:NTMZac,s39S4;nJw4Gd:dPFZH;oGtAuc:sOXFj;oSUNyd:fTfGO,fTfGO;oUlnpc:RagDlc;oVHXxc:HODIOb;okUaUd:wItadb;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:ww04Df;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qafBPd:sgY6Zb;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;ropkZ:UT1DG;sTsDMc:kHVSUb;sZmdvc:rdGEfc;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uuQkY:u2V3ud;vEYCNb:FaqsVd;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:O1Gjze,TtcOte;wV5Pjc:L8KGxe;xBbsrc:NEW1Qc;ysNiMc:CpIBjd;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=cdos,hsm,jsa,mb4ZUb,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl,YV5bee,d,csi HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site
Source: global traffic	HTTP traffic detected: GET /images/searchbox/desktop_searchbox_sprites318_hr.webp HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/md=2/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBBAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY/rs=ACT90oGqvA8Z2LoeT1Yg8IP18qNF5ae-Ng HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /widget/callout?prid=19037050&pgid=19037049&puid=9ceb59a7585b55bd&eom=1&cce=1&dc=1&origin=https%3A%2F%2Fwww.google.com&cn=callout&pid=1&spid=538&hl=en HTTP/1.1Host: ogs.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /complete/search?q&cp=0&client=gws-wiz&xssi=t&gs_pcrt=2&hl=en&authuser=0&psi=qjtPZ7aIIfWmkdUP9IykuAg.1733245871329&dpr=1&nolsbt=1 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/md=2/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBBAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY/rs=ACT90oGqvA8Z2LoeT1Yg8IP18qNF5ae-Ng HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /images/hpp/ic_wahlberg_product_core_48.png8.png HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ogs.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/ck=xjs.hd._zVEtO-Y3ZI.L.B1.O/am=CKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAACYAGAXIEAAAAAAAAwAQBBAEAQACAEEEACsAAAQDgCgBACAAgAEIBSAR5kCowARQEAGACUAiR2AAFAQAYAAgABgABk0BKICEAUAAAABAAAAAAEAAABDAggEAOgACAADQCQAAKIHAQAAAAAEAQScCQBDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/ujg=1/rs=ACT90oHnF-2eESkoIqrmCwbBr7zs3TgkUQ/m=sb_wiz,aa,abd,sy17h,syfu,syfl,syfj,syfk,syfm,syfv,syfw,syfq,syfr,syfp,syfo,syel,syfn,syfd,syfc,syfe,syfb,syfg,sy16c,syg6,sy17f,syyh,syg5,syg4,syg3,async,ifl,pHXghd,sf,syic,sy3jj,sonic,sy3jp,syhi,sygy,sy3j2,sy3j5,sy265,sydz,sy9w,sy9h,sy9g,spch,syte,sytd,rtH1bd,sy19c,sy15f,sy14w,sy125,syd8,sy19b,SMquOb,sy89,sy88,syez,syf8,syf6,syf5,syey,syew,syeu,sy83,sy80,sy82,syet,syex,syes,sybf,syba,sybd,syal,syar,syak,syaj,syai,sya6,sybb,syaz,syb0,syb6,syap,syb5,syay,syav,syag,syan,syb1,sya8,syaa,syab,sya7,syaq,syaf,syac,sybi,sya2,sy9z,sybh,sy9r,sy9j,sy9m,sy9y,sya5,syb2,syer,syeq,syen,syem,sy86,uxMpU,syei,sybp,sybn,sybj,syat,sybl,sybg,sy8p,sy8o,sy8n,Mlhmy,QGR0gd,aurFic,sy8y,fKUV3e,OTA3Ae,sy8a,OmgaI,EEDORb,PoEs9b,Pjplud,sy8j,A1yn5d,YIZmRd,uY49fb,sy7y,sy7w,sy7u,sy7v,sy7t,sy7s,byfTOb,lsjVmc,LEikZe,kWgXee,ovKuLd,sgY6Zb,qafBPd,ebZ3mb,dowIGb,sy19f,sy19d,syxe,sytj,d5EhJe,sy19w,fCxEDd,syup,sy19v,sy19u,sy19t,sy19m,sy19j,sy19k,sy174,sy16y,syx2,syx1,T1HOxc,sy19l,sy19i,zx30Y,sy19y,sy19x,sy19q,sy15r,Wo3n8,sysv,loL8vb,sysz,sysy,sysx,ms4mZb,syrx,B2qlPe,syua,NzU6V,syyt,sygi,zGLm3b,syvu,syvv,syvl,DhPYme,syxz?xjs=s3 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/ck=xjs.hd._zVEtO-Y3ZI.L.B1.O/am=CKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAACYAGAXIEAAAAAAAAwAQBBAEAQACAEEEACsAAAQDgCgBACAAgAEIBSAR5kCowARQEAGACUAiR2AAFAQAYAAgABgABk0BKICEAUAAAABAAAAAAEAAABDAggEAOgACAADQCQAAKIHAQAAAAAEAQScCQBDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/ujg=1/rs=ACT90oHnF-2eESkoIqrmCwbBr7zs3TgkUQ/m=syxu,syxx,syxw,sywe,sywf,syxv,syxs,syxt,KHourd,MpJwZc,UUJqVe,sy7d,sOXFj,sy7c,s39S4,oGtAuc,NTMZac,nAFL3,sy7q,sy7p,q0xTif,y05UD,sy12f,sy18v,sy18p,syx0,sy18i,sywz,sywy,sywx,sy18o,sy13p,sy18f,sy13t,sy18n,sy12b,sy18j,sygz,sy13u,sy18q,sy122,sy18m,sy18k,sy18l,sy18s,sy18a,sy18g,sy189,sy18e,sy18b,sy186,sy14p,sy13w,sy13x,syx5,syx6,epYOx?xjs=s3 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.gapi.en.x7CxCIZpks8.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo8czmnaLIncRgBQP7N2THncpDJ9mQ/cb=gapi.loaded_0 HTTP/1.1Host: apis.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /client_204?atyp=i&biw=1280&bih=907&ei=qjtPZ7aIIfWmkdUP9IykuAg&opi=89978449 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; NID=519=PlICm1Zhqh4ucbPFBVv0mE8GSV4nmB7CP0L5mam25yXdXy7-HOobj855EXi-Awnn50pK3G1d-y2cLHIcBQ_CCVnnqP-yX4NM7e_JTZC8y_XXzQwjht4ebEELhqlMK1nMnlOL1fh6v-gzCc82o6sMLAvsYiKezhRr1ZFAY5Pkvsbelp_FPnQrMQAT58o44Oq1KXH0api0
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /images/hpp/ic_wahlberg_product_core_48.png8.png HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/ck=xjs.hd._zVEtO-Y3ZI.L.B1.O/am=CKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAACYAGAXIEAAAAAAAAwAQBBAEAQACAEEEACsAAAQDgCgBACAAgAEIBSAR5kCowARQEAGACUAiR2AAFAQAYAAgABgABk0BKICEAUAAAABAAAAAAEAAABDAggEAOgACAADQCQAAKIHAQAAAAAEAQScCQBDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/ujg=1/rs=ACT90oHnF-2eESkoIqrmCwbBr7zs3TgkUQ/m=syxu,syxx,syxw,sywe,sywf,syxv,syxs,syxt,KHourd,MpJwZc,UUJqVe,sy7d,sOXFj,sy7c,s39S4,oGtAuc,NTMZac,nAFL3,sy7q,sy7p,q0xTif,y05UD,sy12f,sy18v,sy18p,syx0,sy18i,sywz,sywy,sywx,sy18o,sy13p,sy18f,sy13t,sy18n,sy12b,sy18j,sygz,sy13u,sy18q,sy122,sy18m,sy18k,sy18l,sy18s,sy18a,sy18g,sy189,sy18e,sy18b,sy186,sy14p,sy13w,sy13x,syx5,syx6,epYOx?xjs=s3 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/ck=xjs.hd._zVEtO-Y3ZI.L.B1.O/am=CKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAACYAGAXIEAAAAAAAAwAQBBAEAQACAEEEACsAAAQDgCgBACAAgAEIBSAR5kCowARQEAGACUAiR2AAFAQAYAAgABgABk0BKICEAUAAAABAAAAAAEAAABDAggEAOgACAADQCQAAKIHAQAAAAAEAQScCQBDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/ujg=1/rs=ACT90oHnF-2eESkoIqrmCwbBr7zs3TgkUQ/m=sb_wiz,aa,abd,sy17h,syfu,syfl,syfj,syfk,syfm,syfv,syfw,syfq,syfr,syfp,syfo,syel,syfn,syfd,syfc,syfe,syfb,syfg,sy16c,syg6,sy17f,syyh,syg5,syg4,syg3,async,ifl,pHXghd,sf,syic,sy3jj,sonic,sy3jp,syhi,sygy,sy3j2,sy3j5,sy265,sydz,sy9w,sy9h,sy9g,spch,syte,sytd,rtH1bd,sy19c,sy15f,sy14w,sy125,syd8,sy19b,SMquOb,sy89,sy88,syez,syf8,syf6,syf5,syey,syew,syeu,sy83,sy80,sy82,syet,syex,syes,sybf,syba,sybd,syal,syar,syak,syaj,syai,sya6,sybb,syaz,syb0,syb6,syap,syb5,syay,syav,syag,syan,syb1,sya8,syaa,syab,sya7,syaq,syaf,syac,sybi,sya2,sy9z,sybh,sy9r,sy9j,sy9m,sy9y,sya5,syb2,syer,syeq,syen,syem,sy86,uxMpU,syei,sybp,sybn,sybj,syat,sybl,sybg,sy8p,sy8o,sy8n,Mlhmy,QGR0gd,aurFic,sy8y,fKUV3e,OTA3Ae,sy8a,OmgaI,EEDORb,PoEs9b,Pjplud,sy8j,A1yn5d,YIZmRd,uY49fb,sy7y,sy7w,sy7u,sy7v,sy7t,sy7s,byfTOb,lsjVmc,LEikZe,kWgXee,ovKuLd,sgY6Zb,qafBPd,ebZ3mb,dowIGb,sy19f,sy19d,syxe,sytj,d5EhJe,sy19w,fCxEDd,syup,sy19v,sy19u,sy19t,sy19m,sy19j,sy19k,sy174,sy16y,syx2,syx1,T1HOxc,sy19l,sy19i,zx30Y,sy19y,sy19x,sy19q,sy15r,Wo3n8,sysv,loL8vb,sysz,sysy,sysx,ms4mZb,syrx,B2qlPe,syua,NzU6V,syyt,sygi,zGLm3b,syvu,syvv,syvl,DhPYme,syxz?xjs=s3 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xjs/_/ss/k=xjs.hd._zVEtO-Y3ZI.L.B1.O/am=CKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAAAYAGAXIEAAAAAAAAwAQBBAAAQACAEEEACsAAAAAgCgBACAAgAEABQAAAACowAQQEAGACUACR2AAFAQAIAAgABgABk0BKICEAUAAAAAAAAAAAEAAABDAAgEAOgACAADQCQAAKIHAQAAAAAEAQCYCQBDwAAEAAAAAAAAkAEAAAAMKSAAAAAAAAAAAAAAAAAAQBAMBQAUBAAAAAAAAAAAAAAAAAAAgEATBA/d=0/br=1/rs=ACT90oG-Eru8S6ZYG_mDj6maBRsW1oKs4w/m=sylt,sypt?xjs=s4 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /client_204?cs=1&opi=89978449 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /async/hpba?vet=10ahUKEwi2hbyBjIyKAxV1U6QEHXQGCYcQj-0KCBY..i&ei=qjtPZ7aIIfWmkdUP9IykuAg&opi=89978449&yv=3&sp_imghp=false&sp_hpte=1&sp_hpep=1&stick=&cs=0&async=_basejs:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en_US.g-nn3iYoll8.es5.O%2Fam%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBAAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQEBCAAAAAAAAAAAAAAAAAAgEgTFzY%2Fdg%3D0%2Fbr%3D1%2Frs%3DACT90oHpqn2QV7zO9kI8oYEo6RYh3xeHnQ,_basecss:%2Fxjs%2F_%2Fss%2Fk%3Dxjs.hd._zVEtO-Y3ZI.L.B1.O%2Fam%3DCKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAAAYAGAXIEAAAAAAAAwAQBBAAAQACAEEEACsAAAAAgCgBACAAgAEABQAAAACowAQQEAGACUACR2AAFAQAIAAgABgABk0BKICEAUAAAAAAAAAAAEAAABDAAgEAOgACAADQCQAAKIHAQAAAAAEAQCYCQBDwAAEAAAAAAAAkAEAAAAMKSAAAAAAAAAAAAAAAAAAQBAMBQAUBAAAAAAAAAAAAAAAAAAAgEATBA%2Fbr%3D1%2Frs%3DACT90oG-Eru8S6ZYG_mDj6maBRsW1oKs4w,_basecomb:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en_US.g-nn3iYoll8.es5.O%2Fck%3Dxjs.hd._zVEtO-Y3ZI.L.B1.O%2Fam%3DCKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAACYAGAXIEAAAAAAAAwAQBBAEAQACAEEEACsAAAQDgCgBACAAgAEIBSAR5kCowARQEAGACUAiR2AAFAQAYAAgABgABk0BKICEAUAAAABAAAAAAEAAABDAggEAOgACAADQCQAAKIHAQAAAAAEAQScCQBDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY%2Fd%3D1%2Fed%3D1%2Fdg%3D0%2Fbr%3D1%2Fujg%3D1%2Frs%3DACT90oHnF-2eESkoIqrmCwbBr7zs3TgkUQ,_fmt:prog,_id:_qjtPZ7aIIfWmkdUP9IykuAg_8 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.gapi.en.x7CxCIZpks8.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo8czmnaLIncRgBQP7N2THncpDJ9mQ/cb=gapi.loaded_0 HTTP/1.1Host: apis.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xjs/_/ss/k=xjs.hd._zVEtO-Y3ZI.L.B1.O/am=CKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAAAYAGAXIEAAAAAAAAwAQBBAAAQACAEEEACsAAAAAgCgBACAAgAEABQAAAACowAQQEAGACUACR2AAFAQAIAAgABgABk0BKICEAUAAAAAAAAAAAEAAABDAAgEAOgACAADQCQAAKIHAQAAAAAEAQCYCQBDwAAEAAAAAAAAkAEAAAAMKSAAAAAAAAAAAAAAAAAAQBAMBQAUBAAAAAAAAAAAAAAAAAAAgEATBA/d=0/br=1/rs=ACT90oG-Eru8S6ZYG_mDj6maBRsW1oKs4w/m=sylt,sypt?xjs=s4 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /async/hpba?vet=10ahUKEwi2hbyBjIyKAxV1U6QEHXQGCYcQj-0KCBY..i&ei=qjtPZ7aIIfWmkdUP9IykuAg&opi=89978449&yv=3&sp_imghp=false&sp_hpte=1&sp_hpep=1&stick=&cs=0&async=_basejs:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en_US.g-nn3iYoll8.es5.O%2Fam%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBAAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQEBCAAAAAAAAAAAAAAAAAAgEgTFzY%2Fdg%3D0%2Fbr%3D1%2Frs%3DACT90oHpqn2QV7zO9kI8oYEo6RYh3xeHnQ,_basecss:%2Fxjs%2F_%2Fss%2Fk%3Dxjs.hd._zVEtO-Y3ZI.L.B1.O%2Fam%3DCKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAAAYAGAXIEAAAAAAAAwAQBBAAAQACAEEEACsAAAAAgCgBACAAgAEABQAAAACowAQQEAGACUACR2AAFAQAIAAgABgABk0BKICEAUAAAAAAAAAAAEAAABDAAgEAOgACAADQCQAAKIHAQAAAAAEAQCYCQBDwAAEAAAAAAAAkAEAAAAMKSAAAAAAAAAAAAAAAAAAQBAMBQAUBAAAAAAAAAAAAAAAAAAAgEATBA%2Fbr%3D1%2Frs%3DACT90oG-Eru8S6ZYG_mDj6maBRsW1oKs4w,_basecomb:%2Fxjs%2F_%2Fjs%2Fk%3Dxjs.hd.en_US.g-nn3iYoll8.es5.O%2Fck%3Dxjs.hd._zVEtO-Y3ZI.L.B1.O%2Fam%3DCKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAACYAGAXIEAAAAAAAAwAQBBAEAQACAEEEACsAAAQDgCgBACAAgAEIBSAR5kCowARQEAGACUAiR2AAFAQAYAAgABgABk0BKICEAUAAAABAAAAAAEAAABDAggEAOgACAADQCQAAKIHAQAAAAAEAQScCQBDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY%2Fd%3D1%2Fed%3D1%2Fdg%3D0%2Fbr%3D1%2Fujg%3D1%2Frs%3DACT90oHnF-2eESkoIqrmCwbBr7zs3TgkUQ,_fmt:prog,_id:_qjtPZ7aIIfWmkdUP9IykuAg_8 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=G_ltXrPMmOYM_bBNyh5TSx52dDadUkWu5QybHCoJLH2CtabJ-Oain_u8VZZtJ8VRaxpafjisKjsvCEPgfa8XNE-6lV28ZmWUXZIc7P_hyrZk2B7Sr1KM1ZQwb-EgruunDebFrEBRUwyh9boTRTun0IXjPNPRuergMrrndqWalL2zzKbQkFmeqPiYWq692e5R555wjYJksCKdbI99930ioaOkf-s
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBAAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQEBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/rs=ACT90oHpqn2QV7zO9kI8oYEo6RYh3xeHnQ/m=syt1,syt0,VsqSCc,sy1ay,P10Owf,sy19r,sy19p,sysf,gSZvdb,syyb,syya,WlNQGd,sysj,sysh,sysg,syse,DPreE,syyo,syym,nabPbb,syy5,syy3,sylt,sypt,CnSW2d,kQvlef,syyn,fXO0xe?xjs=s4 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=kmqA0UtB24BQRQdNEWyZ-oJBENklrPC0i0WH5fmZTlfOiGKEDNDCuWWQWahTwRcjdLwd154huyRgG9P0pGBIXL6LvH2hbVlSNXdKH4XTtHP5ZnNwptqssfq3jzv2UE2QFDBHiSaPYTF_QWE7q7TraJ-Mhx_bCpuR8tryJUsdeGuoJGWUMitUf2WjUEt656hDe7mvTn9rHIRMzmGE
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBAAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQEBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/rs=ACT90oHpqn2QV7zO9kI8oYEo6RYh3xeHnQ/m=aLUfP?xjs=s4 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=G_ltXrPMmOYM_bBNyh5TSx52dDadUkWu5QybHCoJLH2CtabJ-Oain_u8VZZtJ8VRaxpafjisKjsvCEPgfa8XNE-6lV28ZmWUXZIc7P_hyrZk2B7Sr1KM1ZQwb-EgruunDebFrEBRUwyh9boTRTun0IXjPNPRuergMrrndqWalL2zzKbQkFmeqPiYWq692e5R555wjYJksCKdbI99930ioaOkf-s
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBAAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQEBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/rs=ACT90oHpqn2QV7zO9kI8oYEo6RYh3xeHnQ/m=syt1,syt0,VsqSCc,sy1ay,P10Owf,sy19r,sy19p,sysf,gSZvdb,syyb,syya,WlNQGd,sysj,sysh,sysg,syse,DPreE,syyo,syym,nabPbb,syy5,syy3,sylt,sypt,CnSW2d,kQvlef,syyn,fXO0xe?xjs=s4 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=G_ltXrPMmOYM_bBNyh5TSx52dDadUkWu5QybHCoJLH2CtabJ-Oain_u8VZZtJ8VRaxpafjisKjsvCEPgfa8XNE-6lV28ZmWUXZIc7P_hyrZk2B7Sr1KM1ZQwb-EgruunDebFrEBRUwyh9boTRTun0IXjPNPRuergMrrndqWalL2zzKbQkFmeqPiYWq692e5R555wjYJksCKdbI99930ioaOkf-s
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=G_ltXrPMmOYM_bBNyh5TSx52dDadUkWu5QybHCoJLH2CtabJ-Oain_u8VZZtJ8VRaxpafjisKjsvCEPgfa8XNE-6lV28ZmWUXZIc7P_hyrZk2B7Sr1KM1ZQwb-EgruunDebFrEBRUwyh9boTRTun0IXjPNPRuergMrrndqWalL2zzKbQkFmeqPiYWq692e5R555wjYJksCKdbI99930ioaOkf-s
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBAAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQEBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/rs=ACT90oHpqn2QV7zO9kI8oYEo6RYh3xeHnQ/m=aLUfP?xjs=s4 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=G_ltXrPMmOYM_bBNyh5TSx52dDadUkWu5QybHCoJLH2CtabJ-Oain_u8VZZtJ8VRaxpafjisKjsvCEPgfa8XNE-6lV28ZmWUXZIc7P_hyrZk2B7Sr1KM1ZQwb-EgruunDebFrEBRUwyh9boTRTun0IXjPNPRuergMrrndqWalL2zzKbQkFmeqPiYWq692e5R555wjYJksCKdbI99930ioaOkf-s
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBAAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQEBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/rs=ACT90oHpqn2QV7zO9kI8oYEo6RYh3xeHnQ/m=lOO0Vd,sy8k,P6sQOc?xjs=s4 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=G_ltXrPMmOYM_bBNyh5TSx52dDadUkWu5QybHCoJLH2CtabJ-Oain_u8VZZtJ8VRaxpafjisKjsvCEPgfa8XNE-6lV28ZmWUXZIc7P_hyrZk2B7Sr1KM1ZQwb-EgruunDebFrEBRUwyh9boTRTun0IXjPNPRuergMrrndqWalL2zzKbQkFmeqPiYWq692e5R555wjYJksCKdbI99930ioaOkf-s
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBAAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQEBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/rs=ACT90oHpqn2QV7zO9kI8oYEo6RYh3xeHnQ/m=lOO0Vd,sy8k,P6sQOc?xjs=s4 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=G_ltXrPMmOYM_bBNyh5TSx52dDadUkWu5QybHCoJLH2CtabJ-Oain_u8VZZtJ8VRaxpafjisKjsvCEPgfa8XNE-6lV28ZmWUXZIc7P_hyrZk2B7Sr1KM1ZQwb-EgruunDebFrEBRUwyh9boTRTun0IXjPNPRuergMrrndqWalL2zzKbQkFmeqPiYWq692e5R555wjYJksCKdbI99930ioaOkf-s
Source: global traffic	HTTP traffic detected: GET /gen_204?atyp=i&ct=psnt&cad=&nt=navigate&ei=qjtPZ7aIIfWmkdUP9IykuAg&zx=1733245888634&opi=89978449 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=G_ltXrPMmOYM_bBNyh5TSx52dDadUkWu5QybHCoJLH2CtabJ-Oain_u8VZZtJ8VRaxpafjisKjsvCEPgfa8XNE-6lV28ZmWUXZIc7P_hyrZk2B7Sr1KM1ZQwb-EgruunDebFrEBRUwyh9boTRTun0IXjPNPRuergMrrndqWalL2zzKbQkFmeqPiYWq692e5R555wjYJksCKdbI99930ioaOkf-s
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /url?q=https://accounts.google.com/signin/v2/identifier%3Fec%3Dfutura_hpp_co_si_001_p%26continue%3Dhttps%253A%252F%252Fwww.google.com%252F%253Fptid%253D19027681%2526ptt%253D8%2526fpts%253D0&source=hpp&id=19037050&ct=7&usg=AOvVaw17nhtj2bG975y5iQrI1sgf HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-wow64: ?0sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-prefers-color-scheme: lightUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://ogs.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AEC=AZ6Zc-UjsdwyOL4Ujn1HWBu5YMMwNPgIRUaYw9-cFnaW3l3cx8cuuRSo1Q; OGPC=19037049-1:; NID=519=G_ltXrPMmOYM_bBNyh5TSx52dDadUkWu5QybHCoJLH2CtabJ-Oain_u8VZZtJ8VRaxpafjisKjsvCEPgfa8XNE-6lV28ZmWUXZIc7P_hyrZk2B7Sr1KM1ZQwb-EgruunDebFrEBRUwyh9boTRTun0IXjPNPRuergMrrndqWalL2zzKbQkFmeqPiYWq692e5R555wjYJksCKdbI99930ioaOkf-s
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: chromecache_126.2.dr	String found in binary or memory: "https://www.facebook.com/StripeHQ", equals www.facebook.com (Facebook)
Source: chromecache_126.2.dr	String found in binary or memory: "https://www.linkedin.com/company/stripe/", equals www.linkedin.com (Linkedin)
Source: chromecache_105.2.dr, chromecache_114.2.dr	String found in binary or memory: var Sdc;_.Udc=function(a){return Sdc("https://www.facebook.com/dialog/share",{app_id:"738026486351791",href:_.Tdc(a),hashtag:"#GoogleDoodle"})};_.Vdc=function(a){return Sdc("https://twitter.com/intent/tweet",{text:a})};_.Wdc=function(a,b){return Sdc("mailto:",{subject:a,body:b})};_.Tdc=function(a){var b=a;b&&b.indexOf("//")===0&&(b="https:"+a);return b};Sdc=function(a,b){var c=new _.Mn,d;for(d in b)c.add(d,b[d]);a=new _.Ch(a);_.Kn(a,c);return a.toString()}; equals www.facebook.com (Facebook)
Source: chromecache_105.2.dr, chromecache_114.2.dr	String found in binary or memory: var Sdc;_.Udc=function(a){return Sdc("https://www.facebook.com/dialog/share",{app_id:"738026486351791",href:_.Tdc(a),hashtag:"#GoogleDoodle"})};_.Vdc=function(a){return Sdc("https://twitter.com/intent/tweet",{text:a})};_.Wdc=function(a,b){return Sdc("mailto:",{subject:a,body:b})};_.Tdc=function(a){var b=a;b&&b.indexOf("//")===0&&(b="https:"+a);return b};Sdc=function(a,b){var c=new _.Mn,d;for(d in b)c.add(d,b[d]);a=new _.Ch(a);_.Kn(a,c);return a.toString()}; equals www.twitter.com (Twitter)

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: 0azeevmdi7.codedesign.app
Source: global traffic	DNS traffic detected: DNS query: use.fontawesome.com
Source: global traffic	DNS traffic detected: DNS query: res.cloudinary.com
Source: global traffic	DNS traffic detected: DNS query: js.stripe.com
Source: global traffic	DNS traffic detected: DNS query: m.stripe.network
Source: global traffic	DNS traffic detected: DNS query: lottones.com
Source: global traffic	DNS traffic detected: DNS query: google.com
Source: global traffic	DNS traffic detected: DNS query: m.stripe.com
Source: global traffic	DNS traffic detected: DNS query: stripe.com
Source: global traffic	DNS traffic detected: DNS query: ogs.google.com
Source: global traffic	DNS traffic detected: DNS query: play.google.com
Source: global traffic	DNS traffic detected: DNS query: apis.google.com

Source: unknown

HTTP traffic detected: POST /6 HTTP/1.1Host: m.stripe.comConnection: keep-aliveContent-Length: 3188sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plain;charset=UTF-8Accept: */*Origin: https://m.stripe.networkSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://m.stripe.network/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/html; charset=UTF-8Referrer-Policy: no-referrerContent-Length: 1565Date: Tue, 03 Dec 2024 17:10:48 GMTAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close

Source: chromecache_179.2.dr, chromecache_169.2.dr	String found in binary or memory: http://fb.me/use-check-prop-types
Source: chromecache_132.2.dr	String found in binary or memory: http://schema.org/WebPage
Source: chromecache_161.2.dr, chromecache_173.2.dr, chromecache_158.2.dr, chromecache_157.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_182.2.dr, chromecache_117.2.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/auth
Source: chromecache_182.2.dr, chromecache_117.2.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/postmessageRelay
Source: chromecache_175.2.dr	String found in binary or memory: https://accounts.google.com/signin/v2/identifier%3Fec%3Dfutura_hpp_co_si_001_p%26continue%3Dhttps%25
Source: chromecache_132.2.dr, chromecache_182.2.dr, chromecache_117.2.dr, chromecache_173.2.dr, chromecache_157.2.dr	String found in binary or memory: https://apis.google.com
Source: chromecache_188.2.dr, chromecache_110.2.dr	String found in binary or memory: https://apis.google.com/js/api.js
Source: chromecache_126.2.dr	String found in binary or memory: https://assets.stripeassets.com
Source: chromecache_126.2.dr	String found in binary or memory: https://assets.stripeassets.com/fzn2n1nzq965/01hMKr6nEEGVfOuhsaMIXQ/c424849423b5f036a8892afa09ac38c7
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/1a930247.woff2)
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/AnimatedCodeEditor-86776e0635434fc49715.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/AnimatedIcon-0b7478e1f9234aae8838.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/AtlasDashboardGraphic-042f01c5c5f7a5d7ca1a.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/BackgroundGlobe-64953aedea5f231d07b7.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Bootstrapper-BDJTDB7T.js
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/BrandModal-77aed9e8900fc44f1554.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/BrandModalGraphic-e9e1fc8f4c2bf8a9bd44.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CardField-739e285edeecea986ed0.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CaseStudyCard-bfd1dd9dc828a57a4622.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CheckoutFormGraphic-b2509d821651cbc82709.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CodeEditor-6eacb8e42c7465ddd557.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CodeEditorAsciiLoader-c1a350cb85f7a989f599.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CodeEditorAutocomplete-dc62d89d9e2121e48baf.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CodeEditorCursor-517911b19e66c94dafbb.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CodeEditorLineNumbers-0eded1c84476ec649145.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CodeEditorStatusBar-24c7c84123b2b6e4f091.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CodeSyntax-e0768ef33503219c518d.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CodeTerminal-ca23848effb056969042.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CopyTitle-c641e014b3946628bc95.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CustomersCaseStudyCardBackground-853f685776c80eaa0089
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CustomersCaseStudyCardOverlay-09e527d11b6471566771.cs
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CustomersCaseStudyCarousel-6ad3f0dce85838a77d8b.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CustomersCaseStudyCarouselNavGroup-41fa77c08914b1b778
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CustomersCaseStudyCarouselNavItem-fd5a8f8fac232f661b3
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/CustomersCaseStudyCarouselNavTrack-1380f9c2e275695c5e
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/DevelopersCodeEditor-eadbd8bbcdedd8edbbe3.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/DomGraphic-5a317684eb2b9d1f76d2.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/EnterpriseCarouselAside-b05102a0b81de0c11406.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Field-ea906aa31d4012757deb.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Flag-0530f6f8a0ae1e011860.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Form-401d42df82b6e8482f06.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Frontdoor-4513faa7ba2dd8949ee2.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorBillingAnimation-fa25c03988d3d1f36a35.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorBillingGraphic-c9e3aeda05ab14a454b1.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorBillingGraphicLogo-2cee099c6b840fb58d86.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorBillingGraphicTier-c39e78ce45a9380bf169.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorConnectAnimation-f4ce77b995975fa55335.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorConnectFlowDiagram-bcf0320e44c152e1ca03.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorConnectFlowDiagramOrderNotification-12b17d16
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorConnectGraphic-30f9ea68cfc29ae65dd5.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorConnectGraphicCell-18f4786ec794a3671860.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorConnection-192c60d5ff4ac27dec4f.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorGraphic-ab42746a2bb65d850037.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorGraphicImage-ff4d221174ca6cab4402.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorGraphicOutline-cbb29a27650befdb3913.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorIcon-f22f360dadf72ca61a47.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorIconGrid-f5ddeb3e7d94044a9646.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorIconOutline-2c0929473dcd28db2e99.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorIssuingAnimation-ba03e22ccfea12d68c6c.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorIssuingCard-b80b51aa94acdc8a688e.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorPaymentsAnimation-71bdbfda51a40294b593.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorPaymentsGraphic-45fe2caceea82c749c40.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorStandaloneAnimation-5aefb3912ae346b5293e.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorStickyAnimation-4ea4d6a5e9b414987337.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorSubanimation-b9163916332f2a67d464.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorSuiteAnimation-683958a93f82ca151ea7.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Global-f1eeffae1de3242fcca9.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/GlobalizationPicker-cb59e0de1d5c3aeaa184.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Globe-b2159f87180df559d2e8.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/GradientLegend-f1cabc70fbf82f3e9c05.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/GraphicForm-7d75b8ba72e0304da82c.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/GraphicFormField-33f78921d62dc714d424.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/GraphicFormFieldInput-3d704dfad5ff81d0e80b.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/GraphicFormFieldInputGrid-281fa6a92c2e3caa14c9.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/GraphicFormFieldList-5317148749a9268ec04d.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/GridLayout-decb2efdf862023c83af.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/HorizontalOverflowContainer-0b85e8f46a0db21a6ef9.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Icon-646136cd9e336d8c18d7.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/InvoicingFeatureGraphic-db95f6cbfa638cca151e.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/List-f0dd86d0ff490fdd7e75.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/LocaleControl-09ce62c550a15bb456e5.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/LowCodeNoCode-de32a3423ce25c839d82.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/MobileStickyNav-5c229e49df6b7e5315d7.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/PaymentLinksFeatureGraphic-6c9382201d4ede7c851a.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Picture-3f0067e6b392244c9bda.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/ProductBadge-aa2497ab8abdcc6a3d34.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/ProductFeatureCard-4476eb8c383446c052aa.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/ProductListing-3e17d7acee941b127dd1.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/RowLayout-9272a8ee72d3dac4a6ef.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/SiteFooterSection-1c0a8e1d30b69be4ef69.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/SiteFooterSectionSupportLinkList-US-bf39e598e6b8dad8c
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/StartUp-889f28d89767c8a9d60f.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Stripe-b3679504f08482f96a0d.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/StripeProductUsed-448c2bc0913c408517f4.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/StripeProductUsedList-4a8c16b5e5f3fa51247d.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/StripeSet-423109ad4bf57a2a011c.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/Track-2f2fce741fc3d8fc8450.css
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/ac6713d5.woff)
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/f965fdf4.woff2
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/f965fdf4.woff2)
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/imt-003b683ca7d12015ac17ebdd1fcf526d.js
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/mkt-statics-srv/assets/store-936f0d847a16164e7f6b15d74659c4a9.html
Source: chromecache_126.2.dr	String found in binary or memory: https://b.stripecdn.com/stripethirdparty-srv/assets/
Source: chromecache_164.2.dr, chromecache_149.2.dr	String found in binary or memory: https://cda-push-dev.sandbox.googleapis.com/upload/
Source: chromecache_182.2.dr, chromecache_117.2.dr	String found in binary or memory: https://clients6.google.com
Source: chromecache_180.2.dr	String found in binary or memory: https://codedesign.ai/
Source: chromecache_149.2.dr	String found in binary or memory: https://content-push.googleapis.com/upload/
Source: chromecache_182.2.dr, chromecache_117.2.dr	String found in binary or memory: https://content.googleapis.com
Source: chromecache_161.2.dr, chromecache_158.2.dr	String found in binary or memory: https://csp.withgoogle.com/csp/lcreport/
Source: chromecache_126.2.dr	String found in binary or memory: https://dashboard.stripe.com/
Source: chromecache_126.2.dr	String found in binary or memory: https://dashboard.stripe.com/register
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/api
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/billing
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/connect
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/development
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/invoicing/hosted-invoice-page
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/libraries
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/no-code
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/no-code/payment-links
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/no-code/tap-to-pay
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/payments
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/payments/checkout
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/stripe-apps
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/terminal
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/upgrades#api-changelog
Source: chromecache_126.2.dr	String found in binary or memory: https://docs.stripe.com/upgrades#api-versions
Source: chromecache_182.2.dr, chromecache_117.2.dr	String found in binary or memory: https://domains.google.com/suggest/flow
Source: chromecache_164.2.dr, chromecache_149.2.dr	String found in binary or memory: https://embeddedassistant-webchannel.googleapis.com/google.assistant.embedded.v1.EmbeddedAssistant/A
Source: chromecache_145.2.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_145.2.dr	String found in binary or memory: https://fontawesome.com/license/free
Source: chromecache_173.2.dr, chromecache_157.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/alert/v11/gm_grey200-36dp/2x/gm_alert_gm_grey200_3
Source: chromecache_173.2.dr, chromecache_157.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/alert/v11/gm_grey600-36dp/2x/gm_alert_gm_grey600_3
Source: chromecache_173.2.dr, chromecache_157.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/close/v19/gm_grey200-24dp/1x/gm_close_gm_grey200_2
Source: chromecache_173.2.dr, chromecache_157.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/close/v19/gm_grey600-24dp/1x/gm_close_gm_grey600_2
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7SUc.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1pL7SUc.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa25L7SUc.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa2JL7SUc.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa2ZL7SUc.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa2pL7SUc.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/kumbhsans/v22/c4mw1n92AsfhuCq6tVsaoIx1LQICk0boNoq0ShMhVo0iPw.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/kumbhsans/v22/c4mw1n92AsfhuCq6tVsaoIx1LQICk0boNoq0ShMzVo0iPw.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/kumbhsans/v22/c4mw1n92AsfhuCq6tVsaoIx1LQICk0boNoq0ShNBVo0iPw.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/kumbhsans/v22/c4mw1n92AsfhuCq6tVsaoIx1LQICk0boNoq0ShNPVo0.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/manrope/v15/xn7gYHE41ni1AdIRggOxSuXd.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/manrope/v15/xn7gYHE41ni1AdIRggSxSuXd.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/manrope/v15/xn7gYHE41ni1AdIRggexSg.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/manrope/v15/xn7gYHE41ni1AdIRggixSuXd.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/manrope/v15/xn7gYHE41ni1AdIRggmxSuXd.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/manrope/v15/xn7gYHE41ni1AdIRggqxSuXd.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notosanstc/v36/-nF7OG829Oofr2wohFbTp9i1NiEKM_Y.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notosanstc/v36/-nF7OG829Oofr2wohFbTp9i1NyEKM_Y.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notosanstc/v36/-nF7OG829Oofr2wohFbTp9i1OCEK.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notosanstc/v36/-nF7OG829Oofr2wohFbTp9i1PCEKM_Y.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notosanstc/v36/-nF7OG829Oofr2wohFbTp9iFOkMQAewlpbGXhhyYs0QF3kPVyLylzU95v
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8u
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS2mu1aB.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSOmu1aB.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSymu1aB.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu1aB.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLBT5Z1JlFc-K.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLBT5Z1xlFQ.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDD4Z1JlFc-K.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1JlFc-K.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLFj_Z1JlFc-K.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLFj_Z1xlFQ.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1JlFc-K.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJnecmNE.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrLPTucHtA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrLPTufntAKPY.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1MmgVxEIzIFKw.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1MmgVxFIzIFKw.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1MmgVxGIzIFKw.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1MmgVxHIzIFKw.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1MmgVxIIzI.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1MmgVxLIzIFKw.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1MmgVxMIzIFKw.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBBc4.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBxc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCBc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCRc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfABc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfBBc4.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfBxc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCBc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCRc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfChc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCxc4EsA.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_122.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_126.2.dr	String found in binary or memory: https://github.com/stripe-samples
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/1ctgMwd2p9euFW9pPSM7jR/451d5e987ca7fa14060526e6b1766a8b
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/1lCtk48IB26AGgXdHsrLrt/ad2816d6a744d5249c19ba66be22b0a6
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/2EOOpI2mMZgHYBlbO44zWV/5a6c5d37402652c80567ec942c733a43
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/3AGidihOJl4nH9D1vDjM84/9540155d584be52fc54c443b6efa4ae6
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/4jq1Wguyus7CA7yc2kxMgn/cf7b01aadf305daef40ac8acab654510
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/4zeFefnpB8yh7U3qSQRktP/d583ee93dd3d8910fa27296748699a0f
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/5C5LvT3YZvRTGYn7uabXGj/7da8063dc77c67b7f66a1479f47409c8
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/5DaqGgXeMbxSIqQj9WSqSF/8142c0c6e15b27a8bb6c8a0f8a5d4dfb
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/5F0uhf7cRg9vhR6NmgWzzI/664e14ddebb91375f89f8dcc75242dc0
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/5epSdhifMhjZWOkOxK9xG8/05715737a672f2069c17903d2acae585
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/5hEVwGQfvUQhsMjfASiuA/db4e12749695dbf5735787879ae56e96/
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/5k7VeoAQQDK7032fIF6PEU/25f3670f5f4508103ee77afd92b7e074
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/6c56LuWUxcACbVkv4fqszI/d0a88e48d11a88b97daf896246ac40da
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/6iLtU8qBUtE42tshpmZxY2/ac5b7b7a181524237b942e43620fceef
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/7C4ROeiaqUa0HwwBU9EL9l/f9c57cccfc64de8869be7e7a9556fec9
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/7jjWJlm9NHgLI7SV98B0Dg/ea1ae753f3764897fa4333311e41f496
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/7szA8TJHWKDIEuCbu6Yblm/4548db61648d063fb7e7dddfca04ab79
Source: chromecache_126.2.dr	String found in binary or memory: https://images.stripeassets.com/fzn2n1nzq965/wEsTNDVgdEqaPAKkFdqnL/c69e1649432f1b772d86d81e423b7e3e/
Source: chromecache_131.2.dr	String found in binary or memory: https://js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js
Source: chromecache_161.2.dr, chromecache_158.2.dr	String found in binary or memory: https://lens.google.com
Source: chromecache_160.2.dr, chromecache_106.2.dr	String found in binary or memory: https://lens.google.com/gen204
Source: chromecache_158.2.dr	String found in binary or memory: https://lensfrontend-pa.clients6.google.com/v1/crupload
Source: chromecache_161.2.dr, chromecache_158.2.dr	String found in binary or memory: https://lensfrontend-pa.clients6.google.com/v1/gsessionid
Source: chromecache_108.2.dr, chromecache_107.2.dr	String found in binary or memory: https://m.stripe.network
Source: chromecache_126.2.dr	String found in binary or memory: https://marketplace.stripe.com
Source: chromecache_126.2.dr	String found in binary or memory: https://marketplace.stripe.com/
Source: chromecache_126.2.dr	String found in binary or memory: https://marketplace.stripe.com/collections/enterprise
Source: chromecache_132.2.dr	String found in binary or memory: https://ogads-pa.googleapis.com
Source: chromecache_175.2.dr	String found in binary or memory: https://ogs.google.com/
Source: chromecache_132.2.dr	String found in binary or memory: https://ogs.google.com/widget/app/so?eom=1
Source: chromecache_175.2.dr	String found in binary or memory: https://ogs.google.com/widget/callout
Source: chromecache_132.2.dr	String found in binary or memory: https://ogs.google.com/widget/callout?eom=1
Source: chromecache_132.2.dr	String found in binary or memory: https://ogs.google.com/widget/callout?prid=19037050
Source: chromecache_157.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_117.2.dr	String found in binary or memory: https://plus.google.com
Source: chromecache_182.2.dr, chromecache_117.2.dr	String found in binary or memory: https://plus.googleapis.com
Source: chromecache_126.2.dr	String found in binary or memory: https://press.stripe.com/
Source: chromecache_126.2.dr	String found in binary or memory: https://privacy.stripe.com/
Source: chromecache_164.2.dr, chromecache_149.2.dr	String found in binary or memory: https://push.clients6.google.com/upload/
Source: chromecache_126.2.dr	String found in binary or memory: https://q.stripe.com
Source: chromecache_126.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_175.2.dr	String found in binary or memory: https://ssl.gstatic.com
Source: chromecache_127.2.dr, chromecache_118.2.dr	String found in binary or memory: https://ssl.gstatic.com/images/icons/material/system/1x/done_black_16dp.png)
Source: chromecache_127.2.dr, chromecache_118.2.dr	String found in binary or memory: https://ssl.gstatic.com/images/icons/material/system/1x/done_white_16dp.png)
Source: chromecache_127.2.dr, chromecache_118.2.dr	String found in binary or memory: https://ssl.gstatic.com/ui/v1/menu/checkmark2-light.png)
Source: chromecache_127.2.dr, chromecache_118.2.dr	String found in binary or memory: https://ssl.gstatic.com/ui/v1/menu/checkmark2.png)
Source: chromecache_126.2.dr	String found in binary or memory: https://status.stripe.com/
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/#organization
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/ae
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/at
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/au
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/br
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/contact/sales
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/de
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/de-be
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/de-ch
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/de-li
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/de-lu
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-at
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-be
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-bg
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-br
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-ca
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-ch
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-cy
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-cz
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-de
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-dk
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-ee
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-es
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-fi
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-fr
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-gi
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-gr
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-hk
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-hr
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-hu
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-it
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-jp
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-li
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-lt
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-lu
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-lv
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-mt
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-mx
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-my
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-nl
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-no
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-pl
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-pt
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-ro
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-se
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-sg
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-si
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-sk
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/en-th
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/es
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/es-us
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/fr
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/fr-be
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/fr-ca
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/fr-ch
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/fr-lu
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/gb
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/guides
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/ie
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/in
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/issuing
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/it
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/it-ch
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/it-hr
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/it-si
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/jp
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/mx
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/nl
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/nl-be
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/nz
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/pricing
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/privacy
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/pt-pt
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/radar
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/se
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/sigma
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/spc/licenses
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/sv-fi
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/th
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/us
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/use-cases/global-businesses
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/zh-hk
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/zh-my
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/zh-sg
Source: chromecache_126.2.dr	String found in binary or memory: https://stripe.com/zh-us
Source: chromecache_126.2.dr	String found in binary or memory: https://stripesessions.com/?utm_medium=owned-surfaces&utm_source=45e0&utm_campaign=US%2FCA_40cb&utm_
Source: chromecache_164.2.dr, chromecache_149.2.dr	String found in binary or memory: https://support.google.com/
Source: chromecache_161.2.dr, chromecache_158.2.dr	String found in binary or memory: https://support.google.com/websearch/answer/106230
Source: chromecache_126.2.dr	String found in binary or memory: https://support.stripe.com/?referrerLocale=en-us
Source: chromecache_126.2.dr	String found in binary or memory: https://twitter.com/stripe
Source: chromecache_188.2.dr, chromecache_161.2.dr, chromecache_110.2.dr, chromecache_158.2.dr	String found in binary or memory: https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
Source: chromecache_182.2.dr, chromecache_117.2.dr	String found in binary or memory: https://workspace.google.com/:session_prefix:marketplace/appfinder?usegapi=1
Source: chromecache_161.2.dr, chromecache_158.2.dr	String found in binary or memory: https://www.google.
Source: chromecache_175.2.dr, chromecache_173.2.dr, chromecache_157.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_175.2.dr	String found in binary or memory: https://www.google.com"
Source: chromecache_132.2.dr	String found in binary or memory: https://www.google.com/_/og/promos/
Source: chromecache_175.2.dr	String found in binary or memory: https://www.google.com/images/hpp/ic_wahlberg_product_core_48.png8.png
Source: chromecache_132.2.dr	String found in binary or memory: https://www.google.com/intl/en/about/products
Source: chromecache_188.2.dr, chromecache_161.2.dr, chromecache_110.2.dr, chromecache_158.2.dr	String found in binary or memory: https://www.google.com/log?format=json&hasfast=true
Source: chromecache_164.2.dr, chromecache_149.2.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: chromecache_175.2.dr	String found in binary or memory: https://www.google.com/url?q
Source: chromecache_132.2.dr, chromecache_175.2.dr	String found in binary or memory: https://www.google.com/url?q=https://accounts.google.com/signin/v2/identifier%3Fec%3Dfutura_hpp_co_s
Source: chromecache_117.2.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.me
Source: chromecache_117.2.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.people.recommended
Source: chromecache_175.2.dr	String found in binary or memory: https://www.gstatic.com
Source: chromecache_175.2.dr	String found in binary or memory: https://www.gstatic.com/_/boq-one-google/_/r/
Source: chromecache_175.2.dr	String found in binary or memory: https://www.gstatic.com/_/mss/boq-one-google/_/js/k=boq-one-google.OneGoogleWidgetUi.en.wOL0bu6_xx0.
Source: chromecache_173.2.dr, chromecache_157.2.dr	String found in binary or memory: https://www.gstatic.com/gb/html/afbp.html
Source: chromecache_173.2.dr, chromecache_157.2.dr	String found in binary or memory: https://www.gstatic.com/images/icons/material/anim/mspin/mspin_googcolor_medium.css
Source: chromecache_173.2.dr, chromecache_157.2.dr	String found in binary or memory: https://www.gstatic.com/images/icons/material/anim/mspin/mspin_googcolor_small.css
Source: chromecache_157.2.dr	String found in binary or memory: https://www.gstatic.com/images/icons/material/system/1x/broken_image_grey600_18dp.png
Source: chromecache_173.2.dr, chromecache_157.2.dr	String found in binary or memory: https://www.gstatic.com/images/icons/material/system/2x/broken_image_grey600_18dp.png
Source: chromecache_132.2.dr	String found in binary or memory: https://www.gstatic.com/og/_/js/k=og.qtm.en_US.Z8FBMQoacoc.2019.O/rt=j/m=qabr
Source: chromecache_132.2.dr	String found in binary or memory: https://www.gstatic.com/og/_/ss/k=og.qtm.zyyRgCCaN80.L.W.O/m=qcwid
Source: chromecache_149.2.dr	String found in binary or memory: https://www.gstatic.com/uservoice/feedback/client/web/
Source: chromecache_126.2.dr	String found in binary or memory: https://www.linkedin.com/company/stripe/
Source: chromecache_126.2.dr	String found in binary or memory: https://youtube.com/

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49939 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49940 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49947 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49941
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49939
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49938
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49936
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49934
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49936 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 49937 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: unknown	HTTPS traffic detected: 23.218.208.109:443 -> 192.168.2.4:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.218.208.109:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.218.208.109:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.4:49801 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.43:443 -> 192.168.2.4:49802 version: TLS 1.2

Source: classification engine

Classification label: mal48.phis.win@21/143@44/18

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=1992,i,3117396300510305123,13054745563636875955,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://0azeevmdi7.codedesign.app/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=1992,i,3117396300510305123,13054745563636875955,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source:	Binary string: a);e.searchParams.set("msc","gwsrpc");_.hja(e.searchParams,!1,!1);c=e.toString();e={Txa:")]}'\n\n",withCredentials:_.pDb()};c=d?qDb(c,a,e):rDb(c,e);var g=b.Maa();return c.then(function(h){return new g(h)})},tDb=function(a,b){b&&b.Txa&&(b=b.Txa,_.ig(a,b)&&(a=a.substring(b.length)));return JSON.parse(a)},qDb=function(a,b,c){return _.gDb("POST",a,b,c).then(function(d){return tDb(d.responseText,c)})},rDb=function(a,b){return _.gDb("GET",a,null,b).then(function(c){return tDb(c.responseText,b)})},lDb=new Map, source: chromecache_164.2.dr, chromecache_149.2.dr
Source:	Binary string: _.MDb.prototype.handle=function(a,b,c){if(!this.matches(a))return!1;var d=a.ju();d=this.oa(d,b);Array.isArray(d)\|\|(d=[d]);d=_.ei(d,function(e){return!!e});this.ka(d,c,a,b);return!0};var NDb=function(a){var b=new WeakMap;return function(c){b.has(c)\|\|b.set(c,a(c));return b.get(c)}};var ODb=function(a,b,c,d){_.MDb.call(this,a,b,d);this.wa=c};_.G(ODb,_.MDb);ODb.prototype.ka=function(a,b,c,d){var e=c.ju();_.Qa(a,function(f){var g=this,h=NDb(function(k){return g.wa(e,d,k)});f instanceof _.r?b.update(f,h,!1):LDb(b,f,h);this.eventManager.addEvent({Rj:c.mj(),request:e,Zta:f,c3:h,sqa:"n"})},this)};_.PDb=function(a,b,c,d){var e=_.uhb.getInstance();a=new ODb(a,b,c,d);e.oa.push(a)}; source: chromecache_164.2.dr, chromecache_149.2.dr
Source:	Binary string: _.XDb.prototype.hb="X00L7";_.YDb=function(a){this.Ea=_.n(a)};_.G(_.YDb,_.r);_.ZDb=function(a,b){return _.hh(a,2,b)};_.YDb.prototype.hb="dE0Zid";_.$Db=function(a){this.Ea=_.n(a)};_.G(_.$Db,_.r);var aEb=function(a){this.Ea=_.n(a)};_.G(aEb,_.r);aEb.prototype.Jp=function(){return _.Pi(this,1)};aEb.prototype.hb="kgvkKd";var bEb=function(a){this.Ea=_.n(a)};_.G(bEb,_.r);bEb.prototype.getStatus=function(){return _.t(this,aEb,1)};bEb.prototype.Un=function(){return _.ri(this,aEb,1)};bEb.prototype.hb="AWK1P";_.PDb({requestType:_.$Db,responseType:bEb},function(){return _.YDb},function(a,b,c){var d=_.t(a,_.UDb,1);return _.ZDb(c,_.Pf(c,_.XDb,2,_.Qf()).filter(function(e){e=_.VDb(_.t(e,_.xv,2));return!(_.Oi(e,1)===_.Oi(d,1)&&_.Oi(e,2)===_.Oi(d,2)&&_.ej(_.t(e,_.WDb,3),1,_.TDb)===_.ej(_.t(d,_.WDb,3),1,_.TDb))}))},"QOndhf");new _.Lg(_.$Db);new _.Lg(bEb);_.cEb=new _.og("TTP4dc",bEb,_.$Db,[{key:_.Eq,value:!1},{key:_.Fq,value:"/ContributionsService.WriteReaction"}]); source: chromecache_164.2.dr, chromecache_149.2.dr
Source:	Binary string: mDb=new Set;_.oDb=function(){};_.nDb=function(){return""};_.pDb=function(){return!1};_.uDb=function(){_.no.call(this)};_.G(_.uDb,_.oo);_.uDb.Ha=_.oo.Ha;_.uDb.prototype.fetch=function(a){return sDb(a).then(function(b){return a.mj().ku(b)})};_.uDb.prototype.Vb=function(a){return _.zib.getInstance().execute(function(){return sDb(a)}).then(function(b){return a.mj().ku(b)})};_.qo(_.kOa,_.uDb);vv("EXtmgd","web/AdBlockingService/BlockAds",!0);vv("WWkTtd","web/AdBlockingService/BlockAdsUndo",!0);vv("GTKGqe","retry/AdsEmbeddedReportService/UpdateSearchTermStatus",!0);vv("st5iIf","retry/AdsEmbeddedReportService/UpdateCampaignBudget",!0);vv("jNxjKc","retry/AdsEmbeddedReportService/UpdateCampaignStatus",!0);vv("QVhSIb","retry/AdsEmbeddedReportService/MutateCreative",!0);vv("q1ykpd","retry/AdsEmbeddedReportService/ValidateCreative");vv("wwfc4c","retry/AdsEmbeddedReportService/MutateKeywordTheme",!0);vv("zpNKu","retry/AdsEmbeddedReportService/LoggingActivities");vv("ADtCDc","retry/AdsEmbeddedReportService/GetBudgetSuggestion"); source: chromecache_164.2.dr, chromecache_149.2.dr

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	1 Browser Extensions	1 Process Injection	1 Process Injection	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	Rootkit	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
https://0azeevmdi7.codedesign.app/	0%	Avira URL Cloud	safe

Source	Detection	Scanner	Label
https://0azeevmdi7.codedesign.app/_next/static/xg_hCbnfA67zv-9idGfYU/_middlewareManifest.js	0%	Avira URL Cloud	safe
https://lottones.com/mah/o/?c3Y9bzM2NV8xX25vbSZyYW5kPU4wZHZjRVE9JnVpZD1VU0VSMjAxMTIwMjRVMzMxMTIwMTk=N0123N[EMAIL]	0%	Avira URL Cloud	safe
https://0azeevmdi7.codedesign.app/_next/static/xg_hCbnfA67zv-9idGfYU/_buildManifest.js	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
d1tcqh4bio8cty.cloudfront.net	108.158.75.118	true	false	high
google.com	142.250.181.142	true	false	high
www3.l.google.com	142.250.181.142	true	false	high
play.google.com	172.217.19.206	true	false	high
plus.l.google.com	172.217.17.78	true	false	high
m.stripe.com	35.167.129.248	true	false	high
cloudinary.map.fastly.net	151.101.129.137	true	false	high
stripe.com	18.202.131.124	true	false	high
www.google.com	142.250.181.100	true	false	high
lottones.com	104.21.87.110	true	false	unknown
0azeevmdi7.codedesign.app	20.219.20.151	true	false	unknown
stripecdn.map.fastly.net	151.101.192.176	true	false	high
res.cloudinary.com	unknown	unknown	false	high
m.stripe.network	unknown	unknown	false	high
ogs.google.com	unknown	unknown	false	high
use.fontawesome.com	unknown	unknown	false	high
js.stripe.com	unknown	unknown	false	high
apis.google.com	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://res.cloudinary.com/dmuecdqxy/q_auto/v1733242206/static/logo-ltfoodspng_1733242204_91211.png	false		high
https://js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js	false		high
https://www.google.com/xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/ck=xjs.hd._zVEtO-Y3ZI.L.B1.O/am=CKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAACYAGAXIEAAAAAAAAwAQBBAEAQACAEEEACsAAAQDgCgBACAAgAEIBSAR5kCowARQEAGACUAiR2AAFAQAYAAgABgABk0BKICEAUAAAABAAAAAAEAAABDAggEAOgACAADQCQAAKIHAQAAAAAEAQScCQBDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/ujg=1/rs=ACT90oHnF-2eESkoIqrmCwbBr7zs3TgkUQ/m=syxu,syxx,syxw,sywe,sywf,syxv,syxs,syxt,KHourd,MpJwZc,UUJqVe,sy7d,sOXFj,sy7c,s39S4,oGtAuc,NTMZac,nAFL3,sy7q,sy7p,q0xTif,y05UD,sy12f,sy18v,sy18p,syx0,sy18i,sywz,sywy,sywx,sy18o,sy13p,sy18f,sy13t,sy18n,sy12b,sy18j,sygz,sy13u,sy18q,sy122,sy18m,sy18k,sy18l,sy18s,sy18a,sy18g,sy189,sy18e,sy18b,sy186,sy14p,sy13w,sy13x,syx5,syx6,epYOx?xjs=s3	false		high
https://lottones.com/mah/o/?c3Y9bzM2NV8xX25vbSZyYW5kPU4wZHZjRVE9JnVpZD1VU0VSMjAxMTIwMjRVMzMxMTIwMTk=N0123N[EMAIL]	false	Avira URL Cloud: safe	unknown
https://www.google.com/gen_204?atyp=csi&ei=qjtPZ7aIIfWmkdUP9IykuAg&s=webhp&t=all&imn=11&ima=1&imad=0&imac=1&ddl=1&wh=907&aftie=NF&aft=1&aftp=907&adh=&cls=0.000046949291965270124&ime=1&imex=1&imeh=0&imeha=0&imehb=0&imea=0&imeb=0&imel=0&imed=0&imeeb=0&scp=0&cb=203932&ucb=203932&ts=204232&dt=&mem=ujhs.10,tjhs.14,jhsl.2173,dm.8&nv=ne.1,feid.a7a46b40-2139-4283-9eae-3e02ab06e77e&net=dl.1400,ect.3g,rtt.600,sd.0&hp=&sys=hc.4&p=bs.true&rt=hst.31,cbt.251,prt.2828,afti.3269,aft.3269,aftqf.3270,xjses.5658,xjsee.5717,xjs.5718,lcp.3280,fcp.2831,wsrt.2671,cst.1754,dnst.0,rqst.1698,rspt.786,sslt.1753,rqstt.1759,unt.2,cstt.4,dit.5507&zx=1733245871300&opi=89978449	false		high
https://www.google.com/xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAABQAAACAAAAAAEAAAAAAAAAAQBAAEAQAAAEAAAAsAAAQDACAAAAAAgAAIACAR5kCgAARAAAAACAAgACAAAAAAQAAgAAAAAAAAIACAAAAAAABAAAAAAAAAAABAgAAAAAAAAAAAAQAAKAHAAAAAAAAAAQEAABDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQEBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/rs=ACT90oHpqn2QV7zO9kI8oYEo6RYh3xeHnQ/m=syt1,syt0,VsqSCc,sy1ay,P10Owf,sy19r,sy19p,sysf,gSZvdb,syyb,syya,WlNQGd,sysj,sysh,sysg,syse,DPreE,syyo,syym,nabPbb,syy5,syy3,sylt,sypt,CnSW2d,kQvlef,syyn,fXO0xe?xjs=s4	false		high
https://www.google.com/gen_204?s=webhp&t=cap&atyp=csi&ei=qjtPZ7aIIfWmkdUP9IykuAg&rt=wsrt.2671,cbt.251,hst.31&opi=89978449&dt=&ts=300	false		high
https://www.google.com/favicon.ico	false		high
https://0azeevmdi7.codedesign.app/_next/static/xg_hCbnfA67zv-9idGfYU/_middlewareManifest.js	true	Avira URL Cloud: safe	unknown
https://www.google.com/logos/doodles/2024/seasonal-holidays-2024-6753651837110333-law.gif	false		high
https://www.google.com/complete/search?q&cp=0&client=gws-wiz&xssi=t&gs_pcrt=2&hl=en&authuser=0&psi=qjtPZ7aIIfWmkdUP9IykuAg.1733245871329&dpr=1&nolsbt=1	false		high
https://www.google.com/xjs/_/ss/k=xjs.hd._zVEtO-Y3ZI.L.B1.O/am=CKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAAAYAGAXIEAAAAAAAAwAQBBAAAQACAEEEACsAAAAAgCgBACAAgAEABQAAAACowAQQEAGACUACR2AAFAQAIAAgABgABk0BKICEAUAAAAAAAAAAAEAAABDAAgEAOgACAADQCQAAKIHAQAAAAAEAQCYCQBDwAAEAAAAAAAAkAEAAAAMKSAAAAAAAAAAAAAAAAAAQBAMBQAUBAAAAAAAAAAAAAAAAAAAgEATBA/d=0/br=1/rs=ACT90oG-Eru8S6ZYG_mDj6maBRsW1oKs4w/m=sylt,sypt?xjs=s4	false		high
https://www.google.com/gen_204?atyp=csi&ei=qjtPZ7aIIfWmkdUP9IykuAg&s=promo&rt=hpbas.12460,hpbarr.2804&zx=1733245880842&opi=89978449	false		high
https://www.google.com/gen_204?atyp=i&ei=qjtPZ7aIIfWmkdUP9IykuAg&dt19=2&prm23=0&zx=1733245878042&opi=89978449	false		high
https://www.google.com/xjs/_/js/k=xjs.hd.en_US.g-nn3iYoll8.es5.O/ck=xjs.hd._zVEtO-Y3ZI.L.B1.O/am=CKkCAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAAAAAAAEHQnAACYAGAXIEAAAAAAAAwAQBBAEAQACAEEEACsAAAQDgCgBACAAgAEIBSAR5kCowARQEAGACUAiR2AAFAQAYAAgABgABk0BKICEAUAAAABAAAAAAEAAABDAggEAOgACAADQCQAAKIHAQAAAAAEAQScCQBDwAAEAAAAAAAA9AFA8AAMKSwAAAAAAAAAAAAAAAAESBDMhQQUBCAAAAAAAAAAAAAAAAAAgEgTFzY/d=0/dg=0/br=1/ujg=1/rs=ACT90oHnF-2eESkoIqrmCwbBr7zs3TgkUQ/m=sb_wiz,aa,abd,sy17h,syfu,syfl,syfj,syfk,syfm,syfv,syfw,syfq,syfr,syfp,syfo,syel,syfn,syfd,syfc,syfe,syfb,syfg,sy16c,syg6,sy17f,syyh,syg5,syg4,syg3,async,ifl,pHXghd,sf,syic,sy3jj,sonic,sy3jp,syhi,sygy,sy3j2,sy3j5,sy265,sydz,sy9w,sy9h,sy9g,spch,syte,sytd,rtH1bd,sy19c,sy15f,sy14w,sy125,syd8,sy19b,SMquOb,sy89,sy88,syez,syf8,syf6,syf5,syey,syew,syeu,sy83,sy80,sy82,syet,syex,syes,sybf,syba,sybd,syal,syar,syak,syaj,syai,sya6,sybb,syaz,syb0,syb6,syap,syb5,syay,syav,syag,syan,syb1,sya8,syaa,syab,sya7,syaq,syaf,syac,sybi,sya2,sy9z,sybh,sy9r,sy9j,sy9m,sy9y,sya5,syb2,syer,syeq,syen,syem,sy86,uxMpU,syei,sybp,sybn,sybj,syat,sybl,sybg,sy8p,sy8o,sy8n,Mlhmy,QGR0gd,aurFic,sy8y,fKUV3e,OTA3Ae,sy8a,OmgaI,EEDORb,PoEs9b,Pjplud,sy8j,A1yn5d,YIZmRd,uY49fb,sy7y,sy7w,sy7u,sy7v,sy7t,sy7s,byfTOb,lsjVmc,LEikZe,kWgXee,ovKuLd,sgY6Zb,qafBPd,ebZ3mb,dowIGb,sy19f,sy19d,syxe,sytj,d5EhJe,sy19w,fCxEDd,syup,sy19v,sy19u,sy19t,sy19m,sy19j,sy19k,sy174,sy16y,syx2,syx1,T1HOxc,sy19l,sy19i,zx30Y,sy19y,sy19x,sy19q,sy15r,Wo3n8,sysv,loL8vb,sysz,sysy,sysx,ms4mZb,syrx,B2qlPe,syua,NzU6V,syyt,sygi,zGLm3b,syvu,syvv,syvl,DhPYme,syxz?xjs=s3	false		high
https://www.google.com/gen_204?atyp=csi&ei=uTtPZ7DFM4b_7_UPlr_iuQg&s=async&astyp=hpba&ima=0&imn=0&mem=ujhs.10,tjhs.14,jhsl.2173,dm.8&nv=ne.1,feid.a7a46b40-2139-4283-9eae-3e02ab06e77e&hp=&rt=ttfb.2796,st.2798,bs.27,aaft.2799,acrt.2801,art.2802&zx=1733245880840&opi=89978449	false		high
https://stripe.com/	false		high
https://0azeevmdi7.codedesign.app/_next/static/xg_hCbnfA67zv-9idGfYU/_buildManifest.js	true	Avira URL Cloud: safe	unknown

URLs from Memory and Binaries

Name	Source	Malicious	Reputation
https://ogs.google.com/	chromecache_175.2.dr	false	high
https://stripe.com/spc/licenses	chromecache_126.2.dr	false	high
https://twitter.com/stripe	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/CodeEditorAutocomplete-dc62d89d9e2121e48baf.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/Frontdoor-4513faa7ba2dd8949ee2.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/CustomersCaseStudyCarouselNavItem-fd5a8f8fac232f661b3	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/StripeSet-423109ad4bf57a2a011c.css	chromecache_126.2.dr	false	high
https://docs.stripe.com	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/CheckoutFormGraphic-b2509d821651cbc82709.css	chromecache_126.2.dr	false	high
https://stripe.com/de-ch	chromecache_126.2.dr	false	high
https://stripe.com/en-li	chromecache_126.2.dr	false	high
https://ogs.google.com/widget/callout	chromecache_175.2.dr	false	high
https://press.stripe.com/	chromecache_126.2.dr	false	high
https://stripe.com/en-lu	chromecache_126.2.dr	false	high
https://stripe.com/en-lt	chromecache_126.2.dr	false	high
https://stripe.com/en-lv	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/AnimatedIcon-0b7478e1f9234aae8838.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/BackgroundGlobe-64953aedea5f231d07b7.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/CodeEditorStatusBar-24c7c84123b2b6e4f091.css	chromecache_126.2.dr	false	high
https://fontawesome.com	chromecache_145.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorStickyAnimation-4ea4d6a5e9b414987337.css	chromecache_126.2.dr	false	high
https://stripe.com/en-my	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/Field-ea906aa31d4012757deb.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/ProductFeatureCard-4476eb8c383446c052aa.css	chromecache_126.2.dr	false	high
https://stripe.com/ie	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/CodeEditorAsciiLoader-c1a350cb85f7a989f599.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/Icon-646136cd9e336d8c18d7.css	chromecache_126.2.dr	false	high
https://docs.stripe.com/upgrades#api-changelog	chromecache_126.2.dr	false	high
https://ogs.google.com/widget/callout?eom=1	chromecache_132.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/DevelopersCodeEditor-eadbd8bbcdedd8edbbe3.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/GraphicFormFieldInput-3d704dfad5ff81d0e80b.css	chromecache_126.2.dr	false	high
https://m.stripe.network	chromecache_108.2.dr, chromecache_107.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/CustomersCaseStudyCarouselNavTrack-1380f9c2e275695c5e	chromecache_126.2.dr	false	high
https://docs.stripe.com/stripe-apps	chromecache_126.2.dr	false	high
https://stripe.com/en-mx	chromecache_126.2.dr	false	high
https://youtube.com/	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/GraphicFormFieldList-5317148749a9268ec04d.css	chromecache_126.2.dr	false	high
https://stripe.com/en-mt	chromecache_126.2.dr	false	high
https://www.google.com/tools/feedback	chromecache_164.2.dr, chromecache_149.2.dr	false	high
https://stripe.com/pricing	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/EnterpriseCarouselAside-b05102a0b81de0c11406.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/CustomersCaseStudyCardBackground-853f685776c80eaa0089	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/Stripe-b3679504f08482f96a0d.css	chromecache_126.2.dr	false	high
https://apis.google.com/js/api.js	chromecache_188.2.dr, chromecache_110.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorConnectAnimation-f4ce77b995975fa55335.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/Global-f1eeffae1de3242fcca9.css	chromecache_126.2.dr	false	high
https://stripe.com/en-no	chromecache_126.2.dr	false	high
https://docs.stripe.com/development	chromecache_126.2.dr	false	high
https://docs.stripe.com/no-code/payment-links	chromecache_126.2.dr	false	high
https://stripe.com/in	chromecache_126.2.dr	false	high
https://schema.org	chromecache_126.2.dr	false	high
https://stripe.com/en-nl	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/f965fdf4.woff2	chromecache_126.2.dr	false	high
https://docs.stripe.com/no-code	chromecache_126.2.dr	false	high
https://docs.stripe.com/	chromecache_126.2.dr	false	high
https://stripe.com/it	chromecache_126.2.dr	false	high
https://plus.google.com	chromecache_117.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorConnectGraphicCell-18f4786ec794a3671860.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorGraphic-ab42746a2bb65d850037.css	chromecache_126.2.dr	false	high
https://stripe.com/guides	chromecache_126.2.dr	false	high
https://stripe.com/#organization	chromecache_126.2.dr	false	high
https://images.stripeassets.com/fzn2n1nzq965/5F0uhf7cRg9vhR6NmgWzzI/664e14ddebb91375f89f8dcc75242dc0	chromecache_126.2.dr	false	high
https://stripe.com/jp	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorBillingGraphicTier-c39e78ce45a9380bf169.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/CardField-739e285edeecea986ed0.css	chromecache_126.2.dr	false	high
https://dashboard.stripe.com/	chromecache_126.2.dr	false	high
https://docs.stripe.com/no-code/tap-to-pay	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/GlobalizationPicker-cb59e0de1d5c3aeaa184.css	chromecache_126.2.dr	false	high
https://stripe.com/en-hu	chromecache_126.2.dr	false	high
https://stripe.com/th	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/CaseStudyCard-bfd1dd9dc828a57a4622.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/HorizontalOverflowContainer-0b85e8f46a0db21a6ef9.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/StripeProductUsed-448c2bc0913c408517f4.css	chromecache_126.2.dr	false	high
https://stripe.com/sv-fi	chromecache_126.2.dr	false	high
https://www.google.com/log?format=json&hasfast=true	chromecache_188.2.dr, chromecache_161.2.dr, chromecache_110.2.dr, chromecache_158.2.dr	false	high
https://lens.google.com	chromecache_161.2.dr, chromecache_158.2.dr	false	high
https://stripe.com/en-hk	chromecache_126.2.dr	false	high
https://support.stripe.com/?referrerLocale=en-us	chromecache_126.2.dr	false	high
https://images.stripeassets.com/fzn2n1nzq965/5hEVwGQfvUQhsMjfASiuA/db4e12749695dbf5735787879ae56e96/	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorSuiteAnimation-683958a93f82ca151ea7.css	chromecache_126.2.dr	false	high
https://b.stripecdn.com/mkt-statics-srv/assets/FrontdoorSubanimation-b9163916332f2a67d464.css	chromecache_126.2.dr	false	high
https://stripe.com/en-hr	chromecache_126.2.dr	false	high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.217.19.206	play.google.com	United States	15169	GOOGLEUS	false
151.101.0.176	unknown	United States	54113	FASTLYUS	false
151.101.65.137	unknown	United States	54113	FASTLYUS	false
142.250.181.110	unknown	United States	15169	GOOGLEUS	false
108.158.75.118	d1tcqh4bio8cty.cloudfront.net	United States	16509	AMAZON-02US	false
20.219.20.151	0azeevmdi7.codedesign.app	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
172.217.171.228	unknown	United States	15169	GOOGLEUS	false
151.101.129.137	cloudinary.map.fastly.net	United States	54113	FASTLYUS	false
172.217.17.78	plus.l.google.com	United States	15169	GOOGLEUS	false
142.250.181.142	google.com	United States	15169	GOOGLEUS	false
142.250.181.100	www.google.com	United States	15169	GOOGLEUS	false
151.101.128.176	unknown	United States	54113	FASTLYUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
104.21.87.110	lottones.com	United States	13335	CLOUDFLARENETUS	false
35.167.129.248	m.stripe.com	United States	16509	AMAZON-02US	false
18.202.131.124	stripe.com	United States	16509	AMAZON-02US	false
151.101.192.176	stripecdn.map.fastly.net	United States	54113	FASTLYUS	false

Private

IP
192.168.2.4

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1567666
Start date and time:	2024-12-03 18:09:14 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 10s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://0azeevmdi7.codedesign.app/
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	8
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal48.phis.win@21/143@44/18

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 172.217.19.227, 172.217.19.238, 64.233.165.84, 34.104.35.123, 172.217.19.170, 216.58.208.227, 172.67.142.245, 104.21.27.152, 93.184.221.240, 192.229.221.95, 172.217.17.35, 142.250.203.227, 172.217.17.74, 172.217.19.202, 216.58.208.234, 172.217.21.42, 142.250.181.138, 142.250.181.42, 142.250.181.74, 172.217.17.42, 172.217.19.234, 142.250.181.106, 142.250.181.99, 142.250.181.10, 172.217.17.67, 142.250.181.131
Excluded domains from analysis (whitelisted): fonts.googleapis.com, ssl.gstatic.com, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, slscr.update.microsoft.com, otelrules.azureedge.net, fonts.gstatic.com, ctldl.windowsupdate.com, clientservices.googleapis.com, ogads-pa.googleapis.com, use.fontawesome.com.cdn.cloudflare.net, fe3cr.delivery.mp.microsoft.com, clients2.google.com, ocsp.digicert.com, edgedl.me.gvt1.com, update.googleapis.com, clients.l.google.com, www.gstatic.com
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing network information.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: https://0azeevmdi7.codedesign.app/

Input	Output
URL: https://0azeevmdi7.codedesign.app Model: Joe Sandbox AI	{ "typosquatting": false, "unusual_query_string": false, "suspicious_tld": true, "ip_in_url": false, "long_subdomain": true, "malicious_keywords": false, "encoded_characters": false, "redirection": false, "contains_email_address": false, "known_domain": false, "brand_spoofing_attempt": false, "third_party_hosting": true }
URL: https://0azeevmdi7.codedesign.app
URL: JavaScript Model: Joe Sandbox AI	{ "risk_score": 1, "reasoning": "This is a legitimate webpack chunk containing React PropTypes validation code. It's a standard development dependency used for type checking in React applications. The code includes normal webpack bundling patterns and PropTypes validation logic with no suspicious behaviors or external communications." }
(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[774],{2703:function(e,n,t){"use strict";var r=t(414);function o(){}function a(){}a.resetWarningCache=o,e.exports=function(){function e(e,n,t,o,a,p){if(p!==r){var s=new Error("Calling PropTypes validators directly is not supported by the `prop-types` package. Use PropTypes.checkPropTypes() to call them. Read more at http://fb.me/use-check-prop-types");throw s.name="Invariant Violation",s}}function n(){return e}e.isRequired=e;var t={array:e,bigint:e,bool:e,func:e,number:e,object:e,string:e,symbol:e,any:e,arrayOf:n,element:e,elementType:e,instanceOf:n,node:e,objectOf:n,oneOf:n,oneOfType:n,shape:n,exact:n,checkPropTypes:a,resetWarningCache:o};return t.PropTypes=t,t}},5697:function(e,n,t){e.exports=t(2703)()},414:function(e){"use strict";e.exports="SECRET_DO_NOT_PASS_THIS_OR_YOU_WILL_BE_FIRED"}}]);
URL: JavaScript Model: Joe Sandbox AI	{ "risk_score": 1, "reasoning": "This appears to be a standard Next.js framework initialization code. It includes polyfills for standard JavaScript features and core Next.js functionality for handling head elements and rendering. The code is unobfuscated, comes from webpack bundling, and contains no suspicious behaviors or external connections." }
(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[179],{400:function(){"trimStart"in String.prototype\|\|(String.prototype.trimStart=String.prototype.trimLeft),"trimEnd"in String.prototype\|\|(String.prototype.trimEnd=String.prototype.trimRight),"description"in Symbol.prototype\|\|Object.defineProperty(Symbol.prototype,"description",{configurable:!0,get:function(){var e=/\((.*)\)/.exec(this.toString());return e?e[1]:void 0}}),Array.prototype.flat\|\|(Array.prototype.flat=function(e,t){return t=this.concat.apply([],this),e>1&&t.some(Array.isArray)?t.flat(e-1):t},Array.prototype.flatMap=function(e,t){return this.map(e,t).flat()}),Promise.prototype.finally\|\|(Promise.prototype.finally=function(e){if("function"!=typeof e)return this.then(e,e);var t=this.constructor\|\|Promise;return this.then((function(n){return t.resolve(e()).then((function(){return n}))}),(function(n){return t.resolve(e()).then((function(){throw n}))}))})},877:function(e,t){"use strict";Object.defineProperty(t,"__esModule",{value:!0}),t.default=function(){let e=null;return{mountedInstances:new Set,updateHead:t=>{const n=e=Promise.resolve().then((()=>{if(n!==e)return;e=null;const o={};t.forEach((e=>{if("link"===e.type&&e.props["data-optimized-fonts"]){if(document.querySelector(`style[data-href="${e.props["data-href"]}"]`))return;e.props.href=e.props["data-href"],e.props["data-href"]=void 0}const t=o[e.type]\|\|[];t.push(e),o[e.type]=t}));const i=o.title?o.title[0]:null;let a="";if(i){const{children:e}=i.props;a="string"===typeof e?e:Array.isArray(e)?e.join(""):""}a!==document.title&&(document.title=a),["meta","base","link","style","script"].forEach((e=>{!function(e,t){const n=document.getElementsByTagName("head")[0],o=n.querySelector("meta[name=next-head-count]");0;const i=Number(o.content),a=[];for(let r=0,u=o.previousElementSibling;r<i;r++,u=u.previousElementSibling)u.tagName.toLowerCase()===e&&a.push(u);const s=t.map(r).filter((e=>{for(let t=0,n=a.length;t<n;t++){if(a[t].isEqualNode(e))return a.splice(t,1),!1}return!0}));a.forEach((e=>e.parentNode.removeChild(e))),s.forEach((e=>n.insertBefore(e,o))),o.content=(i-a.length+s.length).toString()}(e,o[e]\|\|[])}))}))}}},t.DOMAttributeNames=void 0;const n={acceptCharset:"accept-charset",className:"class",htmlFor:"for",httpEquiv:"http-equiv",noModule:"noModule"};function r({type:e,props:t}){const r=document.createElement(e);for(const a in t){if(!t.hasOwnProperty(a))continue;if("children"===a\|\|"dangerouslySetInnerHTML"===a)continue;if(void 0===t[a])continue;const o=n[a]\|\|a.toLowerCase();"script"!==e\|\|"async"!==o&&"defer"!==o&&"noModule"!==o?r.setAttribute(o,t[a]):r[o]=!!t[a]}const{children:o,dangerouslySetInnerHTML:i}=t;return i?r.innerHTML=i.__html\|\|"":o&&(r.textContent="string"===typeof o?o:Array.isArray(o)?o.join(""):""),r}t.DOMAttributeNames=n},6947:function(e,t,n){"use strict";Object.defineProperty(t,"__esModule",{value:!0}),t.initNext=function(){return ne.apply(this,arguments)},t.render=oe,t.renderError=ie,t.emitter=t.router=t.version=void 0,n(400);var r=R(n(7423)),o=R(n(7423)),i=n(8771),a=n(5850),s=R(n(8286)),u=n(647),l=n(4957),c=n(9636),f=n(5880),_=n(6616),d=n(9475),h=n(3291),p=R(n(877)),m=R(n(6184)),y=R(n(8854)),v=n(3396),g=n(9898),w=R(n(676)),S=n(1394);function b(e,t,n,r,o,i,a){try{var s=e[i](a),u=s.value}catch(l){return void n(l)}s.done?t(u):Promise.resolve(u).then(r,o)}function E(e){return function(){var t=this,n=arguments;return new Promise((function(r,o){var i=e.apply(t,n);function a(e){b(i,r,o,a,s,"next",e)}function s(e){b(i,r,o,a,s,"throw",e)}a(void 0)}))}}function P(e,t,n){return t in e?Object.defineProperty(e,t,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[t]=n,e}function R(e){return e&&e.__esModule?e:{default:e}}function C(e){for(var t=1;t<arguments.length;t++){var n=null!=arguments[t]?arguments[t]:{},r=Object.keys(n);"function"===typeof Object.getOwnPropertySymbols&&(r=r.concat(Object.getOwnPropertySymbols(n).filter((function(e){return Object.getOwnPropertyDescriptor(n,e).enumerable})))),r.forEach((fu
URL: JavaScript Model: Joe Sandbox AI	{ "risk_score": 1, "reasoning": "This appears to be a standard React/Next.js webpack bundle containing legitimate component definitions and imports. It includes common React patterns like context usage, head management, and component lifecycle methods. No suspicious behaviors, external data transmission, or malicious patterns are present." }
(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[120],{8e3:function(e,t,n){"use strict";var a;Object.defineProperty(t,"__esModule",{value:!0}),t.AmpStateContext=void 0;const o=((a=n(7423))&&a.__esModule?a:{default:a}).default.createContext({});t.AmpStateContext=o},5646:function(e,t,n){"use strict";Object.defineProperty(t,"__esModule",{value:!0}),t.isInAmpMode=i,t.useAmp=function(){return i(o.default.useContext(r.AmpStateContext))};var a,o=(a=n(7423))&&a.__esModule?a:{default:a},r=n(8e3);function i({ampFirst:e=!1,hybrid:t=!1,hasQuery:n=!1}={}){return e\|\|t&&n}},2717:function(e,t,n){"use strict";Object.defineProperty(t,"__esModule",{value:!0}),t.defaultHead=l,t.default=void 0;var a,o=function(e){if(e&&e.__esModule)return e;var t={};if(null!=e)for(var n in e)if(Object.prototype.hasOwnProperty.call(e,n)){var a=Object.defineProperty&&Object.getOwnPropertyDescriptor?Object.getOwnPropertyDescriptor(e,n):{};a.get\|\|a.set?Object.defineProperty(t,n,a):t[n]=e[n]}return t.default=e,t}(n(7423)),r=(a=n(1585))&&a.__esModule?a:{default:a},i=n(8e3),s=n(5850),c=n(5646);function l(e=!1){const t=[o.default.createElement("meta",{charSet:"utf-8"})];return e\|\|t.push(o.default.createElement("meta",{name:"viewport",content:"width=device-width"})),t}function p(e,t){return"string"===typeof t\|\|"number"===typeof t?e:t.type===o.default.Fragment?e.concat(o.default.Children.toArray(t.props.children).reduce(((e,t)=>"string"===typeof t\|\|"number"===typeof t?e:e.concat(t)),[])):e.concat(t)}const d=["name","httpEquiv","charSet","itemProp"];function u(e,t){return e.reduce(((e,t)=>{const n=o.default.Children.toArray(t.props.children);return e.concat(n)}),[]).reduce(p,[]).reverse().concat(l(t.inAmpMode)).filter(function(){const e=new Set,t=new Set,n=new Set,a={};return o=>{let r=!0,i=!1;if(o.key&&"number"!==typeof o.key&&o.key.indexOf("$")>0){i=!0;const t=o.key.slice(o.key.indexOf("$")+1);e.has(t)?r=!1:e.add(t)}switch(o.type){case"title":case"base":t.has(o.type)?r=!1:t.add(o.type);break;case"meta":for(let e=0,t=d.length;e<t;e++){const t=d[e];if(o.props.hasOwnProperty(t))if("charSet"===t)n.has(t)?r=!1:n.add(t);else{const e=o.props[t],n=a[t]\|\|new Set;"name"===t&&i\|\|!n.has(e)?(n.add(e),a[t]=n):r=!1}}}return r}}()).reverse().map(((e,n)=>{const a=e.key\|\|n;if(!t.inAmpMode&&"link"===e.type&&e.props.href&&["https://fonts.googleapis.com/css","https://use.typekit.net/"].some((t=>e.props.href.startsWith(t)))){const t={...e.props\|\|{}};return t["data-href"]=t.href,t.href=void 0,t["data-optimized-fonts"]=!0,o.default.cloneElement(e,t)}return o.default.cloneElement(e,{key:a})}))}var m=function({children:e}){const t=o.useContext(i.AmpStateContext),n=o.useContext(s.HeadManagerContext);return o.default.createElement(r.default,{reduceComponentsToState:u,headManager:n,inAmpMode:c.isInAmpMode(t)},e)};t.default=m},1585:function(e,t,n){"use strict";Object.defineProperty(t,"__esModule",{value:!0}),t.default=void 0;var a=function(e){if(e&&e.__esModule)return e;var t={};if(null!=e)for(var n in e)if(Object.prototype.hasOwnProperty.call(e,n)){var a=Object.defineProperty&&Object.getOwnPropertyDescriptor?Object.getOwnPropertyDescriptor(e,n):{};a.get\|\|a.set?Object.defineProperty(t,n,a):t[n]=e[n]}return t.default=e,t}(n(7423));class o extends a.Component{constructor(e){super(e),this.emitChange=()=>{this._hasHeadManager&&this.props.headManager.updateHead(this.props.reduceComponentsToState([...this.props.headManager.mountedInstances],this.props))},this._hasHeadManager=this.props.headManager&&this.props.headManager.mountedInstances}componentDidMount(){this._hasHeadManager&&this.props.headManager.mountedInstances.add(this),this.emitChange()}componentDidUpdate(){this.emitChange()}componentWillUnmount(){this._hasHeadManager&&this.props.headManager.mountedInstances.delete(this),this.emitChange()}render(){return null}}t.default=o},9051:function(e,t,n){"use strict";n.r(t),n.d(t,{__N_SSP:function(){return w},default:function(){return x}});var a=n(9756),o=n(7423),r=n(4055),i=n(4234),s=n(6354),c=n(7615),l=n
URL: JavaScript Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "This appears to be a legitimate webpack bundle chunk containing React PropTypes and utility functions. The code includes standard JavaScript practices for object manipulation, array handling, and type checking. No malicious patterns, external data transmission, or suspicious behaviors are observed. The code is minified but not maliciously obfuscated." }
(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[888],{6664:function(t,e,n){!function(t,e){"use strict";function n(t,e){var n=Object.keys(t);if(Object.getOwnPropertySymbols){var o=Object.getOwnPropertySymbols(t);e&&(o=o.filter((function(e){return Object.getOwnPropertyDescriptor(t,e).enumerable}))),n.push.apply(n,o)}return n}function o(t){for(var e=1;e<arguments.length;e++){var o=null!=arguments[e]?arguments[e]:{};e%2?n(Object(o),!0).forEach((function(e){a(t,e,o[e])})):Object.getOwnPropertyDescriptors?Object.defineProperties(t,Object.getOwnPropertyDescriptors(o)):n(Object(o)).forEach((function(e){Object.defineProperty(t,e,Object.getOwnPropertyDescriptor(o,e))}))}return t}function r(t){return(r="function"===typeof Symbol&&"symbol"===typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"===typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function a(t,e,n){return e in t?Object.defineProperty(t,e,{value:n,enumerable:!0,configurable:!0,writable:!0}):t[e]=n,t}function i(t,e){if(null==t)return{};var n,o,r={},a=Object.keys(t);for(o=0;o<a.length;o++)n=a[o],e.indexOf(n)>=0\|\|(r[n]=t[n]);return r}function s(t,e){if(null==t)return{};var n,o,r=i(t,e);if(Object.getOwnPropertySymbols){var a=Object.getOwnPropertySymbols(t);for(o=0;o<a.length;o++)n=a[o],e.indexOf(n)>=0\|\|Object.prototype.propertyIsEnumerable.call(t,n)&&(r[n]=t[n])}return r}function c(t,e){return u(t)\|\|l(t,e)\|\|p(t,e)\|\|f()}function u(t){if(Array.isArray(t))return t}function l(t,e){var n=t&&("undefined"!==typeof Symbol&&t[Symbol.iterator]\|\|t["@@iterator"]);if(null!=n){var o,r,a=[],i=!0,s=!1;try{for(n=n.call(t);!(i=(o=n.next()).done)&&(a.push(o.value),!e\|\|a.length!==e);i=!0);}catch(c){s=!0,r=c}finally{try{i\|\|null==n.return\|\|n.return()}finally{if(s)throw r}}return a}}function p(t,e){if(t){if("string"===typeof t)return d(t,e);var n=Object.prototype.toString.call(t).slice(8,-1);return"Object"===n&&t.constructor&&(n=t.constructor.name),"Map"===n\|\|"Set"===n?Array.from(t):"Arguments"===n\|\|/^(?:Ui\|I)nt(?:8\|16\|32)(?:Clamped)?Array$/.test(n)?d(t,e):void 0}}function d(t,e){(null==e\|\|e>t.length)&&(e=t.length);for(var n=0,o=new Array(e);n<e;n++)o[n]=t[n];return o}function f(){throw new TypeError("Invalid attempt to destructure non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}function E(t){return t&&t.__esModule&&Object.prototype.hasOwnProperty.call(t,"default")?t.default:t}var m,_,h,g,S={exports:{}};function y(){return _?m:(_=1,m="SECRET_DO_NOT_PASS_THIS_OR_YOU_WILL_BE_FIRED")}function T(){if(g)return h;g=1;var t=y();function e(){}function n(){}return n.resetWarningCache=e,h=function(){function o(e,n,o,r,a,i){if(i!==t){var s=new Error("Calling PropTypes validators directly is not supported by the `prop-types` package. Use PropTypes.checkPropTypes() to call them. Read more at http://fb.me/use-check-prop-types");throw s.name="Invariant Violation",s}}function r(){return o}o.isRequired=o;var a={array:o,bool:o,func:o,number:o,object:o,string:o,symbol:o,any:o,arrayOf:r,element:o,elementType:o,instanceOf:r,node:o,objectOf:r,oneOf:r,oneOfType:r,shape:r,exact:r,checkPropTypes:n,resetWarningCache:e};return a.PropTypes=a,a}}S.exports=T()();var C=E(S.exports),b=function(t,n,o){var r=!!o,a=e.useRef(o);e.useEffect((function(){a.current=o}),[o]),e.useEffect((function(){if(!r\|\|!t)return function(){};var e=function(){a.current&&a.current.apply(a,arguments)};return t.on(n,e),function(){t.off(n,e)}}),[r,n,t,a])},A=function(t){var n=e.useRef(t);return e.useEffect((function(){n.current=t}),[t]),n.current},I=function(t){return null!==t&&"object"===r(t)},O=function(t){return I(t)&&"function"===typeof t.then},R=function(t){return I(t)&&"function"===typeof t.elements&&"function"===typeof t.createToken&&"function"===typeof t.createPaymentMethod&&"function"===typeof t.confirmCardPayment},v="[object Object]",U=function t(e,n){if(!I(e)\|\|!I(n))return e===n;var o=Array.isArray(e);if(o!==Array.isArray
URL: JavaScript Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "This appears to be legitimate Google analytics/performance monitoring code. It collects standard performance metrics (memory usage, navigation timing, resource timing, paint timing) and uses trusted Google domains. While it does collect data, it's transparent and uses standard browser APIs." }
"use strict";this.default_OneGoogleWidgetUi=this.default_OneGoogleWidgetUi\|\|{};(function(_){var window=this; try{ var dG; _.fG=function(){var a=dG(_.Fe("xwAfE"),function(){return _.Fe("UUFaWc")}),b=dG(_.Fe("xnI9P"),function(){return _.Fe("u4g7r")}),c,d,e,f;return(f=eG)!=null?f:eG=Object.freeze({isEnabled:function(g){return g===-1\|\|_.Ef(_.Fe("iCzhFc"),!1)?!1:a.enabled\|\|b.enabled},Gg:(c=_.Cm(_.Fe("y2FhP")))!=null?c:void 0,Gr:(d=_.Cm(_.Fe("MUE6Ne")))!=null?d:void 0,Ag:(e=_.Cm(_.Fe("cfb2h")))!=null?e:void 0,Bf:_.Em(_.Fe("yFnxrf"),-1),Hw:_.Im(_.Fe("fPDxwd")).map(function(g){return _.Em(g,0)}).filter(function(g){return g>0}), Rz:a,b9:b})};dG=function(a,b){a=_.Ef(a,!1);return{enabled:a,Zt:a?_.Td(_.Fm(b(),_.gG)):Sia()}};_.gG=function(a){this.va=_.x(a)};_.D(_.gG,_.B);var Sia=function(a){return function(){return _.vd(a)}}(_.gG);var eG; _.n("p3hmRc"); var dja=function(a){a.v=!0;return a},eja=function(a,b,c,d){this.transport=a;this.j=b;this.l=c;this.Gg=d;this.o=Number(Date.now()).toString(36)+Math.random().toString(36).slice(2)};_.YG=function(){_.F.call(this);this.config=_.fG();var a=this.config.Bf;this.config.isEnabled(a)&&(this.j=fja(this,a))};_.D(_.YG,_.O);_.YG.W=_.O.W;var fja=function(a,b){var c=[].map(function(h){return _.Dd(h)}),d,e=_.XG(dja(_.WG(_.UG(_.VG(new _.TG(b,_.sm()),_.vG(new _.uG,a.config.Hw)),(d=a.config.Ag)!=null?d:""),c)));switch(b){case 2082:var f=2;break;case 1884:f=1}var g;return new eja(e,a.config.Gr,f,(g=a.config.Gg)!=null?g:"")};_.RA(_.KE,_.YG); _.p(); _.n("LvGhrf"); var gja,hja,bH,ija,jja,kja,eH,$G,gH;gja=function(a){if(_.da&&_.da.performance&&_.da.performance.memory){var b=_.da.performance.memory;if(b){var c=new ZG;isNaN(b.jsHeapSizeLimit)\|\|_.Kf(c,1,_.qd(Math.round(b.jsHeapSizeLimit).toString()));isNaN(b.totalJSHeapSize)\|\|_.Kf(c,2,_.qd(Math.round(b.totalJSHeapSize).toString()));isNaN(b.usedJSHeapSize)\|\|_.Kf(c,3,_.qd(Math.round(b.usedJSHeapSize).toString()));_.Ql(a,ZG,1,c)}}}; hja=function(a){if($G()){var b=performance.getEntriesByType("navigation");if(b&&b.length){var c=new aH;if(b=b[0]){switch(b.type){case "navigate":c.Rg(1);break;case "reload":c.Rg(2);break;case "back_forward":c.Rg(3);break;case "prerender":c.Rg(4);break;default:c.Rg(0)}var d=_.fm(c,2,Math.round(b.startTime));d=_.fm(d,3,Math.round(b.fetchStart));d=_.fm(d,4,Math.round(b.domainLookupStart));d=_.fm(d,5,Math.round(b.domainLookupEnd));d=_.fm(d,6,Math.round(b.connectStart));d=_.fm(d,7,Math.round(b.connectEnd)); d=_.fm(d,8,Math.round(b.requestStart));d=_.fm(d,9,Math.round(b.responseStart));d=_.fm(d,10,Math.round(b.responseEnd));var e=bH(Math.round(b.domInteractive));d=_.fm(d,11,e);e=bH(Math.round(b.domComplete));d=_.fm(d,12,e);d=_.fm(d,13,Math.round(b.loadEventStart));_.fm(d,14,Math.round(b.loadEventEnd))}_.Ql(a,aH,8,c)}}};bH=function(a){return Number.isFinite(a)?a:null}; ija=function(a){if($G()){var b=performance.getEntriesByType("resource");if(b&&b.length){for(var c=new cH,d=0,e=0,f=0,g=0,h=0,l=0,m=0,q=0,r=0,u=0,v=0;v<b.length;v++){var w=b[v],A=w.responseEnd-w.startTime;if(A>=0)switch(w.initiatorType){case "css":d++;e+=A;break;case "img":f++;g+=A;break;case "script":h++;l+=A;break;case "link":m++;q+=A;break;default:r++,u+=A}}d&&(b=_.fm(c,1,d),_.fm(b,2,Math.round(e/d)));f&&(d=_.fm(c,3,f),_.fm(d,4,Math.round(g/f)));h&&(f=_.fm(c,5,h),_.fm(f,6,Math.round(l/h)));m&&(h= _.fm(c,7,m),_.fm(h,8,Math.round(q/m)));r&&(m=_.fm(c,9,r),_.fm(m,10,Math.round(u/r)));_.Ql(a,cH,10,c)}}};jja=function(){var a;return window.PerformanceObserver&&((a=window.PerformanceObserver.supportedEntryTypes)==null?void 0:a.includes("paint"))};kja=function(a){if($G()){var b=performance.getEntriesByType("paint");if(b&&b.length){var c=_.Kl(a,dH,11)?_.Ol(a,dH,11):new dH;eH(b,c);_.Ql(a,dH,11,c)}}}; eH=function(a,b){for(var c=0;c<a.length;c++){var d=a[c],e=Math.round(d.startTime);d.name!=="first-paint"\|\|_.Ul(b,1)!=null?d.name!=="first-contentful-paint"\|\|_.Ul(b,2)!=null\|\|_.fm(b,2,e):_.fm(b,1,e)}};$G=function(){return _.da.performance&&_.da.performance.getEntriesByType?!0:!1};_.fH=function(a,b,c){
URL: https://0azeevmdi7.codedesign.app/ Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "CLICK HERE TO VIEW DOCUMENT", "prominent_button_name": "CLICK HERE TO VIEW DOCUMENT", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false }

URL: JavaScript Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "This appears to be a legitimate Google widget initialization script with standard Google Closure Library code. It contains copyright notices and uses strict mode. While it includes DOM manipulation capabilities, it's from a trusted source (Google) and follows standard security practices. The code is minified but not maliciously obfuscated." }
"use strict";this.default_OneGoogleWidgetUi=this.default_OneGoogleWidgetUi\|\|{};(function(_){var window=this; try{ _._F_toggles_initialize=function(a){(typeof globalThis!=="undefined"?globalThis:typeof self!=="undefined"?self:this)._F_toggles=a\|\|[]};(0,_._F_toggles_initialize)([0x30183080, 0x6c, ]); /* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0 / / Copyright Google LLC SPDX-License-Identifier: Apache-2.0 / / SPDX-License-Identifier: Apache-2.0 / / Copyright 2024 Google, Inc SPDX-License-Identifier: MIT */ var ia,aaa,Ga,baa,Ja,cb,sb,eaa,Mb,Rb,Sb,Tb,Ub,Wb,Xb,Yb,ac,faa,gaa,cc,ec,lc,oc,qc,haa,wc,xc,yc,Ec,jaa,laa,Jc,Kc,Qc,Tc,Vc,Yc,Zc,Uc,bd,cd,paa,rd,sd,td,qaa,Bd,raa,Fd,saa,taa,uaa,Ld,vaa,Ud,xe,Ae,Ie,Ge,Je,y,Ve,bf,ef,qf,Aaa,Baa,Caa,Daa,vf,zf,Faa,Gaa,Haa,Iaa,Jaa,Kaa,Yf,Laa,Maa,Naa,vg,zg,Taa,Raa,Kg,Xaa,Pg,Sg,Zaa,$aa,Ug,hh,dba,eba,nh,fba,yh,gba,Ch,hba,iba,Qh,Rh,Sh,jba,kba,Vh,mba,nba,Zh,$h,rba,tba,uba,vba,wba,xba,yba,zba,Bba,Cba,Dba,Fba,Gba,aa,ti,ui,Hba,wi,Ci,Kba,Gi,Lba,Mba,Nba,Pi,Qi,Oba,Pba; _.ba=function(a){return function(){return aa[a].apply(this,arguments)}};_.ca=function(a,b){return aa[a]=b};_.ea=function(a){_.da.setTimeout(function(){throw a;},0)};_.fa=function(a){a&&typeof a.dispose=="function"&&a.dispose()};ia=function(a){for(var b=0,c=arguments.length;b<c;++b){var d=arguments[b];_.ha(d)?ia.apply(null,d):_.fa(d)}}; _.ja=function(a,b){if(Error.captureStackTrace)Error.captureStackTrace(this,_.ja);else{var c=Error().stack;c&&(this.stack=c)}a&&(this.message=String(a));b!==void 0&&(this.cause=b);this.j=!0};_.ka=function(a){return a[a.length-1]};_.la=function(a,b,c){for(var d=typeof a==="string"?a.split(""):a,e=a.length-1;e>=0;--e)e in d&&b.call(c,d[e],e,a)};_.oa=function(a,b,c){b=_.ma(a,b,c);return b<0?null:typeof a==="string"?a.charAt(b):a[b]}; _.ma=function(a,b,c){for(var d=a.length,e=typeof a==="string"?a.split(""):a,f=0;f<d;f++)if(f in e&&b.call(c,e[f],f,a))return f;return-1};_.qa=function(a,b){return(0,_.pa)(a,b)>=0};_.ra=function(a,b){_.qa(a,b)\|\|a.push(b)};_.ta=function(a,b){b=(0,_.pa)(a,b);var c;(c=b>=0)&&_.sa(a,b);return c};_.sa=function(a,b){return Array.prototype.splice.call(a,b,1).length==1};_.ua=function(a){return Array.prototype.concat.apply([],arguments)}; _.va=function(a){var b=a.length;if(b>0){for(var c=Array(b),d=0;d<b;d++)c[d]=a[d];return c}return[]};_.wa=function(a,b){for(var c=1;c<arguments.length;c++){var d=arguments[c];if(_.ha(d)){var e=a.length\|\|0,f=d.length\|\|0;a.length=e+f;for(var g=0;g<f;g++)a[e+g]=d[g]}else a.push(d)}};_.xa=function(a,b,c){return arguments.length<=2?Array.prototype.slice.call(a,b):Array.prototype.slice.call(a,b,c)}; _.Ba=function(a,b){b=b\|\|a;for(var c=0,d=0,e={};d<a.length;){var f=a[d++],g=_.ya(f)?"o"+_.Aa(f):(typeof f).charAt(0)+f;Object.prototype.hasOwnProperty.call(e,g)\|\|(e[g]=!0,b[c++]=f)}b.length=c};_.Ca=function(a,b){if(!_.ha(a)\|\|!_.ha(b)\|\|a.length!=b.length)return!1;for(var c=a.length,d=aaa,e=0;e<c;e++)if(!d(a[e],b[e]))return!1;return!0};_.Da=function(a,b){return a>b?1:a<b?-1:0};aaa=function(a,b){return a===b};_.Fa=function(a,b){var c={};(0,_.Ea)(a,function(d,e){c[b.call(void 0,d,e,a)]=d});return c}; Ga=function(a){return{valueOf:a}.valueOf()};baa=function(){var a=null;if(!Ha)return a;try{var b=function(c){return c};a=Ha.createPolicy("OneGoogleWidgetUi#html",{createHTML:b,createScript:b,createScriptURL:b})}catch(c){}return a};Ja=function(){Ia===void 0&&(Ia=baa());return Ia};_.Ma=function(a){var b=Ja();return new _.Ka(_.La,b?b.createHTML(a):a)};_.Na=function(a){return a instanceof _.Ka};_.Oa=function(a){if(_.Na(a))return a.j;throw Error("B");}; _.Qa=function(a){return"function"==typeof _.Pa&&a instanceof _.Pa};_.Ra=function(a){if(_.Qa(a))return a.j;throw Error("B");};_.Ta=function(a){var b=Ja();return new _.Sa(_.La,b?b.createScriptURL(a):a)};_.Va=function(a){return a instanceof _.Sa};_.Xa=function(a){if(_.Va(a))return a.j;throw Error("B");};_.Za=function(a){return new _.Ya(_.La,a)};_.$a=function(a){return a instanceof _.Ya};_.ab=function(a){i
URL: JavaScript Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "This appears to be legitimate Google widget code with standard error handling and retry logic. It includes expected features like strict mode, error handling, and retry mechanisms. While it does contain network requests (fetch) and error reporting, these are typical for a widget framework and interact with Google domains. The code is minified but not maliciously obfuscated." }
"use strict";this.default_OneGoogleWidgetUi=this.default_OneGoogleWidgetUi\|\|{};(function(_){var window=this; try{ _.n("P6sQOc"); var Xqa=!!(_.Yi[0]>>25&1);var Yqa=function(a,b,c,d,e){this.o=a;this.N=b;this.v=c;this.O=d;this.T=e;this.j=0;this.l=m0(this)},Zqa=function(a){var b={};_.Ea(a.As(),function(e){b[e]=!0});var c=a.ss(),d=a.us();return new Yqa(a.ts(),c.j()1E3,a.ks(),d.j()1E3,b)},m0=function(a){return Math.random()Math.min(a.NMath.pow(a.v,a.j),a.O)},n0=function(a,b){return a.j>=a.o?!1:b!=null?!!a.T[b]:!0};var o0=function(){this.l=_.NY(_.j0);this.o=_.NY(_.g0);var a=_.NY(_.LY);this.fetch=a.fetch.bind(a)};o0.prototype.j=function(a,b){if(this.o.getType(a.Bb())!==1)return _.Op(a);var c=this.l.At;(c=c?Zqa(c):null)&&n0(c)?(b=p0(this,a,b,c),a=new _.Np(a,b,2)):a=_.Op(a);return a}; var p0=function(a,b,c,d){return c.then(function(e){return e},function(e){if(Xqa)if(e instanceof _.Of){if(!e.status\|\|!n0(d,_.Yl(e.status,1)))throw e;}else{if("function"==typeof _.jw&&e instanceof _.jw&&e.l!==103&&e.l!==7)throw e;}else if(!e.status\|\|!n0(d,_.Yl(e.status,1)))throw e;return _.Ff(d.l).then(function(){if(!n0(d))throw Error("Gd`"+d.o);++d.j;d.l=m0(d);b=_.Nn(b,_.In,d.j);return p0(a,b,a.fetch(b),d)})})};_.SA(o0,_.l0); _.p(); }catch(e){_._DumpException(e)} }).call(this,this.default_OneGoogleWidgetUi); // Google Inc.
URL: JavaScript Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "This appears to be legitimate Google JavaScript code with standard DOM manipulation and event handling. It includes typical browser compatibility checks and utility functions. While it uses some DOM manipulation methods, they are standard practices and not malicious. The code is from a trusted source (Google) and follows normal coding patterns." }
this.gbar_=this.gbar_\|\|{};(function(_){var window=this; try{ _.Cd=typeof AsyncContext!=="undefined"&&typeof AsyncContext.Snapshot==="function"?a=>a&&AsyncContext.Snapshot.wrap(a):a=>a; }catch(e){_._DumpException(e)} try{ _.ve=function(a){return _.Kb(a)&&a.nodeType==1};_.we=function(a,b){if("textContent"in a)a.textContent=b;else if(a.nodeType==3)a.data=String(b);else if(a.firstChild&&a.firstChild.nodeType==3){for(;a.lastChild!=a.firstChild;)a.removeChild(a.lastChild);a.firstChild.data=String(b)}else _.se(a),a.appendChild(_.ie(a).createTextNode(String(b)))};var xe;_.ye=function(a,b,c){Array.isArray(c)&&(c=c.join(" "));const d="aria-"+b;c===""\|\|c==void 0?(xe\|\|(xe={atomic:!1,autocomplete:"none",dropeffect:"none",haspopup:!1,live:"off",multiline:!1,multiselectable:!1,orientation:"vertical",readonly:!1,relevant:"additions text",required:!1,sort:"none",busy:!1,disabled:!1,hidden:!1,invalid:"false"}),c=xe,b in c?a.setAttribute(d,c[b]):a.removeAttribute(d)):a.setAttribute(d,c)};var Ce;_.Be=function(a,b,c,d,e,f){if(_.nc&&e)return _.ze(a);if(e&&!d)return!1;if(!_.lc){typeof b==="number"&&(b=_.Ae(b));const g=b==17\|\|b==18\|\|_.nc&&b==91;if((!c\|\|_.nc)&&g\|\|_.nc&&b==16&&(d\|\|f))return!1}if(_.mc&&d&&c)switch(a){case 220:case 219:case 221:case 192:case 186:case 189:case 187:case 188:case 190:case 191:case 192:case 222:return!1}switch(a){case 13:return _.lc?f\|\|e?!1:!(c&&d):!0;case 27:return!_.mc&&!_.lc}return _.lc&&(d\|\|e\|\|f)?!1:_.ze(a)}; _.ze=function(a){if(a>=48&&a<=57\|\|a>=96&&a<=106\|\|a>=65&&a<=90\|\|_.mc&&a==0)return!0;switch(a){case 32:case 43:case 63:case 64:case 107:case 109:case 110:case 111:case 186:case 59:case 189:case 187:case 61:case 188:case 190:case 191:case 192:case 222:case 219:case 220:case 221:case 163:case 58:return!0;case 173:case 171:return _.lc;default:return!1}};_.Ae=function(a){if(_.lc)a=Ce(a);else if(_.nc&&_.mc)switch(a){case 93:a=91}return a}; Ce=function(a){switch(a){case 61:return 187;case 59:return 186;case 173:return 189;case 224:return 91;case 0:return 224;default:return a}}; }catch(e){_._DumpException(e)} try{ var De,Ee,Fe;De=function(a){return typeof a.className=="string"?a.className:a.getAttribute&&a.getAttribute("class")\|\|""};Ee=function(a){return a.classList?a.classList:De(a).match(/\S+/g)\|\|[]};Fe=function(a,b){typeof a.className=="string"?a.className=b:a.setAttribute&&a.setAttribute("class",b)};_.V=function(a,b){return a.classList?a.classList.contains(b):_.va(Ee(a),b)};_.Ge=function(a,b){if(a.classList)a.classList.add(b);else if(!_.V(a,b)){const c=De(a);Fe(a,c+(c.length>0?" "+b:b))}}; _.He=function(a,b){if(a.classList)Array.prototype.forEach.call(b,function(d){_.Ge(a,d)});else{var c={};Array.prototype.forEach.call(Ee(a),function(d){c[d]=!0});Array.prototype.forEach.call(b,function(d){c[d]=!0});b="";for(const d in c)b+=b.length>0?" "+d:d;Fe(a,b)}};_.Ie=function(a,b){a.classList?a.classList.remove(b):_.V(a,b)&&Fe(a,Array.prototype.filter.call(Ee(a),function(c){return c!=b}).join(" "))}; _.Je=function(a,b){a.classList?Array.prototype.forEach.call(b,function(c){_.Ie(a,c)}):Fe(a,Array.prototype.filter.call(Ee(a),function(c){return!_.va(b,c)}).join(" "))}; }catch(e){_._DumpException(e)} try{ _.Ke=class extends _.Q{constructor(a){super(a)}}; }catch(e){_._DumpException(e)} try{ var Me;_.Le=function(a,b){b=_.ua(a,b);let c;(c=b>=0)&&Array.prototype.splice.call(a,b,1);return c};Me=function(a,b){for(const c in a)if(b.call(void 0,a[c],c,a))return!0;return!1};_.Oe=function(a,b){this.type="function"==typeof _.Ne&&a instanceof _.Ne?String(a):a;this.currentTarget=this.target=b;this.defaultPrevented=this.i=!1};_.Oe.prototype.stopPropagation=function(){this.i=!0};_.Oe.prototype.preventDefault=function(){this.defaultPrevented=!0}; _.Pe=function(a,b){_.Oe.call(this,a?a.type:"");this.relatedTarget=this.currentTarget=this.target=null;this.button=this.screenY=this.screenX=this.clientY=this.clientX=this.offsetY=this.offsetX=0;this.key="";this.charCode=this.keyCode=0;this.metaKey=this.shiftKey=this.altKey=this.ctrlKey=!1;this.state=null;this.poi
URL: JavaScript Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "The code appears to be a legitimate Google widget UI implementation with standard DOM manipulation and CSS handling. While it contains DOM manipulation methods and attribute setters, these are typical for UI widgets. The code uses strict mode and follows secure coding practices. No high-risk behaviors like eval() or suspicious data transmission are present." }
"use strict";_F_installCss(".KL4X6e{background:#eee;bottom:0;left:0;opacity:0;position:absolute;right:0;top:0}.TuA45b{opacity:.8}sentinel{}"); this.default_OneGoogleWidgetUi=this.default_OneGoogleWidgetUi\|\|{};(function(_){var window=this; try{ _.xA=function(a,b,c,d,e,f,g){var h=(0,_.Pd)(a.va);_.Fc(h);a=_.je(a,h,c,b,2,f,!0);if(g){if(typeof e!=="number"\|\|e<0\|\|e>a.length)throw Error();}else d=d!=null?d:new c;e!=void 0?a.splice(e,g,d):a.push(d);(0,_.Dc)(d.va)&2?(0,_.El)(a,8):(0,_.El)(a,16)};_.zA=function(a){if(a instanceof _.yA)return a.j;throw Error("B");};_.AA=function(a){return new _.yA(_.La,a[0].toLowerCase())}; _.BA=function(a,b,c,d){if(a.length===0)throw Error("B");a=a.map(function(f){return _.zA(f)});var e=c.toLowerCase();if(a.every(function(f){return e.indexOf(f)!==0}))throw Error("ma`"+c);b.setAttribute(c,d)};_.At.prototype.kc=_.ca(28,function(){return this.j.length==0?null:new _.I(this.j[0])});_.I.prototype.kc=_.ca(27,function(){return this});_.At.prototype.Ja=_.ca(26,function(){return this.j.length?this.j[0]:null});_.I.prototype.Ja=_.ca(25,function(){return this.j[0]}); _.CA=function(a){var b=_.Dm(a);b===null&&_.Bm(a);return b};_.DA=function(a,b,c){if(!b&&!c)return null;var d=b?String(b).toUpperCase():null;return _.vh(a,function(e){return(!d\|\|e.nodeName==d)&&(!c\|\|typeof e.className==="string"&&_.qa(e.className.split(/\s+/),c))},!0)};_.EA=function(a){return a.j.slice()};_.yA=function(a,b){this.j=b};_.yA.prototype.toString=function(){return this.j};_.FA=function(a){return a instanceof _.I?a:new _.I(_.Gt(a))};_.O=function(){_.F.call(this)};_.D(_.O,_.F);_.O.W=function(){return{}};_.O.prototype.Ud=function(a){_.rr(this,a)};_.O[_.gg]=function(){return!0};var mha=function(a,b){var c=_.Fb(b).map(function(d){return _.dg(d)}).filter(function(d){return d instanceof _.Ke});_.$n(_.cg.Ta(),c);return _.Db(b,function(d){return _.ng(d,a.Xd())})};_.Re({service:function(a,b){return mha(a,b)}},!0); _.mi(_.Rp); var oha,IA,nha,qha,pha;_.GA=function(a,b){a=_.nb(a);return _.Ma(b.map(function(c){return _.Oa(_.nb(c))}).join(_.Oa(a).toString()))};_.HA=function(a){return _.GA("",a)};oha=function(a){if(!IA.test(a))throw Error("B");if(nha.indexOf(a.toUpperCase())!==-1)throw Error("B");}; _.JA=function(a){for(var b="",c=Object.keys(a),d=0;d<c.length;d++){var e=c[d],f=a[e];if(!IA.test(e))throw Error("B");if(f!==void 0&&f!==null){if(/^on./i.test(e))throw Error("B");pha.indexOf(e.toLowerCase())!==-1&&(f=_.$a(f)?f.toString():_.gb(String(f))\|\|"about:invalid#zClosurez");f=e+'="'+_.nb(String(f))+'"';b+=" "+f}}return b}; _.KA=function(a,b,c){oha(a);var d="<"+a;b&&(d+=_.JA(b));Array.isArray(c)\|\|(c=c===void 0?[]:[c]);qha.indexOf(a.toUpperCase())!==-1?d+=">":(b=_.HA(c.map(function(e){return _.Na(e)?e:_.nb(String(e))})),d+=">"+b.toString()+"</"+a+">");return _.Ma(d)};_.LA=function(a){for(var b=[],c=0;c<arguments.length;c++){var d=arguments[c];if(Array.isArray(d))for(var e=0;e<d.length;e+=8192)for(var f=_.LA.apply(null,_.xa(d,e,e+8192)),g=0;g<f.length;g++)b.push(f[g]);else b.push(d)}return b}; _.MA=function(a,b){b=_.hb(b);b!==void 0&&(a.href=b)};_.NA=function(a,b){var c=c===void 0?0:c;return _.ke(_.Sl(a,b),c)};_.OA=function(a,b,c){this.l=a;this.j=b;this.o=c===void 0?null:c};_.OA.prototype.Bb=function(){return this.l};_.Th.prototype.Rg=_.ca(23,function(a){this.oa=a.replace(_.Es,"_")});_.Af.prototype.Mg=_.ca(6,function(a,b){return new _.OA(this,a,b===void 0?null:b)}); _.Oq.prototype.Mg=_.ca(5,function(){try{if(!this.j)return null;if("response"in this.j)return this.j.response;switch(this.na){case "":case "text":return this.j.responseText;case "arraybuffer":if("mozResponseArrayBuffer"in this.j)return this.j.mozResponseArrayBuffer}return null}catch(a){return null}});IA=/^[a-z][a-z\d-]*$/i;nha="APPLET BASE EMBED IFRAME LINK MATH META OBJECT SCRIPT STYLE SVG TEMPLATE".split(" ");qha="AREA BR COL COMMAND HR IMG INPUT KEYGEN PARAM SOURCE TRACK WBR".split(" "); pha=["action","formaction","href"];_.PA=function(a,b){var c=c===void 0?0:c;a=a.va;var d=(0,_.Pd)(a),e=_.de(a,d,b);var
URL: JavaScript Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "This appears to be a standard Webpack bundle loader script. It contains module loading logic, chunk management, and script loading functionality typical of Webpack builds. While it uses dynamic script loading and DOM manipulation, these are legitimate practices for module bundling. No suspicious domains, data exfiltration, or malicious patterns detected." }
!function(){"use strict";var e={},t={};function n(r){var o=t[r];if(void 0!==o)return o.exports;var i=t[r]={id:r,loaded:!1,exports:{}},u=!0;try{e[r].call(i.exports,i,i.exports,n),u=!1}finally{u&&delete t[r]}return i.loaded=!0,i.exports}n.m=e,function(){var e=[];n.O=function(t,r,o,i){if(!r){var u=1/0;for(l=0;l<e.length;l++){r=e[l][0],o=e[l][1],i=e[l][2];for(var f=!0,c=0;c<r.length;c++)(!1&i\|\|u>=i)&&Object.keys(n.O).every((function(e){return n.O[e](r[c])}))?r.splice(c--,1):(f=!1,i<u&&(u=i));if(f){e.splice(l--,1);var a=o();void 0!==a&&(t=a)}}return t}i=i\|\|0;for(var l=e.length;l>0&&e[l-1][2]>i;l--)e[l]=e[l-1];e[l]=[r,o,i]}}(),n.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return n.d(t,{a:t}),t},function(){var e,t=Object.getPrototypeOf?function(e){return Object.getPrototypeOf(e)}:function(e){return e.__proto__};n.t=function(r,o){if(1&o&&(r=this(r)),8&o)return r;if("object"===typeof r&&r){if(4&o&&r.__esModule)return r;if(16&o&&"function"===typeof r.then)return r}var i=Object.create(null);n.r(i);var u={};e=e\|\|[null,t({}),t([]),t(t)];for(var f=2&o&&r;"object"==typeof f&&!~e.indexOf(f);f=t(f))Object.getOwnPropertyNames(f).forEach((function(e){u[e]=function(){return r[e]}}));return u.default=function(){return r},n.d(i,u),i}}(),n.d=function(e,t){for(var r in t)n.o(t,r)&&!n.o(e,r)&&Object.defineProperty(e,r,{enumerable:!0,get:t[r]})},n.f={},n.e=function(e){return Promise.all(Object.keys(n.f).reduce((function(t,r){return n.f[r](e,t),t}),[]))},n.u=function(e){return"static/chunks/"+e+"."+{569:"a9dc076f65fce560",651:"34db098be2f3be14"}[e]+".js"},n.miniCssF=function(e){return"static/css/a63a29fe10a5e89e.css"},n.g=function(){if("object"===typeof globalThis)return globalThis;try{return this\|\|new Function("return this")()}catch(e){if("object"===typeof window)return window}}(),n.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)},function(){var e={},t="_N_E:";n.l=function(r,o,i,u){if(e[r])e[r].push(o);else{var f,c;if(void 0!==i)for(var a=document.getElementsByTagName("script"),l=0;l<a.length;l++){var s=a[l];if(s.getAttribute("src")==r\|\|s.getAttribute("data-webpack")==t+i){f=s;break}}f\|\|(c=!0,(f=document.createElement("script")).charset="utf-8",f.timeout=120,n.nc&&f.setAttribute("nonce",n.nc),f.setAttribute("data-webpack",t+i),f.src=r),e[r]=[o];var d=function(t,n){f.onerror=f.onload=null,clearTimeout(p);var o=e[r];if(delete e[r],f.parentNode&&f.parentNode.removeChild(f),o&&o.forEach((function(e){return e(n)})),t)return t(n)},p=setTimeout(d.bind(null,void 0,{type:"timeout",target:f}),12e4);f.onerror=d.bind(null,f.onerror),f.onload=d.bind(null,f.onload),c&&document.head.appendChild(f)}}}(),n.r=function(e){"undefined"!==typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.nmd=function(e){return e.paths=[],e.children\|\|(e.children=[]),e},n.p="/_next/",function(){var e={272:0};n.f.j=function(t,r){var o=n.o(e,t)?e[t]:void 0;if(0!==o)if(o)r.push(o[2]);else if(272!=t){var i=new Promise((function(n,r){o=e[t]=[n,r]}));r.push(o[2]=i);var u=n.p+n.u(t),f=new Error;n.l(u,(function(r){if(n.o(e,t)&&(0!==(o=e[t])&&(e[t]=void 0),o)){var i=r&&("load"===r.type?"missing":r.type),u=r&&r.target&&r.target.src;f.message="Loading chunk "+t+" failed.\n("+i+": "+u+")",f.name="ChunkLoadError",f.type=i,f.request=u,o[1](f)}}),"chunk-"+t,t)}else e[t]=0},n.O.j=function(t){return 0===e[t]};var t=function(t,r){var o,i,u=r[0],f=r[1],c=r[2],a=0;if(u.some((function(t){return 0!==e[t]}))){for(o in f)n.o(f,o)&&(n.m[o]=f[o]);if(c)var l=c(n)}for(t&&t(r);a<u.length;a++)i=u[a],n.o(e,i)&&e[i]&&e[i][0](),e[u[a]]=0;return n.O(l)},r=self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[];r.forEach(t.bind(null,0)),r.push=t.bind(null,r.push.bind(r))}()}();
URL: https://0azeevmdi7.codedesign.app/ Model: Joe Sandbox AI	{ "brands": [ "LT Foods Americas" ] }

URL: https://google.com/404/ Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false }

URL: https://www.google.com/ Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false }

URL: https://www.google.com/ Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false }

URL: https://www.google.com/ Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false }

URL: https://google.com/404/ Model: Joe Sandbox AI	{ "brands": [] }

URL: https://www.google.com/ Model: Joe Sandbox AI	{ "brands": [ "Google" ] }

URL: https://www.google.com/ Model: Joe Sandbox AI	{ "brands": [ "Google" ] }

URL: https://www.google.com/ Model: Joe Sandbox AI	{ "brands": [ "Google" ] }

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (65536), with no line terminators
Category:	dropped
Size (bytes):	859026
Entropy (8bit):	5.587473786302262
Encrypted:	false
SSDEEP:	12288:R5HtmAlTSAtgIU9DzbKFYB4EBYs+d9OQwK:R5HtmOSAtgIU9D2Y+EBYs+eQwK
MD5:	27D87FD4AADA75F99712DA5A484D4853
SHA1:	130C7567B1645946ED3AFE643AE75DD3D33E4C4C
SHA-256:	5EFAE7E29F73CF1FB29104402C9B8B3B91AEED3A4D988CCEFF3849273AB78F6C
SHA-512:	3121569FF933AE8FB8986569C1176327BCA3AEC18D12B7821BFEDB1C799F31FB46E0D666FCD8EDFE892C1207A069C7B8B107546E6C92B90DE86872E5DF71FACC
Malicious:	false
Reputation:	low
Preview:	(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[888],{6664:function(t,e,n){!function(t,e){"use strict";function n(t,e){var n=Object.keys(t);if(Object.getOwnPropertySymbols){var o=Object.getOwnPropertySymbols(t);e&&(o=o.filter((function(e){return Object.getOwnPropertyDescriptor(t,e).enumerable}))),n.push.apply(n,o)}return n}function o(t){for(var e=1;e<arguments.length;e++){var o=null!=arguments[e]?arguments[e]:{};e%2?n(Object(o),!0).forEach((function(e){a(t,e,o[e])})):Object.getOwnPropertyDescriptors?Object.defineProperties(t,Object.getOwnPropertyDescriptors(o)):n(Object(o)).forEach((function(e){Object.defineProperty(t,e,Object.getOwnPropertyDescriptor(o,e))}))}return t}function r(t){return(r="function"===typeof Symbol&&"symbol"===typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"===typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function a(t,e,n){return e in t?Object.defineProperty(t,e,{value:n,enumerable:!0,

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Dec 3, 2024 18:10:13.564239025 CET	192.168.2.4	1.1.1.1	0xd405	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:13.564389944 CET	192.168.2.4	1.1.1.1	0x1823	Standard query (0)	www.google.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:15.228178024 CET	192.168.2.4	1.1.1.1	0x1339	Standard query (0)	0azeevmdi7.codedesign.app	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:15.228589058 CET	192.168.2.4	1.1.1.1	0x1f43	Standard query (0)	0azeevmdi7.codedesign.app	65	IN (0x0001)	false
Dec 3, 2024 18:10:18.733530045 CET	192.168.2.4	1.1.1.1	0xefe2	Standard query (0)	use.fontawesome.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:18.733668089 CET	192.168.2.4	1.1.1.1	0xcb35	Standard query (0)	use.fontawesome.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:18.734451056 CET	192.168.2.4	1.1.1.1	0xae61	Standard query (0)	res.cloudinary.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:18.734781981 CET	192.168.2.4	1.1.1.1	0x7f73	Standard query (0)	res.cloudinary.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:20.858551979 CET	192.168.2.4	1.1.1.1	0x24ac	Standard query (0)	res.cloudinary.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:20.858731985 CET	192.168.2.4	1.1.1.1	0x6d05	Standard query (0)	res.cloudinary.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:21.794140100 CET	192.168.2.4	1.1.1.1	0xd0b0	Standard query (0)	0azeevmdi7.codedesign.app	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:21.794295073 CET	192.168.2.4	1.1.1.1	0x8bb2	Standard query (0)	0azeevmdi7.codedesign.app	65	IN (0x0001)	false
Dec 3, 2024 18:10:24.035340071 CET	192.168.2.4	1.1.1.1	0xfa09	Standard query (0)	js.stripe.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:24.035340071 CET	192.168.2.4	1.1.1.1	0x78c0	Standard query (0)	js.stripe.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:27.630594015 CET	192.168.2.4	1.1.1.1	0xb9da	Standard query (0)	js.stripe.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:27.630752087 CET	192.168.2.4	1.1.1.1	0x42f6	Standard query (0)	js.stripe.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:32.659846067 CET	192.168.2.4	1.1.1.1	0x41bb	Standard query (0)	js.stripe.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:32.659977913 CET	192.168.2.4	1.1.1.1	0x3e88	Standard query (0)	js.stripe.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:36.289549112 CET	192.168.2.4	1.1.1.1	0x4e76	Standard query (0)	m.stripe.network	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:36.289710999 CET	192.168.2.4	1.1.1.1	0x2387	Standard query (0)	m.stripe.network	65	IN (0x0001)	false
Dec 3, 2024 18:10:41.471378088 CET	192.168.2.4	1.1.1.1	0xd0d5	Standard query (0)	lottones.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:41.471565008 CET	192.168.2.4	1.1.1.1	0x82d6	Standard query (0)	lottones.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:42.278573990 CET	192.168.2.4	1.1.1.1	0xb388	Standard query (0)	m.stripe.network	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:42.278738022 CET	192.168.2.4	1.1.1.1	0x4f88	Standard query (0)	m.stripe.network	65	IN (0x0001)	false
Dec 3, 2024 18:10:45.900418997 CET	192.168.2.4	1.1.1.1	0xd159	Standard query (0)	google.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:45.900554895 CET	192.168.2.4	1.1.1.1	0xa71b	Standard query (0)	google.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:46.454452038 CET	192.168.2.4	1.1.1.1	0xaa7a	Standard query (0)	m.stripe.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:46.454668045 CET	192.168.2.4	1.1.1.1	0xc289	Standard query (0)	m.stripe.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:48.905545950 CET	192.168.2.4	1.1.1.1	0x6418	Standard query (0)	m.stripe.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:48.905767918 CET	192.168.2.4	1.1.1.1	0xd88f	Standard query (0)	m.stripe.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:51.269295931 CET	192.168.2.4	1.1.1.1	0xf15f	Standard query (0)	stripe.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:51.269455910 CET	192.168.2.4	1.1.1.1	0x28aa	Standard query (0)	stripe.com	65	IN (0x0001)	false
Dec 3, 2024 18:10:51.321320057 CET	192.168.2.4	1.1.1.1	0xdb62	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:51.321481943 CET	192.168.2.4	1.1.1.1	0x713b	Standard query (0)	www.google.com	65	IN (0x0001)	false
Dec 3, 2024 18:11:12.868957043 CET	192.168.2.4	1.1.1.1	0x7b75	Standard query (0)	ogs.google.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:11:12.869282961 CET	192.168.2.4	1.1.1.1	0x8a7e	Standard query (0)	ogs.google.com	65	IN (0x0001)	false
Dec 3, 2024 18:11:13.857534885 CET	192.168.2.4	1.1.1.1	0x76ba	Standard query (0)	play.google.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:11:13.857677937 CET	192.168.2.4	1.1.1.1	0xf8ae	Standard query (0)	play.google.com	65	IN (0x0001)	false
Dec 3, 2024 18:11:15.601871014 CET	192.168.2.4	1.1.1.1	0xb576	Standard query (0)	apis.google.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:11:15.602078915 CET	192.168.2.4	1.1.1.1	0x4de2	Standard query (0)	apis.google.com	65	IN (0x0001)	false
Dec 3, 2024 18:11:16.778582096 CET	192.168.2.4	1.1.1.1	0x8215	Standard query (0)	play.google.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:11:16.778964996 CET	192.168.2.4	1.1.1.1	0x5dc7	Standard query (0)	play.google.com	65	IN (0x0001)	false
Dec 3, 2024 18:11:19.489631891 CET	192.168.2.4	1.1.1.1	0xe043	Standard query (0)	apis.google.com	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:11:19.489769936 CET	192.168.2.4	1.1.1.1	0x8f3d	Standard query (0)	apis.google.com	65	IN (0x0001)	false

Timestamp	Source IP	Dest IP	Trans ID	Reply Code	Name	CName	Address	Type	Class	DNS over HTTPS
Dec 3, 2024 18:10:13.701715946 CET	1.1.1.1	192.168.2.4	0x1823	No error (0)	www.google.com			65	IN (0x0001)	false
Dec 3, 2024 18:10:13.701827049 CET	1.1.1.1	192.168.2.4	0xd405	No error (0)	www.google.com		142.250.181.100	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:15.583961964 CET	1.1.1.1	192.168.2.4	0x1339	No error (0)	0azeevmdi7.codedesign.app		20.219.20.151	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:18.874578953 CET	1.1.1.1	192.168.2.4	0xae61	No error (0)	res.cloudinary.com	cloudinary.map.fastly.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:18.874578953 CET	1.1.1.1	192.168.2.4	0xae61	No error (0)	cloudinary.map.fastly.net		151.101.129.137	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:18.874578953 CET	1.1.1.1	192.168.2.4	0xae61	No error (0)	cloudinary.map.fastly.net		151.101.193.137	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:18.874578953 CET	1.1.1.1	192.168.2.4	0xae61	No error (0)	cloudinary.map.fastly.net		151.101.1.137	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:18.874578953 CET	1.1.1.1	192.168.2.4	0xae61	No error (0)	cloudinary.map.fastly.net		151.101.65.137	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:18.980833054 CET	1.1.1.1	192.168.2.4	0xefe2	No error (0)	use.fontawesome.com	use.fontawesome.com.cdn.cloudflare.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:18.985347986 CET	1.1.1.1	192.168.2.4	0xcb35	No error (0)	use.fontawesome.com	use.fontawesome.com.cdn.cloudflare.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:19.049232006 CET	1.1.1.1	192.168.2.4	0x7f73	No error (0)	res.cloudinary.com	cloudinary.map.fastly.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:20.998477936 CET	1.1.1.1	192.168.2.4	0x24ac	No error (0)	res.cloudinary.com	cloudinary.map.fastly.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:20.998477936 CET	1.1.1.1	192.168.2.4	0x24ac	No error (0)	cloudinary.map.fastly.net		151.101.65.137	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:20.998477936 CET	1.1.1.1	192.168.2.4	0x24ac	No error (0)	cloudinary.map.fastly.net		151.101.193.137	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:20.998477936 CET	1.1.1.1	192.168.2.4	0x24ac	No error (0)	cloudinary.map.fastly.net		151.101.1.137	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:20.998477936 CET	1.1.1.1	192.168.2.4	0x24ac	No error (0)	cloudinary.map.fastly.net		151.101.129.137	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:20.998856068 CET	1.1.1.1	192.168.2.4	0x6d05	No error (0)	res.cloudinary.com	cloudinary.map.fastly.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:22.079195976 CET	1.1.1.1	192.168.2.4	0xd0b0	No error (0)	0azeevmdi7.codedesign.app		20.219.20.151	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:24.173027992 CET	1.1.1.1	192.168.2.4	0xfa09	No error (0)	js.stripe.com	stripecdn.map.fastly.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:24.173027992 CET	1.1.1.1	192.168.2.4	0xfa09	No error (0)	stripecdn.map.fastly.net		151.101.192.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:24.173027992 CET	1.1.1.1	192.168.2.4	0xfa09	No error (0)	stripecdn.map.fastly.net		151.101.128.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:24.173027992 CET	1.1.1.1	192.168.2.4	0xfa09	No error (0)	stripecdn.map.fastly.net		151.101.64.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:24.173027992 CET	1.1.1.1	192.168.2.4	0xfa09	No error (0)	stripecdn.map.fastly.net		151.101.0.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:24.337519884 CET	1.1.1.1	192.168.2.4	0x78c0	No error (0)	js.stripe.com	dexeqbeb7giwr.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:27.772102118 CET	1.1.1.1	192.168.2.4	0xb9da	No error (0)	js.stripe.com	stripecdn.map.fastly.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:27.772102118 CET	1.1.1.1	192.168.2.4	0xb9da	No error (0)	stripecdn.map.fastly.net		151.101.0.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:27.772102118 CET	1.1.1.1	192.168.2.4	0xb9da	No error (0)	stripecdn.map.fastly.net		151.101.128.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:27.772102118 CET	1.1.1.1	192.168.2.4	0xb9da	No error (0)	stripecdn.map.fastly.net		151.101.192.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:27.772102118 CET	1.1.1.1	192.168.2.4	0xb9da	No error (0)	stripecdn.map.fastly.net		151.101.64.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:27.877266884 CET	1.1.1.1	192.168.2.4	0x42f6	No error (0)	js.stripe.com	dexeqbeb7giwr.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:32.799954891 CET	1.1.1.1	192.168.2.4	0x3e88	No error (0)	js.stripe.com	dexeqbeb7giwr.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:32.800201893 CET	1.1.1.1	192.168.2.4	0x41bb	No error (0)	js.stripe.com	stripecdn.map.fastly.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:32.800201893 CET	1.1.1.1	192.168.2.4	0x41bb	No error (0)	stripecdn.map.fastly.net		151.101.128.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:32.800201893 CET	1.1.1.1	192.168.2.4	0x41bb	No error (0)	stripecdn.map.fastly.net		151.101.192.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:32.800201893 CET	1.1.1.1	192.168.2.4	0x41bb	No error (0)	stripecdn.map.fastly.net		151.101.64.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:32.800201893 CET	1.1.1.1	192.168.2.4	0x41bb	No error (0)	stripecdn.map.fastly.net		151.101.0.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:36.428581953 CET	1.1.1.1	192.168.2.4	0x4e76	No error (0)	m.stripe.network	prod-m-tree.stripe.network		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:36.428581953 CET	1.1.1.1	192.168.2.4	0x4e76	No error (0)	prod-m-tree.stripe.network	d1tcqh4bio8cty.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:36.428581953 CET	1.1.1.1	192.168.2.4	0x4e76	No error (0)	d1tcqh4bio8cty.cloudfront.net		108.158.75.118	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:36.428581953 CET	1.1.1.1	192.168.2.4	0x4e76	No error (0)	d1tcqh4bio8cty.cloudfront.net		108.158.75.14	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:36.428581953 CET	1.1.1.1	192.168.2.4	0x4e76	No error (0)	d1tcqh4bio8cty.cloudfront.net		108.158.75.47	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:36.428581953 CET	1.1.1.1	192.168.2.4	0x4e76	No error (0)	d1tcqh4bio8cty.cloudfront.net		108.158.75.96	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:36.516351938 CET	1.1.1.1	192.168.2.4	0x2387	No error (0)	m.stripe.network	prod-m-tree.stripe.network		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:36.516351938 CET	1.1.1.1	192.168.2.4	0x2387	No error (0)	prod-m-tree.stripe.network	d1tcqh4bio8cty.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:41.748907089 CET	1.1.1.1	192.168.2.4	0x82d6	No error (0)	lottones.com			65	IN (0x0001)	false
Dec 3, 2024 18:10:41.750030041 CET	1.1.1.1	192.168.2.4	0xd0d5	No error (0)	lottones.com		104.21.87.110	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:41.750030041 CET	1.1.1.1	192.168.2.4	0xd0d5	No error (0)	lottones.com		172.67.169.100	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:42.549319983 CET	1.1.1.1	192.168.2.4	0xb388	No error (0)	m.stripe.network	prod-m-tree.stripe.network		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:42.549319983 CET	1.1.1.1	192.168.2.4	0xb388	No error (0)	prod-m-tree.stripe.network	stripecdn.map.fastly.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:42.549319983 CET	1.1.1.1	192.168.2.4	0xb388	No error (0)	stripecdn.map.fastly.net		151.101.0.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:42.549319983 CET	1.1.1.1	192.168.2.4	0xb388	No error (0)	stripecdn.map.fastly.net		151.101.64.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:42.549319983 CET	1.1.1.1	192.168.2.4	0xb388	No error (0)	stripecdn.map.fastly.net		151.101.128.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:42.549319983 CET	1.1.1.1	192.168.2.4	0xb388	No error (0)	stripecdn.map.fastly.net		151.101.192.176	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:42.617978096 CET	1.1.1.1	192.168.2.4	0x4f88	No error (0)	m.stripe.network	prod-m-tree.stripe.network		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:42.617978096 CET	1.1.1.1	192.168.2.4	0x4f88	No error (0)	prod-m-tree.stripe.network	stripecdn.map.fastly.net		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:10:46.039392948 CET	1.1.1.1	192.168.2.4	0xd159	No error (0)	google.com		142.250.181.142	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:46.044331074 CET	1.1.1.1	192.168.2.4	0xa71b	No error (0)	google.com			65	IN (0x0001)	false
Dec 3, 2024 18:10:46.596163034 CET	1.1.1.1	192.168.2.4	0xaa7a	No error (0)	m.stripe.com		35.167.129.248	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:46.596163034 CET	1.1.1.1	192.168.2.4	0xaa7a	No error (0)	m.stripe.com		52.89.181.148	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:46.596163034 CET	1.1.1.1	192.168.2.4	0xaa7a	No error (0)	m.stripe.com		35.167.104.255	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:46.596163034 CET	1.1.1.1	192.168.2.4	0xaa7a	No error (0)	m.stripe.com		35.164.166.224	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:46.596163034 CET	1.1.1.1	192.168.2.4	0xaa7a	No error (0)	m.stripe.com		35.166.55.100	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:46.596163034 CET	1.1.1.1	192.168.2.4	0xaa7a	No error (0)	m.stripe.com		54.245.130.147	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:46.596163034 CET	1.1.1.1	192.168.2.4	0xaa7a	No error (0)	m.stripe.com		54.213.186.67	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:46.596163034 CET	1.1.1.1	192.168.2.4	0xaa7a	No error (0)	m.stripe.com		54.213.186.132	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:49.043361902 CET	1.1.1.1	192.168.2.4	0x6418	No error (0)	m.stripe.com		35.167.129.248	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:49.043361902 CET	1.1.1.1	192.168.2.4	0x6418	No error (0)	m.stripe.com		52.89.181.148	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:49.043361902 CET	1.1.1.1	192.168.2.4	0x6418	No error (0)	m.stripe.com		35.166.55.100	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:49.043361902 CET	1.1.1.1	192.168.2.4	0x6418	No error (0)	m.stripe.com		54.245.130.147	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:49.043361902 CET	1.1.1.1	192.168.2.4	0x6418	No error (0)	m.stripe.com		52.34.30.20	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:49.043361902 CET	1.1.1.1	192.168.2.4	0x6418	No error (0)	m.stripe.com		35.167.104.255	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:49.043361902 CET	1.1.1.1	192.168.2.4	0x6418	No error (0)	m.stripe.com		54.213.161.233	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:49.043361902 CET	1.1.1.1	192.168.2.4	0x6418	No error (0)	m.stripe.com		54.213.186.67	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:51.460360050 CET	1.1.1.1	192.168.2.4	0xdb62	No error (0)	www.google.com		172.217.171.228	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:51.519957066 CET	1.1.1.1	192.168.2.4	0xf15f	No error (0)	stripe.com		18.202.131.124	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:51.519957066 CET	1.1.1.1	192.168.2.4	0xf15f	No error (0)	stripe.com		52.30.58.64	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:51.519957066 CET	1.1.1.1	192.168.2.4	0xf15f	No error (0)	stripe.com		52.49.17.168	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:10:51.558041096 CET	1.1.1.1	192.168.2.4	0x713b	No error (0)	www.google.com			65	IN (0x0001)	false
Dec 3, 2024 18:11:13.007482052 CET	1.1.1.1	192.168.2.4	0x8a7e	No error (0)	ogs.google.com	www3.l.google.com		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:11:13.009309053 CET	1.1.1.1	192.168.2.4	0x7b75	No error (0)	ogs.google.com	www3.l.google.com		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:11:13.009309053 CET	1.1.1.1	192.168.2.4	0x7b75	No error (0)	www3.l.google.com		142.250.181.142	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:11:13.996268034 CET	1.1.1.1	192.168.2.4	0x76ba	No error (0)	play.google.com		172.217.19.206	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:11:15.753864050 CET	1.1.1.1	192.168.2.4	0xb576	No error (0)	apis.google.com	plus.l.google.com		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:11:15.753864050 CET	1.1.1.1	192.168.2.4	0xb576	No error (0)	plus.l.google.com		172.217.17.78	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:11:15.855712891 CET	1.1.1.1	192.168.2.4	0x4de2	No error (0)	apis.google.com	plus.l.google.com		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:11:16.918092966 CET	1.1.1.1	192.168.2.4	0x8215	No error (0)	play.google.com		172.217.19.206	A (IP address)	IN (0x0001)	false
Dec 3, 2024 18:11:19.627958059 CET	1.1.1.1	192.168.2.4	0x8f3d	No error (0)	apis.google.com	plus.l.google.com		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:11:19.629385948 CET	1.1.1.1	192.168.2.4	0xe043	No error (0)	apis.google.com	plus.l.google.com		CNAME (Canonical name)	IN (0x0001)	false
Dec 3, 2024 18:11:19.629385948 CET	1.1.1.1	192.168.2.4	0xe043	No error (0)	plus.l.google.com		142.250.181.110	A (IP address)	IN (0x0001)	false

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:15 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-12-03 17:10:15 UTC	479	IN	HTTP/1.1 200 OK Content-Type: application/octet-stream Server: Kestrel ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json X-OSID: 2 X-CID: 2 X-CCC: GB Cache-Control: public, max-age=161233 Date: Tue, 03 Dec 2024 17:10:15 GMT Connection: close X-CID: 2

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:17 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-12-03 17:10:18 UTC	534	IN	HTTP/1.1 200 OK Content-Type: application/octet-stream Last-Modified: Tue, 16 May 2017 22:58:00 GMT ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json X-Azure-Ref: 0WwMRYwAAAABe7whxSEuqSJRuLqzPsqCaTE9OMjFFREdFMTcxNQBjZWZjMjU4My1hOWIyLTQ0YTctOTc1NS1iNzZkMTdlMDVmN2Y= Cache-Control: public, max-age=68107 Date: Tue, 03 Dec 2024 17:10:17 GMT Content-Length: 55 Connection: close X-CID: 2
2024-12-03 17:10:18 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:17 UTC	668	OUT	GET / HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:18 UTC	400	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:18 GMT Content-Type: text/html; charset=utf-8 Content-Length: 42013 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Vary: User-Agent, Viewport-Width, Accept-Encoding Cache-Control: public, s-maxage=20, stale-while-revalidate=59 X-Powered-By: Next.js ETag: "a41d-tPiemr0uGajXSumNqzk3q8tw9pA"
2024-12-03 17:10:18 UTC	15984	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 65 6c 6f 61 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 66 6f 6e 74 61 77 65 73 6f 6d 65 2e 63 6f 6d 2f 72 65 6c 65 61 73 65 73 2f 76 35 2e 31 35 2e 34 2f 63 73 73 2f 61 6c 6c 2e 63 73 73 22 20 61 73 3d 22 73 74 79 6c 65 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 65 72 73 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 31 2e 31 2e 31 32 35 22 2f 3e 3c 6d 65 74 61 20 Data Ascii: <!DOCTYPE html><html><head><link rel="preload" href="https://use.fontawesome.com/releases/v5.15.4/css/all.css" as="style"/><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"/><meta name="version" content="1.1.125"/><meta
2024-12-03 17:10:18 UTC	16384	IN	Data Raw: 65 64 22 3a 22 74 72 75 65 22 2c 22 63 75 73 74 6f 6d 22 3a 22 74 72 75 65 22 2c 22 74 79 70 65 22 3a 22 62 6c 6f 63 6b 22 2c 22 67 69 76 65 6e 4e 61 6d 65 22 3a 22 43 6f 6e 74 61 69 6e 65 72 22 2c 22 70 72 6f 70 73 22 3a 7b 22 63 6f 6d 70 6f 6e 65 6e 74 53 74 79 6c 65 22 3a 7b 22 67 6c 6f 62 61 6c 22 3a 7b 22 70 61 64 64 69 6e 67 22 3a 22 31 36 70 78 20 31 36 70 78 20 31 36 70 78 20 31 36 70 78 22 2c 22 66 6c 65 78 44 69 72 65 63 74 69 6f 6e 22 3a 22 63 6f 6c 75 6d 6e 22 2c 22 6a 75 73 74 69 66 79 43 6f 6e 74 65 6e 74 22 3a 22 63 65 6e 74 65 72 22 2c 22 61 6c 69 67 6e 49 74 65 6d 73 22 3a 22 66 6c 65 78 2d 73 74 61 72 74 22 2c 22 63 6f 6c 75 6d 6e 47 61 70 22 3a 22 30 70 78 22 2c 22 72 6f 77 47 61 70 22 3a 22 38 70 78 22 7d 7d 7d 2c 22 7a 49 6e 64 65 78 Data Ascii: ed":"true","custom":"true","type":"block","givenName":"Container","props":{"componentStyle":{"global":{"padding":"16px 16px 16px 16px","flexDirection":"column","justifyContent":"center","alignItems":"flex-start","columnGap":"0px","rowGap":"8px"}}},"zIndex
2024-12-03 17:10:18 UTC	9645	IN	Data Raw: 74 74 6f 6e 61 61 55 72 22 3a 7b 22 63 6c 69 65 6e 74 49 64 22 3a 22 42 75 74 74 6f 6e 61 61 55 72 22 2c 22 66 6f 6e 74 46 61 6d 69 6c 79 22 3a 22 4e 6f 74 6f 20 53 61 6e 73 20 54 43 22 7d 2c 22 42 75 74 74 6f 6e 63 4f 46 54 22 3a 7b 22 63 6c 69 65 6e 74 49 64 22 3a 22 42 75 74 74 6f 6e 63 4f 46 54 22 2c 22 66 6f 6e 74 46 61 6d 69 6c 79 22 3a 22 4e 75 6e 69 74 6f 20 53 61 6e 73 22 7d 2c 22 42 75 74 74 6f 6e 64 4a 4d 38 22 3a 7b 22 63 6c 69 65 6e 74 49 64 22 3a 22 42 75 74 74 6f 6e 64 4a 4d 38 22 2c 22 66 6f 6e 74 46 61 6d 69 6c 79 22 3a 22 4b 75 6d 62 68 20 53 61 6e 73 22 7d 2c 22 42 75 74 74 6f 6e 6b 75 54 4e 22 3a 7b 22 63 6c 69 65 6e 74 49 64 22 3a 22 42 75 74 74 6f 6e 6b 75 54 4e 22 2c 22 66 6f 6e 74 46 61 6d 69 6c 79 22 3a 22 50 6f 70 70 69 6e 73 22 Data Ascii: ttonaaUr":{"clientId":"ButtonaaUr","fontFamily":"Noto Sans TC"},"ButtoncOFT":{"clientId":"ButtoncOFT","fontFamily":"Nunito Sans"},"ButtondJM8":{"clientId":"ButtondJM8","fontFamily":"Kumbh Sans"},"ButtonkuTN":{"clientId":"ButtonkuTN","fontFamily":"Poppins"

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:18 UTC	624	OUT	GET /_next/static/css/a63a29fe10a5e89e.css HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" downlink: 1.45 sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 viewport-width: 1280 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:19 UTC	391	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:19 GMT Content-Type: text/css; charset=UTF-8 Content-Length: 47473 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:46 GMT ETag: W/"b971-1934ea65e88" Vary: Accept-Encoding
2024-12-03 17:10:19 UTC	15993	IN	Data Raw: 3a 72 6f 6f 74 7b 2d 2d 74 6f 61 73 74 69 66 79 2d 63 6f 6c 6f 72 2d 6c 69 67 68 74 3a 23 66 66 66 3b 2d 2d 74 6f 61 73 74 69 66 79 2d 63 6f 6c 6f 72 2d 64 61 72 6b 3a 23 31 32 31 32 31 32 3b 2d 2d 74 6f 61 73 74 69 66 79 2d 63 6f 6c 6f 72 2d 69 6e 66 6f 3a 23 33 34 39 38 64 62 3b 2d 2d 74 6f 61 73 74 69 66 79 2d 63 6f 6c 6f 72 2d 73 75 63 63 65 73 73 3a 23 30 37 62 63 30 63 3b 2d 2d 74 6f 61 73 74 69 66 79 2d 63 6f 6c 6f 72 2d 77 61 72 6e 69 6e 67 3a 23 66 31 63 34 30 66 3b 2d 2d 74 6f 61 73 74 69 66 79 2d 63 6f 6c 6f 72 2d 65 72 72 6f 72 3a 23 65 37 34 63 33 63 3b 2d 2d 74 6f 61 73 74 69 66 79 2d 63 6f 6c 6f 72 2d 74 72 61 6e 73 70 61 72 65 6e 74 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 30 2e 37 29 3b 2d 2d 74 6f 61 73 74 69 66 79 2d 69 63 6f 6e Data Ascii: :root{--toastify-color-light:#fff;--toastify-color-dark:#121212;--toastify-color-info:#3498db;--toastify-color-success:#07bc0c;--toastify-color-warning:#f1c40f;--toastify-color-error:#e74c3c;--toastify-color-transparent:hsla(0,0%,100%,0.7);--toastify-icon
2024-12-03 17:10:19 UTC	16384	IN	Data Raw: 74 72 61 6e 73 66 6f 72 6d 3a 70 65 72 73 70 65 63 74 69 76 65 28 34 30 30 70 78 29 20 72 6f 74 61 74 65 58 28 39 30 64 65 67 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 70 65 72 73 70 65 63 74 69 76 65 28 34 30 30 70 78 29 20 72 6f 74 61 74 65 58 28 39 30 64 65 67 29 3b 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 65 61 73 65 2d 69 6e 3b 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 65 61 73 65 2d 69 6e 3b 6f 70 61 63 69 74 79 3a 30 7d 34 30 25 7b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 70 65 72 73 70 65 63 74 69 76 65 28 34 30 30 70 78 29 20 72 6f 74 61 74 65 58 28 2d 32 30 64 65 67 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 70 65 72 73 70 65 63 74 69 76 65 28 34 30 Data Ascii: transform:perspective(400px) rotateX(90deg);transform:perspective(400px) rotateX(90deg);-webkit-animation-timing-function:ease-in;animation-timing-function:ease-in;opacity:0}40%{-webkit-transform:perspective(400px) rotateX(-20deg);transform:perspective(40
2024-12-03 17:10:19 UTC	15096	IN	Data Raw: 72 67 62 61 28 76 61 72 28 2d 2d 5f 67 63 29 2c 30 2e 37 29 20 39 30 25 2c 74 72 61 6e 73 70 61 72 65 6e 74 29 3b 2d 2d 5f 67 33 3a 6e 6f 2d 72 65 70 65 61 74 20 72 61 64 69 61 6c 2d 67 72 61 64 69 65 6e 74 28 66 61 72 74 68 65 73 74 2d 73 69 64 65 2c 72 67 62 61 28 76 61 72 28 2d 2d 5f 67 63 29 2c 30 2e 34 29 20 39 30 25 2c 74 72 61 6e 73 70 61 72 65 6e 74 29 3b 2d 2d 5f 67 34 3a 6e 6f 2d 72 65 70 65 61 74 20 72 61 64 69 61 6c 2d 67 72 61 64 69 65 6e 74 28 66 61 72 74 68 65 73 74 2d 73 69 64 65 2c 72 67 62 61 28 76 61 72 28 2d 2d 5f 67 63 29 2c 30 2e 31 29 20 39 30 25 2c 74 72 61 6e 73 70 61 72 65 6e 74 29 3b 68 65 69 67 68 74 3a 33 30 70 78 3b 61 73 70 65 63 74 2d 72 61 74 69 6f 3a 32 2e 35 3b 62 61 63 6b 67 72 6f 75 6e 64 3a 76 61 72 28 2d 2d 5f 67 31 Data Ascii: rgba(var(--_gc),0.7) 90%,transparent);--_g3:no-repeat radial-gradient(farthest-side,rgba(var(--_gc),0.4) 90%,transparent);--_g4:no-repeat radial-gradient(farthest-side,rgba(var(--_gc),0.1) 90%,transparent);height:30px;aspect-ratio:2.5;background:var(--_g1

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:20 UTC	659	OUT	GET /dmuecdqxy/q_auto/v1733242206/static/logo-ltfoodspng_1733242204_91211.png HTTP/1.1 Host: res.cloudinary.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:20 UTC	852	IN	HTTP/1.1 200 OK Connection: close Content-Length: 2888 Content-Type: image/png Etag: "ab031fc12c018b1335806c84949fda35" Last-Modified: Tue, 03 Dec 2024 16:10:09 GMT Date: Tue, 03 Dec 2024 17:10:20 GMT Vary: Save-Data Strict-Transport-Security: max-age=604800 Cache-Control: private, no-transform, immutable, max-age=2592000 Server-Timing: cld-fastly;dur=183;cpu=106;start=2024-12-03T17:10:20.502Z;desc=miss,rtt;dur=186,content-info;desc="width=312,height=71,bytes=2888,owidth=312,oheight=71,obytes=7180,ef=(1,13,17)",cloudinary;dur=66;start=2024-12-03T17:10:20.612Z Server: Cloudinary Timing-Allow-Origin: * Access-Control-Allow-Origin: * Accept-Ranges: bytes X-Content-Type-Options: nosniff Access-Control-Expose-Headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options x-request-id: 63240dba56b9ec597680e0c487f9895c
2024-12-03 17:10:20 UTC	1378	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 01 38 00 00 00 47 08 03 00 00 00 a4 a2 ab f8 00 00 00 e7 50 4c 54 45 47 70 4c 24 24 24 24 24 24 24 24 24 23 28 25 24 24 24 22 27 25 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 c5 93 4b bd 83 34 e3 6b 27 e3 6a 27 e2 68 27 dc 7c 2f d7 73 2d db 77 2c e4 6c 27 e2 69 27 e4 6c 27 e4 6d 27 e2 68 27 e3 6b 27 e3 69 27 e7 75 28 0b 5f 34 0b 60 34 e7 75 27 0d 61 35 16 67 38 e1 66 27 1a 6a 38 e3 6a 27 e6 71 27 0f 63 35 e4 6d 27 1f 6c 3d 09 5f 34 1a 6c 37 10 63 36 1f 70 39 2d 7c 3c 09 5e 34 09 5e 34 3c 87 40 23 73 39 2a 7a 3b 27 77 3a 4c 96 44 5e a3 47 55 9d 46 50 99 44 b3 75 31 24 24 24 e8 77 28 e4 6d 27 f6 9b 29 e6 72 27 ed 86 29 f5 98 29 e9 7b 28 f1 90 29 ea 7e 28 ef 8b 28 e2 67 27 ec Data Ascii: PNGIHDR8GPLTEGpL$$$$$$$$$#(%$$$"'%$$$$$$$$$$$$$$$$$$$$$$$$K4k'j'h'\|/s-w,l'i'l'm'h'k'i'u(_4`4u'a5g8f'j8j'q'c5m'l=_4l7c6p9-\|<^4^4<@#s9*z;'w:LD^GUFPDu1$$$w(m')r')){()~((g'
2024-12-03 17:10:20 UTC	1378	IN	Data Raw: 26 c5 e2 fd 60 0e 35 f8 1e e0 06 88 13 f0 cc ed 12 ca 36 85 2d 31 43 08 9c c8 7e 39 45 57 27 80 c8 6d 13 e8 12 79 c6 82 80 f3 02 51 a7 f2 a4 39 00 c8 85 c4 3b 19 41 8c 01 70 1b 88 e4 97 5f 37 74 12 1a 45 3c ca a2 06 83 1e c0 ed aa 29 30 da e1 ad b5 21 7c ad 10 58 1d 0a 6f 48 60 b8 83 34 9b 29 5e 85 14 dc b5 0f a0 43 69 c8 7a 99 08 28 5d 61 cd 1f f8 5d 51 dd ef f7 d7 da 55 80 b0 db 6c 60 46 82 de 6a 05 e9 70 af fd e7 33 5f db 34 ed 7f 55 ad 7f de 1a a2 37 f5 91 00 5b f3 41 dd fa 7f a0 05 6b b1 58 58 7f 6e 39 47 5e c8 7f fb 39 35 4e 5b 3d 3f 95 38 fb ef 21 aa 09 44 c7 df cc 9c d8 b9 8e 44 f4 e3 80 93 de e9 93 4c ae 7e 02 6e 26 58 6d e1 7e 86 dd 35 cf 4f 81 9c 5f 57 39 0b 38 18 9c 45 4e dc 5c 47 22 c6 71 c0 bd 33 cc 4e 26 37 3f 61 bf ee e2 13 0d 9c f7 3f 5c Data Ascii: &`56-1C~9EW'myQ9;Ap_7tE<)0!\|XoH`4)^Ciz(]a]QUl`Fjp3_4U7[AkXXn9G^95N[=?8!DDL~n&Xm~5O_W98EN\G"q3N&7?a?\
2024-12-03 17:10:20 UTC	132	IN	Data Raw: 7e fe 4b 84 42 64 70 3b ea bc b1 b2 b1 af 29 a9 bc 65 93 44 1d 62 28 ae 9e 61 9a 45 6e 16 2b b1 e0 4a ee 98 9a 79 80 36 9e ca 35 b1 bd 57 8a 71 da 4e 73 64 59 a1 17 27 20 9e 58 49 0b 4f 9b 7f 5e 54 78 86 6e bf d3 a4 e3 86 f4 46 51 37 51 44 3d e4 0a d0 26 9b d1 6d 7a 49 c9 76 60 67 b2 75 ee 50 30 58 61 74 82 ea c0 df 6c b5 a8 cd ff 00 44 63 a4 53 58 94 21 99 00 00 00 00 49 45 4e 44 ae 42 60 82 Data Ascii: ~KBdp;)eDb(aEn+Jy65WqNsdY' XIO^TxnFQ7QD=&mzIv`guP0XatlDcSX!IENDB`

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:21 UTC	620	OUT	GET /_next/static/chunks/webpack-dfa48d46ec8ebab7.js HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" downlink: 1.45 sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 viewport-width: 1280 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:21 UTC	403	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:21 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 3793 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:46 GMT ETag: W/"ed1-1934ea65e88" Vary: Accept-Encoding
2024-12-03 17:10:21 UTC	3793	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 65 3d 7b 7d 2c 74 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6e 28 72 29 7b 76 61 72 20 6f 3d 74 5b 72 5d 3b 69 66 28 76 6f 69 64 20 30 21 3d 3d 6f 29 72 65 74 75 72 6e 20 6f 2e 65 78 70 6f 72 74 73 3b 76 61 72 20 69 3d 74 5b 72 5d 3d 7b 69 64 3a 72 2c 6c 6f 61 64 65 64 3a 21 31 2c 65 78 70 6f 72 74 73 3a 7b 7d 7d 2c 75 3d 21 30 3b 74 72 79 7b 65 5b 72 5d 2e 63 61 6c 6c 28 69 2e 65 78 70 6f 72 74 73 2c 69 2c 69 2e 65 78 70 6f 72 74 73 2c 6e 29 2c 75 3d 21 31 7d 66 69 6e 61 6c 6c 79 7b 75 26 26 64 65 6c 65 74 65 20 74 5b 72 5d 7d 72 65 74 75 72 6e 20 69 2e 6c 6f 61 64 65 64 3d 21 30 2c 69 2e 65 78 70 6f 72 74 73 7d 6e 2e 6d 3d 65 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 Data Ascii: !function(){"use strict";var e={},t={};function n(r){var o=t[r];if(void 0!==o)return o.exports;var i=t[r]={id:r,loaded:!1,exports:{}},u=!0;try{e[r].call(i.exports,i,i.exports,n),u=!1}finally{u&&delete t[r]}return i.loaded=!0,i.exports}n.m=e,function(){var

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:21 UTC	617	OUT	GET /_next/static/chunks/main-2bde8bbd115c7241.js HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" downlink: 1.45 sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 viewport-width: 1280 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:21 UTC	406	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:21 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 86330 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:46 GMT ETag: W/"1513a-1934ea65e88" Vary: Accept-Encoding
2024-12-03 17:10:21 UTC	15978	IN	Data Raw: 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 31 37 39 5d 2c 7b 34 30 30 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 22 74 72 69 6d 53 74 61 72 74 22 69 6e 20 53 74 72 69 6e 67 2e 70 72 6f 74 6f 74 79 70 65 7c 7c 28 53 74 72 69 6e 67 2e 70 72 6f 74 6f 74 79 70 65 2e 74 72 69 6d 53 74 61 72 74 3d 53 74 72 69 6e 67 2e 70 72 6f 74 6f 74 79 70 65 2e 74 72 69 6d 4c 65 66 74 29 2c 22 74 72 69 6d 45 6e 64 22 69 6e 20 53 74 72 69 6e 67 2e 70 72 6f 74 6f 74 79 70 65 7c 7c 28 53 74 72 69 6e 67 2e 70 72 6f 74 6f 74 79 70 65 2e 74 72 69 6d 45 6e 64 3d 53 74 72 69 6e 67 2e 70 72 6f 74 6f 74 79 70 65 2e 74 72 69 6d 52 69 67 68 74 29 2c 22 64 65 73 63 72 Data Ascii: (self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[179],{400:function(){"trimStart"in String.prototype\|\|(String.prototype.trimStart=String.prototype.trimLeft),"trimEnd"in String.prototype\|\|(String.prototype.trimEnd=String.prototype.trimRight),"descr
2024-12-03 17:10:21 UTC	16384	IN	Data Raw: 74 3a 20 24 7b 65 7d 60 29 3b 72 65 74 75 72 6e 20 74 2e 74 65 78 74 28 29 2e 74 68 65 6e 28 28 74 3d 3e 28 7b 68 72 65 66 3a 65 2c 63 6f 6e 74 65 6e 74 3a 74 7d 29 29 29 7d 29 29 2e 63 61 74 63 68 28 28 65 3d 3e 7b 74 68 72 6f 77 20 6c 28 65 29 7d 29 29 29 2c 74 29 7d 72 65 74 75 72 6e 7b 77 68 65 6e 45 6e 74 72 79 70 6f 69 6e 74 3a 65 3d 3e 61 28 65 2c 74 29 2c 6f 6e 45 6e 74 72 79 70 6f 69 6e 74 28 65 2c 6e 29 7b 28 6e 3f 50 72 6f 6d 69 73 65 2e 72 65 73 6f 6c 76 65 28 29 2e 74 68 65 6e 28 28 28 29 3d 3e 6e 28 29 29 29 2e 74 68 65 6e 28 28 65 3d 3e 28 7b 63 6f 6d 70 6f 6e 65 6e 74 3a 65 26 26 65 2e 64 65 66 61 75 6c 74 7c 7c 65 2c 65 78 70 6f 72 74 73 3a 65 7d 29 29 2c 28 65 3d 3e 28 7b 65 72 72 6f 72 3a 65 7d 29 29 29 3a 50 72 6f 6d 69 73 65 2e 72 65 Data Ascii: t: ${e}`);return t.text().then((t=>({href:e,content:t})))})).catch((e=>{throw l(e)}))),t)}return{whenEntrypoint:e=>a(e,t),onEntrypoint(e,n){(n?Promise.resolve().then((()=>n())).then((e=>({component:e&&e.default\|\|e,exports:e})),(e=>({error:e}))):Promise.re
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 74 69 6e 61 74 69 6f 6e 2c 6e 65 77 20 50 72 6f 6d 69 73 65 28 28 28 29 3d 3e 7b 7d 29 29 3b 69 66 28 22 72 65 66 72 65 73 68 22 3d 3d 3d 46 2e 74 79 70 65 29 72 65 74 75 72 6e 20 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 68 72 65 66 3d 6e 2c 6e 65 77 20 50 72 6f 6d 69 73 65 28 28 28 29 3d 3e 7b 7d 29 29 7d 63 6f 6e 73 74 20 24 3d 72 2e 72 65 6d 6f 76 65 50 61 74 68 54 72 61 69 6c 69 6e 67 53 6c 61 73 68 28 6a 29 3b 69 66 28 63 2e 69 73 44 79 6e 61 6d 69 63 52 6f 75 74 65 28 24 29 29 7b 63 6f 6e 73 74 20 65 3d 66 2e 70 61 72 73 65 52 65 6c 61 74 69 76 65 55 72 6c 28 44 29 2c 72 3d 65 2e 70 61 74 68 6e 61 6d 65 2c 6f 3d 68 2e 67 65 74 52 6f 75 74 65 52 65 67 65 78 28 24 29 2c 69 3d 64 2e 67 65 74 52 6f 75 74 65 4d 61 74 63 68 65 72 28 6f 29 28 72 29 Data Ascii: tination,new Promise((()=>{}));if("refresh"===F.type)return window.location.href=n,new Promise((()=>{}))}const $=r.removePathTrailingSlash(j);if(c.isDynamicRoute($)){const e=f.parseRelativeUrl(D),r=e.pathname,o=h.getRouteRegex($),i=d.getRouteMatcher(o)(r)
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 28 65 29 7b 65 2e 73 74 61 72 74 54 69 6d 65 3c 66 2e 66 69 72 73 74 48 69 64 64 65 6e 54 69 6d 65 26 26 28 5f 2e 76 61 6c 75 65 3d 65 2e 70 72 6f 63 65 73 73 69 6e 67 53 74 61 72 74 2d 65 2e 73 74 61 72 74 54 69 6d 65 2c 5f 2e 65 6e 74 72 69 65 73 2e 70 75 73 68 28 65 29 2c 63 28 21 30 29 29 7d 2c 70 3d 61 28 22 66 69 72 73 74 2d 69 6e 70 75 74 22 2c 68 29 3b 63 3d 6c 28 65 2c 5f 2c 72 29 2c 70 26 26 73 28 28 66 75 6e 63 74 69 6f 6e 28 29 7b 70 2e 74 61 6b 65 52 65 63 6f 72 64 73 28 29 2e 6d 61 70 28 68 29 2c 70 2e 64 69 73 63 6f 6e 6e 65 63 74 28 29 7d 29 2c 21 30 29 2c 70 26 26 75 28 28 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 61 3b 5f 3d 69 28 22 46 49 44 22 29 2c 63 3d 6c 28 65 2c 5f 2c 72 29 2c 6f 3d 5b 5d 2c 6e 3d 2d 31 Data Ascii: function(e){e.startTime<f.firstHiddenTime&&(_.value=e.processingStart-e.startTime,_.entries.push(e),c(!0))},p=a("first-input",h);c=l(e,_,r),p&&s((function(){p.takeRecords().map(h),p.disconnect()}),!0),p&&u((function(){var a;_=i("FID"),c=l(e,_,r),o=[],n=-1
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 74 69 6f 6e 20 6d 65 28 29 7b 66 6f 72 28 76 61 72 20 65 3b 65 3d 51 2e 73 68 69 66 74 28 29 3b 29 69 66 28 65 2e 5f 5f 50 26 26 65 2e 5f 5f 48 29 74 72 79 7b 65 2e 5f 5f 48 2e 5f 5f 68 2e 66 6f 72 45 61 63 68 28 67 65 29 2c 65 2e 5f 5f 48 2e 5f 5f 68 2e 66 6f 72 45 61 63 68 28 77 65 29 2c 65 2e 5f 5f 48 2e 5f 5f 68 3d 5b 5d 7d 63 61 74 63 68 28 75 29 7b 65 2e 5f 5f 48 2e 5f 5f 68 3d 5b 5d 2c 6f 2e 5f 5f 65 28 75 2c 65 2e 5f 5f 76 29 7d 7d 6f 2e 5f 5f 62 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 56 3d 6e 75 6c 6c 2c 5a 26 26 5a 28 65 29 7d 2c 6f 2e 5f 5f 72 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 4a 26 26 4a 28 65 29 2c 7a 3d 30 3b 76 61 72 20 74 3d 28 56 3d 65 2e 5f 5f 63 29 2e 5f 5f 48 3b 74 26 26 28 47 3d 3d 3d 56 3f 28 74 2e 5f 5f 68 3d 5b 5d 2c 56 2e 5f Data Ascii: tion me(){for(var e;e=Q.shift();)if(e.__P&&e.__H)try{e.__H.__h.forEach(ge),e.__H.__h.forEach(we),e.__H.__h=[]}catch(u){e.__H.__h=[],o.__e(u,e.__v)}}o.__b=function(e){V=null,Z&&Z(e)},o.__r=function(e){J&&J(e),z=0;var t=(V=e.__c).__H;t&&(G===V?(t.__h=[],V._
2024-12-03 17:10:22 UTC	4816	IN	Data Raw: 75 72 6e 20 6e 3f 74 3d 74 2e 63 6f 6e 63 61 74 28 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 2e 6d 61 70 2e 63 61 6c 6c 28 65 2e 67 65 74 53 68 65 65 74 46 6f 72 54 61 67 28 6e 29 2e 63 73 73 52 75 6c 65 73 2c 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 74 2e 63 73 73 54 65 78 74 3d 3d 3d 65 2e 5f 64 65 6c 65 74 65 64 52 75 6c 65 50 6c 61 63 65 68 6f 6c 64 65 72 3f 6e 75 6c 6c 3a 74 7d 29 29 29 3a 74 2e 70 75 73 68 28 6e 75 6c 6c 29 2c 74 7d 29 2c 5b 5d 29 3a 74 68 69 73 2e 5f 73 65 72 76 65 72 53 68 65 65 74 2e 63 73 73 52 75 6c 65 73 7d 2c 73 2e 6d 61 6b 65 53 74 79 6c 65 54 61 67 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 74 26 26 75 28 61 28 74 29 2c 22 6d 61 6b 65 53 74 79 6c 65 54 61 67 20 61 63 63 65 70 73 20 6f 6e 6c 79 Data Ascii: urn n?t=t.concat(Array.prototype.map.call(e.getSheetForTag(n).cssRules,(function(t){return t.cssText===e._deletedRulePlaceholder?null:t}))):t.push(null),t}),[]):this._serverSheet.cssRules},s.makeStyleTag=function(e,t,n){t&&u(a(t),"makeStyleTag acceps only

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:21 UTC	622	OUT	GET /_next/static/chunks/framework-acb9ef830b9b8407.js HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" downlink: 1.45 sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 viewport-width: 1280 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:21 UTC	402	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:21 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 861 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:46 GMT ETag: W/"35d-1934ea65e88" Vary: Accept-Encoding
2024-12-03 17:10:21 UTC	861	IN	Data Raw: 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 37 37 34 5d 2c 7b 32 37 30 33 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 74 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 72 3d 74 28 34 31 34 29 3b 66 75 6e 63 74 69 6f 6e 20 6f 28 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 61 28 29 7b 7d 61 2e 72 65 73 65 74 57 61 72 6e 69 6e 67 43 61 63 68 65 3d 6f 2c 65 2e 65 78 70 6f 72 74 73 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 65 28 65 2c 6e 2c 74 2c 6f 2c 61 2c 70 29 7b 69 66 28 70 21 3d 3d 72 29 7b 76 61 72 20 73 3d 6e 65 77 20 45 72 72 6f 72 28 22 43 61 6c 6c 69 6e 67 20 50 72 6f 70 54 79 70 65 73 20 76 61 6c 69 64 Data Ascii: (self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[774],{2703:function(e,n,t){"use strict";var r=t(414);function o(){}function a(){}a.resetWarningCache=o,e.exports=function(){function e(e,n,t,o,a,p){if(p!==r){var s=new Error("Calling PropTypes valid

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 18536, version 1.0
Category:	downloaded
Size (bytes):	18536
Entropy (8bit):	7.986571198050597
Encrypted:	false
SSDEEP:	384:IhocXmE6eM871P7td/mcOKA454H2orQEONKrOqxw:f6WeL1P//9D54WCCKc
MD5:	8EFF0B8045FD1959E117F85654AE7770
SHA1:	227FEE13CEB7C410B5C0BB8000258B6643CB6255
SHA-256:	89978E658E840B927DDDB5CB3A835C7D8526ECE79933BD9F3096B301FE1A8571
SHA-512:	2E4FB65CAAB06F02E341E9BA4FB217D682338881DABA3518A0DF8DF724E0496E1AF613DB8E2F65B42B9E82703BA58916B5F5ABB68C807C78A88577030A6C2058
Malicious:	false
Reputation:	low
URL:	https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2
Preview:	wOF2......Hh..........H..............................Z..\|.`..J.T..<.....H..U..Z...x.6.$..0. ..t. ..I....p.0.VU.......1....AQ...d..x.....R..4.-.c..C$fUc.c..IX..@..~g.xs.....%...O...eJ.w..U.\|.......%..{.......U+..T#.S......`.n.....V.w.4..~P"..zk.%..../........=3...F.........V.FL..;Bc.........A.Uk.U1.b!Y.BH.DL...s.s...F.m.9a..GJ..1..#.`m5..DI..X5#.........B.Akm.....&..0...{.L.....G......-(.......O4.@3....=......f..l...$.....j..NO...e.Y.tJ2J>F.(.c....08..e...~....D2S7s:.G'Gm........!.7.........r.c.`,.....~.).......c>1.......Y.g2^...T-1.7./r./....>...g.ov@u.?.U.+._...'M..,.,g....!g..9."..yBF.#r+.Ps...%.d=....U...5.b.$:`.4R.II.<A....Q)....e...k.....M.8.z....+.....5}..F........F.d._...].~-](.Lf....Y..W....;-z...;. .@x._v../.%UIm....=s...P.C....G...^..Q.!g.!b._.P....at..?.}....t.z...O(..Y6..R.2.X....k.R..K.gw(.F.K?m..R...7....dj..7. .r.U..be.4......8.].w.B..B......Y..:..8.N..U...NEm...\.^q..f}.......{..6.". ...y-.Y...N.+.M E..`......R.$T

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:21 UTC	623	OUT	GET /_next/static/chunks/pages/_app-3f3731a847579feb.js HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" downlink: 1.45 sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 viewport-width: 1280 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:22 UTC	407	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:21 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 859026 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:46 GMT ETag: W/"d1b92-1934ea65e88" Vary: Accept-Encoding
2024-12-03 17:10:22 UTC	15977	IN	Data Raw: 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 38 38 38 5d 2c 7b 36 36 36 34 3a 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 21 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 6e 28 74 2c 65 29 7b 76 61 72 20 6e 3d 4f 62 6a 65 63 74 2e 6b 65 79 73 28 74 29 3b 69 66 28 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 53 79 6d 62 6f 6c 73 29 7b 76 61 72 20 6f 3d 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 53 79 6d 62 6f 6c 73 28 74 29 3b 65 26 26 28 6f 3d 6f 2e 66 69 6c 74 65 72 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 Data Ascii: (self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[888],{6664:function(t,e,n){!function(t,e){"use strict";function n(t,e){var n=Object.keys(t);if(Object.getOwnPropertySymbols){var o=Object.getOwnPropertySymbols(t);e&&(o=o.filter((function(e){return
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 6f 72 28 76 61 72 20 65 3d 31 3b 65 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 65 2b 2b 29 7b 76 61 72 20 6e 3d 61 72 67 75 6d 65 6e 74 73 5b 65 5d 3b 66 6f 72 28 76 61 72 20 6f 20 69 6e 20 6e 29 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 2e 63 61 6c 6c 28 6e 2c 6f 29 26 26 28 74 5b 6f 5d 3d 6e 5b 6f 5d 29 7d 72 65 74 75 72 6e 20 74 7d 29 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 7d 65 2e 64 65 66 61 75 6c 74 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 61 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 73 76 67 22 2c 69 28 7b 77 69 64 74 68 3a 22 31 65 6d 22 2c 68 65 69 67 68 74 3a 22 31 65 6d 22 2c 76 69 65 77 42 6f 78 3a 22 30 20 30 20 32 30 20 32 30 22 Data Ascii: or(var e=1;e<arguments.length;e++){var n=arguments[e];for(var o in n)Object.prototype.hasOwnProperty.call(n,o)&&(t[o]=n[o])}return t}).apply(this,arguments)}e.default=function(t){return a.createElement("svg",i({width:"1em",height:"1em",viewBox:"0 0 20 20"
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 30 30 32 2e 37 36 32 2d 2e 34 37 38 20 36 2e 39 39 33 20 36 2e 39 39 33 20 30 20 30 30 32 2e 32 35 37 2d 31 2e 34 36 31 6c 33 2e 30 38 20 33 2e 33 34 36 63 2d 31 2e 38 38 35 20 32 2e 31 35 31 2d 34 2e 36 34 37 20 33 2e 32 34 2d 38 2e 32 35 39 20 33 2e 32 34 61 31 33 2e 32 31 39 20 31 33 2e 32 31 39 20 30 20 30 31 2d 36 2d 31 2e 33 32 38 20 39 2e 35 38 37 20 39 2e 35 38 37 20 30 20 30 31 2d 34 2e 30 31 2d 33 2e 36 36 35 20 31 30 20 31 30 20 30 20 30 31 2d 31 2e 34 31 31 2d 35 2e 33 31 31 20 31 30 2e 33 31 20 31 30 2e 33 31 20 30 20 30 31 31 2e 34 30 37 2d 35 2e 33 31 31 20 39 2e 38 32 38 20 39 2e 38 32 38 20 30 20 30 31 33 2e 38 32 34 2d 33 2e 36 39 31 20 31 31 2e 33 31 32 20 31 31 2e 33 31 32 20 30 20 30 31 35 2e 34 34 34 2d 31 2e 33 32 38 20 31 30 2e 39 Data Ascii: 002.762-.478 6.993 6.993 0 002.257-1.461l3.08 3.346c-1.885 2.151-4.647 3.24-8.259 3.24a13.219 13.219 0 01-6-1.328 9.587 9.587 0 01-4.01-3.665 10 10 0 01-1.411-5.311 10.31 10.31 0 011.407-5.311 9.828 9.828 0 013.824-3.691 11.312 11.312 0 015.444-1.328 10.9
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 66 73 65 74 7d 7d 29 2c 63 2e 70 6f 6f 6c 53 69 7a 65 3d 38 31 39 32 2c 63 2e 66 72 6f 6d 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 72 65 74 75 72 6e 20 75 28 74 2c 65 2c 6e 29 7d 2c 4f 62 6a 65 63 74 2e 73 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 28 63 2e 70 72 6f 74 6f 74 79 70 65 2c 55 69 6e 74 38 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 29 2c 4f 62 6a 65 63 74 2e 73 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 28 63 2c 55 69 6e 74 38 41 72 72 61 79 29 2c 63 2e 61 6c 6c 6f 63 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 72 65 74 75 72 6e 20 6c 28 74 29 2c 74 3c 3d 30 3f 73 28 74 29 3a 76 6f 69 64 20 30 21 3d 3d 65 3f 22 73 74 72 69 6e 67 22 3d 3d 3d 74 79 70 65 6f 66 20 6e Data Ascii: fset}}),c.poolSize=8192,c.from=function(t,e,n){return u(t,e,n)},Object.setPrototypeOf(c.prototype,Uint8Array.prototype),Object.setPrototypeOf(c,Uint8Array),c.alloc=function(t,e,n){return function(t,e,n){return l(t),t<=0?s(t):void 0!==e?"string"===typeof n
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 75 6c 6c 22 29 3a 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 74 3f 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 66 28 74 2e 63 6f 6e 73 74 72 75 63 74 6f 72 29 3f 74 2e 63 6f 6e 73 74 72 75 63 74 6f 72 2e 6e 61 6d 65 3a 6e 75 6c 6c 7d 28 74 29 3a 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 2e 74 6f 53 74 72 69 6e 67 2e 63 61 6c 6c 28 74 29 2e 73 6c 69 63 65 28 38 2c 2d 31 29 7d 28 74 29 3b 72 65 74 75 72 6e 20 65 3f 6c 28 6e 29 3a 6e 7d 66 75 6e 63 74 69 6f 6e 20 64 28 74 2c 65 29 7b 72 65 74 75 72 6e 20 74 79 70 65 6f 66 20 65 3d 3d 3d 74 7d 76 61 72 20 66 3d 64 2e 62 69 6e 64 28 6e 75 6c 6c 2c 22 66 75 6e 63 74 69 6f 6e 22 29 2c 45 3d 64 2e 62 69 6e 64 28 6e 75 6c 6c 2c 22 73 74 72 69 6e 67 22 29 3b 64 2e 62 69 6e 64 28 6e 75 6c Data Ascii: ull"):"object"==typeof t?function(t){return f(t.constructor)?t.constructor.name:null}(t):Object.prototype.toString.call(t).slice(8,-1)}(t);return e?l(n):n}function d(t,e){return typeof e===t}var f=d.bind(null,"function"),E=d.bind(null,"string");d.bind(nul
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 74 79 70 65 29 29 7b 76 61 72 20 72 3d 41 74 28 6e 2e 74 79 70 65 2c 22 72 65 67 69 73 74 65 72 50 6c 75 67 69 6e 22 29 2c 61 3d 74 28 29 5b 72 5d 3b 69 66 28 21 61 7c 7c 21 72 29 72 65 74 75 72 6e 20 65 3b 76 61 72 20 69 3d 6e 2e 65 6e 61 62 6c 65 64 2c 73 3d 61 2e 63 6f 6e 66 69 67 3b 72 65 74 75 72 6e 20 6f 5b 72 5d 3d 7b 65 6e 61 62 6c 65 64 3a 69 2c 69 6e 69 74 69 61 6c 69 7a 65 64 3a 21 21 69 26 26 42 6f 6f 6c 65 61 6e 28 21 61 2e 69 6e 69 74 69 61 6c 69 7a 65 29 2c 6c 6f 61 64 65 64 3a 21 21 69 26 26 42 6f 6f 6c 65 61 6e 28 61 2e 6c 6f 61 64 65 64 28 7b 63 6f 6e 66 69 67 3a 73 7d 29 29 2c 63 6f 6e 66 69 67 3a 73 7d 2c 55 28 7b 7d 2c 65 2c 6f 29 7d 69 66 28 2f 5e 69 6e 69 74 69 61 6c 69 7a 65 3a 28 5b 5e 3a 5d 2a 29 24 2f 2e 74 65 73 74 28 6e 2e 74 Data Ascii: type)){var r=At(n.type,"registerPlugin"),a=t()[r];if(!a\|\|!r)return e;var i=n.enabled,s=a.config;return o[r]={enabled:i,initialized:!!i&&Boolean(!a.initialize),loaded:!!i&&Boolean(a.loaded({config:s})),config:s},U({},e,o)}if(/^initialize:([^:]*)$/.test(n.t
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 7d 29 29 2c 75 28 43 2c 22 74 6f 53 74 72 69 6e 67 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 22 5b 6f 62 6a 65 63 74 20 47 65 6e 65 72 61 74 6f 72 5d 22 7d 29 29 2c 65 2e 6b 65 79 73 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 3d 4f 62 6a 65 63 74 28 74 29 2c 6e 3d 5b 5d 3b 66 6f 72 28 76 61 72 20 6f 20 69 6e 20 65 29 6e 2e 70 75 73 68 28 6f 29 3b 72 65 74 75 72 6e 20 6e 2e 72 65 76 65 72 73 65 28 29 2c 66 75 6e 63 74 69 6f 6e 20 74 28 29 7b 66 6f 72 28 3b 6e 2e 6c 65 6e 67 74 68 3b 29 7b 76 61 72 20 6f 3d 6e 2e 70 6f 70 28 29 3b 69 66 28 6f 20 69 6e 20 65 29 72 65 74 75 72 6e 20 74 2e 76 61 6c 75 65 3d 6f 2c 74 2e 64 6f 6e 65 3d 21 31 2c 74 7d 72 65 74 75 72 6e 20 74 Data Ascii: nction(){return this})),u(C,"toString",(function(){return"[object Generator]"})),e.keys=function(t){var e=Object(t),n=[];for(var o in e)n.push(o);return n.reverse(),function t(){for(;n.length;){var o=n.pop();if(o in e)return t.value=o,t.done=!1,t}return t
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 61 73 65 20 61 3a 63 61 73 65 20 73 3a 63 61 73 65 20 69 3a 63 61 73 65 20 66 3a 72 65 74 75 72 6e 20 74 3b 64 65 66 61 75 6c 74 3a 73 77 69 74 63 68 28 74 3d 74 26 26 74 2e 24 24 74 79 70 65 6f 66 29 7b 63 61 73 65 20 75 3a 63 61 73 65 20 64 3a 63 61 73 65 20 5f 3a 63 61 73 65 20 6d 3a 63 61 73 65 20 63 3a 72 65 74 75 72 6e 20 74 3b 64 65 66 61 75 6c 74 3a 72 65 74 75 72 6e 20 65 7d 7d 63 61 73 65 20 72 3a 72 65 74 75 72 6e 20 65 7d 7d 7d 66 75 6e 63 74 69 6f 6e 20 43 28 74 29 7b 72 65 74 75 72 6e 20 54 28 74 29 3d 3d 3d 70 7d 65 2e 41 73 79 6e 63 4d 6f 64 65 3d 6c 2c 65 2e 43 6f 6e 63 75 72 72 65 6e 74 4d 6f 64 65 3d 70 2c 65 2e 43 6f 6e 74 65 78 74 43 6f 6e 73 75 6d 65 72 3d 75 2c 65 2e 43 6f 6e 74 65 78 74 50 72 6f 76 69 64 65 72 3d 63 2c 65 2e 45 6c Data Ascii: ase a:case s:case i:case f:return t;default:switch(t=t&&t.$$typeof){case u:case d:case _:case m:case c:return t;default:return e}}case r:return e}}}function C(t){return T(t)===p}e.AsyncMode=l,e.ConcurrentMode=p,e.ContextConsumer=u,e.ContextProvider=c,e.El
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 6f 69 64 20 30 3a 6e 7d 72 65 74 75 72 6e 20 5a 2e 63 61 6c 6c 28 65 2c 74 29 3f 65 5b 74 5d 3a 76 6f 69 64 20 30 7d 2c 49 74 2e 70 72 6f 74 6f 74 79 70 65 2e 68 61 73 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 3d 74 68 69 73 2e 5f 5f 64 61 74 61 5f 5f 3b 72 65 74 75 72 6e 20 68 74 3f 76 6f 69 64 20 30 21 3d 3d 65 5b 74 5d 3a 5a 2e 63 61 6c 6c 28 65 2c 74 29 7d 2c 49 74 2e 70 72 6f 74 6f 74 79 70 65 2e 73 65 74 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 5f 5f 64 61 74 61 5f 5f 5b 74 5d 3d 68 74 26 26 76 6f 69 64 20 30 3d 3d 3d 65 3f 6f 3a 65 2c 74 68 69 73 7d 2c 4f 74 2e 70 72 6f 74 6f 74 79 70 65 2e 63 6c 65 61 72 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 74 68 69 73 2e 5f 5f 64 61 74 61 5f 5f 3d 5b 5d 7d 2c 4f Data Ascii: oid 0:n}return Z.call(e,t)?e[t]:void 0},It.prototype.has=function(t){var e=this.__data__;return ht?void 0!==e[t]:Z.call(e,t)},It.prototype.set=function(t,e){return this.__data__[t]=ht&&void 0===e?o:e,this},Ot.prototype.clear=function(){this.__data__=[]},O
2024-12-03 17:10:22 UTC	16384	IN	Data Raw: 5b 6f 5d 3d 3d 3d 65 29 72 65 74 75 72 6e 20 6f 3b 72 65 74 75 72 6e 2d 31 7d 28 74 2c 65 2c 30 29 3e 2d 31 7d 66 75 6e 63 74 69 6f 6e 20 42 28 74 2c 65 2c 6e 29 7b 66 6f 72 28 76 61 72 20 6f 3d 2d 31 2c 72 3d 74 3f 74 2e 6c 65 6e 67 74 68 3a 30 3b 2b 2b 6f 3c 72 3b 29 69 66 28 6e 28 65 2c 74 5b 6f 5d 29 29 72 65 74 75 72 6e 21 30 3b 72 65 74 75 72 6e 21 31 7d 66 75 6e 63 74 69 6f 6e 20 47 28 74 2c 65 29 7b 66 6f 72 28 76 61 72 20 6e 3d 2d 31 2c 6f 3d 74 3f 74 2e 6c 65 6e 67 74 68 3a 30 3b 2b 2b 6e 3c 6f 3b 29 69 66 28 65 28 74 5b 6e 5d 2c 6e 2c 74 29 29 72 65 74 75 72 6e 21 30 3b 72 65 74 75 72 6e 21 31 7d 66 75 6e 63 74 69 6f 6e 20 7a 28 74 29 7b 72 65 74 75 72 6e 20 74 21 3d 3d 74 7d 66 75 6e 63 74 69 6f 6e 20 48 28 74 2c 65 29 7b 72 65 74 75 72 6e 20 Data Ascii: [o]===e)return o;return-1}(t,e,0)>-1}function B(t,e,n){for(var o=-1,r=t?t.length:0;++o<r;)if(n(e,t[o]))return!0;return!1}function G(t,e){for(var n=-1,o=t?t.length:0;++n<o;)if(e(t[n],n,t))return!0;return!1}function z(t){return t!==t}function H(t,e){return

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:21 UTC	638	OUT	GET /_next/static/chunks/pages/%5B%5B...slug%5D%5D-16bf7767862b2199.js HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" downlink: 1.45 sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 viewport-width: 1280 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:21 UTC	405	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:21 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 10924 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:46 GMT ETag: W/"2aac-1934ea65e88" Vary: Accept-Encoding
2024-12-03 17:10:21 UTC	10924	IN	Data Raw: 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 31 32 30 5d 2c 7b 38 65 33 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 61 3b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 5f 5f 65 73 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 2c 74 2e 41 6d 70 53 74 61 74 65 43 6f 6e 74 65 78 74 3d 76 6f 69 64 20 30 3b 63 6f 6e 73 74 20 6f 3d 28 28 61 3d 6e 28 37 34 32 33 29 29 26 26 61 2e 5f 5f 65 73 4d 6f 64 75 6c 65 3f 61 3a 7b 64 65 66 61 75 6c 74 3a 61 7d 29 2e 64 65 66 61 75 6c 74 2e 63 72 65 61 74 65 43 6f 6e 74 65 78 74 28 7b 7d 29 3b 74 2e 41 Data Ascii: (self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[120],{8e3:function(e,t,n){"use strict";var a;Object.defineProperty(t,"__esModule",{value:!0}),t.AmpStateContext=void 0;const o=((a=n(7423))&&a.__esModule?a:{default:a}).default.createContext({});t.A

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:22 UTC	625	OUT	GET /_next/static/xg_hCbnfA67zv-9idGfYU/_buildManifest.js HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" downlink: 1.45 sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 viewport-width: 1280 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:22 UTC	402	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:22 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 310 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:46 GMT ETag: W/"136-1934ea65e88" Vary: Accept-Encoding
2024-12-03 17:10:22 UTC	310	IN	Data Raw: 73 65 6c 66 2e 5f 5f 42 55 49 4c 44 5f 4d 41 4e 49 46 45 53 54 3d 7b 5f 5f 72 65 77 72 69 74 65 73 3a 7b 62 65 66 6f 72 65 46 69 6c 65 73 3a 5b 5d 2c 61 66 74 65 72 46 69 6c 65 73 3a 5b 5d 2c 66 61 6c 6c 62 61 63 6b 3a 5b 5d 7d 2c 22 2f 5f 65 72 72 6f 72 22 3a 5b 22 73 74 61 74 69 63 2f 63 68 75 6e 6b 73 2f 70 61 67 65 73 2f 5f 65 72 72 6f 72 2d 37 36 62 38 63 32 63 33 32 37 36 64 61 39 64 36 2e 6a 73 22 5d 2c 22 2f 5b 5b 2e 2e 2e 73 6c 75 67 5d 5d 22 3a 5b 22 73 74 61 74 69 63 2f 63 68 75 6e 6b 73 2f 70 61 67 65 73 2f 5b 5b 2e 2e 2e 73 6c 75 67 5d 5d 2d 31 36 62 66 37 37 36 37 38 36 32 62 32 31 39 39 2e 6a 73 22 5d 2c 73 6f 72 74 65 64 50 61 67 65 73 3a 5b 22 2f 5f 61 70 70 22 2c 22 2f 5f 65 72 72 6f 72 22 2c 22 2f 5b 5b 2e 2e 2e 73 6c 75 67 5d 5d 22 5d Data Ascii: self.__BUILD_MANIFEST={__rewrites:{beforeFiles:[],afterFiles:[],fallback:[]},"/_error":["static/chunks/pages/_error-76b8c2c3276da9d6.js"],"/[[...slug]]":["static/chunks/pages/[[...slug]]-16bf7767862b2199.js"],sortedPages:["/_app","/_error","/[[...slug]]"]

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:24 UTC	623	OUT	GET /_next/static/xg_hCbnfA67zv-9idGfYU/_ssgManifest.js HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" downlink: 1.45 sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 viewport-width: 1280 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:24 UTC	400	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:24 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 77 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:46 GMT ETag: W/"4d-1934ea65e88" Vary: Accept-Encoding
2024-12-03 17:10:24 UTC	77	IN	Data Raw: 73 65 6c 66 2e 5f 5f 53 53 47 5f 4d 41 4e 49 46 45 53 54 3d 6e 65 77 20 53 65 74 2c 73 65 6c 66 2e 5f 5f 53 53 47 5f 4d 41 4e 49 46 45 53 54 5f 43 42 26 26 73 65 6c 66 2e 5f 5f 53 53 47 5f 4d 41 4e 49 46 45 53 54 5f 43 42 28 29 3b Data Ascii: self.__SSG_MANIFEST=new Set,self.__SSG_MANIFEST_CB&&self.__SSG_MANIFEST_CB();

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:24 UTC	396	OUT	GET /_next/static/chunks/webpack-dfa48d46ec8ebab7.js HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:25 UTC	403	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:24 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 3793 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:46 GMT ETag: W/"ed1-1934ea65e88" Vary: Accept-Encoding
2024-12-03 17:10:25 UTC	3793	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 65 3d 7b 7d 2c 74 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6e 28 72 29 7b 76 61 72 20 6f 3d 74 5b 72 5d 3b 69 66 28 76 6f 69 64 20 30 21 3d 3d 6f 29 72 65 74 75 72 6e 20 6f 2e 65 78 70 6f 72 74 73 3b 76 61 72 20 69 3d 74 5b 72 5d 3d 7b 69 64 3a 72 2c 6c 6f 61 64 65 64 3a 21 31 2c 65 78 70 6f 72 74 73 3a 7b 7d 7d 2c 75 3d 21 30 3b 74 72 79 7b 65 5b 72 5d 2e 63 61 6c 6c 28 69 2e 65 78 70 6f 72 74 73 2c 69 2c 69 2e 65 78 70 6f 72 74 73 2c 6e 29 2c 75 3d 21 31 7d 66 69 6e 61 6c 6c 79 7b 75 26 26 64 65 6c 65 74 65 20 74 5b 72 5d 7d 72 65 74 75 72 6e 20 69 2e 6c 6f 61 64 65 64 3d 21 30 2c 69 2e 65 78 70 6f 72 74 73 7d 6e 2e 6d 3d 65 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 Data Ascii: !function(){"use strict";var e={},t={};function n(r){var o=t[r];if(void 0!==o)return o.exports;var i=t[r]={id:r,loaded:!1,exports:{}},u=!0;try{e[r].call(i.exports,i,i.exports,n),u=!1}finally{u&&delete t[r]}return i.loaded=!0,i.exports}n.m=e,function(){var

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:25 UTC	306	OUT	GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=t9LvwNpyY+GAaEF&MD=a2x59HdK HTTP/1.1 Connection: Keep-Alive Accept: / User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33 Host: slscr.update.microsoft.com
2024-12-03 17:10:25 UTC	560	IN	HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Type: application/octet-stream Expires: -1 Last-Modified: Mon, 01 Jan 0001 00:00:00 GMT ETag: "XAopazV00XDWnJCwkmEWRv6JkbjRA9QSSZ2+e/3MzEk=_2880" MS-CorrelationId: f4da813d-c272-4696-a66a-34550a01018c MS-RequestId: 4b2ee15d-f157-47e3-aa50-f381016c4715 MS-CV: vXaaqlHls06qdtVl.0 X-Microsoft-SLSClientCache: 2880 Content-Disposition: attachment; filename=environment.cab X-Content-Type-Options: nosniff Date: Tue, 03 Dec 2024 17:10:25 GMT Connection: close Content-Length: 24490
2024-12-03 17:10:25 UTC	15824	IN	Data Raw: 4d 53 43 46 00 00 00 00 92 1e 00 00 00 00 00 00 44 00 00 00 00 00 00 00 03 01 01 00 01 00 04 00 23 d0 00 00 14 00 00 00 00 00 10 00 92 1e 00 00 18 41 00 00 00 00 00 00 00 00 00 00 64 00 00 00 01 00 01 00 e6 42 00 00 00 00 00 00 00 00 00 00 00 00 80 00 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 63 61 62 00 78 cf 8d 5c 26 1e e6 42 43 4b ed 5c 07 54 13 db d6 4e a3 f7 2e d5 d0 3b 4c 42 af 4a 57 10 e9 20 bd 77 21 94 80 88 08 24 2a 02 02 d2 55 10 a4 a8 88 97 22 8a 0a d2 11 04 95 ae d2 8b 20 28 0a 88 20 45 05 f4 9f 80 05 bd ed dd f7 ff 77 dd f7 bf 65 d6 4a 66 ce 99 33 67 4e d9 7b 7f fb db 7b 56 f4 4d 34 b4 21 e0 a7 03 0a d9 fc 68 6e 1d 20 70 28 14 02 85 20 20 ad 61 10 08 e3 66 0d ed 66 9b 1d 6a 90 af 1f 17 f0 4b 68 35 01 83 6c fb 44 42 5c 7d 83 3d 03 30 be 3e ae be 58 Data Ascii: MSCFD#AdBenvironment.cabx\&BCK\TN.;LBJW w!$*U" ( EweJf3gN{{VM4!hn p( affjKh5lDB\}=0>X
2024-12-03 17:10:25 UTC	8666	IN	Data Raw: 04 01 31 2f 30 2d 30 0a 02 05 00 e1 2b 8a 50 02 01 00 30 0a 02 01 00 02 02 12 fe 02 01 ff 30 07 02 01 00 02 02 11 e6 30 0a 02 05 00 e1 2c db d0 02 01 00 30 36 06 0a 2b 06 01 04 01 84 59 0a 04 02 31 28 30 26 30 0c 06 0a 2b 06 01 04 01 84 59 0a 03 02 a0 0a 30 08 02 01 00 02 03 07 a1 20 a1 0a 30 08 02 01 00 02 03 01 86 a0 30 0d 06 09 2a 86 48 86 f7 0d 01 01 05 05 00 03 81 81 00 0c d9 08 df 48 94 57 65 3e ad e7 f2 17 9c 1f ca 3d 4d 6c cd 51 e1 ed 9c 17 a5 52 35 0f fd de 4b bd 22 92 c5 69 e5 d7 9f 29 23 72 40 7a ca 55 9d 8d 11 ad d5 54 00 bb 53 b4 87 7b 72 84 da 2d f6 e3 2c 4f 7e ba 1a 58 88 6e d6 b9 6d 16 ae 85 5b b5 c2 81 a8 e0 ee 0a 9c 60 51 3a 7b e4 61 f8 c3 e4 38 bd 7d 28 17 d6 79 f0 c8 58 c6 ef 1f f7 88 65 b1 ea 0a c0 df f7 ee 5c 23 c2 27 fd 98 63 08 31 Data Ascii: 1/0-0+P000,06+Y1(0&0+Y0 00*HHWe>=MlQR5K"i)#r@zUTS{r-,O~Xnm[`Q:{a8}(yXe\#'c1

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:25 UTC	524	OUT	GET /v3 HTTP/1.1 Host: js.stripe.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:26 UTC	706	IN	HTTP/1.1 200 OK Connection: close Content-Length: 707034 Last-Modified: Tue, 26 Nov 2024 21:44:41 GMT ETag: "ef9b31b63c137d83689e6da09b39a6f0" Cache-Control: max-age=60 Content-Type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly Accept-Ranges: bytes Date: Tue, 03 Dec 2024 17:10:25 GMT Via: 1.1 varnish Age: 41 X-Request-ID: f131ed50-0b2a-4fd0-92a0-8bd27fcad3d3 X-Served-By: cache-ewr-kewr1740050-EWR X-Cache: HIT X-Cache-Hits: 1 Vary: Accept-Encoding Timing-Allow-Origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
2024-12-03 17:10:26 UTC	16384	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 65 28 74 29 7b 76 61 72 20 6e 3d 6f 5b 74 5d 3b 69 66 28 76 6f 69 64 20 30 21 3d 3d 6e 29 72 65 74 75 72 6e 20 6e 2e 65 78 70 6f 72 74 73 3b 76 61 72 20 69 3d 6f 5b 74 5d 3d 7b 69 64 3a 74 2c 6c 6f 61 64 65 64 3a 21 31 2c 65 78 70 6f 72 74 73 3a 7b 7d 7d 3b 72 65 74 75 72 6e 20 72 5b 74 5d 28 69 2c 69 2e 65 78 70 6f 72 74 73 2c 65 29 2c 69 2e 6c 6f 61 64 65 64 3d 21 30 2c 69 2e 65 78 70 6f 72 74 73 7d 76 61 72 20 74 2c 6e 2c 72 3d 7b 37 32 33 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 72 28 65 29 7b 6c 2e 6c 65 6e 67 74 68 7c 7c 28 61 28 29 2c 21 30 29 2c 6c 5b 6c 2e 6c 65 6e 67 74 68 5d 3d 65 7d 66 75 6e 63 74 69 6f 6e Data Ascii: !function(){function e(t){var n=o[t];if(void 0!==n)return n.exports;var i=o[t]={id:t,loaded:!1,exports:{}};return r[t](i,i.exports,e),i.loaded=!0,i.exports}var t,n,r={723:function(e,t,n){"use strict";function r(e){l.length\|\|(a(),!0),l[l.length]=e}function
2024-12-03 17:10:26 UTC	16384	IN	Data Raw: 29 7d 29 2c 63 3d 22 73 68 69 70 70 69 6e 67 22 2c 73 3d 22 62 69 6c 6c 69 6e 67 22 2c 75 3d 28 30 2c 72 2e 6f 72 29 28 28 30 2c 72 2e 6d 43 29 28 7b 6d 6f 64 65 3a 28 30 2c 72 2e 6b 77 29 28 22 61 75 74 6f 6d 61 74 69 63 22 2c 22 64 69 73 61 62 6c 65 64 22 29 7d 29 2c 28 30 2c 72 2e 6d 43 29 28 7b 6d 6f 64 65 3a 28 30 2c 72 2e 6b 77 29 28 22 67 6f 6f 67 6c 65 5f 6d 61 70 73 5f 61 70 69 22 29 2c 61 70 69 4b 65 79 3a 72 2e 5a 5f 7d 29 29 2c 6c 3d 7b 61 75 74 6f 6d 61 74 69 63 3a 22 61 75 74 6f 6d 61 74 69 63 22 2c 64 69 73 61 62 6c 65 64 3a 22 64 69 73 61 62 6c 65 64 22 2c 67 6f 6f 67 6c 65 5f 6d 61 70 73 5f 61 70 69 3a 22 67 6f 6f 67 6c 65 5f 6d 61 70 73 5f 61 70 69 22 7d 2c 64 3d 7b 73 74 72 69 70 65 3a 22 73 74 72 69 70 65 22 2c 6d 65 72 63 68 61 6e 74 Data Ascii: )}),c="shipping",s="billing",u=(0,r.or)((0,r.mC)({mode:(0,r.kw)("automatic","disabled")}),(0,r.mC)({mode:(0,r.kw)("google_maps_api"),apiKey:r.Z_})),l={automatic:"automatic",disabled:"disabled",google_maps_api:"google_maps_api"},d={stripe:"stripe",merchant
2024-12-03 17:10:26 UTC	16384	IN	Data Raw: 7d 2c 63 6f 6e 66 69 72 6d 61 74 69 6f 6e 54 6f 6b 65 6e 52 6f 6c 6c 6f 75 74 43 6f 6e 66 69 67 3a 7b 74 79 70 65 3a 22 67 61 22 7d 2c 73 75 70 70 6f 72 74 65 64 42 75 74 74 6f 6e 54 68 65 6d 65 73 3a 61 2c 64 65 66 61 75 6c 74 42 75 74 74 6f 6e 54 68 65 6d 65 3a 22 6c 69 67 68 74 22 2c 64 65 66 61 75 6c 74 42 61 63 6b 67 72 6f 75 6e 64 44 61 72 6b 42 75 74 74 6f 6e 54 68 65 6d 65 3a 22 6c 69 67 68 74 22 2c 64 65 66 61 75 6c 74 42 61 63 6b 67 72 6f 75 6e 64 4c 69 67 68 74 42 75 74 74 6f 6e 54 68 65 6d 65 3a 22 64 61 72 6b 22 2c 73 75 70 70 6f 72 74 65 64 42 75 74 74 6f 6e 54 79 70 65 73 3a 69 2c 64 65 66 61 75 6c 74 42 75 74 74 6f 6e 54 79 70 65 4f 70 74 69 6f 6e 3a 22 70 61 79 22 2c 70 6c 61 69 6e 42 75 74 74 6f 6e 54 79 70 65 3a 22 70 61 79 22 2c 69 73 Data Ascii: },confirmationTokenRolloutConfig:{type:"ga"},supportedButtonThemes:a,defaultButtonTheme:"light",defaultBackgroundDarkButtonTheme:"light",defaultBackgroundLightButtonTheme:"dark",supportedButtonTypes:i,defaultButtonTypeOption:"pay",plainButtonType:"pay",is
2024-12-03 17:10:26 UTC	16384	IN	Data Raw: 45 22 2c 22 4a 50 22 2c 22 4e 5a 22 2c 22 50 4c 22 2c 22 53 47 22 2c 22 55 53 22 5d 29 2c 28 30 2c 61 2e 5a 29 28 72 2c 73 2e 72 4d 2e 55 4e 49 4f 4e 50 41 59 2c 5b 22 41 55 22 2c 22 43 41 22 2c 22 48 4b 22 2c 22 4d 59 22 2c 22 4e 5a 22 2c 22 53 47 22 2c 22 47 42 22 2c 22 55 53 22 2c 22 43 48 22 2c 22 41 54 22 2c 22 42 45 22 2c 22 42 47 22 2c 22 43 59 22 2c 22 43 5a 22 2c 22 44 4b 22 2c 22 45 45 22 2c 22 46 49 22 2c 22 46 52 22 2c 22 44 45 22 2c 22 47 52 22 2c 22 48 55 22 2c 22 49 45 22 2c 22 49 54 22 2c 22 4c 56 22 2c 22 4c 54 22 2c 22 4c 55 22 2c 22 4d 54 22 2c 22 4e 4c 22 2c 22 50 4c 22 2c 22 50 54 22 2c 22 52 4f 22 2c 22 53 4b 22 2c 22 53 49 22 2c 22 45 53 22 2c 22 53 45 22 2c 22 4e 4f 22 5d 29 2c 73 2e 72 4d 2e 56 49 53 41 2c 73 2e 72 4d 2e 4d 41 53 Data Ascii: E","JP","NZ","PL","SG","US"]),(0,a.Z)(r,s.rM.UNIONPAY,["AU","CA","HK","MY","NZ","SG","GB","US","CH","AT","BE","BG","CY","CZ","DK","EE","FI","FR","DE","GR","HU","IE","IT","LV","LT","LU","MT","NL","PL","PT","RO","SK","SI","ES","SE","NO"]),s.rM.VISA,s.rM.MAS
2024-12-03 17:10:26 UTC	16384	IN	Data Raw: 74 75 72 6e 20 6b 7d 2c 55 6c 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 67 7d 2c 43 6e 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 68 7d 2c 4f 24 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 62 7d 7d 29 3b 76 61 72 20 72 2c 6f 3d 6e 28 37 34 36 32 29 2c 69 3d 6e 28 31 34 31 33 29 2c 61 3d 6e 28 35 36 37 31 29 2c 63 3d 6e 28 33 31 34 34 29 2c 73 3d 6e 28 31 33 36 29 2c 75 3d 6e 28 39 33 38 38 29 2c 6c 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 66 75 6e 63 74 69 6f 6e 20 74 28 29 7b 72 65 74 75 72 6e 28 30 2c 61 2e 5a 29 28 74 68 69 73 2c 74 29 2c 6e 2e 63 61 6c 6c 28 74 68 69 73 2c 7b 63 68 61 6e 6e 65 6c 3a 22 68 63 61 70 74 63 68 61 2d 69 6e 76 69 73 69 62 6c 65 22 2c 66 69 6e 67 65 72 70 72 69 6e 74 65 64 50 61 74 68 Data Ascii: turn k},Ul:function(){return g},Cn:function(){return h},O$:function(){return b}});var r,o=n(7462),i=n(1413),a=n(5671),c=n(3144),s=n(136),u=n(9388),l=function(e){function t(){return(0,a.Z)(this,t),n.call(this,{channel:"hcaptcha-invisible",fingerprintedPath
2024-12-03 17:10:26 UTC	16384	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 28 74 2c 6e 2c 6f 2c 69 29 7b 74 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 6e 2c 6f 2c 69 29 2c 65 3d 65 2e 66 69 6c 74 65 72 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 3d 28 30 2c 72 2e 5a 29 28 65 2c 34 29 2c 6f 3d 6e 5b 30 5d 2c 69 3d 6e 5b 31 5d 2c 61 3d 6e 5b 32 5d 2c 63 3d 6e 5b 33 5d 2c 73 3d 28 30 2c 72 2e 5a 29 28 74 2c 34 29 2c 75 3d 73 5b 30 5d 2c 6c 3d 73 5b 31 5d 2c 64 3d 73 5b 32 5d 2c 70 3d 73 5b 33 5d 3b 72 65 74 75 72 6e 20 75 21 3d 3d 6f 7c 7c 6c 21 3d 3d 69 7c 7c 64 21 3d 3d 61 7c 7c 21 30 3d 3d 3d 28 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 63 26 26 63 3f 63 2e 63 61 70 74 75 72 65 3a 63 29 21 3d 28 21 30 Data Ascii: function(t,n,o,i){t.removeEventListener(n,o,i),e=e.filter((function(e){return function(e,t){var n=(0,r.Z)(e,4),o=n[0],i=n[1],a=n[2],c=n[3],s=(0,r.Z)(t,4),u=s[0],l=s[1],d=s[2],p=s[3];return u!==o\|\|l!==i\|\|d!==a\|\|!0===("object"==typeof c&&c?c.capture:c)!=(!0
2024-12-03 17:10:26 UTC	16384	IN	Data Raw: 76 33 2f 66 69 6e 67 65 72 70 72 69 6e 74 65 64 2f 69 6d 67 2f 70 61 79 6d 65 6e 74 2d 6d 65 74 68 6f 64 73 2f 69 63 6f 6e 2d 70 6d 2d 62 69 6c 6c 69 65 5f 64 61 72 6b 2d 39 36 66 30 66 65 38 36 38 34 65 63 34 62 62 37 31 37 35 63 32 31 37 61 38 34 34 37 63 61 64 39 2e 73 76 67 22 7d 2c 66 65 61 74 75 72 65 73 3a 7b 65 78 63 6c 75 64 65 46 72 6f 6d 4f 76 65 72 66 6c 6f 77 49 63 6f 6e 52 6f 74 61 74 69 6f 6e 3a 21 31 2c 69 73 53 75 62 6d 69 74 74 61 62 6c 65 3a 21 30 2c 68 61 73 53 70 65 63 69 66 69 63 4e 6f 74 69 63 65 3a 21 31 2c 68 61 73 43 75 73 74 6f 6d 52 65 64 75 63 65 72 73 3a 21 31 2c 73 75 70 70 6f 72 74 73 53 65 74 75 70 4d 6f 64 65 3a 21 31 2c 73 75 70 70 6f 72 74 73 53 75 62 73 63 72 69 70 74 69 6f 6e 3a 21 31 7d 2c 64 61 74 61 44 72 69 76 65 Data Ascii: v3/fingerprinted/img/payment-methods/icon-pm-billie_dark-96f0fe8684ec4bb7175c217a8447cad9.svg"},features:{excludeFromOverflowIconRotation:!1,isSubmittable:!0,hasSpecificNotice:!1,hasCustomReducers:!1,supportsSetupMode:!1,supportsSubscription:!1},dataDrive
2024-12-03 17:10:26 UTC	16384	IN	Data Raw: 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 74 5b 65 5d 3d 28 74 5b 65 5d 7c 7c 5b 5d 29 2e 63 6f 6e 63 61 74 28 5b 72 5d 29 7d 29 29 7d 29 29 2c 74 7d 7d 2c 7b 6b 65 79 3a 22 74 79 70 65 73 42 79 54 79 70 65 22 2c 67 65 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 28 30 2c 73 2e 52 62 29 28 6c 28 29 2c 22 70 61 79 6d 65 6e 74 4d 65 74 68 6f 64 53 70 65 63 2e 74 79 70 65 22 29 7d 7d 2c 7b 6b 65 79 3a 22 61 6c 6c 42 65 74 61 46 6c 61 67 73 22 2c 67 65 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 65 3d 28 30 2c 73 2e 52 62 29 28 6c 28 29 2c 22 6a 73 41 70 69 43 6f 6e 66 69 67 2e 62 65 74 61 46 6c 61 67 73 22 29 2c 74 3d 28 30 2c 73 2e 4e 6e 29 28 65 2c 76 6f 69 64 20 30 29 2c 6e 3d 7b 7d 3b 72 65 74 75 72 6e 28 30 2c 73 Data Ascii: forEach((function(e){t[e]=(t[e]\|\|[]).concat([r])}))})),t}},{key:"typesByType",get:function(){return(0,s.Rb)(l(),"paymentMethodSpec.type")}},{key:"allBetaFlags",get:function(){var e=(0,s.Rb)(l(),"jsApiConfig.betaFlags"),t=(0,s.Nn)(e,void 0),n={};return(0,s
2024-12-03 17:10:26 UTC	16384	IN	Data Raw: 6f 6e 5c 2f 5c 64 2b 5c 2e 5c 64 2b 2f 2e 74 65 73 74 28 65 29 26 26 21 79 28 65 29 7d 29 29 2c 79 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 63 28 61 28 65 29 2c 22 6f 70 65 72 61 20 6d 69 6e 69 22 29 7d 2c 76 3d 69 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 66 28 65 29 26 26 21 6b 28 65 29 26 26 2f 5e 28 28 3f 21 63 68 72 6f 6d 65 7c 61 6e 64 72 6f 69 64 29 2e 29 2a 73 61 66 61 72 69 2f 69 2e 74 65 73 74 28 65 29 26 26 21 64 28 65 29 7d 29 29 2c 67 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 63 28 61 28 65 29 2c 22 66 69 72 65 66 6f 78 22 29 7d 2c 62 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 63 28 61 28 65 29 2c 22 61 6e 64 72 6f 69 64 22 29 26 26 21 6c 28 65 29 7d 2c 6b 3d 69 28 28 Data Ascii: on\/\d+\.\d+/.test(e)&&!y(e)})),y=function(e){return c(a(e),"opera mini")},v=i((function(e){return f(e)&&!k(e)&&/^((?!chrome\|android).)*safari/i.test(e)&&!d(e)})),g=function(e){return c(a(e),"firefox")},b=function(e){return c(a(e),"android")&&!l(e)},k=i((
2024-12-03 17:10:26 UTC	16384	IN	Data Raw: 74 69 6f 3e 30 26 26 28 6f 2e 75 6e 6f 62 73 65 72 76 65 28 65 29 2c 6e 28 29 29 7d 29 29 7d 29 2c 7b 72 6f 6f 74 3a 64 6f 63 75 6d 65 6e 74 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 7d 29 3b 72 65 74 75 72 6e 20 6f 2e 6f 62 73 65 72 76 65 28 65 29 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 6f 2e 64 69 73 63 6f 6e 6e 65 63 74 28 29 7d 7d 7d 2c 34 32 30 30 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 54 66 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 61 7d 2c 57 33 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 5f 7d 2c 58 71 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 68 2e 58 71 7d 2c 64 68 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 Data Ascii: tio>0&&(o.unobserve(e),n())}))}),{root:document.documentElement});return o.observe(e),function(){return o.disconnect()}}},4200:function(e,t,n){"use strict";n.d(t,{Tf:function(){return a},W3:function(){return _},Xq:function(){return h.Xq},dh:function(){ret

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:26 UTC	399	OUT	GET /_next/static/chunks/pages/_app-3f3731a847579feb.js HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:27 UTC	407	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:26 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 859026 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:46 GMT ETag: W/"d1b92-1934ea65e88" Vary: Accept-Encoding
2024-12-03 17:10:27 UTC	15977	IN	Data Raw: 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 38 38 38 5d 2c 7b 36 36 36 34 3a 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 21 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 6e 28 74 2c 65 29 7b 76 61 72 20 6e 3d 4f 62 6a 65 63 74 2e 6b 65 79 73 28 74 29 3b 69 66 28 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 53 79 6d 62 6f 6c 73 29 7b 76 61 72 20 6f 3d 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 53 79 6d 62 6f 6c 73 28 74 29 3b 65 26 26 28 6f 3d 6f 2e 66 69 6c 74 65 72 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 Data Ascii: (self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[888],{6664:function(t,e,n){!function(t,e){"use strict";function n(t,e){var n=Object.keys(t);if(Object.getOwnPropertySymbols){var o=Object.getOwnPropertySymbols(t);e&&(o=o.filter((function(e){return
2024-12-03 17:10:27 UTC	16384	IN	Data Raw: 6f 72 28 76 61 72 20 65 3d 31 3b 65 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 65 2b 2b 29 7b 76 61 72 20 6e 3d 61 72 67 75 6d 65 6e 74 73 5b 65 5d 3b 66 6f 72 28 76 61 72 20 6f 20 69 6e 20 6e 29 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 2e 63 61 6c 6c 28 6e 2c 6f 29 26 26 28 74 5b 6f 5d 3d 6e 5b 6f 5d 29 7d 72 65 74 75 72 6e 20 74 7d 29 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 7d 65 2e 64 65 66 61 75 6c 74 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 61 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 73 76 67 22 2c 69 28 7b 77 69 64 74 68 3a 22 31 65 6d 22 2c 68 65 69 67 68 74 3a 22 31 65 6d 22 2c 76 69 65 77 42 6f 78 3a 22 30 20 30 20 32 30 20 32 30 22 Data Ascii: or(var e=1;e<arguments.length;e++){var n=arguments[e];for(var o in n)Object.prototype.hasOwnProperty.call(n,o)&&(t[o]=n[o])}return t}).apply(this,arguments)}e.default=function(t){return a.createElement("svg",i({width:"1em",height:"1em",viewBox:"0 0 20 20"
2024-12-03 17:10:27 UTC	16384	IN	Data Raw: 30 30 32 2e 37 36 32 2d 2e 34 37 38 20 36 2e 39 39 33 20 36 2e 39 39 33 20 30 20 30 30 32 2e 32 35 37 2d 31 2e 34 36 31 6c 33 2e 30 38 20 33 2e 33 34 36 63 2d 31 2e 38 38 35 20 32 2e 31 35 31 2d 34 2e 36 34 37 20 33 2e 32 34 2d 38 2e 32 35 39 20 33 2e 32 34 61 31 33 2e 32 31 39 20 31 33 2e 32 31 39 20 30 20 30 31 2d 36 2d 31 2e 33 32 38 20 39 2e 35 38 37 20 39 2e 35 38 37 20 30 20 30 31 2d 34 2e 30 31 2d 33 2e 36 36 35 20 31 30 20 31 30 20 30 20 30 31 2d 31 2e 34 31 31 2d 35 2e 33 31 31 20 31 30 2e 33 31 20 31 30 2e 33 31 20 30 20 30 31 31 2e 34 30 37 2d 35 2e 33 31 31 20 39 2e 38 32 38 20 39 2e 38 32 38 20 30 20 30 31 33 2e 38 32 34 2d 33 2e 36 39 31 20 31 31 2e 33 31 32 20 31 31 2e 33 31 32 20 30 20 30 31 35 2e 34 34 34 2d 31 2e 33 32 38 20 31 30 2e 39 Data Ascii: 002.762-.478 6.993 6.993 0 002.257-1.461l3.08 3.346c-1.885 2.151-4.647 3.24-8.259 3.24a13.219 13.219 0 01-6-1.328 9.587 9.587 0 01-4.01-3.665 10 10 0 01-1.411-5.311 10.31 10.31 0 011.407-5.311 9.828 9.828 0 013.824-3.691 11.312 11.312 0 015.444-1.328 10.9
2024-12-03 17:10:27 UTC	16384	IN	Data Raw: 66 73 65 74 7d 7d 29 2c 63 2e 70 6f 6f 6c 53 69 7a 65 3d 38 31 39 32 2c 63 2e 66 72 6f 6d 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 72 65 74 75 72 6e 20 75 28 74 2c 65 2c 6e 29 7d 2c 4f 62 6a 65 63 74 2e 73 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 28 63 2e 70 72 6f 74 6f 74 79 70 65 2c 55 69 6e 74 38 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 29 2c 4f 62 6a 65 63 74 2e 73 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 28 63 2c 55 69 6e 74 38 41 72 72 61 79 29 2c 63 2e 61 6c 6c 6f 63 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 72 65 74 75 72 6e 20 6c 28 74 29 2c 74 3c 3d 30 3f 73 28 74 29 3a 76 6f 69 64 20 30 21 3d 3d 65 3f 22 73 74 72 69 6e 67 22 3d 3d 3d 74 79 70 65 6f 66 20 6e Data Ascii: fset}}),c.poolSize=8192,c.from=function(t,e,n){return u(t,e,n)},Object.setPrototypeOf(c.prototype,Uint8Array.prototype),Object.setPrototypeOf(c,Uint8Array),c.alloc=function(t,e,n){return function(t,e,n){return l(t),t<=0?s(t):void 0!==e?"string"===typeof n
2024-12-03 17:10:27 UTC	16384	IN	Data Raw: 75 6c 6c 22 29 3a 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 74 3f 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 66 28 74 2e 63 6f 6e 73 74 72 75 63 74 6f 72 29 3f 74 2e 63 6f 6e 73 74 72 75 63 74 6f 72 2e 6e 61 6d 65 3a 6e 75 6c 6c 7d 28 74 29 3a 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 2e 74 6f 53 74 72 69 6e 67 2e 63 61 6c 6c 28 74 29 2e 73 6c 69 63 65 28 38 2c 2d 31 29 7d 28 74 29 3b 72 65 74 75 72 6e 20 65 3f 6c 28 6e 29 3a 6e 7d 66 75 6e 63 74 69 6f 6e 20 64 28 74 2c 65 29 7b 72 65 74 75 72 6e 20 74 79 70 65 6f 66 20 65 3d 3d 3d 74 7d 76 61 72 20 66 3d 64 2e 62 69 6e 64 28 6e 75 6c 6c 2c 22 66 75 6e 63 74 69 6f 6e 22 29 2c 45 3d 64 2e 62 69 6e 64 28 6e 75 6c 6c 2c 22 73 74 72 69 6e 67 22 29 3b 64 2e 62 69 6e 64 28 6e 75 6c Data Ascii: ull"):"object"==typeof t?function(t){return f(t.constructor)?t.constructor.name:null}(t):Object.prototype.toString.call(t).slice(8,-1)}(t);return e?l(n):n}function d(t,e){return typeof e===t}var f=d.bind(null,"function"),E=d.bind(null,"string");d.bind(nul
2024-12-03 17:10:27 UTC	16384	IN	Data Raw: 74 79 70 65 29 29 7b 76 61 72 20 72 3d 41 74 28 6e 2e 74 79 70 65 2c 22 72 65 67 69 73 74 65 72 50 6c 75 67 69 6e 22 29 2c 61 3d 74 28 29 5b 72 5d 3b 69 66 28 21 61 7c 7c 21 72 29 72 65 74 75 72 6e 20 65 3b 76 61 72 20 69 3d 6e 2e 65 6e 61 62 6c 65 64 2c 73 3d 61 2e 63 6f 6e 66 69 67 3b 72 65 74 75 72 6e 20 6f 5b 72 5d 3d 7b 65 6e 61 62 6c 65 64 3a 69 2c 69 6e 69 74 69 61 6c 69 7a 65 64 3a 21 21 69 26 26 42 6f 6f 6c 65 61 6e 28 21 61 2e 69 6e 69 74 69 61 6c 69 7a 65 29 2c 6c 6f 61 64 65 64 3a 21 21 69 26 26 42 6f 6f 6c 65 61 6e 28 61 2e 6c 6f 61 64 65 64 28 7b 63 6f 6e 66 69 67 3a 73 7d 29 29 2c 63 6f 6e 66 69 67 3a 73 7d 2c 55 28 7b 7d 2c 65 2c 6f 29 7d 69 66 28 2f 5e 69 6e 69 74 69 61 6c 69 7a 65 3a 28 5b 5e 3a 5d 2a 29 24 2f 2e 74 65 73 74 28 6e 2e 74 Data Ascii: type)){var r=At(n.type,"registerPlugin"),a=t()[r];if(!a\|\|!r)return e;var i=n.enabled,s=a.config;return o[r]={enabled:i,initialized:!!i&&Boolean(!a.initialize),loaded:!!i&&Boolean(a.loaded({config:s})),config:s},U({},e,o)}if(/^initialize:([^:]*)$/.test(n.t
2024-12-03 17:10:27 UTC	16384	IN	Data Raw: 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 7d 29 29 2c 75 28 43 2c 22 74 6f 53 74 72 69 6e 67 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 22 5b 6f 62 6a 65 63 74 20 47 65 6e 65 72 61 74 6f 72 5d 22 7d 29 29 2c 65 2e 6b 65 79 73 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 3d 4f 62 6a 65 63 74 28 74 29 2c 6e 3d 5b 5d 3b 66 6f 72 28 76 61 72 20 6f 20 69 6e 20 65 29 6e 2e 70 75 73 68 28 6f 29 3b 72 65 74 75 72 6e 20 6e 2e 72 65 76 65 72 73 65 28 29 2c 66 75 6e 63 74 69 6f 6e 20 74 28 29 7b 66 6f 72 28 3b 6e 2e 6c 65 6e 67 74 68 3b 29 7b 76 61 72 20 6f 3d 6e 2e 70 6f 70 28 29 3b 69 66 28 6f 20 69 6e 20 65 29 72 65 74 75 72 6e 20 74 2e 76 61 6c 75 65 3d 6f 2c 74 2e 64 6f 6e 65 3d 21 31 2c 74 7d 72 65 74 75 72 6e 20 74 Data Ascii: nction(){return this})),u(C,"toString",(function(){return"[object Generator]"})),e.keys=function(t){var e=Object(t),n=[];for(var o in e)n.push(o);return n.reverse(),function t(){for(;n.length;){var o=n.pop();if(o in e)return t.value=o,t.done=!1,t}return t
2024-12-03 17:10:27 UTC	16384	IN	Data Raw: 61 73 65 20 61 3a 63 61 73 65 20 73 3a 63 61 73 65 20 69 3a 63 61 73 65 20 66 3a 72 65 74 75 72 6e 20 74 3b 64 65 66 61 75 6c 74 3a 73 77 69 74 63 68 28 74 3d 74 26 26 74 2e 24 24 74 79 70 65 6f 66 29 7b 63 61 73 65 20 75 3a 63 61 73 65 20 64 3a 63 61 73 65 20 5f 3a 63 61 73 65 20 6d 3a 63 61 73 65 20 63 3a 72 65 74 75 72 6e 20 74 3b 64 65 66 61 75 6c 74 3a 72 65 74 75 72 6e 20 65 7d 7d 63 61 73 65 20 72 3a 72 65 74 75 72 6e 20 65 7d 7d 7d 66 75 6e 63 74 69 6f 6e 20 43 28 74 29 7b 72 65 74 75 72 6e 20 54 28 74 29 3d 3d 3d 70 7d 65 2e 41 73 79 6e 63 4d 6f 64 65 3d 6c 2c 65 2e 43 6f 6e 63 75 72 72 65 6e 74 4d 6f 64 65 3d 70 2c 65 2e 43 6f 6e 74 65 78 74 43 6f 6e 73 75 6d 65 72 3d 75 2c 65 2e 43 6f 6e 74 65 78 74 50 72 6f 76 69 64 65 72 3d 63 2c 65 2e 45 6c Data Ascii: ase a:case s:case i:case f:return t;default:switch(t=t&&t.$$typeof){case u:case d:case _:case m:case c:return t;default:return e}}case r:return e}}}function C(t){return T(t)===p}e.AsyncMode=l,e.ConcurrentMode=p,e.ContextConsumer=u,e.ContextProvider=c,e.El
2024-12-03 17:10:27 UTC	16384	IN	Data Raw: 6f 69 64 20 30 3a 6e 7d 72 65 74 75 72 6e 20 5a 2e 63 61 6c 6c 28 65 2c 74 29 3f 65 5b 74 5d 3a 76 6f 69 64 20 30 7d 2c 49 74 2e 70 72 6f 74 6f 74 79 70 65 2e 68 61 73 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 3d 74 68 69 73 2e 5f 5f 64 61 74 61 5f 5f 3b 72 65 74 75 72 6e 20 68 74 3f 76 6f 69 64 20 30 21 3d 3d 65 5b 74 5d 3a 5a 2e 63 61 6c 6c 28 65 2c 74 29 7d 2c 49 74 2e 70 72 6f 74 6f 74 79 70 65 2e 73 65 74 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 5f 5f 64 61 74 61 5f 5f 5b 74 5d 3d 68 74 26 26 76 6f 69 64 20 30 3d 3d 3d 65 3f 6f 3a 65 2c 74 68 69 73 7d 2c 4f 74 2e 70 72 6f 74 6f 74 79 70 65 2e 63 6c 65 61 72 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 74 68 69 73 2e 5f 5f 64 61 74 61 5f 5f 3d 5b 5d 7d 2c 4f Data Ascii: oid 0:n}return Z.call(e,t)?e[t]:void 0},It.prototype.has=function(t){var e=this.__data__;return ht?void 0!==e[t]:Z.call(e,t)},It.prototype.set=function(t,e){return this.__data__[t]=ht&&void 0===e?o:e,this},Ot.prototype.clear=function(){this.__data__=[]},O
2024-12-03 17:10:27 UTC	16384	IN	Data Raw: 5b 6f 5d 3d 3d 3d 65 29 72 65 74 75 72 6e 20 6f 3b 72 65 74 75 72 6e 2d 31 7d 28 74 2c 65 2c 30 29 3e 2d 31 7d 66 75 6e 63 74 69 6f 6e 20 42 28 74 2c 65 2c 6e 29 7b 66 6f 72 28 76 61 72 20 6f 3d 2d 31 2c 72 3d 74 3f 74 2e 6c 65 6e 67 74 68 3a 30 3b 2b 2b 6f 3c 72 3b 29 69 66 28 6e 28 65 2c 74 5b 6f 5d 29 29 72 65 74 75 72 6e 21 30 3b 72 65 74 75 72 6e 21 31 7d 66 75 6e 63 74 69 6f 6e 20 47 28 74 2c 65 29 7b 66 6f 72 28 76 61 72 20 6e 3d 2d 31 2c 6f 3d 74 3f 74 2e 6c 65 6e 67 74 68 3a 30 3b 2b 2b 6e 3c 6f 3b 29 69 66 28 65 28 74 5b 6e 5d 2c 6e 2c 74 29 29 72 65 74 75 72 6e 21 30 3b 72 65 74 75 72 6e 21 31 7d 66 75 6e 63 74 69 6f 6e 20 7a 28 74 29 7b 72 65 74 75 72 6e 20 74 21 3d 3d 74 7d 66 75 6e 63 74 69 6f 6e 20 48 28 74 2c 65 29 7b 72 65 74 75 72 6e 20 Data Ascii: [o]===e)return o;return-1}(t,e,0)>-1}function B(t,e,n){for(var o=-1,r=t?t.length:0;++o<r;)if(n(e,t[o]))return!0;return!1}function G(t,e){for(var n=-1,o=t?t.length:0;++n<o;)if(e(t[n],n,t))return!0;return!1}function z(t){return t!==t}function H(t,e){return

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:27 UTC	406	OUT	GET /_next/static/xg_hCbnfA67zv-9idGfYU/_middlewareManifest.js HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:28 UTC	400	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:27 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 92 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Cache-Control: public, max-age=31536000, immutable Accept-Ranges: bytes Last-Modified: Thu, 21 Nov 2024 12:15:57 GMT ETag: W/"5c-1934ea68b6c" Vary: Accept-Encoding
2024-12-03 17:10:28 UTC	92	IN	Data Raw: 73 65 6c 66 2e 5f 5f 4d 49 44 44 4c 45 57 41 52 45 5f 4d 41 4e 49 46 45 53 54 3d 5b 5d 3b 73 65 6c 66 2e 5f 5f 4d 49 44 44 4c 45 57 41 52 45 5f 4d 41 4e 49 46 45 53 54 5f 43 42 26 26 73 65 6c 66 2e 5f 5f 4d 49 44 44 4c 45 57 41 52 45 5f 4d 41 4e 49 46 45 53 54 5f 43 42 28 29 Data Ascii: self.__MIDDLEWARE_MANIFEST=[];self.__MIDDLEWARE_MANIFEST_CB&&self.__MIDDLEWARE_MANIFEST_CB()

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:29 UTC	339	OUT	GET /v3 HTTP/1.1 Host: js.stripe.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:29 UTC	706	IN	HTTP/1.1 200 OK Connection: close Content-Length: 707034 Last-Modified: Tue, 26 Nov 2024 21:44:43 GMT ETag: "ef9b31b63c137d83689e6da09b39a6f0" Cache-Control: max-age=60 Content-Type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly Accept-Ranges: bytes Date: Tue, 03 Dec 2024 17:10:29 GMT Via: 1.1 varnish Age: 12 X-Request-ID: c40cd861-c448-4157-b2d3-3ec51f7662d8 X-Served-By: cache-ewr-kewr1740078-EWR X-Cache: HIT X-Cache-Hits: 1 Vary: Accept-Encoding Timing-Allow-Origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
2024-12-03 17:10:29 UTC	1378	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 65 28 74 29 7b 76 61 72 20 6e 3d 6f 5b 74 5d 3b 69 66 28 76 6f 69 64 20 30 21 3d 3d 6e 29 72 65 74 75 72 6e 20 6e 2e 65 78 70 6f 72 74 73 3b 76 61 72 20 69 3d 6f 5b 74 5d 3d 7b 69 64 3a 74 2c 6c 6f 61 64 65 64 3a 21 31 2c 65 78 70 6f 72 74 73 3a 7b 7d 7d 3b 72 65 74 75 72 6e 20 72 5b 74 5d 28 69 2c 69 2e 65 78 70 6f 72 74 73 2c 65 29 2c 69 2e 6c 6f 61 64 65 64 3d 21 30 2c 69 2e 65 78 70 6f 72 74 73 7d 76 61 72 20 74 2c 6e 2c 72 3d 7b 37 32 33 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 72 28 65 29 7b 6c 2e 6c 65 6e 67 74 68 7c 7c 28 61 28 29 2c 21 30 29 2c 6c 5b 6c 2e 6c 65 6e 67 74 68 5d 3d 65 7d 66 75 6e 63 74 69 6f 6e Data Ascii: !function(){function e(t){var n=o[t];if(void 0!==n)return n.exports;var i=o[t]={id:t,loaded:!1,exports:{}};return r[t](i,i.exports,e),i.loaded=!0,i.exports}var t,n,r={723:function(e,t,n){"use strict";function r(e){l.length\|\|(a(),!0),l[l.length]=e}function
2024-12-03 17:10:29 UTC	1378	IN	Data Raw: 65 34 32 62 64 64 30 65 2e 73 76 67 22 7d 2c 36 36 32 38 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 65 2e 65 78 70 6f 72 74 73 3d 6e 2e 70 2b 22 66 69 6e 67 65 72 70 72 69 6e 74 65 64 2f 69 6d 67 2f 6e 6e 2d 65 66 30 64 61 34 62 33 36 31 34 32 63 32 38 37 31 38 61 64 32 34 62 61 65 64 63 35 38 34 35 33 2e 73 76 67 22 7d 2c 39 38 32 34 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 65 2e 65 78 70 6f 72 74 73 3d 6e 2e 70 2b 22 66 69 6e 67 65 72 70 72 69 6e 74 65 64 2f 69 6d 67 2f 72 61 62 6f 62 61 6e 6b 2d 64 63 35 31 38 37 65 38 34 31 33 34 31 39 39 37 35 66 64 61 39 61 37 32 61 30 38 63 32 35 61 33 2e 73 76 67 22 7d 2c 33 32 36 30 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 65 2e 65 78 70 6f 72 74 73 3d 6e 2e 70 2b 22 66 69 6e 67 65 72 Data Ascii: e42bdd0e.svg"},6628:function(e,t,n){e.exports=n.p+"fingerprinted/img/nn-ef0da4b36142c28718ad24baedc58453.svg"},9824:function(e,t,n){e.exports=n.p+"fingerprinted/img/rabobank-dc5187e8413419975fda9a72a08c25a3.svg"},3260:function(e,t,n){e.exports=n.p+"finger
2024-12-03 17:10:29 UTC	1378	IN	Data Raw: 29 7b 65 2e 65 78 70 6f 72 74 73 3d 6e 2e 70 2b 22 66 69 6e 67 65 72 70 72 69 6e 74 65 64 2f 69 6d 67 2f 54 44 4c 6f 67 6f 2d 31 39 63 34 30 37 34 66 33 38 38 65 61 34 61 65 34 62 61 64 33 35 37 34 30 38 37 63 64 61 66 61 2e 73 76 67 22 7d 2c 36 31 31 39 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 65 2e 65 78 70 6f 72 74 73 3d 6e 2e 70 2b 22 66 69 6e 67 65 72 70 72 69 6e 74 65 64 2f 69 6d 67 2f 55 53 41 41 4c 6f 67 6f 2d 63 30 33 63 36 38 30 62 62 37 30 31 30 36 63 62 62 61 30 38 33 61 34 36 66 35 65 63 35 35 39 34 2e 73 76 67 22 7d 2c 32 35 33 31 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 65 2e 65 78 70 6f 72 74 73 3d 6e 2e 70 2b 22 66 69 6e 67 65 72 70 72 69 6e 74 65 64 2f 69 6d 67 2f 55 53 42 61 6e 6b 4c 6f 67 6f 2d 64 39 35 66 33 61 36 Data Ascii: ){e.exports=n.p+"fingerprinted/img/TDLogo-19c4074f388ea4ae4bad3574087cdafa.svg"},6119:function(e,t,n){e.exports=n.p+"fingerprinted/img/USAALogo-c03c680bb70106cbba083a46f5ec5594.svg"},2531:function(e,t,n){e.exports=n.p+"fingerprinted/img/USBankLogo-d95f3a6
2024-12-03 17:10:29 UTC	1378	IN	Data Raw: 7b 66 6f 72 28 76 61 72 20 75 20 69 6e 20 69 3d 4f 62 6a 65 63 74 28 61 72 67 75 6d 65 6e 74 73 5b 73 5d 29 29 72 2e 63 61 6c 6c 28 69 2c 75 29 26 26 28 63 5b 75 5d 3d 69 5b 75 5d 29 3b 69 66 28 6e 29 7b 61 3d 6e 28 69 29 3b 66 6f 72 28 76 61 72 20 6c 3d 30 3b 6c 3c 61 2e 6c 65 6e 67 74 68 3b 6c 2b 2b 29 6f 2e 63 61 6c 6c 28 69 2c 61 5b 6c 5d 29 26 26 28 63 5b 61 5b 6c 5d 5d 3d 69 5b 61 5b 6c 5d 5d 29 7d 7d 72 65 74 75 72 6e 20 63 7d 7d 2c 33 34 33 34 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 72 28 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 69 66 28 22 6f 62 6a 65 63 74 22 21 3d 74 79 70 65 6f 66 20 74 68 69 73 29 74 68 72 6f 77 20 6e 65 77 20 54 79 70 65 45 72 72 6f 72 28 Data Ascii: {for(var u in i=Object(arguments[s]))r.call(i,u)&&(c[u]=i[u]);if(n){a=n(i);for(var l=0;l<a.length;l++)o.call(i,a[l])&&(c[a[l]]=i[a[l]])}}return c}},3434:function(e,t,n){"use strict";function r(){}function o(e){if("object"!=typeof this)throw new TypeError(
2024-12-03 17:10:29 UTC	1378	IN	Data Raw: 2e 5f 35 34 3d 6e 75 6c 6c 7d 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 2c 74 2c 6e 29 7b 74 68 69 73 2e 6f 6e 46 75 6c 66 69 6c 6c 65 64 3d 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 65 3f 65 3a 6e 75 6c 6c 2c 74 68 69 73 2e 6f 6e 52 65 6a 65 63 74 65 64 3d 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 74 3f 74 3a 6e 75 6c 6c 2c 74 68 69 73 2e 70 72 6f 6d 69 73 65 3d 6e 7d 66 75 6e 63 74 69 6f 6e 20 6c 28 65 2c 74 29 7b 76 61 72 20 6e 3d 21 31 2c 72 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 74 72 79 7b 65 28 74 2c 6e 29 7d 63 61 74 63 68 28 65 29 7b 72 65 74 75 72 6e 20 70 3d 65 2c 6d 7d 7d 28 65 2c 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 6e 7c 7c 28 6e 3d 21 30 2c 61 28 74 2c 65 29 29 7d 29 2c 28 66 75 6e 63 74 69 6f 6e 28 Data Ascii: ._54=null}}function u(e,t,n){this.onFulfilled="function"==typeof e?e:null,this.onRejected="function"==typeof t?t:null,this.promise=n}function l(e,t){var n=!1,r=function(e,t,n){try{e(t,n)}catch(e){return p=e,m}}(e,(function(e){n\|\|(n=!0,a(t,e))}),(function(
2024-12-03 17:10:29 UTC	1378	IN	Data Raw: 68 65 6e 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 28 61 2c 65 29 7d 29 2c 6e 29 29 7d 76 61 72 20 73 3d 63 2e 74 68 65 6e 3b 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 73 29 72 65 74 75 72 6e 20 76 6f 69 64 20 6e 65 77 20 6f 28 73 2e 62 69 6e 64 28 63 29 29 2e 74 68 65 6e 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 28 61 2c 65 29 7d 29 2c 6e 29 7d 74 5b 61 5d 3d 63 2c 30 3d 3d 2d 2d 69 26 26 65 28 74 29 7d 69 66 28 30 3d 3d 3d 74 2e 6c 65 6e 67 74 68 29 72 65 74 75 72 6e 20 65 28 5b 5d 29 3b 66 6f 72 28 76 61 72 20 69 3d 74 2e 6c 65 6e 67 74 68 2c 61 3d 30 3b 61 3c 74 2e 6c 65 6e 67 74 68 3b 61 2b 2b 29 72 28 61 2c 74 5b 61 5d 29 7d 29 29 7d 2c 6f 2e 72 65 6a 65 63 74 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 Data Ascii: hen((function(e){r(a,e)}),n))}var s=c.then;if("function"==typeof s)return void new o(s.bind(c)).then((function(e){r(a,e)}),n)}t[a]=c,0==--i&&e(t)}if(0===t.length)return e([]);for(var i=t.length,a=0;a<t.length;a++)r(a,t[a])}))},o.reject=function(e){return
2024-12-03 17:10:29 UTC	1378	IN	Data Raw: 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 2d 32 3b 69 66 28 31 3d 3d 3d 63 29 6f 2e 63 68 69 6c 64 72 65 6e 3d 6e 3b 65 6c 73 65 20 69 66 28 31 3c 63 29 7b 66 6f 72 28 76 61 72 20 73 3d 41 72 72 61 79 28 63 29 2c 75 3d 30 3b 75 3c 63 3b 75 2b 2b 29 73 5b 75 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 75 2b 32 5d 3b 6f 2e 63 68 69 6c 64 72 65 6e 3d 73 7d 69 66 28 65 26 26 65 2e 64 65 66 61 75 6c 74 50 72 6f 70 73 29 66 6f 72 28 72 20 69 6e 20 63 3d 65 2e 64 65 66 61 75 6c 74 50 72 6f 70 73 29 76 6f 69 64 20 30 3d 3d 3d 6f 5b 72 5d 26 26 28 6f 5b 72 5d 3d 63 5b 72 5d 29 3b 72 65 74 75 72 6e 7b 24 24 74 79 70 65 6f 66 3a 62 2c 74 79 70 65 3a 65 2c 6b 65 79 3a 69 2c 72 65 66 3a 61 2c 70 72 6f 70 73 3a 6f 2c 5f 6f 77 6e 65 72 3a 5a 2e 63 75 72 72 65 6e 74 7d 7d 66 75 6e 63 Data Ascii: ments.length-2;if(1===c)o.children=n;else if(1<c){for(var s=Array(c),u=0;u<c;u++)s[u]=arguments[u+2];o.children=s}if(e&&e.defaultProps)for(r in c=e.defaultProps)void 0===o[r]&&(o[r]=c[r]);return{$$typeof:b,type:e,key:i,ref:a,props:o,_owner:Z.current}}func
2024-12-03 17:10:29 UTC	1378	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 7b 22 3d 22 3a 22 3d 30 22 2c 22 3a 22 3a 22 3d 32 22 7d 3b 72 65 74 75 72 6e 22 24 22 2b 28 22 22 2b 65 29 2e 72 65 70 6c 61 63 65 28 2f 5b 3d 3a 5d 2f 67 2c 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 74 5b 65 5d 7d 29 29 7d 28 65 2e 6b 65 79 29 3a 74 2e 74 6f 53 74 72 69 6e 67 28 33 36 29 7d 66 75 6e 63 74 69 6f 6e 20 66 28 65 2c 74 29 7b 65 2e 66 75 6e 63 2e 63 61 6c 6c 28 65 2e 63 6f 6e 74 65 78 74 2c 74 2c 65 2e 63 6f 75 6e 74 2b 2b 29 7d 66 75 6e 63 74 69 6f 6e 20 5f 28 65 2c 74 2c 6e 29 7b 76 61 72 20 72 3d 65 2e 72 65 73 75 6c 74 2c 6f 3d 65 2e 6b 65 79 50 72 65 66 69 78 3b 65 3d 65 2e 66 75 6e 63 2e 63 61 6c 6c 28 65 2e 63 6f 6e 74 65 78 74 2c 74 2c 65 2e 63 6f 75 6e 74 2b 2b Data Ascii: function(e){var t={"=":"=0",":":"=2"};return"$"+(""+e).replace(/[=:]/g,(function(e){return t[e]}))}(e.key):t.toString(36)}function f(e,t){e.func.call(e.context,t,e.count++)}function _(e,t,n){var r=e.result,o=e.keyPrefix;e=e.func.call(e.context,t,e.count++
2024-12-03 17:10:29 UTC	1378	IN	Data Raw: 64 61 74 65 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 7d 2c 65 6e 71 75 65 75 65 52 65 70 6c 61 63 65 53 74 61 74 65 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 7d 2c 65 6e 71 75 65 75 65 53 65 74 53 74 61 74 65 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 7d 7d 2c 4f 3d 7b 7d 3b 6f 2e 70 72 6f 74 6f 74 79 70 65 2e 69 73 52 65 61 63 74 43 6f 6d 70 6f 6e 65 6e 74 3d 7b 7d 2c 6f 2e 70 72 6f 74 6f 74 79 70 65 2e 73 65 74 53 74 61 74 65 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 69 66 28 22 6f 62 6a 65 63 74 22 21 3d 74 79 70 65 6f 66 20 65 26 26 22 66 75 6e 63 74 69 6f 6e 22 21 3d 74 79 70 65 6f 66 20 65 26 26 6e 75 6c 6c 21 3d 65 29 74 68 72 6f 77 20 45 72 72 6f 72 28 72 28 38 35 29 29 3b 74 68 69 73 2e 75 70 64 61 74 65 72 2e 65 6e 71 75 65 75 65 53 65 74 53 74 61 74 65 28 74 Data Ascii: date:function(){},enqueueReplaceState:function(){},enqueueSetState:function(){}},O={};o.prototype.isReactComponent={},o.prototype.setState=function(e,t){if("object"!=typeof e&&"function"!=typeof e&&null!=e)throw Error(r(85));this.updater.enqueueSetState(t
2024-12-03 17:10:29 UTC	1378	IN	Data Raw: 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 7b 24 24 74 79 70 65 6f 66 3a 52 2c 74 79 70 65 3a 65 2c 63 6f 6d 70 61 72 65 3a 76 6f 69 64 20 30 3d 3d 3d 74 3f 6e 75 6c 6c 3a 74 7d 7d 2c 75 73 65 43 61 6c 6c 62 61 63 6b 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 79 28 29 2e 75 73 65 43 61 6c 6c 62 61 63 6b 28 65 2c 74 29 7d 2c 75 73 65 43 6f 6e 74 65 78 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 79 28 29 2e 75 73 65 43 6f 6e 74 65 78 74 28 65 2c 74 29 7d 2c 75 73 65 45 66 66 65 63 74 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 79 28 29 2e 75 73 65 45 66 66 65 63 74 28 65 2c 74 29 7d 2c 75 73 65 49 6d 70 65 72 61 74 69 76 65 48 61 6e 64 6c 65 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 Data Ascii: ction(e,t){return{$$typeof:R,type:e,compare:void 0===t?null:t}},useCallback:function(e,t){return y().useCallback(e,t)},useContext:function(e,t){return y().useContext(e,t)},useEffect:function(e,t){return y().useEffect(e,t)},useImperativeHandle:function(e,t

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://0azeevmdi7.codedesign.app/

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

Phishing

Compliance

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 100

Chrome Cache Entry: 101

Chrome Cache Entry: 102

Chrome Cache Entry: 103

Chrome Cache Entry: 104

Chrome Cache Entry: 105

Chrome Cache Entry: 106

Chrome Cache Entry: 107

Chrome Cache Entry: 108

Chrome Cache Entry: 109

Chrome Cache Entry: 110

Chrome Cache Entry: 111

Chrome Cache Entry: 112

Chrome Cache Entry: 113

Chrome Cache Entry: 114

Chrome Cache Entry: 115

Chrome Cache Entry: 116

Chrome Cache Entry: 117

Chrome Cache Entry: 118

Chrome Cache Entry: 119

Chrome Cache Entry: 120

Chrome Cache Entry: 121

Chrome Cache Entry: 122

Chrome Cache Entry: 123

Chrome Cache Entry: 124

Chrome Cache Entry: 125

Chrome Cache Entry: 126

Chrome Cache Entry: 127

Windows Analysis Report
https://0azeevmdi7.codedesign.app/

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:29 UTC	643	OUT	GET /favicon.ico HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" downlink: 1.4 sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 viewport-width: 1280 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:30 UTC	400	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:30 GMT Content-Type: text/html; charset=utf-8 Content-Length: 27939 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Vary: User-Agent, Viewport-Width, Accept-Encoding Cache-Control: public, s-maxage=20, stale-while-revalidate=59 X-Powered-By: Next.js ETag: "6d23-q9Wta2I49o6MmVpvYqh2Hkse/dg"
2024-12-03 17:10:30 UTC	15984	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 65 6c 6f 61 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 66 6f 6e 74 61 77 65 73 6f 6d 65 2e 63 6f 6d 2f 72 65 6c 65 61 73 65 73 2f 76 35 2e 31 35 2e 34 2f 63 73 73 2f 61 6c 6c 2e 63 73 73 22 20 61 73 3d 22 73 74 79 6c 65 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 65 72 73 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 31 2e 31 2e 31 32 35 22 2f 3e 3c 6d 65 74 61 20 Data Ascii: <!DOCTYPE html><html><head><link rel="preload" href="https://use.fontawesome.com/releases/v5.15.4/css/all.css" as="style"/><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"/><meta name="version" content="1.1.125"/><meta
2024-12-03 17:10:30 UTC	11955	IN	Data Raw: 22 3a 22 44 69 76 5a 64 38 34 22 2c 22 70 61 72 65 6e 74 22 3a 22 53 65 63 74 69 6f 6e 72 64 75 31 22 2c 22 78 31 22 3a 22 30 70 78 22 2c 22 79 31 22 3a 22 30 70 78 22 2c 22 6d 69 6e 48 22 3a 22 32 30 70 78 22 2c 22 64 69 73 70 6c 61 79 22 3a 22 66 6c 65 78 22 7d 2c 7b 22 77 22 3a 22 35 30 25 22 2c 22 68 22 3a 22 61 75 74 6f 22 2c 22 78 22 3a 22 30 70 78 22 2c 22 79 22 3a 22 30 70 78 22 2c 22 69 22 3a 22 44 69 76 74 6e 51 39 22 2c 22 70 61 72 65 6e 74 22 3a 22 53 65 63 74 69 6f 6e 72 64 75 31 22 2c 22 78 31 22 3a 22 30 70 78 22 2c 22 79 31 22 3a 22 30 70 78 22 2c 22 6d 69 6e 48 22 3a 22 32 30 70 78 22 2c 22 64 69 73 70 6c 61 79 22 3a 22 66 6c 65 78 22 7d 5d 2c 22 73 6d 22 3a 5b 7b 22 77 22 3a 22 31 30 30 25 22 2c 22 69 22 3a 22 44 69 76 5a 64 38 34 22 7d Data Ascii: ":"DivZd84","parent":"Sectionrdu1","x1":"0px","y1":"0px","minH":"20px","display":"flex"},{"w":"50%","h":"auto","x":"0px","y":"0px","i":"DivtnQ9","parent":"Sectionrdu1","x1":"0px","y1":"0px","minH":"20px","display":"flex"}],"sm":[{"w":"100%","i":"DivZd84"}

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:33 UTC	360	OUT	GET /favicon.ico HTTP/1.1 Host: 0azeevmdi7.codedesign.app Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:33 UTC	400	IN	HTTP/1.1 200 OK Server: openresty/1.19.9.1 Date: Tue, 03 Dec 2024 17:10:33 GMT Content-Type: text/html; charset=utf-8 Content-Length: 27939 Connection: close Accept-CH: Width, Downlink, Sec-CH-UA, Viewport-Width Vary: User-Agent, Viewport-Width, Accept-Encoding Cache-Control: public, s-maxage=20, stale-while-revalidate=59 X-Powered-By: Next.js ETag: "6d23-q9Wta2I49o6MmVpvYqh2Hkse/dg"
2024-12-03 17:10:33 UTC	15984	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 65 6c 6f 61 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 75 73 65 2e 66 6f 6e 74 61 77 65 73 6f 6d 65 2e 63 6f 6d 2f 72 65 6c 65 61 73 65 73 2f 76 35 2e 31 35 2e 34 2f 63 73 73 2f 61 6c 6c 2e 63 73 73 22 20 61 73 3d 22 73 74 79 6c 65 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 61 78 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 65 72 73 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 31 2e 31 2e 31 32 35 22 2f 3e 3c 6d 65 74 61 20 Data Ascii: <!DOCTYPE html><html><head><link rel="preload" href="https://use.fontawesome.com/releases/v5.15.4/css/all.css" as="style"/><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"/><meta name="version" content="1.1.125"/><meta
2024-12-03 17:10:33 UTC	11955	IN	Data Raw: 22 3a 22 44 69 76 5a 64 38 34 22 2c 22 70 61 72 65 6e 74 22 3a 22 53 65 63 74 69 6f 6e 72 64 75 31 22 2c 22 78 31 22 3a 22 30 70 78 22 2c 22 79 31 22 3a 22 30 70 78 22 2c 22 6d 69 6e 48 22 3a 22 32 30 70 78 22 2c 22 64 69 73 70 6c 61 79 22 3a 22 66 6c 65 78 22 7d 2c 7b 22 77 22 3a 22 35 30 25 22 2c 22 68 22 3a 22 61 75 74 6f 22 2c 22 78 22 3a 22 30 70 78 22 2c 22 79 22 3a 22 30 70 78 22 2c 22 69 22 3a 22 44 69 76 74 6e 51 39 22 2c 22 70 61 72 65 6e 74 22 3a 22 53 65 63 74 69 6f 6e 72 64 75 31 22 2c 22 78 31 22 3a 22 30 70 78 22 2c 22 79 31 22 3a 22 30 70 78 22 2c 22 6d 69 6e 48 22 3a 22 32 30 70 78 22 2c 22 64 69 73 70 6c 61 79 22 3a 22 66 6c 65 78 22 7d 5d 2c 22 73 6d 22 3a 5b 7b 22 77 22 3a 22 31 30 30 25 22 2c 22 69 22 3a 22 44 69 76 5a 64 38 34 22 7d Data Ascii: ":"DivZd84","parent":"Sectionrdu1","x1":"0px","y1":"0px","minH":"20px","display":"flex"},{"w":"50%","h":"auto","x":"0px","y":"0px","i":"DivtnQ9","parent":"Sectionrdu1","x1":"0px","y1":"0px","minH":"20px","display":"flex"}],"sm":[{"w":"100%","i":"DivZd84"}

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:34 UTC	733	OUT	GET /v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html HTTP/1.1 Host: js.stripe.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://0azeevmdi7.codedesign.app/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:34 UTC	1357	IN	HTTP/1.1 200 OK Connection: close Content-Length: 200 Last-Modified: Fri, 11 Oct 2024 20:56:26 GMT ETag: "3437aaddcdf6922d623e172c2d6f9278" Cache-Control: max-age=31536000 Content-Type: text/html; charset=utf-8 content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; worker-src 'none'; report-uri https://q.stripe.com/csp-report content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; worker-src 'none'; report-uri https://q.stripe.com/csp-report origin-agent-cluster: ?1 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly Accept-Ranges: bytes Age: 1149919 Date: Tue, 03 Dec 2024 17:10:34 GMT Via: 1.1 varnish X-Request-ID: 70915cd2-6827-4e68-88ba-ab1ea3fb6df5 X-Served-By: cache-ewr-kewr1740031-EWR X-Cache: HIT X-Cache-Hits: 0 Vary: Accept-Encoding Timing-Allow-Origin: *
2024-12-03 17:10:34 UTC	75	IN	Data Raw: 61 6c 74 2d 73 76 63 3a 20 68 33 3d 22 3a 34 34 33 22 3b 6d 61 3d 38 36 34 30 30 2c 68 33 2d 32 39 3d 22 3a 34 34 33 22 3b 6d 61 3d 38 36 34 30 30 2c 68 33 2d 32 37 3d 22 3a 34 34 33 22 3b 6d 61 3d 38 36 34 30 30 0d 0a 0d 0a Data Ascii: alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
2024-12-03 17:10:34 UTC	200	IN	Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 73 63 72 69 70 74 20 64 65 66 65 72 3d 22 64 65 66 65 72 22 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 6a 73 2e 73 74 72 69 70 65 2e 63 6f 6d 2f 76 33 2f 66 69 6e 67 65 72 70 72 69 6e 74 65 64 2f 6a 73 2f 6d 2d 6f 75 74 65 72 2d 31 35 61 32 62 34 30 61 30 35 38 64 64 66 66 31 63 66 66 64 62 36 33 37 37 39 66 65 33 64 65 31 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 74 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e Data Ascii: <!doctype html><html><head><meta charset="utf-8"/><script defer="defer" src="https://js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js"></script></head><body></body></html>

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:35 UTC	622	OUT	GET /v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js HTTP/1.1 Host: js.stripe.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:36 UTC	717	IN	HTTP/1.1 200 OK Connection: close Content-Length: 526 Last-Modified: Wed, 10 Jul 2024 20:09:27 GMT ETag: "d96c709017743c0759cf3853d1806ba5" Cache-Control: max-age=31536000 Content-Type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly Accept-Ranges: bytes Date: Tue, 03 Dec 2024 17:10:36 GMT Via: 1.1 varnish Age: 1832651 X-Request-ID: 9a43ead7-9dbd-4682-9dcc-42326884051c X-Served-By: cache-nyc-kteb1890067-NYC X-Cache: HIT X-Cache-Hits: 1588 Vary: Accept-Encoding Timing-Allow-Origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
2024-12-03 17:10:36 UTC	526	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 65 3d 22 68 74 74 70 73 3a 2f 2f 6d 2e 73 74 72 69 70 65 2e 6e 65 74 77 6f 72 6b 22 2c 6e 3d 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 68 61 73 68 2c 74 3d 2f 70 72 65 76 69 65 77 3d 74 72 75 65 2f 2e 74 65 73 74 28 6e 29 3f 22 69 6e 6e 65 72 2d 70 72 65 76 69 65 77 2e 68 74 6d 6c 22 3a 22 69 6e 6e 65 72 2e 68 74 6d 6c 22 2c 6f 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 69 66 72 61 6d 65 22 29 3b 6f 2e 73 72 63 3d 22 22 2e 63 6f 6e 63 61 74 28 65 2c 22 2f 22 29 2e 63 6f 6e 63 61 74 28 74 29 2e 63 6f 6e 63 61 74 28 6e 29 3b 76 61 72 20 69 3d 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 69 66 28 6e 2e 6f 72 69 67 69 6e 3d 3d 3d 65 29 7b 76 61 Data Ascii: !function(){"use strict";var e="https://m.stripe.network",n=window.location.hash,t=/preview=true/.test(n)?"inner-preview.html":"inner.html",o=document.createElement("iframe");o.src="".concat(e,"/").concat(t).concat(n);var i=function(n){if(n.origin===e){va

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:37 UTC	400	OUT	GET /v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js HTTP/1.1 Host: js.stripe.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:38 UTC	714	IN	HTTP/1.1 200 OK Connection: close Content-Length: 526 Last-Modified: Wed, 10 Jul 2024 20:09:27 GMT ETag: "d96c709017743c0759cf3853d1806ba5" Cache-Control: max-age=31536000 Content-Type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly Accept-Ranges: bytes Date: Tue, 03 Dec 2024 17:10:37 GMT Via: 1.1 varnish Age: 1832653 X-Request-ID: 021a6ad8-0b95-49b8-a340-0ccbac2e2c50 X-Served-By: cache-nyc-kteb1890087-NYC X-Cache: HIT X-Cache-Hits: 1 Vary: Accept-Encoding Timing-Allow-Origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
2024-12-03 17:10:38 UTC	526	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 65 3d 22 68 74 74 70 73 3a 2f 2f 6d 2e 73 74 72 69 70 65 2e 6e 65 74 77 6f 72 6b 22 2c 6e 3d 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 68 61 73 68 2c 74 3d 2f 70 72 65 76 69 65 77 3d 74 72 75 65 2f 2e 74 65 73 74 28 6e 29 3f 22 69 6e 6e 65 72 2d 70 72 65 76 69 65 77 2e 68 74 6d 6c 22 3a 22 69 6e 6e 65 72 2e 68 74 6d 6c 22 2c 6f 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 69 66 72 61 6d 65 22 29 3b 6f 2e 73 72 63 3d 22 22 2e 63 6f 6e 63 61 74 28 65 2c 22 2f 22 29 2e 63 6f 6e 63 61 74 28 74 29 2e 63 6f 6e 63 61 74 28 6e 29 3b 76 61 72 20 69 3d 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 69 66 28 6e 2e 6f 72 69 67 69 6e 3d 3d 3d 65 29 7b 76 61 Data Ascii: !function(){"use strict";var e="https://m.stripe.network",n=window.location.hash,t=/preview=true/.test(n)?"inner-preview.html":"inner.html",o=document.createElement("iframe");o.src="".concat(e,"/").concat(t).concat(n);var i=function(n){if(n.origin===e){va

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:38 UTC	686	OUT	GET /inner.html HTTP/1.1 Host: m.stripe.network Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://js.stripe.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:38 UTC	1155	IN	HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 Content-Length: 930 Connection: close Last-Modified: Mon, 18 Nov 2024 21:33:56 GMT Accept-Ranges: bytes Server: Cloudfront Date: Tue, 03 Dec 2024 17:08:41 GMT Cache-Control: max-age=300, public Etag: "06bfcd88af438673a8bf9b845a11aa6e" Via: 1.1 5e8c8047bc2824e975165ec6d4072120.cloudfront.net (CloudFront) Age: 118 Content-Security-Policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-/5Guo2nzv5n/w6ukZpOBZOtTJBJPSkJ6mhHpnBgm3Ls='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report Strict-Transport-Security: max-age=31556926; includeSubDomains; preload Vary: Accept-Encoding, Origin X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront X-Amz-Cf-Pop: BAH53-P2 X-Amz-Cf-Id: oKRvpoWOtoqSXYi9dEsYJindOMhuIm-YJOCT6zwaUDJNMkmIFZJ1Hw==
2024-12-03 17:10:38 UTC	930	IN	Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 3c 74 69 74 6c 65 3e 53 74 72 69 70 65 4d 2d 49 6e 6e 65 72 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 3c 73 63 72 69 70 74 3e 21 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 65 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 73 63 72 69 70 74 22 29 3b 65 2e 64 65 66 65 72 3d 21 30 2c 65 2e 73 72 63 3d 22 6f 75 74 2d 34 2e 35 2e 34 33 2e 6a 73 22 2c 65 2e 6f 6e 6c 6f 61 64 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 65 3b 77 69 6e 64 6f 77 2e 53 74 72 69 70 65 4d 26 26 28 65 3d 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 68 61 73 68 2c 2f 70 69 6e 67 3d 66 Data Ascii: <!doctype html><html><head><meta charset="utf-8"><title>StripeM-Inner</title></head><body><script>!function(){var e=document.createElement("script");e.defer=!0,e.src="out-4.5.43.js",e.onload=function(){var e;window.StripeM&&(e=window.location.hash,/ping=f

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:40 UTC	540	OUT	GET /out-4.5.43.js HTTP/1.1 Host: m.stripe.network Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://m.stripe.network/inner.html Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:41 UTC	644	IN	HTTP/1.1 200 OK Content-Type: text/javascript; charset=utf-8 Content-Length: 88751 Connection: close Date: Tue, 03 Dec 2024 17:10:42 GMT Last-Modified: Mon, 18 Nov 2024 21:33:56 GMT Etag: "69cb7809b5011312e716f29b3d19dce6" Cache-Control: max-age=300, public Accept-Ranges: bytes Server: Cloudfront Via: 1.1 1aea7e24169d7c704c98c2fee9cab32e.cloudfront.net (CloudFront) Strict-Transport-Security: max-age=31556926; includeSubDomains; preload Vary: Accept-Encoding, Origin X-Content-Type-Options: nosniff X-Cache: Miss from cloudfront X-Amz-Cf-Pop: BAH53-P2 X-Amz-Cf-Id: KHeXotnmduXhAgp8Jnq_nPgl-N0pVzPSqgLbkNZAOStIVwArAw569g==
2024-12-03 17:10:41 UTC	15740	IN	Data Raw: 76 61 72 20 53 74 72 69 70 65 4d 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6e 28 72 29 7b 69 66 28 74 5b 72 5d 29 72 65 74 75 72 6e 20 74 5b 72 5d 2e 65 78 70 6f 72 74 73 3b 76 61 72 20 5f 3d 74 5b 72 5d 3d 7b 69 3a 72 2c 6c 3a 21 31 2c 65 78 70 6f 72 74 73 3a 7b 7d 7d 3b 72 65 74 75 72 6e 20 65 5b 72 5d 2e 63 61 6c 6c 28 5f 2e 65 78 70 6f 72 74 73 2c 5f 2c 5f 2e 65 78 70 6f 72 74 73 2c 6e 29 2c 5f 2e 6c 3d 21 30 2c 5f 2e 65 78 70 6f 72 74 73 7d 72 65 74 75 72 6e 20 6e 2e 6d 3d 65 2c 6e 2e 63 3d 74 2c 6e 2e 64 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 72 29 7b 6e 2e 6f 28 65 2c 74 29 7c 7c 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 65 2c 74 2c 7b 65 6e 75 6d 65 72 61 62 6c 65 3a 21 Data Ascii: var StripeM=function(e){var t={};function n(r){if(t[r])return t[r].exports;var _=t[r]={i:r,l:!1,exports:{}};return e[r].call(_.exports,_,_.exports,n),_.l=!0,_.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!
2024-12-03 17:10:41 UTC	644	IN	Data Raw: 65 28 22 5f 5f 73 65 74 5f 5f 22 2c 41 29 2c 65 28 22 5f 5f 72 65 73 65 74 5f 5f 22 2c 47 29 2c 65 28 22 5f 5f 52 65 73 65 74 44 65 70 65 6e 64 65 6e 63 79 5f 5f 22 2c 47 29 2c 65 28 22 5f 5f 77 69 74 68 5f 5f 22 2c 44 29 7d 28 29 7d 29 2e 63 61 6c 6c 28 74 68 69 73 2c 6e 28 33 29 29 7d 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 65 2e 65 78 70 6f 72 74 73 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 66 6f 72 28 76 61 72 20 6e 3d 2d 31 2c 72 3d 6e 75 6c 6c 3d 3d 65 3f 30 3a 65 2e 6c 65 6e 67 74 68 2c 5f 3d 41 72 72 61 79 28 72 29 3b 2b 2b 6e 3c 72 3b 29 5f 5b 6e 5d 3d 74 28 65 5b 6e 5d 2c 6e 2c 65 29 3b 72 65 74 75 72 6e 20 5f 7d 7d 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 66 75 6e 63 74 69 6f 6e 28 65 Data Ascii: e("__set__",A),e("__reset__",G),e("__ResetDependency__",G),e("__with__",D)}()}).call(this,n(3))},function(e,t){e.exports=function(e,t){for(var n=-1,r=null==e?0:e.length,_=Array(r);++n<r;)_[n]=t(e[n],n,e);return _}},function(e,t,n){"use strict";(function(e
2024-12-03 17:10:42 UTC	16384	IN	Data Raw: 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 66 28 41 72 72 61 79 2e 69 73 41 72 72 61 79 28 65 29 29 72 65 74 75 72 6e 20 68 28 65 29 7d 28 65 29 7c 7c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 66 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 26 26 6e 75 6c 6c 21 3d 65 5b 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 5d 7c 7c 6e 75 6c 6c 21 3d 65 5b 22 40 40 69 74 65 72 61 74 6f 72 22 5d 29 72 65 74 75 72 6e 20 41 72 72 61 79 2e 66 72 6f 6d 28 65 29 7d 28 65 29 7c 7c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 69 66 28 21 65 29 72 65 74 75 72 6e 3b 69 66 28 22 73 74 72 69 6e 67 22 3d 3d 74 79 70 65 6f 66 20 65 29 72 65 74 75 72 6e 20 68 28 65 2c 74 29 3b 76 61 72 20 6e 3d 4f 62 6a 65 63 74 2e 70 72 Data Ascii: (e){return function(e){if(Array.isArray(e))return h(e)}(e)\|\|function(e){if("undefined"!=typeof Symbol&&null!=e[Symbol.iterator]\|\|null!=e["@@iterator"])return Array.from(e)}(e)\|\|function(e,t){if(!e)return;if("string"==typeof e)return h(e,t);var n=Object.pr
2024-12-03 17:10:42 UTC	16384	IN	Data Raw: 7b 74 2e 70 6f 73 74 4d 65 73 73 61 67 65 28 4a 53 4f 4e 2e 73 74 72 69 6e 67 69 66 79 28 7b 6f 72 69 67 69 6e 61 74 69 6e 67 53 63 72 69 70 74 3a 22 6d 22 2c 70 61 79 6c 6f 61 64 3a 65 7d 29 2c 22 2a 22 29 7d 7d 63 61 74 63 68 28 65 29 7b 7d 7d 2c 66 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 77 69 6e 64 6f 77 2e 62 74 6f 61 7c 7c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 7d 7d 2c 73 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 31 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 31 5d 3f 61 72 67 75 6d 65 6e 74 73 5b 31 5d 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 7d 2c 6e 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 Data Ascii: {t.postMessage(JSON.stringify({originatingScript:"m",payload:e}),"*")}}catch(e){}},f=function(){return window.btoa\|\|function(e){return e}},s=function(e){var t=arguments.length>1&&void 0!==arguments[1]?arguments[1]:function(){},n=arguments.length>2&&void 0
2024-12-03 17:10:42 UTC	920	IN	Data Raw: 6e 63 74 69 6f 6e 28 74 29 7b 6e 5b 74 5d 3d 65 5b 74 5d 7d 29 29 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 4f 62 6a 65 63 74 2e 6b 65 79 73 28 65 29 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 62 28 65 29 7d 29 29 7d 29 3a 28 6e 5b 65 5d 3d 76 6f 69 64 20 30 3d 3d 3d 74 3f 45 3a 74 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 62 28 65 29 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 62 28 65 29 7b 76 61 72 20 74 3d 79 28 29 3b 64 65 6c 65 74 65 20 74 5b 65 5d 2c 30 3d 3d 4f 62 6a 65 63 74 2e 6b 65 79 73 28 74 29 2e 6c 65 6e 67 74 68 26 26 64 65 6c 65 74 65 20 6c 28 29 5b 73 5d 7d 66 75 6e 63 74 69 6f 6e 20 52 28 65 29 7b 76 61 72 20 74 3d 79 28 29 2c 6e 3d 4f 62 6a 65 63 74 2e 6b 65 79 73 28 65 29 2c 72 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 5f 28 29 7b 6e Data Ascii: nction(t){n[t]=e[t]})),function(){Object.keys(e).forEach((function(t){b(e)}))}):(n[e]=void 0===t?E:t,function(){b(e)})}function b(e){var t=y();delete t[e],0==Object.keys(t).length&&delete l()[s]}function R(e){var t=y(),n=Object.keys(e),r={};function _(){n
2024-12-03 17:10:42 UTC	1418	IN	Data Raw: 22 2c 62 29 2c 6d 28 22 5f 5f 77 69 74 68 5f 5f 22 2c 52 29 2c 6d 28 22 5f 5f 52 65 77 69 72 65 41 50 49 5f 5f 22 2c 68 29 29 7d 29 2e 63 61 6c 6c 28 74 68 69 73 2c 6e 28 33 29 29 7d 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 72 3d 6e 28 32 29 2c 5f 3d 6e 28 31 29 2c 6f 3d 6e 28 30 29 3b 66 75 6e 63 74 69 6f 6e 20 69 28 65 29 7b 72 65 74 75 72 6e 20 69 3d 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 26 26 22 73 79 6d 62 6f 6c 22 3d 3d 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 3f 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 74 79 70 65 6f 66 20 65 7d 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 Data Ascii: ",b),m("__with__",R),m("__RewireAPI__",h))}).call(this,n(3))},function(e,t,n){"use strict";(function(e){var r=n(2),_=n(1),o=n(0);function i(e){return i="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){re
2024-12-03 17:10:42 UTC	1730	IN	Data Raw: 6c 20 4d 54 22 2c 22 73 61 6e 73 22 5d 2c 5b 22 41 72 69 61 6c 20 4e 61 72 72 6f 77 22 2c 22 73 61 6e 73 22 5d 2c 5b 22 41 72 69 61 6c 20 52 6f 75 6e 64 65 64 20 4d 54 20 42 6f 6c 64 22 2c 22 73 61 6e 73 22 5d 2c 5b 22 41 72 69 61 6c 20 55 6e 69 63 6f 64 65 20 4d 53 22 2c 22 73 61 6e 73 22 5d 2c 5b 22 41 72 69 61 6c 22 2c 22 73 61 6e 73 22 5d 2c 5b 22 42 69 74 73 74 72 65 61 6d 20 56 65 72 61 20 53 61 6e 73 20 4d 6f 6e 6f 22 2c 22 6d 6f 6e 6f 22 5d 2c 5b 22 42 6f 6f 6b 20 41 6e 74 69 71 75 61 22 2c 22 73 65 72 69 66 22 5d 2c 5b 22 42 6f 6f 6b 6d 61 6e 20 4f 6c 64 20 53 74 79 6c 65 22 2c 22 73 65 72 69 66 22 5d 2c 5b 22 43 61 6c 69 62 72 69 22 2c 22 73 61 6e 73 22 5d 2c 5b 22 43 61 6d 62 72 69 61 22 2c 22 73 65 72 69 66 22 5d 2c 5b 22 43 65 6e 74 75 72 79 Data Ascii: l MT","sans"],["Arial Narrow","sans"],["Arial Rounded MT Bold","sans"],["Arial Unicode MS","sans"],["Arial","sans"],["Bitstream Vera Sans Mono","mono"],["Book Antiqua","serif"],["Bookman Old Style","serif"],["Calibri","sans"],["Cambria","serif"],["Century
2024-12-03 17:10:42 UTC	15678	IN	Data Raw: 22 29 28 29 2d 6e 7d 29 3b 76 61 72 20 6f 3d 7b 7d 3b 4f 28 22 62 61 73 65 46 6f 6e 74 73 22 29 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 72 3d 4f 28 22 73 61 66 65 4d 65 61 73 75 72 65 54 65 78 74 22 29 28 5b 74 2c 22 6d 6f 6e 6f 73 70 61 63 65 22 5d 29 3b 69 66 28 72 3d 3d 3d 4f 28 22 55 4e 41 56 41 49 4c 41 42 4c 45 5f 57 49 44 54 48 22 29 29 72 65 74 75 72 6e 20 65 28 7b 61 73 79 6e 63 3a 21 30 2c 76 61 6c 75 65 3a 22 75 6e 61 76 61 69 6c 61 62 6c 65 22 2c 63 61 6c 63 75 6c 61 74 69 6f 6e 54 69 6d 65 4d 73 3a 4f 28 22 6e 6f 77 22 29 28 29 2d 6e 7d 29 3b 6f 5b 74 5d 3d 72 7d 29 29 3b 76 61 72 20 69 3d 5b 5d 2c 75 3d 5b 5d 2c 61 3d 4f 28 22 6e 6f 77 22 29 28 29 2d 6e 2c 66 3d 30 3b 21 66 75 6e 63 74 69 6f 6e 20 74 28 Data Ascii: ")()-n});var o={};O("baseFonts").forEach((function(t){var r=O("safeMeasureText")([t,"monospace"]);if(r===O("UNAVAILABLE_WIDTH"))return e({async:!0,value:"unavailable",calculationTimeMs:O("now")()-n});o[t]=r}));var i=[],u=[],a=O("now")()-n,f=0;!function t(
2024-12-03 17:10:42 UTC	16384	IN	Data Raw: 7b 76 61 72 20 65 3d 75 28 29 3b 72 65 74 75 72 6e 20 65 2e 5f 5f 24 24 47 4c 4f 42 41 4c 5f 52 45 57 49 52 45 5f 52 45 47 49 53 54 52 59 5f 5f 7c 7c 28 65 2e 5f 5f 24 24 47 4c 4f 42 41 4c 5f 52 45 57 49 52 45 5f 52 45 47 49 53 54 52 59 5f 5f 3d 4f 62 6a 65 63 74 2e 63 72 65 61 74 65 28 6e 75 6c 6c 29 29 2c 65 2e 5f 5f 24 24 47 4c 4f 42 41 4c 5f 52 45 57 49 52 45 5f 52 45 47 49 53 54 52 59 5f 5f 7d 66 75 6e 63 74 69 6f 6e 20 79 28 29 7b 76 61 72 20 65 3d 73 28 29 2c 74 3d 6c 28 29 2c 6e 3d 74 5b 65 5d 3b 72 65 74 75 72 6e 20 6e 7c 7c 28 74 5b 65 5d 3d 4f 62 6a 65 63 74 2e 63 72 65 61 74 65 28 6e 75 6c 6c 29 2c 6e 3d 74 5b 65 5d 29 2c 6e 7d 28 61 3d 75 28 29 29 2e 5f 5f 72 65 77 69 72 65 5f 72 65 73 65 74 5f 61 6c 6c 5f 5f 7c 7c 28 61 2e 5f 5f 72 65 77 69 Data Ascii: {var e=u();return e.__$$GLOBAL_REWIRE_REGISTRY__\|\|(e.__$$GLOBAL_REWIRE_REGISTRY__=Object.create(null)),e.__$$GLOBAL_REWIRE_REGISTRY__}function y(){var e=s(),t=l(),n=t[e];return n\|\|(t[e]=Object.create(null),n=t[e]),n}(a=u()).__rewire_reset_all__\|\|(a.__rewi
2024-12-03 17:10:42 UTC	3469	IN	Data Raw: 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 2e 63 6c 65 61 72 49 6d 6d 65 64 69 61 74 65 7c 7c 76 6f 69 64 20 30 21 3d 3d 65 26 26 65 2e 63 6c 65 61 72 49 6d 6d 65 64 69 61 74 65 7c 7c 74 68 69 73 26 26 74 68 69 73 2e 63 6c 65 61 72 49 6d 6d 65 64 69 61 74 65 7d 29 2e 63 61 6c 6c 28 74 68 69 73 2c 6e 28 33 29 29 7d 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 28 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 21 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 69 66 28 21 65 2e 73 65 74 49 6d 6d 65 64 69 61 74 65 29 7b 76 61 72 20 72 2c 5f 2c 6f 2c 69 2c 63 2c 75 3d 31 2c 61 3d 7b 7d 2c 66 3d 21 31 2c 73 3d 65 2e 64 6f 63 75 6d 65 6e 74 2c 6c 3d 4f 62 6a 65 63 74 2e 67 65 74 50 Data Ascii: "undefined"!=typeof self&&self.clearImmediate\|\|void 0!==e&&e.clearImmediate\|\|this&&this.clearImmediate}).call(this,n(3))},function(e,t,n){(function(e,t){!function(e,n){"use strict";if(!e.setImmediate){var r,_,o,i,c,u=1,a={},f=!1,s=e.document,l=Object.getP

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:43 UTC	353	OUT	GET /out-4.5.43.js HTTP/1.1 Host: m.stripe.network Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:44 UTC	544	IN	HTTP/1.1 200 OK Connection: close Content-Length: 88751 Cache-Control: max-age=300, public Content-Type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff server: Fastly Accept-Ranges: bytes Age: 0 Date: Tue, 03 Dec 2024 17:10:44 GMT Via: 1.1 varnish X-Request-ID: 63e898ff-cfa8-4370-9d5f-c075520c6b36 X-Served-By: cache-ewr-kewr1740052-EWR X-Cache: MISS X-Cache-Hits: 0 X-Timer: S1733245844.205058,VS0,VE169 Vary: Accept-Encoding, Origin
2024-12-03 17:10:44 UTC	1378	IN	Data Raw: 76 61 72 20 53 74 72 69 70 65 4d 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6e 28 72 29 7b 69 66 28 74 5b 72 5d 29 72 65 74 75 72 6e 20 74 5b 72 5d 2e 65 78 70 6f 72 74 73 3b 76 61 72 20 5f 3d 74 5b 72 5d 3d 7b 69 3a 72 2c 6c 3a 21 31 2c 65 78 70 6f 72 74 73 3a 7b 7d 7d 3b 72 65 74 75 72 6e 20 65 5b 72 5d 2e 63 61 6c 6c 28 5f 2e 65 78 70 6f 72 74 73 2c 5f 2c 5f 2e 65 78 70 6f 72 74 73 2c 6e 29 2c 5f 2e 6c 3d 21 30 2c 5f 2e 65 78 70 6f 72 74 73 7d 72 65 74 75 72 6e 20 6e 2e 6d 3d 65 2c 6e 2e 63 3d 74 2c 6e 2e 64 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 72 29 7b 6e 2e 6f 28 65 2c 74 29 7c 7c 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 65 2c 74 2c 7b 65 6e 75 6d 65 72 61 62 6c 65 3a 21 Data Ascii: var StripeM=function(e){var t={};function n(r){if(t[r])return t[r].exports;var _=t[r]={i:r,l:!1,exports:{}};return e[r].call(_.exports,_,_.exports,n),_.l=!0,_.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!
2024-12-03 17:10:44 UTC	1378	IN	Data Raw: 6c 26 26 65 21 3d 3d 53 79 6d 62 6f 6c 2e 70 72 6f 74 6f 74 79 70 65 3f 22 73 79 6d 62 6f 6c 22 3a 74 79 70 65 6f 66 20 65 7d 2c 6f 28 65 29 7d 76 61 72 20 69 3d 6d 28 22 77 69 6e 22 29 2e 50 72 6f 6d 69 73 65 7c 7c 6d 28 22 50 50 72 6f 6d 69 73 65 22 29 3b 66 75 6e 63 74 69 6f 6e 20 63 28 29 7b 76 61 72 20 65 3d 6d 28 22 77 69 6e 22 29 2e 70 65 72 66 6f 72 6d 61 6e 63 65 3b 72 65 74 75 72 6e 20 65 26 26 65 2e 6e 6f 77 3f 65 2e 6e 6f 77 28 29 3a 44 61 74 65 2e 6e 6f 77 28 29 7d 66 75 6e 63 74 69 6f 6e 20 75 28 65 29 7b 76 61 72 20 74 3d 6d 28 22 6e 6f 77 22 29 28 29 3b 72 65 74 75 72 6e 7b 72 65 73 75 6c 74 3a 65 28 29 2c 64 75 72 61 74 69 6f 6e 3a 6d 28 22 6e 6f 77 22 29 28 29 2d 74 7d 7d 66 75 6e 63 74 69 6f 6e 20 61 28 29 7b 76 61 72 20 65 3d 61 72 67 Data Ascii: l&&e!==Symbol.prototype?"symbol":typeof e},o(e)}var i=m("win").Promise\|\|m("PPromise");function c(){var e=m("win").performance;return e&&e.now?e.now():Date.now()}function u(e){var t=m("now")();return{result:e(),duration:m("now")()-t}}function a(){var e=arg
2024-12-03 17:10:44 UTC	1378	IN	Data Raw: 74 2e 63 72 65 61 74 65 28 6e 75 6c 6c 29 2c 6e 3d 74 5b 65 5d 29 2c 6e 7d 28 45 3d 79 28 29 29 2e 5f 5f 72 65 77 69 72 65 5f 72 65 73 65 74 5f 61 6c 6c 5f 5f 7c 7c 28 45 2e 5f 5f 72 65 77 69 72 65 5f 72 65 73 65 74 5f 61 6c 6c 5f 5f 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 45 2e 5f 5f 24 24 47 4c 4f 42 41 4c 5f 52 45 57 49 52 45 5f 52 45 47 49 53 54 52 59 5f 5f 3d 4f 62 6a 65 63 74 2e 63 72 65 61 74 65 28 6e 75 6c 6c 29 7d 29 3b 76 61 72 20 52 3d 22 5f 5f 49 4e 54 45 4e 54 49 4f 4e 41 4c 5f 55 4e 44 45 46 49 4e 45 44 5f 5f 22 2c 70 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6d 28 65 29 7b 76 61 72 20 74 3d 62 28 29 3b 69 66 28 76 6f 69 64 20 30 3d 3d 3d 74 5b 65 5d 29 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 29 7b 73 77 69 74 63 68 28 65 29 7b 63 61 73 Data Ascii: t.create(null),n=t[e]),n}(E=y()).__rewire_reset_all__\|\|(E.__rewire_reset_all__=function(){E.__$$GLOBAL_REWIRE_REGISTRY__=Object.create(null)});var R="__INTENTIONAL_UNDEFINED__",p={};function m(e){var t=b();if(void 0===t[e])return function(e){switch(e){cas
2024-12-03 17:10:44 UTC	1378	IN	Data Raw: 72 3d 3d 3d 53 79 6d 62 6f 6c 26 26 65 21 3d 3d 53 79 6d 62 6f 6c 2e 70 72 6f 74 6f 74 79 70 65 3f 22 73 79 6d 62 6f 6c 22 3a 74 79 70 65 6f 66 20 65 7d 2c 72 28 65 29 7d 6e 2e 64 28 74 2c 22 66 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 5f 7d 29 29 2c 6e 2e 64 28 74 2c 22 63 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 6f 7d 29 29 2c 6e 2e 64 28 74 2c 22 65 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 69 7d 29 29 2c 6e 2e 64 28 74 2c 22 61 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 63 7d 29 29 2c 6e 2e 64 28 74 2c 22 62 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 75 7d 29 29 2c 6e 2e 64 28 74 2c 22 64 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e Data Ascii: r===Symbol&&e!==Symbol.prototype?"symbol":typeof e},r(e)}n.d(t,"f",(function(){return _})),n.d(t,"c",(function(){return o})),n.d(t,"e",(function(){return i})),n.d(t,"a",(function(){return c})),n.d(t,"b",(function(){return u})),n.d(t,"d",(function(){return
2024-12-03 17:10:44 UTC	1378	IN	Data Raw: 6a 65 63 74 22 3d 3d 3d 72 28 65 29 3f 28 4f 62 6a 65 63 74 2e 6b 65 79 73 28 65 29 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 6e 5b 74 5d 3d 65 5b 74 5d 7d 29 29 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 4f 62 6a 65 63 74 2e 6b 65 79 73 28 65 29 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 4f 28 65 29 7d 29 29 7d 29 3a 28 6e 5b 65 5d 3d 76 6f 69 64 20 30 3d 3d 3d 74 3f 64 3a 74 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 4f 28 65 29 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 4f 28 65 29 7b 76 61 72 20 74 3d 76 28 29 3b 64 65 6c 65 74 65 20 74 5b 65 5d 2c 30 3d 3d 4f 62 6a 65 63 74 2e 6b 65 79 73 28 74 29 2e 6c 65 6e 67 74 68 26 26 64 65 6c 65 74 65 20 68 28 29 5b 45 5d 7d 66 75 6e 63 74 69 6f 6e 20 4c 28 65 29 7b 76 61 72 20 74 3d Data Ascii: ject"===r(e)?(Object.keys(e).forEach((function(t){n[t]=e[t]})),function(){Object.keys(e).forEach((function(t){O(e)}))}):(n[e]=void 0===t?d:t,function(){O(e)})}function O(e){var t=v();delete t[e],0==Object.keys(t).length&&delete h()[E]}function L(e){var t=
2024-12-03 17:10:44 UTC	1378	IN	Data Raw: 61 6c 75 65 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 66 28 65 29 7b 76 61 72 20 74 3d 68 28 22 74 69 6d 65 72 22 29 28 74 68 69 73 2e 65 78 74 72 61 63 74 6f 72 29 2c 6e 3d 74 2e 72 65 73 75 6c 74 2c 72 3d 74 2e 64 75 72 61 74 69 6f 6e 2c 6f 3d 68 28 22 6e 6f 77 22 29 28 29 3b 72 65 74 75 72 6e 20 6e 2e 74 68 65 6e 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 68 28 22 6e 6f 77 22 29 28 29 2c 6e 3d 65 2e 61 73 79 6e 63 3f 74 2d 6f 3a 30 2c 69 3d 2b 28 72 2b 6e 29 2e 74 6f 50 72 65 63 69 73 69 6f 6e 28 35 29 3b 72 65 74 75 72 6e 22 6f 62 6a 65 63 74 22 21 3d 3d 5f 28 65 29 3f 7b 76 61 6c 75 65 3a 65 2c 69 6e 74 65 72 6e 61 6c 56 61 6c 75 65 3a 65 2c 63 61 6c 63 75 6c 61 74 69 6f 6e 54 69 6d 65 4d 73 3a 69 7d 3a 7b 76 61 6c 75 65 3a 65 2e 76 Data Ascii: alue:function(e){if(e){var t=h("timer")(this.extractor),n=t.result,r=t.duration,o=h("now")();return n.then((function(e){var t=h("now")(),n=e.async?t-o:0,i=+(r+n).toPrecision(5);return"object"!==_(e)?{value:e,internalValue:e,calculationTimeMs:i}:{value:e.v
2024-12-03 17:10:44 UTC	1378	IN	Data Raw: 72 65 74 75 72 6e 20 6e 3d 3d 3d 79 3f 76 6f 69 64 20 30 3a 6e 7d 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 74 29 7b 76 61 72 20 6e 3d 6c 28 29 3b 72 65 74 75 72 6e 22 6f 62 6a 65 63 74 22 3d 3d 3d 5f 28 65 29 3f 28 4f 62 6a 65 63 74 2e 6b 65 79 73 28 65 29 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 6e 5b 74 5d 3d 65 5b 74 5d 7d 29 29 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 4f 62 6a 65 63 74 2e 6b 65 79 73 28 65 29 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 64 28 65 29 7d 29 29 7d 29 3a 28 6e 5b 65 5d 3d 76 6f 69 64 20 30 3d 3d 3d 74 3f 79 3a 74 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 64 28 65 29 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 64 28 65 29 7b 76 61 72 20 74 3d 6c 28 29 3b 64 65 6c 65 74 65 20 74 5b 65 5d 2c 30 3d 3d Data Ascii: return n===y?void 0:n}function v(e,t){var n=l();return"object"===_(e)?(Object.keys(e).forEach((function(t){n[t]=e[t]})),function(){Object.keys(e).forEach((function(t){d(e)}))}):(n[e]=void 0===t?y:t,function(){d(e)})}function d(e){var t=l();delete t[e],0==
2024-12-03 17:10:44 UTC	1378	IN	Data Raw: 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 6d 7d 29 29 3b 76 61 72 20 72 3d 6e 28 39 29 3b 66 75 6e 63 74 69 6f 6e 20 5f 28 65 29 7b 72 65 74 75 72 6e 20 5f 3d 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 26 26 22 73 79 6d 62 6f 6c 22 3d 3d 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 3f 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 74 79 70 65 6f 66 20 65 7d 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 26 26 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 26 26 65 2e 63 6f 6e 73 74 72 75 63 74 6f 72 3d 3d 3d 53 79 6d 62 6f 6c 26 26 65 21 3d 3d 53 79 6d 62 6f 6c 2e 70 72 6f 74 6f 74 79 70 65 3f 22 73 79 6d 62 6f 6c 22 3a 74 79 70 65 6f Data Ascii: (function(){return m}));var r=n(9);function _(e){return _="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"==typeof Symbol&&e.constructor===Symbol&&e!==Symbol.prototype?"symbol":typeo
2024-12-03 17:10:44 UTC	1378	IN	Data Raw: 68 61 73 68 65 64 43 6f 75 6e 74 3d 30 2c 74 68 69 73 2e 66 75 6c 6c 48 61 73 68 4c 69 6d 69 74 3d 6e 2c 74 68 69 73 2e 74 6f 74 61 6c 48 61 73 68 4c 69 6d 69 74 3d 72 7d 72 65 74 75 72 6e 20 63 28 65 2c 5b 7b 6b 65 79 3a 22 73 68 6f 75 6c 64 48 61 73 68 22 2c 76 61 6c 75 65 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 68 61 73 68 65 64 43 6f 75 6e 74 3c 74 68 69 73 2e 74 6f 74 61 6c 48 61 73 68 4c 69 6d 69 74 7d 7d 2c 7b 6b 65 79 3a 22 69 73 4c 61 73 74 48 61 73 68 22 2c 76 61 6c 75 65 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 68 61 73 68 65 64 43 6f 75 6e 74 3d 3d 3d 74 68 69 73 2e 74 6f 74 61 6c 48 61 73 68 4c 69 6d 69 74 2d 31 7d 7d 2c 7b 6b 65 79 3a 22 73 68 6f 75 6c 64 50 61 72 74 69 61 6c 48 Data Ascii: hashedCount=0,this.fullHashLimit=n,this.totalHashLimit=r}return c(e,[{key:"shouldHash",value:function(){return this.hashedCount<this.totalHashLimit}},{key:"isLastHash",value:function(){return this.hashedCount===this.totalHashLimit-1}},{key:"shouldPartialH
2024-12-03 17:10:44 UTC	1378	IN	Data Raw: 53 5f 4c 49 4d 49 54 22 29 2c 74 68 69 73 2e 72 65 6d 61 69 6e 69 6e 67 48 61 73 68 65 73 29 29 3b 63 61 73 65 22 71 75 65 72 79 22 3a 63 61 73 65 22 66 72 61 67 6d 65 6e 74 22 3a 72 65 74 75 72 6e 20 4d 61 74 68 2e 6d 61 78 28 31 2c 74 68 69 73 2e 72 65 6d 61 69 6e 69 6e 67 48 61 73 68 65 73 29 3b 64 65 66 61 75 6c 74 3a 72 65 74 75 72 6e 20 30 7d 7d 7d 2c 7b 6b 65 79 3a 22 73 70 6c 69 74 41 6e 64 48 61 73 68 22 2c 76 61 6c 75 65 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 69 66 28 22 61 75 74 68 6f 72 69 74 79 22 3d 3d 3d 74 26 26 65 26 26 6a 28 22 69 73 53 74 72 69 70 65 43 68 65 63 6b 6f 75 74 41 75 74 68 6f 72 69 74 79 22 29 28 65 29 29 72 65 74 75 72 6e 20 65 3b 69 66 28 21 65 29 72 65 74 75 72 6e 20 65 3b 76 61 72 20 72 3d 6e 65 77 28 6a 28 Data Ascii: S_LIMIT"),this.remainingHashes));case"query":case"fragment":return Math.max(1,this.remainingHashes);default:return 0}}},{key:"splitAndHash",value:function(e,t,n){if("authority"===t&&e&&j("isStripeCheckoutAuthority")(e))return e;if(!e)return e;var r=new(j(

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:44 UTC	753	OUT	GET /mah/o/?c3Y9bzM2NV8xX25vbSZyYW5kPU4wZHZjRVE9JnVpZD1VU0VSMjAxMTIwMjRVMzMxMTIwMTk=N0123N[EMAIL] HTTP/1.1 Host: lottones.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:45 UTC	1006	IN	HTTP/1.1 302 Found Date: Tue, 03 Dec 2024 17:10:45 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close location: https://google.com/404/ x-powered-by: PHP/7.4.16 Cache-Control: no-store Cache-Control: max-age=3600 x-frame-options: SAMEORIGIN expires: Tue, 03 Dec 2024 18:10:44 GMT x-xss-protection: 1; mode=block CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wDcGShnXC8ISlcUNkv3PXNC0wiPSG5saai03S1yUr7KbNW%2BJtZQVG8RNHHPyCthv4OyYeqH2bmVHiNy%2BL0VwR1lveAD40u0RvuweFJ4yDE33HPQ4n8asK1bGmS5OIYY%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8ec52c014c38f795-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=68036&min_rtt=1559&rtt_var=39929&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2829&recv_bytes=1331&delivery_rate=1872995&cwnd=157&unsent_bytes=0&cid=61947fce6811cffa&ts=1550&x=0"
2024-12-03 17:10:45 UTC	6	IN	Data Raw: 31 0d 0a 0a 0d 0a Data Ascii: 1
2024-12-03 17:10:45 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-12-03 17:10:47 UTC	663	OUT	GET /404/ HTTP/1.1 Host: google.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-03 17:10:48 UTC	231	IN	HTTP/1.1 404 Not Found Content-Type: text/html; charset=UTF-8 Referrer-Policy: no-referrer Content-Length: 1565 Date: Tue, 03 Dec 2024 17:10:48 GMT Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-12-03 17:10:48 UTC	1159	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 65 6e 3e 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 3e 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 76 69 65 77 70 6f 72 74 20 63 6f 6e 74 65 6e 74 3d 22 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 6d 69 6e 69 6d 75 6d 2d 73 63 61 6c 65 3d 31 2c 20 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 3e 0a 20 20 3c 74 69 74 6c 65 3e 45 72 72 6f 72 20 34 30 34 20 28 4e 6f 74 20 46 6f 75 6e 64 29 21 21 31 3c 2f 74 69 74 6c 65 3e 0a 20 20 3c 73 74 79 6c 65 3e 0a 20 20 20 20 2a 7b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 7d 68 74 6d 6c 2c 63 6f 64 65 7b 66 6f 6e 74 3a 31 35 70 78 2f 32 32 70 78 20 61 72 69 61 6c 2c 73 61 6e 73 2d 73 65 Data Ascii: <!DOCTYPE html><html lang=en> <meta charset=utf-8> <meta name=viewport content="initial-scale=1, minimum-scale=1, width=device-width"> <title>Error 404 (Not Found)!!1</title> <style> *{margin:0;padding:0}html,code{font:15px/22px arial,sans-se
2024-12-03 17:10:48 UTC	406	IN	Data Raw: 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 62 72 61 6e 64 69 6e 67 2f 67 6f 6f 67 6c 65 6c 6f 67 6f 2f 32 78 2f 67 6f 6f 67 6c 65 6c 6f 67 6f 5f 63 6f 6c 6f 72 5f 31 35 30 78 35 34 64 70 2e 70 6e 67 29 20 6e 6f 2d 72 65 70 65 61 74 3b 2d 77 65 62 6b 69 74 2d 62 61 63 6b 67 72 6f 75 6e 64 2d 73 69 7a 65 3a 31 30 30 25 20 31 30 30 25 7d 7d 23 6c 6f 67 6f 7b 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 68 65 69 67 68 74 3a 35 34 70 78 3b 77 69 64 74 68 3a 31 35 30 70 78 7d 0a 20 20 3c 2f 73 74 79 6c 65 3e 0a 20 20 3c 61 20 68 72 65 66 3d 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 3e 3c 73 70 61 6e 20 69 64 3d 6c 6f 67 6f 20 61 72 69 61 2d 6c 61 62 65 6c 3d 47 6f 6f 67 6c 65 3e 3c 2f 73 70 61 6e 3e 3c 2f 61 3e 0a 20 20 Data Ascii: .google.com/images/branding/googlelogo/2x/googlelogo_color_150x54dp.png) no-repeat;-webkit-background-size:100% 100%}}#logo{display:inline-block;height:54px;width:150px} </style> <a href=//www.google.com/><span id=logo aria-label=Google></span></a>