Edit tour

Windows Analysis Report
https://informed.deliveryqdmox.top/us/

Overview

General Information

Sample URL:	https://informed.deliveryqdmox.top/us/
Analysis ID:	1590405
Infos:

Detection

HTMLPhisher

Score:	68
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

Yara detected BlockedWebSite

AI detected suspicious URL

Detected non-DNS traffic on DNS port

Suricata IDS alerts with low severity for network traffic

Classification

Process Tree

System is w10x64

chrome.exe (PID: 3868 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 5756 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2004,i,14801328095068412797,1641811044705688329,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6648 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://informed.deliveryqdmox.top/us/" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Yara Signatures

Dropped Files

Source	Rule	Description	Author	Strings
dropped/chromecache_183	JoeSecurity_BlockedWebSite	Yara detected BlockedWebSite	Joe Security

HTML

Source	Rule	Description	Author	Strings
1.0.pages.csv	JoeSecurity_BlockedWebSite	Yara detected BlockedWebSite	Joe Security

Suricata Signatures

ET EXPLOIT_KIT Possible Nuclear EK Landing Nov 17 2015

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2025-01-14T01:16:14.730331+0100	2022112	1	Exploit Kit Activity Detected	192.168.2.4	49879	162.159.140.229	443	TCP
2025-01-14T01:16:15.139275+0100	2022112	1	Exploit Kit Activity Detected	192.168.2.4	49885	104.244.42.3	443	TCP
2025-01-14T01:16:15.385124+0100	2022112	1	Exploit Kit Activity Detected	192.168.2.4	49890	104.18.27.193	443	TCP

HTTP traffic detected: POST /report/v4?s=yPzhG5%2Fnfl3Za1uhrSg0l4vRtgVkOqR65adeGlTKbem%2Fn9QS5z4qCTZ9gearQO%2Bk3JQ8ilH4Bi5tqErqcv45GLIqTgH4pHK%2FytGkM2FFF7Bg6Hk6L253yAwrrq0Tae9Q52BFOfAxagidr0lFlg%3D%3D HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 400Content-Type: application/reports+jsonUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 14 Jan 2025 00:15:50 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Frame-Options: SAMEORIGINReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yPzhG5%2Fnfl3Za1uhrSg0l4vRtgVkOqR65adeGlTKbem%2Fn9QS5z4qCTZ9gearQO%2Bk3JQ8ilH4Bi5tqErqcv45GLIqTgH4pHK%2FytGkM2FFF7Bg6Hk6L253yAwrrq0Tae9Q52BFOfAxagidr0lFlg%3D%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 90196f14fc117c81-EWR
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 14 Jan 2025 00:16:07 GMTContent-Type: text/html; charset=UTF-8Content-Length: 8300Connection: closeaccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UAcritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UAcross-origin-embedder-policy: require-corpcross-origin-opener-policy: same-origincross-origin-resource-policy: same-originorigin-agent-cluster: ?1permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()referrer-policy: same-originx-content-options: nosniffx-frame-options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 14 Jan 2025 00:16:12 GMTContent-Type: application/json; charset=UTF-8Content-Length: 24Connection: closeAccess-Control-Allow-Origin: https://www.cloudflare.comAccess-Control-Allow-Credentials: trueAccess-Control-Allow-Headers: Content-Type,AcceptAccess-Control-Allow-Methods: GET,POST,OPTIONSX-Robots-Tag: noindexReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fMwMLSHAETOxMyVSPbsoJR2Dv7UCHx3xZD1j08OxheHL6%2Fktu0c0vGjZ8mwfnkJADskxn6twSYvIw%2F20Rmd9x14k%2B%2BPOcL7RV%2BOFJiROtJwJ81fqlUVm5dv%2BkHGxW51VJtnsVMQGtXc%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 90196f9fbd195e79-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 14 Jan 2025 00:16:14 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: /jaJcFmf/rnW/a7CmVkThA==$FGIpMvhRiSstEBhhGpx7vg==Server: cloudflareCF-RAY: 90196fac7a9c8c63-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: aca41fcb-efba-4895-af89-7709577d2914vary: Origindate: Tue, 14 Jan 2025 00:16:15 GMTx-konductor: 25.1.0-HOTFIXTIMECONSENT:bb9729eacx-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: e9662b10-1c5b-41b1-9ff4-8db79a788274vary: Origindate: Tue, 14 Jan 2025 00:16:18 GMTx-konductor: 25.1.0-HOTFIXTIMECONSENT:bb9729eacx-adobe-edge: VA6;7server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: befb7c26-c506-4bf4-9cf5-631fbd8eb6cfvary: Origindate: Tue, 14 Jan 2025 00:16:19 GMTx-konductor: 25.1.0-HOTFIXTIMECONSENT:bb9729eacx-adobe-edge: VA6;7server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: ef5aadde-54e9-4f26-bda1-e29461b26a06vary: Origindate: Tue, 14 Jan 2025 00:16:20 GMTx-konductor: 25.1.0-HOTFIXTIMECONSENT:bb9729eacx-adobe-edge: VA6;7server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close

Source: chromecache_167.2.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_232.2.dr, chromecache_234.2.dr, chromecache_236.2.dr, chromecache_167.2.dr	String found in binary or memory: https://ade.googlesyndication.com
Source: chromecache_229.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_237.2.dr	String found in binary or memory: https://alb.reddit.com/rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1736813772361&uuid=925394e2-f330-4b6
Source: chromecache_171.2.dr, chromecache_246.2.dr	String found in binary or memory: https://api.www.cloudflare.com/api/v1
Source: chromecache_196.2.dr, chromecache_129.2.dr	String found in binary or memory: https://app.qualified.com
Source: chromecache_159.2.dr, chromecache_208.2.dr	String found in binary or memory: https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.js
Source: chromecache_144.2.dr, chromecache_203.2.dr	String found in binary or memory: https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_Acti
Source: chromecache_169.2.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/8472fc7436be/RC1fcad5185a1b4a039b5df05c7d2b704
Source: chromecache_201.2.dr, chromecache_226.2.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/8472fc7436be/RC392ad6d4bbf94c7283b4eda6cbf689a
Source: chromecache_180.2.dr, chromecache_241.2.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/launch-efab6d095ce0.js
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://blog.cloudflare.com/cloudflare-waap-named-leader-gartner-magic-quadrant-2022/
Source: chromecache_174.2.dr, chromecache_232.2.dr, chromecache_234.2.dr, chromecache_236.2.dr, chromecache_167.2.dr, chromecache_229.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/17RhepZZwxiD452Hs0gKFk/5324e2c81dcdef79c74efea2c60
Source: chromecache_197.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/2fMg89go9MegG1EDg39mNy/5a42817cd388ae352f77f56e53b
Source: chromecache_126.2.dr, chromecache_123.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/42XkFj9Uywkm8Jahf62RtP/0563d91cc1fa54da2bf2c50bad8
Source: chromecache_126.2.dr, chromecache_123.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/4sfL2iS6H10uq2waT6ehym/ad18b77fa469ce07f23d22e19ab
Source: chromecache_197.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/6bNeiYhSx0RGvbzxS5Fi8c/3ff83bcc36e86e85170201f8264
Source: chromecache_124.2.dr, chromecache_242.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/6i8d186tH2iueYvgwVRaJf/ab27fd31033bdd31aea69065480
Source: chromecache_124.2.dr, chromecache_242.2.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/mJZqOomHta2MLLB73P8Hs/9378861761815b3adf7bcb7734d6
Source: chromecache_225.2.dr, chromecache_128.2.dr, chromecache_187.2.dr, chromecache_186.2.dr	String found in binary or memory: https://developers.marketo.com/MunchkinLicense.pdf
Source: chromecache_157.2.dr	String found in binary or memory: https://dsum-sec.casalemedia.com/rum?cm_dsp_id=18&expiry=1752452174&external_user_id=82aa47a
Source: chromecache_197.2.dr	String found in binary or memory: https://github.com/jonsuh/hamburgers
Source: chromecache_239.2.dr, chromecache_133.2.dr	String found in binary or memory: https://github.com/js-cookie/js-cookie
Source: chromecache_229.2.dr	String found in binary or memory: https://google.com
Source: chromecache_229.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_197.2.dr	String found in binary or memory: https://jonsuh.com/hamburgers
Source: chromecache_196.2.dr, chromecache_129.2.dr	String found in binary or memory: https://js.qualified.com
Source: chromecache_229.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_174.2.dr, chromecache_232.2.dr, chromecache_234.2.dr, chromecache_236.2.dr, chromecache_167.2.dr, chromecache_229.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_157.2.dr	String found in binary or memory: https://partners.tremorhub.com/sync?UIDM=82aa47a5-5d99-4168-ac5c-a282085962bd
Source: chromecache_157.2.dr	String found in binary or memory: https://pixel.rubiconproject.com/tap.php?nid=5578&put=82aa47a5-5d99-4168-ac5c-a282085962bd&v
Source: chromecache_237.2.dr	String found in binary or memory: https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Fac
Source: chromecache_237.2.dr, chromecache_136.2.dr	String found in binary or memory: https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif
Source: chromecache_196.2.dr, chromecache_129.2.dr	String found in binary or memory: https://schedule.qualified.com
Source: chromecache_121.2.dr, chromecache_197.2.dr	String found in binary or memory: https://schema.org/Answer
Source: chromecache_197.2.dr	String found in binary or memory: https://schema.org/FAQPage
Source: chromecache_121.2.dr, chromecache_197.2.dr	String found in binary or memory: https://schema.org/Question
Source: chromecache_237.2.dr, chromecache_136.2.dr	String found in binary or memory: https://scout-cdn.salesloft.com/sl.js
Source: chromecache_207.2.dr, chromecache_134.2.dr	String found in binary or memory: https://scout.us4.salesloft.com
Source: chromecache_237.2.dr, chromecache_136.2.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_147.2.dr, chromecache_132.2.dr	String found in binary or memory: https://staging.mrk.cfdata.org/mrk/redwood-blade-repository/
Source: chromecache_237.2.dr	String found in binary or memory: https://static.ads-twitter.com/uwt.js
Source: chromecache_174.2.dr, chromecache_229.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_237.2.dr	String found in binary or memory: https://tag.demandbase.com/1be41a80498a5b73.min.js
Source: chromecache_174.2.dr, chromecache_232.2.dr, chromecache_234.2.dr, chromecache_236.2.dr, chromecache_167.2.dr, chromecache_229.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_171.2.dr, chromecache_246.2.dr	String found in binary or memory: https://www.cloudflare.com
Source: chromecache_183.2.dr	String found in binary or memory: https://www.cloudflare.com/5xx-error-landing
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://www.cloudflare.com/application-services/solutions/
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://www.cloudflare.com/application-services/solutions/app-performance-monitoring/
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/access-management/how-to-implement-zero-trust/
Source: chromecache_183.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/access-management/phishing-attack/
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/security/glossary/what-is-zero-trust/
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://www.cloudflare.com/learning/security/what-is-data-exfiltration/
Source: chromecache_196.2.dr, chromecache_129.2.dr	String found in binary or memory: https://www.cloudflare.com/lp/multi-channel-phishing-demo?utm_medium=banner
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://www.cloudflare.com/network-services/solutions/enterprise-network-security/
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://www.cloudflare.com/network-services/solutions/network-monitoring-tools/
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://www.cloudflare.com/products/zero-trust/threat-defense/
Source: chromecache_210.2.dr, chromecache_158.2.dr	String found in binary or memory: https://www.cloudflare.com/saas/)
Source: chromecache_199.2.dr	String found in binary or memory: https://www.cloudflare.com/static/z/s.js?z=
Source: chromecache_136.2.dr	String found in binary or memory: https://www.cloudflare.com/static/z/t
Source: chromecache_185.2.dr, chromecache_121.2.dr	String found in binary or memory: https://www.cloudflare.com/zero-trust/
Source: chromecache_229.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_232.2.dr, chromecache_236.2.dr	String found in binary or memory: https://www.google.com/gmp/conversion/?
Source: chromecache_229.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_229.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_174.2.dr, chromecache_234.2.dr, chromecache_167.2.dr, chromecache_229.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_232.2.dr, chromecache_234.2.dr, chromecache_236.2.dr, chromecache_167.2.dr	String found in binary or memory: https://www.googletagmanager.com/dclk/ns/v1.js
Source: chromecache_174.2.dr, chromecache_234.2.dr, chromecache_167.2.dr, chromecache_229.2.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_174.2.dr, chromecache_229.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50175
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50179
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50195
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50132
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50137
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50141
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50151
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50157
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49940 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50137 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50132 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49962 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50051
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 49890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49970 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50202 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49935 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50077 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 50076 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49969 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 50111 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49936
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49935
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49934
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 50064 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49936 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49960 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49953 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50179 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50202
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50157 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49959 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: classification engine

Classification label: mal68.phis.win@21/205@158/44

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2004,i,14801328095068412797,1641811044705688329,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://informed.deliveryqdmox.top/us/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2004,i,14801328095068412797,1641811044705688329,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Drive-by Compromise	Windows Management Instrumentation	1 Browser Extensions	1 Process Injection	1 Process Injection	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	Rootkit	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
https://informed.deliveryqdmox.top/us/	100%	Avira URL Cloud	phishing

Source	Detection	Scanner	Label
https://scout.us4.salesloft.com	0%	Avira URL Cloud	safe
https://informed.deliveryqdmox.top/cdn-cgi/images/icon-exclamation.png?1376755637	100%	Avira URL Cloud	phishing
https://informed.deliveryqdmox.top/cdn-cgi/styles/cf.errors.css	100%	Avira URL Cloud	phishing
https://staging.mrk.cfdata.org/mrk/redwood-blade-repository/	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
prod-default.lb.logrocket.network	104.198.23.205	true	false	high
static.cloudflareinsights.com	104.16.80.73	true	false	high
s.dsp-prod.demandbase.com	34.96.71.22	true	false	high
scout.us1.salesloft.com	52.86.68.240	true	false	high
platform.twitter.map.fastly.net	146.75.120.157	true	false	high
stats.g.doubleclick.net	74.125.71.155	true	false	high
ot.www.cloudflare.com	104.16.124.96	true	false	high
tag.demandbase.com	18.245.46.25	true	false	high
t.co	162.159.140.229	true	false	high
performance.radar.cloudflare.com	104.18.30.78	true	false	high
www.google.com	142.250.186.100	true	false	high
demdex.net.ssl.sc.omtrdc.net	63.140.38.55	true	false	high
api.www.cloudflare.com	104.16.123.96	true	false	high
dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com	54.247.1.250	true	false	high
partners-1864332697.us-east-1.elb.amazonaws.com	52.70.64.64	true	false	high
cf-assets.www.cloudflare.com	104.16.123.96	true	false	high
id.rlcdn.com	35.244.174.68	true	false	high
tag-logger.demandbase.com	18.173.205.117	true	false	high
a.nel.cloudflare.com	35.190.80.1	true	false	high
s.twitter.com	104.244.42.3	true	false	high
informed.deliveryqdmox.top	172.67.220.84	true	true	unknown
js.qualified.com	104.18.16.5	true	false	high
ws6.qualified.com	104.18.17.5	true	false	high
ax-0001.ax-msedge.net	150.171.27.10	true	false	high
di.rlcdn.com	35.244.174.68	true	false	high
www.cloudflare.com	104.16.124.96	true	false	high
cdn.logr-ingest.com	104.21.48.1	true	false	high
reddit.map.fastly.net	151.101.193.140	true	false	high
dsum-sec.casalemedia.com	104.18.27.193	true	false	high
challenges.cloudflare.com	104.18.94.41	true	false	high
adobedc.net.ssl.sc.omtrdc.net	63.140.62.17	true	false	high
api.company-target.com	18.66.102.127	true	false	high
713-xsc-918.mktoresp.com	192.28.144.124	true	false	high
app.qualified.com	104.18.16.5	true	false	high
alb.reddit.com	unknown	unknown	false	high
static.ads-twitter.com	unknown	unknown	false	high
scout.salesloft.com	unknown	unknown	false	high
scout-cdn.salesloft.com	unknown	unknown	false	high
cm.everesttech.net	unknown	unknown	false	high
cdn.bizibly.com	unknown	unknown	false	high
cloudflareinc.demdex.net	unknown	unknown	false	high
adobedc.demdex.net	unknown	unknown	false	high
cdn.bizible.com	unknown	unknown	false	high
dpm.demdex.net	unknown	unknown	false	high
s.company-target.com	unknown	unknown	false	high
assets.adobedtm.com	unknown	unknown	false	high
www.linkedin.com	unknown	unknown	false	high
pixel.rubiconproject.com	unknown	unknown	false	high
px.ads.linkedin.com	unknown	unknown	false	high
munchkin.marketo.net	unknown	unknown	false	high
analytics.twitter.com	unknown	unknown	false	high
r.logr-ingest.com	unknown	unknown	false	high
snap.licdn.com	unknown	unknown	false	high
partners.tremorhub.com	unknown	unknown	false	high
edge.adobedc.net	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://www.cloudflare.com/learning/access-management/phishing-attack/	false		high
https://di.rlcdn.com/710030.gif?pdata=d=desktop,lc=US,ref=informed.deliveryqdmox.top	false		high
https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=8caa22e4-57ab-42b9-a62b-1a402b37418c&_u=KGDAAEADQAAAAC%7E&z=1911716799&slf_rd=1	false		high
https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	false		high
https://edge.adobedc.net/ee/va6/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=befb7c26-c506-4bf4-9cf5-631fbd8eb6cf	false		high
https://alb.reddit.com/rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1736813772361&uuid=925394e2-f330-4b6c-a313-da53b2c86999&integration=reddit&opt_out=0&v=rdt_65e23bc4&sh=1024&sw=1280	false		high
https://www.cloudflare.com/page-data/learning/access-management/what-is-identity-and-access-management/page-data.json	false		high
https://a.nel.cloudflare.com/report/v4?s=yPzhG5%2Fnfl3Za1uhrSg0l4vRtgVkOqR65adeGlTKbem%2Fn9QS5z4qCTZ9gearQO%2Bk3JQ8ilH4Bi5tqErqcv45GLIqTgH4pHK%2FytGkM2FFF7Bg6Hk6L253yAwrrq0Tae9Q52BFOfAxagidr0lFlg%3D%3D	false		high
https://id.rlcdn.com/464526.gif	false		high
https://www.cloudflare.com/component---src-components-page-page-template-tsx-c7ec2b92ba43b220ad2d.js	false		high
https://cloudflareinc.demdex.net/dest5.html?d_nsid=0	false		high
https://dpm.demdex.net/id?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=8AD56F28618A50850A495FB6%40AdobeOrg&d_nsid=0&ts=1736813771858	false		high
https://app.qualified.com/w/1/37pXYrro6wCZbsU7/events/trace	false		high
https://partners.tremorhub.com/sync?UIDM=82aa47a5-5d99-4168-ac5c-a282085962bd	false		high
https://ot.www.cloudflare.com/public/vendor/onetrust/scripttemplates/202407.2.0/otBannerSdk.js	false		high
https://www.cloudflare.com/page-data/index/page-data.json	false		high
https://www.cloudflare.com/static/z/i.js	false		high
https://edge.adobedc.net/ee/va6/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=ef5aadde-54e9-4f26-bda1-e29461b26a06	false		high
https://www.cloudflare.com/page-data/sq/d/3934964512.json	false		high
https://cdn.logr-ingest.com/logger-1.min.js	false		high
https://www.cloudflare.com/page-data/plans/page-data.json	false		high
https://scout.salesloft.com/i	false		high
https://challenges.cloudflare.com/turnstile/v0/b/e0c90b6a3ed1/api.js	false		high
https://informed.deliveryqdmox.top/us/	true		unknown
https://tag.demandbase.com/1be41a80498a5b73.min.js	false		high
https://r.logr-ingest.com/i?a=ykolez%2Fcloudflarecom&r=6-0194622a-f356-70d7-a349-b7ac8be687cd&t=c3188628-84f7-401e-9ae7-c6fac2d8188a&s=0&rs=0%2Ct&ct=66.99573790527471	false		high
https://edge.adobedc.net/ee/va6/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=e9662b10-1c5b-41b1-9ff4-8db79a788274	false		high
https://ws6.qualified.com/cable?wv=9&token=37pXYrro6wCZbsU7&vu=28e765da-eda1-4d3c-8e87-1098a53f2f20&wu=c6f49395-8633-449e-b35b-b6ec1bff98a7&ca=2025-01-14T00%3A16%3A14.096Z&tz=America%2FNew_York&bis=5&referrer=https%3A%2F%2Finformed.deliveryqdmox.top%2F&pv=1&fv=2025-01-14-e712afd2a7&iml=false&bl=en-US&ic=true	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6bNeiYhSx0RGvbzxS5Fi8c/3ff83bcc36e86e85170201f8264b2c1c/banner-new.png	false		high
https://www.cloudflare.com/page-data/plans/enterprise/contact/page-data.json	false		high
https://api.www.cloudflare.com/api/v1/marketo/form/2459	false		high
https://www.cloudflare.com/img/learning/security/threats/phishing-attack/diagram-phishing-attack.png	false		high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1218291462:1736810064:q9gJdgQuu0GbGZn01s1X5B0Mjs3edIZ6DyAG4wxvYR4/90196f9979054392/mLJZG6u4YFM.nn_4J7V3A_TPGTOiGQIAYxfxwh8dAuI-1736813771-1.1.1.1-wMskSjddpinE2XNyTDc_TkU4ATWk90HY9VXy2xK81wbeKRCCM7jUThPP4oOWu7ol	false		high
https://informed.deliveryqdmox.top/cdn-cgi/images/icon-exclamation.png?1376755637	false	Avira URL Cloud: phishing	unknown
https://www.cloudflare.com/a06cff934e9579536ce1c10bad21c1d6d7f63ae0-90484db4602d401d94ca.js	false		high
https://adobedc.demdex.net/ee/v1/identity/acquire?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=aca41fcb-efba-4895-af89-7709577d2914	false		high
https://static.ads-twitter.com/uwt.js	false		high
https://www.cloudflare.com/174-242772ef10d8d161ae24.js	false		high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/accds/0x4AAAAAAAnv2jFa1hO0Znbl/light/fbE/normal/auto/	false		high
https://www.cloudflare.com/app-9b4cbf0f5c3a56b8766d.js	false		high
https://www.cloudflare.com/page-data/app-data.json	false		high
https://informed.deliveryqdmox.top/cdn-cgi/styles/cf.errors.css	false	Avira URL Cloud: phishing	unknown
https://a.nel.cloudflare.com/report/v4?s=VBcGoeL1ysNQw8iuDL0VocMKmKrTHP4FXnV6Z3NNOrnuqG6kaCO4GW7pZzPYEhL4gb%2FDrctRAnFTNwCIRzdUOQ4GAqd%2FOi50DHUBJPqiTdNabDL1aFaYi8BUHujVvGIudKzGQPv6gi4%3D	false		high
https://a.nel.cloudflare.com/report/v4?s=esFV9t50T5o%2BNuRGjmS9Y%2FH6hwaIYhiIazd14ZCBrm3cmfMG4HW7v5hWdJT8nLkyQa620KwXKIFdMp0ohWhJTFR8R9FqiDOw899jQGyPjTOlirU1HCzhBk6QuWkxHwaJbFvl3w%3D%3D	false		high
https://api.company-target.com/api/v3/ip.json?referrer=https%3A%2F%2Finformed.deliveryqdmox.top%2F&page=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&page_title=What%20is%20a%20phishing%20attack%3F%20%7C%20Cloudflare	false		high
https://www.cloudflare.com/cdn-cgi/rum?	false		high
https://www.cloudflare.com/webpack-runtime-4c72ecef988f809df573.js	false		high
https://www.cloudflare.com/page-data/sq/d/3199558980.json	false		high
https://performance.radar.cloudflare.com/beacon.js	false		high
https://t.co/1/i/adsct?bci=4&dv=America%2FNew_York%26en-US%2Cen%26Google%20Inc.%26Win32%26255%261280%261024%264%2624%261280%26984%260%26na&eci=3&event=%7B%7D&event_id=59dcbff6-917c-4e22-8e67-d05e8490e95f&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=927bff26-a234-42c1-8c2c-097da8b3aefb&restricted_data_use=restrict_optimization&tw_document_href=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&tw_iframe_status=0&txn_id=nvldc&type=javascript&version=2.3.31	false		high
https://r.logr-ingest.com/i?a=ykolez%2Fcloudflarecom&r=6-0194622a-f356-70d7-a349-b7ac8be687cd&t=c3188628-84f7-401e-9ae7-c6fac2d8188a&s=0&u=c6bbb102-264b-4b83-be0b-0c517d23218b&is=1&rs=0%2Cu	false		high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=90196f9979054392&lang=auto	false		high
https://s.company-target.com/s/sync?exc=lr	false		high
https://www.cloudflare.com/page-data/learning/access-management/what-is-sase/page-data.json	false		high
https://ot.www.cloudflare.com/public/vendor/onetrust/consent/b1e05d49-f072-4bae-9116-bdb78af15448/b1e05d49-f072-4bae-9116-bdb78af15448.json	false		high
https://js.qualified.com/qualified.js?token=37pXYrro6wCZbsU7	false		high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/2fMg89go9MegG1EDg39mNy/5a42817cd388ae352f77f56e53b1ff81/card-new.png	false		high
https://ot.www.cloudflare.com/public/vendor/onetrust/scripttemplates/otSDKStub.js	false		high
https://stats.g.doubleclick.net/g/collect?t=dc&aip=1&_r=3&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=8caa22e4-57ab-42b9-a62b-1a402b37418c&_u=KGDAAEADQAAAAC%7E&z=1911716799	false		high
https://www.cloudflare.com/page-data/learning/access-management/phishing-attack/page-data.json	false		high
https://www.cloudflare.com/static/z/s.js?z=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	false		high

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://stats.g.doubleclick.net/g/collect	chromecache_174.2.dr, chromecache_229.2.dr	false		high
https://www.cloudflare.com/network-services/solutions/network-monitoring-tools/	chromecache_185.2.dr, chromecache_121.2.dr	false		high
https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif	chromecache_237.2.dr, chromecache_136.2.dr	false		high
https://www.cloudflare.com/network-services/solutions/enterprise-network-security/	chromecache_185.2.dr, chromecache_121.2.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6i8d186tH2iueYvgwVRaJf/ab27fd31033bdd31aea69065480	chromecache_124.2.dr, chromecache_242.2.dr	false		high
https://www.cloudflare.com/saas/)	chromecache_210.2.dr, chromecache_158.2.dr	false		high
https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_Acti	chromecache_144.2.dr, chromecache_203.2.dr	false		high
https://pixel.rubiconproject.com/tap.php?nid=5578&put=82aa47a5-5d99-4168-ac5c-a282085962bd&v	chromecache_157.2.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/4sfL2iS6H10uq2waT6ehym/ad18b77fa469ce07f23d22e19ab	chromecache_126.2.dr, chromecache_123.2.dr	false		high
https://www.cloudflare.com/learning/security/glossary/what-is-zero-trust/	chromecache_185.2.dr, chromecache_121.2.dr	false		high
https://www.google.com	chromecache_229.2.dr	false		high
https://www.cloudflare.com/learning/access-management/how-to-implement-zero-trust/	chromecache_185.2.dr, chromecache_121.2.dr	false		high
https://schema.org/FAQPage	chromecache_197.2.dr	false		high
https://www.cloudflare.com/learning/security/what-is-data-exfiltration/	chromecache_185.2.dr, chromecache_121.2.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/42XkFj9Uywkm8Jahf62RtP/0563d91cc1fa54da2bf2c50bad8	chromecache_126.2.dr, chromecache_123.2.dr	false		high
https://scout.us4.salesloft.com	chromecache_207.2.dr, chromecache_134.2.dr	false	Avira URL Cloud: safe	unknown
https://www.cloudflare.com/zero-trust/	chromecache_185.2.dr, chromecache_121.2.dr	false		high
https://schema.org/Answer	chromecache_121.2.dr, chromecache_197.2.dr	false		high
https://blog.cloudflare.com/cloudflare-waap-named-leader-gartner-magic-quadrant-2022/	chromecache_185.2.dr, chromecache_121.2.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6bNeiYhSx0RGvbzxS5Fi8c/3ff83bcc36e86e85170201f8264	chromecache_197.2.dr	false		high
https://www.cloudflare.com/static/z/s.js?z=	chromecache_199.2.dr	false		high
https://www.cloudflare.com	chromecache_171.2.dr, chromecache_246.2.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/17RhepZZwxiD452Hs0gKFk/5324e2c81dcdef79c74efea2c60	chromecache_185.2.dr, chromecache_121.2.dr	false		high
https://cct.google/taggy/agent.js	chromecache_174.2.dr, chromecache_232.2.dr, chromecache_234.2.dr, chromecache_236.2.dr, chromecache_167.2.dr, chromecache_229.2.dr	false		high
https://scout-cdn.salesloft.com/sl.js	chromecache_237.2.dr, chromecache_136.2.dr	false		high
https://www.cloudflare.com/5xx-error-landing	chromecache_183.2.dr	false		high
https://developers.marketo.com/MunchkinLicense.pdf	chromecache_225.2.dr, chromecache_128.2.dr, chromecache_187.2.dr, chromecache_186.2.dr	false		high
https://github.com/js-cookie/js-cookie	chromecache_239.2.dr, chromecache_133.2.dr	false		high
https://staging.mrk.cfdata.org/mrk/redwood-blade-repository/	chromecache_147.2.dr, chromecache_132.2.dr	false	Avira URL Cloud: safe	unknown
https://js.qualified.com	chromecache_196.2.dr, chromecache_129.2.dr	false		high
https://assets.adobedtm.com/f597f8065f97/065ba81630d7/launch-efab6d095ce0.js	chromecache_180.2.dr, chromecache_241.2.dr	false		high
https://www.cloudflare.com/lp/multi-channel-phishing-demo?utm_medium=banner	chromecache_196.2.dr, chromecache_129.2.dr	false		high
https://assets.adobedtm.com/f597f8065f97/065ba81630d7/8472fc7436be/RC1fcad5185a1b4a039b5df05c7d2b704	chromecache_169.2.dr	false		high
https://app.qualified.com	chromecache_196.2.dr, chromecache_129.2.dr	false		high
https://assets.adobedtm.com/f597f8065f97/065ba81630d7/8472fc7436be/RC392ad6d4bbf94c7283b4eda6cbf689a	chromecache_201.2.dr, chromecache_226.2.dr	false		high
https://www.cloudflare.com/application-services/solutions/	chromecache_185.2.dr, chromecache_121.2.dr	false		high
https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Fac	chromecache_237.2.dr	false		high
https://www.cloudflare.com/products/zero-trust/threat-defense/	chromecache_185.2.dr, chromecache_121.2.dr	false		high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
104.21.48.1	cdn.logr-ingest.com	United States	13335	CLOUDFLARENETUS	false
142.250.186.68	unknown	United States	15169	GOOGLEUS	false
192.28.144.124	713-xsc-918.mktoresp.com	United States	15224	OMNITUREUS	false
18.66.102.127	api.company-target.com	United States	3	MIT-GATEWAYSUS	false
104.16.80.73	static.cloudflareinsights.com	United States	13335	CLOUDFLARENETUS	false
172.67.220.84	informed.deliveryqdmox.top	United States	13335	CLOUDFLARENETUS	true
151.101.193.140	reddit.map.fastly.net	United States	54113	FASTLYUS	false
104.198.23.205	prod-default.lb.logrocket.network	United States	15169	GOOGLEUS	false
104.18.30.78	performance.radar.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
104.16.124.96	ot.www.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
162.159.140.229	t.co	United States	13335	CLOUDFLARENETUS	false
34.96.71.22	s.dsp-prod.demandbase.com	United States	15169	GOOGLEUS	false
34.192.10.58	unknown	United States	14618	AMAZON-AESUS	false
52.86.68.240	scout.us1.salesloft.com	United States	14618	AMAZON-AESUS	false
104.18.95.41	unknown	United States	13335	CLOUDFLARENETUS	false
104.244.42.131	unknown	United States	13414	TWITTERUS	false
63.140.62.17	adobedc.net.ssl.sc.omtrdc.net	United States	15224	OMNITUREUS	false
104.18.16.5	js.qualified.com	United States	13335	CLOUDFLARENETUS	false
34.253.40.242	unknown	United States	16509	AMAZON-02US	false
63.140.38.55	demdex.net.ssl.sc.omtrdc.net	United States	4134	CHINANET-BACKBONENo31Jin-rongStreetCN	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
146.75.120.157	platform.twitter.map.fastly.net	Sweden	30051	SCCGOVUS	false
142.250.186.100	www.google.com	United States	15169	GOOGLEUS	false
35.244.174.68	id.rlcdn.com	United States	15169	GOOGLEUS	false
104.21.91.134	unknown	United States	13335	CLOUDFLARENETUS	false
104.18.94.41	challenges.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
74.125.71.155	stats.g.doubleclick.net	United States	15169	GOOGLEUS	false
54.247.1.250	dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
216.58.206.36	unknown	United States	15169	GOOGLEUS	false
63.140.62.27	unknown	United States	15224	OMNITUREUS	false
52.70.64.64	partners-1864332697.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
54.154.60.209	unknown	United States	16509	AMAZON-02US	false
18.245.46.25	tag.demandbase.com	United States	16509	AMAZON-02US	false
18.173.205.104	unknown	United States	3	MIT-GATEWAYSUS	false
18.66.102.85	unknown	United States	3	MIT-GATEWAYSUS	false
104.18.27.193	dsum-sec.casalemedia.com	United States	13335	CLOUDFLARENETUS	false
104.18.26.193	unknown	United States	13335	CLOUDFLARENETUS	false
104.244.42.3	s.twitter.com	United States	13414	TWITTERUS	false
104.18.17.5	ws6.qualified.com	United States	13335	CLOUDFLARENETUS	false
18.173.205.117	tag-logger.demandbase.com	United States	3	MIT-GATEWAYSUS	false
104.16.123.96	api.www.cloudflare.com	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.4
192.168.2.5

General Information

Joe Sandbox version:	42.0.0 Malachite
Analysis ID:	1590405
Start date and time:	2025-01-14 01:14:48 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 44s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://informed.deliveryqdmox.top/us/
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	8
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal68.phis.win@21/205@158/44
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.186.163, 142.250.186.174, 64.233.184.84, 142.250.184.206, 216.58.206.78, 2.16.168.102, 2.23.77.188, 184.28.89.29, 142.250.186.40, 142.250.184.234, 142.250.185.138, 142.250.186.42, 142.250.74.202, 142.250.185.74, 142.250.186.138, 142.250.185.170, 172.217.16.202, 172.217.18.10, 142.250.184.202, 172.217.16.138, 216.58.212.170, 216.58.206.74, 142.250.185.106, 142.250.186.74, 172.217.23.106, 88.221.110.145, 88.221.110.136, 104.16.71.105, 104.16.72.105, 104.102.43.106, 2.16.168.121, 2.16.168.109, 13.107.42.14, 172.217.16.200, 142.250.181.232, 34.255.155.228, 54.75.138.108, 54.75.135.140, 142.250.185.130, 2.18.64.220, 2.18.64.212, 172.64.146.215, 104.18.41.41, 69.173.144.165, 69.173.144.138, 69.173.144.139, 199.232.210.172, 142.250.181.238, 172.217.16.206, 172.217.18.14, 142.250.186.142, 142.250.184.238, 142.250.185.206, 216.58.206.67, 142.250.186.98, 216.58.206.66, 184.28.90.27, 20.12.23.50, 150.171.27.10, 13.107.246.45
Excluded domains from analysis (whitelisted): pixel.rubiconproject.net.akadns.net, slscr.update.microsoft.com, cn-assets.adobedtm.com.edgekey.net, scout-cdn.salesloft.com.cdn.cloudflare.net, clientservices.googleapis.com, e10776.b.akamaiedge.net, wildcard.marketo.net.edgekey.net, l-0005.l-msedge.net, clients2.google.com, ade.googlesyndication.com, ocsp.digicert.com, redirector.gvt1.com, cdn.bizible.com.edgesuite.net, www.googletagmanager.com, bat.bing.com, update.googleapis.com, a798.dscd.akamai.net, www-linkedin-com.l-0005.l-msedge.net, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, otelrules.azureedge.net, cm.everesttech.net.akadns.net, ctldl.windowsupdate.com, pagead2.googlesyndication.com, od.linkedin.edgesuite.net, fe3cr.delivery.mp.microsoft.com, www.linkedin.com.cdn.cloudflare.net, edgedl.me.gvt1.com, e7808.dscg.akamaiedge.net, clients.l.google.com, a1916.dscg2.akamai.net
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing network information.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: https://informed.deliveryqdmox.top/us/

Input	Output
URL: https://informed.deliveryqdmox.top Model: Joe Sandbox AI	{ "typosquatting": true, "unusual_query_string": false, "suspicious_tld": true, "ip_in_url": false, "long_subdomain": false, "malicious_keywords": false, "encoded_characters": false, "redirection": false, "contains_email_address": false, "known_domain": false, "brand_spoofing_attempt": true, "third_party_hosting": true }
URL: https://informed.deliveryqdmox.top
URL: https://informed.deliveryqdmox.top/us/... Model: Joe Sandbox AI	{ "risk_score": 1, "reasoning": "This script checks if cookies are enabled in the user's browser and displays a cookie alert if they are not. This is a common practice to inform users about cookie usage and does not demonstrate any high-risk behaviors." }
if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) }
URL: https://informed.deliveryqdmox.top/us/ Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Suspected Phishing", "prominent_button_name": "Learn More", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": true, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": true }

URL: https://www.cloudflare.com/learning/access-management/phishing-attack/ Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://informed.deliveryqdmox.top/us/ Model: Joe Sandbox AI	{ "brands": "unknown" }
	{ "brands": "unknown" }
URL: https://www.cloudflare.com/learning/access-management/phishing-attack/ Model: Joe Sandbox AI	{ "brands": [ "Cloudflare" ] }
	{ "brands": [ "Cloudflare" ] }
URL: https://www.cloudflare.com/learning/access-management/phishing-attack/ Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://www.cloudflare.com/learning/access-management/phishing-attack/ Model: Joe Sandbox AI	{ "brands": [ "Cloudflare" ] }
	{ "brands": [ "Cloudflare" ] }
URL: https://www.cloudflare.com/learning/access-management/phishing-attack/ Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://www.cloudflare.com/learning/access-management/phishing-attack/ Model: Joe Sandbox AI	{ "brands": [ "Cloudflare" ] }
	{ "brands": [ "Cloudflare" ] }

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	24
Entropy (8bit):	3.636842188131012
Encrypted:	false
SSDEEP:	3:YXULWA3+4:Yr4
MD5:	13EA2E58A8C2AC93A0E3BD16CF54B407
SHA1:	FE382AC6B27A5EC8798BDA1524EC8C9170207B4E
SHA-256:	3CF8176780FE43C4CD52C3F031CE21F05BDAC7BEC0B30DD7F4DEFB268EF13A12
SHA-512:	FDCD7BFC18CE1BEDD6234A192B5AADB46E23E68B16A05005CE21E750F46151552F00DF9712FB5B1EAEC7F9D98B17D18417F4ABDFCE8ADDE080EEAF513C14FA61
Malicious:	false
Reputation:	low
Preview:	{"response":"Forbidden"}

Source: https://informed.deliveryqdmox.top/cdn-cgi/images/icon-exclamation.png?1376755637	Avira URL Cloud: Label: phishing
Source: https://informed.deliveryqdmox.top/cdn-cgi/styles/cf.errors.css	Avira URL Cloud: Label: phishing

Source: Yara match	File source: 1.0.pages.csv, type: HTML
Source: Yara match	File source: dropped/chromecache_183, type: DROPPED

Source: URL	Joe Sandbox AI: AI detected Brand spoofing attempt in URL: https://informed.deliveryqdmox.top
Source: URL	Joe Sandbox AI: AI detected Typosquatting in URL: https://informed.deliveryqdmox.top

Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://s.company-target.com/s/sync?exc=lr
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://s.company-target.com/s/sync?exc=lr
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://s.company-target.com/s/sync?exc=lr
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://s.company-target.com/s/sync?exc=lr

Source: https://informed.deliveryqdmox.top/us/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon

Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="author".. found

Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="copyright".. found

Source: Network traffic	Suricata IDS: 2022112 - Severity 1 - ET EXPLOIT_KIT Possible Nuclear EK Landing Nov 17 2015 : 192.168.2.4:49879 -> 162.159.140.229:443
Source: Network traffic	Suricata IDS: 2022112 - Severity 1 - ET EXPLOIT_KIT Possible Nuclear EK Landing Nov 17 2015 : 192.168.2.4:49890 -> 104.18.27.193:443
Source: Network traffic	Suricata IDS: 2022112 - Severity 1 - ET EXPLOIT_KIT Possible Nuclear EK Landing Nov 17 2015 : 192.168.2.4:49885 -> 104.244.42.3:443

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: chromecache_237.2.dr	String found in binary or memory: -->`;document.body.appendChild(d);};{\n!function(e,t,n,s,u,a){e.twq\|\|(s=e.twq=function(){s.exe?s.exe.apply(s,arguments):s.queue.push(arguments);\n},s.version='1.1',s.queue=[],u=t.createElement(n),u.async=!0,u.src='https://static.ads-twitter.com/uwt.js',\na=t.getElementsByTagName(n)[0],a.parentNode.insertBefore(u,a))}(window,document,'script');\n// Insert Twitter Advertiser ID\ntwq('config','nvldc', {\n restricted_data_use: 'restrict_optimization' // or 'off'\n});\n};{const d = document.createElement('div');d.innerHTML = `<!-- Qualified -->\n\n\n<!-- End Qualified -->`;document.body.appendChild(d);};{\n(function(w,q){w['QualifiedObject']=q;w[q]=w[q]\|\|function(){\n(w[q].q=w[q].q\|\|[]).push(arguments)};})(window,'qualified')\n\n};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22async%22%3A%22%22%2C%22src%22%3A%22https%3A%2F%2Fjs.qualified.com%2Fqualified.js%3Ftoken%3D37pXYrro6wCZbsU7%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-a13cee6c-abb3-48f8-81e6-c10617a5591a%5C%22))%7D%22%2C%22order-id%22%3A%22a13cee6c-abb3-48f8-81e6-c10617a5591a%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{\n(function() {\n var didInit = false;\n function initMunchkin() {\n if(didInit === false) {\n didInit = true;\n Munchkin.init('713-XSC-918');\n }\n }\n var s = document.createElement('script');\n s.type = 'text/javascript';\n s.async = true;\n s.src = '//munchkin.marketo.net/munchkin-beta.js';\n s.onreadystatechange = function() {\n if (this.readyState == 'complete' \|\| this.readyState == 'loaded') {\n initMunchkin();\n }\n };\n s.onload = initMunchkin;\n document.getElementsByTagName('head')[0].appendChild(s);\n})();\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22type%22%3A%22text%2Fjavascript%22%2C%22src%22%3A%22https%3A%2F%2Fcdn.bizible.com%2Fscripts%2Fbizible.js%22%2C%22async%22%3A%22%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-81fffb98-2960-467f-bb77-9d4074bcf06e%5C%22))%7D%22%2C%22order-id%22%3A%2281fffb98-2960-467f-bb77-9d4074bcf06e%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{\nwindow.dataLayer = window.dataLayer \|\| [];\nwindow.dataLayer.push({'zarazGaClientId': ''});\n};{\n(function(d,b,a,s,e){ var t = b.createElement(a), \n fs = b.getElementsByTagName(a)[0]; t.async=1; t.id=e; t.src=s; \n fs.parentNode.insertBefore(t, fs); })\n(window,document,'script','https://tag.demandbase.com/1be41a80498a5b73.min.js','demandbase_js_lib'); \n}})(window,document)"],"f":[["https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%
Source: chromecache_237.2.dr	String found in binary or memory: -->`;document.body.appendChild(d);};{\n!function(e,t,n,s,u,a){e.twq\|\|(s=e.twq=function(){s.exe?s.exe.apply(s,arguments):s.queue.push(arguments);\n},s.version='1.1',s.queue=[],u=t.createElement(n),u.async=!0,u.src='https://static.ads-twitter.com/uwt.js',\na=t.getElementsByTagName(n)[0],a.parentNode.insertBefore(u,a))}(window,document,'script');\n// Insert Twitter Advertiser ID\ntwq('config','nvldc', {\n restricted_data_use: 'restrict_optimization' // or 'off'\n});\n};{const d = document.createElement('div');d.innerHTML = `<!-- Qualified -->\n\n\n<!-- End Qualified -->`;document.body.appendChild(d);};{\n(function(w,q){w['QualifiedObject']=q;w[q]=w[q]\|\|function(){\n(w[q].q=w[q].q\|\|[]).push(arguments)};})(window,'qualified')\n\n};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22async%22%3A%22%22%2C%22src%22%3A%22https%3A%2F%2Fjs.qualified.com%2Fqualified.js%3Ftoken%3D37pXYrro6wCZbsU7%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-a13cee6c-abb3-48f8-81e6-c10617a5591a%5C%22))%7D%22%2C%22order-id%22%3A%22a13cee6c-abb3-48f8-81e6-c10617a5591a%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{\n(function() {\n var didInit = false;\n function initMunchkin() {\n if(didInit === false) {\n didInit = true;\n Munchkin.init('713-XSC-918');\n }\n }\n var s = document.createElement('script');\n s.type = 'text/javascript';\n s.async = true;\n s.src = '//munchkin.marketo.net/munchkin-beta.js';\n s.onreadystatechange = function() {\n if (this.readyState == 'complete' \|\| this.readyState == 'loaded') {\n initMunchkin();\n }\n };\n s.onload = initMunchkin;\n document.getElementsByTagName('head')[0].appendChild(s);\n})();\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22type%22%3A%22text%2Fjavascript%22%2C%22src%22%3A%22https%3A%2F%2Fcdn.bizible.com%2Fscripts%2Fbizible.js%22%2C%22async%22%3A%22%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-81fffb98-2960-467f-bb77-9d4074bcf06e%5C%22))%7D%22%2C%22order-id%22%3A%2281fffb98-2960-467f-bb77-9d4074bcf06e%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{\nwindow.dataLayer = window.dataLayer \|\| [];\nwindow.dataLayer.push({'zarazGaClientId': ''});\n};{\n(function(d,b,a,s,e){ var t = b.createElement(a), \n fs = b.getElementsByTagName(a)[0]; t.async=1; t.id=e; t.src=s; \n fs.parentNode.insertBefore(t, fs); })\n(window,document,'script','https://tag.demandbase.com/1be41a80498a5b73.min.js','demandbase_js_lib'); \n}})(window,document)"],"f":[["https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%
Source: chromecache_174.2.dr, chromecache_234.2.dr, chromecache_167.2.dr, chromecache_229.2.dr	String found in binary or memory: return b}OE.F="internal.enableAutoEventOnTimer";var Vb=wa(["data-gtm-yt-inspected-"]),QE=["www.youtube.com","www.youtube-nocookie.com"],RE,SE=!1; equals www.youtube.com (Youtube)
Source: chromecache_232.2.dr, chromecache_236.2.dr	String found in binary or memory: return b}PE.F="internal.enableAutoEventOnTimer";var Vb=wa(["data-gtm-yt-inspected-"]),RE=["www.youtube.com","www.youtube-nocookie.com"],SE,TE=!1; equals www.youtube.com (Youtube)
Source: chromecache_136.2.dr	String found in binary or memory: return fetch("https://www.cloudflare.com/static/z/t",{credentials:"include",method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify(em)})})).then((function(ev){zarazData._let=(new Date).getTime();ev.ok\|\|el();return 204!==ev.status&&ev.json()})).then((async eu=>{await zaraz._p(eu);"function"==typeof ej&&ej()})).finally((()=>ek()))}))};zaraz.set=function(ew,ex,ey){try{ex=JSON.stringify(ex)}catch(ez){return}prefixedKey="_zaraz_"+ew;sessionStorage&&sessionStorage.removeItem(prefixedKey);localStorage&&localStorage.removeItem(prefixedKey);delete zaraz.pageVariables[ew];if(void 0!==ex){ey&&"session"==ey.scope?sessionStorage&&sessionStorage.setItem(prefixedKey,ex):ey&&"page"==ey.scope?zaraz.pageVariables[ew]=ex:localStorage&&localStorage.setItem(prefixedKey,ex);zaraz.__watchVar={key:ew,value:ex}}};for(const{m:eA,a:eB}of zarazData.q.filter((({m:eC})=>["debug","set"].includes(eC))))zaraz[eA](...eB);for(const{m:eD,a:eE}of zaraz.q)zaraz[eD](...eE);delete zaraz.q;delete zarazData.q;zaraz.spaPageview=()=>{zarazData.l=d.location.href;zarazData.t=d.title;zaraz.pageVariables={};zaraz.__zarazMCListeners={};zaraz.track("__zarazSPA")};zaraz.fulfilTrigger=function(dy,dz,dA,dB){zaraz.__zarazTriggerMap\|\|(zaraz.__zarazTriggerMap={});zaraz.__zarazTriggerMap[dy]\|\|(zaraz.__zarazTriggerMap[dy]="");zaraz.__zarazTriggerMap[dy]+=""+dz+"";zaraz.track("__zarazEmpty",{...dA,__zarazClientTriggers:zaraz.__zarazTriggerMap[dy]},dB)};zaraz._c=cZ=>{const{event:c$,...da}=cZ;zaraz.track(c$,{...da,__zarazClientEvent:!0})};zaraz._syncedAttributes=["altKey","clientX","clientY","pageX","pageY","button"];zaraz.__zcl.track=!0;zaraz._p({"e":["(function(w,d){(function(){if(\"function\"!=typeof zaraz._timeout){zaraz._timeouts=[];zaraz._timeout=(dU,dV,dW,dX)=>{dW=parseInt(dW,10);dX=parseInt(dX,10);if(0==dW)return;const dY=setTimeout((function(){zaraz.fulfilTrigger(dU,dV);zaraz._timeout(dU,dV,--dW,dX)}),dX);zaraz._timeouts.push(dY)}}zaraz._timeout(\"IFsU\",\"BKpn\",\"1\",\"30000\");})();(function(){const dJ=\"25%,50%,75%,100%\",dK=[];for(let dM=0;dM<dJ.split(\",\").length;dM+=1){const dN=dJ.split(\",\")[dM].trim().match(/^([0-9]{1,999999999})(px\|%)?$/);dN&&dN[1]&&dK.push([parseInt(dN[1],10),dN[2]\|\|\"%\"])}let dL=()=>{const dO=d.scrollingElement\|\|d.documentElement,dP=dO.scrollHeight-dO.clientHeight,dQ=dO.scrollTop/dP*100;for(let dR=0;dR<dK.length;dR+=1)if(dK[dR]){const[dS,dT]=dK[dR];if(\"%\"===dT&&dQ>=dS\|\|\"px\"===dT&&dO.scrollTop>=dS){delete dK[dR];zaraz.fulfilTrigger(\"zDVF\",\"Frnx\",{scrollDepth:dS+dT})}}};w.zaraz._al(d,\"scroll\",dL);w.zaraz._al(w,\"resize\",dL);dL();})();;w.zarazData.executed.push(\"Pageview\");})(window,document)","(function(w,d){{const d = document.createElement('div');d.innerHTML = `<noscript>\n<img height=\"1\" width=\"1\" style=\"display:none;\" alt=\"\" src=\"https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif\" />\n</noscript>`;document.body.appendChild(d);};{\n_linkedin_partner_id = \"28851\";\nwindow._linkedin_data_partner_ids = window._link
Source: chromecache_234.2.dr, chromecache_167.2.dr	String found in binary or memory: var cE=function(a,b,c,d,e){var f=TB("fsl",c?"nv.mwt":"mwt",0),g;g=c?TB("fsl","nv.ids",[]):TB("fsl","ids",[]);if(!g.length)return!0;var k=YB(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);U(121);if(m==="https://www.facebook.com/tr/")return U(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!DA(k,FA(b, equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: informed.deliveryqdmox.top
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cf-assets.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: static.cloudflareinsights.com
Source: global traffic	DNS traffic detected: DNS query: performance.radar.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: ot.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdn.logr-ingest.com
Source: global traffic	DNS traffic detected: DNS query: assets.adobedtm.com
Source: global traffic	DNS traffic detected: DNS query: api.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: dpm.demdex.net
Source: global traffic	DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic	DNS traffic detected: DNS query: scout-cdn.salesloft.com
Source: global traffic	DNS traffic detected: DNS query: static.ads-twitter.com
Source: global traffic	DNS traffic detected: DNS query: js.qualified.com
Source: global traffic	DNS traffic detected: DNS query: munchkin.marketo.net
Source: global traffic	DNS traffic detected: DNS query: cdn.bizible.com
Source: global traffic	DNS traffic detected: DNS query: tag.demandbase.com
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: alb.reddit.com
Source: global traffic	DNS traffic detected: DNS query: di.rlcdn.com
Source: global traffic	DNS traffic detected: DNS query: scout.salesloft.com
Source: global traffic	DNS traffic detected: DNS query: r.logr-ingest.com
Source: global traffic	DNS traffic detected: DNS query: cloudflareinc.demdex.net
Source: global traffic	DNS traffic detected: DNS query: adobedc.demdex.net
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: cm.everesttech.net
Source: global traffic	DNS traffic detected: DNS query: api.company-target.com
Source: global traffic	DNS traffic detected: DNS query: s.company-target.com
Source: global traffic	DNS traffic detected: DNS query: id.rlcdn.com
Source: global traffic	DNS traffic detected: DNS query: cdn.bizibly.com
Source: global traffic	DNS traffic detected: DNS query: t.co
Source: global traffic	DNS traffic detected: DNS query: www.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: analytics.twitter.com
Source: global traffic	DNS traffic detected: DNS query: dsum-sec.casalemedia.com
Source: global traffic	DNS traffic detected: DNS query: partners.tremorhub.com
Source: global traffic	DNS traffic detected: DNS query: pixel.rubiconproject.com
Source: global traffic	DNS traffic detected: DNS query: ws6.qualified.com
Source: global traffic	DNS traffic detected: DNS query: tag-logger.demandbase.com
Source: global traffic	DNS traffic detected: DNS query: 713-xsc-918.mktoresp.com
Source: global traffic	DNS traffic detected: DNS query: edge.adobedc.net
Source: global traffic	DNS traffic detected: DNS query: app.qualified.com

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Jan 14, 2025 01:15:47.950299025 CET	192.168.2.4	1.1.1.1	0xd2b8	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:15:47.950472116 CET	192.168.2.4	1.1.1.1	0xafac	Standard query (0)	www.google.com	65	IN (0x0001)	false
Jan 14, 2025 01:15:49.565670013 CET	192.168.2.4	1.1.1.1	0x757	Standard query (0)	informed.deliveryqdmox.top	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:15:49.566190958 CET	192.168.2.4	1.1.1.1	0x66c4	Standard query (0)	informed.deliveryqdmox.top	65	IN (0x0001)	false
Jan 14, 2025 01:15:50.601969957 CET	192.168.2.4	1.1.1.1	0xf4e	Standard query (0)	a.nel.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:15:50.602894068 CET	192.168.2.4	1.1.1.1	0x7202	Standard query (0)	a.nel.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:15:51.459382057 CET	192.168.2.4	1.1.1.1	0x64b0	Standard query (0)	informed.deliveryqdmox.top	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:15:51.459525108 CET	192.168.2.4	1.1.1.1	0x2411	Standard query (0)	informed.deliveryqdmox.top	65	IN (0x0001)	false
Jan 14, 2025 01:16:03.982729912 CET	192.168.2.4	1.1.1.1	0xb0f9	Standard query (0)	www.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:03.982911110 CET	192.168.2.4	1.1.1.1	0xf49e	Standard query (0)	www.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:05.104332924 CET	192.168.2.4	1.1.1.1	0xbe5d	Standard query (0)	cf-assets.www.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:05.104479074 CET	192.168.2.4	1.1.1.1	0xadd8	Standard query (0)	cf-assets.www.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:05.175245047 CET	192.168.2.4	1.1.1.1	0x8781	Standard query (0)	static.cloudflareinsights.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:05.175390959 CET	192.168.2.4	1.1.1.1	0xe144	Standard query (0)	static.cloudflareinsights.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:05.373112917 CET	192.168.2.4	1.1.1.1	0x804a	Standard query (0)	www.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:05.373243093 CET	192.168.2.4	1.1.1.1	0xc438	Standard query (0)	www.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:05.767411947 CET	192.168.2.4	1.1.1.1	0xed0d	Standard query (0)	cf-assets.www.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:05.767868042 CET	192.168.2.4	1.1.1.1	0x41d1	Standard query (0)	cf-assets.www.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:05.811325073 CET	192.168.2.4	1.1.1.1	0x225b	Standard query (0)	performance.radar.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:05.811461926 CET	192.168.2.4	1.1.1.1	0x3787	Standard query (0)	performance.radar.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:05.812047005 CET	192.168.2.4	1.1.1.1	0x4180	Standard query (0)	challenges.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:05.812196970 CET	192.168.2.4	1.1.1.1	0xfb63	Standard query (0)	challenges.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:05.812572002 CET	192.168.2.4	1.1.1.1	0xbbf2	Standard query (0)	ot.www.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:05.812741995 CET	192.168.2.4	1.1.1.1	0x63ad	Standard query (0)	ot.www.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:05.905823946 CET	192.168.2.4	1.1.1.1	0x655a	Standard query (0)	static.cloudflareinsights.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:05.906157970 CET	192.168.2.4	1.1.1.1	0xbbf2	Standard query (0)	static.cloudflareinsights.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:06.620624065 CET	192.168.2.4	1.1.1.1	0x29dc	Standard query (0)	ot.www.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:06.620863914 CET	192.168.2.4	1.1.1.1	0x96d9	Standard query (0)	ot.www.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:07.320197105 CET	192.168.2.4	1.1.1.1	0x241	Standard query (0)	challenges.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:07.320528030 CET	192.168.2.4	1.1.1.1	0x8d11	Standard query (0)	challenges.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:08.199469090 CET	192.168.2.4	1.1.1.1	0x9b57	Standard query (0)	cdn.logr-ingest.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:08.199598074 CET	192.168.2.4	1.1.1.1	0x2075	Standard query (0)	cdn.logr-ingest.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:10.186386108 CET	192.168.2.4	1.1.1.1	0x5ba	Standard query (0)	cdn.logr-ingest.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:10.186609983 CET	192.168.2.4	1.1.1.1	0x81ba	Standard query (0)	cdn.logr-ingest.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:11.169055939 CET	192.168.2.4	1.1.1.1	0x117d	Standard query (0)	assets.adobedtm.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:11.169213057 CET	192.168.2.4	1.1.1.1	0x9db	Standard query (0)	assets.adobedtm.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:11.196455002 CET	192.168.2.4	1.1.1.1	0x344d	Standard query (0)	api.www.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:11.196625948 CET	192.168.2.4	1.1.1.1	0xbc63	Standard query (0)	api.www.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.184897900 CET	192.168.2.4	1.1.1.1	0x5679	Standard query (0)	api.www.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.185023069 CET	192.168.2.4	1.1.1.1	0xbaa0	Standard query (0)	api.www.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.512536049 CET	192.168.2.4	1.1.1.1	0x8273	Standard query (0)	dpm.demdex.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.512654066 CET	192.168.2.4	1.1.1.1	0x8d2e	Standard query (0)	dpm.demdex.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.560276031 CET	192.168.2.4	1.1.1.1	0x815	Standard query (0)	snap.licdn.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.560862064 CET	192.168.2.4	1.1.1.1	0x2b02	Standard query (0)	snap.licdn.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.561321020 CET	192.168.2.4	1.1.1.1	0x8eb9	Standard query (0)	scout-cdn.salesloft.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.561474085 CET	192.168.2.4	1.1.1.1	0x2947	Standard query (0)	scout-cdn.salesloft.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.561785936 CET	192.168.2.4	1.1.1.1	0x4b07	Standard query (0)	static.ads-twitter.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.561899900 CET	192.168.2.4	1.1.1.1	0xdd6e	Standard query (0)	static.ads-twitter.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.562526941 CET	192.168.2.4	1.1.1.1	0x5620	Standard query (0)	js.qualified.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.562779903 CET	192.168.2.4	1.1.1.1	0x8128	Standard query (0)	js.qualified.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.563354969 CET	192.168.2.4	1.1.1.1	0xb400	Standard query (0)	munchkin.marketo.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.563494921 CET	192.168.2.4	1.1.1.1	0xcef8	Standard query (0)	munchkin.marketo.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.563930988 CET	192.168.2.4	1.1.1.1	0x3a86	Standard query (0)	cdn.bizible.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.564214945 CET	192.168.2.4	1.1.1.1	0xa435	Standard query (0)	cdn.bizible.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.564554930 CET	192.168.2.4	1.1.1.1	0x852e	Standard query (0)	tag.demandbase.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.564743996 CET	192.168.2.4	1.1.1.1	0x3669	Standard query (0)	tag.demandbase.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.565849066 CET	192.168.2.4	1.1.1.1	0x3404	Standard query (0)	px.ads.linkedin.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.566102028 CET	192.168.2.4	1.1.1.1	0xc706	Standard query (0)	px.ads.linkedin.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.566665888 CET	192.168.2.4	1.1.1.1	0x421d	Standard query (0)	alb.reddit.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.566823006 CET	192.168.2.4	1.1.1.1	0xcea7	Standard query (0)	alb.reddit.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:12.588990927 CET	192.168.2.4	1.1.1.1	0xba7e	Standard query (0)	assets.adobedtm.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:12.589370966 CET	192.168.2.4	1.1.1.1	0x9746	Standard query (0)	assets.adobedtm.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.181659937 CET	192.168.2.4	1.1.1.1	0xda65	Standard query (0)	alb.reddit.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.181821108 CET	192.168.2.4	1.1.1.1	0x5756	Standard query (0)	alb.reddit.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.209234953 CET	192.168.2.4	1.1.1.1	0xd550	Standard query (0)	di.rlcdn.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.209491968 CET	192.168.2.4	1.1.1.1	0xdfa6	Standard query (0)	di.rlcdn.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.248321056 CET	192.168.2.4	1.1.1.1	0xefe6	Standard query (0)	scout.salesloft.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.248471975 CET	192.168.2.4	1.1.1.1	0xa99f	Standard query (0)	scout.salesloft.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.249635935 CET	192.168.2.4	1.1.1.1	0x71cb	Standard query (0)	r.logr-ingest.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.249789000 CET	192.168.2.4	1.1.1.1	0x473a	Standard query (0)	r.logr-ingest.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.271842957 CET	192.168.2.4	1.1.1.1	0x207e	Standard query (0)	scout-cdn.salesloft.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.271970034 CET	192.168.2.4	1.1.1.1	0xee28	Standard query (0)	scout-cdn.salesloft.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.404031992 CET	192.168.2.4	1.1.1.1	0x8dde	Standard query (0)	dpm.demdex.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.404176950 CET	192.168.2.4	1.1.1.1	0xb1ff	Standard query (0)	dpm.demdex.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.413433075 CET	192.168.2.4	1.1.1.1	0x7b26	Standard query (0)	cloudflareinc.demdex.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.413566113 CET	192.168.2.4	1.1.1.1	0xd52c	Standard query (0)	cloudflareinc.demdex.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.422940016 CET	192.168.2.4	1.1.1.1	0x8567	Standard query (0)	adobedc.demdex.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.423211098 CET	192.168.2.4	1.1.1.1	0xcaba	Standard query (0)	adobedc.demdex.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.427840948 CET	192.168.2.4	1.1.1.1	0xe66b	Standard query (0)	stats.g.doubleclick.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.428268909 CET	192.168.2.4	1.1.1.1	0x8fa0	Standard query (0)	stats.g.doubleclick.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.433355093 CET	192.168.2.4	1.1.1.1	0xd12	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.433731079 CET	192.168.2.4	1.1.1.1	0xb57d	Standard query (0)	www.google.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.476891994 CET	192.168.2.4	1.1.1.1	0x5200	Standard query (0)	cm.everesttech.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.477154016 CET	192.168.2.4	1.1.1.1	0x19f8	Standard query (0)	cm.everesttech.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.489003897 CET	192.168.2.4	1.1.1.1	0xa8e4	Standard query (0)	munchkin.marketo.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.489161015 CET	192.168.2.4	1.1.1.1	0xb90c	Standard query (0)	munchkin.marketo.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.640332937 CET	192.168.2.4	1.1.1.1	0x21	Standard query (0)	snap.licdn.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.640481949 CET	192.168.2.4	1.1.1.1	0xdbdb	Standard query (0)	snap.licdn.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.707559109 CET	192.168.2.4	1.1.1.1	0xa09e	Standard query (0)	api.company-target.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.707707882 CET	192.168.2.4	1.1.1.1	0x59c7	Standard query (0)	api.company-target.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.712126017 CET	192.168.2.4	1.1.1.1	0xf582	Standard query (0)	s.company-target.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.712496996 CET	192.168.2.4	1.1.1.1	0x9541	Standard query (0)	s.company-target.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.712958097 CET	192.168.2.4	1.1.1.1	0x9d9c	Standard query (0)	id.rlcdn.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.713197947 CET	192.168.2.4	1.1.1.1	0x326e	Standard query (0)	id.rlcdn.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.753866911 CET	192.168.2.4	1.1.1.1	0xba0c	Standard query (0)	tag.demandbase.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.754046917 CET	192.168.2.4	1.1.1.1	0xa26	Standard query (0)	tag.demandbase.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.755378962 CET	192.168.2.4	1.1.1.1	0x1247	Standard query (0)	cdn.bizible.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.755542040 CET	192.168.2.4	1.1.1.1	0xc70f	Standard query (0)	cdn.bizible.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.788570881 CET	192.168.2.4	1.1.1.1	0x43c4	Standard query (0)	cdn.bizibly.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.788714886 CET	192.168.2.4	1.1.1.1	0xeb2b	Standard query (0)	cdn.bizibly.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.797947884 CET	192.168.2.4	1.1.1.1	0xfbfa	Standard query (0)	static.ads-twitter.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.798114061 CET	192.168.2.4	1.1.1.1	0x84c2	Standard query (0)	static.ads-twitter.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.878566980 CET	192.168.2.4	1.1.1.1	0xc3b5	Standard query (0)	scout.salesloft.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.878931999 CET	192.168.2.4	1.1.1.1	0xa16a	Standard query (0)	scout.salesloft.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:13.888469934 CET	192.168.2.4	1.1.1.1	0x2f86	Standard query (0)	t.co	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:13.888607025 CET	192.168.2.4	1.1.1.1	0x71bc	Standard query (0)	t.co	65	IN (0x0001)	false
Jan 14, 2025 01:16:14.049468994 CET	192.168.2.4	1.1.1.1	0xaa57	Standard query (0)	www.linkedin.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:14.049650908 CET	192.168.2.4	1.1.1.1	0x2058	Standard query (0)	www.linkedin.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:14.311001062 CET	192.168.2.4	1.1.1.1	0x6991	Standard query (0)	analytics.twitter.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:14.311218023 CET	192.168.2.4	1.1.1.1	0x51ff	Standard query (0)	analytics.twitter.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:14.755393028 CET	192.168.2.4	1.1.1.1	0xbd3a	Standard query (0)	dsum-sec.casalemedia.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:14.755542994 CET	192.168.2.4	1.1.1.1	0x3fd4	Standard query (0)	dsum-sec.casalemedia.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:14.757770061 CET	192.168.2.4	1.1.1.1	0x836c	Standard query (0)	partners.tremorhub.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:14.758398056 CET	192.168.2.4	1.1.1.1	0xad2a	Standard query (0)	partners.tremorhub.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:14.772320986 CET	192.168.2.4	1.1.1.1	0xad1a	Standard query (0)	pixel.rubiconproject.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:14.772567987 CET	192.168.2.4	1.1.1.1	0xdb75	Standard query (0)	pixel.rubiconproject.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:14.780462980 CET	192.168.2.4	1.1.1.1	0xebe9	Standard query (0)	ws6.qualified.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:14.780749083 CET	192.168.2.4	1.1.1.1	0x426b	Standard query (0)	ws6.qualified.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:14.923963070 CET	192.168.2.4	1.1.1.1	0x3503	Standard query (0)	tag-logger.demandbase.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:14.924820900 CET	192.168.2.4	1.1.1.1	0xc2dd	Standard query (0)	tag-logger.demandbase.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:15.005521059 CET	192.168.2.4	1.1.1.1	0x3d73	Standard query (0)	js.qualified.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:15.005656958 CET	192.168.2.4	1.1.1.1	0x880	Standard query (0)	js.qualified.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:15.007301092 CET	192.168.2.4	1.1.1.1	0x188c	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:15.007432938 CET	192.168.2.4	1.1.1.1	0x8bbd	Standard query (0)	www.google.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:15.009128094 CET	192.168.2.4	1.1.1.1	0xb4b8	Standard query (0)	adobedc.demdex.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:15.009284973 CET	192.168.2.4	1.1.1.1	0x373d	Standard query (0)	adobedc.demdex.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:15.012391090 CET	192.168.2.4	1.1.1.1	0x28c4	Standard query (0)	t.co	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:15.012618065 CET	192.168.2.4	1.1.1.1	0x5371	Standard query (0)	t.co	65	IN (0x0001)	false
Jan 14, 2025 01:16:15.019548893 CET	192.168.2.4	1.1.1.1	0x23e0	Standard query (0)	cdn.bizibly.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:15.019686937 CET	192.168.2.4	1.1.1.1	0xadbb	Standard query (0)	cdn.bizibly.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:15.079991102 CET	192.168.2.4	1.1.1.1	0xebcc	Standard query (0)	api.company-target.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:15.080120087 CET	192.168.2.4	1.1.1.1	0x29e2	Standard query (0)	api.company-target.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:15.156661034 CET	192.168.2.4	1.1.1.1	0x236f	Standard query (0)	analytics.twitter.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:15.156816006 CET	192.168.2.4	1.1.1.1	0xaaa2	Standard query (0)	analytics.twitter.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:15.509761095 CET	192.168.2.4	1.1.1.1	0x5f74	Standard query (0)	partners.tremorhub.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:15.510205030 CET	192.168.2.4	1.1.1.1	0x6083	Standard query (0)	partners.tremorhub.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:15.549829960 CET	192.168.2.4	1.1.1.1	0xcaf7	Standard query (0)	px.ads.linkedin.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:15.549953938 CET	192.168.2.4	1.1.1.1	0xe810	Standard query (0)	px.ads.linkedin.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:15.723577976 CET	192.168.2.4	1.1.1.1	0x7a55	Standard query (0)	713-xsc-918.mktoresp.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:15.723720074 CET	192.168.2.4	1.1.1.1	0x2266	Standard query (0)	713-xsc-918.mktoresp.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:16.080873966 CET	192.168.2.4	1.1.1.1	0xfc0	Standard query (0)	dsum-sec.casalemedia.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:16.081003904 CET	192.168.2.4	1.1.1.1	0xb325	Standard query (0)	dsum-sec.casalemedia.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:16.081414938 CET	192.168.2.4	1.1.1.1	0xad37	Standard query (0)	pixel.rubiconproject.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:16.081523895 CET	192.168.2.4	1.1.1.1	0x2a30	Standard query (0)	pixel.rubiconproject.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:16.163621902 CET	192.168.2.4	1.1.1.1	0x472b	Standard query (0)	tag-logger.demandbase.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:16.163949966 CET	192.168.2.4	1.1.1.1	0x311f	Standard query (0)	tag-logger.demandbase.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:16.911380053 CET	192.168.2.4	1.1.1.1	0x5f35	Standard query (0)	edge.adobedc.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:16.911720037 CET	192.168.2.4	1.1.1.1	0xb282	Standard query (0)	edge.adobedc.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:18.232465982 CET	192.168.2.4	1.1.1.1	0xb2d3	Standard query (0)	edge.adobedc.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:18.232793093 CET	192.168.2.4	1.1.1.1	0xdc47	Standard query (0)	edge.adobedc.net	65	IN (0x0001)	false
Jan 14, 2025 01:16:44.748132944 CET	192.168.2.4	1.1.1.1	0xdea	Standard query (0)	app.qualified.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:44.748274088 CET	192.168.2.4	1.1.1.1	0x5232	Standard query (0)	app.qualified.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:45.729785919 CET	192.168.2.4	1.1.1.1	0x470b	Standard query (0)	r.logr-ingest.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:45.729969025 CET	192.168.2.4	1.1.1.1	0x28ff	Standard query (0)	r.logr-ingest.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:50.606628895 CET	192.168.2.4	1.1.1.1	0x6513	Standard query (0)	a.nel.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:50.606826067 CET	192.168.2.4	1.1.1.1	0x24af	Standard query (0)	a.nel.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 01:16:50.607249975 CET	192.168.2.4	1.1.1.1	0x36cc	Standard query (0)	a.nel.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 01:16:50.607414007 CET	192.168.2.4	1.1.1.1	0x2fc8	Standard query (0)	a.nel.cloudflare.com	65	IN (0x0001)	false

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:15:50 UTC	672	OUT	GET /us/ HTTP/1.1 Host: informed.deliveryqdmox.top Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 00:15:50 UTC	574	IN	HTTP/1.1 403 Forbidden Date: Tue, 14 Jan 2025 00:15:50 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Frame-Options: SAMEORIGIN Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yPzhG5%2Fnfl3Za1uhrSg0l4vRtgVkOqR65adeGlTKbem%2Fn9QS5z4qCTZ9gearQO%2Bk3JQ8ilH4Bi5tqErqcv45GLIqTgH4pHK%2FytGkM2FFF7Bg6Hk6L253yAwrrq0Tae9Q52BFOfAxagidr0lFlg%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f14fc117c81-EWR
2025-01-14 00:15:50 UTC	795	IN	Data Raw: 31 31 63 34 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 21 2d 2d 5b 69 66 20 6c 74 20 49 45 20 37 5d 3e 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 36 20 6f 6c 64 69 65 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 37 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 37 20 6f 6c 64 69 65 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 49 45 20 38 5d 3e 20 20 20 20 3c 68 74 6d 6c 20 63 6c 61 73 73 3d 22 6e 6f 2d 6a 73 20 69 65 38 20 6f 6c 64 69 65 22 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 20 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 21 2d 2d 5b 69 66 20 Data Ascii: 11c4<!DOCTYPE html>...[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]-->...[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]-->...[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]-->...[if
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 20 68 72 65 66 3d 22 2f 63 64 6e 2d 63 67 69 2f 73 74 79 6c 65 73 2f 63 66 2e 65 72 72 6f 72 73 2e 69 65 2e 63 73 73 22 20 2f 3e 3c 21 5b 65 6e 64 69 66 5d 2d 2d 3e 0a 3c 73 74 79 6c 65 3e 62 6f 64 79 7b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 7d 3c 2f 73 74 79 6c 65 3e 0a 0a 0a 3c 21 2d 2d 5b 69 66 20 67 74 65 20 49 45 20 31 30 5d 3e 3c 21 2d 2d 3e 0a 3c 73 63 72 69 70 74 3e 0a 20 20 69 66 20 28 21 6e 61 76 69 67 61 74 6f 72 2e 63 6f 6f 6b 69 65 45 6e 61 62 6c 65 64 29 20 7b 0a 20 20 20 20 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 27 44 4f 4d 43 6f 6e 74 65 6e 74 4c 6f 61 64 65 64 27 2c 20 66 75 6e 63 74 69 6f 6e 20 28 29 20 7b 0a 20 20 20 20 20 20 76 61 72 20 63 6f 6f 6b 69 65 45 6c 20 3d 20 64 6f 63 75 6d 65 Data Ascii: href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--><style>body{margin:0;padding:0}</style>...[if gte IE 10]>...><script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = docume
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 6c 6f 75 64 66 6c 61 72 65 2e 63 6f 6d 2f 6c 65 61 72 6e 69 6e 67 2f 61 63 63 65 73 73 2d 6d 61 6e 61 67 65 6d 65 6e 74 2f 70 68 69 73 68 69 6e 67 2d 61 74 74 61 63 6b 2f 22 20 63 6c 61 73 73 3d 22 63 66 2d 62 74 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 34 30 34 30 34 30 3b 20 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 20 62 6f 72 64 65 72 3a 20 30 3b 22 3e 4c 65 61 72 6e 20 4d 6f 72 65 3c 2f 61 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 Data Ascii: <a href="https://www.cloudflare.com/learning/access-management/phishing-attack/" class="cf-btn" style="background-color: #404040; color: #fff; border: 0;">Learn More</a>
2025-01-14 00:15:50 UTC	1023	IN	Data Raw: 2d 69 70 2d 72 65 76 65 61 6c 22 20 63 6c 61 73 73 3d 22 63 66 2d 66 6f 6f 74 65 72 2d 69 70 2d 72 65 76 65 61 6c 2d 62 74 6e 22 3e 43 6c 69 63 6b 20 74 6f 20 72 65 76 65 61 6c 3c 2f 62 75 74 74 6f 6e 3e 0a 20 20 20 20 20 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 68 69 64 64 65 6e 22 20 69 64 3d 22 63 66 2d 66 6f 6f 74 65 72 2d 69 70 22 3e 38 2e 34 36 2e 31 32 33 2e 31 38 39 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 20 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 63 66 2d 66 6f 6f 74 65 72 2d 73 65 70 61 72 61 74 6f 72 20 73 6d 3a 68 69 64 64 65 6e 22 3e 26 62 75 6c 6c 3b 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 2f 73 70 61 6e 3e 0a 20 20 20 20 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 63 66 2d 66 6f 6f 74 65 72 2d 69 74 65 6d 20 73 6d 3a 62 6c 6f 63 6b 20 73 6d 3a 6d Data Ascii: -ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">8.46.123.189</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:m
2025-01-14 00:15:50 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:15:50 UTC	582	OUT	GET /cdn-cgi/styles/cf.errors.css HTTP/1.1 Host: informed.deliveryqdmox.top Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://informed.deliveryqdmox.top/us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 00:15:50 UTC	411	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:15:50 GMT Content-Type: text/css Content-Length: 24051 Connection: close Last-Modified: Tue, 07 Jan 2025 14:31:40 GMT ETag: "677d3acc-5df3" Server: cloudflare CF-RAY: 90196f15ab18de9b-EWR X-Frame-Options: DENY X-Content-Type-Options: nosniff Expires: Tue, 14 Jan 2025 02:15:50 GMT Cache-Control: max-age=7200 Cache-Control: public Accept-Ranges: bytes
2025-01-14 00:15:50 UTC	958	IN	Data Raw: 23 63 66 2d 77 72 61 70 70 65 72 20 61 2c 23 63 66 2d 77 72 61 70 70 65 72 20 61 62 62 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 61 72 74 69 63 6c 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 61 73 69 64 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 62 2c 23 63 66 2d 77 72 61 70 70 65 72 20 62 69 67 2c 23 63 66 2d 77 72 61 70 70 65 72 20 62 6c 6f 63 6b 71 75 6f 74 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 62 6f 64 79 2c 23 63 66 2d 77 72 61 70 70 65 72 20 63 61 6e 76 61 73 2c 23 63 66 2d 77 72 61 70 70 65 72 20 63 61 70 74 69 6f 6e 2c 23 63 66 2d 77 72 61 70 70 65 72 20 63 65 6e 74 65 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 63 69 74 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 63 6f 64 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 64 64 2c 23 63 66 2d 77 72 61 70 70 Data Ascii: #cf-wrapper a,#cf-wrapper abbr,#cf-wrapper article,#cf-wrapper aside,#cf-wrapper b,#cf-wrapper big,#cf-wrapper blockquote,#cf-wrapper body,#cf-wrapper canvas,#cf-wrapper caption,#cf-wrapper center,#cf-wrapper cite,#cf-wrapper code,#cf-wrapper dd,#cf-wrapp
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 74 72 6f 6e 67 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 75 62 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 75 6d 6d 61 72 79 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 75 70 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 61 62 6c 65 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 62 6f 64 79 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 64 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 66 6f 6f 74 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 68 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 68 65 61 64 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 74 2c 23 63 66 2d 77 72 61 70 70 65 72 20 75 2c 23 63 66 2d 77 72 61 70 70 65 72 20 75 6c 7b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 3b 62 6f Data Ascii: e,#cf-wrapper strong,#cf-wrapper sub,#cf-wrapper summary,#cf-wrapper sup,#cf-wrapper table,#cf-wrapper tbody,#cf-wrapper td,#cf-wrapper tfoot,#cf-wrapper th,#cf-wrapper thead,#cf-wrapper tr,#cf-wrapper tt,#cf-wrapper u,#cf-wrapper ul{margin:0;padding:0;bo
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 31 2e 35 21 69 6d 70 6f 72 74 61 6e 74 3b 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 6e 6f 6e 65 21 69 6d 70 6f 72 74 61 6e 74 3b 6c 65 74 74 65 72 2d 73 70 61 63 69 6e 67 3a 6e 6f 72 6d 61 6c 3b 2d 77 65 62 6b 69 74 2d 74 61 70 2d 68 69 67 68 6c 69 67 68 74 2d 63 6f 6c 6f 72 3a 72 67 62 61 28 32 34 36 2c 31 33 39 2c 33 31 2c 2e 33 29 3b 2d 77 65 62 6b 69 74 2d 66 6f 6e 74 2d 73 6d 6f 6f 74 68 69 6e 67 3a 61 6e 74 69 61 6c 69 61 73 65 64 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 73 65 63 74 69 6f 6e 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 65 63 74 69 6f 6e 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 30 20 30 3b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 32 65 6d 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 65 6d Data Ascii: 1.5!important;text-decoration:none!important;letter-spacing:normal;-webkit-tap-highlight-color:rgba(246,139,31,.3);-webkit-font-smoothing:antialiased}#cf-wrapper .cf-section,#cf-wrapper section{background:0 0;display:block;margin-bottom:2em;margin-top:2em
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 6c 64 28 32 6e 29 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 63 6f 6c 73 2d 34 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 6c 64 28 32 6e 29 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 66 6f 75 72 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 6c 64 28 32 6e 29 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 74 77 6f 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 6c 64 28 32 6e 29 7b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 32 32 2e 35 70 78 3b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 30 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 63 6f 6c 73 2d 32 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 Data Ascii: ld(2n),#cf-wrapper .cf-columns.cols-4>.cf-column:nth-child(2n),#cf-wrapper .cf-columns.four>.cf-column:nth-child(2n),#cf-wrapper .cf-columns.two>.cf-column:nth-child(2n){padding-left:22.5px;padding-right:0}#cf-wrapper .cf-columns.cols-2>.cf-column:nth-chi
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 29 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 66 6f 75 72 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 6c 64 28 6f 64 64 29 7b 63 6c 65 61 72 3a 6e 6f 6e 65 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 63 6f 6c 73 2d 34 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 66 69 72 73 74 2d 63 68 69 6c 64 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 63 6f 6c 73 2d 34 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 6e 74 68 2d 63 68 69 6c 64 28 34 6e 2b 31 29 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 2e 66 6f 75 72 3e 2e 63 66 2d 63 6f 6c 75 6d 6e 3a 66 69 72 73 74 2d 63 68 69 6c 64 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 63 6f 6c 75 6d 6e 73 Data Ascii: ),#cf-wrapper .cf-columns.four>.cf-column:nth-child(odd){clear:none}#cf-wrapper .cf-columns.cols-4>.cf-column:first-child,#cf-wrapper .cf-columns.cols-4>.cf-column:nth-child(4n+1),#cf-wrapper .cf-columns.four>.cf-column:first-child,#cf-wrapper .cf-columns
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 30 3b 70 61 64 64 69 6e 67 3a 30 7d 23 63 66 2d 77 72 61 70 70 65 72 20 68 31 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 32 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 33 7b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 34 30 30 7d 23 63 66 2d 77 72 61 70 70 65 72 20 68 34 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 35 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 36 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 74 72 6f 6e 67 7b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 36 30 30 7d 23 63 66 2d 77 72 61 70 70 65 72 20 68 31 7b 66 6f 6e 74 2d 73 69 7a 65 3a 33 36 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 7d 23 63 66 2d 77 72 61 70 70 65 72 20 68 32 7b 66 6f 6e 74 2d 73 69 7a 65 3a 33 30 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 33 7d 23 63 66 2d 77 72 61 70 70 65 Data Ascii: 0;padding:0}#cf-wrapper h1,#cf-wrapper h2,#cf-wrapper h3{font-weight:400}#cf-wrapper h4,#cf-wrapper h5,#cf-wrapper h6,#cf-wrapper strong{font-weight:600}#cf-wrapper h1{font-size:36px;line-height:1.2}#cf-wrapper h2{font-size:30px;line-height:1.3}#cf-wrappe
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 68 32 2b 68 34 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 32 2b 68 35 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 32 2b 68 36 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 33 2b 68 35 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 33 2b 68 36 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 33 2b 70 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 34 2b 70 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 35 2b 6f 6c 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 35 2b 70 2c 23 63 66 2d 77 72 61 70 70 65 72 20 68 35 2b 75 6c 7b 6d 61 72 67 69 6e 2d 74 6f 70 3a 2e 35 65 6d 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 74 72 61 6e 73 70 61 72 65 6e 74 3b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 39 39 39 3b 63 6f 6c Data Ascii: h2+h4,#cf-wrapper h2+h5,#cf-wrapper h2+h6,#cf-wrapper h3+h5,#cf-wrapper h3+h6,#cf-wrapper h3+p,#cf-wrapper h4+p,#cf-wrapper h5+ol,#cf-wrapper h5+p,#cf-wrapper h5+ul{margin-top:.5em}#cf-wrapper .cf-btn{background-color:transparent;border:1px solid #999;col
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 3a 23 36 32 61 31 64 38 3b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 31 36 33 39 35 39 3b 63 6f 6c 6f 72 3a 23 66 66 66 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 2d 64 61 6e 67 65 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 2d 65 72 72 6f 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 2d 69 6d 70 6f 72 74 61 6e 74 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 62 64 32 34 32 36 3b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 74 72 61 6e 73 70 61 72 65 6e 74 3b 63 6f 6c 6f 72 3a 23 66 66 66 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 2d 64 61 6e 67 65 72 3a 68 6f 76 65 72 2c 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 62 74 6e 2d 65 72 72 6f 72 3a 68 6f 76 65 72 2c 23 Data Ascii: :#62a1d8;border:1px solid #163959;color:#fff}#cf-wrapper .cf-btn-danger,#cf-wrapper .cf-btn-error,#cf-wrapper .cf-btn-important{background-color:#bd2426;border-color:transparent;color:#fff}#cf-wrapper .cf-btn-danger:hover,#cf-wrapper .cf-btn-error:hover,#
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 61 63 65 3a 6e 6f 77 72 61 70 7d 23 63 66 2d 77 72 61 70 70 65 72 20 69 6e 70 75 74 2c 23 63 66 2d 77 72 61 70 70 65 72 20 73 65 6c 65 63 74 2c 23 63 66 2d 77 72 61 70 70 65 72 20 74 65 78 74 61 72 65 61 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 23 66 66 66 21 69 6d 70 6f 72 74 61 6e 74 3b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 39 39 39 21 69 6d 70 6f 72 74 61 6e 74 3b 63 6f 6c 6f 72 3a 23 34 30 34 30 34 30 21 69 6d 70 6f 72 74 61 6e 74 3b 66 6f 6e 74 2d 73 69 7a 65 3a 2e 38 36 36 36 37 65 6d 21 69 6d 70 6f 72 74 61 6e 74 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 32 34 21 69 6d 70 6f 72 74 61 6e 74 3b 6d 61 72 67 69 6e 3a 30 20 30 20 31 65 6d 21 69 6d 70 6f 72 74 61 6e 74 3b 6d 61 78 2d 77 69 64 74 68 3a 31 30 30 25 21 69 6d 70 6f 72 74 61 6e Data Ascii: ace:nowrap}#cf-wrapper input,#cf-wrapper select,#cf-wrapper textarea{background:#fff!important;border:1px solid #999!important;color:#404040!important;font-size:.86667em!important;line-height:1.24!important;margin:0 0 1em!important;max-width:100%!importan
2025-01-14 00:15:50 UTC	1369	IN	Data Raw: 3a 23 34 30 34 30 34 30 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 33 70 78 3b 70 61 64 64 69 6e 67 3a 37 2e 35 70 78 20 31 35 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 6d 69 64 64 6c 65 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 32 70 78 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 61 6c 65 72 74 3a 65 6d 70 74 79 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 7d 23 63 66 2d 77 72 61 70 70 65 72 20 2e 63 66 2d 61 6c 65 72 74 20 2e 63 66 2d 63 6c 6f 73 65 7b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 74 72 61 6e 73 70 61 72 65 6e 74 3b 63 6f 6c 6f 72 3a 69 6e 68 65 72 69 74 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 38 2e 37 35 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 3b 70 61 64 64 69 6e Data Ascii: :#404040;font-size:13px;padding:7.5px 15px;position:relative;vertical-align:middle;border-radius:2px}#cf-wrapper .cf-alert:empty{display:none}#cf-wrapper .cf-alert .cf-close{border:1px solid transparent;color:inherit;font-size:18.75px;line-height:1;paddin

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:15:51 UTC	567	OUT	OPTIONS /report/v4?s=yPzhG5%2Fnfl3Za1uhrSg0l4vRtgVkOqR65adeGlTKbem%2Fn9QS5z4qCTZ9gearQO%2Bk3JQ8ilH4Bi5tqErqcv45GLIqTgH4pHK%2FytGkM2FFF7Bg6Hk6L253yAwrrq0Tae9Q52BFOfAxagidr0lFlg%3D%3D HTTP/1.1 Host: a.nel.cloudflare.com Connection: keep-alive Origin: https://informed.deliveryqdmox.top Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 00:15:51 UTC	336	IN	HTTP/1.1 200 OK Content-Length: 0 access-control-max-age: 86400 access-control-allow-methods: POST, OPTIONS access-control-allow-origin: * access-control-allow-headers: content-length, content-type date: Tue, 14 Jan 2025 00:15:50 GMT Via: 1.1 google Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:15:51 UTC	671	OUT	GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1 Host: informed.deliveryqdmox.top Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://informed.deliveryqdmox.top/cdn-cgi/styles/cf.errors.css Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 00:15:51 UTC	409	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:15:51 GMT Content-Type: image/png Content-Length: 452 Connection: close Last-Modified: Tue, 07 Jan 2025 14:31:40 GMT ETag: "677d3acc-1c4" Server: cloudflare CF-RAY: 90196f1a3ad57cfc-EWR X-Frame-Options: DENY X-Content-Type-Options: nosniff Expires: Tue, 14 Jan 2025 02:15:51 GMT Cache-Control: max-age=7200 Cache-Control: public Accept-Ranges: bytes
2025-01-14 00:15:51 UTC	452	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 36 00 00 00 36 08 03 00 00 00 bb 9b 9a ef 00 00 00 33 50 4c 54 45 c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f c1 45 3f ab b2 22 ed 00 00 00 11 74 52 4e 53 00 40 30 10 60 8f bf ff ef 7f af 9f df 20 50 cf 70 60 82 c8 9b 00 00 01 2f 49 44 41 54 78 01 bd d3 05 d2 b4 30 10 06 e1 8e 6c de c1 36 dc ff b2 9f 2b 95 c9 12 7e 79 4a 91 46 22 b8 c2 8b c8 80 94 6f 45 1f ac 4c 81 33 f2 ac 03 5b 1e 95 69 32 b5 94 6e 98 57 79 4a c4 91 8a 7a 26 9a 82 a9 af a4 46 95 f5 d0 1a fb 95 c7 62 bf b2 f2 e9 70 7e e3 a7 a0 df ee 7c 3a 74 35 f1 6d b3 b3 99 66 70 af 69 f2 2f 65 ef c7 fa 99 25 de 25 1b c9 b4 f0 6e d2 50 a6 ed fb 65 Data Ascii: PNGIHDR663PLTEE?E?E?E?E?E?E?E?E?E?E?E?E?E?E?E?E?"tRNS@0` Pp`/IDATx0l6+~yJF"oEL3[i2nWyJz&Fbp~\|:t5mfpi/e%%nPe

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:15:51 UTC	498	OUT	POST /report/v4?s=yPzhG5%2Fnfl3Za1uhrSg0l4vRtgVkOqR65adeGlTKbem%2Fn9QS5z4qCTZ9gearQO%2Bk3JQ8ilH4Bi5tqErqcv45GLIqTgH4pHK%2FytGkM2FFF7Bg6Hk6L253yAwrrq0Tae9Q52BFOfAxagidr0lFlg%3D%3D HTTP/1.1 Host: a.nel.cloudflare.com Connection: keep-alive Content-Length: 400 Content-Type: application/reports+json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 00:15:51 UTC	400	OUT	Data Raw: 5b 7b 22 61 67 65 22 3a 31 2c 22 62 6f 64 79 22 3a 7b 22 65 6c 61 70 73 65 64 5f 74 69 6d 65 22 3a 31 30 31 36 2c 22 6d 65 74 68 6f 64 22 3a 22 47 45 54 22 2c 22 70 68 61 73 65 22 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 22 2c 22 70 72 6f 74 6f 63 6f 6c 22 3a 22 68 74 74 70 2f 31 2e 31 22 2c 22 72 65 66 65 72 72 65 72 22 3a 22 22 2c 22 73 61 6d 70 6c 69 6e 67 5f 66 72 61 63 74 69 6f 6e 22 3a 31 2e 30 2c 22 73 65 72 76 65 72 5f 69 70 22 3a 22 31 37 32 2e 36 37 2e 32 32 30 2e 38 34 22 2c 22 73 74 61 74 75 73 5f 63 6f 64 65 22 3a 34 30 33 2c 22 74 79 70 65 22 3a 22 68 74 74 70 2e 65 72 72 6f 72 22 7d 2c 22 74 79 70 65 22 3a 22 6e 65 74 77 6f 72 6b 2d 65 72 72 6f 72 22 2c 22 75 72 6c 22 3a 22 68 74 74 70 73 3a 2f 2f 69 6e 66 6f 72 6d 65 64 2e 64 65 6c 69 76 65 Data Ascii: [{"age":1,"body":{"elapsed_time":1016,"method":"GET","phase":"application","protocol":"http/1.1","referrer":"","sampling_fraction":1.0,"server_ip":"172.67.220.84","status_code":403,"type":"http.error"},"type":"network-error","url":"https://informed.delive
2025-01-14 00:15:51 UTC	168	IN	HTTP/1.1 200 OK Content-Length: 0 date: Tue, 14 Jan 2025 00:15:51 GMT Via: 1.1 google Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:15:51 UTC	611	OUT	GET /favicon.ico HTTP/1.1 Host: informed.deliveryqdmox.top Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://informed.deliveryqdmox.top/us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 00:15:52 UTC	979	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:15:52 GMT Content-Type: image/vnd.microsoft.icon Content-Length: 32038 Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=86400 Last-Modified: Mon, 15 Jul 2024 08:24:14 GMT ETag: W/"7d26-190b57e07b0" CF-Cache-Status: HIT Age: 48214 Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5ZU%2BM7SezC6lYnAAi1lF92FcA5K5tUKmKhzoIG3FltroI1865DgrCEF%2B98bAb5VLSXu6ZALxuOTksjOfW3e60WQVAMK12pbrzMgL%2BUAeh%2B4iT7btWZzcmid3LLPJr0AxHpuUJsa66m4LOwSZ%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f1e09e780df-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1559&min_rtt=1555&rtt_var=591&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2841&recv_bytes=1189&delivery_rate=1839949&cwnd=215&unsent_bytes=0&cid=e5556fc13aea53e0&ts=164&x=0"
2025-01-14 00:15:52 UTC	390	IN	Data Raw: 00 00 01 00 04 00 10 10 00 00 00 00 20 00 68 04 00 00 46 00 00 00 20 20 00 00 00 00 20 00 a8 10 00 00 ae 04 00 00 30 30 00 00 00 00 20 00 a8 25 00 00 56 15 00 00 40 40 00 00 00 00 20 00 28 42 00 00 fe 3a 00 00 28 00 00 00 10 00 00 00 20 00 00 00 01 00 20 00 00 00 00 00 40 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 65 32 31 1b 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 65 32 31 1b 66 33 32 51 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 51 e4 da d8 51 be a7 a5 ff 81 55 53 ff 66 33 32 ff 66 Data Ascii: hF 00 %V@@ (B:( @e21f32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qe21f32Qf32f32f32f32f32f32f32f32f32f32f32f32f32f32f32QQUSf32f
2025-01-14 00:15:52 UTC	1369	IN	Data Raw: bb a3 a1 ff 7f 52 50 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 51 66 33 32 51 66 33 32 ff 66 33 32 ff 66 33 32 ff 78 4b 4a ff bf aa aa ff f8 f6 f6 ff fd fc fc ff d8 c9 c7 ff 9a 76 75 ff 6b 39 38 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 51 66 33 32 51 66 33 32 ff 66 33 32 ff 66 33 32 ff 67 34 33 ff ab 8f 8e ff 86 5e 5d ff b6 9d 9d ff f0 eb eb ff ff ff ff ff ef e9 e9 ff b6 9b 9a ff 7b 4e 4c ff 66 33 32 ff 66 33 32 ff 66 33 32 51 66 33 32 51 66 33 32 ff 66 33 32 ff 66 33 32 ff 85 5c 5b ff fe fd fd ff f7 f5 f5 ff c9 b7 b6 ff 97 74 73 ff 99 77 77 ff c7 b4 b4 ff f1 ed ed ff fb f9 f9 ff cd bb b9 ff 6b 39 38 ff 66 33 32 51 66 33 32 51 66 33 32 ff 66 33 32 ff 66 33 32 ff b4 9b 9b ff ff ff ff Data Ascii: RPf32f32f32f32f32f32f32f32Qf32Qf32f32f32xKJvuk98f32f32f32f32f32Qf32Qf32f32f32g43^]{NLf32f32f32Qf32Qf32f32f32\[tswwk98f32Qf32Qf32f32f32
2025-01-14 00:15:52 UTC	1369	IN	Data Raw: 79 77 ff 6c 39 37 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 fe fd fd a1 fe fd fd ff f1 eb ea ff bb a1 9f ff 7d 4e 4b ff 68 36 34 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 a4 86 85 a1 Data Ascii: ywl97f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32}NKh64f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32
2025-01-14 00:15:52 UTC	1369	IN	Data Raw: fe ff ef e9 e8 ff c2 aa a7 ff 84 59 56 ff 66 33 32 ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 66 33 32 a1 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff ba a3 a2 ff fe fe fe ff ff ff ff ff ff ff ff ff ff ff ff ff fe fe fe ff f7 f4 f4 ff d4 c6 c6 ff a0 81 80 ff 72 43 42 ff 6b 39 38 ff 7b 4f 4e ff a7 8a 8a ff d2 c4 c3 ff f7 f4 f4 ff ff ff ff ff ff ff ff ff fe fe fe ff f0 ea e9 ff 7c 4e 4c ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 66 33 32 a1 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 6b 39 38 ff e6 dd dd ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff fb fa fa ff db cf cf ff b1 98 97 ff 8d 68 67 ff 74 45 44 ff 72 43 42 ff 8c Data Ascii: YVf32f32f32f32f32f32f32f32f32f32f32rCBk98{ON\|NLf32f32f32f32f32f32f32f32f32k98hgtEDrCB
2025-01-14 00:15:52 UTC	1369	IN	Data Raw: ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 fd fd fd a1 fb fa fa ff f2 ed ec ff ce b9 b6 ff b2 97 95 ff 8c 61 5e ff 73 42 3f ff 6a 38 37 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 95 6f 6c a1 79 48 45 ff 67 34 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 Data Ascii: f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32a^sB?j87f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32olyHEg42f32f32f32f32f32f32f32f32f32f32f3
2025-01-14 00:15:52 UTC	1369	IN	Data Raw: ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 66 33 32 e3 65 32 31 f1 66 33 31 f1 66 33 32 f1 66 33 32 f1 66 33 32 f1 66 33 32 f1 66 33 32 f1 65 32 32 f1 65 32 32 f1 65 32 32 f1 66 33 32 f1 65 32 32 f1 65 32 32 f1 66 33 32 f1 65 32 32 f1 65 32 32 f1 66 33 32 f1 65 32 32 f1 66 33 32 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 32 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 32 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 65 32 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 65 32 32 f1 65 32 32 f1 66 33 32 e3 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 65 32 32 f1 66 33 32 ff 66 33 32 ff 65 32 31 ff 65 32 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 Data Ascii: f32e21f31f32f32f32f32f32e22e22e22f32e22e22f32e22e22f32e22f32f31f31f31f32f31f31f31f31f32f31f31f31f31f31f31e21f31f31f31f31f31e22e22f32e22f32f32e21e22f32f32f32f32
2025-01-14 00:15:52 UTC	1369	IN	Data Raw: ff ff 01 be a9 a8 f1 e9 e3 e2 ff fe fd fd ff ff ff ff ff ff ff ff ff ff ff ff ff fb f9 f9 ff ca b3 af ff a0 7d 7b ff 75 42 3f ff 67 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 65 32 31 ff 66 33 31 ff 65 32 31 ff 65 32 31 ff 66 33 31 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 66 33 32 ff 65 32 31 ff 65 32 31 ff 65 32 32 ff 65 32 31 ff 66 33 31 ff 66 33 31 ff 65 32 31 ff 66 33 32 ff 65 32 31 ff 66 33 31 ff 66 33 31 ff 66 33 32 ff 66 33 31 ff 66 33 31 ff 66 33 31 f1 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 6a 39 38 f1 83 5a 59 ff c1 ac ac ff f6 f3 f2 ff fe fe fe ff ff ff ff ff fe fe fe ff fe fe fe ff f9 f6 f6 ff dd cf cd ff b6 99 95 ff 77 44 41 ff 68 35 34 ff 66 33 32 ff 66 33 32 ff Data Ascii: }{uB?g32f32f32f32f32f32f32f32f32f32e21f31e21e21f31f32e21f32f32e21e21e22e21f31f31e21f32e21f31f31f32f31f31f31j98ZYwDAh54f32f32
2025-01-14 00:15:52 UTC	1369	IN	Data Raw: 31 ff 66 33 32 ff 66 33 31 ff 65 32 31 ff 65 32 31 ff 65 32 31 ff 66 33 31 ff 6d 3d 3c ff 9a 79 78 ff cf bf be ff fa f8 f8 ff ff ff ff ff fe fe fe ff ff ff ff ff ff ff ff ff fe fe fe ff ff ff ff ff ff ff ff ff fc fa fa ff d3 c0 bd ff ac 8d 8a ff 79 47 44 ff 66 33 32 ff 66 33 31 ff 66 33 32 ff 66 33 31 ff 66 33 31 ff 66 33 32 ff 65 32 31 ff 65 32 31 ff 66 33 31 ff 65 32 31 ff 66 33 32 ff 66 33 31 ff 66 33 32 ff 65 32 31 ff 66 33 31 ff 66 33 32 ff 66 33 31 f1 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 66 33 32 f1 66 33 32 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 66 33 32 ff 65 32 32 ff 65 32 31 ff 66 33 32 ff 66 33 32 ff 65 32 31 ff 65 32 31 ff 66 33 32 ff 66 34 33 ff 6f 3f 3e ff 92 6d 6c ff d3 c5 c4 ff f3 ef ef ff fe fe fe ff ff ff ff ff ff ff ff ff ff Data Ascii: 1f32f31e21e21e21f31m=<yxyGDf32f31f32f31f31f32e21e21f31e21f32f31f32e21f31f32f31f32f32f32e21f32f32e22e21f32f32e21e21f32f43o?>ml
2025-01-14 00:15:52 UTC	1369	IN	Data Raw: ff db d0 d0 ff fe fe fe ff ff ff ff ff ff ff ff ff fe fe fe ff ff ff ff ff fe fe fe ff ff ff ff ff ff ff ff ff fe fe fe ff f0 eb eb ff d9 cd cd ff af 95 95 ff 80 55 54 ff 67 34 33 ff 66 33 32 ff 68 36 35 ff 7a 4e 4d ff 8f 69 69 ff b3 99 98 ff d9 cd cc ff fb fa fa ff fe fe fe ff fe fe fe ff ff ff ff ff fe fe fe ff fe fe fe ff f4 ef ee ff 94 6c 69 ff 66 33 32 ff 65 32 31 ff 66 33 31 f1 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 66 33 31 f1 66 33 32 ff 66 33 32 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 65 32 31 ff 65 32 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 91 6d 6c ff f8 f5 f5 ff ff ff ff ff fe fe fe ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff e8 e1 e0 ff be a8 Data Ascii: UTg43f32h65zNMiilif32e21f31f31f32f32f32e21f32e21e22f32f32f32ml
2025-01-14 00:15:52 UTC	1369	IN	Data Raw: bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff b9 a1 a1 ff ca b9 b9 ff bc a7 a7 ff bc a7 a7 ff bc a7 a7 ff c3 af ae ff d1 c2 c2 ff ed e7 e7 ff fe fe fe ff e5 da d9 ff 6d 39 36 ff 65 32 31 f1 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 66 33 31 f1 65 32 31 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 66 33 31 ff 66 33 32 ff 66 33 31 ff 66 33 31 ff 65 32 31 ff 66 33 32 ff 66 33 31 ff 66 33 32 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 31 ff 66 33 31 ff 66 33 32 ff 66 33 31 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 65 32 31 ff 66 33 31 ff 66 33 32 ff 6f 3f 3e ff a0 80 7f ff fe fe fe Data Ascii: m96e21f31e21f32e21f32f31f32f31f31e21f32f31f32f32e21f32f32f32f32f32f32f31f31f32f31f32e21f32e21f31f32o?>

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:15:53 UTC	361	OUT	GET /favicon.ico HTTP/1.1 Host: informed.deliveryqdmox.top Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 00:15:53 UTC	984	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:15:53 GMT Content-Type: image/vnd.microsoft.icon Content-Length: 32038 Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=86400 Last-Modified: Mon, 15 Jul 2024 08:24:14 GMT ETag: W/"7d26-190b57e07b0" CF-Cache-Status: HIT Age: 48215 Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nkokGpXqLHZHEe%2BTbsFC7%2FHEMcVfScfA9%2FQnoZksM4i2H6YtdWUuvoYg2Raq3v0sfhBGKLK%2B3Nb2FUj4oEsON92KQEnJWfSIglv45%2F4SRNBn%2B0n9lE0iux%2BG3J%2BvsDpb80kxeUAHxXngFMGeeg%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f257d1e0cc2-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1579&min_rtt=1577&rtt_var=596&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2841&recv_bytes=939&delivery_rate=1829573&cwnd=176&unsent_bytes=0&cid=8c3a004b4f5f30bd&ts=182&x=0"
2025-01-14 00:15:53 UTC	385	IN	Data Raw: 00 00 01 00 04 00 10 10 00 00 00 00 20 00 68 04 00 00 46 00 00 00 20 20 00 00 00 00 20 00 a8 10 00 00 ae 04 00 00 30 30 00 00 00 00 20 00 a8 25 00 00 56 15 00 00 40 40 00 00 00 00 20 00 28 42 00 00 fe 3a 00 00 28 00 00 00 10 00 00 00 20 00 00 00 01 00 20 00 00 00 00 00 40 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 65 32 31 1b 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 66 33 32 51 65 32 31 1b 66 33 32 51 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 51 e4 da d8 51 be a7 a5 ff 81 55 53 ff 66 33 32 ff 66 Data Ascii: hF 00 %V@@ (B:( @e21f32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qf32Qe21f32Qf32f32f32f32f32f32f32f32f32f32f32f32f32f32f32QQUSf32f
2025-01-14 00:15:53 UTC	1369	IN	Data Raw: ff f1 ec eb ff bb a3 a1 ff 7f 52 50 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 51 66 33 32 51 66 33 32 ff 66 33 32 ff 66 33 32 ff 78 4b 4a ff bf aa aa ff f8 f6 f6 ff fd fc fc ff d8 c9 c7 ff 9a 76 75 ff 6b 39 38 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 51 66 33 32 51 66 33 32 ff 66 33 32 ff 66 33 32 ff 67 34 33 ff ab 8f 8e ff 86 5e 5d ff b6 9d 9d ff f0 eb eb ff ff ff ff ff ef e9 e9 ff b6 9b 9a ff 7b 4e 4c ff 66 33 32 ff 66 33 32 ff 66 33 32 51 66 33 32 51 66 33 32 ff 66 33 32 ff 66 33 32 ff 85 5c 5b ff fe fd fd ff f7 f5 f5 ff c9 b7 b6 ff 97 74 73 ff 99 77 77 ff c7 b4 b4 ff f1 ed ed ff fb f9 f9 ff cd bb b9 ff 6b 39 38 ff 66 33 32 51 66 33 32 51 66 33 32 ff 66 33 32 ff 66 33 32 ff b4 9b Data Ascii: RPf32f32f32f32f32f32f32f32Qf32Qf32f32f32xKJvuk98f32f32f32f32f32Qf32Qf32f32f32g43^]{NLf32f32f32Qf32Qf32f32f32\[tswwk98f32Qf32Qf32f32f32
2025-01-14 00:15:53 UTC	1369	IN	Data Raw: cb b6 b3 a1 9d 79 77 ff 6c 39 37 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 fe fd fd a1 fe fd fd ff f1 eb ea ff bb a1 9f ff 7d 4e 4b ff 68 36 34 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff Data Ascii: ywl97f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32}NKh64f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32
2025-01-14 00:15:53 UTC	1369	IN	Data Raw: ff ff ff fe fe fe ff ef e9 e8 ff c2 aa a7 ff 84 59 56 ff 66 33 32 ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 66 33 32 a1 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff ba a3 a2 ff fe fe fe ff ff ff ff ff ff ff ff ff ff ff ff ff fe fe fe ff f7 f4 f4 ff d4 c6 c6 ff a0 81 80 ff 72 43 42 ff 6b 39 38 ff 7b 4f 4e ff a7 8a 8a ff d2 c4 c3 ff f7 f4 f4 ff ff ff ff ff ff ff ff ff fe fe fe ff f0 ea e9 ff 7c 4e 4c ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 66 33 32 a1 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 6b 39 38 ff e6 dd dd ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff fb fa fa ff db cf cf ff b1 98 97 ff 8d 68 67 ff 74 45 44 ff Data Ascii: YVf32f32f32f32f32f32f32f32f32f32f32rCBk98{ON\|NLf32f32f32f32f32f32f32f32f32k98hgtED
2025-01-14 00:15:53 UTC	1369	IN	Data Raw: 35 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 fd fd fd a1 fb fa fa ff f2 ed ec ff ce b9 b6 ff b2 97 95 ff 8c 61 5e ff 73 42 3f ff 6a 38 37 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 a1 ff ff ff 01 ff ff ff 01 95 6f 6c a1 79 48 45 ff 67 34 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 Data Ascii: 5f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32a^sB?j87f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32f32olyHEg42f32f32f32f32f32f32f32f32f32f
2025-01-14 00:15:53 UTC	1369	IN	Data Raw: 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 66 33 32 e3 65 32 31 f1 66 33 31 f1 66 33 32 f1 66 33 32 f1 66 33 32 f1 66 33 32 f1 66 33 32 f1 65 32 32 f1 65 32 32 f1 65 32 32 f1 66 33 32 f1 65 32 32 f1 65 32 32 f1 66 33 32 f1 65 32 32 f1 65 32 32 f1 66 33 32 f1 65 32 32 f1 66 33 32 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 32 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 32 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 65 32 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 66 33 31 f1 65 32 32 f1 65 32 32 f1 66 33 32 e3 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 65 32 32 f1 66 33 32 ff 66 33 32 ff 65 32 31 ff 65 32 32 ff 66 33 32 ff 66 33 32 ff 66 33 Data Ascii: f32e21f31f32f32f32f32f32e22e22e22f32e22e22f32e22e22f32e22f32f31f31f31f32f31f31f31f31f32f31f31f31f31f31f31e21f31f31f31f31f31e22e22f32e22f32f32e21e22f32f32f3
2025-01-14 00:15:53 UTC	1369	IN	Data Raw: ff ff ff 01 ff ff ff 01 be a9 a8 f1 e9 e3 e2 ff fe fd fd ff ff ff ff ff ff ff ff ff ff ff ff ff fb f9 f9 ff ca b3 af ff a0 7d 7b ff 75 42 3f ff 67 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 65 32 31 ff 66 33 31 ff 65 32 31 ff 65 32 31 ff 66 33 31 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 66 33 32 ff 65 32 31 ff 65 32 31 ff 65 32 32 ff 65 32 31 ff 66 33 31 ff 66 33 31 ff 65 32 31 ff 66 33 32 ff 65 32 31 ff 66 33 31 ff 66 33 31 ff 66 33 32 ff 66 33 31 ff 66 33 31 ff 66 33 31 f1 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 6a 39 38 f1 83 5a 59 ff c1 ac ac ff f6 f3 f2 ff fe fe fe ff ff ff ff ff fe fe fe ff fe fe fe ff f9 f6 f6 ff dd cf cd ff b6 99 95 ff 77 44 41 ff 68 35 34 ff 66 33 32 Data Ascii: }{uB?g32f32f32f32f32f32f32f32f32f32e21f31e21e21f31f32e21f32f32e21e21e22e21f31f31e21f32e21f31f31f32f31f31f31j98ZYwDAh54f32
2025-01-14 00:15:53 UTC	1369	IN	Data Raw: 33 31 ff 65 32 31 ff 66 33 32 ff 66 33 31 ff 65 32 31 ff 65 32 31 ff 65 32 31 ff 66 33 31 ff 6d 3d 3c ff 9a 79 78 ff cf bf be ff fa f8 f8 ff ff ff ff ff fe fe fe ff ff ff ff ff ff ff ff ff fe fe fe ff ff ff ff ff ff ff ff ff fc fa fa ff d3 c0 bd ff ac 8d 8a ff 79 47 44 ff 66 33 32 ff 66 33 31 ff 66 33 32 ff 66 33 31 ff 66 33 31 ff 66 33 32 ff 65 32 31 ff 65 32 31 ff 66 33 31 ff 65 32 31 ff 66 33 32 ff 66 33 31 ff 66 33 32 ff 65 32 31 ff 66 33 31 ff 66 33 32 ff 66 33 31 f1 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 66 33 32 f1 66 33 32 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 66 33 32 ff 65 32 32 ff 65 32 31 ff 66 33 32 ff 66 33 32 ff 65 32 31 ff 65 32 31 ff 66 33 32 ff 66 34 33 ff 6f 3f 3e ff 92 6d 6c ff d3 c5 c4 ff f3 ef ef ff fe fe fe ff ff ff ff ff Data Ascii: 31e21f32f31e21e21e21f31m=<yxyGDf32f31f32f31f31f32e21e21f31e21f32f31f32e21f31f32f31f32f32f32e21f32f32e22e21f32f32e21e21f32f43o?>ml
2025-01-14 00:15:53 UTC	1369	IN	Data Raw: 32 ff 78 4b 4b ff db d0 d0 ff fe fe fe ff ff ff ff ff ff ff ff ff fe fe fe ff ff ff ff ff fe fe fe ff ff ff ff ff ff ff ff ff fe fe fe ff f0 eb eb ff d9 cd cd ff af 95 95 ff 80 55 54 ff 67 34 33 ff 66 33 32 ff 68 36 35 ff 7a 4e 4d ff 8f 69 69 ff b3 99 98 ff d9 cd cc ff fb fa fa ff fe fe fe ff fe fe fe ff ff ff ff ff fe fe fe ff fe fe fe ff f4 ef ee ff 94 6c 69 ff 66 33 32 ff 65 32 31 ff 66 33 31 f1 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 66 33 31 f1 66 33 32 ff 66 33 32 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 65 32 31 ff 65 32 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 91 6d 6c ff f8 f5 f5 ff ff ff ff ff fe fe fe ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff e8 Data Ascii: 2xKKUTg43f32h65zNMiilif32e21f31f31f32f32f32e21f32e21e22f32f32f32ml
2025-01-14 00:15:53 UTC	1369	IN	Data Raw: ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff bb a4 a4 ff b9 a1 a1 ff ca b9 b9 ff bc a7 a7 ff bc a7 a7 ff bc a7 a7 ff c3 af ae ff d1 c2 c2 ff ed e7 e7 ff fe fe fe ff e5 da d9 ff 6d 39 36 ff 65 32 31 f1 ff ff ff 01 ff ff ff 01 ff ff ff 01 ff ff ff 01 66 33 31 f1 65 32 31 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 66 33 31 ff 66 33 32 ff 66 33 31 ff 66 33 31 ff 65 32 31 ff 66 33 32 ff 66 33 31 ff 66 33 32 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 32 ff 66 33 31 ff 66 33 31 ff 66 33 32 ff 66 33 31 ff 66 33 32 ff 65 32 31 ff 66 33 32 ff 65 32 31 ff 66 33 31 ff 66 33 32 ff 6f 3f 3e ff a0 80 Data Ascii: m96e21f31e21f32e21f32f31f32f31f31e21f32f31f32f32e21f32f32f32f32f32f32f31f31f32f31f32e21f32e21f31f32o?>

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:04 UTC	756	OUT	GET /learning/access-management/phishing-attack/ HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Referer: https://informed.deliveryqdmox.top/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 00:16:04 UTC	1220	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:04 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Cache-Control: public, max-age=0, must-revalidate Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US x-RM: GW X-XSS-Protection: 1; mode=block Set-Cookie: __cf_bm=rqAys_bxt3IGB8uJqBfQLACHegv2fs3Q6.105Bcr6SI-1736813764-1.0.1.1-uSIEstn1OUl2WDQRfFlWNkysYETxEbUnmNm6ipfwOeJNg3Yvcao3k_AMiZS_dzpfNCtpUZcWSn8Thdf1qjmhj8eBCu2QSZZvGNswyCRruTE; path=/; expires=Tue, 14-Jan-25 00:46:04 GMT; domain=.www.cloudflare.com; HttpOnly; Secure; SameSite=None Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ebfWpjzOU2H1rdFFuTmw0ePV2k%2FPfRgTpQ2QONPe6oi%2FjwM6AIexp65KoMgVo%2FtNHaFO4SzCeAWiKL6MCG2SoiUZkeMUIyF4ZztWhZd6urD5tBqhcKsk4kMhbMMsvMrs1TFVjQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f6c9aef4369-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 00:16:04 UTC	1369	IN	Data Raw: 37 66 66 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 75 73 22 3e 3c 68 65 61 64 3e 3c 73 63 72 69 70 74 3e 77 69 6e 64 6f 77 2e 72 65 64 77 6f 6f 64 3d 7b 22 63 6f 6e 73 65 6e 74 47 72 6f 75 70 73 22 3a 7b 22 43 30 30 30 31 22 3a 74 72 75 65 2c 22 43 30 30 30 32 22 3a 74 72 75 65 2c 22 43 30 30 30 33 22 3a 74 72 75 65 2c 22 43 30 30 30 34 22 3a 74 72 75 65 7d 2c 22 63 6f 75 6e 74 72 79 22 3a 22 55 53 22 2c 22 63 6f 6c 6f 22 3a 22 45 57 52 22 2c 22 75 73 65 72 22 3a 6e 75 6c 6c 2c 22 72 76 31 22 3a 22 75 6f 69 22 2c 22 6c 6f 63 61 6c 65 22 3a 22 65 6e 2d 55 53 22 7d 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 74 79 70 65 3d 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 22 3e 0a Data Ascii: 7ff2<!DOCTYPE html><html lang="en-us"><head><script>window.redwood={"consentGroups":{"C0001":true,"C0002":true,"C0003":true,"C0004":true},"country":"US","colo":"EWR","user":null,"rv1":"uoi","locale":"en-US"}</script> <script type="text/javascript">
2025-01-14 00:16:04 UTC	1369	IN	Data Raw: 3d 3d 20 27 77 77 77 2e 63 6c 6f 75 64 66 6c 61 72 65 2d 63 6e 2e 63 6f 6d 27 29 20 7b 0a 20 20 20 20 20 20 69 66 20 28 6c 6f 63 61 6c 53 74 6f 72 61 67 65 2e 67 65 74 49 74 65 6d 28 27 6c 61 6e 67 50 72 65 66 65 72 65 6e 63 65 27 29 29 20 7b 0a 20 20 20 20 20 20 20 20 69 66 20 28 6c 6f 63 61 6c 53 74 6f 72 61 67 65 2e 67 65 74 49 74 65 6d 28 27 6c 61 6e 67 50 72 65 66 65 72 65 6e 63 65 27 29 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 20 21 3d 20 27 65 6e 2d 75 73 27 29 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6f 6e 73 74 20 6c 61 6e 67 50 72 65 66 65 72 65 6e 63 65 20 3d 20 6c 6f 63 61 6c 53 74 6f 72 61 67 65 2e 67 65 74 49 74 65 6d 28 27 6c 61 6e 67 50 72 65 66 65 72 65 6e 63 65 27 29 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 3b 0a 20 20 20 20 20 Data Ascii: == 'www.cloudflare-cn.com') { if (localStorage.getItem('langPreference')) { if (localStorage.getItem('langPreference').toLowerCase() != 'en-us') { const langPreference = localStorage.getItem('langPreference').toLowerCase();
2025-01-14 00:16:04 UTC	1369	IN	Data Raw: 68 61 6e 73 2d 63 6e 2c 20 73 77 69 74 63 68 20 74 6f 20 7a 68 2d 63 6e 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 6f 6e 73 74 20 72 65 64 69 72 65 63 74 50 61 74 68 20 3d 20 67 65 74 50 61 74 68 46 72 6f 6d 4c 6f 63 61 6c 65 28 6d 61 79 62 65 4c 6f 63 61 6c 65 2c 20 72 65 71 75 65 73 74 65 64 4c 61 6e 67 43 6f 64 65 2c 20 73 70 6c 69 74 50 61 74 68 53 74 72 69 6e 67 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 69 66 20 28 72 65 64 69 72 65 63 74 50 61 74 68 20 26 26 20 21 69 67 6e 6f 72 65 4c 69 73 74 2e 69 6e 63 6c 75 64 65 73 28 6d 61 79 62 65 4c 6f 63 61 6c 65 29 29 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 72 65 70 6c 61 63 65 28 27 68 74 74 70 73 3a 2f 2f 27 20 2b 20 77 69 6e 64 6f 77 2e 6c 6f Data Ascii: hans-cn, switch to zh-cn const redirectPath = getPathFromLocale(maybeLocale, requestedLangCode, splitPathString); if (redirectPath && !ignoreList.includes(maybeLocale)) { window.location.replace('https://' + window.lo
2025-01-14 00:16:04 UTC	1369	IN	Data Raw: 43 66 75 4e 42 74 79 77 69 73 69 32 78 66 42 50 56 70 2f 64 35 34 61 38 34 39 34 39 30 39 31 61 65 64 32 31 35 36 30 30 62 34 32 62 62 34 37 65 64 33 65 2f 73 65 63 75 72 69 74 79 2d 6c 63 2e 70 6e 67 22 20 64 61 74 61 2d 67 61 74 73 62 79 2d 68 65 61 64 3d 22 74 72 75 65 22 2f 3e 3c 6d 65 74 61 20 69 64 3d 22 74 77 69 74 74 65 72 2d 64 65 73 63 72 69 70 74 69 6f 6e 22 20 6e 61 6d 65 3d 22 74 77 69 74 74 65 72 3a 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 50 68 69 73 68 69 6e 67 20 61 74 74 61 63 6b 73 20 69 6e 76 6f 6c 76 65 64 20 74 72 69 63 6b 69 6e 67 20 61 20 76 69 63 74 69 6d 20 69 6e 74 6f 20 74 61 6b 69 6e 67 20 73 6f 6d 65 20 61 63 74 69 6f 6e 20 74 68 61 74 20 62 65 6e 65 66 69 74 73 20 74 68 65 20 61 74 74 61 63 6b 65 72 Data Ascii: CfuNBtywisi2xfBPVp/d54a84949091aed215600b42bb47ed3e/security-lc.png" data-gatsby-head="true"/><meta id="twitter-description" name="twitter:description" content="Phishing attacks involved tricking a victim into taking some action that benefits the attacker
2025-01-14 00:16:04 UTC	1369	IN	Data Raw: 20 70 3a 6c 61 73 74 2d 63 68 69 6c 64 7b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 30 7d 2e 72 69 63 68 2d 74 65 78 74 2d 72 65 6e 64 65 72 65 72 20 74 61 62 6c 65 20 74 68 20 73 70 61 6e 2e 66 77 37 7b 63 6f 6c 6f 72 3a 23 66 36 33 7d 2e 72 69 63 68 2d 74 65 78 74 2d 72 65 6e 64 65 72 65 72 20 74 61 62 6c 65 20 74 64 20 70 2e 62 6c 61 63 6b 2e 66 33 7b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 30 3b 70 61 64 64 69 6e 67 3a 32 65 6d 20 30 7d 40 6d 65 64 69 61 20 73 63 72 65 65 6e 20 61 6e 64 20 28 6d 69 6e 2d 77 69 64 74 68 3a 31 30 30 30 70 78 29 7b 2e 73 74 69 63 6b 79 2d 72 69 63 68 2d 74 65 78 74 2d 72 65 6e 64 65 72 65 72 7b 6d 61 78 2d 68 65 69 67 68 74 3a 37 30 30 70 78 3b 6f 76 65 72 66 6c 6f 77 2d 79 3a 73 63 72 6f 6c 6c 3b 70 6f 73 69 74 69 6f Data Ascii: p:last-child{margin-bottom:0}.rich-text-renderer table th span.fw7{color:#f63}.rich-text-renderer table td p.black.f3{margin-bottom:0;padding:2em 0}@media screen and (min-width:1000px){.sticky-rich-text-renderer{max-height:700px;overflow-y:scroll;positio
2025-01-14 00:16:04 UTC	1369	IN	Data Raw: 65 78 74 7b 70 61 64 64 69 6e 67 3a 32 35 70 78 7d 2e 66 65 61 74 75 72 65 2d 63 61 72 64 20 2e 6f 6c 2d 74 65 78 74 5f 5f 73 75 70 7b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 32 72 65 6d 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 35 70 78 7d 2e 66 65 61 74 75 72 65 2d 63 61 72 64 20 2e 6f 6c 2d 74 65 78 74 5f 5f 74 65 78 74 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 2e 35 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 32 2e 34 72 65 6d 7d 7d 2e 65 6c 65 6d 65 6e 74 2d 72 65 73 6f 75 72 63 65 2d 63 61 72 64 2d 73 68 61 64 6f 77 7b 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 34 70 78 20 31 30 70 78 20 23 30 30 30 30 30 30 31 66 7d 2e 65 6c 65 6d 65 6e 74 2d 72 65 73 6f 75 72 63 65 2d 63 61 72 64 7b 68 65 69 67 68 74 3a 31 30 30 25 3b 6d 69 6e 2d 68 65 69 67 68 74 3a Data Ascii: ext{padding:25px}.feature-card .ol-text__sup{font-size:1.2rem;margin-bottom:15px}.feature-card .ol-text__text{font-size:2.5rem;line-height:2.4rem}}.element-resource-card-shadow{box-shadow:0 4px 10px #0000001f}.element-resource-card{height:100%;min-height:
2025-01-14 00:16:04 UTC	1369	IN	Data Raw: 3a 31 30 30 31 70 78 29 7b 2e 62 6c 61 64 65 2d 63 61 72 64 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 70 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 73 69 7a 65 3a 61 75 74 6f 7d 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 31 30 30 30 70 78 29 7b 2e 62 6c 61 64 65 2d 63 61 72 64 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 70 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 73 69 7a 65 3a 63 6f 76 65 72 7d 7d 2e 62 6c 61 64 65 2d 63 61 72 64 2d 63 61 72 6f 75 73 65 6c 2d 77 72 61 70 70 65 72 20 2e 73 6c 69 64 65 7b 6d 61 72 67 69 6e 3a 32 34 70 78 21 69 6d 70 6f 72 74 61 6e 74 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 37 35 30 70 78 29 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 31 30 30 31 70 78 29 7b 2e 62 6c 61 64 65 2d 63 61 72 64 Data Ascii: :1001px){.blade-card-carousel-wrapper{background-size:auto}}@media (min-width:1000px){.blade-card-carousel-wrapper{background-size:cover}}.blade-card-carousel-wrapper .slide{margin:24px!important}@media (min-width:750px) and (max-width:1001px){.blade-card
2025-01-14 00:16:04 UTC	1369	IN	Data Raw: 63 6f 6c 75 6d 6e 3b 66 6c 65 78 2d 77 72 61 70 3a 6e 6f 77 72 61 70 3b 6f 72 64 65 72 3a 31 7d 2e 62 6c 61 64 65 2d 66 75 6c 6c 2d 77 69 64 74 68 2d 68 65 72 6f 2d 62 61 63 6b 67 72 6f 75 6e 64 2d 69 6d 61 67 65 2d 77 72 61 70 70 65 72 20 2e 66 65 61 74 75 72 65 73 2d 77 72 61 70 70 65 72 3e 64 69 76 7b 6d 61 78 2d 77 69 64 74 68 3a 6e 6f 6e 65 3b 70 61 64 64 69 6e 67 2d 74 6f 70 3a 34 38 70 78 7d 2e 62 6c 61 64 65 2d 66 75 6c 6c 2d 77 69 64 74 68 2d 68 65 72 6f 2d 62 61 63 6b 67 72 6f 75 6e 64 2d 69 6d 61 67 65 2d 77 72 61 70 70 65 72 20 2e 66 65 61 74 75 72 65 73 2d 69 6d 61 67 65 2d 77 72 61 70 70 65 72 7b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 2d 72 65 76 65 72 73 65 3b 6d 61 72 67 69 6e Data Ascii: column;flex-wrap:nowrap;order:1}.blade-full-width-hero-background-image-wrapper .features-wrapper>div{max-width:none;padding-top:48px}.blade-full-width-hero-background-image-wrapper .features-image-wrapper{display:flex;flex-direction:column-reverse;margin
2025-01-14 00:16:04 UTC	1369	IN	Data Raw: 67 68 74 3a 36 30 30 7d 2e 74 61 62 2d 61 72 72 6f 77 7b 63 6f 6c 6f 72 3a 23 66 36 33 3b 66 6c 6f 61 74 3a 6c 65 66 74 7d 2e 68 65 72 6f 2d 73 65 63 74 69 6f 6e 2d 74 6f 70 7b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 36 30 70 78 3b 6d 69 6e 2d 68 65 69 67 68 74 3a 34 30 30 70 78 7d 2e 68 65 72 6f 2d 73 65 63 74 69 6f 6e 2d 74 6f 70 20 2e 72 6f 77 7b 6d 61 78 2d 68 65 69 67 68 74 3a 34 30 30 70 78 7d 2e 68 65 72 6f 2d 6d 65 64 69 61 7b 68 65 69 67 68 74 3a 33 30 38 70 78 3b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 7d 2e 68 65 72 6f 2d 6d 65 64 69 61 20 69 6d 67 2c 2e 68 65 72 6f 2d 6d 65 64 69 61 20 76 69 64 65 6f 7b 68 65 69 67 68 74 3a 31 30 30 25 3b 77 69 64 74 68 3a 31 30 30 25 7d 2e 68 65 72 Data Ascii: ght:600}.tab-arrow{color:#f63;float:left}.hero-section-top{margin-bottom:60px;min-height:400px}.hero-section-top .row{max-height:400px}.hero-media{height:308px;overflow:hidden;position:relative}.hero-media img,.hero-media video{height:100%;width:100%}.her
2025-01-14 00:16:04 UTC	1369	IN	Data Raw: 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 69 6e 69 74 69 61 6c 21 69 6d 70 6f 72 74 61 6e 74 3b 63 6f 6c 6f 72 3a 23 66 36 33 21 69 6d 70 6f 72 74 61 6e 74 3b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 35 30 30 21 69 6d 70 6f 72 74 61 6e 74 3b 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 32 34 70 78 3b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 30 21 69 6d 70 6f 72 74 61 6e 74 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 31 30 30 30 70 78 29 7b 2e 68 65 72 6f 2d 70 72 6f 6d 6f 74 69 6f 6e 61 6c 2d 62 61 6e 6e 65 72 2d 77 72 61 70 70 65 72 20 2e 6c 65 61 72 6e 2d 6d 6f 72 65 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 32 34 70 78 7d 7d 2e 68 65 72 6f 2d 70 72 6f 6d 6f 74 69 6f 6e 61 6c 2d 62 61 6e 6e 65 72 2d 77 72 61 70 70 65 72 20 2e 6c 65 61 72 6e 2d 6d 6f 72 65 Data Ascii: ground-color:initial!important;color:#f63!important;font-weight:500!important;margin-right:24px;padding-right:0!important}@media (min-width:1000px){.hero-promotional-banner-wrapper .learn-more{margin-left:24px}}.hero-promotional-banner-wrapper .learn-more

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://informed.deliveryqdmox.top/us/

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Dropped Files

HTML

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 119

Chrome Cache Entry: 120

Chrome Cache Entry: 121

Chrome Cache Entry: 122

Chrome Cache Entry: 123

Chrome Cache Entry: 124

Chrome Cache Entry: 125

Chrome Cache Entry: 126

Chrome Cache Entry: 127

Chrome Cache Entry: 128

Chrome Cache Entry: 129

Chrome Cache Entry: 130

Chrome Cache Entry: 131

Chrome Cache Entry: 132

Chrome Cache Entry: 133

Chrome Cache Entry: 134

Chrome Cache Entry: 135

Chrome Cache Entry: 136

Chrome Cache Entry: 137

Chrome Cache Entry: 138

Chrome Cache Entry: 139

Chrome Cache Entry: 140

Chrome Cache Entry: 141

Chrome Cache Entry: 142

Chrome Cache Entry: 143

Chrome Cache Entry: 144

Windows Analysis Report
https://informed.deliveryqdmox.top/us/

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:05 UTC	885	OUT	GET /img/learning/security/threats/phishing-attack/diagram-phishing-attack.png HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.cloudflare.com/learning/access-management/phishing-attack/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=rqAys_bxt3IGB8uJqBfQLACHegv2fs3Q6.105Bcr6SI-1736813764-1.0.1.1-uSIEstn1OUl2WDQRfFlWNkysYETxEbUnmNm6ipfwOeJNg3Yvcao3k_AMiZS_dzpfNCtpUZcWSn8Thdf1qjmhj8eBCu2QSZZvGNswyCRruTE
2025-01-14 00:16:05 UTC	904	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:05 GMT Content-Type: image/webp Content-Length: 28858 Connection: close Accept-Ranges: bytes ETag: "f881ce0909c7585c5f12986f7499f9db" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7qvaBHYCu4hGMgFslx1XoUep9%2B2NW7SEwDSICTa0IeOqk4PjEA8vT1NODuevMbkeeabRlxllv1XEhH0IGyBbRd4WkGThXoNmCJr8c5NyveLkwFFYF%2BgxJFNSCJkudqZmU5UEfA%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f7039c743df-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 00:16:05 UTC	465	IN	Data Raw: 52 49 46 46 b2 70 00 00 57 45 42 50 56 50 38 4c a6 70 00 00 2f 72 c8 19 11 8f e4 2a b6 6d a7 59 08 c2 08 fe 55 f0 0f 29 b7 a5 c7 02 83 b6 91 1c f9 3b e0 27 f8 58 1e c5 b5 dd 65 dc b6 6d 20 76 8f bb 71 6e ff 61 ee 95 b6 4e dc d6 da f6 24 0f 39 c3 47 49 cd 00 8e a7 9d b5 f3 b8 88 0b e4 58 92 73 4a 30 35 1b 0a e4 7f 3a e7 1d 63 fb 5d 43 57 c0 35 e7 4d 3b 87 8a 7b ae d9 21 2e c8 f1 c0 03 39 72 e4 c8 66 1b 6c e8 68 ee 63 53 75 97 49 da 62 11 f3 50 19 72 85 8a 4b 45 a8 15 ec 4d 2d e4 ba 54 84 5a a1 a3 89 da 2c b1 e8 6c 72 85 ce 66 8e 90 6d 18 43 d9 f4 80 42 cc 83 c2 7d 1e 8e fe 13 73 ff 3b 3b b9 f5 62 6a 4e 31 ce fe de 37 58 51 61 45 89 05 13 7a cc a8 31 a1 c1 88 16 03 56 0c e8 d1 a3 c3 80 16 23 1a 4c a8 31 63 41 8b 05 25 56 14 d8 8e 77 1d f6 f8 6d d8 b0 21 10 Data Ascii: RIFFpWEBPVP8Lp/r*mYU);'Xem vqnaN$9GIXsJ05:c]CW5M;{!.9rflhcSuIbPrKEM-TZ,lrfmCB}s;;bjN17XQaEz1V#L1cA%Vwm!
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: ff ff e5 38 ad 1e f6 7d 2b 69 b9 cf be d0 d0 86 10 6e 09 a1 97 d0 a4 21 e4 d9 ea da be f5 f8 e2 49 31 e2 da c4 35 d7 72 d3 24 0d b4 21 0b 49 cb 2b 84 2c 24 2f f2 2f 8f ce f9 fd 7e e7 a7 23 cd 48 d6 98 d1 e8 8c 74 a4 91 ac 88 fe 53 a0 6d ab 6e 1b 1d a4 ca fa fa c1 4c 23 02 88 87 9e 64 ab cb 92 6d bb 8d 24 49 0b e9 15 a9 a9 d6 62 54 bd 94 1e 75 6f 39 ab 9d 7c 00 69 74 02 04 1d 55 ed 5e e1 e6 91 22 22 fa 4f 01 92 24 41 6d 54 87 8c 40 c8 b1 b3 67 fd a1 59 d8 86 86 81 0f 6f b7 6d 67 a9 ad 6d db 7f 67 4f 44 99 ea 82 bf 6c c6 e8 19 30 59 e5 e0 d8 af 29 f4 48 82 51 88 e8 3f 25 48 92 24 49 91 55 cf 3d 80 65 b2 87 4b 0d 95 91 1d cd 7c 76 6d c7 e1 5e f8 4f fa 4f fa 4f fa 4f fa 4f fa cf 0b ff b9 39 c4 1f 66 ec 07 a1 c2 9f ac b5 2f fc c7 38 33 76 79 db 0d 7e 6f ed 9c Data Ascii: 8}+in!I15r$!I+,$//~#HtSmnL#dm$IbTuo9\|itU^""O$AmT@gYomgmgODl0Y)HQ?%H$IU=eK\|vm^OOOOO9f/83vy~o
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: e7 59 40 9f 6e a7 00 d5 a3 ab 1c 3b e3 94 3d 96 72 8a 10 eb 8e 10 4f 70 72 21 12 63 0c da 94 51 27 37 28 26 15 97 91 a4 2e 45 b1 5b 63 94 27 3b 76 06 6e 1c 29 45 70 86 a8 88 2b c8 58 3a 8d e0 77 35 df 3c 1e a0 4f 45 dc e2 58 d2 7f 5e f8 4f fa 4f fa 4f fa 4f fa 8f 2e fd 1f 5f cd ff f8 e3 c9 b4 1a b2 9d 72 be fd 9a 05 47 53 57 43 b3 74 6f ce 88 e3 87 62 38 96 ea c3 59 71 fc 32 1d 8a ed 03 e7 c6 31 de b2 32 1c fa 1f f5 f3 47 82 ac cf 32 bb b5 74 3a 2e e5 ba c6 68 14 32 8c 02 ae 22 ae 9c 21 34 c5 16 12 de 99 cf 6a 8c 46 21 c3 28 e0 22 a2 f9 35 4b 8e 7a 8b 0b 36 a3 e7 d3 a4 0c 1e 1f e7 73 41 d1 85 79 42 b6 85 34 68 15 47 96 98 49 71 34 0a 19 26 af b6 5b 46 23 0b 67 0a df 6d 95 2d 32 c7 4c a6 0d ec 5e dd 7a 72 ed 5c e1 a7 2d 32 56 2d 2f b9 0d 20 b9 dd 92 22 cc Data Ascii: Y@n;=rOpr!cQ'7(&.E[c';vn)Ep+X:w5<OEX^OOOO._rGSWCtob8Yq212G2t:.h2"!4jF!("5Kz6sAyB4hGIq4&[F#gm-2L^zr\-2V-/ "
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: ad 58 09 0e b3 49 5f 9e 3f 1d 65 fc ae 7c 12 53 d1 04 07 7b 37 d1 4b f5 83 6f 46 03 7b 5a c4 51 cc 04 88 6e 82 97 aa f5 d5 0a a4 4f e3 27 ca 20 31 9b 70 24 18 db f1 6d 81 71 dc 44 37 48 d8 32 a1 cb 4e a3 50 44 24 7f 6a 27 53 c1 ed 58 5b e7 0a 02 e6 8f e3 25 da 40 71 2b 91 4b 95 53 23 2f f5 b7 b4 e8 cb 74 f2 03 75 d1 a7 41 c2 95 0e 5b 3b 9f c4 65 4c 5a ab 69 15 2b 36 ad c6 3f 92 84 7d f6 38 3e a2 1b 2c ec bd c4 2d c5 98 56 cb 87 6f 35 87 4c 62 23 66 03 c6 ad a4 2d 8f 1b 42 3e ce 13 ce b2 ae 04 a1 7f 2c 02 82 2f 1d b6 b6 4d d8 f2 84 70 a5 55 a6 dc 72 e3 2f 9a c7 b1 10 dd a0 61 cb 44 2d 35 9e 38 22 98 55 d2 e7 17 a3 6f 63 20 36 6d e0 e8 26 69 69 d1 ed 4c 35 29 f6 3a 8e 7f 58 09 1e b3 c9 59 9e 63 9a 6a 47 4f f4 b9 04 60 4f 63 1f 6e 06 0f bb 92 94 a5 28 75 2a Data Ascii: XI_?e\|S{7KoF{ZQnO' 1p$mqD7H2NPD$j'SX[%@q+KS#/tuA[;eLZi+6?}8>,-Vo5Lb#f-B>,/MpUr/aD-58"Uoc 6m&iiL5):XYcjGO`Ocn(u*
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 91 71 65 ab 1b 16 dd 1f 54 06 fb 25 2e a7 be bb 0b f2 ec 08 06 5a d0 54 9b 6a 40 be 36 71 18 cf b9 ab 3d 7f cc c1 af bc 49 3a 3f e9 86 45 f7 07 94 c1 49 79 9d d4 7f ae 03 1b 89 5e a0 87 d3 1a 4d aa 01 79 64 62 31 a6 ec 55 90 3e 63 18 e7 2e b8 12 6f b0 66 ed a0 32 38 c4 58 f9 d8 ef 3c f1 de 60 19 1c 8d 5e 10 62 29 1a 28 c9 cf ca 2f 4d 24 e3 9b 29 e4 3e 7e 18 8a 4c d8 ab 03 7b c2 50 1b 08 77 22 4d 15 6b b0 88 33 38 b4 d7 63 8f 34 9f a1 7f 6d b7 00 cb e0 40 f4 82 90 17 b3 e3 4b 8f e7 0a 61 44 b2 d6 30 8e f3 30 e4 07 f0 a4 59 f4 18 fc c4 1e 72 53 cd b0 ee fe e0 d0 5e 8f e3 6c 5b 79 e7 e5 42 84 67 23 a7 a2 1b fe 56 0c 82 96 7d c5 89 68 5d 08 f2 13 5c 80 54 8b d9 96 df bb 71 06 f3 61 84 bd 1d 2e e3 d7 55 79 f3 a5 dd 2c 5c 91 47 23 17 a4 e3 6a 3f c9 f9 c1 8e f0 Data Ascii: qeT%.ZTj@6q=I:?EIy^Mydb1U>c.of28X<`^b)(/M$)>~L{Pw"Mk38c4m@KaD00YrS^l[yBg#V}h]\Tqa.Uy,\G#j?
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: ad 55 1e b9 2c fb 34 47 88 6c 7d d8 9f 7e 75 33 d9 ef bc d0 5f 62 80 d3 af 5e 5b 50 cf 32 31 45 37 84 1a 22 b6 b2 8b 21 bb e9 56 11 9c 05 cf eb c2 19 69 c9 c8 05 a1 12 10 aa 93 ba 52 75 3f f8 b5 2c fe 57 30 91 ad 0f 0a 7a 2c f8 0b 7d da 14 df 35 85 22 27 11 1c 9e 58 cc fc bd 5d 01 5f 49 f9 83 a2 30 51 8e 0f e9 8f 7c b5 00 6f e8 c1 35 79 4e e4 42 4a 3c 61 38 59 a7 af c9 35 af 93 0f ee fd 30 87 88 6a 7d 18 f2 ad 92 f8 17 4e e3 d8 51 6a 99 ba 89 e8 dc 9d e5 3b 1b b7 8d 10 59 60 7e b2 c9 17 ff 2a 46 41 99 71 99 0f 9e f1 93 91 0b ac 12 10 25 f7 88 d6 2b 54 c0 9e dd 6f 22 17 05 5c d7 fa c3 d0 37 18 54 3f dd 6f 49 48 a0 4e b3 3c 72 c3 99 51 33 bf 06 54 17 12 e0 b7 23 56 f8 31 e1 49 87 b9 ab bb dd 27 25 ce 68 c1 8d d3 72 8b 4b 23 18 5f 53 35 c2 f9 d7 e4 f4 2f 01 Data Ascii: U,4Gl}~u3_b^[P21E7"!ViRu?,W0z,}5"'X]_I0Q\|o5yNBJ<a8Y50j}NQj;Y`~*FAq%+To"\7T?oIHN<rQ3T#V1I'%hrK#_S5/
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 7d 3b bb 74 fe cc 6e c2 ed 0c 96 10 22 56 c4 37 9d f8 16 ee 9f 3d 8f fa 98 7b 23 5d 18 28 6c 7d 7d 92 7a 2b 2c 9e 3e 07 de af 71 e8 7d 85 95 18 22 2e 78 38 3f 6b c4 2f b0 0c bf 9a c8 8f d9 bc d5 f7 b6 71 d7 04 d0 1d dd bb 9b d1 ed 1c 37 26 41 44 6c 02 f1 e5 70 14 03 60 cc da 7c 5f e3 66 40 8d 51 7a ea f0 1e b6 57 47 8d 49 16 11 7f d0 92 58 e2 66 fc de bc dd bf 36 99 8f 4c 60 dd a9 23 3b 1c ec eb bd 4a 88 30 d0 dd d8 c4 00 00 67 39 db a7 d6 0a fa 85 e9 a9 55 ef 36 d2 ea e0 09 63 92 48 98 1f 34 ef f5 c7 f9 3e 99 bd bd 19 06 77 8d f1 01 f2 3b ed 1c ac 8d 31 09 12 86 b9 1b 9b 00 e0 7a 9f e4 77 42 e3 93 9f 70 e2 c8 41 ec c8 99 ca 1c 2a bd 33 8f 4c 96 30 ca dd d8 c4 0e 18 33 ea 23 6f b7 b8 62 42 c6 9d 3a de b6 47 0e 8f 8f b6 ad 74 5c 4c c2 09 f3 bd a6 5f d8 68 Data Ascii: };tn"V7={#](l}}z+,>q}".x8?k/q7&ADlp`\|_f@QzWGIXf6L`#;J0g9U6cH4>w;1zwBpA*3L03#obB:Gt\L_h
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 41 c5 7d 0b 4f 89 ac 2b cd b3 dc 97 a4 85 26 71 a6 ee c6 ae a1 0a 17 e9 17 c8 d9 92 44 46 aa 9b 69 87 f2 5f b5 ba 4b 70 37 4b 56 f1 ef 2c f0 5c fd d0 6d 04 16 df 59 a0 5d f7 ae c2 8f 27 97 05 29 ba 54 0f 7f 2c 1f 71 2f 0d 8b b8 6a 5e 34 93 d2 bf f8 c9 5a 0d 5c 6d 85 a2 d8 a9 ef 99 ed 38 dc 0b ff 49 ff 49 ff 49 ff 49 ff 49 ff 49 ff 49 ff 49 ff 49 ff 49 ff 49 ff 79 e1 3f e9 3f e9 3f e9 3f e9 3f e9 3f e9 3f 2f fc e7 56 18 ef 5b cf fd 21 49 cc b2 b5 b6 70 fd 92 36 79 8c b3 6e 07 e2 b7 bd c7 1f ad e8 e6 92 e9 74 ac e7 96 68 c2 54 d0 73 a0 97 17 48 da 38 87 d4 4a 6e 35 91 8e 23 ee 52 5c 18 d7 0a 38 31 1e ae 95 49 13 e9 ac 4b bf c5 d2 a2 3f 31 de 88 03 30 e7 92 52 03 1d 92 28 3a 4c 4e f8 8e a6 e2 0f 7f a5 02 a8 b4 fd 4f ac b4 48 65 01 d7 e2 31 73 02 f9 8c 2e 24 Data Ascii: A}O+&qDFi_Kp7KV,\mY]')T,q/j^4Z\m8IIIIIIIIIIIy???????/V[!Ip6ynthTsH8Jn5#R\81IK?10R(:LNOHe1s.$
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: ee 2a 2e 37 36 de 83 37 65 e4 8a 11 a0 d5 54 6a 20 47 6d 0c 59 94 56 f8 5f bd 14 cb 33 cd a1 71 12 47 fa ab 53 38 ee 2e 1a 4d 86 c5 f8 5d 59 d0 52 68 a5 3a 46 52 74 74 09 af f8 40 69 57 c1 36 36 ad d8 8e c3 bd f0 9f f4 9f f4 9f f4 9f f4 9f f4 9f f4 9f 17 fe 93 fe 93 fe 93 fe 93 fe 93 fe 93 fe 93 fe 93 fe 93 fe 93 fe 93 fe 93 fe 93 fe 93 fe e3 6e 9c 3c 7e ec b0 e8 ea 36 df 06 83 13 47 0e ee c3 bf 6e ed a7 93 6c 1b 0b ea e9 5e 85 6f 5d fb 7a 7b 8a 5c 9c 43 95 fa 77 bd fe 76 13 1c df 5f 70 38 d3 6e 33 f1 8a cb a5 db 46 bc c8 81 57 3c 0b 64 db 42 30 2e 48 ee cc 39 cf 9d a5 89 34 de 06 e2 68 dc 94 f4 a0 29 81 1e ab 2d 3b d9 d4 34 f8 4a db 3d 4c 3c 8a 1d 1e 93 4f af bf c7 f2 3c 6d 29 b7 75 e0 20 f2 38 4b b9 a8 f2 20 38 2a 2e 8d 60 11 0f 6e df c0 29 f8 dd 9a 2b Data Ascii: .767eTj GmYV_3qGS8.M]YRh:FRtt@iW66n<~6Gnl^o]z{\Cwv_p8n3FW<dB0.H94h)-;4J=L<O<m)u 8K 8.`n)+
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 6c 8f 85 f3 c1 c8 b2 5c 4b b2 e9 97 3b 2e f1 b6 36 fd f5 38 52 83 2d 97 5e 17 eb 4d 7b 97 87 49 10 9a a2 92 70 d3 2f 77 4a 3e 79 16 d6 9e a7 50 df 49 87 fc ce 46 75 5a d1 e3 cd 94 87 71 10 9a a2 92 74 d3 2f b7 47 3a f3 6a 96 9e f5 1c ac f7 c4 91 e9 87 a9 22 2f 0b 07 81 31 71 2d 38 ad 5f ba 9b 58 d3 2f 77 40 3a 8e 40 97 3e 3d 2b 6d 2b 8e 84 63 da 7b dc 68 6d d8 80 a4 9b 7e b9 23 0c b5 25 bc 05 a8 90 e3 9c 73 38 6e a5 12 5a 82 c0 c6 8d 40 14 93 8a a5 f4 cb b9 ea 9c 90 ef fe a6 a0 b8 57 94 9b 5c da c6 ad fc 46 48 3d 64 23 0d d6 df ad 95 59 58 bf 5c 34 fb 42 ae 52 a0 8f 95 5c 9e 13 b3 f2 5b a1 ed 29 e1 42 d2 4d bf dc 41 f9 48 02 66 54 c7 a7 31 2b 6f 16 3d de 81 09 81 e3 cf 93 6e fa e5 8e 49 5c d0 82 0b 12 75 bc ca bb c0 b4 30 59 2d f1 a6 5f 6e af ac 6e 4b 8b Data Ascii: l\K;.68R-^M{Ip/wJ>yPIFuZqt/G:j"/1q-8_X/w@:@>=+m+c{hm~#%s8nZ@W\FH=d#YX\4BR\[)BMAHfT1+o=nI\u0Y-_nnK

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:05 UTC	858	OUT	GET /slt3lc6tev37/2fMg89go9MegG1EDg39mNy/5a42817cd388ae352f77f56e53b1ff81/card-new.png HTTP/1.1 Host: cf-assets.www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.cloudflare.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=rqAys_bxt3IGB8uJqBfQLACHegv2fs3Q6.105Bcr6SI-1736813764-1.0.1.1-uSIEstn1OUl2WDQRfFlWNkysYETxEbUnmNm6ipfwOeJNg3Yvcao3k_AMiZS_dzpfNCtpUZcWSn8Thdf1qjmhj8eBCu2QSZZvGNswyCRruTE
2025-01-14 00:16:05 UTC	847	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:05 GMT Content-Type: image/webp Content-Length: 2784 Connection: close CF-Ray: 90196f738a8843ad-EWR CF-Cache-Status: HIT Accept-Ranges: bytes Age: 268568 Cache-Control: max-age=604800 Content-Disposition: inline; filename="card-new.webp" ETag: "f4eb2a2f745f8799e3e6f6478ab2305d" Last-Modified: Wed, 21 Aug 2024 18:12:19 GMT Vary: Accept Cf-Bgj: imgq:85,h2pri Cf-Polished: origFmt=png, origSize=5229 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=69X284qz1vDBMd4btxkUI32QTk6uVluBOSmaeXwE2uMdpzrvVohC8RpD0tKiqLNZSZibYqEn9MV59bzgSKxcPK7KeKKaz0XWYlj4bGCVKCxojrST53A20PJGee0QoyP1uZlEWCL36Mo26tkYCKs%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare alt-svc: h3=":443"; ma=86400
2025-01-14 00:16:05 UTC	522	IN	Data Raw: 52 49 46 46 d8 0a 00 00 57 45 42 50 56 50 38 4c cc 0a 00 00 2f 36 41 2b 10 19 45 6d db 40 ca 3b e5 cf 78 27 82 88 fe a7 7c aa 82 85 6c 14 b4 6d c3 18 44 f9 b3 ed 0e 03 c2 6c a3 22 ec 79 fe 64 87 22 16 4c f1 ce 70 ea bf c2 b6 6d 90 c2 78 8f a0 19 e1 43 91 fa 33 06 70 5d b2 c4 db 6d db 7a db d6 b6 36 41 8a ce ff ff 15 f9 b8 7e 5e 5e 31 59 8a 8c 97 89 f1 32 99 8f 1d ea 22 3b 0d 2d aa 38 6c db 46 92 e8 fb af ff 76 07 23 c8 91 24 29 92 3c 97 05 da 83 e7 e9 2f 0f 63 38 a8 ad 2d 68 ae 0d 8c 40 83 11 61 24 d8 9a e8 12 08 0d a4 89 26 70 11 fe 08 44 20 02 2d da 76 eb b6 91 d4 76 3c 12 20 5f 00 97 97 20 f3 fc 2e 2c 00 7e ef fe 1e ec 73 ed ff 7b b5 84 2d e7 15 30 38 8b 81 e5 29 58 9f 32 c2 35 00 98 bf 01 57 80 14 31 0d 91 16 d0 06 a2 b4 b8 3e 4f ad 30 26 00 fe d7 cb Data Ascii: RIFFWEBPVP8L/6A+Em@;x'\|lmDl"yd"LpmxC3p]mz6A~^^1Y2";-8lFv#$)</c8-h@a$&pD -vv< _ .,~s{-08)X25W1>O0&
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 41 af 57 ae 52 21 e0 de 8e 8a 39 f8 ce f4 93 98 03 b1 27 be e9 17 05 01 a9 49 f7 14 ed db 98 2d 4d ff 30 bb 7e a5 8e da de 49 92 02 08 58 cc 89 33 22 e1 5d 62 29 d1 a2 06 92 a0 26 89 a5 bd 80 de 28 84 7b 53 45 e6 b6 61 65 ad a9 f8 9d dc 3b 00 a7 b6 6d 4d b3 14 64 36 ed a4 fa da c2 6b b4 e5 d4 d6 96 da 4c a5 94 3d 50 83 bd 15 d5 bf 10 4d a7 97 2e ea 1f 03 f5 81 fb 36 c4 ec ca 6c ca 7e d0 64 df 0e b1 62 f3 e4 90 4b 3e 33 ab 4e bb 7a d2 2e 34 ad 64 ca 75 38 c6 2d 7e 64 9e ec a6 a8 99 4a 14 7b a6 3a fb 66 d8 0d d8 d5 8c 2c a2 d2 66 0e 85 db b0 ec 3e a9 b8 29 84 b5 85 cd 16 5f 85 09 90 21 c8 15 11 61 94 da ef 2e c3 9a 39 15 9f fe c8 e9 9e 46 35 89 01 bd 19 e1 47 f7 de b0 98 21 a9 0d 80 89 34 2c 64 d3 e0 35 9a 65 37 43 1b 3a 75 46 14 03 70 c7 8e da b2 c3 cc ad Data Ascii: AWR!9'I-M0~IX3"]b)&({SEae;mMd6kL=PM.6l~dbK>3Nz.4du8-~dJ{:f,f>)_!a.9F5G!4,d5e7C:uFp
2025-01-14 00:16:05 UTC	893	IN	Data Raw: 48 ba 99 f2 39 3f 8f ef 0b 1e 2d c1 58 af 79 a5 ee 8c e6 e8 dc e1 e3 fb 07 68 f5 51 e8 4d 29 50 c5 8d 14 83 f9 f1 fa be 80 76 d4 e6 06 20 aa e8 dd 06 53 30 d8 7c 97 51 32 c2 77 f3 56 c5 0d 93 cf 16 24 af fb c1 18 1f ba 96 74 cb e4 73 ed 38 2e 71 bc c2 7c b0 5f ea bc 18 58 82 79 dc 8f 23 cc 0f 4d a1 2a cc 78 18 3d ab 09 14 fd 82 2f 30 d0 0f 9a 11 e4 23 06 dd d5 12 7e bf 35 67 19 cc 30 22 fd 68 1e 29 34 39 bb b1 4b f8 38 c7 a5 39 4b b0 9f 65 24 28 b2 d4 f5 02 0c 3f ce cd 17 67 39 8b 72 0a ea bf 7c 6e 46 73 9c e2 d2 9c 04 18 30 bb 17 e7 e8 91 18 c4 aa f3 e3 e3 1c 0f 80 1b ec fd 16 be b7 45 0c d6 71 3c be 3e d6 7d 83 d8 54 dc 2e 5b 80 c7 f9 f2 26 f7 a8 bf 9e 61 9a 71 9f 71 79 fd f8 fa 3a 0b 11 f5 55 b2 65 14 91 08 f6 71 2a af 27 c0 56 8c 65 04 a8 a1 bf 18 f4 Data Ascii: H9?-XyhQM)Pv S0\|Q2wV$ts8.q\|_Xy#Mx=/0#~5g0"h)49K89Ke$(?g9r\|nFs0Eq<>}T.[&aqqy:Ueq'Ve

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:05 UTC	860	OUT	GET /slt3lc6tev37/6bNeiYhSx0RGvbzxS5Fi8c/3ff83bcc36e86e85170201f8264b2c1c/banner-new.png HTTP/1.1 Host: cf-assets.www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.cloudflare.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=rqAys_bxt3IGB8uJqBfQLACHegv2fs3Q6.105Bcr6SI-1736813764-1.0.1.1-uSIEstn1OUl2WDQRfFlWNkysYETxEbUnmNm6ipfwOeJNg3Yvcao3k_AMiZS_dzpfNCtpUZcWSn8Thdf1qjmhj8eBCu2QSZZvGNswyCRruTE
2025-01-14 00:16:05 UTC	860	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:05 GMT Content-Type: image/webp Content-Length: 2238 Connection: close CF-Ray: 90196f739df1423f-EWR CF-Cache-Status: HIT Accept-Ranges: bytes Age: 302 Cache-Control: max-age=604800 Content-Disposition: inline; filename="banner-new.webp" ETag: "a9df8b6f62f4aeb1b4699a2ae4b291bb" Last-Modified: Thu, 22 Aug 2024 13:46:01 GMT Vary: Accept Cf-Bgj: imgq:85,h2pri Cf-Polished: origFmt=png, origSize=3127 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C3jbfphmOD%2FmvK4A6x%2BW0eaq8OU8kwpbkMsLMTZexu1hFSbe8PEdOnZ3f%2ByE6ILT2YRobv00Qf%2F%2FQGHHlRzzUCSNXuVDDVaHhQsq3oZrY78m9qE8T%2FPZ%2BmW19jQqiNBI7ISD5bnimxX0UwGsrg8%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare alt-svc: h3=":443"; ma=86400
2025-01-14 00:16:05 UTC	509	IN	Data Raw: 52 49 46 46 b6 08 00 00 57 45 42 50 56 50 38 4c aa 08 00 00 2f 99 82 15 10 19 45 6d db 40 ca 3b e3 8f f8 1e 82 88 fe 4f 80 3c 36 b1 09 c4 86 4c da 26 fe 6d af d7 14 08 04 92 11 f2 a7 1b 65 10 fa 2f 24 48 b0 39 45 8e 59 a1 1f 18 05 25 49 92 e3 48 92 1b 7a 99 ff bf 62 8e f3 bc 7d 18 22 45 00 64 82 11 0e f6 8d 61 db b6 61 e8 b5 ff 5f 5c 4c 90 23 49 52 24 79 2e 0b b4 07 cf d3 5f 1e c6 70 50 5b 5b d0 5c 1b 18 81 06 fb 23 cc 04 5b 13 5c 02 a4 81 34 c1 04 2e 02 11 88 60 04 48 90 e4 c6 6d 24 e7 8e 52 0b 70 b1 5c 40 b9 de 62 11 04 e1 f7 ee 6f ec 13 fd 7f c3 92 90 e0 0c 08 3e cf 40 1e f8 c9 4f 70 3f 30 d0 5f b7 02 77 8a b3 66 70 30 d4 46 7c c7 2a 66 07 e0 8f 5e d6 3f bd 16 65 df 14 ed cd 51 1e d4 66 b1 c3 c8 d8 ce df fc 54 f1 7c 3d fd d9 db 2d 85 6d d6 07 8c 15 31 Data Ascii: RIFFWEBPVP8L/Em@;O<6L&me/$H9EY%IHzb}"Edaa_\L#IR$y._pP[[\#[\4.`Hm$Rp\@bo>@Op?0_wfp0F\|*f^?eQfT\|=-m1
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 38 10 27 65 52 a2 e9 55 14 0a 3f 50 7a 37 b5 69 9c f7 27 fd e0 2e 16 45 65 d2 82 1d 3a ff 9d a4 02 a4 0a 39 b0 c6 01 80 22 e9 01 ee 6e 0d 6e 5c 24 ab e5 4c b1 44 71 81 27 f1 4a 17 e1 8b f1 19 20 15 c6 c0 4d 80 8a e2 2b 06 b2 40 0c 14 2b 1b 50 05 30 70 91 37 90 3e e4 80 20 28 4a d3 59 00 c9 d7 54 72 eb 08 49 47 8c 74 08 03 25 e4 a6 76 99 3c 37 15 37 3e 29 f4 9e 03 e0 82 cd 02 28 91 57 85 51 3a 7b 26 03 70 b4 28 c0 44 14 20 b3 09 05 2e 82 00 f5 84 31 50 44 f7 36 65 7f 15 e6 b4 ce c6 66 b5 88 e9 07 ca 91 0e 58 da f4 32 df 9e 36 ef 42 d3 e7 f5 c0 e4 63 01 41 00 be 12 0d cc 6d a7 8a da 74 76 29 db 81 19 bb 03 81 1e c9 80 25 64 42 fe 1e d1 81 9b 11 05 92 26 0e d8 d0 26 90 00 ad a2 36 9b 5d bd 0c f4 44 9e 5c 37 fe c0 c4 81 09 c7 03 99 c2 0f 54 31 31 e6 ba 26 85 Data Ascii: 8'eRU?Pz7i'.Ee:9"nn\$LDq'J M+@+P0p7> (JYTrIGt%v<77>)(WQ:{&p(D .1PD6efX26BcAmtv)%dB&&6]D\7T11&
2025-01-14 00:16:05 UTC	360	IN	Data Raw: 23 bc 25 7d 2f 10 84 d4 9f 2b 53 bf 0e de ae fc 82 af 43 05 08 02 65 80 89 4c 20 29 92 09 6b 92 20 64 64 f6 62 1a 80 b0 7b e6 83 d9 41 11 28 dd ae 2e cc c5 f7 26 f7 15 c5 08 03 36 f8 49 fb a3 be 00 16 1c 2a 00 51 cc a0 20 d7 44 37 41 40 b0 45 b6 83 fa 57 a7 0f 09 e9 b6 ce 09 9f 3b 34 c4 c5 81 ac 8d 4e 51 9d 3b 92 9b 9f e1 9f fb 31 6e 1e d2 14 e9 3c 26 b4 01 e6 ac b0 e4 02 57 a0 07 a0 18 28 ad b8 a4 f6 e4 56 75 60 72 80 9b 01 05 6a 33 67 4d 82 c1 d7 17 32 bc e9 3f 7f 6a 46 fb 7f 2e c8 97 ce 3c 70 bd 36 60 0a 0a 9c 04 d2 26 5b 6e 14 92 86 15 e8 91 1b 21 68 28 02 4f ac 02 b0 4c a4 6d a7 8a 36 44 87 fb d3 58 25 b7 00 c9 dc 48 47 e0 e1 8c 35 ac 90 4c d0 c1 4f 70 04 4c 4f ab 37 5d ad ed a8 e2 2f 4e c8 39 32 10 48 ef 2d 80 91 25 03 89 31 83 1a ef f1 59 89 61 4d Data Ascii: #%}/+SCeL )k ddb{A(.&6I*Q D7A@EW;4NQ;1n<&W(Vu`rj3gM2?jF.<p6`&[n!h(OLm6DX%HG5LOpLO7]/N92H-%1YaM

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:05 UTC	834	OUT	GET /img/privacyoptions.svg HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.cloudflare.com/learning/access-management/phishing-attack/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=rqAys_bxt3IGB8uJqBfQLACHegv2fs3Q6.105Bcr6SI-1736813764-1.0.1.1-uSIEstn1OUl2WDQRfFlWNkysYETxEbUnmNm6ipfwOeJNg3Yvcao3k_AMiZS_dzpfNCtpUZcWSn8Thdf1qjmhj8eBCu2QSZZvGNswyCRruTE
2025-01-14 00:16:05 UTC	896	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:05 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: close ETag: W/"5a8d3dae7c1ddd64826cea94a93139d4" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=83z2Qs4qdwn6iu4KMvMvkNbRnbPXx0r7ZEv3%2Bcbub3rb7%2BzMuIngsbQP8OdUuZtLe6GD2oCU5S9Qb5rFpzx68ok%2Flv9RjoOwFeaP2Jn2WodoOpZXo%2FbEuQNq2af2Vg52OaDrOA%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f73f958c34a-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 00:16:05 UTC	473	IN	Data Raw: 37 30 31 0d 0a 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0a 3c 21 2d 2d 20 47 65 6e 65 72 61 74 6f 72 3a 20 41 64 6f 62 65 20 49 6c 6c 75 73 74 72 61 74 6f 72 20 32 34 2e 33 2e 30 2c 20 53 56 47 20 45 78 70 6f 72 74 20 50 6c 75 67 2d 49 6e 20 2e 20 53 56 47 20 56 65 72 73 69 6f 6e 3a 20 36 2e 30 30 20 42 75 69 6c 64 20 30 29 20 20 2d 2d 3e 0a 3c 73 76 67 20 76 65 72 73 69 6f 6e 3d 22 31 2e 31 22 20 69 64 3d 22 4c 61 79 65 72 5f 31 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 78 6d 6c 6e 73 3a 78 6c 69 6e 6b 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 6c 69 6e 6b 22 20 78 3d 22 30 70 78 Data Ascii: 701<?xml version="1.0" encoding="utf-8"?>... Generator: Adobe Illustrator 24.3.0, SVG Export Plug-In . SVG Version: 6.00 Build 0) --><svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px
2025-01-14 00:16:05 UTC	1327	IN	Data Raw: 66 69 6c 6c 3a 23 30 30 36 36 46 46 3b 7d 0a 09 2e 73 74 32 7b 66 69 6c 6c 3a 23 46 46 46 46 46 46 3b 7d 0a 09 2e 73 74 33 7b 66 69 6c 6c 3a 23 30 30 36 36 46 46 3b 7d 0a 3c 2f 73 74 79 6c 65 3e 0a 3c 67 3e 0a 09 3c 67 20 69 64 3d 22 66 69 6e 61 6c 2d 2d 2d 64 65 63 2e 31 31 2d 32 30 32 30 5f 31 5f 22 3e 0a 09 09 3c 67 20 69 64 3d 22 5f 78 33 30 5f 32 30 38 2d 6f 75 72 2d 74 6f 67 67 6c 65 5f 32 5f 22 20 74 72 61 6e 73 66 6f 72 6d 3d 22 74 72 61 6e 73 6c 61 74 65 28 2d 31 32 37 35 2e 30 30 30 30 30 30 2c 20 2d 32 30 30 2e 30 30 30 30 30 30 29 22 3e 0a 09 09 09 3c 67 20 69 64 3d 22 46 69 6e 61 6c 2d 43 6f 70 79 2d 32 5f 32 5f 22 20 74 72 61 6e 73 66 6f 72 6d 3d 22 74 72 61 6e 73 6c 61 74 65 28 31 32 37 35 2e 30 30 30 30 30 30 2c 20 32 30 30 2e 30 30 30 30 Data Ascii: fill:#0066FF;}.st2{fill:#FFFFFF;}.st3{fill:#0066FF;}</style><g><g id="final---dec.11-2020_1_"><g id="_x30_208-our-toggle_2_" transform="translate(-1275.000000, -200.000000)"><g id="Final-Copy-2_2_" transform="translate(1275.000000, 200.0000
2025-01-14 00:16:05 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:05 UTC	815	OUT	GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/learning/access-management/phishing-attack/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=rqAys_bxt3IGB8uJqBfQLACHegv2fs3Q6.105Bcr6SI-1736813764-1.0.1.1-uSIEstn1OUl2WDQRfFlWNkysYETxEbUnmNm6ipfwOeJNg3Yvcao3k_AMiZS_dzpfNCtpUZcWSn8Thdf1qjmhj8eBCu2QSZZvGNswyCRruTE
2025-01-14 00:16:05 UTC	758	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:05 GMT Content-Type: application/javascript Content-Length: 12332 Connection: close Last-Modified: Tue, 07 Jan 2025 14:32:14 GMT ETag: "677d3aee-302c" Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bgWdGG0FQTc2bKo8LJEbwJsjYrM1HJwLyoD8V9C%2B7fdTx5Enbo7iNlmYf7kqDLCLBZi%2F2mVzpHCzRkmoMOcKWB2wV8i%2BSwNhwyLe0kepw4GKbkY5lKZbyslof5uJQnDRCLtJtQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f73dfbd7289-EWR X-Frame-Options: DENY X-Content-Type-Options: nosniff Expires: Thu, 16 Jan 2025 00:16:05 GMT Cache-Control: max-age=172800 Cache-Control: public Accept-Ranges: bytes
2025-01-14 00:16:05 UTC	611	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 74 28 29 7b 72 65 74 75 72 6e 22 63 66 2d 6d 61 72 6b 65 72 2d 22 2b 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2e 74 6f 53 74 72 69 6e 67 28 29 2e 73 6c 69 63 65 28 32 29 7d 66 75 6e 63 74 69 6f 6e 20 65 28 29 7b 66 6f 72 28 76 61 72 20 74 3d 5b 5d 2c 65 3d 30 3b 65 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 65 2b 2b 29 74 5b 65 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 65 5d 3b 28 6e 3d 63 6f 6e 73 6f 6c 65 2e 77 61 72 6e 7c 7c 63 6f 6e 73 6f 6c 65 2e 6c 6f 67 29 2e 63 61 6c 6c 2e 61 70 70 6c 79 28 6e 2c 5b 63 6f 6e 73 6f 6c 65 2c 22 5b 52 4f 43 4b 45 54 20 4c 4f 41 44 45 52 5d 20 22 5d 2e 63 6f 6e 63 61 74 28 74 29 29 3b 76 61 72 20 6e 7d 66 75 6e 63 Data Ascii: !function(){"use strict";function t(){return"cf-marker-"+Math.random().toString().slice(2)}function e(){for(var t=[],e=0;e<arguments.length;e++)t[e]=arguments[e];(n=console.warn\|\|console.log).call.apply(n,[console,"[ROCKET LOADER] "].concat(t));var n}func
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 63 28 74 29 7b 72 65 74 75 72 6e 20 61 28 74 2c 22 22 29 7d 66 75 6e 63 74 69 6f 6e 20 73 28 74 2c 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 69 66 28 65 28 29 2c 74 29 72 65 74 75 72 6e 20 74 2e 63 61 6c 6c 28 74 68 69 73 2c 6e 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 75 28 74 2c 65 29 7b 74 2e 6f 6e 6c 6f 61 64 3d 73 28 74 2e 6f 6e 6c 6f 61 64 2c 65 29 2c 74 2e 6f 6e 65 72 72 6f 72 3d 73 28 74 2e 6f 6e 65 72 72 6f 72 2c 65 29 7d 66 75 6e 63 74 69 6f 6e 20 70 28 74 29 7b 76 61 72 20 65 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 4e 53 28 74 2e 6e 61 6d 65 73 70 61 63 65 55 52 49 2c 22 73 63 72 69 70 74 22 29 3b 65 2e 61 73 79 6e 63 3d 74 2e 68 61 73 41 74 74 72 69 62 75 74 65 28 22 61 73 79 6e 63 22 29 2c 65 2e Data Ascii: c(t){return a(t,"")}function s(t,e){return function(n){if(e(),t)return t.call(this,n)}}function u(t,e){t.onload=s(t.onload,e),t.onerror=s(t.onerror,e)}function p(t){var e=document.createElementNS(t.namespaceURI,"script");e.async=t.hasAttribute("async"),e.
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 66 28 21 65 29 72 65 74 75 72 6e 20 6e 75 6c 6c 3b 76 61 72 20 6e 3d 65 2e 73 70 6c 69 74 28 54 29 3b 72 65 74 75 72 6e 7b 6e 6f 6e 63 65 3a 6e 5b 30 5d 2c 68 61 6e 64 6c 65 72 50 72 65 66 69 78 4c 65 6e 67 74 68 3a 2b 6e 5b 31 5d 2c 62 61 69 6c 6f 75 74 3a 21 74 2e 68 61 73 41 74 74 72 69 62 75 74 65 28 22 64 65 66 65 72 22 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 67 28 74 29 7b 76 61 72 20 65 3d 42 2b 74 2e 6e 6f 6e 63 65 3b 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 2e 63 61 6c 6c 28 64 6f 63 75 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 5b 22 2b 65 2b 22 5d 22 29 2c 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 6e 2e 72 65 6d 6f 76 65 41 74 74 72 69 62 75 74 65 28 65 29 2c 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 Data Ascii: f(!e)return null;var n=e.split(T);return{nonce:n[0],handlerPrefixLength:+n[1],bailout:!t.hasAttribute("defer")}}function g(t){var e=B+t.nonce;Array.prototype.forEach.call(document.querySelectorAll("["+e+"]"),function(n){n.removeAttribute(e),Array.prototyp
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 3a 21 30 2c 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 31 2e 31 22 3a 21 30 2c 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 31 2e 32 22 3a 21 30 2c 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 31 2e 33 22 3a 21 30 2c 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 31 2e 34 22 3a 21 30 2c 22 74 65 78 74 2f 6a 61 76 61 73 63 72 69 70 74 31 2e 35 22 3a 21 30 2c 22 74 65 78 74 2f 6a 73 63 72 69 70 74 22 3a 21 30 2c 22 74 65 78 74 2f 6c 69 76 65 73 63 72 69 70 74 22 3a 21 30 2c 22 74 65 78 74 2f 78 2d 65 63 6d 61 73 63 72 69 70 74 22 3a 21 30 2c 22 74 65 78 74 2f 78 2d 6a 61 76 61 73 63 72 69 70 74 22 3a 21 30 2c 6d 6f 64 75 6c 65 3a 21 30 7d 2c 6b 3d 76 6f 69 64 20 30 21 3d 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 Data Ascii: :!0,"text/javascript1.1":!0,"text/javascript1.2":!0,"text/javascript1.3":!0,"text/javascript1.4":!0,"text/javascript1.5":!0,"text/jscript":!0,"text/livescript":!0,"text/x-ecmascript":!0,"text/x-javascript":!0,module:!0},k=void 0!==document.createElement("
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 6f 74 79 70 65 2e 68 61 73 4e 6f 6e 63 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 30 3d 3d 3d 28 74 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 74 79 70 65 22 29 7c 7c 22 22 29 2e 69 6e 64 65 78 4f 66 28 74 68 69 73 2e 6e 6f 6e 63 65 29 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 72 65 6d 6f 76 65 4e 6f 6e 63 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 74 2e 74 79 70 65 3d 74 2e 74 79 70 65 2e 73 75 62 73 74 72 28 74 68 69 73 2e 6e 6f 6e 63 65 2e 6c 65 6e 67 74 68 29 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 6d 61 6b 65 4e 6f 6e 45 78 65 63 75 74 61 62 6c 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 74 2e 74 79 70 65 3d 74 68 69 73 2e 6e 6f 6e 63 65 2b 74 2e 74 79 70 65 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 69 73 50 65 6e 64 69 6e 67 44 Data Ascii: otype.hasNonce=function(t){return 0===(t.getAttribute("type")\|\|"").indexOf(this.nonce)},t.prototype.removeNonce=function(t){t.type=t.type.substr(this.nonce.length)},t.prototype.makeNonExecutable=function(t){t.type=this.nonce+t.type},t.prototype.isPendingD
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 79 70 65 2e 65 6e 61 62 6c 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 3d 74 68 69 73 3b 74 68 69 73 2e 69 6e 73 65 72 74 69 6f 6e 50 6f 69 6e 74 4d 61 72 6b 65 72 3d 74 2c 74 68 69 73 2e 62 75 66 66 65 72 3d 22 22 2c 64 6f 63 75 6d 65 6e 74 2e 77 72 69 74 65 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 6f 72 28 76 61 72 20 74 3d 5b 5d 2c 6e 3d 30 3b 6e 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 6e 2b 2b 29 74 5b 6e 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 6e 5d 3b 72 65 74 75 72 6e 20 65 2e 77 72 69 74 65 28 74 2c 21 31 29 7d 2c 64 6f 63 75 6d 65 6e 74 2e 77 72 69 74 65 6c 6e 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 6f 72 28 76 61 72 20 74 3d 5b 5d 2c 6e 3d 30 3b 6e 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 6e 2b 2b 29 74 5b 6e 5d Data Ascii: ype.enable=function(t){var e=this;this.insertionPointMarker=t,this.buffer="",document.write=function(){for(var t=[],n=0;n<arguments.length;n++)t[n]=arguments[n];return e.write(t,!1)},document.writeln=function(){for(var t=[],n=0;n<arguments.length;n++)t[n]
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 2e 77 72 69 74 65 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 76 61 72 20 6e 3d 64 6f 63 75 6d 65 6e 74 2e 63 75 72 72 65 6e 74 53 63 72 69 70 74 3b 6e 26 26 69 28 6e 29 26 26 6e 2e 68 61 73 41 74 74 72 69 62 75 74 65 28 22 61 73 79 6e 63 22 29 3f 28 72 3d 65 3f 5f 3a 4c 29 2e 63 61 6c 6c 2e 61 70 70 6c 79 28 72 2c 5b 64 6f 63 75 6d 65 6e 74 5d 2e 63 6f 6e 63 61 74 28 74 29 29 3a 74 68 69 73 2e 62 75 66 66 65 72 2b 3d 74 2e 6d 61 70 28 53 74 72 69 6e 67 29 2e 6a 6f 69 6e 28 65 3f 22 5c 6e 22 3a 22 22 29 3b 76 61 72 20 72 7d 2c 74 7d 28 29 2c 6a 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 74 28 29 7b 76 61 72 20 74 3d 74 68 69 73 3b 74 68 69 73 2e 73 69 6d 75 6c 61 74 65 64 52 65 61 64 79 53 74 61 74 65 3d 22 6c 6f 61 64 69 6e 67 22 2c Data Ascii: .write=function(t,e){var n=document.currentScript;n&&i(n)&&n.hasAttribute("async")?(r=e?_:L).call.apply(r,[document].concat(t)):this.buffer+=t.map(String).join(e?"\n":"");var r},t}(),j=function(){function t(){var t=this;this.simulatedReadyState="loading",
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 6e 50 72 6f 78 69 65 73 3d 21 30 7d 2c 30 29 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 73 65 74 75 70 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 50 72 6f 78 79 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 3d 74 68 69 73 3b 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 45 76 65 6e 74 54 61 72 67 65 74 3f 5b 45 76 65 6e 74 54 61 72 67 65 74 2e 70 72 6f 74 6f 74 79 70 65 5d 3a 5b 4e 6f 64 65 2e 70 72 6f 74 6f 74 79 70 65 2c 57 69 6e 64 6f 77 2e 70 72 6f 74 6f 74 79 70 65 5d 29 2e 66 6f 72 45 61 63 68 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 74 2e 70 61 74 63 68 45 76 65 6e 74 54 61 72 67 65 74 4d 65 74 68 6f 64 73 28 65 29 7d 29 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 70 61 74 63 68 45 76 65 6e 74 54 61 72 67 65 74 4d Data Ascii: nProxies=!0},0)},t.prototype.setupEventListenerProxy=function(){var t=this;("undefined"!=typeof EventTarget?[EventTarget.prototype]:[Node.prototype,Window.prototype]).forEach(function(e){return t.patchEventTargetMethods(e)})},t.prototype.patchEventTargetM
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 61 74 6f 72 22 2c 7b 76 61 6c 75 65 3a 6e 65 77 20 6a 7d 29 2c 74 2e 5f 5f 72 6f 63 6b 65 74 4c 6f 61 64 65 72 4c 6f 61 64 50 72 6f 67 72 65 73 73 53 69 6d 75 6c 61 74 6f 72 7d 28 29 2c 57 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 74 28 74 2c 65 29 7b 74 68 69 73 2e 73 63 72 69 70 74 53 74 61 63 6b 3d 74 2c 74 68 69 73 2e 73 65 74 74 69 6e 67 73 3d 65 2c 74 68 69 73 2e 70 72 65 6c 6f 61 64 48 69 6e 74 73 3d 5b 5d 7d 72 65 74 75 72 6e 20 74 2e 70 72 6f 74 6f 74 79 70 65 2e 69 6e 73 65 72 74 50 72 65 6c 6f 61 64 48 69 6e 74 73 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 3d 74 68 69 73 3b 74 68 69 73 2e 73 63 72 69 70 74 53 74 61 63 6b 2e 66 6f 72 45 61 63 68 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 66 28 61 28 65 2c 74 2e 73 65 Data Ascii: ator",{value:new j}),t.__rocketLoaderLoadProgressSimulator}(),W=function(){function t(t,e){this.scriptStack=t,this.settings=e,this.preloadHints=[]}return t.prototype.insertPreloadHints=function(){var t=this;this.scriptStack.forEach(function(e){if(a(e,t.se
2025-01-14 00:16:05 UTC	769	IN	Data Raw: 65 53 63 72 69 70 74 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 6e 3d 74 2e 73 63 72 69 70 74 2c 72 3d 74 2e 70 6c 61 63 65 68 6f 6c 64 65 72 2c 6f 3d 74 2e 65 78 74 65 72 6e 61 6c 2c 69 3d 74 2e 61 73 79 6e 63 2c 61 3d 72 2e 70 61 72 65 6e 74 4e 6f 64 65 3b 69 66 28 21 64 6f 63 75 6d 65 6e 74 2e 63 6f 6e 74 61 69 6e 73 28 72 29 29 72 65 74 75 72 6e 20 65 28 22 50 6c 61 63 65 68 6f 6c 64 65 72 20 66 6f 72 20 73 63 72 69 70 74 20 5c 6e 22 2b 6e 2e 6f 75 74 65 72 48 54 4d 4c 2b 22 5c 6e 20 77 61 73 20 64 65 74 61 63 68 65 64 20 66 72 6f 6d 20 64 6f 63 75 6d 65 6e 74 2e 22 2c 22 53 63 72 69 70 74 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 65 78 65 63 75 74 65 64 2e 22 29 2c 6e 75 6c 6c 3b 76 61 72 20 63 3d 74 68 69 73 2e 73 65 74 74 69 6e 67 73 2e 62 6c Data Ascii: eScript=function(t){var n=t.script,r=t.placeholder,o=t.external,i=t.async,a=r.parentNode;if(!document.contains(r))return e("Placeholder for script \n"+n.outerHTML+"\n was detached from document.","Script will not be executed."),null;var c=this.settings.bl

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:05 UTC	624	OUT	GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1 Host: static.cloudflareinsights.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://www.cloudflare.com sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 00:16:05 UTC	373	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:05 GMT Content-Type: text/javascript;charset=UTF-8 Content-Length: 19948 Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=86400 ETag: W/"2024.6.1" Last-Modified: Thu, 06 Jun 2024 15:52:56 GMT Cross-Origin-Resource-Policy: cross-origin Server: cloudflare CF-RAY: 90196f73dd018cda-EWR
2025-01-14 00:16:05 UTC	996	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 65 3d 7b 33 34 33 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 6f 72 28 76 61 72 20 74 3d 5b 5d 2c 6e 3d 30 3b 6e 3c 32 35 36 3b 2b 2b 6e 29 74 5b 6e 5d 3d 28 6e 2b 32 35 36 29 2e 74 6f 53 74 72 69 6e 67 28 31 36 29 2e 73 75 62 73 74 72 28 31 29 3b 65 2e 65 78 70 6f 72 74 73 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 29 7b 76 61 72 20 72 3d 6e 7c 7c 30 2c 69 3d 74 3b 72 65 74 75 72 6e 5b 69 5b 65 5b 72 2b 2b 5d 5d 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 22 2d 22 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 22 2d 22 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 69 5b 65 5b 72 2b 2b 5d 5d 2c 22 2d 22 2c 69 5b 65 5b 72 2b Data Ascii: !function(){var e={343:function(e){"use strict";for(var t=[],n=0;n<256;++n)t[n]=(n+256).toString(16).substr(1);e.exports=function(e,n){var r=n\|\|0,i=t;return[i[e[r++]],i[e[r++]],i[e[r++]],i[e[r++]],"-",i[e[r++]],i[e[r++]],"-",i[e[r++]],i[e[r++]],"-",i[e[r+
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 3b 69 66 28 61 5b 36 5d 3d 31 35 26 61 5b 36 5d 7c 36 34 2c 61 5b 38 5d 3d 36 33 26 61 5b 38 5d 7c 31 32 38 2c 74 29 66 6f 72 28 76 61 72 20 63 3d 30 3b 63 3c 31 36 3b 2b 2b 63 29 74 5b 6f 2b 63 5d 3d 61 5b 63 5d 3b 72 65 74 75 72 6e 20 74 7c 7c 69 28 61 29 7d 7d 2c 31 36 38 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 72 3d 74 68 69 73 26 26 74 68 69 73 2e 5f 5f 61 73 73 69 67 6e 7c 7c 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 72 3d 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 7c 7c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 66 6f 72 28 76 61 72 20 74 2c 6e 3d 31 2c 72 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 6e 3c 72 3b 6e 2b 2b 29 66 6f 72 28 76 61 72 20 69 20 69 6e 20 74 3d 61 72 67 Data Ascii: ;if(a[6]=15&a[6]\|64,a[8]=63&a[8]\|128,t)for(var c=0;c<16;++c)t[o+c]=a[c];return t\|\|i(a)}},168:function(e,t,n){"use strict";var r=this&&this.__assign\|\|function(){return r=Object.assign\|\|function(e){for(var t,n=1,r=arguments.length;n<r;n++)for(var i in t=arg
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 72 63 68 50 61 72 61 6d 73 29 7b 76 61 72 20 79 3d 6e 65 77 20 55 52 4c 53 65 61 72 63 68 50 61 72 61 6d 73 28 67 2e 72 65 70 6c 61 63 65 28 2f 5e 5b 5e 5c 3f 5d 2b 5c 3f 3f 2f 2c 22 22 29 29 2c 68 3d 79 2e 67 65 74 28 22 74 6f 6b 65 6e 22 29 3b 68 26 26 28 70 2e 74 6f 6b 65 6e 3d 68 29 3b 76 61 72 20 54 3d 79 2e 67 65 74 28 22 73 70 61 22 29 3b 70 2e 73 70 61 3d 6e 75 6c 6c 3d 3d 3d 54 7c 7c 22 74 72 75 65 22 3d 3d 3d 54 7d 7d 70 26 26 22 6d 75 6c 74 69 22 21 3d 3d 70 2e 6c 6f 61 64 26 26 28 70 2e 6c 6f 61 64 3d 22 73 69 6e 67 6c 65 22 29 2c 77 69 6e 64 6f 77 2e 5f 5f 63 66 42 65 61 63 6f 6e 3d 70 7d 69 66 28 73 26 26 70 26 26 70 2e 74 6f 6b 65 6e 29 7b 76 61 72 20 77 2c 53 2c 62 3d 21 31 3b 64 6f 63 75 6d 65 6e 74 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 Data Ascii: rchParams){var y=new URLSearchParams(g.replace(/^[^\?]+\??/,"")),h=y.get("token");h&&(p.token=h);var T=y.get("spa");p.spa=null===T\|\|"true"===T}}p&&"multi"!==p.load&&(p.load="single"),window.__cfBeacon=p}if(s&&p&&p.token){var w,S,b=!1;document.addEventList
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 2e 74 69 6d 69 6e 67 73 56 32 3d 7b 7d 2c 64 2e 76 65 72 73 69 6f 6e 73 2e 74 69 6d 69 6e 67 73 3d 32 2c 64 2e 64 74 3d 6d 5b 30 5d 2e 64 65 6c 69 76 65 72 79 54 79 70 65 2c 64 65 6c 65 74 65 20 64 2e 74 69 6d 69 6e 67 73 2c 74 28 6d 5b 30 5d 2c 64 2e 74 69 6d 69 6e 67 73 56 32 29 29 7d 31 3d 3d 3d 64 2e 76 65 72 73 69 6f 6e 73 2e 74 69 6d 69 6e 67 73 26 26 74 28 63 2c 64 2e 74 69 6d 69 6e 67 73 29 2c 74 28 75 2c 64 2e 6d 65 6d 6f 72 79 29 7d 65 6c 73 65 20 4f 28 64 29 3b 72 65 74 75 72 6e 20 64 2e 66 69 72 73 74 50 61 69 6e 74 3d 6b 28 22 66 69 72 73 74 2d 70 61 69 6e 74 22 29 2c 64 2e 66 69 72 73 74 43 6f 6e 74 65 6e 74 66 75 6c 50 61 69 6e 74 3d 6b 28 22 66 69 72 73 74 2d 63 6f 6e 74 65 6e 74 66 75 6c 2d 70 61 69 6e 74 22 29 2c 70 26 26 28 70 2e 69 63 Data Ascii: .timingsV2={},d.versions.timings=2,d.dt=m[0].deliveryType,delete d.timings,t(m[0],d.timingsV2))}1===d.versions.timings&&t(c,d.timings),t(u,d.memory)}else O(d);return d.firstPaint=k("first-paint"),d.firstContentfulPaint=k("first-contentful-paint"),p&&(p.ic
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 65 72 65 64 3a 21 30 7d 7d 3b 22 63 6f 6d 70 6c 65 74 65 22 3d 3d 3d 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3f 52 28 29 3a 77 69 6e 64 6f 77 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 77 69 6e 64 6f 77 2e 73 65 74 54 69 6d 65 6f 75 74 28 52 29 7d 29 29 3b 76 61 72 20 41 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 4c 26 26 30 3d 3d 3d 76 2e 66 69 6c 74 65 72 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 2e 69 64 3d 3d 3d 6c 7d 29 29 2e 6c 65 6e 67 74 68 7d 2c 5f 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 2e 70 75 73 68 28 7b 69 64 3a 6c 2c 75 72 6c 3a 65 2c 74 73 3a 28 6e 65 77 20 44 61 74 65 29 2e 67 65 74 54 69 6d 65 Data Ascii: ered:!0}};"complete"===window.document.readyState?R():window.addEventListener("load",(function(){window.setTimeout(R)}));var A=function(){return L&&0===v.filter((function(e){return e.id===l})).length},_=function(e){v.push({id:l,url:e,ts:(new Date).getTime
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 72 63 65 4c 6f 61 64 54 69 6d 65 2c 45 2e 6c 63 70 2e 65 72 64 3d 63 2e 65 6c 65 6d 65 6e 74 52 65 6e 64 65 72 44 65 6c 61 79 2c 45 2e 6c 63 70 2e 69 74 3d 6e 75 6c 6c 3d 3d 3d 28 69 3d 63 2e 6c 63 70 52 65 73 6f 75 72 63 65 45 6e 74 72 79 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 69 3f 76 6f 69 64 20 30 3a 69 2e 69 6e 69 74 69 61 74 6f 72 54 79 70 65 2c 45 2e 6c 63 70 2e 66 70 3d 6e 75 6c 6c 3d 3d 3d 28 61 3d 6e 75 6c 6c 3d 3d 3d 28 6f 3d 63 2e 6c 63 70 45 6e 74 72 79 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 6f 3f 76 6f 69 64 20 30 3a 6f 2e 65 6c 65 6d 65 6e 74 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 61 3f 76 6f 69 64 20 30 3a 61 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 66 65 74 63 68 70 72 69 6f 72 69 74 79 22 29 29 3b 62 72 65 61 6b 3b 63 61 73 65 22 49 4e 50 22 Data Ascii: rceLoadTime,E.lcp.erd=c.elementRenderDelay,E.lcp.it=null===(i=c.lcpResourceEntry)\|\|void 0===i?void 0:i.initiatorType,E.lcp.fp=null===(a=null===(o=c.lcpEntry)\|\|void 0===o?void 0:o.element)\|\|void 0===a?void 0:a.getAttribute("fetchpriority"));break;case"INP"
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 64 65 64 42 6f 64 79 53 69 7a 65 26 26 28 72 2e 64 65 63 6f 64 65 64 42 6f 64 79 53 69 7a 65 3d 6e 5b 30 5d 2e 64 65 63 6f 64 65 64 42 6f 64 79 53 69 7a 65 29 2c 65 2e 64 74 3d 6e 5b 30 5d 2e 64 65 6c 69 76 65 72 79 54 79 70 65 29 2c 74 28 72 2c 65 2e 74 69 6d 69 6e 67 73 56 32 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 6b 28 65 29 7b 76 61 72 20 74 3b 69 66 28 22 66 69 72 73 74 2d 63 6f 6e 74 65 6e 74 66 75 6c 2d 70 61 69 6e 74 22 3d 3d 3d 65 26 26 45 2e 66 63 70 26 26 45 2e 66 63 70 2e 76 61 6c 75 65 29 72 65 74 75 72 6e 20 45 2e 66 63 70 2e 76 61 6c 75 65 3b 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 73 2e 67 65 74 45 6e 74 72 69 65 73 42 79 54 79 70 65 29 7b 76 61 72 20 6e 3d 6e 75 6c 6c 3d 3d 3d 28 74 3d 73 2e 67 65 74 45 6e 74 72 69 Data Ascii: dedBodySize&&(r.decodedBodySize=n[0].decodedBodySize),e.dt=n[0].deliveryType),t(r,e.timingsV2)}}function k(e){var t;if("first-contentful-paint"===e&&E.fcp&&E.fcp.value)return E.fcp.value;if("function"==typeof s.getEntriesByType){var n=null===(t=s.getEntri
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 76 65 6e 74 54 79 70 65 3d 7b 7d 29 29 5b 72 2e 4c 6f 61 64 3d 31 5d 3d 22 4c 6f 61 64 22 2c 72 5b 72 2e 41 64 64 69 74 69 6f 6e 61 6c 3d 32 5d 3d 22 41 64 64 69 74 69 6f 6e 61 6c 22 2c 72 5b 72 2e 57 65 62 56 69 74 61 6c 73 56 32 3d 33 5d 3d 22 57 65 62 56 69 74 61 6c 73 56 32 22 2c 28 6e 3d 74 2e 46 65 74 63 68 50 72 69 6f 72 69 74 79 7c 7c 28 74 2e 46 65 74 63 68 50 72 69 6f 72 69 74 79 3d 7b 7d 29 29 2e 48 69 67 68 3d 22 68 69 67 68 22 2c 6e 2e 4c 6f 77 3d 22 6c 6f 77 22 2c 6e 2e 41 75 74 6f 3d 22 61 75 74 6f 22 7d 2c 31 30 34 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 21 66 75 6e 63 74 69 6f 6e 28 65 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 74 2c 6e 2c 72 2c 69 2c 6f 2c 61 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 77 Data Ascii: ventType={}))[r.Load=1]="Load",r[r.Additional=2]="Additional",r[r.WebVitalsV2=3]="WebVitalsV2",(n=t.FetchPriority\|\|(t.FetchPriority={})).High="high",n.Low="low",n.Auto="auto"},104:function(e,t){!function(e){"use strict";var t,n,r,i,o,a=function(){return w
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 30 3f 72 3d 22 70 72 65 72 65 6e 64 65 72 22 3a 64 6f 63 75 6d 65 6e 74 2e 77 61 73 44 69 73 63 61 72 64 65 64 3f 72 3d 22 72 65 73 74 6f 72 65 22 3a 6e 2e 74 79 70 65 26 26 28 72 3d 6e 2e 74 79 70 65 2e 72 65 70 6c 61 63 65 28 2f 5f 2f 67 2c 22 2d 22 29 29 29 2c 7b 6e 61 6d 65 3a 65 2c 76 61 6c 75 65 3a 76 6f 69 64 20 30 3d 3d 3d 74 3f 2d 31 3a 74 2c 72 61 74 69 6e 67 3a 22 67 6f 6f 64 22 2c 64 65 6c 74 61 3a 30 2c 65 6e 74 72 69 65 73 3a 5b 5d 2c 69 64 3a 22 76 33 2d 22 2e 63 6f 6e 63 61 74 28 44 61 74 65 2e 6e 6f 77 28 29 2c 22 2d 22 29 2e 63 6f 6e 63 61 74 28 4d 61 74 68 2e 66 6c 6f 6f 72 28 38 39 39 39 39 39 39 39 39 39 39 39 39 2a 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 29 2b 31 65 31 32 29 2c 6e 61 76 69 67 61 74 69 6f 6e 54 79 70 65 3a 72 7d 7d 2c Data Ascii: 0?r="prerender":document.wasDiscarded?r="restore":n.type&&(r=n.type.replace(/_/g,"-"))),{name:e,value:void 0===t?-1:t,rating:"good",delta:0,entries:[],id:"v3-".concat(Date.now(),"-").concat(Math.floor(8999999999999*Math.random())+1e12),navigationType:r}},
2025-01-14 00:16:05 UTC	1369	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 76 69 73 69 62 69 6c 69 74 79 63 68 61 6e 67 65 22 2c 62 2c 21 30 29 2c 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 70 72 65 72 65 6e 64 65 72 69 6e 67 63 68 61 6e 67 65 22 2c 62 2c 21 30 29 7d 2c 43 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 77 3c 30 26 26 28 77 3d 53 28 29 2c 45 28 29 2c 6c 28 28 66 75 6e 63 74 69 6f 6e 28 29 7b 73 65 74 54 69 6d 65 6f 75 74 28 28 66 75 6e 63 74 69 6f 6e 28 29 7b 77 3d 53 28 29 2c 45 28 29 7d 29 2c 30 29 7d 29 29 29 2c 7b 67 65 74 20 66 69 72 73 74 48 69 64 64 65 6e 54 69 6d 65 28 29 7b 72 65 74 75 72 6e 20 77 7d 7d 7d 2c 50 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 64 6f 63 75 6d 65 6e 74 2e 70 Data Ascii: function(){removeEventListener("visibilitychange",b,!0),removeEventListener("prerenderingchange",b,!0)},C=function(){return w<0&&(w=S(),E(),l((function(){setTimeout((function(){w=S(),E()}),0)}))),{get firstHiddenTime(){return w}}},P=function(e){document.p

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:05 UTC	603	OUT	GET /img/learning/security/threats/phishing-attack/diagram-phishing-attack.png HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=rqAys_bxt3IGB8uJqBfQLACHegv2fs3Q6.105Bcr6SI-1736813764-1.0.1.1-uSIEstn1OUl2WDQRfFlWNkysYETxEbUnmNm6ipfwOeJNg3Yvcao3k_AMiZS_dzpfNCtpUZcWSn8Thdf1qjmhj8eBCu2QSZZvGNswyCRruTE
2025-01-14 00:16:06 UTC	909	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:05 GMT Content-Type: image/png Content-Length: 34038 Connection: close Accept-Ranges: bytes ETag: "f881ce0909c7585c5f12986f7499f9db" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KcIKEWhbQK4PGP3HNeaU25MoIxpPPRxOUHOGn3zS%2FcVs3y3eCO1xjaoRSqBRrjAd4TWYCx0i95i%2FwU1%2FGgtiVLgSjEviu5EK%2BkJTwMHH5kzJtTtIGYcc1rWhquvj3GT2%2BBf2Zg%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f7538d8c344-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 00:16:06 UTC	460	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 08 73 00 00 04 68 08 03 00 00 00 bb 00 fa da 00 00 01 b6 50 4c 54 45 ff ff ff 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 8a c5 e3 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 71 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff f0 f0 f0 df df e0 c5 c4 c6 be bd bf ab ac ae 99 9c 9e 9f a1 a3 cb ca cb f7 f8 f8 ff Data Ascii: PNGIHDRshPLTEqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqq
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: e9 e6 e8 e9 e6 e8 e9 e6 e8 e9 e6 e8 e9 e6 e8 e9 e6 e8 e9 54 2b 19 33 00 00 00 92 74 52 4e 53 00 bb ff 44 22 77 88 dd ee 11 66 99 aa cc 55 33 20 40 50 80 60 90 e0 ff 10 a0 30 f0 d0 70 b0 c0 20 70 c0 a0 60 30 80 b0 90 d0 10 f0 e0 40 50 40 30 60 80 c0 ff f0 b0 50 20 e0 a0 10 d0 90 ff ff ff ff ff ff ff ff ff 70 ff ff ff ff ff 40 a0 d0 ff f0 c0 60 ff 10 b0 30 e0 ff 20 80 50 70 90 ff ff ff ff ff ff ff ff ff ff ff ff c4 f3 ff 88 98 f8 fd ff ff 3d b2 ff ff ff ff ff ff fc 2e 88 e6 f3 ff ff ff ff ff dc d8 97 40 ff 30 c0 20 80 10 60 90 e1 90 d0 0d 00 00 82 5d 49 44 41 54 78 01 ec d6 05 01 00 30 0c 00 a0 59 ff cc 8f 71 83 14 04 e7 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b2 aa e3 1c 53 55 f1 01 00 70 0e e7 00 80 Data Ascii: T+3tRNSD"wfU3 @P`0p p`0@P@0`P p@`0 Pp=.@0 `]IDATx0YqSUp
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: d2 39 68 6d 61 40 dc 09 9c 93 af 10 a6 56 d7 b5 a9 73 bc 89 88 88 c8 04 ab dd 64 f0 f3 15 e1 30 7f 1b 0c 54 83 0d 60 5f f6 1c 75 0e db ea 36 b3 b2 70 ea 5e ee 1c 63 8d 0a 02 82 4e 30 51 b9 2d 10 a6 56 d7 b5 a9 73 bc 89 88 88 c8 0a 53 fc 24 8b 67 60 d9 be 0f 76 07 18 7d 37 db a0 a9 30 03 07 df ec d6 39 6c 00 f6 da 4d 3c 7f ee 3e fd 7a 0f a9 3b 1f 06 b7 2a 0a 08 3a 41 f1 0c fc c3 9e 5d e0 48 12 02 00 14 a5 dd 5d a8 f6 fb 9f 72 dd 97 11 32 30 fa 5e 3c 55 58 8c 9f 30 e8 75 c3 ef 84 48 cd fa 4b ea 6c 9a 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3e 8c e5 6a bd f9 d0 b6 ab 65 00 00 ea 5a ee f6 91 b8 df 2d 03 00 50 4d b3 8b fc 70 68 02 00 50 c7 71 1f 7f e1 b4 0a 00 40 0d c7 53 e4 4f db 50 16 d0 6a b7 c7 f5 e7 03 24 c7 9b 73 0c Data Ascii: 9hma@Vsd0T`_u6p^cN0Q-VsS$g`v}709lM<>z;*:A]H]r20^<UX0uHKl>jeZ-PMphPq@SOPj$s
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 2d 0d df 6d 71 d1 ea 69 e7 b0 e9 0d 17 dd 68 80 ce 34 2a 01 68 64 24 9d 83 10 3a 07 9d 83 3c c4 1e b3 9c de 8e 3b b1 9c 5f df 31 cf 51 b6 86 de 3e 91 bd 5f fe 3e 87 2f c9 b1 cc 39 2a 00 99 9f 1b 7f de 8a af 8e 3a 87 4d 6f 70 70 97 7f 03 f6 79 2b 76 24 9d 83 10 3a 07 9d 83 3c cc 19 cb f8 78 7b fd 73 96 2b bb f3 f1 d7 7e e9 c1 6d 3e 57 b6 ee e4 93 4c 6b e8 d2 2d eb 06 4f d0 16 0b 9d 23 03 d0 7e 9d be 74 68 fd 53 5d 1b 00 85 c4 ab ad 73 4c a7 37 e4 40 3d 7d cb 24 73 c3 93 6d 33 6d d4 8c a4 73 10 42 e7 a0 73 90 47 d8 e3 d9 1c 65 6b 64 05 46 96 3b 87 62 a4 6e a3 ce e1 69 86 7a 33 b7 c8 24 5e 6d 9d 63 3a bd a1 07 e0 ab 6f 1b a5 e6 a4 1f 49 e7 20 84 ce 41 e7 20 8f b1 c3 d3 d9 cb e6 28 1b 8c a4 8b b7 6c 8e 81 5c f2 65 ce 51 b6 81 45 84 73 93 52 2c 65 3b ef 1c 36 Data Ascii: -mqih4hd$:<;_1Q>_>/9:Moppy+v$:<x{s+~m>WLk-O#~thS]sL7@=}$sm3msBsGekdF;bniz3$^mc:oI A (l\eQEsR,e;6
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 9c 58 3d 9c 9c f3 16 6b db a4 25 a8 df 56 95 7b a8 13 80 b2 e6 08 cb df ac 4c b0 9e 26 a4 6f 57 02 68 0e 49 50 32 46 cb 24 df 5a aa b4 16 c7 b1 25 c8 54 c7 8e 9e d1 01 77 55 0f dc 10 80 b2 e6 88 48 1f 3f 44 13 ac a7 88 f4 6f 8a a1 39 c0 e7 0f 65 85 a2 16 c9 71 75 62 49 b8 fc 85 e8 d0 dc 7d d5 0b 35 02 50 d5 1c 61 f9 31 8b 10 eb 23 2c 9d 09 01 34 07 f8 fc a1 ac 90 f3 7f 72 9c fe b0 24 1d 22 3a f4 f6 f3 3d 09 ee eb ea a2 a6 56 7d f3 48 00 8a 9a 23 22 5b 0c e2 8f f6 10 91 7e 20 13 42 73 80 8c b2 31 72 25 df 27 c7 fe b1 25 ed f2 17 a2 43 67 ef d3 1c 3f 49 9d a7 ea 1f ae 09 40 4d 73 04 a5 83 81 26 58 5f 71 ea 29 ee ec e9 0a 9a 03 32 c6 e8 2d 90 0f 6d ef 70 e1 4f 96 13 c7 57 5c 58 23 d0 8d ea 79 8b 9b 2a 9a 03 94 36 c7 b4 fc 31 c7 24 eb 6b 52 fa dd 4b 18 cd 01 Data Ascii: X=k%V{L&oWhIP2F$Z%TwUH?Do9equbI}5Pa1#,4r$":=V}H#"[~ Bs1r%'%Cg?I@Ms&X_q)2-mpOW\X#y*61$kRK
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: fc 7e 34 87 4b 60 d6 f0 b3 b2 2f 9e ad 1c 59 12 fe 22 9a 43 62 88 f4 0e fc e9 55 b2 39 1c bd 99 b5 ff a8 5c 73 34 ee c0 e7 fe e3 3f d5 45 87 f2 e6 50 af fb f2 73 34 07 2c 18 be 56 2a f8 61 0b a9 e5 56 73 1c f1 0f 55 f0 a7 3b e9 e6 b0 4b 42 7e 2d 87 64 73 5c 57 41 2b ce a3 03 cd 81 e6 c0 cd 8a 4f cd a1 39 c0 97 cd 61 0f 69 c8 ae e5 40 73 20 3a 34 6d 0e dc ad a8 87 9b 15 dc ae 28 68 0e f1 58 f6 bf aa a0 7d 73 d0 cf 66 74 5c 4b ac e5 78 22 34 07 a2 c3 b7 33 a4 68 0e c0 cd 8a 50 2a e8 df 1c 36 fd 9b 03 cd 61 7f 7a 45 b8 ef bb 96 a3 5a 7b 46 73 a0 39 7c f1 56 56 bd 28 9a 43 02 6e 56 70 bb 82 e6 00 f9 e6 b8 7e a8 da 5e 7a ac e5 10 5e 31 cf 81 e4 18 51 73 44 a8 9f f8 54 2a c2 64 24 63 e1 28 76 82 c1 a0 f2 86 06 66 bf 51 73 1c 7f 93 e6 40 73 3c 55 db dc f4 98 f8 Data Ascii: ~4K`/Y"CbU9\s4?EPs4,VaVsU;KB~-ds\WA+O9ai@s :4m(hX}sft\Kx"43hP6azEZ{Fs9\|VV(CnVp~^z^1QsDT*d$c(vfQs@s<U
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: e2 19 68 ac 24 eb c1 14 e9 2f b7 8e 39 16 49 43 68 8e 57 72 db 13 9a 03 94 37 87 dd 00 21 97 97 73 74 6e 99 08 13 02 68 8e 31 53 28 0d 32 4d 91 27 5b 3a 97 9d f7 a2 37 cc 32 09 83 4e 94 98 a4 cc 76 45 fe e9 8a cc a3 95 55 d2 0f 9a a3 a6 a2 0a 1a 0f 68 0e 50 dc 1c 51 26 24 a2 6a 9a 23 d8 39 14 a6 09 cd 31 66 e6 8c 81 94 66 d2 d4 a2 b0 60 66 8a 86 2a f3 d9 99 3c b5 5a c8 0e f8 cb ca a4 cc 0a ff 70 7a 62 0d e1 88 e3 98 43 43 f6 07 e8 55 a8 bf a2 39 40 6d 73 50 8c 09 21 0f 9a 23 c5 84 30 9a 63 cc 94 87 28 01 71 da 21 a4 17 cc d9 79 c3 55 c5 cc dc 4c 99 da 14 06 09 0e 21 43 ca 6c 6f ba 30 46 7a bc 87 63 0e 1d 89 a5 1c aa 3c d7 d0 1c a0 b4 39 e2 ad 07 1d aa 9b c3 ee 84 08 a1 39 c6 cc ec 90 2f 48 72 05 fa 22 bf 60 66 5d 38 f3 98 cf 98 33 e5 df 7f f8 4c c6 18 4a Data Ascii: h$/9IChWr7!stnh1S(2M'[:72NvEUhPQ&$j#91ff`f*<ZpzbCCU9@msP!#0c(q!yUL!Clo0Fzc<99/Hr"`f]83LJ
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 63 63 be be ba ea 9c 00 00 cd 31 9a cd 2a 19 c1 7e 29 43 d0 1c 28 bf 76 77 b4 79 91 0a 00 d0 1c 23 db 1d 92 6b 6d 37 42 73 20 a6 3b da 2f 39 df a0 37 00 d0 1c b7 b2 5c 27 d7 38 cc 24 12 cd 81 b4 ab ac f9 32 da a3 7a 01 00 9a e3 86 36 8b 7d 12 6b 3d 93 eb d0 1c 28 0b b5 8d f9 b7 ea a3 7a 27 03 00 00 cd 11 5b 1d 71 b3 8e c3 5c 46 41 73 c0 79 cd ff 49 79 b4 56 0b 2f 11 00 80 e6 88 b4 7c 4e 86 da ce 24 0e cd 01 0d 1f 0b 71 be 50 6b cd a7 68 6c ae 5d 19 9c bb e4 ad 17 00 a0 39 6e 67 b7 dd 27 97 5b bf 3c 49 2c 9a 03 6a 4e ea 3c 2b 25 c4 f9 4e 2b 6b 6f d5 1a 47 cd fc b9 2f fe b6 cc e3 05 00 68 8e 9b 9a 5f 98 1d eb d5 4e ae 45 73 d0 1c ef 6c 55 94 72 4e e9 3b d5 dc 8e b0 e8 52 5b 5b 69 e6 bd eb 59 dc f9 e5 1c 8d 17 00 a0 39 6e 6d b6 38 24 bd f6 af 23 4e 38 68 0e Data Ascii: cc1*~)C(vwy#km7Bs ;/97\'8$2z6}k=(z'[q\FAsyIyV/\|N$qPkhl]9ng'[<I,jN<+%N+koG/h_NEslUrN;R[[iY9nm8$#N8h
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: b3 cc f1 d7 00 a8 b1 ea cb 46 1f ab 2a 73 fc 1e f4 71 37 fe 35 99 03 80 25 56 73 2b 87 fc 9e d9 0a d4 b8 eb fa c6 85 b9 da 5e fa f3 32 07 80 e1 ca 18 37 87 e7 ef 06 cd 4d 3f bf 0b 5e 76 88 7f 5c 1b 19 b9 ee 97 fe 88 cc 01 40 8d 9b ae 35 5a 79 e0 d3 9a 3e 24 a7 b8 19 bb 46 16 38 7f ac b5 f3 1f 9b 39 00 0c 57 ae b1 ea cb 43 b9 e9 c3 67 e6 e0 79 6c d4 61 f7 b1 d6 ba 3f 2b 73 00 18 ae 9c 1b a3 95 87 72 d3 87 cf 2c c9 be c6 87 c2 9a 5b 4b 32 c7 9f 0a 30 5c e9 bb 97 9a f8 cf 37 7d 48 96 b8 99 4a ff fd df 7f 5d 63 ab bd b4 3a d6 21 56 b5 96 9d 63 3d c4 cd 54 af cd cc 31 ec 36 cc cc f5 12 ff d7 d5 79 9f 53 d6 85 eb ed 6c 43 01 e0 19 a7 58 2d 39 42 44 9f fb 71 bb 65 b7 9b 7e 7e d7 70 4f 24 c7 fa ad 77 1f cb aa 8e eb 41 b5 2f b0 55 ef 21 76 8a 9b 53 f9 6e 39 44 d2 Data Ascii: F*sq75%Vs+^27M?^v\@5Zy>$F89WCgyla?+sr,[K20\7}HJ]c:!Vc=T16ySlCX-9BDqe~~pO$wA/U!vSn9D
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ff 63 ef 5e d6 93 68 ba 36 8e af 8b f9 77 0e 1a 4d 34 31 09 20 ab 25 6c c2 ae a1 03 05 c3 4c 18 69 e2 93 3c ea ec 8b ef 7e 73 ee af 5a 80 a0 49 ba a0 2b 5a 74 fe bf 63 e0 ea eb a6 6a d5 ba 4f 8a d5 d7 56 b5 78 22 00 00 00 de 95 ce ea 4d 5d d5 ac 9f 95 04 00 00 c0 9b 6a bd a6 b7 8b ea 55 01 00 00 f0 e0 e4 34 d2 fb 44 f5 92 64 03 00 00 50 ac 68 ba 4a 51 00 78 00 00 24 8e 34 cd a2 00 d8 0c 00 e0 a4 a2 ee 2a 25 01 00 00 d8 c0 6b bd 45 ab fd d5 54 6f f1 5a 00 00 00 d6 55 6a ea aa d6 b0 db 8b cd 5c dc eb Data Ascii: c^h6wM41 %lLi<~sZI+ZtcjOVx"M]jU4DdPhJQx$4*%kEToZUj\

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:06 UTC	791	OUT	GET /webpack-runtime-4c72ecef988f809df573.js HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/learning/access-management/phishing-attack/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=rqAys_bxt3IGB8uJqBfQLACHegv2fs3Q6.105Bcr6SI-1736813764-1.0.1.1-uSIEstn1OUl2WDQRfFlWNkysYETxEbUnmNm6ipfwOeJNg3Yvcao3k_AMiZS_dzpfNCtpUZcWSn8Thdf1qjmhj8eBCu2QSZZvGNswyCRruTE
2025-01-14 00:16:06 UTC	954	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:06 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: close Cache-Control: public, max-age=0, must-revalidate ETag: W/"5dcec89203fd54497452872ce8969b2f" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XL%2FejbUVnupXoNZ4JJ4cKnUNwTcXT3gJZJgSojNxp1CYYj98UeIuCvVXcEdF32XB7yyC%2FTU0Z7wTOXnwc6ky075Bv6xmFPePqRjGGpRVXIyvfTruuYHDjM%2BLQ8vDEeWtwCk2sw%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f77cc5a0f95-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 00:16:06 UTC	415	IN	Data Raw: 31 38 65 33 0d 0a 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 65 2c 74 2c 6e 2c 72 2c 6f 2c 63 3d 7b 7d 2c 61 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 73 28 65 29 7b 76 61 72 20 74 3d 61 5b 65 5d 3b 69 66 28 76 6f 69 64 20 30 21 3d 3d 74 29 72 65 74 75 72 6e 20 74 2e 65 78 70 6f 72 74 73 3b 76 61 72 20 6e 3d 61 5b 65 5d 3d 7b 69 64 3a 65 2c 6c 6f 61 64 65 64 3a 21 31 2c 65 78 70 6f 72 74 73 3a 7b 7d 7d 3b 72 65 74 75 72 6e 20 63 5b 65 5d 2e 63 61 6c 6c 28 6e 2e 65 78 70 6f 72 74 73 2c 6e 2c 6e 2e 65 78 70 6f 72 74 73 2c 73 29 2c 6e 2e 6c 6f 61 64 65 64 3d 21 30 2c 6e 2e 65 78 70 6f 72 74 73 7d 73 2e 6d 3d 63 2c 65 3d 5b 5d 2c 73 2e 4f 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 6e 2c 72 2c 6f 29 7b 69 66 28 21 6e 29 7b 76 Data Ascii: 18e3!function(){"use strict";var e,t,n,r,o,c={},a={};function s(e){var t=a[e];if(void 0!==t)return t.exports;var n=a[e]={id:e,loaded:!1,exports:{}};return c[e].call(n.exports,n,n.exports,s),n.loaded=!0,n.exports}s.m=c,e=[],s.O=function(t,n,r,o){if(!n){v
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 5b 64 5d 29 7d 29 29 3f 6e 2e 73 70 6c 69 63 65 28 64 2d 2d 2c 31 29 3a 28 61 3d 21 31 2c 6f 3c 63 26 26 28 63 3d 6f 29 29 3b 69 66 28 61 29 7b 65 2e 73 70 6c 69 63 65 28 69 2d 2d 2c 31 29 3b 76 61 72 20 66 3d 72 28 29 3b 76 6f 69 64 20 30 21 3d 3d 66 26 26 28 74 3d 66 29 7d 7d 72 65 74 75 72 6e 20 74 7d 6f 3d 6f 7c 7c 30 3b 66 6f 72 28 76 61 72 20 69 3d 65 2e 6c 65 6e 67 74 68 3b 69 3e 30 26 26 65 5b 69 2d 31 5d 5b 32 5d 3e 6f 3b 69 2d 2d 29 65 5b 69 5d 3d 65 5b 69 2d 31 5d 3b 65 5b 69 5d 3d 5b 6e 2c 72 2c 6f 5d 7d 2c 73 2e 6e 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 65 26 26 65 2e 5f 5f 65 73 4d 6f 64 75 6c 65 3f 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 65 2e 64 65 66 61 75 6c 74 7d 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 Data Ascii: [d])}))?n.splice(d--,1):(a=!1,o<c&&(c=o));if(a){e.splice(i--,1);var f=r();void 0!==f&&(t=f)}}return t}o=o\|\|0;for(var i=e.length;i>0&&e[i-1][2]>o;i--)e[i]=e[i-1];e[i]=[n,r,o]},s.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){re
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 65 2d 74 73 78 22 2c 32 35 33 3a 22 61 30 36 63 66 66 39 33 34 65 39 35 37 39 35 33 36 63 65 31 63 31 30 62 61 64 32 31 63 31 64 36 64 37 66 36 33 61 65 30 22 2c 32 38 35 3a 22 63 6f 6d 70 6f 6e 65 6e 74 2d 2d 2d 73 72 63 2d 63 6f 6d 70 6f 6e 65 6e 74 73 2d 64 65 6d 6f 2d 70 61 67 65 73 2d 61 72 69 61 2d 6c 61 62 65 6c 73 2d 61 72 69 61 2d 6c 61 62 65 6c 73 2d 74 73 78 22 2c 32 39 37 3a 22 63 6f 6d 70 6f 6e 65 6e 74 2d 2d 2d 73 72 63 2d 63 6f 6d 70 6f 6e 65 6e 74 73 2d 70 61 67 65 2d 70 61 67 65 2d 74 65 6d 70 6c 61 74 65 2d 74 73 78 22 2c 33 30 39 3a 22 38 64 32 36 37 37 38 34 38 61 64 63 31 38 36 61 37 66 61 34 66 38 33 38 65 61 66 38 61 34 36 30 31 33 35 61 32 32 66 34 22 2c 33 32 38 3a 22 63 6f 6d 70 6f 6e 65 6e 74 2d 2d 2d 73 72 63 2d 63 6f 6d 70 6f Data Ascii: e-tsx",253:"a06cff934e9579536ce1c10bad21c1d6d7f63ae0",285:"component---src-components-demo-pages-aria-labels-aria-labels-tsx",297:"component---src-components-page-page-template-tsx",309:"8d2677848adc186a7fa4f838eaf8a460135a22f4",328:"component---src-compo
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 31 66 62 38 35 35 31 65 36 66 64 62 30 31 32 22 2c 39 32 3a 22 37 61 36 33 62 32 39 31 35 61 32 33 64 33 30 65 64 65 30 35 22 2c 39 38 3a 22 63 35 36 38 64 66 66 64 64 63 65 34 36 64 30 64 64 37 66 33 22 2c 31 32 34 3a 22 33 31 36 33 37 64 38 61 62 38 62 31 35 34 38 37 65 34 63 31 22 2c 31 36 36 3a 22 36 64 35 32 39 31 64 33 34 37 33 35 32 65 32 62 65 65 62 38 22 2c 31 37 34 3a 22 32 34 32 37 37 32 65 66 31 30 64 38 64 31 36 31 61 65 32 34 22 2c 32 32 33 3a 22 31 65 62 32 30 30 36 35 34 37 34 36 65 31 33 66 30 32 34 33 22 2c 32 35 33 3a 22 39 30 34 38 34 64 62 34 36 30 32 64 34 30 31 64 39 34 63 61 22 2c 32 37 38 3a 22 63 64 39 64 34 34 30 39 39 31 31 35 65 30 32 30 37 35 34 62 22 2c 32 38 35 3a 22 39 35 66 61 34 32 64 39 36 36 32 62 34 35 64 30 31 61 34 Data Ascii: 1fb8551e6fdb012",92:"7a63b2915a23d30ede05",98:"c568dffddce46d0dd7f3",124:"31637d8ab8b15487e4c1",166:"6d5291d347352e2beeb8",174:"242772ef10d8d161ae24",223:"1eb200654746e13f0243",253:"90484db4602d401d94ca",278:"cd9d44099115e020754b",285:"95fa42d9662b45d01a4
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 30 21 3d 3d 6e 29 66 6f 72 28 76 61 72 20 66 3d 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 28 22 73 63 72 69 70 74 22 29 2c 69 3d 30 3b 69 3c 66 2e 6c 65 6e 67 74 68 3b 69 2b 2b 29 7b 76 61 72 20 75 3d 66 5b 69 5d 3b 69 66 28 75 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 73 72 63 22 29 3d 3d 65 7c 7c 75 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 64 61 74 61 2d 77 65 62 70 61 63 6b 22 29 3d 3d 6f 2b 6e 29 7b 61 3d 75 3b 62 72 65 61 6b 7d 7d 61 7c 7c 28 64 3d 21 30 2c 28 61 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 73 63 72 69 70 74 22 29 29 2e 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 2c 61 2e 74 69 6d 65 6f 75 74 3d 31 32 30 2c 73 2e 6e 63 26 26 61 2e 73 65 74 41 74 74 72 Data Ascii: 0!==n)for(var f=document.getElementsByTagName("script"),i=0;i<f.length;i++){var u=f[i];if(u.getAttribute("src")==e\|\|u.getAttribute("data-webpack")==o+n){a=u;break}}a\|\|(d=!0,(a=document.createElement("script")).charset="utf-8",a.timeout=120,s.nc&&a.setAttr
2025-01-14 00:16:06 UTC	488	IN	Data Raw: 6e 6b 4c 6f 61 64 45 72 72 6f 72 22 2c 61 2e 74 79 70 65 3d 6f 2c 61 2e 72 65 71 75 65 73 74 3d 63 2c 72 5b 31 5d 28 61 29 7d 7d 29 2c 22 63 68 75 6e 6b 2d 22 2b 74 2c 74 29 7d 7d 2c 73 2e 4f 2e 6a 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 30 3d 3d 3d 65 5b 74 5d 7d 3b 76 61 72 20 74 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 6e 29 7b 76 61 72 20 72 2c 6f 2c 63 3d 6e 5b 30 5d 2c 61 3d 6e 5b 31 5d 2c 64 3d 6e 5b 32 5d 2c 66 3d 30 3b 69 66 28 63 2e 73 6f 6d 65 28 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 30 21 3d 3d 65 5b 74 5d 7d 29 29 29 7b 66 6f 72 28 72 20 69 6e 20 61 29 73 2e 6f 28 61 2c 72 29 26 26 28 73 2e 6d 5b 72 5d 3d 61 5b 72 5d 29 3b 69 66 28 64 29 76 61 72 20 69 3d 64 28 73 29 7d 66 6f 72 28 74 26 26 74 28 6e 29 3b Data Ascii: nkLoadError",a.type=o,a.request=c,r[1](a)}}),"chunk-"+t,t)}},s.O.j=function(t){return 0===e[t]};var t=function(t,n){var r,o,c=n[0],a=n[1],d=n[2],f=0;if(c.some((function(t){return 0!==e[t]}))){for(r in a)s.o(a,r)&&(s.m[r]=a[r]);if(d)var i=d(s)}for(t&&t(n);
2025-01-14 00:16:06 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:06 UTC	785	OUT	GET /framework-957a522640f43541ca6a.js HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/learning/access-management/phishing-attack/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=rqAys_bxt3IGB8uJqBfQLACHegv2fs3Q6.105Bcr6SI-1736813764-1.0.1.1-uSIEstn1OUl2WDQRfFlWNkysYETxEbUnmNm6ipfwOeJNg3Yvcao3k_AMiZS_dzpfNCtpUZcWSn8Thdf1qjmhj8eBCu2QSZZvGNswyCRruTE
2025-01-14 00:16:06 UTC	909	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:06 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: close ETag: W/"d711fa5a10b8d800843871fd03aeef22" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=52ZZ%2FvKeH6Yjzbjvt8Z0bVKWKWf9w4hKBWq41O0CX5lD0NE%2FWhIv1vEwAa8fuELXKv%2F5zIS8AbvB%2Bp9B9yxG5j7rone6D5tvztaamIEZxx%2FOPHg7QejA%2Fm0Kk3WJS31YKP5kaQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f77ccbe19c7-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 37 66 66 32 0d 0a 2f 2a 21 20 46 6f 72 20 6c 69 63 65 6e 73 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 73 65 65 20 66 72 61 6d 65 77 6f 72 6b 2d 39 35 37 61 35 32 32 36 34 30 66 34 33 35 34 31 63 61 36 61 2e 6a 73 2e 4c 49 43 45 4e 53 45 2e 74 78 74 20 2a 2f 0a 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 63 6c 6f 75 64 66 6c 61 72 65 5f 6d 72 6b 65 6e 67 5f 72 65 64 77 6f 6f 64 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 63 6c 6f 75 64 66 6c 61 72 65 5f 6d 72 6b 65 6e 67 5f 72 65 64 77 6f 6f 64 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 35 39 33 5d 2c 7b 32 36 39 34 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 2c 74 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 72 3d 74 28 36 39 32 35 29 3b 66 75 6e 63 74 69 Data Ascii: 7ff2/! For license information please see framework-957a522640f43541ca6a.js.LICENSE.txt /(self.webpackChunk_cloudflare_mrkeng_redwood=self.webpackChunk_cloudflare_mrkeng_redwood\|\|[]).push([[593],{2694:function(e,n,t){"use strict";var r=t(6925);functi
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 6e 67 73 2e 22 7d 76 61 72 20 6f 3d 6e 65 77 20 53 65 74 2c 75 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 69 28 65 2c 6e 29 7b 73 28 65 2c 6e 29 2c 73 28 65 2b 22 43 61 70 74 75 72 65 22 2c 6e 29 7d 66 75 6e 63 74 69 6f 6e 20 73 28 65 2c 6e 29 7b 66 6f 72 28 75 5b 65 5d 3d 6e 2c 65 3d 30 3b 65 3c 6e 2e 6c 65 6e 67 74 68 3b 65 2b 2b 29 6f 2e 61 64 64 28 6e 5b 65 5d 29 7d 76 61 72 20 63 3d 21 28 22 75 6e 64 65 66 69 6e 65 64 22 3d 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 7c 7c 76 6f 69 64 20 30 3d 3d 3d 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 7c 7c 76 6f 69 64 20 30 3d 3d 3d 77 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 29 2c 66 3d 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 2e 68 61 73 4f 77 6e 50 72 6f 70 65 Data Ascii: ngs."}var o=new Set,u={};function i(e,n){s(e,n),s(e+"Capture",n)}function s(e,n){for(u[e]=n,e=0;e<n.length;e++)o.add(n[e])}var c=!("undefined"==typeof window\|\|void 0===window.document\|\|void 0===window.document.createElement),f=Object.prototype.hasOwnPrope
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 6f 75 72 63 65 73 52 65 71 75 69 72 65 64 22 2c 22 66 6f 63 75 73 61 62 6c 65 22 2c 22 70 72 65 73 65 72 76 65 41 6c 70 68 61 22 5d 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 5b 65 5d 3d 6e 65 77 20 68 28 65 2c 32 2c 21 31 2c 65 2c 6e 75 6c 6c 2c 21 31 2c 21 31 29 7d 29 29 2c 22 61 6c 6c 6f 77 46 75 6c 6c 53 63 72 65 65 6e 20 61 73 79 6e 63 20 61 75 74 6f 46 6f 63 75 73 20 61 75 74 6f 50 6c 61 79 20 63 6f 6e 74 72 6f 6c 73 20 64 65 66 61 75 6c 74 20 64 65 66 65 72 20 64 69 73 61 62 6c 65 64 20 64 69 73 61 62 6c 65 50 69 63 74 75 72 65 49 6e 50 69 63 74 75 72 65 20 64 69 73 61 62 6c 65 52 65 6d 6f 74 65 50 6c 61 79 62 61 63 6b 20 66 6f 72 6d 4e 6f 56 61 6c 69 64 61 74 65 20 68 69 64 64 65 6e 20 6c 6f 6f 70 20 6e 6f 4d 6f 64 75 6c Data Ascii: ourcesRequired","focusable","preserveAlpha"].forEach((function(e){v[e]=new h(e,2,!1,e,null,!1,!1)})),"allowFullScreen async autoFocus autoPlay controls default defer disabled disablePictureInPicture disableRemotePlayback formNoValidate hidden loop noModul
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 74 75 72 6e 20 69 73 4e 61 4e 28 6e 29 7c 7c 31 3e 6e 7d 72 65 74 75 72 6e 21 31 7d 28 6e 2c 74 2c 6c 2c 72 29 26 26 28 74 3d 6e 75 6c 6c 29 2c 72 7c 7c 6e 75 6c 6c 3d 3d 3d 6c 3f 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 21 21 66 2e 63 61 6c 6c 28 6d 2c 65 29 7c 7c 21 66 2e 63 61 6c 6c 28 70 2c 65 29 26 26 28 64 2e 74 65 73 74 28 65 29 3f 6d 5b 65 5d 3d 21 30 3a 28 70 5b 65 5d 3d 21 30 2c 21 31 29 29 7d 28 6e 29 26 26 28 6e 75 6c 6c 3d 3d 3d 74 3f 65 2e 72 65 6d 6f 76 65 41 74 74 72 69 62 75 74 65 28 6e 29 3a 65 2e 73 65 74 41 74 74 72 69 62 75 74 65 28 6e 2c 22 22 2b 74 29 29 3a 6c 2e 6d 75 73 74 55 73 65 50 72 6f 70 65 72 74 79 3f 65 5b 6c 2e 70 72 6f 70 65 72 74 79 4e 61 6d 65 5d 3d 6e 75 6c 6c 3d 3d 3d 74 3f 33 21 3d 3d 6c 2e 74 79 70 65 Data Ascii: turn isNaN(n)\|\|1>n}return!1}(n,t,l,r)&&(t=null),r\|\|null===l?function(e){return!!f.call(m,e)\|\|!f.call(p,e)&&(d.test(e)?m[e]=!0:(p[e]=!0,!1))}(n)&&(null===t?e.removeAttribute(n):e.setAttribute(n,""+t)):l.mustUseProperty?e[l.propertyName]=null===t?3!==l.type
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 61 6e 67 69 6e 67 20 76 2d 69 64 65 6f 67 72 61 70 68 69 63 20 76 2d 6d 61 74 68 65 6d 61 74 69 63 61 6c 20 76 65 63 74 6f 72 2d 65 66 66 65 63 74 20 76 65 72 74 2d 61 64 76 2d 79 20 76 65 72 74 2d 6f 72 69 67 69 6e 2d 78 20 76 65 72 74 2d 6f 72 69 67 69 6e 2d 79 20 77 6f 72 64 2d 73 70 61 63 69 6e 67 20 77 72 69 74 69 6e 67 2d 6d 6f 64 65 20 78 6d 6c 6e 73 3a 78 6c 69 6e 6b 20 78 2d 68 65 69 67 68 74 22 2e 73 70 6c 69 74 28 22 20 22 29 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 6e 3d 65 2e 72 65 70 6c 61 63 65 28 67 2c 79 29 3b 76 5b 6e 5d 3d 6e 65 77 20 68 28 6e 2c 31 2c 21 31 2c 65 2c 6e 75 6c 6c 2c 21 31 2c 21 31 29 7d 29 29 2c 22 78 6c 69 6e 6b 3a 61 63 74 75 61 74 65 20 78 6c 69 6e 6b 3a 61 72 63 72 6f 6c 65 20 78 Data Ascii: anging v-ideographic v-mathematical vector-effect vert-adv-y vert-origin-x vert-origin-y word-spacing writing-mode xmlns:xlink x-height".split(" ").forEach((function(e){var n=e.replace(g,y);v[n]=new h(n,1,!1,e,null,!1,!1)})),"xlink:actuate xlink:arcrole x
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 66 66 73 63 72 65 65 6e 22 29 3b 53 79 6d 62 6f 6c 2e 66 6f 72 28 22 72 65 61 63 74 2e 6c 65 67 61 63 79 5f 68 69 64 64 65 6e 22 29 2c 53 79 6d 62 6f 6c 2e 66 6f 72 28 22 72 65 61 63 74 2e 63 61 63 68 65 22 29 2c 53 79 6d 62 6f 6c 2e 66 6f 72 28 22 72 65 61 63 74 2e 74 72 61 63 69 6e 67 5f 6d 61 72 6b 65 72 22 29 3b 76 61 72 20 4d 3d 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 3b 66 75 6e 63 74 69 6f 6e 20 46 28 65 29 7b 72 65 74 75 72 6e 20 6e 75 6c 6c 3d 3d 3d 65 7c 7c 22 6f 62 6a 65 63 74 22 21 3d 74 79 70 65 6f 66 20 65 3f 6e 75 6c 6c 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 28 65 3d 4d 26 26 65 5b 4d 5d 7c 7c 65 5b 22 40 40 69 74 65 72 61 74 6f 72 22 5d 29 3f 65 3a 6e 75 6c 6c 7d 76 61 72 20 44 2c 49 3d 4f 62 6a 65 63 74 2e 61 73 73 Data Ascii: ffscreen");Symbol.for("react.legacy_hidden"),Symbol.for("react.cache"),Symbol.for("react.tracing_marker");var M=Symbol.iterator;function F(e){return null===e\|\|"object"!=typeof e?null:"function"==typeof(e=M&&e[M]\|\|e["@@iterator"])?e:null}var D,I=Object.ass
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 20 55 28 22 4c 61 7a 79 22 29 3b 63 61 73 65 20 31 33 3a 72 65 74 75 72 6e 20 55 28 22 53 75 73 70 65 6e 73 65 22 29 3b 63 61 73 65 20 31 39 3a 72 65 74 75 72 6e 20 55 28 22 53 75 73 70 65 6e 73 65 4c 69 73 74 22 29 3b 63 61 73 65 20 30 3a 63 61 73 65 20 32 3a 63 61 73 65 20 31 35 3a 72 65 74 75 72 6e 20 65 3d 41 28 65 2e 74 79 70 65 2c 21 31 29 3b 63 61 73 65 20 31 31 3a 72 65 74 75 72 6e 20 65 3d 41 28 65 2e 74 79 70 65 2e 72 65 6e 64 65 72 2c 21 31 29 3b 63 61 73 65 20 31 3a 72 65 74 75 72 6e 20 65 3d 41 28 65 2e 74 79 70 65 2c 21 30 29 3b 64 65 66 61 75 6c 74 3a 72 65 74 75 72 6e 22 22 7d 7d 66 75 6e 63 74 69 6f 6e 20 6a 28 65 29 7b 69 66 28 6e 75 6c 6c 3d 3d 65 29 72 65 74 75 72 6e 20 6e 75 6c 6c 3b 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 Data Ascii: U("Lazy");case 13:return U("Suspense");case 19:return U("SuspenseList");case 0:case 2:case 15:return e=A(e.type,!1);case 11:return e=A(e.type.render,!1);case 1:return e=A(e.type,!0);default:return""}}function j(e){if(null==e)return null;if("function"==ty
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 74 4d 6f 64 65 22 3a 22 4d 6f 64 65 22 3b 63 61 73 65 20 32 32 3a 72 65 74 75 72 6e 22 4f 66 66 73 63 72 65 65 6e 22 3b 63 61 73 65 20 31 32 3a 72 65 74 75 72 6e 22 50 72 6f 66 69 6c 65 72 22 3b 63 61 73 65 20 32 31 3a 72 65 74 75 72 6e 22 53 63 6f 70 65 22 3b 63 61 73 65 20 31 33 3a 72 65 74 75 72 6e 22 53 75 73 70 65 6e 73 65 22 3b 63 61 73 65 20 31 39 3a 72 65 74 75 72 6e 22 53 75 73 70 65 6e 73 65 4c 69 73 74 22 3b 63 61 73 65 20 32 35 3a 72 65 74 75 72 6e 22 54 72 61 63 69 6e 67 4d 61 72 6b 65 72 22 3b 63 61 73 65 20 31 3a 63 61 73 65 20 30 3a 63 61 73 65 20 31 37 3a 63 61 73 65 20 32 3a 63 61 73 65 20 31 34 3a 63 61 73 65 20 31 35 3a 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 6e 29 72 65 74 75 72 6e 20 6e 2e 64 69 73 70 6c 61 Data Ascii: tMode":"Mode";case 22:return"Offscreen";case 12:return"Profiler";case 21:return"Scope";case 13:return"Suspense";case 19:return"SuspenseList";case 25:return"TracingMarker";case 1:case 0:case 17:case 2:case 14:case 15:if("function"==typeof n)return n.displa
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 6f 69 64 20 30 29 29 29 72 65 74 75 72 6e 20 6e 75 6c 6c 3b 74 72 79 7b 72 65 74 75 72 6e 20 65 2e 61 63 74 69 76 65 45 6c 65 6d 65 6e 74 7c 7c 65 2e 62 6f 64 79 7d 63 61 74 63 68 28 6e 29 7b 72 65 74 75 72 6e 20 65 2e 62 6f 64 79 7d 7d 66 75 6e 63 74 69 6f 6e 20 59 28 65 2c 6e 29 7b 76 61 72 20 74 3d 6e 2e 63 68 65 63 6b 65 64 3b 72 65 74 75 72 6e 20 49 28 7b 7d 2c 6e 2c 7b 64 65 66 61 75 6c 74 43 68 65 63 6b 65 64 3a 76 6f 69 64 20 30 2c 64 65 66 61 75 6c 74 56 61 6c 75 65 3a 76 6f 69 64 20 30 2c 76 61 6c 75 65 3a 76 6f 69 64 20 30 2c 63 68 65 63 6b 65 64 3a 6e 75 6c 6c 21 3d 74 3f 74 3a 65 2e 5f 77 72 61 70 70 65 72 53 74 61 74 65 2e 69 6e 69 74 69 61 6c 43 68 65 63 6b 65 64 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 58 28 65 2c 6e 29 7b 76 61 72 20 74 3d 6e Data Ascii: oid 0)))return null;try{return e.activeElement\|\|e.body}catch(n){return e.body}}function Y(e,n){var t=n.checked;return I({},n,{defaultChecked:void 0,defaultValue:void 0,value:void 0,checked:null!=t?t:e._wrapperState.initialChecked})}function X(e,n){var t=n
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 75 6c 6c 3d 3d 74 3f 65 2e 64 65 66 61 75 6c 74 56 61 6c 75 65 3d 22 22 2b 65 2e 5f 77 72 61 70 70 65 72 53 74 61 74 65 2e 69 6e 69 74 69 61 6c 56 61 6c 75 65 3a 65 2e 64 65 66 61 75 6c 74 56 61 6c 75 65 21 3d 3d 22 22 2b 74 26 26 28 65 2e 64 65 66 61 75 6c 74 56 61 6c 75 65 3d 22 22 2b 74 29 29 7d 76 61 72 20 6e 65 3d 41 72 72 61 79 2e 69 73 41 72 72 61 79 3b 66 75 6e 63 74 69 6f 6e 20 74 65 28 65 2c 6e 2c 74 2c 72 29 7b 69 66 28 65 3d 65 2e 6f 70 74 69 6f 6e 73 2c 6e 29 7b 6e 3d 7b 7d 3b 66 6f 72 28 76 61 72 20 6c 3d 30 3b 6c 3c 74 2e 6c 65 6e 67 74 68 3b 6c 2b 2b 29 6e 5b 22 24 22 2b 74 5b 6c 5d 5d 3d 21 30 3b 66 6f 72 28 74 3d 30 3b 74 3c 65 2e 6c 65 6e 67 74 68 3b 74 2b 2b 29 6c 3d 6e 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 28 22 24 22 2b 65 5b Data Ascii: ull==t?e.defaultValue=""+e._wrapperState.initialValue:e.defaultValue!==""+t&&(e.defaultValue=""+t))}var ne=Array.isArray;function te(e,n,t,r){if(e=e.options,n){n={};for(var l=0;l<t.length;l++)n["$"+t[l]]=!0;for(t=0;t<e.length;t++)l=n.hasOwnProperty("$"+e[

Timestamp	Bytes transferred	Direction	Data
2025-01-14 00:16:06 UTC	779	OUT	GET /app-9b4cbf0f5c3a56b8766d.js HTTP/1.1 Host: www.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.cloudflare.com/learning/access-management/phishing-attack/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: __cf_bm=rqAys_bxt3IGB8uJqBfQLACHegv2fs3Q6.105Bcr6SI-1736813764-1.0.1.1-uSIEstn1OUl2WDQRfFlWNkysYETxEbUnmNm6ipfwOeJNg3Yvcao3k_AMiZS_dzpfNCtpUZcWSn8Thdf1qjmhj8eBCu2QSZZvGNswyCRruTE
2025-01-14 00:16:06 UTC	952	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 00:16:06 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: close Cache-Control: public, max-age=0, must-revalidate ETag: W/"4860d064671c21c08413a006d3d9286c" Strict-Transport-Security: max-age=31536000; includeSubDomains Permissions-Policy: geolocation=(), camera=(), microphone=() Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-GWW-LOC: EN-US X-PGS-LOC: EN-US X-XSS-Protection: 1; mode=block Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xjQnUPnchy2SIRoWiEoLQK7mx41aZmBNdKLeZcsiqhox7YDFpMMhoJwyZsSqhyTm7EQdGEt7FTJIUT0JoPkfQFKRconMBA2g%2BycuIe1S4Si6mUvxSfmVIfa1r%2Bg5dY7HKMWQVQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90196f77ffdc42ee-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 37 66 66 32 0d 0a 2f 2a 21 20 46 6f 72 20 6c 69 63 65 6e 73 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 73 65 65 20 61 70 70 2d 39 62 34 63 62 66 30 66 35 63 33 61 35 36 62 38 37 36 36 64 2e 6a 73 2e 4c 49 43 45 4e 53 45 2e 74 78 74 20 2a 2f 0a 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 63 6c 6f 75 64 66 6c 61 72 65 5f 6d 72 6b 65 6e 67 5f 72 65 64 77 6f 6f 64 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 63 6c 6f 75 64 66 6c 61 72 65 5f 6d 72 6b 65 6e 67 5f 72 65 64 77 6f 6f 64 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 35 32 34 5d 2c 7b 33 38 31 35 37 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 5a 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 Data Ascii: 7ff2/! For license information please see app-9b4cbf0f5c3a56b8766d.js.LICENSE.txt /(self.webpackChunk_cloudflare_mrkeng_redwood=self.webpackChunk_cloudflare_mrkeng_redwood\|\|[]).push([[524],{38157:function(e,t,n){"use strict";n.d(t,{Z:function(){retur
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 61 6d 65 3a 6f 2c 73 74 79 6c 65 3a 6e 3f 6c 3a 76 6f 69 64 20 30 7d 2c 74 29 7d 2c 6d 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 65 2e 73 72 63 2c 6e 3d 65 2e 63 75 73 74 6f 6d 65 72 43 6f 64 65 2c 6f 3d 65 2e 61 64 55 72 6c 2c 6c 3d 65 2e 63 6f 6e 74 72 6f 6c 73 2c 63 3d 76 6f 69 64 20 30 21 3d 3d 6c 26 26 6c 2c 6d 3d 65 2e 6d 75 74 65 64 2c 70 3d 76 6f 69 64 20 30 21 3d 3d 6d 26 26 6d 2c 66 3d 65 2e 61 75 74 6f 70 6c 61 79 2c 68 3d 76 6f 69 64 20 30 21 3d 3d 66 26 26 66 2c 67 3d 65 2e 6c 6f 6f 70 2c 5f 3d 76 6f 69 64 20 30 21 3d 3d 67 26 26 67 2c 76 3d 65 2e 70 72 65 6c 6f 61 64 2c 79 3d 76 6f 69 64 20 30 3d 3d 3d 76 3f 22 6d 65 74 61 64 61 74 61 22 3a 76 2c 62 3d 65 2e 70 72 69 6d 61 72 79 43 6f 6c 6f 72 2c 45 3d 65 2e 6c 65 74 74 65 72 Data Ascii: ame:o,style:n?l:void 0},t)},m=function(e){var t=e.src,n=e.customerCode,o=e.adUrl,l=e.controls,c=void 0!==l&&l,m=e.muted,p=void 0!==m&&m,f=e.autoplay,h=void 0!==f&&f,g=e.loop,_=void 0!==g&&g,v=e.preload,y=void 0===v?"metadata":v,b=e.primaryColor,E=e.letter
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 6c 65 74 74 65 72 62 6f 78 43 6f 6c 6f 72 3d 22 2b 65 6e 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 75 29 2c 6d 26 26 22 73 74 61 72 74 54 69 6d 65 3d 22 2b 6d 2c 6e 26 26 22 6d 75 74 65 64 3d 74 72 75 65 22 2c 6f 26 26 22 70 72 65 6c 6f 61 64 3d 22 2b 6f 2c 61 26 26 22 6c 6f 6f 70 3d 74 72 75 65 22 2c 69 26 26 22 61 75 74 6f 70 6c 61 79 3d 74 72 75 65 22 2c 21 73 26 26 22 63 6f 6e 74 72 6f 6c 73 3d 66 61 6c 73 65 22 5d 2e 66 69 6c 74 65 72 28 42 6f 6f 6c 65 61 6e 29 2e 6a 6f 69 6e 28 22 26 22 29 3b 72 65 74 75 72 6e 28 30 2c 72 2e 75 73 65 4d 65 6d 6f 29 28 28 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 66 3f 22 68 74 74 70 73 3a 2f 2f 63 75 73 74 6f 6d 65 72 2d 22 2b 66 2b 22 2e 63 6c 6f 75 64 66 6c 61 72 65 73 74 72 65 61 6d 2e 63 6f Data Ascii: letterboxColor="+encodeURIComponent(u),m&&"startTime="+m,n&&"muted=true",o&&"preload="+o,a&&"loop=true",i&&"autoplay=true",!s&&"controls=false"].filter(Boolean).join("&");return(0,r.useMemo)((function(){return f?"https://customer-"+f+".cloudflarestream.co
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 74 65 22 2c 75 65 2c 72 65 29 2c 73 28 22 76 6f 6c 75 6d 65 63 68 61 6e 67 65 22 2c 75 65 2c 6f 65 29 2c 73 28 22 77 61 69 74 69 6e 67 22 2c 75 65 2c 61 65 29 2c 73 28 22 73 74 72 65 61 6d 2d 61 64 73 74 61 72 74 22 2c 75 65 2c 69 65 29 2c 73 28 22 73 74 72 65 61 6d 2d 61 64 65 6e 64 22 2c 75 65 2c 73 65 29 2c 73 28 22 73 74 72 65 61 6d 2d 61 64 74 69 6d 65 6f 75 74 22 2c 75 65 2c 6c 65 29 2c 73 28 22 72 65 73 69 7a 65 22 2c 75 65 2c 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 66 28 75 65 2e 63 75 72 72 65 6e 74 29 7b 76 61 72 20 74 3d 75 65 2e 63 75 72 72 65 6e 74 2c 6e 3d 74 2e 76 69 64 65 6f 48 65 69 67 68 74 2c 72 3d 74 2e 76 69 64 65 6f 57 69 64 74 68 3b 70 65 28 7b 76 69 64 65 6f 48 65 69 67 68 74 3a 6e 2c 76 69 64 65 6f 57 69 64 74 68 3a 72 7d 29 2c Data Ascii: te",ue,re),s("volumechange",ue,oe),s("waiting",ue,ae),s("stream-adstart",ue,ie),s("stream-adend",ue,se),s("stream-adtimeout",ue,le),s("resize",ue,(function(e){if(ue.current){var t=ue.current,n=t.videoHeight,r=t.videoWidth;pe({videoHeight:n,videoWidth:r}),
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 41 44 49 4e 47 5f 32 3d 22 68 65 61 64 69 6e 67 2d 32 22 2c 65 2e 48 45 41 44 49 4e 47 5f 33 3d 22 68 65 61 64 69 6e 67 2d 33 22 2c 65 2e 48 45 41 44 49 4e 47 5f 34 3d 22 68 65 61 64 69 6e 67 2d 34 22 2c 65 2e 48 45 41 44 49 4e 47 5f 35 3d 22 68 65 61 64 69 6e 67 2d 35 22 2c 65 2e 48 45 41 44 49 4e 47 5f 36 3d 22 68 65 61 64 69 6e 67 2d 36 22 2c 65 2e 4f 4c 5f 4c 49 53 54 3d 22 6f 72 64 65 72 65 64 2d 6c 69 73 74 22 2c 65 2e 55 4c 5f 4c 49 53 54 3d 22 75 6e 6f 72 64 65 72 65 64 2d 6c 69 73 74 22 2c 65 2e 4c 49 53 54 5f 49 54 45 4d 3d 22 6c 69 73 74 2d 69 74 65 6d 22 2c 65 2e 48 52 3d 22 68 72 22 2c 65 2e 51 55 4f 54 45 3d 22 62 6c 6f 63 6b 71 75 6f 74 65 22 2c 65 2e 45 4d 42 45 44 44 45 44 5f 45 4e 54 52 59 3d 22 65 6d 62 65 64 64 65 64 2d 65 6e 74 72 79 Data Ascii: ADING_2="heading-2",e.HEADING_3="heading-3",e.HEADING_4="heading-4",e.HEADING_5="heading-5",e.HEADING_6="heading-6",e.OL_LIST="ordered-list",e.UL_LIST="unordered-list",e.LIST_ITEM="list-item",e.HR="hr",e.QUOTE="blockquote",e.EMBEDDED_ENTRY="embedded-entry
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 65 66 61 75 6c 74 7c 7c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 26 26 65 2e 5f 5f 65 73 4d 6f 64 75 6c 65 3f 65 3a 7b 64 65 66 61 75 6c 74 3a 65 7d 7d 3b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 5f 5f 65 73 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 2c 74 2e 56 31 5f 4d 41 52 4b 53 3d 74 2e 56 31 5f 4e 4f 44 45 5f 54 59 50 45 53 3d 74 2e 54 45 58 54 5f 43 4f 4e 54 41 49 4e 45 52 53 3d 74 2e 48 45 41 44 49 4e 47 53 3d 74 2e 43 4f 4e 54 41 49 4e 45 52 53 3d 74 2e 56 4f 49 44 5f 42 4c 4f 43 4b 53 3d 74 2e 54 41 42 4c 45 5f 42 4c 4f 43 4b 53 3d 74 2e 4c 49 53 54 5f 49 54 45 4d 5f 42 4c 4f 43 4b 53 3d 74 2e 54 4f 50 5f 4c 45 56 45 4c 5f 42 4c 4f 43 4b 53 3d 76 6f 69 64 20 30 3b 76 61 72 20 61 Data Ascii: efault\|\|function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.V1_MARKS=t.V1_NODE_TYPES=t.TEXT_CONTAINERS=t.HEADINGS=t.CONTAINERS=t.VOID_BLOCKS=t.TABLE_BLOCKS=t.LIST_ITEM_BLOCKS=t.TOP_LEVEL_BLOCKS=void 0;var a
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 5d 3d 5b 75 2e 42 4c 4f 43 4b 53 2e 50 41 52 41 47 52 41 50 48 5d 2c 6e 5b 75 2e 42 4c 4f 43 4b 53 2e 54 41 42 4c 45 5f 48 45 41 44 45 52 5f 43 45 4c 4c 5d 3d 5b 75 2e 42 4c 4f 43 4b 53 2e 50 41 52 41 47 52 41 50 48 5d 2c 6e 29 2c 74 2e 48 45 41 44 49 4e 47 53 3d 5b 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 31 2c 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 32 2c 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 33 2c 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 34 2c 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 35 2c 75 2e 42 4c 4f 43 4b 53 2e 48 45 41 44 49 4e 47 5f 36 5d 2c 74 2e 54 45 58 54 5f 43 4f 4e 54 41 49 4e 45 52 53 3d 72 28 5b 75 2e 42 4c 4f 43 4b 53 2e 50 41 52 41 47 52 41 50 48 5d 2c 74 2e 48 45 41 44 49 4e 47 53 Data Ascii: ]=[u.BLOCKS.PARAGRAPH],n[u.BLOCKS.TABLE_HEADER_CELL]=[u.BLOCKS.PARAGRAPH],n),t.HEADINGS=[u.BLOCKS.HEADING_1,u.BLOCKS.HEADING_2,u.BLOCKS.HEADING_3,u.BLOCKS.HEADING_4,u.BLOCKS.HEADING_5,u.BLOCKS.HEADING_6],t.TEXT_CONTAINERS=r([u.BLOCKS.PARAGRAPH],t.HEADINGS
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 74 3d 3d 3d 65 5b 72 5b 6e 5d 5d 29 72 65 74 75 72 6e 21 30 7d 72 65 74 75 72 6e 21 31 7d 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 5f 5f 65 73 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 2c 74 2e 69 73 54 65 78 74 3d 74 2e 69 73 42 6c 6f 63 6b 3d 74 2e 69 73 49 6e 6c 69 6e 65 3d 76 6f 69 64 20 30 2c 74 2e 69 73 49 6e 6c 69 6e 65 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 6e 28 64 2e 49 4e 4c 49 4e 45 53 2c 65 2e 6e 6f 64 65 54 79 70 65 29 7d 2c 74 2e 69 73 42 6c 6f 63 6b 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 6e 28 75 2e 42 4c 4f 43 4b 53 2c 65 2e 6e 6f 64 65 54 79 70 65 29 7d 2c 74 2e 69 73 54 65 78 74 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 22 74 65 78 Data Ascii: t===e[r[n]])return!0}return!1}Object.defineProperty(t,"__esModule",{value:!0}),t.isText=t.isBlock=t.isInline=void 0,t.isInline=function(e){return n(d.INLINES,e.nodeType)},t.isBlock=function(e){return n(u.BLOCKS,e.nodeType)},t.isText=function(e){return"tex
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 74 2c 22 49 4e 4c 49 4e 45 53 22 2c 7b 65 6e 75 6d 65 72 61 62 6c 65 3a 21 30 2c 67 65 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 64 2e 49 4e 4c 49 4e 45 53 7d 7d 29 2c 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 4d 41 52 4b 53 22 2c 7b 65 6e 75 6d 65 72 61 62 6c 65 3a 21 30 2c 67 65 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 69 28 6d 29 2e 64 65 66 61 75 6c 74 7d 7d 29 2c 6f 28 70 2c 74 29 2c 6f 28 66 2c 74 29 2c 6f 28 68 2c 74 29 2c 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 45 4d 50 54 59 5f 44 4f 43 55 4d 45 4e 54 22 2c 7b 65 6e 75 6d 65 72 61 62 6c 65 3a 21 30 2c 67 65 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 69 28 67 29 2e 64 65 66 61 Data Ascii: t,"INLINES",{enumerable:!0,get:function(){return d.INLINES}}),Object.defineProperty(t,"MARKS",{enumerable:!0,get:function(){return i(m).default}}),o(p,t),o(f,t),o(h,t),Object.defineProperty(t,"EMPTY_DOCUMENT",{enumerable:!0,get:function(){return i(g).defa
2025-01-14 00:16:06 UTC	1369	IN	Data Raw: 65 6e 74 28 22 68 34 22 2c 6e 75 6c 6c 2c 74 29 7d 2c 79 5b 4d 2e 48 45 41 44 49 4e 47 5f 35 5d 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 61 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 68 35 22 2c 6e 75 6c 6c 2c 74 29 7d 2c 79 5b 4d 2e 48 45 41 44 49 4e 47 5f 36 5d 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 61 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 68 36 22 2c 6e 75 6c 6c 2c 74 29 7d 2c 79 5b 4d 2e 45 4d 42 45 44 44 45 44 5f 45 4e 54 52 59 5d 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 61 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 64 69 76 22 2c 6e 75 6c 6c 2c 74 29 7d 2c 79 5b 4d 2e 45 4d 42 45 44 44 45 44 5f 52 45 53 4f 55 52 43 45 5d 3d 66 75 6e 63 74 69 6f 6e 28 65 Data Ascii: ent("h4",null,t)},y[M.HEADING_5]=function(e,t){return a.createElement("h5",null,t)},y[M.HEADING_6]=function(e,t){return a.createElement("h6",null,t)},y[M.EMBEDDED_ENTRY]=function(e,t){return a.createElement("div",null,t)},y[M.EMBEDDED_RESOURCE]=function(e